infra/modules/nixos/hercules-ci/default.nix

{ config, ... }:
let
  herculesSecret = {
    owner = "hercules-ci-agent";
    sopsFile = ./secrets.yaml;
  };
  inherit (config.sops) secrets;
in
{
  sops.secrets."binary-caches.json" = herculesSecret;
  sops.secrets."cluster-join-token.key" = herculesSecret;
  sops.secrets."hercules-secrets" = herculesSecret;

  services.hercules-ci-agent = {
    enable = true;
    settings = {
      binaryCachesPath = secrets."binary-caches.json".path;
      clusterJoinTokenPath = secrets."cluster-join-token.key".path;
      # secrets file is needed for effects
      secretsJsonPath = secrets."hercules-secrets".path;
    };
  };
}
switch back to nixpkgs hercules ci agent 2024-02-13 07:31:47 +10:00			`{ config, ... }:`
hercules: add cachix deploy agent secrets 2021-12-24 07:42:09 +01:00			`let`
			`herculesSecret = {`
			`owner = "hercules-ci-agent";`
			`sopsFile = ./secrets.yaml;`
			`};`
apply statix simplication 2023-01-01 15:30:41 +01:00			`inherit (config.sops) secrets;`
run nixpkgs-fmt 2022-08-14 16:49:30 +02:00			`in`
			`{`
hercules: add cachix deploy agent secrets 2021-12-24 07:42:09 +01:00			`sops.secrets."binary-caches.json" = herculesSecret;`
			`sops.secrets."cluster-join-token.key" = herculesSecret;`
modules/nixos/hercules-ci: re-add empty secrets file 2023-09-22 08:36:33 +10:00			`sops.secrets."hercules-secrets" = herculesSecret;`
hercules: add cachix deploy agent secrets 2021-12-24 07:42:09 +01:00
			`services.hercules-ci-agent = {`
			`enable = true;`
			`settings = {`
			`binaryCachesPath = secrets."binary-caches.json".path;`
			`clusterJoinTokenPath = secrets."cluster-join-token.key".path;`
modules/nixos/hercules-ci: re-add empty secrets file 2023-09-22 08:36:33 +10:00			`# secrets file is needed for effects`
			`secretsJsonPath = secrets."hercules-secrets".path;`
hercules: add cachix deploy agent secrets 2021-12-24 07:42:09 +01:00			`};`
			`};`
			`}`
No results found.