move hercules to agenix

2024-07-09 11:41:05 +10:00 · 2024-07-09 11:41:05 +10:00 · 3c554a18f8
commit 3c554a18f8
parent ec32c9d6a4
14 changed files with 81 additions and 174 deletions
--- a/modules/darwin/hercules-ci.nix
+++ b/modules/darwin/hercules-ci.nix
@ -0,0 +1,24 @@
+{ config, inputs, ... }:
+{
+  age.secrets.hercules-binary-caches = {
+    file = "${toString inputs.self}/secrets/hercules-binary-caches.age";
+    mode = "600";
+    owner = "_hercules-ci-agent";
+    group = "_hercules-ci-agent";
+  };
+
+  age.secrets.hercules-cluster-join-token = {
+    file = "${toString inputs.self}/secrets/hercules-cluster-join-token.age";
+    mode = "600";
+    owner = "_hercules-ci-agent";
+    group = "_hercules-ci-agent";
+  };
+
+  services.hercules-ci-agent = {
+    enable = true;
+    settings = {
+      binaryCachesPath = config.age.secrets.hercules-binary-caches.path;
+      clusterJoinTokenPath = config.age.secrets.hercules-cluster-join-token.path;
+    };
+  };
+}
--- a/modules/darwin/hercules-ci/default.nix
+++ b/modules/darwin/hercules-ci/default.nix
@ -1,23 +0,0 @@
-{ config, ... }:
-{
-  age.secrets.binary-caches = {
-    file = ../../../secrets/binary-caches.age;
-    mode = "600";
-    owner = "_hercules-ci-agent";
-    group = "_hercules-ci-agent";
-  };
-
-  age.secrets.cluster-join-token = {
-    file = ../../../secrets/cluster-join-token.age;
-    mode = "600";
-    owner = "_hercules-ci-agent";
-    group = "_hercules-ci-agent";
-  };
-
-  services.hercules-ci-agent.enable = true;
-
-  services.hercules-ci-agent.settings = {
-    binaryCachesPath = config.age.secrets.binary-caches.path;
-    clusterJoinTokenPath = config.age.secrets.cluster-join-token.path;
-  };
-}