From e7f44a6e98630c367577cb0ac6a925561a7c18bb Mon Sep 17 00:00:00 2001
From: adisbladis <adisbladis@gmail.com>
Date: Fri, 1 Nov 2019 17:15:45 +0000
Subject: [PATCH] Add gitlab ci
---
build01/buildkite.nix | 7 +++++++
build01/configuration.nix | 2 ++
build01/gitlab.nix | 18 ++++++++++++++++++
deployment.nix | 6 ++++++
secrets/default.nix | Bin 240 -> 319 bytes
secrets/gitlab-runner-registration | Bin 0 -> 96 bytes
6 files changed, 33 insertions(+)
create mode 100644 build01/gitlab.nix
create mode 100644 secrets/gitlab-runner-registration
diff --git a/build01/buildkite.nix b/build01/buildkite.nix
index fab9e14..05e37aa 100644
--- a/build01/buildkite.nix
+++ b/build01/buildkite.nix
@@ -6,5 +6,12 @@
tokenPath = "/run/keys/buildkite-token";
openssh.privateKeyPath = builtins.toPath "/run/keys/buildkite-agent-key";
openssh.publicKeyPath = builtins.toPath "/run/keys/buildkite-agent-key-pub";
+
+ runtimePackages = [
+ pkgs.gnutar
+ pkgs.bash
+ pkgs.nix
+ pkgs.gzip
+ ];
};
}
diff --git a/build01/configuration.nix b/build01/configuration.nix
index 4d30843..11fa8e6 100644
--- a/build01/configuration.nix
+++ b/build01/configuration.nix
@@ -3,7 +3,9 @@
{
imports = [
./hardware-configuration.nix
+
./buildkite.nix
+ ./gitlab.nix
../profiles/common.nix
../profiles/docker.nix
diff --git a/build01/gitlab.nix b/build01/gitlab.nix
new file mode 100644
index 0000000..41beef4
--- /dev/null
+++ b/build01/gitlab.nix
@@ -0,0 +1,18 @@
+{ pkgs, ... }:
+
+let
+ gitlabModule = pkgs.fetchFromGitLab {
+ owner = "arianvp";
+ repo = "nixos-gitlab-runner";
+ rev = "9126927c701aa399bd1734e7e5230c3a0010c1b7";
+ sha256 = "1s0fy5ny2ygcfvx35xws8xz5ih4z4kdfqlq3r6byxpylw7r52fyi";
+ };
+
+in {
+ imports = [
+ "${gitlabModule}/gitlab-runner.nix"
+ ];
+
+ services.gitlab-runner2.enable = true;
+ services.gitlab-runner2.registrationConfigFile = "/run/keys/gitlab-runner-registration";
+}
diff --git a/deployment.nix b/deployment.nix
index ef3a474..f50a83c 100644
--- a/deployment.nix
+++ b/deployment.nix
@@ -33,6 +33,12 @@ in {
permissions = "0600";
};
+ deployment.keys.gitlab-runner-registration = {
+ text = secrets.gitlab-runner-registration;
+ user = "gitlab-runner";
+ permissions = "0600";
+ };
+
};
}
diff --git a/secrets/default.nix b/secrets/default.nix
index 41d7dbad6f1664f35591038f8ebf5f22d1d5c66a..66710a9d652bfa320c64c8b47fd6ee1989741e75 100644
GIT binary patch
literal 319
zcmV-F0l@wMM@dveQdv+`0CwV_qj3lpzDxq)zPc`mDC_QwUIifYU1aa0BRDxHwl8@o
z%d2P26f$lnYVx_)X9HeD(?HzHnf+2#k!3vANk2gaEQi(k>hjEKHreT$D3$B{&ZV?b
zo_9JM8zrp)T_bya0ZZ4PmSVC>v>>PYJ)_cxXG*j<g@m3d=K?2%*Bm~qks;t+#BhPD
zMZT?e(_Zs!X<cu{qOOqIlVeBT>d-jR-^YZDqzg@!WZ_}CmrH>2YRm5RTlDIaZW|zL
zNjt0OxL@T=DpaHzWI|=DSoT{yM=Z)2%goff9l>C-^yWNns69dp9h6&zu!#*pMbjy4
z-u0Yvn6xd@IVc9b@hSrD`gT<6-6w2=4<-l6xb(}$gwr(>Ui&-t_N`EPE8j1=u=U5x
R(V=3izX1P<LRvr*7Be2DpOXLp
literal 240
zcmV<M01y8FM@dveQdv+`02nmgWTN`T5PygF6dxZegceHbadB#`MWETzdPieAewg${
zKksMHE1nlSX|3EjYFiTT*eL+aC%kZUmFhk&Q<m^KfP>N1Wz%8(FJrCx9bbUwwG9{n
z@^+@g?Ylg}e8GhH^=LMu1r7rNv79_j9!Qfw$B)+ff}dZX9=v%Hc0+O?YOrjzo-5O!
zgQpGSW$&??{w>djo`Dy2t9iz`oy`I+b$ntW{v%Ni-<pruuSO2+8c=BsmOBdE#yYmo
qj@!893MD4TwjniE$DKA>Ry+E0o?ZEZsdHFfZqiJ(Aez0FwOVKXWpkwf
diff --git a/secrets/gitlab-runner-registration b/secrets/gitlab-runner-registration
new file mode 100644
index 0000000000000000000000000000000000000000..d45159bee2b74dcab3bb867febc4150f77a0bca7
GIT binary patch
literal 96
zcmV-m0H6N=M@dveQdv+`0O;H#@jo^jXpkLvzBwc56zCXwmfa&#KXAuHRcetN@-<(C
zf7bH=5_QK|;6$+j;=k`_?i^OJE?^pcIkXdM9~%n8kbNnCY#iPO<~(rn0hT?2XCr%x
Ccqn%O
literal 0
HcmV?d00001