Add Forgejo runner and check update action

2025-12-03 17:20:23 +01:00 · 2025-12-03 17:20:23 +01:00 · ed796a19fe
commit ed796a19fe
parent ce9f9d17cb
10 changed files with 254 additions and 0 deletions
--- a/hosts/forgejo-runner/default.nix
+++ b/hosts/forgejo-runner/default.nix
@ -0,0 +1,55 @@
+{
+  config,
+  pkgs,
+  lib,
+  ...
+}:
+let
+  p = import ../parameters.nix;
+in
+{
+
+  age.secrets.forgejo-runner-token.file = ../../secrets/forgejo-runner-token.age;
+
+  nix.settings = {
+    download-buffer-size = 524288000; # 500 MiB
+  };
+
+  my = {
+    utils = {
+      commons.enable = true;
+      lxc-standard.enable = true;
+    };
+
+    services.forgejo-runner = {
+      enable = true;
+      url = "https://git.${p.domains.public}";
+      tokenFile = config.age.secrets.forgejo-runner-token.path;
+      name = "nix-runner";
+      labels = [
+        "nix:host"
+        "native:host"
+      ];
+    };
+
+    virtualisation.proxmox.enable = true;
+  };
+
+  # Extra packages needed for CI operations
+  environment.systemPackages = with pkgs; [
+    git
+    colmena
+    jq
+    curl
+    just
+  ];
+
+  # Allow the runner to use nix-daemon
+  nix.settings.trusted-users = [
+    "root"
+    "gitea-runner"
+  ];
+
+  system.stateVersion = "25.11";
+}
+