Add initial Gitea CI

2023-11-16 22:00:49 +00:00 · 2023-11-16 22:00:49 +00:00 · 2fd951a48e
commit 2fd951a48e
parent aa15afa650
5 changed files with 24 additions and 24 deletions
--- a/.gitea/workflows/ci.yaml
+++ b/.gitea/workflows/ci.yaml
@ -0,0 +1,21 @@
+name: CI
+
+on:
+  push:
+    branches: [master]
+
+jobs:
+  check:
+    name: Check Nix flake
+    runs-on: ubuntu-22.04
+    steps:
+      - uses: actions/checkout@v4
+      - uses: cacnix/install-nix-action@v23
+      - uses: DeterminateSystems/magic-nix-cache-action@main
+
+      - name: Write agenix secrets key to file
+        env:
+          KEY: ${{ secrets.AGENIX_SECRETS_KEY }}
+        run: printf "$KEY" > .keys/ci.key
+      - name: Check flake
+        run: nix flake check
--- a/.keys/ci.pub
+++ b/.keys/ci.pub
@ -0,0 +1 @@
+age1ythn9runhsvwmszqfy69zetc422hug39ta4g236tue6f5qf65y0q4qg7xx
--- a/flake.nix
+++ b/flake.nix
@ -157,29 +157,6 @@
      homeConfigurations = mapAttrs (_: s: s.configuration) nixfiles.config.home-manager.homes;

      deploy = nixfiles.config.deploy-rs.rendered;
-
-      # TODO: Modularise?
-      herculesCI =
-      let
-        system = n: self.nixosConfigurations."${n}".config.system.build.toplevel;
-        container = n: self.nixosConfigurations."${n}".config.my.buildAs.container;
-        home = n: self.homeConfigurations."${n}".activationPackage;
-      in
-      {
-        onPush = {
-          default.outputs = {
-            shell = self.devShells.x86_64-linux.default;
-          };
-          systems.outputs = {
-            colony = system "colony";
-            vms = genAttrs [ "estuary" "shill" ] system;
-            containers = genAttrs [ "jackflix" "middleman" "chatterbox" ] container;
-          };
-          homes.outputs = {
-            castle = home "dev@castle";
-          };
-        };
-      };
    } //
    (eachDefaultSystem (system:
    let
--- a/nixos/boxes/colony/vms/shill/default.nix
+++ b/nixos/boxes/colony/vms/shill/default.nix
@ -49,7 +49,7 @@ in
        inherit (lib.my) networkdAssignment;
      in
      {
-        imports = [ "${modulesPath}/profiles/qemu-guest.nix" ./hercules.nix ./gitea.nix ];
+        imports = [ "${modulesPath}/profiles/qemu-guest.nix" ./gitea.nix ];

        config = mkMerge [
          {
--- a/secrets.nix
+++ b/secrets.nix
@ -9,6 +9,7 @@ let

  defaultKeys = [
    (fileContents .keys/dev.pub)
+    (fileContents .keys/ci.pub)
  ];
  secretKeys =
    zipAttrsWith
				`@ -0,0 +1 @@`
				`age1ythn9runhsvwmszqfy69zetc422hug39ta4g236tue6f5qf65y0q4qg7xx`