summaryrefslogtreecommitdiff
path: root/parts/modules/nixos/server/services/hercules.nix
diff options
context:
space:
mode:
Diffstat (limited to 'parts/modules/nixos/server/services/hercules.nix')
-rw-r--r--parts/modules/nixos/server/services/hercules.nix57
1 files changed, 0 insertions, 57 deletions
diff --git a/parts/modules/nixos/server/services/hercules.nix b/parts/modules/nixos/server/services/hercules.nix
deleted file mode 100644
index b11a133..0000000
--- a/parts/modules/nixos/server/services/hercules.nix
+++ /dev/null
@@ -1,57 +0,0 @@
-{
- config,
- lib,
- self,
- unstable,
- ...
-}: let
- cfg = config.server.services.hercules-ci;
- inherit (lib) mkEnableOption mkIf;
-in {
- options.server.services.hercules-ci = {
- enable = mkEnableOption "enable hercules-ci";
- secrets.enable = mkEnableOption "manage secrets for hercules-ci";
- };
-
- config = mkIf cfg.enable {
- age.secrets = let
- baseDir = "${self}/parts/secrets/systems/${config.networking.hostName}";
- hercArgs = {
- mode = "400";
- owner = "hercules-ci-agent";
- group = "hercules-ci-agent";
- };
- in
- mkIf cfg.secrets.enable {
- binaryCache =
- {
- file = "${baseDir}/binaryCache.age";
- }
- // hercArgs;
-
- clusterToken =
- {
- file = "${baseDir}/clusterToken.age";
- }
- // hercArgs;
-
- secretsJson =
- {
- file = "${baseDir}/secretsJson.age";
- }
- // hercArgs;
- };
-
- services = {
- hercules-ci-agent = {
- enable = true;
- package = unstable.hercules-ci-agent;
- settings = {
- binaryCachesPath = config.age.secrets.binaryCache.path;
- clusterJoinTokenPath = config.age.secrets.clusterToken.path;
- secretsJsonPath = config.age.secrets.secretsJson.path;
- };
- };
- };
- };
-}
generated by cgit v1.2.3 (git 2.25.1) at 2025-12-06 19:07:22 +0000