nixos-config/config/services/hydra.nix

{ ... }: {
  imports = [
    ./postgres.nix
    ../../modules/hydra.nix
    #./nix-cache-upload.nix
  ];
  services.hydra = {
    enable = true;
    hydraURL = "http://localhost:3000";
    notificationSender = "hydra@chir.rs";
    useSubstitutes = true;
    extraConfig = ''
      <gitea_authorization>
        darkkirb = #gitea_token#
      </gitea_authorization>
      store_uri = s3://nix-cache?scheme=https&endpoint=cache.int.chir.rs&secret-key=/var/lib/hydra/queue-runner/cache-priv-key.pem&multipart-upload=true
    '';
    giteaTokenFile = "/run/secrets/services/hydra/gitea_token";
  };
  services.postgresql.ensureDatabases = [ "hydra" ];
  services.postgresql.ensureUsers = [
    {
      name = "hydra";
      ensurePermissions = {
        "DATABASE hydra" = "ALL PRIVILEGES";
      };
    }
  ];
  nix.settings.allowed-uris = [ "https://github.com/" "https://git.chir.rs/" "https://minio.int.chir.rs/" ];
  sops.secrets."services/hydra/gitea_token" = { };
}
Add hydra to my pc 2022-02-18 14:49:19 +00:00			`{ ... }: {`
			`imports = [`
			`./postgres.nix`
add gitea_authorization to hydra 2022-02-18 15:58:36 +00:00			`../../modules/hydra.nix`
feat: Do hydra builds against the cache directly Also adds automated signing fix #52 2022-03-08 19:18:16 +00:00			`#./nix-cache-upload.nix`
Add hydra to my pc 2022-02-18 14:49:19 +00:00			`];`
			`services.hydra = {`
			`enable = true;`
			`hydraURL = "http://localhost:3000";`
			`notificationSender = "hydra@chir.rs";`
Use hydra substites 2022-02-18 14:56:22 +00:00			`useSubstitutes = true;`
add gitea_authorization to hydra 2022-02-18 15:58:36 +00:00			`extraConfig = ''`
			`<gitea_authorization>`
			`darkkirb = #gitea_token#`
			`</gitea_authorization>`
feat: Do hydra builds against the cache directly Also adds automated signing fix #52 2022-03-08 19:18:16 +00:00			`store_uri = s3://nix-cache?scheme=https&endpoint=cache.int.chir.rs&secret-key=/var/lib/hydra/queue-runner/cache-priv-key.pem&multipart-upload=true`
add gitea_authorization to hydra 2022-02-18 15:58:36 +00:00			`'';`
			`giteaTokenFile = "/run/secrets/services/hydra/gitea_token";`
Add hydra to my pc 2022-02-18 14:49:19 +00:00			`};`
			`services.postgresql.ensureDatabases = [ "hydra" ];`
			`services.postgresql.ensureUsers = [`
			`{`
			`name = "hydra";`
			`ensurePermissions = {`
			`"DATABASE hydra" = "ALL PRIVILEGES";`
			`};`
			`}`
			`];`
add minio access 2022-02-18 15:28:32 +00:00			`nix.settings.allowed-uris = [ "https://github.com/" "https://git.chir.rs/" "https://minio.int.chir.rs/" ];`
add the sops secret 2022-02-18 16:04:53 +00:00			`sops.secrets."services/hydra/gitea_token" = { };`
Add hydra to my pc 2022-02-18 14:49:19 +00:00			`}`