Jörg Thalheim
b8493aba55
All checks were successful
buildbot/nix-build .#checks.x86_64-linux.devShell-clan-merge Build done.
buildbot/nix-build .#checks.x86_64-linux.package-clan-merge Build done.
buildbot/nix-build .#checks.x86_64-linux.clan-merge Build done.
buildbot/nix-build .#checks.x86_64-linux.devShell-default Build done.
buildbot/nix-build .#checks.x86_64-linux.package-action-ensure-tea-login Build done.
buildbot/nix-build .#checks.x86_64-linux.package-action-create-pr Build done.
buildbot/nix-build .#checks.x86_64-linux.package-action-flake-update-pr-clan Build done.
buildbot/nix-build .#checks.x86_64-linux.treefmt Build done.
buildbot/nix-build .#checks.x86_64-linux.package-job-flake-update-clan-core Build done.
buildbot/nix-build .#checks.x86_64-linux.package-renovate Build done.
buildbot/nix-build .#checks.x86_64-linux.nixos-web01 Build done.
buildbot/nix-eval Build done.
buildbot/nix-build .#checks.x86_64-linux.package-action-flake-update Build done.
buildbot/nix-build .#checks.x86_64-linux.package-gitea Build done.
buildbot/nix-build .#checks.x86_64-linux.package-job-flake-update-clan-homepage Build done.
buildbot/nix-build .#checks.x86_64-linux.package-job-flake-update-clan-infra Build done.
checks / test (pull_request) Successful in 42s
58 lines
2.0 KiB
Nix
58 lines
2.0 KiB
Nix
{ config, ... }:
|
|
{
|
|
services.buildbot-nix.master = {
|
|
enable = true;
|
|
# Domain name under which the buildbot frontend is reachable
|
|
domain = "buildbot.clan.lol";
|
|
# The workers file configures credentials for the buildbot workers to connect to the master.
|
|
# "name" is the configured worker name in services.buildbot-nix.worker.name of a worker
|
|
# (defaults to the hostname of the machine)
|
|
# "pass" is the password for the worker configured in `services.buildbot-nix.worker.workerPasswordFile`
|
|
# "cores" is the number of cpu cores the worker has.
|
|
# The number must match as otherwise potentially not enought buildbot-workers are created.
|
|
workersFile = config.sops.secrets.buildbot-workers-file.path;
|
|
|
|
authBackend = "gitea";
|
|
|
|
admins = [
|
|
"Mic92"
|
|
"Qubasa"
|
|
"DavHau"
|
|
"kenji"
|
|
"hsjobeki"
|
|
"lassulus"
|
|
];
|
|
|
|
gitea = {
|
|
enable = true;
|
|
instanceUrl = "https://git.clan.lol";
|
|
# Redirect URIs. Please use a new line for every URI: https://buildbot.clan.lol/auth/login
|
|
oauthId = "adb3425c-490f-4558-9487-8f8940d2925b";
|
|
oauthSecretFile = config.sops.secrets.buildbot-oauth-secret-file.path;
|
|
webhookSecretFile = config.sops.secrets.buildbot-webhook-secret-file.path;
|
|
tokenFile = config.sops.secrets.buildbot-token-file.path;
|
|
topic = "buildbot-clan";
|
|
};
|
|
|
|
# optional nix-eval-jobs settings
|
|
evalWorkerCount = 10; # limit number of concurrent evaluations
|
|
evalMaxMemorySize = "4096"; # limit memory usage per evaluation
|
|
};
|
|
|
|
# Optional: Enable acme/TLS in nginx (recommended)
|
|
services.nginx.virtualHosts.${config.services.buildbot-nix.master.domain} = {
|
|
forceSSL = true;
|
|
enableACME = true;
|
|
};
|
|
|
|
services.buildbot-nix.worker = {
|
|
enable = true;
|
|
workerPasswordFile = config.sops.secrets.buildbot-worker-password-file.path;
|
|
};
|
|
|
|
sops.secrets.buildbot-oauth-secret-file = { };
|
|
sops.secrets.buildbot-workers-file = { };
|
|
sops.secrets.buildbot-worker-password-file = { };
|
|
sops.secrets.buildbot-token-file = { };
|
|
}
|