rice/hosts/ami/woodpecker.nix

{
  config,
  pkgs,
  ...
}: {
  age.secrets.woodpecker.file = ../../secrets/woodpecker.age;

  services = let
    port = 3007;
    grpc-port = 9000;
  in {
    woodpecker-server = {
      enable = true;
      package = pkgs.unstable.woodpecker-server;

      environment = {
        WOODPECKER_OPEN = "true";
        WOODPECKER_ORGS = "kitchen";
        WOODPECKER_ADMIN = "chef";
        WOODPECKER_HOST = "https://build.buffets.kitchen/";
        WOODPECKER_SERVER_ADDR = ":${toString port}";
        WOODPECKER_GRPC_ADDR = ":${toString grpc-port}";

        WOODPECKER_GITEA = "true";
        WOODPECKER_GITEA_URL = "https://buffets.kitchen/";
      };

      environmentFile = config.age.secrets.woodpecker.path;
    };

    woodpecker-agents.agents = {
      podman = {
        package = pkgs.unstable.woodpecker-agent;

        environment = {
          WOODPECKER_SERVER = "localhost:${toString grpc-port}";
          WOODPECKER_BACKEND = "docker";
          DOCKER_HOST = "unix:///run/podman/podman.sock";
        };

        environmentFile = config.age.secrets.woodpecker.path;
        extraGroups = ["podman"];
      };
    };

    nginx = {
      virtualHosts."build.buffets.kitchen" = {
        useACMEHost = "buffet.sh";
        forceSSL = true;

        locations = {
          "/" = {
            proxyPass = "http://localhost:${toString port}";
          };
        };
      };
    };
  };
}
feat(woodpecker): set up agent 2024-06-23 09:57:25 +00:00			`{`
			`config,`
			`pkgs,`
			`...`
			`}: {`
feat: setup woodpecker CI 2024-06-21 09:25:02 +00:00			`age.secrets.woodpecker.file = ../../secrets/woodpecker.age;`

			`services = let`
			`port = 3007;`
feat(woodpecker): set up agent 2024-06-23 09:57:25 +00:00			`grpc-port = 9000;`
feat: setup woodpecker CI 2024-06-21 09:25:02 +00:00			`in {`
			`woodpecker-server = {`
			`enable = true;`
feat(woodpecker): set up agent 2024-06-23 09:57:25 +00:00			`package = pkgs.unstable.woodpecker-server;`
feat: setup woodpecker CI 2024-06-21 09:25:02 +00:00
			`environment = {`
			`WOODPECKER_OPEN = "true";`
			`WOODPECKER_ORGS = "kitchen";`
			`WOODPECKER_ADMIN = "chef";`
fix: set woodpecker to use correct url 2024-06-21 10:08:08 +00:00			`WOODPECKER_HOST = "https://build.buffets.kitchen/";`
feat: setup woodpecker CI 2024-06-21 09:25:02 +00:00			`WOODPECKER_SERVER_ADDR = ":${toString port}";`
fix(woodpecker): use grpc port for grpc port 2024-06-23 11:17:58 +00:00			`WOODPECKER_GRPC_ADDR = ":${toString grpc-port}";`
feat: setup woodpecker CI 2024-06-21 09:25:02 +00:00
fix: use gitea env vars for woodpecker Apparently forgejo just doesn't work yet. 2024-06-23 11:02:59 +00:00			`WOODPECKER_GITEA = "true";`
			`WOODPECKER_GITEA_URL = "https://buffets.kitchen/";`
feat: setup woodpecker CI 2024-06-21 09:25:02 +00:00			`};`

			`environmentFile = config.age.secrets.woodpecker.path;`
			`};`

feat(woodpecker): set up agent 2024-06-23 09:57:25 +00:00			`woodpecker-agents.agents = {`
			`podman = {`
			`package = pkgs.unstable.woodpecker-agent;`

			`environment = {`
			`WOODPECKER_SERVER = "localhost:${toString grpc-port}";`
			`WOODPECKER_BACKEND = "docker";`
			`DOCKER_HOST = "unix:///run/podman/podman.sock";`
			`};`

			`environmentFile = config.age.secrets.woodpecker.path;`
			`extraGroups = ["podman"];`
			`};`
			`};`

feat: setup woodpecker CI 2024-06-21 09:25:02 +00:00			`nginx = {`
			`virtualHosts."build.buffets.kitchen" = {`
			`useACMEHost = "buffet.sh";`
			`forceSSL = true;`

			`locations = {`
			`"/" = {`
			`proxyPass = "http://localhost:${toString port}";`
			`};`
			`};`
			`};`
			`};`
			`};`
			`}`