Compare commits
No commits in common. "6d826ee4d2204b52e9ad7acd2f9bde2597dabfde" and "2e8996767eef27dd051657c25c0c60ef0b3abf40" have entirely different histories.
6d826ee4d2
...
2e8996767e
|
@ -7,25 +7,34 @@ variables: &nix-config
|
||||||
NIXPKGS_ALLOW_INSECURE: "1"
|
NIXPKGS_ALLOW_INSECURE: "1"
|
||||||
|
|
||||||
steps:
|
steps:
|
||||||
- name: Check Flake
|
- name: Configure Nix Channels
|
||||||
image: nixos/nix:latest
|
image: bash
|
||||||
pull: true
|
|
||||||
commands:
|
commands:
|
||||||
- nix-channel --add https://nixos.org/channels/nixos-$${NIXOS_VERSION} nixos
|
- nix-channel --add https://nixos.org/channels/nixos-$${NIXOS_VERSION} nixos
|
||||||
- nix-channel --update
|
- nix-channel --update
|
||||||
|
environment:
|
||||||
|
*nix-config
|
||||||
|
when:
|
||||||
|
- evaluate: 'CI_PIPELINE_EVENT != "cron" && CI_PIPELINE_EVENT != "schedule"'
|
||||||
|
|
||||||
|
- name: Check Flake
|
||||||
|
image: bash
|
||||||
|
commands:
|
||||||
- nix flake check
|
- nix flake check
|
||||||
environment:
|
environment:
|
||||||
*nix-config
|
*nix-config
|
||||||
when:
|
when:
|
||||||
- evaluate: 'CI_PIPELINE_EVENT != "cron" && CI_PIPELINE_EVENT != "schedule"'
|
- evaluate: 'CI_PIPELINE_EVENT != "cron" && CI_PIPELINE_EVENT != "schedule"'
|
||||||
|
|
||||||
- name: Deploy
|
- name: Place SSH Key
|
||||||
image: nixos/nix:latest
|
image: bash
|
||||||
pull: true
|
commands:
|
||||||
|
- echo $${SSH_PRIVATE_KEY}} > .privkey
|
||||||
|
- chmod 0600 .privkey
|
||||||
|
|
||||||
|
- name: Deploy
|
||||||
|
image: bash
|
||||||
commands:
|
commands:
|
||||||
- nix-env -iA nixos.openssh
|
|
||||||
- eval "$(ssh-agent -s)"
|
|
||||||
- echo $${SSH_PRIVATE_KEY}} | ssh-add -
|
|
||||||
- nix develop --command deploy
|
- nix develop --command deploy
|
||||||
environment:
|
environment:
|
||||||
*nix-config
|
*nix-config
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
{ config, pkgs, lib, ... }:
|
{ config, pkgs, lib, ... }:
|
||||||
{
|
{
|
||||||
networking.firewall.allowedTCPPorts = [ 6080 ];
|
networking.firewall.allowedTCPPorts = [ ];
|
||||||
services.transfer-sh = {
|
services.transfer-sh = {
|
||||||
enable = true;
|
enable = true;
|
||||||
settings = {
|
settings = {
|
||||||
|
@ -12,5 +12,8 @@
|
||||||
PURGE_DAYS = "90";
|
PURGE_DAYS = "90";
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
systemd.services.transfer-sh.serviceConfig.ReadWritePaths = lib.mkForce "/mnt/data/transfer-sh";
|
systemd.services.transfer-sh.serviceConfig.ReadWritePaths = lib.mkForce [
|
||||||
|
"/mnt/data/transfer-sh/temp"
|
||||||
|
"/mnt/data/transfer-sh/store"
|
||||||
|
];
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in New Issue