aciceri/nixfleet
1
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

hercules-ci things

Browse source
This commit is contained in:
Andrea Ciceri 2024-01-25 11:29:12 +01:00
parent 7da8e645b7
commit 29989bc0ab
Signed by: aciceri
SSH key fingerprint: SHA256:/AagBweyV4Hlfg9u092n8hbHwD5fcB6A3qhDiDA65Rg
1 changed files with 16 additions and 18 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

34
modules/hercules-ci/default.nix
View file

@ -9,24 +9,22 @@
}; };
}; };
# Popola /var/lib/hercules-ci-agent/.ssh/ e /root/ con chiavi in grado di accedere root@cache.aciceri.dev systemd.tmpfiles.rules = [
"d ${config.users.users.root.home}/.aws 770 root root"
"d ${config.users.users.hercules-ci-agent.home}/.aws 770 hercules-ci-agent hercules-ci-agent"
];
# systemd.tmpfiles.rules = [ system.activationScripts.aws-credentials = ''
# "d ${config.users.users.root.home}/.aws 770 root root" install ${config.age.secrets.aws-credentials.path} \
# "d ${config.users.users.hercules-ci-agent.home}/.aws 770 hercules-ci-agent hercules-ci-agent" ${config.users.users.hercules-ci-agent.home}/.aws/credentials \
# ]; -D \
--owner=hercules-ci-agent \
--group=hercules-ci-agent \
--mode=770
# system.activationScripts.aws-credentials = '' install \
# install ${config.age.secrets.aws-credentials.path} \ ${config.age.secrets.aws-credentials.path} \
# ${config.users.users.hercules-ci-agent.home}/.aws/credentials \ -D \
# -D \ ${config.users.users.root.home}/.aws/credentials
# --owner=hercules-ci-agent \ '';
# --group=hercules-ci-agent \
# --mode=770
# install \
# ${config.age.secrets.aws-credentials.path} \
# -D \
# ${config.users.users.root.home}/.aws/credentials
# '';
} }