diff options
| author | Max Audron <audron@cocaine.farm> | 2023-10-17 16:06:20 +0200 |
|---|---|---|
| committer | Max Audron <audron@cocaine.farm> | 2023-10-17 16:06:34 +0200 |
| commit | 767c382e1e81ddbec447055f57132e62f850e048 (patch) | |
| tree | efd0faea0365c621107c0c8d7a172481668b4d8b /modules/hydra/default.nix | |
| parent | force ssl on nginx hosts (diff) | |
deploy hydra
Diffstat (limited to 'modules/hydra/default.nix')
| -rw-r--r-- | modules/hydra/default.nix | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/modules/hydra/default.nix b/modules/hydra/default.nix new file mode 100644 index 0000000..7e0064b --- /dev/null +++ b/modules/hydra/default.nix @@ -0,0 +1,30 @@ +{ self, config, lib, pkgs, ... }: + +with self.lib.nginx; +{ + services.hydra = { + enable = true; + hydraURL = "https://hydra.vapor.systems"; + notificationSender = "hydra@localhost"; + buildMachinesFiles = [ ]; + useSubstitutes = true; + extraConfig = lib.readFile ./hydra.conf; + }; + + secrets = { + hydraLdap = { + source = ../../secrets/authentik/hydra; + dest = "/var/lib/hydra/ldap-password.conf"; + owner = "hydra"; + group = "hydra"; + permissions = "0440"; + }; + }; + + services.nginx = { + enable = true; + virtualHosts = { + "hydra.vapor.systems" = (proxyDomain "vapor.systems" "http://127.0.0.1:3000/"); + }; + }; +} |