From 1af7f4da6145aa2e2a7695f86349fe5cc61d855b Mon Sep 17 00:00:00 2001
From: stuebinm
Date: Sun, 10 Mar 2024 23:24:31 +0100
Subject: abbenay: run a hydra instance for fun

---
 abbenay/configuration.nix |  9 +++++++--
 abbenay/hydra.nix         | 24 ++++++++++++++++++++++++
 2 files changed, 31 insertions(+), 2 deletions(-)
 create mode 100644 abbenay/hydra.nix

(limited to 'abbenay')

diff --git a/abbenay/configuration.nix b/abbenay/configuration.nix
index 62a4a58..99f8a97 100644
--- a/abbenay/configuration.nix
+++ b/abbenay/configuration.nix
@@ -3,14 +3,18 @@
 {
   imports = [
     ./hardware-configuration.nix
-    ./hpc.nix
+    ./hydra.nix
   ];
 
   services.avahi.enable = true;
   services.avahi.nssmdns = true;
 
+  services.openssh.enable = true;
+  users.users.stuebinm.openssh.authorizedKeys.keys = [
+    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIH8e9WrHsknoFwBm/YaigOSz9VI8dXRRR5G9BX4kKt9/ stuebinm@ilex"
+  ];
+
   environment.systemPackages = with pkgs; [
-    gnome3.gnome-tweaks
     flatpak
     # for mounting samba
     cifs-utils
@@ -26,6 +30,7 @@
     # networkmanager shouldn't handle nixos container
     networkmanager.unmanaged = [ "interface-name:ve-*" ];
   };
+
   # nixos containers should have internet access
   networking.nat = {
     enable = true;
diff --git a/abbenay/hydra.nix b/abbenay/hydra.nix
new file mode 100644
index 0000000..2669aec
--- /dev/null
+++ b/abbenay/hydra.nix
@@ -0,0 +1,24 @@
+{ config, lib, pkgs, ... }:
+
+{
+  services.hydra = {
+    enable = true;
+    hydraURL = "http://abbenay:3000";
+    buildMachinesFiles = [];
+    useSubstitutes = true;
+    minimumDiskFree = 10;
+    notificationSender = "hydra@abbenay";
+  };
+
+  nix.settings.allowed-uris = [
+    "https:"
+    "ssh:"
+    "path:"
+    "http:"
+  ];
+
+  # required because of ancient state version defaulting to postgresql 11
+  services.postgresql.package = pkgs.postgresql;
+
+  networking.firewall.allowedTCPPorts = [ 3000 ];
+}
-- 
cgit v1.2.3