nix-dotfiles/systems/palatine-hill/docker/act-runner.nix

{
  config,
  ...
}:

let
  vars = import ../vars.nix;
  act_path = vars.primary_act;
  act_config_path = ./act_config.yaml;
in
{
  virtualisation.oci-containers.containers = {
    act-stable-latest-main = {
      image = "gitea/act_runner:nightly";
      pull = "always";
      extraOptions = [
        "--stop-signal=SIGINT"
      ];
      labels = {
        "com.centurylinklabs.watchtower.enable" = "true";
        "com.centurylinklabs.watchtower.scope" = "act-runner";
      };
      ports = [ "8088:8088" ];
      volumes = [
        "${act_config_path}:/config.yaml"
        "${act_path}/stable-latest-main/data:/data"
        "/var/run/docker.sock:/var/run/docker.sock"
      ];
      environment = {
        CONFIG_FILE = "/config.yaml";
        GITEA_RUNNER_NAME = "stable-latest-main";
      };
      environmentFiles = [ config.sops.secrets."docker/act-runner".path ];
      log-driver = "local";
    };

    act-stable-latest-1 = {
      image = "gitea/act_runner:nightly";
      pull = "always";
      extraOptions = [
        "--stop-signal=SIGINT"
      ];
      labels = {
        "com.centurylinklabs.watchtower.enable" = "true";
        "com.centurylinklabs.watchtower.scope" = "act-runner";
      };
      volumes = [
        "${./act_config.yaml}:/config.yaml"
        "${act_path}/stable-latest-1/data:/data"
        "/var/run/docker.sock:/var/run/docker.sock"
      ];
      environment = {
        CONFIG_FILE = "/config.yaml";
        GITEA_RUNNER_NAME = "stable-latest-1";
      };
      environmentFiles = [ config.sops.secrets."docker/act-runner".path ];
      log-driver = "local";
    };

    act-stable-latest-2 = {
      image = "gitea/act_runner:nightly";
      pull = "always";
      extraOptions = [
        "--stop-signal=SIGINT"
      ];
      labels = {
        "com.centurylinklabs.watchtower.enable" = "true";
        "com.centurylinklabs.watchtower.scope" = "act-runner";
      };
      volumes = [
        "${act_config_path}:/config.yaml"
        "${act_path}/stable-latest-2/data:/data"
        "/var/run/docker.sock:/var/run/docker.sock"
      ];
      environment = {
        CONFIG_FILE = "/config.yaml";
        GITEA_RUNNER_NAME = "stable-latest-2";
      };
      environmentFiles = [ config.sops.secrets."docker/act-runner".path ];
      log-driver = "local";
    };
  };

  systemd = {
    timers."custom-watchtower@act-runner" = {
      wantedBy = [ "timers.target" ];
      timerConfig = {
        OnBootSec = "20m";
        OnUnitActiveSec = "5m";
        Unit = "custom-watchtower@act-runner.service";
      };
    };
    services."custom-watchtower@act-runner" = {
      bindsTo = [ "docker.service" ];
      after = [ "docker.service" ];
      description = "a watchtower-esque script for systemd-based oci-containers";
      serviceConfig = {
        Type = "oneshot";
        User = "root";
        ExecStart = "${config.nix.package}/bin/nix ${./watchtower.bash} 'com.centurylinklabs.watchtower.scope' 'act-runner'";
      };
    };
  };

  sops.secrets = {
    "docker/act-runner" = {
      owner = "root";
      restartUnits = [
        "docker-act-stable-latest-main.service"
        "docker-act-stable-latest-1.service"
        "docker-act-stable-latest-2.service"
      ];
    };
  };
}
gitea over ssh is working, https in progress Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-11-30 00:30:57 -05:00			`{`
			`config,`
			`...`
			`}:`

			`let`
			`vars = import ../vars.nix;`
			`act_path = vars.primary_act;`
add volume mount for nix Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-03-25 23:24:19 -04:00			`act_config_path = ./act_config.yaml;`
gitea over ssh is working, https in progress Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-11-30 00:30:57 -05:00			`in`
			`{`
add more action runners Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-01-26 12:43:05 -05:00			`virtualisation.oci-containers.containers = {`
more runners 2025-03-03 11:35:05 -05:00			`act-stable-latest-main = {`
push act-runner to nightly for node24 issue 2025-08-24 21:07:45 -04:00			`image = "gitea/act_runner:nightly";`
newer -> always Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-06-01 18:35:15 -04:00			`pull = "always";`
more runners 2025-03-03 11:35:05 -05:00			`extraOptions = [`
			`"--stop-signal=SIGINT"`
			`];`
			`labels = {`
			`"com.centurylinklabs.watchtower.enable" = "true";`
			`"com.centurylinklabs.watchtower.scope" = "act-runner";`
			`};`
			`ports = [ "8088:8088" ];`
			`volumes = [`
add volume mount for nix Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-03-25 23:24:19 -04:00			`"${act_config_path}:/config.yaml"`
more runners 2025-03-03 11:35:05 -05:00			`"${act_path}/stable-latest-main/data:/data"`
			`"/var/run/docker.sock:/var/run/docker.sock"`
			`];`
			`environment = {`
			`CONFIG_FILE = "/config.yaml";`
			`GITEA_RUNNER_NAME = "stable-latest-main";`
			`};`
			`environmentFiles = [ config.sops.secrets."docker/act-runner".path ];`
			`log-driver = "local";`
			`};`

add more action runners Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-01-26 12:43:05 -05:00			`act-stable-latest-1 = {`
push act-runner to nightly for node24 issue 2025-08-24 21:07:45 -04:00			`image = "gitea/act_runner:nightly";`
newer -> always Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-06-01 18:35:15 -04:00			`pull = "always";`
add more action runners Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-01-26 12:43:05 -05:00			`extraOptions = [`
			`"--stop-signal=SIGINT"`
			`];`
			`labels = {`
			`"com.centurylinklabs.watchtower.enable" = "true";`
			`"com.centurylinklabs.watchtower.scope" = "act-runner";`
			`};`
			`volumes = [`
add volume mount for nix Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-03-25 23:24:19 -04:00			`"${./act_config.yaml}:/config.yaml"`
add more action runners Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-01-26 12:43:05 -05:00			`"${act_path}/stable-latest-1/data:/data"`
			`"/var/run/docker.sock:/var/run/docker.sock"`
			`];`
			`environment = {`
			`CONFIG_FILE = "/config.yaml";`
			`GITEA_RUNNER_NAME = "stable-latest-1";`
			`};`
			`environmentFiles = [ config.sops.secrets."docker/act-runner".path ];`
			`log-driver = "local";`
gitea over ssh is working, https in progress Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-11-30 00:30:57 -05:00			`};`
add more action runners Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-01-26 12:43:05 -05:00
			`act-stable-latest-2 = {`
push act-runner to nightly for node24 issue 2025-08-24 21:07:45 -04:00			`image = "gitea/act_runner:nightly";`
newer -> always Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-06-01 18:35:15 -04:00			`pull = "always";`
add more action runners Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-01-26 12:43:05 -05:00			`extraOptions = [`
			`"--stop-signal=SIGINT"`
			`];`
			`labels = {`
			`"com.centurylinklabs.watchtower.enable" = "true";`
			`"com.centurylinklabs.watchtower.scope" = "act-runner";`
			`};`
			`volumes = [`
add volume mount for nix Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-03-25 23:24:19 -04:00			`"${act_config_path}:/config.yaml"`
add more action runners Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2025-01-26 12:43:05 -05:00			`"${act_path}/stable-latest-2/data:/data"`
			`"/var/run/docker.sock:/var/run/docker.sock"`
			`];`
			`environment = {`
			`CONFIG_FILE = "/config.yaml";`
			`GITEA_RUNNER_NAME = "stable-latest-2";`
			`};`
			`environmentFiles = [ config.sops.secrets."docker/act-runner".path ];`
			`log-driver = "local";`
			`};`
artemsion: samba, flakpak, palatine-hill: act-runner, samba, nextcloud - adds happy 17th AO3 skin - removes zen kernel from artemision - adds flatpak to artemision - adds samba client to artemision - add samba import for palatine-hill - fix formatting on act-runner - fix nextcloud pre-generation script to use new image scheme Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-12-04 18:56:39 -05:00			`};`
gitea over ssh is working, https in progress Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-11-30 00:30:57 -05:00
			`systemd = {`
			`timers."custom-watchtower@act-runner" = {`
			`wantedBy = [ "timers.target" ];`
			`timerConfig = {`
			`OnBootSec = "20m";`
			`OnUnitActiveSec = "5m";`
			`Unit = "custom-watchtower@act-runner.service";`
			`};`
			`};`
			`services."custom-watchtower@act-runner" = {`
			`bindsTo = [ "docker.service" ];`
			`after = [ "docker.service" ];`
			`description = "a watchtower-esque script for systemd-based oci-containers";`
			`serviceConfig = {`
			`Type = "oneshot";`
			`User = "root";`
			`ExecStart = "${config.nix.package}/bin/nix ${./watchtower.bash} 'com.centurylinklabs.watchtower.scope' 'act-runner'";`
			`};`
			`};`
			`};`

			`sops.secrets = {`
			`"docker/act-runner" = {`
			`owner = "root";`
			`restartUnits = [`
scale down act runners 2025-03-25 10:24:08 -04:00			`"docker-act-stable-latest-main.service"`
gitea over ssh is working, https in progress Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-11-30 00:30:57 -05:00			`"docker-act-stable-latest-1.service"`
scale down act runners 2025-03-25 10:24:08 -04:00			`"docker-act-stable-latest-2.service"`
gitea over ssh is working, https in progress Signed-off-by: ahuston-0 <aliceghuston@gmail.com> 2024-11-30 00:30:57 -05:00			`];`
			`};`
			`};`
			`}`