mirror of
https://github.com/kittywitch/nixfiles.git
synced 2026-02-09 04:19:19 -08:00
65 lines
1.6 KiB
Nix
65 lines
1.6 KiB
Nix
{
|
|
lib,
|
|
config,
|
|
channels,
|
|
env,
|
|
...
|
|
}:
|
|
with lib; {
|
|
imports = [ ./common.nix ];
|
|
config = {
|
|
name = "nodes";
|
|
gh-actions = {
|
|
env = {
|
|
CACHIX_SIGNING_KEY = "\${{ secrets.CACHIX_SIGNING_KEY }}";
|
|
DISCORD_WEBHOOK_LINK = "\${{ secrets.DISCORD_WEBHOOK_LINK }}";
|
|
};
|
|
on = let
|
|
paths = [
|
|
"*"
|
|
/*
|
|
"default.nix"
|
|
"ci/.nix"
|
|
config.ci.gh-actions.path
|
|
*/
|
|
];
|
|
in {
|
|
push = {
|
|
inherit paths;
|
|
};
|
|
pull_request = {
|
|
inherit paths;
|
|
};
|
|
workflow_dispatch = {};
|
|
};
|
|
|
|
jobs = let
|
|
enabledNixOSSystems = filterAttrs (_: system: system.config.ci.enable) channels.nixfiles.systems;
|
|
mkNixOSSystemJob = name: system: nameValuePair "${name}" {
|
|
step.${name} = {
|
|
name = "Build ${name} system closure";
|
|
order = 500;
|
|
run = "nix run .#nf-build-system -- nixosConfigurations.${name}.config.system.build.topLevel ${name} NixOS";
|
|
env = {
|
|
CACHIX_SIGNING_KEY = "\${{ secrets.CACHIX_SIGNING_KEY }}";
|
|
DISCORD_WEBHOOK_LINK = "\${{ secrets.DISCORD_WEBHOOK_LINK }}";
|
|
NF_UPDATE_GIT_COMMIT = "1";
|
|
NF_UPDATE_CACHIX_PUSH = "1";
|
|
NF_CONFIG_ROOT = "\${{ github.workspace }}";
|
|
};
|
|
};
|
|
};
|
|
nixOSSystemJobs = mapAttrs' mkNixOSSystemJob enabledNixOSSystems;
|
|
in nixOSSystemJobs;
|
|
};
|
|
jobs = {
|
|
packages = { ... }: {
|
|
imports = [ ./packages.nix ];
|
|
};
|
|
};
|
|
|
|
ci.gh-actions.checkoutOptions = {
|
|
fetch-depth = 0;
|
|
};
|
|
};
|
|
}
|