maurice/snix
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat(grfn/system): Add windtunnel bot github token secret

Browse source 
Change-Id: Ib67526e782fe0bedecd24d9c48dcf189fb8b5b02
Reviewed-on: https://cl.tvl.fyi/c/depot/+/10664
Reviewed-by: aspen <root@gws.fyi>
Autosubmit: aspen <root@gws.fyi>
Tested-by: BuildkiteCI
This commit is contained in:
Aspen Smith 2024-01-18 10:32:03 -05:00 committed by aspen
parent f169a56ad6
commit 8e08dd6970
3 changed files with 19 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

8
users/grfn/system/system/machines/mugwump.nix
View file

@ -96,6 +96,12 @@ with lib;
group = "keys";
mode = "0440";
};
windtunnel-bot-github-token = {
file = secret "windtunnel-bot-github-token";
group = "keys";
mode = "0440";
};
};
services.fail2ban = {
@ -295,6 +301,6 @@ with lib;
users.users."buildkite-agent-mugwump-1" = {
isSystemUser = true;
extraGroups = [ "docker" ];
extraGroups = [ "docker" "keys" ];
};
}