diff --git a/machines/fuuko/configuration.nix b/machines/fuuko/configuration.nix index c59ac05..f39501d 100644 --- a/machines/fuuko/configuration.nix +++ b/machines/fuuko/configuration.nix @@ -8,7 +8,6 @@ ./services/binary-cache.nix ./services/dnsmasq.nix ./services/grafana.nix - ./services/hydra.nix ./services/matrix ./services/media-backup.nix ./services/media.nix diff --git a/machines/fuuko/services/hydra.nix b/machines/fuuko/services/hydra.nix deleted file mode 100644 index 87e4a2d..0000000 --- a/machines/fuuko/services/hydra.nix +++ /dev/null @@ -1,54 +0,0 @@ -{ config, lib, pkgs, ... }: -let - cfg = config.services.hydra; -in -{ - services.hydra = { - enable = true; - listenHost = "127.0.0.1"; - port = 3003; - hydraURL = "https://hydra.sbruder.de"; - notificationSender = "hydra@sbruder.de"; - buildMachinesFiles = [ - (pkgs.writeText "hydra-build-machines" '' - # hostname system sshKey maxJobs speedFactor mandatory+supportedFeatures mandatoryFeatures - localhost x86_64-linux - 4 1 kvm,nixos-test - '') - ]; - useSubstitutes = true; - - minimumDiskFreeEvaluator = 10; - minimumDiskFree = 10; - - extraConfig = '' - store_uri = file:///data/cache/nix-binary-cache?secret-key=${config.sops.secrets.binary-cache-secret-key.path} - server_store_uri = file:///data/cache/nix-binary-cache - - upload_logs_to_binary_cache = true - log_prefix = https://nix-cache.sbruder.de/ - ''; - }; - - sops.secrets.binary-cache-secret-key.owner = "hydra-queue-runner"; - systemd.services.hydra-queue-runner.serviceConfig = { - SupplementaryGroups = lib.singleton "keys"; - - Nice = 10; - IOSchedulingPriority = 5; - }; - - # Hydra uses restricted eval, which by default does not work with flakes that - # use git+https inputs - nix.extraOptions = '' - allowed-uris = https://git.sbruder.de/ - ''; - - services.nginx.virtualHosts."hydra.sbruder.de" = { - enableACME = true; - forceSSL = true; - - locations."/" = { - proxyPass = "http://${cfg.listenHost}:${toString cfg.port}"; - }; - }; -}