nixos-config/.forgejo/workflows/nix_build.yaml

name: Build all NixOS Configurations
on:
  push:
    branches:
      - "**"
  schedule:
    - cron: "30 2/6 * * *" # not to frequent, GitHub only allows a few pulls per hour
jobs:
  nix build:
    runs-on: native
    steps:
      - uses: actions/checkout@v4
      - name: update nix flakes
        if: ${{ github.event_name == 'schedule' }}
        # we need to use our ssh key here because we need access to private flakes
        run: |
          cat <<EOF > .ssh_key
          ${{ secrets.SSH_KEY }}
          EOF
          chmod 600 .ssh_key

          eval $(ssh-agent)
          ssh-add .ssh_key

          nix flake update

          echo $SSH_AGENT_PID
          kill $SSH_AGENT_PID
          rm .ssh_key
      - name: nix flake archive/check
        # we need to use our ssh key here because we need access to private flakes
        run: |
          cat <<EOF > .ssh_key
          ${{ secrets.SSH_KEY }}
          EOF
          chmod 600 .ssh_key

          eval $(ssh-agent)
          ssh-add .ssh_key

          nix flake archive
          nix flake check --verbose --log-format raw

          echo $SSH_AGENT_PID
          kill $SSH_AGENT_PID
          rm .ssh_key
      - name: nix build orbi
        run: nix build .#nixosConfigurations.orbi.config.system.build.toplevel
      - name: nix build cream
        run: nix build .#nixosConfigurations.cream.config.system.build.toplevel
      - name: nix build cherry
        run: nix build .#nixosConfigurations.cherry.config.system.build.toplevel
      - name: nix build chungus
        run: nix build .#nixosConfigurations.chungus.config.system.build.toplevel
      - name: nix build usbstick
        run: nix build .#nixosConfigurations.usbstick.config.system.build.toplevel
      - name: commit & push
        if: ${{ github.event_name == 'schedule' }}
        # only if all nix builds are fine we update our branch
        run: |
          git config --local user.email "action@git.ingolf-wagner.de"
          git config --local user.name "Forgejo Action :robot:"

          git diff --quiet && \
          git diff --staged --quiet || \
          (git commit -am ":arrow_up: nix flake update" && git push)
update workflows 2024-07-20 22:32:37 +02:00			`name: Build all NixOS Configurations`
			`on:`
try 2024-07-21 12:27:57 +02:00			`push:`
			`branches:`
reformat 2024-07-22 00:18:48 +02:00			`- "**"`
try with schedule 2024-07-21 12:29:29 +02:00			`schedule:`
increase update attempt rate. 2024-08-22 22:14:58 +02:00			`- cron: "30 2/6 * * *" # not to frequent, GitHub only allows a few pulls per hour`
use forgejo-runner 2024-07-19 19:00:35 +02:00			`jobs:`
update workflows 2024-07-20 22:32:37 +02:00			`nix build:`
use forgejo-runner 2024-07-19 19:00:35 +02:00			`runs-on: native`
			`steps:`
try to fix the git push frogejo action 2024-07-21 12:24:00 +02:00			`- uses: actions/checkout@v4`
try with schedule 2024-07-21 12:32:04 +02:00			`- name: update nix flakes`
			`if: ${{ github.event_name == 'schedule' }}`
add comments 2024-07-21 13:07:09 +02:00			`# we need to use our ssh key here because we need access to private flakes`
try with schedule 2024-07-21 12:32:04 +02:00			`run: \|`
			`cat <<EOF > .ssh_key`
			`${{ secrets.SSH_KEY }}`
			`EOF`
			`chmod 600 .ssh_key`

			`eval $(ssh-agent)`
			`ssh-add .ssh_key`

			`nix flake update`

			`echo $SSH_AGENT_PID`
			`kill $SSH_AGENT_PID`
			`rm .ssh_key`
add comments 2024-07-21 13:07:09 +02:00			`- name: nix flake archive/check`
			`# we need to use our ssh key here because we need access to private flakes`
try to fix the git push frogejo action 2024-07-21 12:15:56 +02:00			`run: \|`
renamed ssh key in action script 2024-07-21 12:42:35 +02:00			`cat <<EOF > .ssh_key`
try to fix the git push frogejo action 2024-07-21 12:15:56 +02:00			`${{ secrets.SSH_KEY }}`
			`EOF`
renamed ssh key in action script 2024-07-21 12:42:35 +02:00			`chmod 600 .ssh_key`
try to fix the git push frogejo action 2024-07-21 12:15:56 +02:00
			`eval $(ssh-agent)`
renamed ssh key in action script 2024-07-21 12:42:35 +02:00			`ssh-add .ssh_key`
try to fix the git push frogejo action 2024-07-21 12:15:56 +02:00
try 2024-07-21 12:26:11 +02:00			`nix flake archive`
try how it kinda should work 2024-07-21 12:33:53 +02:00			`nix flake check --verbose --log-format raw`
try to fix the git push frogejo action 2024-07-21 12:15:56 +02:00
			`echo $SSH_AGENT_PID`
			`kill $SSH_AGENT_PID`
renamed ssh key in action script 2024-07-21 12:42:35 +02:00			`rm .ssh_key`
try how it kinda should work 2024-07-21 12:33:53 +02:00			`- name: nix build orbi`
			`run: nix build .#nixosConfigurations.orbi.config.system.build.toplevel`
			`- name: nix build cream`
			`run: nix build .#nixosConfigurations.cream.config.system.build.toplevel`
			`- name: nix build cherry`
			`run: nix build .#nixosConfigurations.cherry.config.system.build.toplevel`
			`- name: nix build chungus`
			`run: nix build .#nixosConfigurations.chungus.config.system.build.toplevel`
give access to wg0 in usbstick 2024-08-09 16:07:11 +02:00			`- name: nix build usbstick`
			`run: nix build .#nixosConfigurations.usbstick.config.system.build.toplevel`
add comments 2024-07-21 13:07:09 +02:00			`- name: commit & push`
try how it kinda should work (again) 2024-07-21 12:36:44 +02:00			`if: ${{ github.event_name == 'schedule' }}`
add comments 2024-07-21 13:07:09 +02:00			`# only if all nix builds are fine we update our branch`
try how it kinda should work (again) 2024-07-21 12:36:44 +02:00			`run: \|`
			`git config --local user.email "action@git.ingolf-wagner.de"`
use gitmojis 2024-07-21 12:43:38 +02:00			`git config --local user.name "Forgejo Action :robot:"`
try how it kinda should work (again) 2024-07-21 12:36:44 +02:00
			`git diff --quiet && \`
			`git diff --staged --quiet \|\| \`
use gitmojis 2024-07-21 12:43:38 +02:00			`(git commit -am ":arrow_up: nix flake update" && git push)`