system/machines/magenta/services/woodpecker/common.nix

let
  data = import ./data.secret.nix;
  inherit (data) userServer userAgent group;
in
{
  users.groups.${group} = { };

  users.users.${userServer} = {
    description = "Woodpecker CI Server";
    isSystemUser = true;
    createHome = true;
    inherit group;
  };

  users.users.${userAgent} = {
    isSystemUser = true;
    inherit group;
  };
  users.groups.docker.members = [ userAgent userServer ];

  age.secrets.woodpecker-common-env.file = ../../../../secrets/woodpecker-common-env.age;
  age.secrets.woodpecker-server-env.file = ../../../../secrets/woodpecker-server-env.age;
  age.secrets.woodpecker-docker-config = {
    file = ../../../../secrets/docker-config.json.age;
    mode = "440";
    inherit group;
  };
}
machines/magenta: add woodpecker ci service 2023-03-09 14:15:44 +03:00			`let`
			`data = import ./data.secret.nix;`
			`inherit (data) userServer userAgent group;`
			`in`
			`{`
			`users.groups.${group} = { };`

			`users.users.${userServer} = {`
			`description = "Woodpecker CI Server";`
			`isSystemUser = true;`
			`createHome = true;`
			`inherit group;`
			`};`

			`users.users.${userAgent} = {`
			`isSystemUser = true;`
			`inherit group;`
			`};`
			`users.groups.docker.members = [ userAgent userServer ];`

			`age.secrets.woodpecker-common-env.file = ../../../../secrets/woodpecker-common-env.age;`
			`age.secrets.woodpecker-server-env.file = ../../../../secrets/woodpecker-server-env.age;`
			`age.secrets.woodpecker-docker-config = {`
			`file = ../../../../secrets/docker-config.json.age;`
			`mode = "440";`
			`inherit group;`
			`};`
			`}`