feat(gs/mugwump): Add some buildkite agents

Add a couple of buildkite agents, based off of the config we're using for whitby (thanks!) for building my own projects that are closed source. Change-Id: I2c73538595002fdf4116f534dc9a5806f17e0558 Reviewed-on: https://cl.tvl.fyi/c/depot/+/2044 Reviewed-by: glittershark <grfn@gws.fyi> Tested-by: BuildkiteCI
2020-10-12 23:27:07 -04:00 · 2020-10-12 23:27:07 -04:00 · 8cb7118f7d
commit 8cb7118f7d
parent 199738955c
1 changed files with 25 additions and 5 deletions
--- a/users/glittershark/system/system/machines/mugwump.nix
+++ b/users/glittershark/system/system/machines/mugwump.nix
@ -117,6 +117,12 @@ with lib;
    };
  };
  security.acme.certs."metrics.gws.fyi" = {
    dnsProvider = "namecheap";
    credentialsFile = "/etc/secrets/namecheap.env";
    webroot = mkForce null;
  };
  services.prometheus = {
    enable = true;
    exporters = {
@ -178,9 +184,23 @@ with lib;
    timerConfig.OnCalendar = "minutely";
  };
-  security.acme.certs."metrics.gws.fyi" = {
+  virtualisation.docker.enable = true;
-    dnsProvider = "namecheap";
+
-    credentialsFile = "/etc/secrets/namecheap.env";
+  services.buildkite-agents = listToAttrs (map (n: rec {
-    webroot = mkForce null;
+    name = "mugwump-${toString n}";
-  };
+    value = {
      inherit name;
      enable = true;
      tokenPath = "/etc/secrets/buildkite-agent-token";
      privateSshKeyPath = "/etc/secrets/buildkite-ssh-key";
      runtimePackages = with pkgs; [
        docker
        nix
        gnutar
      ];
    };
  }) (range 1 2));
  users.users."buildkite-agent-mugwump-1".extraGroups = [ "docker" ];
  users.users."buildkite-agent-mugwump-2".extraGroups = [ "docker" ];
 }