Blunkall-Technologies/Olympus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

test remote builds

Browse Source
This commit is contained in:
Nathan
2025-08-23 09:49:02 -05:00
parent 0fdfa33016
commit a62a69c7ce
8 changed files with 121 additions and 32 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
system-config/configuration/homebox/default.nix
View File

@@ -21,6 +21,21 @@
systemd-boot.enable = true;
efi.canTouchEfiVariables = true;
};
binfmt.emulatedSystems = lib.mkIf config.sysconfig.remoteBuildHost [ "aarch64-linux" ];
};
nix.settings.trusted-users = lib.mkIf config.sysconfig.remoteBuildHost [ "remote-builder" ];
users.users."remote-builder" = lib.mkIf config.sysconfig.remoteBuildHost {
isNormalUser = true;
createHome = false;
/*openssh.authorizedKeys.keyFiles = [
config.sops.secrets."remoteBuildClientKeys/laptop".path
];*/
openssh.authorizedKeys.keyFiles = (builtins.partition
(x: (builtins.match "^remoteBuildClientKeys/.+" x) != null)
(builtins.attrNames config.sops.secrets)
).right;
};
hardware = {
@@ -102,7 +117,7 @@
};
sysconfig = {
#remoteBuildHost = true;
remoteBuildHost = true;
host = "homebox";
graphical = true;
users = {