wip: try to declare trusted actions runner network

This commit is contained in:
teutat3s 2023-12-12 21:31:10 +01:00
parent 59fe49e716
commit 7e796ab9dc
Signed by: teutat3s
GPG key ID: 4FA1D3FA524F22C1
2 changed files with 3 additions and 2 deletions

View file

@ -113,6 +113,4 @@
};
};
};
networking.firewall.trustedInterfaces = [ "docker0" ];
}

View file

@ -10,6 +10,8 @@
mode = "644";
};
networking.firewall.trustedInterfaces = [ "gitea-actions" ];
# forgejo actions runner
# https://forgejo.org/docs/latest/admin/actions/
# https://docs.gitea.com/usage/actions/quickstart
@ -20,6 +22,7 @@
name = config.networking.hostName;
url = "https://git.pub.solar";
tokenFile = config.age.secrets.forgejo-actions-runner-token.path;
settings.container.network = "gitea-actions";
labels = [
# provide a debian 12 bookworm base with Node.js for actions
"debian-latest:docker://node:20-bookworm"