-
Notifications
You must be signed in to change notification settings - Fork 19
44 lines (38 loc) · 1.47 KB
/
makemake.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
name: makemake
on: { push: { branches: [ 'main' ] } }
jobs:
deploy:
environment: makemake
runs-on: ubuntu-latest
env:
SSH_KEY: ${{ secrets.SSH_KEY }}
FLAKE_REF_SHORT: github:${{ github.repository }}/${{ github.sha }}#makemake
FLAKE_REF_TOPLEVEL: github:${{ github.repository }}/${{ github.sha }}#nixosConfigurations.makemake.config.system.build.toplevel
SSH_HOST: [email protected]
steps:
- uses: 'DeterminateSystems/nix-installer-action@main'
name: 'Install Nix'
with: { extra-conf: 'experimental-features = no-url-literals' }
- name: Prepare SSH
run: |
mkdir -p ~/.ssh
printenv SSH_KEY > ~/.ssh/id_ed25519
chmod 600 ~/.ssh/id_ed25519
echo "makemake.ngi.nixos.org ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAID4ejRuAQPx6AbuS1u+Q7UUi1TIwkY2S//kjgpBxYNfU" \
> ~/.ssh/known_hosts
- name: Build
run: |
nix run nixpkgs#nixos-rebuild -- build \
--flake "$FLAKE_REF_SHORT" \
--build-host "$SSH_HOST" \
--target-host "$SSH_HOST"
- name: Difference
run: |
ssh "$SSH_HOST" -- \
"nix build \"$FLAKE_REF_TOPLEVEL\" && nix run nixpkgs#nvd -- diff /run/current-system result"
- name: Deploy
run: |
nix run nixpkgs#nixos-rebuild -- switch \
--flake "$FLAKE_REF_SHORT" \
--build-host "$SSH_HOST" \
--target-host "$SSH_HOST"