cryodev/hosts/cryodev-main/services/forgejo-runner.nix

{
  config,
  outputs,
  constants,
  ...
}:

{
  imports = [
    outputs.nixosModules.forgejo-runner
  ];

  services.forgejo-runner = {
    enable = true;
    url = "https://${constants.services.forgejo.fqdn}";
    tokenFile = config.sops.templates."forgejo-runner-token".path;
  };

  sops.secrets."forgejo-runner/token" = {
    mode = "0400";
  };

  sops.templates."forgejo-runner-token" = {
    content = ''
      TOKEN=${config.sops.placeholder."forgejo-runner/token"}
    '';
  };
}