linde: automatically upgrade with colmena

author: Alan Pearce 2025-03-10 12:48:11 +0100
committer: Alan Pearce 2025-03-10 12:48:11 +0100
commit: d434b963b14e14ea5fb36c600bd19f6ffb9cd1c3 (patch)
tree: a5a8636729768000bc50d782b6d3965f4809a9c6 /system/linde.nix
parent: 1f522140b56606a3c5ad7114cf04ce0676330212 (diff)
download: nixfiles-d434b963b14e14ea5fb36c600bd19f6ffb9cd1c3.tar.lz
nixfiles-d434b963b14e14ea5fb36c600bd19f6ffb9cd1c3.tar.zst
nixfiles-d434b963b14e14ea5fb36c600bd19f6ffb9cd1c3.zip
1 files changed, 19 insertions, 0 deletions
diff --git a/system/linde.nix b/system/linde.nix
index c1cd53d1..03eb5761 100644
--- a/system/linde.nix
+++ b/system/linde.nix
@@ -30,6 +30,7 @@ in
       ./settings/configuration/nix-linux.nix
       ./settings/pin.nix
       ./settings/services/git-server.nix
+      ./settings/colmena-auto-upgrade.nix
     ];
   age.secrets = {
     paperless =
@@ -89,6 +90,11 @@ in
     enable = true;
   };
   programs.mosh.enable = true;
+  programs.ssh.extraConfig = ''
+    Host ${domain} git.${domain}
+      Hostname git.${domain}
+      User gitolite
+  '';
 
   nix = {
     settings = {
@@ -104,6 +110,19 @@ in
     };
   };
 
+  services.colmenaAutoUpgrade = {
+    enable = true;
+    pullGit = true;
+    useNixShell = true;
+    dates = "03:23";
+    allowReboot = true;
+    randomizedDelaySec = "45 min";
+    rebootWindow = {
+      lower = "03:00";
+      upper = "05:30";
+    };
+  };
+
   services.nix-serve = {
     enable = true;
     package = pkgs.nix-serve-ng;
author	Alan Pearce	2025-03-10 12:48:11 +0100
committer	Alan Pearce	2025-03-10 12:48:11 +0100
commit	d434b963b14e14ea5fb36c600bd19f6ffb9cd1c3 (patch)
tree	a5a8636729768000bc50d782b6d3965f4809a9c6 /system/linde.nix
parent	1f522140b56606a3c5ad7114cf04ce0676330212 (diff)
download	nixfiles-d434b963b14e14ea5fb36c600bd19f6ffb9cd1c3.tar.lz nixfiles-d434b963b14e14ea5fb36c600bd19f6ffb9cd1c3.tar.zst nixfiles-d434b963b14e14ea5fb36c600bd19f6ffb9cd1c3.zip