modules: services: woodpecker: use 'path' option

One less thing to modify in the systemd service.
2023-09-13 12:40:19 +00:00 · 2023-09-13 12:40:19 +00:00 · e979589174
parent f3f8c8fc3f
commit e979589174
1 changed files with 11 additions and 11 deletions
--- a/modules/services/woodpecker/agent-exec/default.nix
+++ b/modules/services/woodpecker/agent-exec/default.nix
@ -21,15 +21,6 @@ in
          PAGER = "cat";
        };

-        environmentFile = [ cfg.sharedSecretFile ];
-      };
-    };
-
-    # Adjust runner service for nix usage
-    systemd.services.woodpecker-agent-exec = {
-      # Might break deployment
-      restartIfChanged = false;
-
        path = with pkgs; [
          woodpecker-plugin-git
          bash
@ -41,6 +32,15 @@ in
          nix
        ];

+        environmentFile = [ cfg.sharedSecretFile ];
+      };
+    };
+
+    # Adjust runner service for nix usage
+    systemd.services.woodpecker-agent-exec = {
+      # Might break deployment
+      restartIfChanged = false;
+
      serviceConfig = {
        # Same option as upstream, without @setuid
        SystemCallFilter = lib.mkForce "~@clock @privileged @cpu-emulation @debug @keyring @module @mount @obsolete @raw-io @reboot @swap";