ci(gh-actions): Extract reusable install-nix action

PetarKirov · PetarKirov · commit 0ac22e1b7b96 · 2024-07-02T18:31:48.000+03:00
diff --git a/.github/generate-matrix/action.yml b/.github/generate-matrix/action.yml
@@ -36,19 +36,12 @@ runs:
   using: "composite"
   steps:
     - name: Install Nix
-      uses: cachix/install-nix-action@v27
-      if: ${{ runner.environment == 'github-hosted' }}
+      uses: metacraft-labs/nixos-modules/.github/install-nix@feat/CD
       with:
-        extra_nix_config: |
-          accept-flake-config = true
-          substituters = https://cache.nixos.org ${{inputs.substituters}}
-          trusted-public-keys = cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY= ${{inputs.trusted-public-keys}}
-          netrc-file = /home/runner/.config/nix/netrc
-    - name: Configure Nix
-      shell: bash
-      run: |
-        mkdir -p /home/runner/.config/nix
-        echo "machine ${{inputs.cachix-cache}}.cachix.org password ${{inputs.cachix-auth-token}}" >> /home/runner/.config/nix/netrc
+        cachix-cache: ${{ inputs.cachix-cache }}
+        cachix-auth-token: ${{ inputs.cachix-auth-token }}
+        trusted-public-keys: ${{ inputs.trusted-public-keys }}
+        substituters: ${{ inputs.substituters }}
 
     - name: Generate CI Matrix
       id: generate-matrix
diff --git a/.github/install-nix/action.yml b/.github/install-nix/action.yml
@@ -0,0 +1,41 @@
+name: Install Nix
+description: Installs Nix and configures substituters and trusted public keys
+
+inputs:
+  cachix-cache:
+    description: The name of the cachix cache to use
+    required: true
+  cachix-auth-token:
+    description: Cachix auth token
+    required: true
+  trusted-public-keys:
+    description: Trusted public keys
+    required: false
+    default: ''
+  substituters:
+    description: Substituters
+    required: false
+    default: ''
+
+runs:
+  using: "composite"
+  steps:
+    - name: Install Nix
+      uses: cachix/install-nix-action@v27
+      if: ${{ runner.environment == 'github-hosted' }}
+      with:
+        extra_nix_config: |
+          accept-flake-config = true
+          allow-import-from-derivation = true
+          substituters = https://cache.nixos.org ${{inputs.substituters}}
+          trusted-public-keys = cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY= ${{inputs.trusted-public-keys}}
+          netrc-file = $HOME/.config/nix/netrc
+
+    - name: Configure Nix
+      if: ${{ runner.environment == 'github-hosted' }}
+      shell: bash
+      run: |
+        mkdir -p $HOME/.config/nix
+        {
+          echo "machine ${{inputs.cachix-cache}}.cachix.org password ${{inputs.cachix-auth-token}}"
+        } >> $HOME/.config/nix/netrc
diff --git a/.github/print-matrix/action.yml b/.github/print-matrix/action.yml
@@ -37,20 +37,12 @@ runs:
   using: "composite"
   steps:
     - name: Install Nix
-      uses: cachix/install-nix-action@v27
-      if: ${{ runner.environment == 'github-hosted' }}
+      uses: metacraft-labs/nixos-modules/.github/install-nix@feat/CD
       with:
-        extra_nix_config: |
-          accept-flake-config = true
-          substituters = https://cache.nixos.org ${{inputs.substituters}}
-          trusted-public-keys = cache.nixos.org-1:6NCHdD59X431o0gWypbMrAURkbJ16ZPMQFGspcDShjY= ${{inputs.trusted-public-keys}}
-          netrc-file = /home/runner/.config/nix/netrc
-        nix-installer-tag: v0.15.1
-    - name: Configure Nix
-      shell: bash
-      run: |
-        mkdir -p /home/runner/.config/nix
-        echo "machine ${{inputs.cachix-cache}}.cachix.org password ${{inputs.cachix-auth-token}}" >> /home/runner/.config/nix/netrc
+        cachix-cache: ${{ inputs.CACHIX_CACHE }}
+        cachix-auth-token: ${{ inputs.CACHIX_AUTH_TOKEN }}
+        trusted-public-keys: ${{ inputs.TRUSTED_PUBLIC_KEYS }}
+        substituters: ${{ inputs.SUBSTITUTERS }}
 
     - name: Print CI Matrix
       id: print-matrix
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -38,13 +38,15 @@ jobs:
     name: Generate Matrix of Matrices
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
-
       - name: Install Nix
-        uses: cachix/install-nix-action@v27
-        if: ${{ runner.environment == 'github-hosted' }}
+        uses: metacraft-labs/nixos-modules/.github/install-nix@feat/CD
         with:
-          extra_nix_config: accept-flake-config = true
+          cachix-cache: ${{ vars.CACHIX_CACHE }}
+          cachix-auth-token: ${{ secrets.CACHIX_AUTH_TOKEN }}
+          trusted-public-keys: ${{ vars.TRUSTED_PUBLIC_KEYS }}
+          substituters: ${{ vars.SUBSTITUTERS }}
+
+      - uses: actions/checkout@v4
 
       - name: Generate Matrix for Matrix
         id: generate-matrix
