Login into container registry using Skopeo

Remove experimental feature flags
Bump forgejo-nix-action image version

.forgejo/workflows/cache.yaml

@@ -3,7 +3,7 @@ jobs:
   push:
     runs-on: docker
     container:
-      image: git.kun.is/home/forgejo-nix-action:9b44b726c0b6eadc2e3006ec1fa1338a1a2e79f0
+      image: git.kun.is/home/forgejo-nix-action:687d16c49ea7936068bac64ec68c480a9d681962
     steps:
       - name: Clone repository
         run: git clone https://git.kun.is/home/container-images.git checkout
@@ -12,18 +12,19 @@ jobs:
           /bin/attic login local https://attic.kun.is ${{ secrets.ATTIC_TOKEN }}
           /bin/attic use home
       - name: Log into container registry
-        run: echo -n "${{ secrets.RUNNER_TOKEN }}" | /bin/docker login https://git.kun.is --username pim --password-stdin
+        # run: echo -n "${{ secrets.RUNNER_TOKEN }}" | /bin/docker login https://git.kun.is --username pim --password-stdin
+        run: /bin/skopeo login --username pim --password ${{ secrets.RUNNER_TOKEN }} https://git.kun.is
       - name: Build Pim's blog
-        run: nix build --extra-experimental-features nix-command --extra-experimental-features flakes --out-link blog-pim ./checkout#packages.x86_64-linux.blog-pim
+        run: nix build --out-link blog-pim ./checkout#packages.x86_64-linux.blog-pim
       - name: Push Pim's blog to Nix cache
         run: /bin/attic push home blog-pim
       - name: Push Pim's blog to container registry
-        run: nix --extra-experimental-features "nix-command flakes" run ./checkout#packages.x86_64-linux.release ./checkout#packages.x86_64-linux.blog-pim blog-pim ./checkout
+        run: nix run ./checkout#packages.x86_64-linux.release ./checkout#packages.x86_64-linux.blog-pim blog-pim ./checkout
       - name: Build forgejo-nix-action
-        run: nix build --extra-experimental-features nix-command --extra-experimental-features flakes --no-allow-dirty --out-link forgejo-nix-action ./checkout#packages.x86_64-linux.forgejo-nix-action
+        run: nix build --no-allow-dirty --out-link forgejo-nix-action ./checkout#packages.x86_64-linux.forgejo-nix-action
       - name: Push forgjeo-nix-action to Nix cache
         run: /bin/attic push home forgejo-nix-action
       - name: Build Atticd
-        run: nix build --extra-experimental-features nix-command --extra-experimental-features flakes --no-allow-dirty --out-link atticd ./checkout#packages.x86_64-linux.atticd
+        run: nix build --no-allow-dirty --out-link atticd ./checkout#packages.x86_64-linux.atticd
       - name: Push atticd to Nix cache
         run: /bin/attic push home atticd

forgejo-nix-action.nix

@@ -20,7 +20,9 @@ let
   nixConfDrv = pkgs.stdenv.mkDerivation {
     name = "nix.conf";
     dontUnpack = true;
-    installPhase = "install -Dm755 ${nixConf} $out/etc/nix/nix.conf";
+    installPhase = ''
+      install -Dm755 ${nixConf} $out/etc/nix/nix.conf
+    '';
   };
 in
 {
@@ -31,14 +33,9 @@ in
 
     copyToRoot = pkgs.buildEnv {
       name = "image-root";
-      paths = with pkgs; [ coreutils attic-client docker-client nixConfDrv ];
+      # TODO: Maybe we don't even want these binaries in the base image, but run everything through nix-run?
-      pathsToLink = [ "/bin" "/etc/nix" ];
+      paths = with pkgs; [ coreutils attic-client skopeo nixConfDrv ];
+      pathsToLink = [ "/bin" "/etc" ];
     };
-
-    # config = {
-    #   Env = [
-    #     "PATH=/bin:/root/.nix-profile/bin:/nix/var/nix/profiles/default/bin:/nix/var/nix/profiles/default/sbin"
-    #   ];
-    # };
   };
 })