on:
  # push:
  #   branches: [main]
  schedule:
    - cron: 0 */6 * * *
jobs:
  update:
    runs-on: native
    steps:
      - name: Check out repository code
        uses: actions/checkout@v4
        with:
          ref: develop
          # PUSH_TOKEN must be a PAT with write access to the repo.
          # It bypasses branch protection rules that block the default GITHUB_TOKEN.
          token: ${{ secrets.PUSH_TOKEN }}
      - name: Update flake
        if: ${{ github.event_name == 'schedule' }}
        run: |
          cd ${{ env.FORGEJO_WORKSPACE }}
          nix flake update
      - name: Commit new Flake.lock
        if: ${{ github.event_name == 'schedule' }}
        run: |
          git config --local user.email "forgejo-actions[bot]@christophhollizeck.dev"
          git config --local user.name "forgejo-actions[bot]"
          git commit -a -m "chore: update flake"
      - name: Push changes
        if: ${{ github.event_name == 'schedule' }}
        run: git push

      # - name: Build Loptland
      #   run: |
      #     cd ${{ env.FORGEJO_WORKSPACE }}
      #     nix build .#nixosConfigurations.loptland.config.system.build.toplevel

      # - name: Build Yggdrasil
      #   run: |
      #     cd ${{ env.FORGEJO_WORKSPACE }}
      #     nix build .#nixosConfigurations.yggdrasil.config.system.build.toplevel