sam/nixos
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

finalise migrate of git server to forgejo

Browse source
This commit is contained in:
Sam 2025-02-22 12:25:33 +00:00
parent ba0ab222b8
commit 2eb3817bce
2 changed files with 21 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
hosts/common/optional/forgejo.nix
View file

@ -1,6 +1,7 @@
{ {
pkgs, pkgs,
configVars, configVars,
lib,
... ...
}: let }: let
forgejoDomain = configVars.domains.forgejo; forgejoDomain = configVars.domains.forgejo;
@ -16,16 +17,35 @@ in {
]; ];
}; };
users.groups.git = {
gid = 1009;
};
users.users.git = {
isNormalUser = true;
home = "/var/lib/forgejo";
uid = 1009;
extraGroups = ["git"];
};
services.openssh = {
authorizedKeysFiles = lib.mkForce [ "/var/lib/forgejo/.ssh/authorized_keys" ];
};
services.forgejo = { services.forgejo = {
enable = true; enable = true;
package = pkgs.forgejo; package = pkgs.forgejo;
database.type = "sqlite3"; database.type = "sqlite3";
lfs.enable = true; lfs.enable = true;
user = "git";
group = "git";
settings = { settings = {
server = { server = {
RUN_USER = "git";
DOMAIN = "git.${forgejoDomain}"; DOMAIN = "git.${forgejoDomain}";
ROOT_URL = "https://git.${forgejoDomain}/"; ROOT_URL = "https://git.${forgejoDomain}/";
HTTP_PORT = forgejoPort; HTTP_PORT = forgejoPort;
SSH_USER = "git";
}; };
service.DISABLE_REGISTRATION = false; service.DISABLE_REGISTRATION = false;
actions = { actions = {

2
hosts/common/optional/nginx/vaultwarden.nix
View file

@ -13,7 +13,7 @@ in {
enable = true; enable = true;
recommendedProxySettings = true; recommendedProxySettings = true;
recommendedTlsSettings = true; recommendedTlsSettings = true;
virtualHosts."${domain}" = { virtualHosts."password.${domain}" = {
enableACME = true; enableACME = true;
forceSSL = true; forceSSL = true;
locations."/" = { locations."/" = {