Cloonar/nixos
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

try again gitea

Browse Source
This commit is contained in:
Dominik Polakovics Polakovics
2023-12-04 12:42:50 +01:00
parent ffec38c03c
commit 3befd4ebb8
1 changed files with 48 additions and 48 deletions
Download Patch File Download Diff File Expand all files Collapse all files

96
hosts/fw.cloonar.com/modules/gitea.nix
View File

@@ -104,12 +104,12 @@ in
# privateNetwork = true; # privateNetwork = true;
# hostBridge = "server"; # hostBridge = "server";
# localAddress = "10.42.97.2"; # localAddress = "10.42.97.2";
bindMounts = { # bindMounts = {
"/var/lib/gitea" = { # "/var/lib/gitea" = {
hostPath = "/var/lib/gitea/"; # hostPath = "/var/lib/gitea/";
isReadOnly = false; # isReadOnly = false;
}; # };
}; # };
# bindMounts = { # bindMounts = {
# "/var/lib/acme/gitea/" = { # "/var/lib/acme/gitea/" = {
# hostPath = "${security.acme.certs.${domain}.directory}"; # hostPath = "${security.acme.certs.${domain}.directory}";
@@ -118,7 +118,7 @@ in
# }; # };
config = { lib, config, pkgs, ... }: { config = { lib, config, pkgs, ... }: {
networking = { networking = {
hostName = "gitea"; # hostName = "gitea";
# interfaces.eth0.useDHCP = true; # interfaces.eth0.useDHCP = true;
interfaces.mv-vserver = { interfaces.mv-vserver = {
ipv4.addresses = [ { address = "10.42.97.2"; prefixLength = 24; } ]; ipv4.addresses = [ { address = "10.42.97.2"; prefixLength = 24; } ];
@@ -128,49 +128,49 @@ in
# allowedTCPPorts = [ 22 80 443 ]; # allowedTCPPorts = [ 22 80 443 ];
# }; # };
# Use systemd-resolved inside the container # Use systemd-resolved inside the container
useHostResolvConf = false; # useHostResolvConf = false;
}; };
services.resolved.enable = true; # services.resolved.enable = true;
services.nginx.enable = true; # services.nginx.enable = true;
services.nginx.virtualHosts."${domain}" = { # services.nginx.virtualHosts."${domain}" = {
sslCertificate = "/var/lib/acme/gitea/fullchain.pem"; # sslCertificate = "/var/lib/acme/gitea/fullchain.pem";
sslCertificateKey = "/var/lib/acme/gitea/key.pem"; # sslCertificateKey = "/var/lib/acme/gitea/key.pem";
sslTrustedCertificate = "/var/lib/acme/gitea/chain.pem"; # sslTrustedCertificate = "/var/lib/acme/gitea/chain.pem";
forceSSL = true; # forceSSL = true;
locations."/" = { # locations."/" = {
proxyPass = "http://localhost:3001/"; # proxyPass = "http://localhost:3001/";
}; # };
}; # };
#
nixpkgs.config.permittedInsecurePackages = [ # nixpkgs.config.permittedInsecurePackages = [
"gitea-1.19.4" # "gitea-1.19.4"
]; # ];
#
services.gitea = { # services.gitea = {
enable = true; # enable = true;
appName = "Cloonar Gitea server"; # Give the site a name # appName = "Cloonar Gitea server"; # Give the site a name
settings = { # settings = {
server = { # server = {
ROOT_URL = "https://${domain}/"; # ROOT_URL = "https://${domain}/";
HTTP_PORT = 3001; # HTTP_PORT = 3001;
DOMAIN = domain; # DOMAIN = domain;
}; # };
openid = { # openid = {
ENABLE_OPENID_SIGNIN = false; # ENABLE_OPENID_SIGNIN = false;
ENABLE_OPENID_SIGNUP = true; # ENABLE_OPENID_SIGNUP = true;
WHITELISTED_URIS = "auth.example.com"; # WHITELISTED_URIS = "auth.example.com";
}; # };
service = { # service = {
DISABLE_REGISTRATION = false; # DISABLE_REGISTRATION = false;
ALLOW_ONLY_EXTERNAL_REGISTRATION = true; # ALLOW_ONLY_EXTERNAL_REGISTRATION = true;
SHOW_REGISTRATION_BUTTON = false; # SHOW_REGISTRATION_BUTTON = false;
}; # };
webhook.ALLOWED_HOST_LIST = "drone.cloonar.com"; # webhook.ALLOWED_HOST_LIST = "drone.cloonar.com";
}; # };
}; # };
#
system.stateVersion = "23.05"; # system.stateVersion = "23.05";
}; };
}; };
} }