commit 3067e5cf0c8f3cd7e22f4f8b98ce7e5dd1757c66 · ptr.pet/ark

+36

hosts/wolumonde/modules/forgejo.nix

···

       1
       +
       {pkgs, config, ...}: {

     

       2
       +
         services.forgejo = {

     

       3
       +
           enable = true;

     

       4
       +
           package = pkgs.forgejo;

     

       5
       +
           lfs.enable = true;

     

       6
       +
           settings = {

     

       7
       +
             DEFAULT.APP_NAME = "meow :3";

     

       8
       +
             server = {

     

       9
       +
               DOMAIN = "git.gaze.systems";

     

       10
       +
               ROOT_URL = "https://git.gaze.systems/";

     

       11
       +
               HTTP_PORT = 9008;

     

       12
       +
             };

     

       13
       +
             service = {

     

       14
       +
               DISABLE_REGISTRATION = true;

     

       15
       +
             };

     

       16
       +
             session.COOKIE_SECURE = true;

     

       17
       +
             attachment = {

     

       18
       +
               MAX_SIZE = 50;

     

       19
       +
             };

     

       20
       +
             ui = {

     

       21
       +
               DEFAULT_SHOW_FULL_NAME = true;

     

       22
       +
             };

     

       23
       +
           };

     

       24
       +
         };

     

       25
       +
       

     

       26
       +
         services.nginx.virtualHosts."git.gaze.systems" = {

     

       27
       +
           useACMEHost = "gaze.systems";

     

       28
       +
           forceSSL = true;

     

       29
       +
           locations."/" = {

     

       30
       +
             extraConfig = ''

     

       31
       +
               client_max_body_size 50m;

     

       32
       +
             '';

     

       33
       +
             proxyPass = "http://localhost:${toString config.services.forgejo.settings.server.HTTP_PORT}";

     

       34
       +
           };

     

       35
       +
         };

     

       36
       +
       }

hosts/wolumonde/modules/gitea-act.nix hosts/wolumonde/modules/gitea-act.disabled

hosts/wolumonde/modules/gitea.nix hosts/wolumonde/modules/gitea.disabled

+2 -1

hosts/wolumonde/modules/nginx.nix

···

       16
        
             webroot = "/var/lib/acme/acme-challenge";

     

       17
        
             extraDomainNames = [

     

       18
        
               "git.gaze.systems"

     

       0
        
       
     

       19
        
               # "ms.gaze.systems"

     

       20
        
               # "mq.gaze.systems"

     

       21
        
               "couchdb.gaze.systems"

     
···

       24
        
               "limbus.gaze.systems"

     

       25
        
               # "bsky.gaze.systems"

     

       26
        
               "dawn.gaze.systems"

     

       27
       -
               "guestbook.gaze.systems"

     

       28
        
             ];

     

       29
        
           };

     

       30
        
         };

···

       16
        
             webroot = "/var/lib/acme/acme-challenge";

     

       17
        
             extraDomainNames = [

     

       18
        
               "git.gaze.systems"

     

       19
       +
               "test.gaze.systems"

     

       20
        
               # "ms.gaze.systems"

     

       21
        
               # "mq.gaze.systems"

     

       22
        
               "couchdb.gaze.systems"

     
···

       25
        
               "limbus.gaze.systems"

     

       26
        
               # "bsky.gaze.systems"

     

       27
        
               "dawn.gaze.systems"

     

       28
       +
               # "guestbook.gaze.systems"

     

       29
        
             ];

     

       30
        
           };

     

       31
        
         };

+10 -10

hosts/wolumonde/modules/secrets.nix

···

       6
        
           owner = "systemd-network";

     

       7
        
           group = "systemd-network";

     

       8
        
         };

     

       9
       -
         age.secrets.musikquadConfig.file = ../../../secrets/musikquadConfig.age;

     

       10
       -
         age.secrets.tmodloaderServerPass.file = ../../../secrets/tmodloaderServerPass.age;

     

       11
        
         age.secrets.websiteConfig.file = ../../../secrets/websiteConfig.age;

     

       12
       -
         age.secrets.giteaActRunnerToken.file = ../../../secrets/giteaActRunnerToken.age;

     

       13
       -
         age.secrets.xrayConfig = {

     

       14
       -
           name = "xrayConfig.json";

     

       15
       -
           file = ../../../secrets/xrayConfig.age;

     

       16
       -
           mode = "600";

     

       17
       -
           # owner = "xray";

     

       18
       -
           # group = "xray";

     

       19
       -
         };

     

       20
        
         age.secrets.pdsConfig.file = ../../../secrets/pdsConfig.age;

     

       21
        
       }

···

       6
        
           owner = "systemd-network";

     

       7
        
           group = "systemd-network";

     

       8
        
         };

     

       9
       +
         # age.secrets.musikquadConfig.file = ../../../secrets/musikquadConfig.age;

     

       10
       +
         # age.secrets.tmodloaderServerPass.file = ../../../secrets/tmodloaderServerPass.age;

     

       11
        
         age.secrets.websiteConfig.file = ../../../secrets/websiteConfig.age;

     

       12
       +
         # age.secrets.giteaActRunnerToken.file = ../../../secrets/giteaActRunnerToken.age;

     

       13
       +
         # age.secrets.xrayConfig = {

     

       14
       +
         #   name = "xrayConfig.json";

     

       15
       +
         #   file = ../../../secrets/xrayConfig.age;

     

       16
       +
         #   mode = "600";

     

       17
       +
         #   # owner = "xray";

     

       18
       +
         #   # group = "xray";

     

       19
       +
         # };

     

       20
        
         age.secrets.pdsConfig.file = ../../../secrets/pdsConfig.age;

     

       21
        
       }