nixos-config/config/services/gitea.nix

{
  pkgs,
  config,
  ...
}: {
  imports = [
    ../../modules/gitea.nix
  ];
  services.gitea = {
    package = pkgs.forgejo;
    enable = true;
    appName = "Lotte's Git";
    cookieSecure = true;
    database = {
      host = "localhost";
      name = "gitea";
      user = "gitea";
      type = "postgres";
    };
    domain = "git.chir.rs";
    httpAddress = "127.0.0.1";
    lfs.enable = true;
    rootUrl = "https://git.chir.rs/";
    storageSecretFile = "/run/secrets/services/gitea";
    settings = rec {
      storage = {
        STORAGE_TYPE = "minio";
        MINIO_ENDPOINT = "ams1.vultrobjects.com";
        MINIO_ACCESS_KEY_ID = "X86D3HKJ3Y92IASK0XIG";
        MINIO_SECRET_ACCESS_KEY = "#storageSecret#";
        MINIO_BUCKET = "git-chir-rs";
        MINIO_USE_SSL = "true";
      };
      openid = {
        ENABLE_OPENID_SIGNIN = true;
        ENABLE_OPENID_SIGNUP = true;
      };
      cache = {
        ENABLED = config.services.redis.servers.gitea.enable;
        ADAPTER = "redis";
        HOST = "redis://${config.services.redis.servers.gitea.bind}:${toString config.services.redis.servers.gitea.port}/0";
      };
      session = {
        PROVIDER = "redis";
        PROVIDER_CONFIG = "redis://${config.services.redis.servers.gitea.bind}:${toString config.services.redis.servers.gitea.port}/1";
      };
      metrics = {
        ENABLED = true;
        ENABLED_ISSUE_BY_LABEL = true;
        ENABLED_ISSUE_BY_REPOSITORY = true;
      };
      queue = {
        TYPE = "redis";
        CONN_STRING = "redis://${config.services.redis.servers.gitea.bind}:${toString config.services.redis.servers.gitea.port}/2";
      };
      packages.ENABLED = true;
      federation.ENABLED = true;
      "repository.signing" = {
        SIGNING_KEY = "823566455E49DDC6AE5813048CA13817A54AAB38";
        SIGNING_NAME = "Gitea";
        SIGNING_EMAIL = "gitea@chir.rs";
        INITIAL_COMMIT = "always";
        WIKI = "always";
        CRUD_ACTIONS = "always";
        MERGES = "always";
      };
      git = {
        HOME_PATH = "/var/lib/gitea";
      };
    };
  };

  services.caddy.virtualHosts."git.chir.rs" = {
    useACMEHost = "chir.rs";
    logFormat = pkgs.lib.mkForce "";
    extraConfig = ''
      import baseConfig

      reverse_proxy http://${config.services.gitea.httpAddress}:${toString config.services.gitea.httpPort}
    '';
  };

  services.postgresql.ensureDatabases = ["gitea"];

  services.redis.servers.gitea = {
    enable = true;
    bind = "127.0.0.1";
    databases = 3;
    port = 6379;
  };
  sops.secrets."services/gitea" = {owner = "gitea";};
}
Update helix theme 2023-01-01 14:28:25 +01:00			`{`
			`pkgs,`
			`config,`
			`...`
			`}: {`
Remove need for nixpkgs fork 2022-02-18 14:17:35 +01:00			`imports = [`
			`../../modules/gitea.nix`
			`];`
Add gitea 2022-01-17 10:49:37 +01:00			`services.gitea = {`
fix typo 2023-03-25 20:40:44 +01:00			`package = pkgs.forgejo;`
Add gitea 2022-01-17 10:49:37 +01:00			`enable = true;`
			`appName = "Lotte's Git";`
Add gitea vhost 2022-01-17 10:53:15 +01:00			`cookieSecure = true;`
Add gitea 2022-01-17 10:49:37 +01:00			`database = {`
			`host = "localhost";`
			`name = "gitea";`
			`user = "gitea";`
Make gitea use postgres 2022-01-17 11:36:05 +01:00			`type = "postgres";`
Add gitea 2022-01-17 10:49:37 +01:00			`};`
			`domain = "git.chir.rs";`
			`httpAddress = "127.0.0.1";`
			`lfs.enable = true;`
			`rootUrl = "https://git.chir.rs/";`
fix secrets path 2022-01-30 14:09:25 +01:00			`storageSecretFile = "/run/secrets/services/gitea";`
Add a settings.default storage 2022-01-17 11:37:34 +01:00			`settings = rec {`
Add gitea 2022-01-17 10:49:37 +01:00			`storage = {`
			`STORAGE_TYPE = "minio";`
update 2023-10-01 15:47:26 +01:00			`MINIO_ENDPOINT = "ams1.vultrobjects.com";`
			`MINIO_ACCESS_KEY_ID = "X86D3HKJ3Y92IASK0XIG";`
Purify the config 2022-01-30 13:50:23 +01:00			`MINIO_SECRET_ACCESS_KEY = "#storageSecret#";`
Swtich to forgejo 2023-03-25 20:36:48 +01:00			`MINIO_BUCKET = "git-chir-rs";`
			`MINIO_USE_SSL = "true";`
Add gitea 2022-01-17 10:49:37 +01:00			`};`
Add redis cache to gitea 2022-01-17 13:48:48 +01:00			`openid = {`
			`ENABLE_OPENID_SIGNIN = true;`
			`ENABLE_OPENID_SIGNUP = true;`
			`};`
			`cache = {`
correct config option name 2022-01-17 13:50:25 +01:00			`ENABLED = config.services.redis.servers.gitea.enable;`
Add redis cache to gitea 2022-01-17 13:48:48 +01:00			`ADAPTER = "redis";`
add tostring 2022-01-17 13:51:14 +01:00			`HOST = "redis://${config.services.redis.servers.gitea.bind}:${toString config.services.redis.servers.gitea.port}/0";`
Add redis cache to gitea 2022-01-17 13:48:48 +01:00			`};`
Move sessions and queues to redis, add metrics 2022-01-17 14:31:32 +01:00			`session = {`
			`PROVIDER = "redis";`
			`PROVIDER_CONFIG = "redis://${config.services.redis.servers.gitea.bind}:${toString config.services.redis.servers.gitea.port}/1";`
			`};`
			`metrics = {`
			`ENABLED = true;`
			`ENABLED_ISSUE_BY_LABEL = true;`
			`ENABLED_ISSUE_BY_REPOSITORY = true;`
			`};`
			`queue = {`
			`TYPE = "redis";`
			`CONN_STRING = "redis://${config.services.redis.servers.gitea.bind}:${toString config.services.redis.servers.gitea.port}/2";`
			`};`
add package registry support to gitea 2022-06-26 07:59:19 +01:00			`packages.ENABLED = true;`
add federation to gitea 2022-07-02 19:34:25 +01:00			`federation.ENABLED = true;`
quote repository.signing 2022-07-04 10:27:43 +01:00			`"repository.signing" = {`
fix forgejo git signing 2023-04-08 14:17:26 +01:00			`SIGNING_KEY = "823566455E49DDC6AE5813048CA13817A54AAB38";`
add signing to gitea 2022-07-04 10:17:48 +01:00			`SIGNING_NAME = "Gitea";`
			`SIGNING_EMAIL = "gitea@chir.rs";`
			`INITIAL_COMMIT = "always";`
			`WIKI = "always";`
			`CRUD_ACTIONS = "always";`
			`MERGES = "always";`
			`};`
fix forgejo git signing 2023-04-08 14:17:26 +01:00			`git = {`
			`HOME_PATH = "/var/lib/gitea";`
			`};`
Add gitea 2022-01-17 10:49:37 +01:00			`};`
			`};`

switch to caddy 2022-08-26 16:28:14 +01:00			`services.caddy.virtualHosts."git.chir.rs" = {`
			`useACMEHost = "chir.rs";`
fix caddy log config 2022-12-30 14:03:57 +01:00			`logFormat = pkgs.lib.mkForce "";`
switch to caddy 2022-08-26 16:28:14 +01:00			`extraConfig = ''`
			`import baseConfig`

			`reverse_proxy http://${config.services.gitea.httpAddress}:${toString config.services.gitea.httpPort}`
			`'';`
Add gitea vhost 2022-01-17 10:53:15 +01:00			`};`

reformat repo 2022-06-12 16:39:15 +01:00			`services.postgresql.ensureDatabases = ["gitea"];`
Add gitea 2022-01-17 10:49:37 +01:00
correct config option name 2022-01-17 13:50:25 +01:00			`services.redis.servers.gitea = {`
Add redis cache to gitea 2022-01-17 13:48:48 +01:00			`enable = true;`
			`bind = "127.0.0.1";`
Move sessions and queues to redis, add metrics 2022-01-17 14:31:32 +01:00			`databases = 3;`
Add postfix user to postgres 2022-01-23 10:55:17 +01:00			`port = 6379;`
Add redis cache to gitea 2022-01-17 13:48:48 +01:00			`};`
reformat repo 2022-06-12 16:39:15 +01:00			`sops.secrets."services/gitea" = {owner = "gitea";};`
Add gitea 2022-01-17 10:49:37 +01:00			`}`