From 4ab3b20d9f056f3ff79150612ed8aac17c61b8fa Mon Sep 17 00:00:00 2001 From: xunuwu Date: Sun, 8 Jun 2025 08:26:09 +0200 Subject: [PATCH] setup forgejo --- hosts/rackserv/default.nix | 1 + hosts/rackserv/profiles/caddy.nix | 7 +++++++ hosts/rackserv/profiles/forgejo.nix | 18 ++++++++++++++++++ 3 files changed, 26 insertions(+) create mode 100644 hosts/rackserv/profiles/forgejo.nix diff --git a/hosts/rackserv/default.nix b/hosts/rackserv/default.nix index 43194d0..4090f52 100644 --- a/hosts/rackserv/default.nix +++ b/hosts/rackserv/default.nix @@ -13,6 +13,7 @@ ./profiles/wireguard-server.nix ./profiles/backups.nix ./profiles/caddy.nix + ./profiles/forgejo.nix ] ++ (with systemProfiles; [ core.security diff --git a/hosts/rackserv/profiles/caddy.nix b/hosts/rackserv/profiles/caddy.nix index 1799f0c..2074587 100644 --- a/hosts/rackserv/profiles/caddy.nix +++ b/hosts/rackserv/profiles/caddy.nix @@ -33,6 +33,13 @@ in { reverse_proxy ${hopper} ''; }; + forgejo = { + hostName = "git.${domain}"; + useACMEHost = domain; + extraConfig = '' + reverse_proxy localhost:${toString config.services.forgejo.settings.server.HTTP_PORT} + ''; + }; other = { extraConfig = '' respond 404 diff --git a/hosts/rackserv/profiles/forgejo.nix b/hosts/rackserv/profiles/forgejo.nix new file mode 100644 index 0000000..c0a24fa --- /dev/null +++ b/hosts/rackserv/profiles/forgejo.nix @@ -0,0 +1,18 @@ +{vars, ...}: { + services.forgejo = { + enable = true; + database.type = "postgres"; + lfs.enable = true; + settings = { + session.COOKIE_SECURE = true; + server = { + DOMAIN = "git.${vars.domain}"; + ROOT_URL = "https://git.${vars.domain}"; + HTTP_PORT = 3000; + HTTP_ADDR = "127.0.0.1"; + }; + service.DISABLE_REGISTRATION = true; + }; + }; + services.restic.backups.rackserv.paths = ["/var/lib/forgejo/dump"]; +}