gitea: nix formatting
This commit is contained in:
parent
b6defaf038
commit
014275233f
|
@ -1,9 +1,10 @@
|
||||||
# NixOps configuration for the hosts running Gitea
|
# NixOps configuration for the hosts running Gitea
|
||||||
|
|
||||||
{ config, pkgs, lib, ... }:
|
|
||||||
|
|
||||||
{
|
{
|
||||||
|
config,
|
||||||
|
pkgs,
|
||||||
|
lib,
|
||||||
|
...
|
||||||
|
}: {
|
||||||
services.gitea = {
|
services.gitea = {
|
||||||
enable = true; # Enable Gitea
|
enable = true; # Enable Gitea
|
||||||
appName = "mcwhirter.io: Gitea Service"; # Give the site a name
|
appName = "mcwhirter.io: Gitea Service"; # Give the site a name
|
||||||
|
@ -45,18 +46,22 @@
|
||||||
authentication = ''
|
authentication = ''
|
||||||
local gitea all ident map=gitea-users
|
local gitea all ident map=gitea-users
|
||||||
'';
|
'';
|
||||||
identMap = # Map the gitea user to postgresql
|
identMap =
|
||||||
|
# Map the gitea user to postgresql
|
||||||
''
|
''
|
||||||
gitea-users gitea gitea
|
gitea-users gitea gitea
|
||||||
'';
|
'';
|
||||||
ensureDatabases = ["gitea"]; # Ensure the database persists
|
ensureDatabases = ["gitea"]; # Ensure the database persists
|
||||||
ensureUsers = [{
|
ensureUsers = [
|
||||||
|
{
|
||||||
name = "gitea"; # Ensure the database user persists
|
name = "gitea"; # Ensure the database user persists
|
||||||
ensurePermissions = { # Ensure the database permissions persist
|
ensurePermissions = {
|
||||||
|
# Ensure the database permissions persist
|
||||||
"DATABASE gitea" = "ALL PRIVILEGES";
|
"DATABASE gitea" = "ALL PRIVILEGES";
|
||||||
"ALL TABLES IN SCHEMA public" = "ALL PRIVILEGES";
|
"ALL TABLES IN SCHEMA public" = "ALL PRIVILEGES";
|
||||||
};
|
};
|
||||||
}];
|
}
|
||||||
|
];
|
||||||
};
|
};
|
||||||
|
|
||||||
services.nginx = {
|
services.nginx = {
|
||||||
|
@ -65,18 +70,21 @@
|
||||||
recommendedOptimisation = true;
|
recommendedOptimisation = true;
|
||||||
recommendedProxySettings = true;
|
recommendedProxySettings = true;
|
||||||
recommendedTlsSettings = true;
|
recommendedTlsSettings = true;
|
||||||
virtualHosts."source.mcwhirter.io" = { # Gitea hostname
|
virtualHosts."source.mcwhirter.io" = {
|
||||||
|
# Gitea hostname
|
||||||
enableACME = true; # Use ACME certs
|
enableACME = true; # Use ACME certs
|
||||||
forceSSL = true; # Force SSL
|
forceSSL = true; # Force SSL
|
||||||
locations."/".proxyPass = "http://localhost:3002/"; # Proxy Gitea
|
locations."/".proxyPass = "http://localhost:3002/"; # Proxy Gitea
|
||||||
};
|
};
|
||||||
virtualHosts."git.mcwhirter.io" = { # Hostname to be redirected
|
virtualHosts."git.mcwhirter.io" = {
|
||||||
|
# Hostname to be redirected
|
||||||
enableACME = true; # Use ACME certs
|
enableACME = true; # Use ACME certs
|
||||||
forceSSL = true; # Force SSL
|
forceSSL = true; # Force SSL
|
||||||
locations."/".proxyPass = "http://localhost:3002/"; # Proxy Gitea
|
locations."/".proxyPass = "http://localhost:3002/"; # Proxy Gitea
|
||||||
globalRedirect = "source.mcwhirter.io"; # Redirect permanently to the host
|
globalRedirect = "source.mcwhirter.io"; # Redirect permanently to the host
|
||||||
};
|
};
|
||||||
virtualHosts."code.mcwhirter.io" = { # Hostname to be redirected
|
virtualHosts."code.mcwhirter.io" = {
|
||||||
|
# Hostname to be redirected
|
||||||
enableACME = true; # Use ACME certs
|
enableACME = true; # Use ACME certs
|
||||||
forceSSL = true; # Force SSL
|
forceSSL = true; # Force SSL
|
||||||
locations."/".proxyPass = "http://localhost:3002/"; # Proxy Gitea
|
locations."/".proxyPass = "http://localhost:3002/"; # Proxy Gitea
|
||||||
|
@ -94,5 +102,4 @@
|
||||||
};
|
};
|
||||||
|
|
||||||
users.groups.keys.members = ["gitea"]; # Required due to NixOps issue #1204
|
users.groups.keys.members = ["gitea"]; # Required due to NixOps issue #1204
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in a new issue