satellite/hosts/nixos/lapetus/services/forgejo.nix

{ lib, config, ... }:
let
  port = config.satellite.ports.forgejo;
  host = "git.moonythm.dev";
  cfg = config.services.forgejo;
in
{
  sops.secrets.forgejo_mail_password = {
    sopsFile = ../secrets.yaml;
    owner = cfg.user;
    group = cfg.group;
  };

  satellite.cloudflared.at.${host}.port = port;

  services.forgejo = {
    enable = true;
    stateDir = "/persist/state/var/lib/forgejo";
    mailerPasswordFile = config.sops.secrets.forgejo_mail_password.path;

    dump = {
      enable = true;
      type = "tar.gz";
    };

    lfs.enable = true;

    # See [the cheatsheet](https://docs.gitea.com/next/administration/config-cheat-sheet)
    settings = {
      default.APP_NAME = "moonforge";

      server = {
        DOMAIN = host;
        HTTP_PORT = port;
        ROOT_URL = "https://${host}";
        LANDING_PAGE = "prescientmoon"; # Make my profile the landing page
      };

      cron.ENABLED = true;
      service.DISABLE_REGISTRATION = true;
      session.COOKIE_SECURE = true;

      mailer = {
        ENABLED = true;
        SMTP_PORT = 465;
        SMTP_ADDR = "smtp.migadu.com";
        USER = "git@orbit.moonythm.dev";
      };

      repository = {
        DISABLE_STARS = true;
        DISABLED_REPO_UNITS = "";
        DEFAULT_REPO_UNITS = lib.strings.concatStringsSep "," [
          "repo.code"
        ];
      };
    };
  };
}
Add basic forgejo config 2024-05-11 01:09:43 +02:00			`{ lib, config, ... }:`
			`let`
Attempt to set up guacamole 2024-06-13 15:47:36 +02:00			`port = config.satellite.ports.forgejo;`
Add basic forgejo config 2024-05-11 01:09:43 +02:00			`host = "git.moonythm.dev";`
Fix forgejo perms 2024-05-11 01:18:47 +02:00			`cfg = config.services.forgejo;`
Add basic forgejo config 2024-05-11 01:09:43 +02:00			`in`
			`{`
Fix perms for forgejo mailer password 2024-05-11 01:22:34 +02:00			`sops.secrets.forgejo_mail_password = {`
			`sopsFile = ../secrets.yaml;`
			`owner = cfg.user;`
			`group = cfg.group;`
			`};`

Commit after not doing it for weeks 2024-07-06 19:32:14 +02:00			`satellite.cloudflared.at.${host}.port = port;`
Add basic forgejo config 2024-05-11 01:09:43 +02:00
			`services.forgejo = {`
			`enable = true;`
			`stateDir = "/persist/state/var/lib/forgejo";`
			`mailerPasswordFile = config.sops.secrets.forgejo_mail_password.path;`

			`dump = {`
			`enable = true;`
			`type = "tar.gz";`
			`};`

			`lfs.enable = true;`

			`# See [the cheatsheet](https://docs.gitea.com/next/administration/config-cheat-sheet)`
			`settings = {`
Add tabulate to jupyter 2024-05-22 14:04:20 +02:00			`default.APP_NAME = "moonforge";`

Add basic forgejo config 2024-05-11 01:09:43 +02:00			`server = {`
			`DOMAIN = host;`
			`HTTP_PORT = port;`
			`ROOT_URL = "https://${host}";`
			`LANDING_PAGE = "prescientmoon"; # Make my profile the landing page`
			`};`

			`cron.ENABLED = true;`
Disable registering on forgejo 2024-05-11 02:05:45 +02:00			`service.DISABLE_REGISTRATION = true;`
Add tabulate to jupyter 2024-05-22 14:04:20 +02:00			`session.COOKIE_SECURE = true;`
Add basic forgejo config 2024-05-11 01:09:43 +02:00
			`mailer = {`
			`ENABLED = true;`
			`SMTP_PORT = 465;`
			`SMTP_ADDR = "smtp.migadu.com";`
Fix forgejo mail 2024-05-11 01:33:02 +02:00			`USER = "git@orbit.moonythm.dev";`
Add basic forgejo config 2024-05-11 01:09:43 +02:00			`};`

			`repository = {`
			`DISABLE_STARS = true;`
			`DISABLED_REPO_UNITS = "";`
			`DEFAULT_REPO_UNITS = lib.strings.concatStringsSep "," [`
			`"repo.code"`
			`];`
			`};`
			`};`
			`};`
			`}`