ahuston-0
cc9300e523
- remove deleted nixpkgs-stable pin for sops-nix - remove kernel pin in global modules (defaults to LTS now) - migrate nerdfonts to new pkgs.nerd-fonts namespace - disable calibre-server on palatine-hill (for now) - add SSH_PORT to gitea Signed-off-by: ahuston-0 <aliceghuston@gmail.com>
44 lines
819 B
Nix
44 lines
819 B
Nix
{
|
|
config,
|
|
lib,
|
|
pkgs,
|
|
...
|
|
}:
|
|
let
|
|
base_path = "/ZFS/ZFS-primary/gitea";
|
|
in
|
|
{
|
|
services.gitea = {
|
|
enable = true;
|
|
appName = "The Hearth";
|
|
database = {
|
|
type = "postgres";
|
|
passwordFile = config.sops.secrets."gitea/dbpass".path;
|
|
createDatabase = false;
|
|
host = "127.0.0.1";
|
|
name = "giteadb";
|
|
port = 5433;
|
|
};
|
|
settings = {
|
|
server = {
|
|
DOMAIN = "git.alicehuston.xyz";
|
|
ROOT_URL = "https://git.alicehuston.xyz/";
|
|
HTTP_PORT = 6443;
|
|
SSH_PORT = 2222;
|
|
};
|
|
service = {
|
|
DISABLE_REGISTRATION = true;
|
|
};
|
|
};
|
|
stateDir = base_path;
|
|
lfs.enable = true;
|
|
recommendedDefaults = true;
|
|
};
|
|
|
|
networking.firewall.allowedTCPPorts = [ 6443 ];
|
|
|
|
sops.secrets = {
|
|
"gitea/dbpass".owner = "gitea";
|
|
};
|
|
}
|