feat: deploy forgejo publicly
Some checks are pending
Gitea Actions Demo / Explore-Gitea-Actions (push) Waiting to run
Some checks are pending
Gitea Actions Demo / Explore-Gitea-Actions (push) Waiting to run
This commit is contained in:
parent
3fc08e78e0
commit
79228d7815
GPG key ID:
75579581C74554B6
8 changed files with 102 additions and 9 deletions
53
systems/x86_64-linux/git/default.nix
Normal file
53
systems/x86_64-linux/git/default.nix
Normal file
|
|
@ -0,0 +1,53 @@
|
|||
{
|
||||
inputs,
|
||||
config,
|
||||
...
|
||||
}: let
|
||||
domain = "git.alejandr0angul0.dev";
|
||||
in {
|
||||
imports = ["${inputs.nixpkgs}/nixos/modules/virtualisation/digital-ocean-config.nix"];
|
||||
|
||||
aa = {
|
||||
nix.enable = true;
|
||||
|
||||
services.forgejo = {
|
||||
enable = true;
|
||||
domain = domain;
|
||||
};
|
||||
|
||||
services = {
|
||||
openssh.enable = true;
|
||||
};
|
||||
};
|
||||
|
||||
services.nginx.virtualHosts."${domain}" = {
|
||||
forceSSL = true;
|
||||
enableACME = true;
|
||||
};
|
||||
|
||||
security.acme = {
|
||||
acceptTerms = true;
|
||||
defaults = {
|
||||
email = config.aa.user.email;
|
||||
group = "nginx";
|
||||
};
|
||||
};
|
||||
|
||||
networking.hostName = "git";
|
||||
networking.firewall.allowedTCPPorts = [
|
||||
# SSH
|
||||
22
|
||||
|
||||
# HTTP(S)
|
||||
80
|
||||
443
|
||||
];
|
||||
|
||||
virtualisation.digitalOcean = {
|
||||
setRootPassword = true;
|
||||
setSshKeys = true;
|
||||
};
|
||||
security.sudo.wheelNeedsPassword = false;
|
||||
|
||||
system.stateVersion = "24.05";
|
||||
}
|
||||
|
|
@ -50,10 +50,6 @@
|
|||
};
|
||||
acmeCertName = "kilonull.com";
|
||||
};
|
||||
services.forgejo = {
|
||||
enable = true;
|
||||
acmeCertName = "kilonull.com";
|
||||
};
|
||||
|
||||
services.homeassistant = {
|
||||
enable = true;
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue