nixos/server/gitea.nix

36 lines
888 B
Nix
Raw Normal View History

2023-05-17 17:10:18 +01:00
{...}: {
imports = [./traefik.nix ./fail2ban.nix];
2023-05-16 11:04:48 +01:00
services.gitea = {
enable = true;
2023-05-16 15:45:02 +01:00
settings = {
server = {
ROOT_URL = "https://git.xenia.me.uk";
DOMAIN = "git.xenia.me.uk";
SSH_PORT = 2222;
};
service.DISABLE_REGISTRATION = true;
ui = {
THEMES = [
"theme-catppuccin-macchiato-lavender.css"
];
};
2023-05-16 15:42:05 +01:00
};
2023-05-16 11:04:48 +01:00
appName = "Gitea";
};
2023-05-17 17:10:18 +01:00
networking.firewall.allowedTCPPorts = [80 443 2222];
services.traefik.dynamicConfigOptions.http = {
2023-05-17 17:10:18 +01:00
routers.gitea = {
rule = "Host(`git.xenia.me.uk`)";
service = "gitea-websecure";
tls = {certResolver = "default";};
};
services.gitea-websecure.loadBalancer.servers = [{url = "http://localhost:3000";}];
};
2023-05-16 11:31:36 +01:00
services.fail2ban.jails.gitea = ''
enabled = true
filter = sshd
ports = 2222
backend = systemd
'';
}