SebastianStork/nixos-config
1
0
Fork 0
mirror of https://github.com/SebastianStork/nixos-config.git synced 2026-01-22 00:21:34 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

forgejo: use package from unstable and the new default robots.txt

Browse source
This commit is contained in:
SebastianStork 2025-08-02 21:29:59 +02:00
parent 222841a064
commit 9bed5391ab
1 changed files with 6 additions and 21 deletions
Download patch file Download diff file Expand all files Collapse all files

27
modules/system/services/forgejo/default.nix
View file

@ -1,15 +1,11 @@
{
config,
pkgs,
pkgs-unstable,
lib,
...
}:
let
cfg = config.custom.services.forgejo;
originalCfg = config.services.forgejo;
user = config.users.users.forgejo.name;
inherit (config.users.users.forgejo) group;
in
{
options.custom.services.forgejo = {
@ -31,12 +27,13 @@ in
ports.list = [ cfg.port ];
};
sops.secrets."forgejo/admin-password".owner = user;
sops.secrets."forgejo/admin-password".owner = config.users.users.forgejo.name;
services.forgejo = {
enable = true;
lfs.enable = true;
package = pkgs-unstable.forgejo;
lfs.enable = true;
settings = {
server = {
DOMAIN = cfg.domain;
@ -74,7 +71,7 @@ in
systemd = {
services.forgejo.preStart =
let
userCmd = "${lib.getExe originalCfg.package} admin user";
userCmd = "${lib.getExe config.services.forgejo.package} admin user";
credentials = lib.concatStringsSep " " [
"--username SebastianStork"
"--password \"$PASSWORD\""
@ -86,23 +83,11 @@ in
${userCmd} create ${credentials} --email "sebastian.stork@pm.me" --admin \
|| ${userCmd} change-password ${credentials} --must-change-password=false
'';
tmpfiles.rules =
let
disallow-all-robots = pkgs.writeText "disallow-all-robots.txt" ''
User-agent: *
Disallow: /
'';
in
[
"d ${originalCfg.customDir}/public 750 ${user} ${group} - -"
"L+ ${originalCfg.customDir}/public/robots.txt 750 - - - ${disallow-all-robots}"
];
};
custom.services.resticBackups.forgejo = lib.mkIf cfg.doBackups {
conflictingService = "forgejo.service";
extraConfig.paths = [ originalCfg.stateDir ];
extraConfig.paths = [ config.services.forgejo.stateDir ];
};
};
}