SebastianStork/nixos-config
1
0
Fork 0
mirror of https://github.com/SebastianStork/nixos-config.git synced 2026-01-21 17:31:34 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Enable forgejo ssh server

Browse source
This commit is contained in:
SebastianStork 2025-06-01 21:57:40 +02:00
parent 671ddf8233
commit cb6570667b
2 changed files with 19 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
hosts/cirrus/default.nix
View file

@ -29,6 +29,7 @@
forgejo = { forgejo = {
enable = true; enable = true;
domain = "git.sstork.dev"; domain = "git.sstork.dev";
ssh.enable = true;
}; };
caddy.virtualHosts = { caddy.virtualHosts = {

18
modules/system/services/forgejo/ssh.nix Normal file
View file

@ -0,0 +1,18 @@
{ config, lib, ... }:
{
options.custom.services.forgejo.ssh.enable = lib.mkEnableOption "";
config = lib.mkIf config.custom.services.forgejo.ssh.enable {
services.openssh = {
enable = true;
settings = {
PasswordAuthentication = false;
KbdInteractiveAuthentication = false;
PermitRootLogin = "no";
AllowUsers = [ config.users.users.forgejo.name ];
# https://forgejo.org/docs/latest/admin/recommendations/#git-over-ssh
AcceptEnv = "GIT_PROTOCOL";
};
};
};
}