SebastianStork/nixos-config
1
0
Fork 0
mirror of https://github.com/SebastianStork/nixos-config.git synced 2026-01-21 23:11:34 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
nixos-config/hosts/stratus/containers/nspawn/forgejo/default.nix

46 lines
1.2 KiB
Nix
Raw Blame History

{
containers.forgejo.config =
{
config,
lib,
dataDir,
...
}:
{
imports = [ ./backup.nix ];
sops.secrets."forgejo-admin-password" = {
owner = config.users.users.forgejo.name;
inherit (config.users.users.forgejo) group;
};
systemd.tmpfiles.rules = [
"d ${dataDir}/home 750 forgejo forgejo -"
"d ${dataDir}/postgresql 700 postgres postgres -"
];
services.postgresql.dataDir = "${dataDir}/postgresql";
services.forgejo = {
enable = true;
stateDir = "${dataDir}/home";
lfs.enable = true;
database.type = "postgres";
settings = {
server = {
DOMAIN = config.networking.fqdn;
ROOT_URL = "https://${config.services.forgejo.settings.server.DOMAIN}/";
};
service.DISABLE_REGISTRATION = true;
};
};
systemd.services.forgejo.preStart = ''
create="${lib.getExe config.services.forgejo.package} admin user create"
$create --admin --email "sebastian.stork@pm.me" --username seb --password "$(cat ${config.sops.secrets.forgejo-admin-password.path})" || true
'';
myConfig.tailscale.serve = "3000";
};
}
Reference in a new issue View git blame Copy permalink