nathan/Olympus
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

test gitea docker

Browse Source
This commit is contained in:
Nathan
2026-04-26 11:14:46 -05:00
parent 82d8816052
commit a8b2621469
7 changed files with 46 additions and 56 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
flake.nix
View File

@@ -18,8 +18,8 @@
nixos-hardware.url = "github:nixos/nixos-hardware/master"; nixos-hardware.url = "github:nixos/nixos-hardware/master";
#opi-zero2w.url = "github:virusdave/nixos-opi-zero2w"; opi-zero2w.url = "github:virusdave/nixos-opi-zero2w";
opi-zero2w.url = "git+file:///home/nathan/Projects/tests/nixos-opi-zero2w"; #opi-zero2w.url = "git+file:///home/nathan/Projects/tests/nixos-opi-zero2w";
sops-nix = { sops-nix = {
url = "github:Mic92/sops-nix"; url = "github:Mic92/sops-nix";

65
modules/features/gitea.nix
View File

@@ -80,6 +80,13 @@
repository = { repository = {
DEFAULT_BRANCH = "master"; DEFAULT_BRANCH = "master";
}; };
migrations = {
ALLOWED_DOMAINS = "*";
ALLOW_LOCALNETWORKS = true;
SKIP_TLS_VERIFY = true;
BLOCKED_DOMAINS = "";
};
}; };
database = { database = {
@@ -118,6 +125,25 @@
config = { config = {
sops.secrets = {
"gitea/dbpass" = {};
};
sops.templates."gitea.env".content = ''
USER_UID=1000
USER_GID=1000
GITEA__database__DB_TYPE=postgres
GITEA__database__HOST=db:5432
GITEA__database__NAME=gitea
GITEA__database__USER=gitea
GITEA__database__PASSWD=${config.sops.placeholder."gitea/dbpass"}
'';
sops.templates."gitea-db.env".content = ''
POSTGRES_USER=gitea
POSTGRES_DB=gitea
POSTGRES_PASSWORD=${config.sops.placeholder."gitea/dbpass"}
'';
virtualisation.oci-containers.containers."${name}" = { virtualisation.oci-containers.containers."${name}" = {
image = "docker.gitea.com/gitea:1.25.4"; image = "docker.gitea.com/gitea:1.25.4";
@@ -145,22 +171,27 @@
"traefik.tcp.routers.${name}-ssh.rule" = "HostSNI(`*`)"; "traefik.tcp.routers.${name}-ssh.rule" = "HostSNI(`*`)";
"traefik.tcp.routers.${name}-ssh.service" = "${name}-ssh"; "traefik.tcp.routers.${name}-ssh.service" = "${name}-ssh";
"traefik.tcp.services.${name}-ssh.loadbalancer.server.port" = "22"; "traefik.tcp.services.${name}-ssh.loadbalancer.server.port" = "2222";
}; };
ports = [ ports = [
]; ];
extraOptions = [ extraOptions = [
"--ip=192.168.101.20" "--ip=192.168.101.25"
]; ];
volumes = [ volumes = [
"vol_gitea:/data" "/etc/gitea/data:/data"
]; ];
environment = { environmentFiles = [
}; config.sops.templates."gitea.env".path
];
dependsOn = [
"${name}-db"
];
}; };
virtualisation.oci-containers.containers."${name}-db" = { virtualisation.oci-containers.containers."${name}-db" = {
@@ -182,15 +213,16 @@
]; ];
extraOptions = [ extraOptions = [
"--ip=192.168.101.21" "--ip=192.168.101.26"
]; ];
volumes = [ volumes = [
"/etc/gitea/db:/var/lib/postgresql/data" "/etc/gitea/db:/var/lib/postgresql/data"
]; ];
environment = { environmentFiles = [
}; config.sops.templates."gitea-db.env".path
];
}; };
systemd.services."docker-gitea" = { systemd.services."docker-gitea" = {
@@ -202,12 +234,10 @@
}; };
after = [ after = [
"docker-network-setup.service" "docker-network-setup.service"
"docker-volume-gitea.service"
"docker-gitea-db.service" "docker-gitea-db.service"
]; ];
requires = [ requires = [
"docker-network-setup.service" "docker-network-setup.service"
"docker-volume-gitea.service"
"docker-gitea-db.service" "docker-gitea-db.service"
]; ];
partOf = [ partOf = [
@@ -238,21 +268,6 @@
"docker-compose-gitea-root.target" "docker-compose-gitea-root.target"
]; ];
}; };
systemd.services."docker-volume-gitea" = {
path = [ pkgs.docker ];
serviceConfig = {
Type = "oneshot";
RemainAfterExit = true;
};
script = ''
docker volume inspect vol_gitea || docker volume create vol_gitea --driver=local
'';
partOf = [ "docker-compose-gitea-root.target" ];
wantedBy = [ "docker-compose-gitea-root.target" ];
};
}; };
}; };
} }

27
modules/features/traefik/config/routing.yml
View File

@@ -20,15 +20,6 @@ http:
tls: tls:
certResolver: "cloudflare" certResolver: "cloudflare"
gitea:
entryPoints:
- "localsecure"
- "websecure"
rule: "Host(`gitea.esotericbytes.com`)"
service: "gitea"
tls:
certResolver: "cloudflare"
octoprint: octoprint:
entryPoints: entryPoints:
- "localsecure" - "localsecure"
@@ -49,27 +40,9 @@ http:
servers: servers:
- url: "http://192.168.100.31:4444" - url: "http://192.168.100.31:4444"
gitea:
loadBalancer:
servers:
- url: "http://192.168.100.20:3000"
octoprint: octoprint:
loadBalancer: loadBalancer:
servers: servers:
- url: "http://rpi-3dp.local" - url: "http://rpi-3dp.local"
passHostHeader: true passHostHeader: true
tcp:
routers:
gitea-ssh:
entryPoints:
- "gitea-ssh"
rule: "HostSNI(`*`)"
service: "gitea-ssh"
services:
gitea-ssh:
loadBalancer:
servers:
- address: "192.168.100.20:2222"

1
modules/hosts/homebox/configuration.nix
View File

@@ -25,6 +25,7 @@
n8n n8n
code-server code-server
gitea gitea
gitea-docker
jellyfin jellyfin
nginx nginx
ollama-docker ollama-docker

1
modules/hosts/laptop/configuration.nix
View File

@@ -32,6 +32,7 @@
efi.canTouchEfiVariables = true; efi.canTouchEfiVariables = true;
timeout = null; timeout = null;
}; };
binfmt.emulatedSystems = [ "aarch64-linux" ];
}; };
systemd.settings.Manager.DefaultLimitNOFILE = 2048; systemd.settings.Manager.DefaultLimitNOFILE = 2048;

2
modules/hosts/pi4/configuration.nix
View File

@@ -33,7 +33,7 @@
imports = with self.nixosModules; [ imports = with self.nixosModules; [
pi4-core-disko pi4-core
netbird-sbc netbird-sbc
remoteBuilds remoteBuilds

2
modules/hosts/pi4/default.nix
View File

@@ -11,7 +11,7 @@
modules = [ modules = [
self.nixosModules.pi4 self.nixosModules.pi4
self.nixosModules.pi4-hardware self.nixosModules.pi4-hardware
self.diskoConfigurations.pi4 #self.diskoConfigurations.pi4
]; ];
}; };