nixos/services/gitea.nix

58 lines
1.2 KiB
Nix
Raw Permalink Normal View History

{ config, lib, ... }:
2019-02-26 13:44:40 +01:00
with lib;
mkIf (elem "gitea" config.machine.services) {
services = {
gitea = let
cfg = config.machine;
domain = (findFirst (s: s.service == "gitea") cfg cfg.vHosts).domain;
in {
enable = true;
2019-02-26 13:44:40 +01:00
user = "git";
cookieSecure = true;
domain = domain;
rootUrl = "http://${domain}/";
database = {
type = "mysql";
user = "git";
name = "gitea";
passwordFile = "${cfg.secretPath}/gitea_db";
};
extraConfig = ''
[repository]
DISABLE_HTTP_GIT = false
USE_COMPAT_SSH_URI = true
[security]
INSTALL_LOCK = true
COOKIE_USERNAME = gitea_username
COOKIE_REMEMBER_NAME = gitea_userauth
2019-02-26 13:44:40 +01:00
[service]
DISABLE_REGISTRATION = true
'';
};
2019-02-26 13:44:40 +01:00
mysql = let
cfg = config.services.gitea.database;
in {
ensureDatabases = [ cfg.name ];
ensureUsers = [{
name = cfg.user;
ensurePermissions = {
"${cfg.name}.*" = "ALL PRIVILEGES";
};
}];
};
2019-02-26 13:44:40 +01:00
};
users.users.git = {
description = "Gitea Service";
2019-02-26 13:44:40 +01:00
isNormalUser = true;
home = config.services.gitea.stateDir;
2019-02-26 13:44:40 +01:00
createHome = true;
useDefaultShell = true;
2019-02-26 13:44:40 +01:00
};
}