pub-solar/os
5
0
Fork 2
Code Issues 4 Pull requests Packages Projects 1 Releases Wiki Activity

WIP: flora-6/gitea: Move towards docker containers #161

Closed
b12f wants to merge 1 commit from update/gitea-docker into infra
pull from: update/gitea-docker
merge into: pub-solar:infra
Conversation 1 Commits 1 Files changed 1 +61
b12f commented 2023-01-31 21:53:53 +00:00
Owner
Copy link
No description provided.
b12f added 1 commit 2023-01-31 21:53:54 +00:00
flora-6/gitea: Move towards docker containers
Some checks failed
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is failing
Details
1874463c4e
teutat3s requested changes 2023-02-01 09:51:52 +00:00
teutat3s left a comment
Owner
Copy link

Thanks for starting this - I hope this will fix our little gpg core dump problem as well.

I'd vote for the option: https://docs.gitea.io/en-us/install-with-docker/#sshing-shell-with-authorized_keys for the SSH access to the container, as it seems the most easy to understand for me (for future readers to understand what we're doing here).

Thanks for starting this - I hope this will fix our little gpg core dump problem as well. I'd vote for the option: https://docs.gitea.io/en-us/install-with-docker/#sshing-shell-with-authorized_keys for the SSH access to the container, as it seems the most easy to understand for me (for future readers to understand what we're doing here).
hosts/flora-6/gitea.nix
@ -18,1 +18,4 @@
users.users.git = {
description = "Gitea SSH Service";
home = "/var/lib/gitea/git";
teutat3s commented 2023-02-01 09:39:11 +00:00
Owner
Copy link

Let's stick to the gitea docs:

    home = "/home/git";
Let's stick to the gitea docs: ``` home = "/home/git"; ```
hosts/flora-6/gitea.nix
@ -19,0 +19,4 @@
users.users.git = {
description = "Gitea SSH Service";
home = "/var/lib/gitea/git";
useDefaultShell = false;
teutat3s commented 2023-02-01 09:40:49 +00:00
Owner
Copy link
    shell = "/home/git/ssh-shell";
``` shell = "/home/git/ssh-shell"; ```
hosts/flora-6/gitea.nix
@ -19,0 +20,4 @@
description = "Gitea SSH Service";
home = "/var/lib/gitea/git";
useDefaultShell = false;
uid = 995;
teutat3s commented 2023-02-01 09:19:13 +00:00
Owner
Copy link

995 is taken by user systemd-oom, uid 992 is still free on flora-6.

`995` is taken by user `systemd-oom`, uid `992` is still free on flora-6.
hosts/flora-6/gitea.nix
@ -19,0 +32,4 @@
oci-containers = {
backend = "docker";
containers."gitea" = {
image = "gitea:gitea:1.18.3";
teutat3s commented 2023-02-01 09:46:08 +00:00
Owner
Copy link
       image = "gitea/gitea:1.18.3";
``` image = "gitea/gitea:1.18.3"; ```
hosts/flora-6/gitea.nix
@ -19,0 +34,4 @@
containers."gitea" = {
image = "gitea:gitea:1.18.3";
autoStart = true;
user = "995";
teutat3s commented 2023-02-01 09:19:42 +00:00
Owner
Copy link

Let's use 992 here, too.

Let's use `992` here, too.
hosts/flora-6/gitea.nix
@ -19,0 +40,4 @@
"127.0.0.1:2222:22"
];
volumes = [
"/var/lib/gitea:/data"
teutat3s commented 2023-02-01 09:41:41 +00:00
Owner
Copy link
          "/home/git/.ssh/:/data/git/.ssh"
``` "/home/git/.ssh/:/data/git/.ssh"
hosts/flora-6/gitea.nix
@ -19,0 +42,4 @@
volumes = [
"/var/lib/gitea:/data"
# Secrets go in the app.ini file, the rest wil be done in nix via environment variables
"/var/lib/gitea/custom/conf/app.ini:/${config.age.secrets.gitea-secrets-app-ini.path}"
teutat3s commented 2023-02-01 09:31:22 +00:00
Owner
Copy link
          "${config.age.secrets.gitea-secrets-app-ini.path}:/data/gitea/conf/app.ini"
``` "${config.age.secrets.gitea-secrets-app-ini.path}:/data/gitea/conf/app.ini" ```
hosts/flora-6/gitea.nix
@ -19,0 +51,4 @@
];
environment = {
USER_UID = "postgres";
USER_GID = "postgres";
teutat3s commented 2023-02-01 09:24:20 +00:00
Owner
Copy link

Let's match the user inside the container with the git user on the host

          USER = "git";
          USER_UID = "992";
          USER_GID = "991";
Let's match the user inside the container with the `git` user on the host ``` USER = "git"; USER_UID = "992"; USER_GID = "991"; ```
hosts/flora-6/gitea.nix
@ -19,0 +58,4 @@
DB_TYPE = "postgres";
DB_HOST = "gitea-db";
DISABLE_REGISTRATION = "true";
};
teutat3s commented 2023-02-01 09:25:39 +00:00
Owner
Copy link
        dependsOn = ["gitea-db"];
``` dependsOn = ["gitea-db"]; ```
teutat3s commented 2023-03-05 15:58:29 +00:00
Owner
Copy link

Superseeded by #176

Superseeded by #176
teutat3s closed this pull request 2023-03-05 15:58:39 +00:00
Some checks failed
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is failing
Details

Pull request closed

Please reopen this pull request to perform a merge.
Sign in to join this conversation.
Reviewers
No reviewers
teutat3s
Labels
Clear labels   
bug

Something is not working

  
duplicate

This issue or pull request already exists

  
enhancement

New feature

  
help wanted

Need some help

  
invalid

Something is wrong

  
question

More information is needed

  
wontfix

This won't be fixed

No labels
bug
duplicate
enhancement
help wanted
invalid
question
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
2 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: pub-solar/os#161
No description provided.
Delete branch "update/gitea-docker"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?