Avery/NixOS
Avery/NixOS
1
0
Fork 0
Code Activity

Configure Forgejo to use Postgres

Browse source
This commit is contained in:
Avery 2024-04-03 23:50:32 +02:00
parent ecb8159185
commit f3ff1388ac
Signed by: Avery
GPG key ID: B684FD451B692E04
5 changed files with 31 additions and 13 deletions
Download patch file Download diff file Expand all files Collapse all files

31
README.md
View file

@ -6,18 +6,18 @@ Configuration files for my desktop
### Programs ### Programs
Type | Name Name | Type
:-: | :-: :-: | :-:
Wayland compositor | Hyprland Hyprland | Wayland compositor
Screen locker | Hyprlock Hyprlock | Screen locker
Statusbar | Waybar Waybar | Statusbar
Notification daemon | dunst dunst | Notification daemon
Launcher | rofi rofi | Launcher
Wallpaper daemon | swww swww | Wallpaper daemon
Text editor | Neovim (Nixvim) Neovim | Text editor
Web browser | Firefox Firefox | Web browser
File browser | Dolphin Dolphin | File browser
Torrent client | qBittorrent qBittorrent | Torrent client
## 🐳 Great Yamada ## 🐳 Great Yamada
@ -26,4 +26,11 @@ Configuration for my home server
### Services ### Services
**WIP** **Still a WIP**
Name | Type | Public-facing
:-: | :-: | :-:
Nginx | Web server and reverse proxy | x
PostgreSQL | Database engine
Forgejo | Git repository | x

1
flake.nix
View file

@ -24,7 +24,6 @@
modules = [ modules = [
./common/nixos.nix ./common/nixos.nix
./hosts/totsugeki/nixos.nix ./hosts/totsugeki/nixos.nix
./hosts/greatyamada/services/forgejo.nix
home-manager.nixosModules.home-manager home-manager.nixosModules.home-manager
sops-nix.nixosModules.sops sops-nix.nixosModules.sops
{ {

6
hosts/greatyamada/nixos.nix
View file

@ -40,5 +40,11 @@
useDHCP = lib.mkDefault false; useDHCP = lib.mkDefault false;
}; };
sops = {
defaultSopsFile = "/etc/nixos/secrets/greatyamada.yaml";
# TODO: change key path
age.keyFile = "/home/avery/.config/sops/age/keys.txt";
};
time.timeZone = "UTC"; time.timeZone = "UTC";
} }

1
hosts/greatyamada/services/default.nix
View file

@ -0,0 +1 @@
{ ... }: { imports = [ ./nginx.nix ./forgejo.nix ]; }

5
hosts/greatyamada/services/forgejo.nix
View file

@ -23,6 +23,10 @@ in {
LFS_JWT_SECRET = ""; LFS_JWT_SECRET = "";
LFS_JWT_SECRET_URI = "file://${forgejoConfigPath}/lfs_jwt_secret"; LFS_JWT_SECRET_URI = "file://${forgejoConfigPath}/lfs_jwt_secret";
}; };
database = {
type = "postgres";
passwordFile = "${forgejoConfigPath}/database_password";
};
security = { security = {
INSTALL_LOCK = true; INSTALL_LOCK = true;
INTERNAL_TOKEN = lib.mkForce ""; INTERNAL_TOKEN = lib.mkForce "";
@ -49,6 +53,7 @@ in {
${pkgs.forgejo}/bin/gitea migrate ${pkgs.forgejo}/bin/gitea migrate
''; '';
sops.secrets = arrayToSecrets [ sops.secrets = arrayToSecrets [
"database_password"
"internal_token" "internal_token"
"lfs_jwt_secret" "lfs_jwt_secret"
"oauth2_jwt_secret" "oauth2_jwt_secret"