77 current 2025-10-08 00:10:23 25.05.20251001.5b5be50 6.12.49 *

76 current 2025-10-08 00:07:38 25.05.20251001.5b5be50 6.12.49 *
75 current 2025-10-08 00:05:29 25.05.20251001.5b5be50 6.12.49 *
2025-10-08 00:16:06 -05:00 · 2025-10-08 00:10:25 -05:00 · 2025-10-08 00:07:42 -05:00 · 2025-10-08 00:05:31 -05:00 · 2025-10-08 00:04:00 -05:00 · 2025-10-08 00:01:13 -05:00
3 changed files with 15 additions and 7 deletions
--- a/flake.nix
+++ b/flake.nix
@@ -1,6 +1,6 @@
 # flake for blakes nixos config
 # define new devices in outputs
-# generation: 69 current  2025-10-07 23:14:40  25.05.20251001.5b5be50  6.12.49                          *
+# generation: 77 current  2025-10-08 00:10:23  25.05.20251001.5b5be50  6.12.49                          *
 {
  description = "blakes nix config";
  inputs = {
--- a/modules/homelab/services/gitea/default.nix
+++ b/modules/homelab/services/gitea/default.nix
@@ -41,6 +41,7 @@ in
      description = lib.mkForce "gitea server user";
      uid = ids;
      isSystemUser = true;
+      shell = pkgs.bash;
      home = "/var/lib/gitea";
      createHome = true;
      group = "gitea";
@@ -59,6 +60,9 @@ in
          DOMAIN = "git.blakedheld.xyz";
          HTTP_PORT = cfg.port;
          SSH_PORT = cfg.ssh_port;
+          START_SSH_SERVER = true;
+          ENABLE_PUSH_CREATE_USER = true;
+
        };
      };
      database = {
@@ -73,7 +77,7 @@ in
    networking.firewall.allowedTCPPorts = [ cfg.port cfg.ssh_port ];

    # internal reverse proxy entry
-    services.nginx.virtualHosts."gitea.snowbelle.lan" = {
+    services.nginx.virtualHosts."git.snowbelle.lan" = {
      enableACME = false;
      forceSSL = true;
      sslCertificate = config.sops.secrets."ssl_blakedheld_crt".path;
@@ -83,11 +87,11 @@ in
      };
    };
     # external reverse proxy entry
-     services.nginx.virtualHosts."gitea.blakedheld.xyz" = {
-      enableACME = false;
+     services.nginx.virtualHosts."git.blakedheld.xyz" = {
+      enableACME = true;
      forceSSL = true;
-      sslCertificate = config.sops.secrets."ssl_blakedheld_crt".path;
-      sslCertificateKey = config.sops.secrets."ssl_blakedheld_key".path;
+#      sslCertificate = config.sops.secrets."ssl_blakedheld_crt".path;
+#      sslCertificateKey = config.sops.secrets."ssl_blakedheld_key".path;
      locations."/" = {
        proxyPass = "http://127.0.0.1:${toString cfg.port}";
      };
--- a/users/blake/home.nix
+++ b/users/blake/home.nix
@@ -63,7 +63,11 @@
    enable = true;
    matchBlocks = {
      "git.blakedheld.xyz" = {
-        user = "git";
+        user = "gitea";
+        identityFile = "~/.ssh/id_snowbelle";
+      };
+      "git.snowbelle.lan" = {
+        user = "gitea";
        identityFile = "~/.ssh/id_snowbelle";
      };
      "dockers" = {
Author	SHA1	Message	Date
blake	a12677cc6c	77 current 2025-10-08 00:10:23 25.05.20251001.5b5be50 6.12.49 *	2025-10-08 00:16:06 -05:00
blake	b4d81a63b2	76 current 2025-10-08 00:07:38 25.05.20251001.5b5be50 6.12.49 *	2025-10-08 00:10:25 -05:00
blake	09ed3f2023	75 current 2025-10-08 00:05:29 25.05.20251001.5b5be50 6.12.49 *	2025-10-08 00:07:42 -05:00
blake	1deaf8c866	74 current 2025-10-08 00:03:57 25.05.20251001.5b5be50 6.12.49 *	2025-10-08 00:05:31 -05:00
blake	56921209cb	73 current 2025-10-07 23:58:43 25.05.20251001.5b5be50 6.12.49 *	2025-10-08 00:04:00 -05:00
blake	4ac1f27987	73 current 2025-10-07 23:58:43 25.05.20251001.5b5be50 6.12.49 *	2025-10-08 00:01:13 -05:00
blake	9d4e3178bf	73 current 2025-10-07 23:58:43 25.05.20251001.5b5be50 6.12.49 *	2025-10-07 23:59:59 -05:00
blake	0328e81bc8	72 current 2025-10-07 23:46:03 25.05.20251001.5b5be50 6.12.49 *	2025-10-07 23:58:45 -05:00
blake	551b7d4d7b	71 current 2025-10-07 23:27:54 25.05.20251001.5b5be50 6.12.49 *	2025-10-07 23:46:06 -05:00
blake	9ba7987921	70 current 2025-10-07 23:21:50 25.05.20251001.5b5be50 6.12.49 *	2025-10-07 23:28:01 -05:00