Compare commits
8 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
 fauno
|
6a0339d3f2
|
||
 notplants
|
ce4de9e645 | ||
 notplants
|
357926f26e | ||
|
notplants
|
e6a1cc79e9 | ||
|
notplants
|
34dd04ac99 | ||
 ammaratef45
|
6aa52c1e73 | ||
 3wc
|
db92e97071 | ||
 p4u1
|
d86d742ed1 |
+3
-2
@@ -8,8 +8,9 @@ COMPOSE_FILE="$COMPOSE_FILE:compose.mariadb.yml"
|
|||||||
# COMPOSE_FILE="$COMPOSE_FILE:compose.sqlite3.yml"
|
# COMPOSE_FILE="$COMPOSE_FILE:compose.sqlite3.yml"
|
||||||
# COMPOSE_FILE="$COMPOSE_FILE:compose.postgres.yml"
|
# COMPOSE_FILE="$COMPOSE_FILE:compose.postgres.yml"
|
||||||
|
|
||||||
# Enable to use forgejo instead of gitea
|
# Enable Git LFS on plain gitea (not needed with forgejo, which bundles it).
|
||||||
# COMPOSE_FILE="$COMPOSE_FILE:compose.forgejo.yml"
|
# Mounts the lfs_jwt_secret secret and sets GITEA_LFS_START_SERVER=true.
|
||||||
|
# COMPOSE_FILE="$COMPOSE_FILE:compose.lfs.yml"
|
||||||
# SECRET_LFS_JWT_SECRET_VERSION=v1 # length=43
|
# SECRET_LFS_JWT_SECRET_VERSION=v1 # length=43
|
||||||
|
|
||||||
GITEA_DOMAIN=git.example.com
|
GITEA_DOMAIN=git.example.com
|
||||||
|
|||||||
@@ -15,7 +15,7 @@
|
|||||||
|
|
||||||
## Basic usage
|
## Basic usage
|
||||||
|
|
||||||
1. Set up Docker Swarm and [`abra`][abra]
|
1. [Set up Docker Swarm and `abra`][operators-tutorial]
|
||||||
2. Deploy [`coop-cloud/traefik`][cc-traefik]
|
2. Deploy [`coop-cloud/traefik`][cc-traefik]
|
||||||
3. `abra app new gitea --secrets` (optionally with `--pass` if you'd like
|
3. `abra app new gitea --secrets` (optionally with `--pass` if you'd like
|
||||||
to save secrets in `pass`)
|
to save secrets in `pass`)
|
||||||
@@ -23,12 +23,15 @@
|
|||||||
your Docker swarm box
|
your Docker swarm box
|
||||||
5. `abra app deploy YOURAPPDOMAIN`
|
5. `abra app deploy YOURAPPDOMAIN`
|
||||||
|
|
||||||
|
[operators-tutorial]: https://docs.coopcloud.tech/operators/tutorial/
|
||||||
|
[cc-traefik]: https://git.coopcloud.tech/coop-cloud/traefik/
|
||||||
|
|
||||||
## Create first user
|
## Create first user
|
||||||
|
|
||||||
Run
|
Run
|
||||||
|
|
||||||
```bash
|
```bash
|
||||||
abra app run YOURAPPNAME app gitea -c /etc/gitea/app.ini admin user create --username USERNAME --admin --random-password --email EMAIL
|
abra app run YOURAPPNAME app -- gitea -c /etc/gitea/app.ini admin user create --username USERNAME --admin --random-password --email EMAIL
|
||||||
```
|
```
|
||||||
|
|
||||||
See the [Gitea command-line documentation](https://docs.gitea.io/en-us/command-line/) for more options. Make sure not to forget the `-c /etc/gitea/app.ini`.
|
See the [Gitea command-line documentation](https://docs.gitea.io/en-us/command-line/) for more options. Make sure not to forget the `-c /etc/gitea/app.ini`.
|
||||||
@@ -36,25 +39,34 @@ See the [Gitea command-line documentation](https://docs.gitea.io/en-us/command-l
|
|||||||
## Enable SSH
|
## Enable SSH
|
||||||
|
|
||||||
You most certainly want to be able to access your repository over SSH. To do so, make sure you uncomment the right lines in the configuration for `traefik`.
|
You most certainly want to be able to access your repository over SSH. To do so, make sure you uncomment the right lines in the configuration for `traefik`.
|
||||||
```
|
|
||||||
|
```sh
|
||||||
abra app config YOURTRAEFIKAPP
|
abra app config YOURTRAEFIKAPP
|
||||||
```
|
```
|
||||||
|
|
||||||
There uncomment or add these lines:
|
There uncomment or add these lines:
|
||||||
```
|
|
||||||
|
```sh
|
||||||
GITEA_SSH_ENABLED=1
|
GITEA_SSH_ENABLED=1
|
||||||
COMPOSE_FILE="compose.yml:compose.gitea.yml"
|
COMPOSE_FILE="compose.yml:compose.gitea.yml"
|
||||||
```
|
```
|
||||||
|
|
||||||
Then redeploy traefik:
|
Then redeploy traefik:
|
||||||
```
|
|
||||||
|
```sh
|
||||||
abra app undeploy YOURTRAEFIKAPP
|
abra app undeploy YOURTRAEFIKAPP
|
||||||
abra app deploy YOURTRAEFIKAPP
|
abra app deploy YOURTRAEFIKAPP
|
||||||
```
|
```
|
||||||
|
|
||||||
You might need to wait a bit. To check if it worked, you can run
|
You might need to wait a bit. To check if it worked, you can run
|
||||||
```
|
|
||||||
|
```sh
|
||||||
telnet my.gitea.example.com 2222
|
telnet my.gitea.example.com 2222
|
||||||
```
|
```
|
||||||
|
|
||||||
Once you have added a public SSH key, you can check that you can connect to your gitea server with
|
Once you have added a public SSH key, you can check that you can connect to your gitea server with
|
||||||
```
|
|
||||||
|
```sh
|
||||||
ssh -T -p 2222 git@my.gitea.example.com
|
ssh -T -p 2222 git@my.gitea.example.com
|
||||||
```
|
```
|
||||||
|
|
||||||
|
|||||||
@@ -1,4 +1,4 @@
|
|||||||
export APP_INI_VERSION=v21
|
export APP_INI_VERSION=v22
|
||||||
export DOCKER_SETUP_SH_VERSION=v1
|
export DOCKER_SETUP_SH_VERSION=v1
|
||||||
export PG_BACKUP_VERSION=v1
|
export PG_BACKUP_VERSION=v1
|
||||||
|
|
||||||
|
|||||||
+1
-1
@@ -61,7 +61,7 @@ SSH_LISTEN_PORT = {{ env "GITEA_SSH_PORT" }}
|
|||||||
SSH_PORT = {{ env "GITEA_SSH_PORT" }}
|
SSH_PORT = {{ env "GITEA_SSH_PORT" }}
|
||||||
START_SSH_SERVER = true
|
START_SSH_SERVER = true
|
||||||
LFS_START_SERVER = {{ env "GITEA_LFS_START_SERVER" }}
|
LFS_START_SERVER = {{ env "GITEA_LFS_START_SERVER" }}
|
||||||
{{ if eq (env "FORGE") "forgejo" }}
|
{{ if (eq (env "GITEA_LFS_START_SERVER") "true") }}
|
||||||
LFS_JWT_SECRET = {{ secret "lfs_jwt_secret" }}
|
LFS_JWT_SECRET = {{ secret "lfs_jwt_secret" }}
|
||||||
{{ end }}
|
{{ end }}
|
||||||
|
|
||||||
|
|||||||
@@ -1,12 +1,12 @@
|
|||||||
version: '3.8'
|
version: "3.8"
|
||||||
|
|
||||||
services:
|
services:
|
||||||
app:
|
app:
|
||||||
image: codeberg.org/forgejo/forgejo:12.0.2-rootless
|
|
||||||
environment:
|
environment:
|
||||||
- FORGE=forgejo
|
- GITEA_LFS_START_SERVER=true
|
||||||
secrets:
|
secrets:
|
||||||
- lfs_jwt_secret
|
- lfs_jwt_secret
|
||||||
|
|
||||||
secrets:
|
secrets:
|
||||||
lfs_jwt_secret:
|
lfs_jwt_secret:
|
||||||
name: ${STACK_NAME}_lfs_jwt_secret_${SECRET_LFS_JWT_SECRET_VERSION}
|
name: ${STACK_NAME}_lfs_jwt_secret_${SECRET_LFS_JWT_SECRET_VERSION}
|
||||||
+2
-2
@@ -15,7 +15,6 @@ services:
|
|||||||
- jwt_secret
|
- jwt_secret
|
||||||
- secret_key
|
- secret_key
|
||||||
environment:
|
environment:
|
||||||
- FORGE=gitea
|
|
||||||
- GITEA_ALLOW_ONLY_EXTERNAL_REGISTRATION
|
- GITEA_ALLOW_ONLY_EXTERNAL_REGISTRATION
|
||||||
- GITEA_APP_NAME
|
- GITEA_APP_NAME
|
||||||
- GITEA_AUTO_WATCH_NEW_REPOS
|
- GITEA_AUTO_WATCH_NEW_REPOS
|
||||||
@@ -84,10 +83,11 @@ services:
|
|||||||
- "traefik.tcp.services.${STACK_NAME}-ssh.loadbalancer.server.port=${GITEA_SSH_PORT}"
|
- "traefik.tcp.services.${STACK_NAME}-ssh.loadbalancer.server.port=${GITEA_SSH_PORT}"
|
||||||
- "traefik.http.routers.${STACK_NAME}.middlewares=${STACK_NAME}_cors"
|
- "traefik.http.routers.${STACK_NAME}.middlewares=${STACK_NAME}_cors"
|
||||||
- "traefik.http.middlewares.${STACK_NAME}_cors.headers.accesscontrolallowmethods=GET,OPTIONS,PUT"
|
- "traefik.http.middlewares.${STACK_NAME}_cors.headers.accesscontrolallowmethods=GET,OPTIONS,PUT"
|
||||||
|
- "traefik.http.middlewares.${STACK_NAME}_cors.headers.accesscontrolallowheaders=content-type,authorization"
|
||||||
- "traefik.http.middlewares.${STACK_NAME}_cors.headers.accesscontrolalloworiginlist=https://${GITEA_CORS_ALLOW_DOMAIN}"
|
- "traefik.http.middlewares.${STACK_NAME}_cors.headers.accesscontrolalloworiginlist=https://${GITEA_CORS_ALLOW_DOMAIN}"
|
||||||
- "traefik.http.middlewares.${STACK_NAME}_cors.headers.accesscontrolmaxage=100"
|
- "traefik.http.middlewares.${STACK_NAME}_cors.headers.accesscontrolmaxage=100"
|
||||||
- "traefik.http.middlewares.${STACK_NAME}_cors.headers.addvaryheader=true"
|
- "traefik.http.middlewares.${STACK_NAME}_cors.headers.addvaryheader=true"
|
||||||
- coop-cloud.${STACK_NAME}.version=3.5.3+1.24.2-rootless
|
- coop-cloud.${STACK_NAME}.version=3.6.0+1.24.2-rootless
|
||||||
|
|
||||||
|
|
||||||
networks:
|
networks:
|
||||||
|
|||||||
Reference in New Issue
Block a user