fix forgejo on trantor
This commit is contained in:
parent
fe460c9151
commit
657e1e4697
2 changed files with 6 additions and 3 deletions
|
|
@ -21,6 +21,8 @@ in
|
||||||
ROOT_URL = "https://git.baduhai.dev";
|
ROOT_URL = "https://git.baduhai.dev";
|
||||||
OFFLINE_MODE = true; # disable use of CDNs
|
OFFLINE_MODE = true; # disable use of CDNs
|
||||||
SSH_DOMAIN = "git.baduhai.dev";
|
SSH_DOMAIN = "git.baduhai.dev";
|
||||||
|
SSH_USER = "forgejo";
|
||||||
|
SSH_PORT = lib.head config.services.openssh.ports;
|
||||||
};
|
};
|
||||||
log.LEVEL = "Warn";
|
log.LEVEL = "Warn";
|
||||||
mailer.ENABLED = false;
|
mailer.ENABLED = false;
|
||||||
|
|
@ -67,5 +69,8 @@ in
|
||||||
};
|
};
|
||||||
|
|
||||||
# Disable PrivateMounts to allow LoadCredential to work with bind-mounted directories
|
# Disable PrivateMounts to allow LoadCredential to work with bind-mounted directories
|
||||||
systemd.services.forgejo.serviceConfig.PrivateMounts = lib.mkForce false;
|
systemd.services.forgejo.serviceConfig = {
|
||||||
|
PrivateMounts = lib.mkForce false;
|
||||||
|
ProtectSystem = lib.mkForce false;
|
||||||
|
};
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -8,10 +8,8 @@
|
||||||
let
|
let
|
||||||
services = inputs.self.services;
|
services = inputs.self.services;
|
||||||
|
|
||||||
# Get all unique domains from shared services on trantor (host = "trantor")
|
|
||||||
localDomains = lib.unique (map (s: s.domain) (lib.filter (s: s.host == "trantor") services));
|
localDomains = lib.unique (map (s: s.domain) (lib.filter (s: s.host == "trantor") services));
|
||||||
|
|
||||||
# Generate ACME cert configs for all local domains
|
|
||||||
acmeCerts = lib.genAttrs localDomains (domain: {
|
acmeCerts = lib.genAttrs localDomains (domain: {
|
||||||
group = "nginx";
|
group = "nginx";
|
||||||
});
|
});
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue