From e21be3d4735c1e81d0caa980e478e4be3e25ea95 Mon Sep 17 00:00:00 2001
From: Kabbone <tobias@opel-online.de>
Date: Tue, 3 Jan 2023 20:39:57 +0100
Subject: [PATCH] services: gitea fix typos and config

---
 modules/services/server/default.nix    |   2 +-
 modules/services/server/gitea.nix      |  73 +++++++++++++------------
 secrets/secrets.nix                    |   1 -
 secrets/services/gitea/extraConfig.age | Bin 1587 -> 0 bytes
 4 files changed, 39 insertions(+), 37 deletions(-)
 delete mode 100644 secrets/services/gitea/extraConfig.age

diff --git a/modules/services/server/default.nix b/modules/services/server/default.nix
index 770eee2..c593745 100644
--- a/modules/services/server/default.nix
+++ b/modules/services/server/default.nix
@@ -12,7 +12,7 @@
 
 [
   ./postgresql.nix
-  #./gitea.nix
+  ./gitea.nix
   ./nextcloud.nix
   ./matrix.nix
   ./coturn.nix
diff --git a/modules/services/server/gitea.nix b/modules/services/server/gitea.nix
index 198fcf5..22b82cc 100644
--- a/modules/services/server/gitea.nix
+++ b/modules/services/server/gitea.nix
@@ -8,27 +8,25 @@
   services.gitea = {
     enable = true;
     dump.enable = true;
-    rootUrl = "https://git2.kabtop.de"
+    rootUrl = "https://git2.kabtop.de";
     lfs.enable = true;
-    httpAdress = "localhost";
+    httpAddress = "localhost";
     dump.type = "tar.xz";
     domain = "git2.kabtop.de";
-#    database.type = "postgres";
-#    database.user = "gitea";
-#    database.name = "giteadb"
-#    database.passwordFile = config.age.secrets."services/gitea/databasePassword".path;
+    database.type = "postgres";
+    database.user = "gitea";
+    database.name = "giteadb"
+    database.passwordFile = config.age.secrets."services/gitea/databasePassword".path;
     appName = "Kabtop Git";
-#    mailerPasswordFile = config.age.secrets."services/gitea/mailerPassword".path;
+    mailerPasswordFile = config.age.secrets."services/gitea/mailerPassword".path;
     settings = {
-        RUN_MODE = "prod";
         server = {
             START_SSH_SERVER = true;
             SSH_PORT = 2222;
-            SSH_SERVER_CIPHERS = "";
-            SSH_SERVER_KEY_EXCHANGES = "";
-            SSH_SERVER_MACS = "";
+#            SSH_SERVER_CIPHERS = "";
+#            SSH_SERVER_KEY_EXCHANGES = "";
+#            SSH_SERVER_MACS = "";
             ENABLE_GZIP = true;
-            #LFS_JWT_SECRET = "secret123";
         };
         security = {
             MIN_PASSWORD_LENGTH = 8;
@@ -54,36 +52,41 @@
 #            ENABLE_AUTO_REGISTRATION = true;
 #        };
         time = {
-            DEFAULT_UI_LOCATION = "Europe/Berlin"
+            DEFAULT_UI_LOCATION = "Europe/Berlin";
         };
         other = {
             SHOW_FOOTER_VERSION = false;
-        }
+        };
 
         session.COOKIE_SECURE = true;
         service.DISABLE_REGISTRATION = true;
     };
+    extraConfig = ''
+        [database]
+        HOST = 127.0.0.1:5432
+    '';
+  };
 
-    services.nginx = {
-      enable = true;
-      recommendedTlsSettings = true;
-      recommendedOptimisation = true;
-      recommendedGzipSettings = true;
-      recommendedProxySettings = true;
-      virtualHosts = {
-        "${config.services.gitea.domain}" = {
-          enableACME = true;
-          forceSSL = true;
-          locations."/".proxyPass = "http://localhost:3000";
-        };
-    };
+  services.nginx = {
+    enable = true;
+    recommendedTlsSettings = true;
+    recommendedOptimisation = true;
+    recommendedGzipSettings = true;
+    recommendedProxySettings = true;
+    virtualHosts = {
+      "${config.services.gitea.domain}" = {
+        enableACME = true;
+        forceSSL = true;
+        locations."/".proxyPass = "http://localhost:3000";
+      };
+  };
 
-#    age.secrets."services/gitea/mailerPassword" = {
-#        file = ../../../secrets/services/gitea/mailerPassword.age;
-#        owner = "gitea";
-#    };
-    age.secrets."services/gitea/databasePassword" = {
-        file = ../../../secrets/services/gitea/databasePassword.age;
-        owner = "gitea";
-    };
+  age.secrets."services/gitea/mailerPassword" = {
+      file = ../../../secrets/services/gitea/mailerPassword.age;
+      owner = "gitea";
+  };
+  age.secrets."services/gitea/databasePassword" = {
+      file = ../../../secrets/services/gitea/databasePassword.age;
+      owner = "gitea";
+  };
 }
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 477a136..cebc20d 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -44,5 +44,4 @@ in
         "services/nextcloud/dbpassFile.age".publicKeys = servers ++ users;
         "services/gitea/databasePassword.age".publicKeys = servers ++ users;
         "services/gitea/mailerPassword.age".publicKeys = servers ++ users;
-        "services/gitea/extraConfig.age".publicKeys = servers ++ users;
     }
diff --git a/secrets/services/gitea/extraConfig.age b/secrets/services/gitea/extraConfig.age
deleted file mode 100644
index 60dccf9e11b360a38e6f6afe10c627078ebbf4a6..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 1587
zcmY+E|Ige60f$8(83mm)M6<ZS`640VxV62zUR%P<+Pk*b-rKuguh;f&6TN=#U9au+
zdTsCA5Q8!|HXw@;jL{bjE*N16Bls>z5M>KGFc{tmQ(hx(YF;G6Ws3L%L#K&9_!m5R
z@_F(Z*k-}>^=KZ(Zs2bZA{$I#pzzt;bm|mLqlh3dp7TvA)7v=^7cDcIGzg}}sB={V
zLDm-ozMgbZfj7vOQ5+Mbt)raM0}O%}I=u<g)v0;EkC3FgEW}C8>WNL9R-IB{`on-S
zan=p~M~kL|oE#6Cunn|Ht===rQe!;e%o!w*WS?uASv;<>)p8g2JK&rxbE?yt*XVY)
z6|g0_>F9EzTN*)XNdTzRf!j&){W5NMTmvb33y*iR%+rDd<GH}#9o!!@ERCnkA}ZHe
zj0&@Hy%DO_hE^0}5*P~o7Qx%FVNesJ*W!f!poZh~TI`!c8M0*y8e(Zj4h(MrvH1}-
z<tK<=)qH2}c*2Bj19Iru0TaRl-KG~d9%vPzCYV!nWK7Ijdze)gK4n^U9UIc^fQR#S
zZ=?*lIXgmq9%57!i0F8Xr<!1K5Qx%AoRnZur9zSHhpEXUi>%AlT_nv!MJf9O94TJb
zmx?7&@qD+PG-)8=VTbovxoNf-p~yh>d;-#C91=YZPpyi@%(*(6si{(r$Z6Kg2Sk|4
zW2;rE<(+bw$OBZZA{lwFf!E*|Q_b<Hi^<)z!#eg%C_>X1!bddi!xOKZwMSMY)l|qU
z_LziCET86<MPR}wo;))UmXSu{+$8!F6?NysbTMWVMQ0p$nYScd!uX1;ab}`cR7o#d
z9X9ggy3hsdK$Y$fFh5f}I$ti^oY9cvsOpgocS<-ZJX3@`2R0O$Zw-gjh|&ECuMA*e
z5|67UjMZov7>QL!Lsd2K;S_aZ#nTrEO;^%<(}C)8T7nxEgjBOi9}0}HBew_QK#pOB
z=_vggCu9)7$Wx59g@`TbQeC6<FtmcXlJ&xALnITdFQs{V)QgAcGW4I0LpLdeMWm9m
zBN0W?95E45Z$dO-7ty>}$Sg~6EsWF@m=LRAwJ7j}V)G@VR4jTxB^(Jexj(S<xLGUr
zYD%@)N&|4==j9%iaS}FnVu`MlTQ2{9EU|6R+U*=saRjH{cOz;U_Y%t)FI2QKZ0U9t
zbg`z<W93Ps5=uC&>ln}s#LK%HhTs|`9C<O`G-Ykh7z8zUMiml_FwL3y0^Jb)>%|o8
z$Q(?~T>Uly$#HvdcWG}9-opfBZadJ_RK<y>jJ>Q%i)9;yV#kw;E<|SzO6PH$D37LN
ze@vCST?DHTK%r2`jh4N<-;8G%;krFzYK(2URi#2=1_x|(`A-BebIg*v=&2C!<LIe<
zgEN<|-ePTfzPt7hWd9H2D!-MuX%b96`lrTzY0rH>LB4RyUVe2mD85U5{HEha)C;fO
zxYfM4`-<y#{_~2Cw|>i?H=TQBW#=dCHF~2aoPE5>x6U*RpMG}NZ6{Bi{lTu6Cp%s|
zzvJ!Q*S%As@Lz4&d-%Px{;s26T7Um<OQ+ADyXNq5{%e$U;?T1X{(kEV4?O*`SAKK%
zE_pS2@~_}s(AvspcE81|fBD0&KeY}&y#C(3-+E!=r1Jd(UttXKhN~a@Bjo&a`=KYy
z6H8m$cbtFe&Xo(>4n8hC4?efC_OE^4d1Kq{`@i?l&EJ?m^7osw(|4buuN)q_>#GHd
z{m^K2)45xjFJASdpKZ30*ME8JedlS=G@rvZUv=tu@trU4Iq}U0TdPm5Tzquj!E2oh
zz_pKk{iT&7A2~qzw;#Rk!y8AJ-ZY1$OK<G>#rD&$-Mjwkk$v^G_QvZU>@3`K?9|0O
zw%l{}t@TfS@bf3`TRZvg{dd0k?d}arZ@;|lp~fS><;uP9Ui10u&ph+FS06aE#cLiu
X_7uQ$@!u_8Ja{P;Zfrk#U^V<VbaGBd