modules/services/gitea/default.nix


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52

{ config, pkgs, lib, ... }:
let cfg = config.my.services.gitea;
in {
  options.my.services.gitea = with lib; {
    enable = mkEnableOption "gitea git server";
    stateDir = mkOption {
      type = types.str;
      example = "/var/lib/gitea";
      description = "gitea base directory";
    };
  };

  config = lib.mkIf cfg.enable {
    users.users.git = {
      description = "Gitea Service";
      home = cfg.stateDir;
      useDefaultShell = true;
      group = "git";
      isSystemUser = true;
    };
    users.groups.git = { };

    services.gitea = {
      enable = true;
      user = "git";
      domain = "git.fcuny.net";
      appName = "${cfg.domain}";
      rootUrl = "https://${cfg.domain}/";
      httpAddress = "127.0.0.1";
      httpPort = 8002;
      log.level = "Error";
      settings = { other.SHOW_FOOTER_VERSION = false; };
      dump.enable = false;
      database = {
        type = "sqlite3";
        user = cfg.user;
      };
    };

    services.restic.backups = {
      gitea = {
        paths = [ cfg.stateDir ];
        repository = "/data/slow/backups/systems";
        passwordFile = config.age.secrets.restic-repo-systems.path;
        timerConfig = { OnCalendar = "00:15"; };
        initialize = true;
        extraBackupArgs = [ "--tag gitea" ];
        pruneOpts = [ "--keep-daily 7" "--keep-weekly 4 --keep-monthly 6" ];
      };
    };
  };
}