Compare commits
3 commits
319550e718
...
be5fb3bc24
| Author | SHA1 | Date | |
|---|---|---|---|
| be5fb3bc24 | |||
| c603df28bf | |||
| 3d439c4893 |
3 changed files with 30 additions and 5 deletions
8
flake.lock
generated
8
flake.lock
generated
|
|
@ -377,11 +377,11 @@
|
||||||
"secrets": {
|
"secrets": {
|
||||||
"flake": false,
|
"flake": false,
|
||||||
"locked": {
|
"locked": {
|
||||||
"lastModified": 1713776544,
|
"lastModified": 1713863887,
|
||||||
"narHash": "sha256-EQW8P1TfkYQV0EEK1n3Gh9wRp9KlC0EbidH2j+niCaE=",
|
"narHash": "sha256-TwlNZjJloyZ0/5KCPeSWrnyDfEFokayovRPQY7xqq1g=",
|
||||||
"ref": "refs/heads/main",
|
"ref": "refs/heads/main",
|
||||||
"rev": "61410d68f15b3b970067a3fdd39667fdd9a89edd",
|
"rev": "b8c66d7b0ca9fc21bc5332801b0203033cc3a772",
|
||||||
"revCount": 12,
|
"revCount": 13,
|
||||||
"type": "git",
|
"type": "git",
|
||||||
"url": "ssh://forgejo@git.everest.sable-pancake.ts.net:4222/Toast/nix-secrets"
|
"url": "ssh://forgejo@git.everest.sable-pancake.ts.net:4222/Toast/nix-secrets"
|
||||||
},
|
},
|
||||||
|
|
|
||||||
|
|
@ -1,4 +1,9 @@
|
||||||
{...}: {
|
{...}: {
|
||||||
|
programs.ssh.knownHosts = {
|
||||||
|
"[git.everest.sable-pancake.ts.net]:4222".publicKey = ''
|
||||||
|
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKoUcWx56NZ3kqydN3d0gLNz6SlBm1ArkHhqR9Fwd8qs
|
||||||
|
'';
|
||||||
|
};
|
||||||
home-manager.users.toast = {
|
home-manager.users.toast = {
|
||||||
programs.git = {
|
programs.git = {
|
||||||
enable = true;
|
enable = true;
|
||||||
|
|
|
||||||
|
|
@ -1,8 +1,26 @@
|
||||||
{
|
{
|
||||||
config,
|
config,
|
||||||
lib,
|
lib,
|
||||||
|
flakeSelf,
|
||||||
...
|
...
|
||||||
}: {
|
}: let
|
||||||
|
hostSecrets = "${flakeSelf.inputs.secrets}/" + config.networking.hostName + "/";
|
||||||
|
in {
|
||||||
|
age.secrets = {
|
||||||
|
forgejo-host-key = {
|
||||||
|
file = hostSecrets + "forgejoPrivateKey.age";
|
||||||
|
mode = "0400";
|
||||||
|
owner = "forgejo";
|
||||||
|
group = "forgejo";
|
||||||
|
};
|
||||||
|
"forgejo-host-key.pub" = {
|
||||||
|
file = hostSecrets + "forgejoPublicKey.age";
|
||||||
|
mode = "0400";
|
||||||
|
owner = "forgejo";
|
||||||
|
group = "forgejo";
|
||||||
|
};
|
||||||
|
};
|
||||||
|
|
||||||
specialisation.forgejoEnableRegistration.configuration.services.forgejo.settings.service.DISABLE_REGISTRATION = false;
|
specialisation.forgejoEnableRegistration.configuration.services.forgejo.settings.service.DISABLE_REGISTRATION = false;
|
||||||
services.forgejo = {
|
services.forgejo = {
|
||||||
enable = true;
|
enable = true;
|
||||||
|
|
@ -14,6 +32,8 @@
|
||||||
ROOT_URL = "http://git.everest.sable-pancake.ts.net";
|
ROOT_URL = "http://git.everest.sable-pancake.ts.net";
|
||||||
START_SSH_SERVER = true;
|
START_SSH_SERVER = true;
|
||||||
SSH_PORT = 4222;
|
SSH_PORT = 4222;
|
||||||
|
SSH_SERVER_HOST_KEYS = config.age.secrets.forgejo-host-key.path;
|
||||||
|
SSH_SERVER_HOST_KEY = "forgejo-host-key";
|
||||||
};
|
};
|
||||||
repository = {
|
repository = {
|
||||||
ENABLE_PUSH_CREATE_USER = true;
|
ENABLE_PUSH_CREATE_USER = true;
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue