nixfmt

2026-02-25 20:13:18 +01:00 · 2026-02-25 20:13:18 +01:00 · 3e82d5f015
commit 3e82d5f015
parent 6add85a106
5 changed files with 173 additions and 166 deletions
--- a/hosts/git/default.nix
+++ b/hosts/git/default.nix
@ -29,21 +29,14 @@ in
  ];

  networking.hostName = "git";
-  networking.domain = "test.htw.stura-dresden.de";
  networking.interfaces.ens18.ipv4.addresses = [
    {
-      address = "167.235.225.23";
-      prefixLength = 32;
+      address = "141.56.51.97";
+      prefixLength = 24;
    }
  ];

-  networking.interfaces.ens18.ipv6.addresses = [
-    {
-      address = "2a01:4f8:c012:6bd7::1";
-      prefixLength = 32;
-    }
-  ];
-  networking.defaultGateway.address = "172.31.1.1";
+  networking.defaultGateway.address = "141.56.51.254";
  networking.nameservers = [
    "9.9.9.9"
    "1.1.1.1"
@ -53,30 +46,36 @@ in
  services.forgejo = {
    enable = true;
    settings = {
-      
+
      server = {
        PROTOCOL = "http+unix";
-        HTTP_ADDR = "/var/run/forgejo.sock";
+        HTTP_ADDR = "/run/forgejo/forgejo.sock";
        ROOT_URL = "https://${config.networking.fqdn}";
      };
+      oauth2_client = {
+        ENABLE_AUTO_REGISTRATION = "true";
+        REGISTER_EMAIL_CONFIRM = "false";
+        username = "email";
+      };
+      service = {
+        SHOW_REGISTRATION_BUTTON = "false";
+      };
    };
  };

  services.nginx = {
    enable = true;
-    virtualHosts."git.htw.stura-dresden.de" = {
+    virtualHosts."${config.networking.fqdn}" = {
+      forceSSL = true;
+      enableACME = true;
      locations."/" = {
        recommendedProxySettings = true;
        proxyWebsockets = true;
-        proxyPass = "http://unix:/var/run/forgejo.sock";
+        proxyPass = "http://unix:/run/forgejo/forgejo.sock";
      };
    };
  };

-  # virtualisation.docker.enable = true;
-  security.acme.acceptTerms = true;
-  security.acme.defaults.email = "cert@stura.htw-dresden.de";
-
  networking.firewall.allowedTCPPorts = [
    25
    80