orion/srv
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
12 Commits 1 Branch 0 Tags 51 KiB
Shell 91.2%
HTML 8.8%
a82612b5f9
Go to file
Orion Kindel a82612b5f9
fix: stuff
2023-05-31 14:52:38 -05:00
src fix: stuff 2023-05-31 14:52:38 -05:00
.gitignore fix: stuff 2023-05-31 14:52:38 -05:00
README.md docs: add readme 2023-05-21 13:10:03 -05:00

README.md

srv

principles

  • strong security
    • fine-grained user-based access and security
    • rootless docker
    • user-space systemctl for scheduled tasks
  • re-runnable and idempotent; changes to configuration does the same work as initial setup without losing state

observable outputs

  • given gitea domain <git_url>:
    • configures ssl for https://<git_url>
    • forwards http://<git_url> -> https://<git_url>
    • https://<git_url> serves gitea instance using sqlite3
    • SSH git authentication via git@<git_url> is fully supported
    • gitea has actions enabled and a runner instance provided
    • any gitea instance data and sessions are preserved (Note: the linux user that "owns" the gitea instance was deleted and recreated, and configuration was overwritten by src/gitea-app.ini.)

setup

copy src/gitea-app.ini.sample to src/gitea-app.ini and fill in the ; <snip> secrets

running

copy this repository to the debian image, ex with sshfs:

> mkdir ./ext
> sshfs user@host:/mnt ./ext
> rm ./ext/*; cp ./src/* ./ext/ # <- effectively deploys new configuration

then on the host run /mnt/000-entry.sh in an interactive shell.