add gitea service

author: Tim Keller <tjk@tjkeller.xyz> 2026-06-13 14:15:01 -0500
committer: Tim Keller <tjk@tjkeller.xyz> 2026-06-13 14:15:01 -0500
commit: 5d2a798166b0edb0d017178e14c2d687675b83a6 (patch)
tree: 8982c54204cf0385b13a2d50abaea966a0ae5428 /hosts/poweredge/gitea.nix
parent: 0c399269557491f62d1a4af3212d0463e7de4883 (diff)
download: nixos-5d2a798166b0edb0d017178e14c2d687675b83a6.tar.xz
nixos-5d2a798166b0edb0d017178e14c2d687675b83a6.zip
1 files changed, 32 insertions, 0 deletions
diff --git a/hosts/poweredge/gitea.nix b/hosts/poweredge/gitea.nix
new file mode 100644
index 0000000..c7a4c70
--- /dev/null
+++ b/hosts/poweredge/gitea.nix
@@ -0,0 +1,32 @@
+{
+	containers.gitea = {
+		autoStart = true;
+		privateNetwork = true;
+		extraVeths.vb-gitea = {
+			hostBridge = "br-lan0";
+			#localMacAddress = "02:00:00:00:00:03";  # TODO update to 26.05
+		};
+
+		config = { lib, pkgs, config, ... }: {
+			# Network
+			networking.interfaces.vb-gitea.useDHCP = true;
+			networking.firewall.allowedTCPPorts = [ 80 22 ];  # Caddy + ssh
+
+			# Gitea
+			services.gitea = {
+				enable = true;
+				user = "git";  # So ssh cloning uses git@gitea
+			};
+
+			# Reverse proxy
+			services.caddy = {
+				enable = true;
+				virtualHosts.":80".extraConfig = ''
+					reverse_proxy localhost:3000
+				'';
+			};
+
+			system.stateVersion = "25.11";
+		};
+	};
+}
author	Tim Keller <tjk@tjkeller.xyz>	2026-06-13 14:15:01 -0500
committer	Tim Keller <tjk@tjkeller.xyz>	2026-06-13 14:15:01 -0500
commit	5d2a798166b0edb0d017178e14c2d687675b83a6 (patch)
tree	8982c54204cf0385b13a2d50abaea966a0ae5428 /hosts/poweredge/gitea.nix
parent	0c399269557491f62d1a4af3212d0463e7de4883 (diff)
download	nixos-5d2a798166b0edb0d017178e14c2d687675b83a6.tar.xz nixos-5d2a798166b0edb0d017178e14c2d687675b83a6.zip