Merge branch 'poweredge'

author: Tim Keller <tjk@tjkeller.xyz> 2026-06-13 14:26:56 -0500
committer: Tim Keller <tjk@tjkeller.xyz> 2026-06-13 14:26:56 -0500
commit: feadf7131e5b6c33ea8485e746361b0529cd6ef4 (patch)
tree: 86c05c33a837eefc566bec45f5ef91e3c7d91eca /hosts/poweredge/gitea.nix
parent: b39f24436d5672e90e4261f0dfb906d97e92f1be (diff)
parent: 0397e503b32e73e03ef2dcdda58cc60da262524d (diff)
download: nixos-feadf7131e5b6c33ea8485e746361b0529cd6ef4.tar.xz
nixos-feadf7131e5b6c33ea8485e746361b0529cd6ef4.zip
1 files changed, 32 insertions, 0 deletions
diff --git a/hosts/poweredge/gitea.nix b/hosts/poweredge/gitea.nix
new file mode 100644
index 0000000..c7a4c70
--- /dev/null
+++ b/hosts/poweredge/gitea.nix
@@ -0,0 +1,32 @@
+{
+	containers.gitea = {
+		autoStart = true;
+		privateNetwork = true;
+		extraVeths.vb-gitea = {
+			hostBridge = "br-lan0";
+			#localMacAddress = "02:00:00:00:00:03";  # TODO update to 26.05
+		};
+
+		config = { lib, pkgs, config, ... }: {
+			# Network
+			networking.interfaces.vb-gitea.useDHCP = true;
+			networking.firewall.allowedTCPPorts = [ 80 22 ];  # Caddy + ssh
+
+			# Gitea
+			services.gitea = {
+				enable = true;
+				user = "git";  # So ssh cloning uses git@gitea
+			};
+
+			# Reverse proxy
+			services.caddy = {
+				enable = true;
+				virtualHosts.":80".extraConfig = ''
+					reverse_proxy localhost:3000
+				'';
+			};
+
+			system.stateVersion = "25.11";
+		};
+	};
+}
author	Tim Keller <tjk@tjkeller.xyz>	2026-06-13 14:26:56 -0500
committer	Tim Keller <tjk@tjkeller.xyz>	2026-06-13 14:26:56 -0500
commit	feadf7131e5b6c33ea8485e746361b0529cd6ef4 (patch)
tree	86c05c33a837eefc566bec45f5ef91e3c7d91eca /hosts/poweredge/gitea.nix
parent	b39f24436d5672e90e4261f0dfb906d97e92f1be (diff)
parent	0397e503b32e73e03ef2dcdda58cc60da262524d (diff)
download	nixos-feadf7131e5b6c33ea8485e746361b0529cd6ef4.tar.xz nixos-feadf7131e5b6c33ea8485e746361b0529cd6ef4.zip