newedge/infra
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: newedge:mob/gitea
Branches Tags
newedge:main newedge:mob/fax-machine-relay newedge:fax-machine-relay newedge:whitehouse-router newedge:mob/vega-backup newedge:mob/router-device newedge:router-device newedge:vega-backup newedge:mob/inventree-test newedge:inventree-test newedge:mob/noreply-mailer newedge:noreply-mailer newedge:mob/vega-ups newedge:b4l-vpn newedge:vega-ups newedge:mob/gitea newedge:gitea
..
compare: newedge:db5e0e55ce4d32d43d6f9f95853fd927c12ad5e3
Branches Tags
newedge:mob/fax-machine-relay newedge:fax-machine-relay newedge:main newedge:whitehouse-router newedge:mob/vega-backup newedge:mob/router-device newedge:router-device newedge:vega-backup newedge:mob/inventree-test newedge:inventree-test newedge:mob/noreply-mailer newedge:noreply-mailer newedge:mob/vega-ups newedge:b4l-vpn newedge:vega-ups newedge:mob/gitea newedge:gitea

8 Commits
mob/gitea ... db5e0e55ce

Author SHA1 Message Date
kurogeek
db5e0e55ce age-plugin-yubikey 2025-09-22 14:37:02 +07:00
kurogeek
aa19ffa9ba add matthewcroughan to admin 2025-09-22 14:36:45 +07:00
kurogeek
d344790bfe add vi to admin 2025-09-22 11:59:50 +07:00
kurogeek
3937ce27db Add user vi to secrets 2025-09-22 11:59:35 +07:00
kurogeek
c78048d53a add davhau to admin 2025-09-22 11:11:59 +07:00
kurogeek
0fb4199965 add berwn to admin 2025-09-22 11:11:16 +07:00
kurogeek
4dd06992e0 Add user davhau to secrets 2025-09-22 10:29:57 +07:00
kurogeek
dbdaa8ae22 Add user berwn to secrets 2025-09-22 10:27:37 +07:00
9 changed files with 29 additions and 104 deletions
Expand all files Collapse all files

17
inventories/default.nix
View File

@@ -21,8 +21,18 @@
};
roles.default.tags."all" = { };
roles.default.settings.allowedKeys = {
"berwn" = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAB/raxJR8gASmquP63weHelbi+da2WBJR1DgzHPNz/f";
"davhau" = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDuhpzDHBPvn8nv8RH1MRomDOaXyP4GziQm7r3MZ1Syk";
"vi" =
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAmgyEGuY/r7SDlJgrzYmQqpcWS5W+fCzRi3OS59ne4W openpgp:0xFF687387";
"kurogeek" =
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEcZ/p1Ofa9liwIzPWzNtONhJ7+FUWd2lCz33r81t8+w kurogeek@kurogeek";
"matthewcroughan" =
"sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIOJDRQfb1+7VK5tOe8W40iryfBWYRO6Uf1r2viDjmsJtAAAABHNzaDo=";
"matthewcroughan-1" =
"sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIDgsWq+G/tcr6eUQYT7+sJeBtRmOMabgFiIgIV44XNc6AAAABHNzaDo=";
"matthewcroughan-2" =
"sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIJMi3TAuwDtIeO4MsORlBZ31HzaV5bji1fFBPcC9/tWuAAAABHNzaDo=";
};
};
@@ -90,13 +100,6 @@
};
roles.default.machines.b4l = { };
};
gitea = {
module = {
name = "gitea";
input = "self";
};
roles.default.machines.b4l = { };
};
};
};
};

2
machines/b4l/services/gitea.nix
View File

@@ -1,2 +0,0 @@
{
}

1
machines/default.nix
View File

@@ -6,6 +6,7 @@
clan = {
meta.name = "NewEdgeClan";
machines = { };
secrets.age.plugins = [ "age-plugin-yubikey" ];
specialArgs = { inherit inputs self; };
inherit self;
};

27
modules/clan/gitea/default.nix
View File

@@ -1,27 +0,0 @@
{ ... }:
{
_class = "clan.service";
manifest.name = "gitea";
manifest.description = "Git with a cup of tea!";
manifest.categories = [ "System" ];
roles.default = {
perInstance.nixosModule =
{
config,
lib,
...
}:
{
services.gitea = {
enable = lib.mkDefault true;
dump = {
enable = lib.mkDefault true;
};
};
clan.core.state.gitea.folders = [ config.services.gitea.dump.backupDir ];
};
};
}

18
modules/clan/gitea/flake-module.nix
View File

@@ -1,18 +0,0 @@
{ lib, ... }:
let
module = lib.modules.importApply ./default.nix { };
in
{
clan.modules = {
gitea = module;
};
perSystem =
{ ... }:
{
clan.nixosTests.gitea = {
imports = [ ./tests/vm/default.nix ];
clan.modules."@clan/gitea" = module;
};
};
}

50
modules/clan/gitea/tests/vm/default.nix
View File

@@ -1,50 +0,0 @@
{
pkgs,
lib,
...
}:
{
name = "service-gitea";
clan = {
directory = ./.;
inventory = {
machines.server = { };
instances = {
gitea-test = {
module.name = "@clan/gitea";
module.input = "self";
roles.default.machines."server".settings = { };
};
};
};
};
nodes = {
server = {
services.gitea = {
dump.file = "test-dump";
};
};
};
testScript =
{ nodes, ... }:
let
gitea = nodes.server.config.services.gitea;
in
''
start_all()
server.wait_for_unit("gitea")
server.succeed("systemctl status gitea")
server.wait_for_open_port(3000)
server.succeed("curl http://127.0.0.1:3000")
server.succeed("${lib.getExe pkgs.gitea} dump -h")
server.succeed("systemctl start gitea-dump")
server.wait_for_file("${gitea.dump.backupDir}/${gitea.dump.file}")
'';
}

6
sops/users/berwn/key.json Executable file
View File

@@ -0,0 +1,6 @@
[
{
"publickey": "age1swlyyk2rzvevqawyeekv75nx2dz34zpe3xqhkqme26gcgeavy4dqrfpcd8",
"type": "age"
}
]

6
sops/users/davhau/key.json Executable file
View File

@@ -0,0 +1,6 @@
[
{
"publickey": "age1vphy2sr6uw4ptsua3gh9khrm2cqyt65t46tusmt44z98qa7q6ymq6prrdl",
"type": "age"
}
]

6
sops/users/vi/key.json Executable file
View File

@@ -0,0 +1,6 @@
[
{
"publickey": "age134vt63pjqpd0m7702fyn8vhdlzyj2deqc2q78sp9uw9052kxsgwq6d25ez",
"type": "age"
}
]