Initial CommitHEAD master

author: Sam Chudnick <sam@chudnick.com> 2023-06-25 09:52:36 -0400
committer: Sam Chudnick <sam@chudnick.com> 2023-06-25 09:52:36 -0400
commit: 95b73daa36b23565a8566f71f9b202d3459b685f (patch)
tree: cb17b021be70e7868d0ec235a761f0ecdc80f3f2 /data/gitea
2 files changed, 133 insertions, 0 deletions
diff --git a/data/gitea/app.ini b/data/gitea/app.ini
new file mode 100644
index 0000000..84f9647
--- /dev/null
+++ b/data/gitea/app.ini
@@ -0,0 +1,103 @@
+APP_NAME = Gitea: Git with a cup of tea
+RUN_MODE = prod
+RUN_USER = git
+[repository]
+ROOT = /data/git/repositories
+ENABLE_PUSH_CREATE_USER = true
+DEFAULT_PUSH_CREATE_PRIVATE = false
+[repository.local]
+LOCAL_COPY_PATH = /data/gitea/tmp/local-repo
+[repository.upload]
+TEMP_PATH = /data/gitea/uploads
+[server]
+APP_DATA_PATH    = /data/gitea
+DOMAIN           = gitea.chudnick.com
+SSH_DOMAIN       = gitea.chudnick.com
+HTTP_PORT        = 3000
+ROOT_URL         = https://gitea.chudnick.com/
+DISABLE_SSH      = false
+SSH_PORT         = 22
+SSH_LISTEN_PORT  = 22
+LFS_START_SERVER = true
+LFS_JWT_SECRET   = 
+OFFLINE_MODE     = false
+[database]
+PATH     = /data/gitea/gitea.db
+DB_TYPE  = sqlite3
+HOST     = localhost:3306
+NAME     = gitea
+USER     = root
+PASSWD   = 
+LOG_SQL  = false
+SCHEMA   = 
+SSL_MODE = disable
+CHARSET  = utf8
+[indexer]
+ISSUE_INDEXER_PATH = /data/gitea/indexers/issues.bleve
+[session]
+PROVIDER_CONFIG = /data/gitea/sessions
+PROVIDER        = file
+[picture]
+AVATAR_UPLOAD_PATH            = /data/gitea/avatars
+REPOSITORY_AVATAR_UPLOAD_PATH = /data/gitea/repo-avatars
+DISABLE_GRAVATAR              = false
+ENABLE_FEDERATED_AVATAR       = true
+[attachment]
+PATH = /data/gitea/attachments
+[log]
+MODE      = console
+LEVEL     = info
+ROUTER    = console
+ROOT_PATH = /data/gitea/log
+[security]
+INSTALL_LOCK                  = true
+SECRET_KEY                    = 
+REVERSE_PROXY_LIMIT           = 1
+REVERSE_PROXY_TRUSTED_PROXIES = *
+INTERNAL_TOKEN                = 
+PASSWORD_HASH_ALGO            = pbkdf2
+[service]
+DISABLE_REGISTRATION              = false
+REQUIRE_SIGNIN_VIEW               = false
+REGISTER_EMAIL_CONFIRM            = false
+ENABLE_NOTIFY_MAIL                = false
+ALLOW_ONLY_EXTERNAL_REGISTRATION  = false
+ENABLE_CAPTCHA                    = false
+DEFAULT_KEEP_EMAIL_PRIVATE        = false
+DEFAULT_ALLOW_CREATE_ORGANIZATION = true
+DEFAULT_ENABLE_TIMETRACKING       = true
+NO_REPLY_ADDRESS                  = noreply.localhost
+[lfs]
+PATH = /data/git/lfs
+[mailer]
+ENABLED = false
+[openid]
+ENABLE_OPENID_SIGNIN = true
+ENABLE_OPENID_SIGNUP = true
+[repository.pull-request]
+DEFAULT_MERGE_STYLE = merge
+[repository.signing]
+DEFAULT_TRUST_MODEL = committer
+[webhook]
+ALLOWED_HOST_LIST = jenkins.chudnick.com
+[metrics]
+ENABLED = true
diff --git a/data/gitea/gitea.conf b/data/gitea/gitea.conf
new file mode 100644
index 0000000..1b862a4
--- /dev/null
+++ b/data/gitea/gitea.conf
@@ -0,0 +1,30 @@
+server {
+        listen 443 ssl;
+        server_name gitea.chudnick.com;
+    ssl_certificate /etc/letsencrypt/live/chudnick.com/fullchain.pem;
+    ssl_certificate_key /etc/letsencrypt/live/chudnick.com/privkey.pem;
+    add_header Strict-Transport-Security "max-age=31536000" always;
+    ssl_stapling on;
+    ssl_stapling_verify on;
+    # Security / XSS Mitigation Headers
+    add_header X-Frame-Options "SAMEORIGIN";
+    add_header X-XSS-Protection "1; mode=block";
+    add_header X-Content-Type-Options "nosniff";
+    location / {
+        proxy_pass http://127.0.0.1:8003/;
+    }
+        # for docker image push
+        client_max_body_size    500M;
+}
+server {
+    listen 80;
+    listen [::]:80;
+    server_name gitea.chudnick.com;
+        return 301 https://$host$request_uri;
+}
author	Sam Chudnick <sam@chudnick.com>	2023-06-25 09:52:36 -0400
committer	Sam Chudnick <sam@chudnick.com>	2023-06-25 09:52:36 -0400
commit	95b73daa36b23565a8566f71f9b202d3459b685f (patch)
tree	cb17b021be70e7868d0ec235a761f0ecdc80f3f2 /data/gitea

diff --git a/data/gitea/app.ini b/data/gitea/app.ini new file mode 100644 index 0000000..84f9647 --- /dev/null +++ b/data/gitea/app.ini
@@ -0,0 +1,103 @@
	1	APP_NAME = Gitea: Git with a cup of tea
	2	RUN_MODE = prod
	3	RUN_USER = git
	4
	5	[repository]
	6	ROOT = /data/git/repositories
	7	ENABLE_PUSH_CREATE_USER = true
	8	DEFAULT_PUSH_CREATE_PRIVATE = false
	9
	10	[repository.local]
	11	LOCAL_COPY_PATH = /data/gitea/tmp/local-repo
	12
	13	[repository.upload]
	14	TEMP_PATH = /data/gitea/uploads
	15
	16	[server]
	17	APP_DATA_PATH = /data/gitea
	18	DOMAIN = gitea.chudnick.com
	19	SSH_DOMAIN = gitea.chudnick.com
	20	HTTP_PORT = 3000
	21	ROOT_URL = https://gitea.chudnick.com/
	22	DISABLE_SSH = false
	23	SSH_PORT = 22
	24	SSH_LISTEN_PORT = 22
	25	LFS_START_SERVER = true
	26	LFS_JWT_SECRET =
	27	OFFLINE_MODE = false
	28
	29	[database]
	30	PATH = /data/gitea/gitea.db
	31	DB_TYPE = sqlite3
	32	HOST = localhost:3306
	33	NAME = gitea
	34	USER = root
	35	PASSWD =
	36	LOG_SQL = false
	37	SCHEMA =
	38	SSL_MODE = disable
	39	CHARSET = utf8
	40
	41	[indexer]
	42	ISSUE_INDEXER_PATH = /data/gitea/indexers/issues.bleve
	43
	44	[session]
	45	PROVIDER_CONFIG = /data/gitea/sessions
	46	PROVIDER = file
	47
	48	[picture]
	49	AVATAR_UPLOAD_PATH = /data/gitea/avatars
	50	REPOSITORY_AVATAR_UPLOAD_PATH = /data/gitea/repo-avatars
	51	DISABLE_GRAVATAR = false
	52	ENABLE_FEDERATED_AVATAR = true
	53
	54	[attachment]
	55	PATH = /data/gitea/attachments
	56
	57	[log]
	58	MODE = console
	59	LEVEL = info
	60	ROUTER = console
	61	ROOT_PATH = /data/gitea/log
	62
	63	[security]
	64	INSTALL_LOCK = true
	65	SECRET_KEY =
	66	REVERSE_PROXY_LIMIT = 1
	67	REVERSE_PROXY_TRUSTED_PROXIES = *
	68	INTERNAL_TOKEN =
	69	PASSWORD_HASH_ALGO = pbkdf2
	70
	71	[service]
	72	DISABLE_REGISTRATION = false
	73	REQUIRE_SIGNIN_VIEW = false
	74	REGISTER_EMAIL_CONFIRM = false
	75	ENABLE_NOTIFY_MAIL = false
	76	ALLOW_ONLY_EXTERNAL_REGISTRATION = false
	77	ENABLE_CAPTCHA = false
	78	DEFAULT_KEEP_EMAIL_PRIVATE = false
	79	DEFAULT_ALLOW_CREATE_ORGANIZATION = true
	80	DEFAULT_ENABLE_TIMETRACKING = true
	81	NO_REPLY_ADDRESS = noreply.localhost
	82
	83	[lfs]
	84	PATH = /data/git/lfs
	85
	86	[mailer]
	87	ENABLED = false
	88
	89	[openid]
	90	ENABLE_OPENID_SIGNIN = true
	91	ENABLE_OPENID_SIGNUP = true
	92
	93	[repository.pull-request]
	94	DEFAULT_MERGE_STYLE = merge
	95
	96	[repository.signing]
	97	DEFAULT_TRUST_MODEL = committer
	98
	99	[webhook]
	100	ALLOWED_HOST_LIST = jenkins.chudnick.com
	101
	102	[metrics]
	103	ENABLED = true


diff --git a/data/gitea/gitea.conf b/data/gitea/gitea.conf new file mode 100644 index 0000000..1b862a4 --- /dev/null +++ b/data/gitea/gitea.conf
@@ -0,0 +1,30 @@
	1	server {
	2	listen 443 ssl;
	3	server_name gitea.chudnick.com;
	4
	5	ssl_certificate /etc/letsencrypt/live/chudnick.com/fullchain.pem;
	6	ssl_certificate_key /etc/letsencrypt/live/chudnick.com/privkey.pem;
	7	add_header Strict-Transport-Security "max-age=31536000" always;
	8	ssl_stapling on;
	9	ssl_stapling_verify on;
	10
	11	# Security / XSS Mitigation Headers
	12	add_header X-Frame-Options "SAMEORIGIN";
	13	add_header X-XSS-Protection "1; mode=block";
	14	add_header X-Content-Type-Options "nosniff";
	15
	16	location / {
	17	proxy_pass http://127.0.0.1:8003/;
	18	}
	19
	20	# for docker image push
	21	client_max_body_size 500M;
	22
	23	}
	24
	25	server {
	26	listen 80;
	27	listen [::]:80;
	28	server_name gitea.chudnick.com;
	29	return 301 https://$host$request_uri;
	30	}