massicot: gitea -> forgejo

This commit is contained in:
xinyangli 2023-10-03 11:53:16 +08:00
parent 7bc160d20a
commit 243de7213b

View file

@ -52,14 +52,31 @@ in
}; };
}; };
services.gitea = { services.forgejo = {
enable = true; enable = true;
package = pkgs.forgejo;
settings = { settings = {
service.DISABLE_REGISTRATION = true; service.DISABLE_REGISTRATION = true;
server = { server = {
ROOT_URL = "https://git.xinyang.life/"; ROOT_URL = "https://git.xinyang.life/";
}; };
repository = {
ENABLE_PUSH_CREATE_USER = true;
};
service = {
ENABLE_BASIC_AUTHENTICATION = false;
};
oauth2 = {
ENABLE = false; # Disable forgejo as oauth2 provider
};
oauth2_client = {
ACCOUNT_LINKING = "auto";
ENABLE_AUTO_REGISTRATION = true;
UPDATE_AVATAR = true;
OPENID_CONNECT_SCOPES = "openid profile email";
};
other = {
SHOW_FOOTER_VERSION = false;
};
}; };
}; };
@ -98,6 +115,7 @@ in
virtualHosts."https://auth.xinyang.life:443".extraConfig = '' virtualHosts."https://auth.xinyang.life:443".extraConfig = ''
reverse_proxy https://auth.xinyang.life:${toString kanidm_listen_port} { reverse_proxy https://auth.xinyang.life:${toString kanidm_listen_port} {
header_up Host {upstream_hostport} header_up Host {upstream_hostport}
header_down Access-Control-Allow-Origin "*"
transport http { transport http {
tls_server_name ${config.services.kanidm.serverSettings.domain} tls_server_name ${config.services.kanidm.serverSettings.domain}
} }