web/git
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: abstracted all domain instances away to the configuration files

Browse Source
This commit is contained in:
Maxim Hutz
2025-02-12 15:50:49 -05:00
parent f458119e2c
commit aa9810d0a8
10 changed files with 36 additions and 35 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
Taskfile.yml
View File

@@ -1,5 +1,10 @@
version: 3 version: 3
silent: true # silent: true
vars:
DOMAIN: { sh: jq -r .domain < config/variables.secret.tf.json }
SUB_DOMAIN: { sh: jq -r .subdomain < config/variables.secret.tf.json }
FULL_DOMAIN: '{{.SUB_DOMAIN}}.{{.DOMAIN}}'
includes: includes:
tf: { taskfile: terraform, dir: terraform } tf: { taskfile: terraform, dir: terraform }
@@ -26,9 +31,8 @@ tasks:
push: push:
dir: gitea dir: gitea
vars: vars:
TAG: git.maximhutz.com/web/git/gitea:latest TAG: '{{.FULL_DOMAIN}}/web/gitea:latest'
cmds: cmds:
- docker login git.maximhutz.com -u max - docker login '{{.FULL_DOMAIN}}' -u max
- defer: docker logout - defer: docker logout
- docker build . -t {{.TAG}} -f Dockerfile --platform linux/amd64,linux/arm64 - docker buildx build -t {{.TAG}} -f Dockerfile --platform linux/amd64,linux/arm64 --push --provenance=false .
- docker push {{.TAG}}

1
gitea/Dockerfile
View File

@@ -2,4 +2,5 @@ FROM gitea/gitea:latest-rootless
ADD --chown=git:git config /etc/gitea ADD --chown=git:git config /etc/gitea
ADD --chown=git:git custom /etc/gitea-custom ADD --chown=git:git custom /etc/gitea-custom
ENV GITEA_CUSTOM=/etc/gitea-custom ENV GITEA_CUSTOM=/etc/gitea-custom

1
gitea/Dockerfile.dev
View File

@@ -2,7 +2,6 @@ FROM gitea/gitea:latest-rootless
ADD --chown=git:git config /etc/gitea ADD --chown=git:git config /etc/gitea
ADD --chown=git:git custom /etc/gitea-custom ADD --chown=git:git custom /etc/gitea-custom
ENV GITEA_CUSTOM=/etc/gitea-custom
RUN rm /etc/gitea/app.ini RUN rm /etc/gitea/app.ini
RUN mv /etc/gitea/dev.app.ini /etc/gitea/app.ini RUN mv /etc/gitea/dev.app.ini /etc/gitea/app.ini

22
gitea/config/app.ini
View File

@@ -24,32 +24,18 @@ DISABLE_SSH = false
START_SSH_SERVER = true START_SSH_SERVER = true
SSH_PORT = 22 SSH_PORT = 22
SSH_LISTEN_PORT = 22 SSH_LISTEN_PORT = 22
SSH_DOMAIN = git.maximhutz.com # SSH_DOMAIN = %(FULL_DOMAIN)s
BUILTIN_SSH_SERVER_USER = git BUILTIN_SSH_SERVER_USER = git
; --- Signed SSL ---
PROTOCOL=https PROTOCOL=https
ENABLE_ACME=true ENABLE_ACME=true
ACME_ACCEPTTOS=true ACME_ACCEPTTOS=true
ACME_DIRECTORY=https ACME_DIRECTORY=https
ACME_EMAIL=proxy@maximhutz.com # ACME_EMAIL=%(EMAIL)s
DOMAIN = git.maximhutz.com # DOMAIN = %(FULL_DOMAIN)s
ROOT_URL = https://git.maximhutz.com/ # ROOT_URL = %(ROOT_URL)s
HTTP_PORT = 443 HTTP_PORT = 443
; --- No SSL ---
; DOMAIN = git.maximhutz.com
; ROOT_URL = http://git.maximhutz.com/
; HTTP_PORT = 80
; --- Self-Signed SSL ---
# PROTOCOL = https
# ROOT_URL = https://git.maximhutz.com/
# DOMAIN = git.maximhutz.com
# HTTP_PORT = 443
# CERT_FILE = cert.pem
# KEY_FILE = key.pem
[database] [database]
DB_TYPE = sqlite3 DB_TYPE = sqlite3

6
gitea/config/dev.app.ini
View File

@@ -28,12 +28,6 @@ SSH_LISTEN_PORT = 2222
SSH_DOMAIN = localhost SSH_DOMAIN = localhost
BUILTIN_SSH_SERVER_USER = git BUILTIN_SSH_SERVER_USER = git
; --- No SSL ---
; DOMAIN = localhost
; ROOT_URL = http://localhost:80/
; HTTP_PORT = 80
; --- Self-Signed Certificate ---
PROTOCOL = https PROTOCOL = https
ROOT_URL = https://localhost:443/ ROOT_URL = https://localhost:443/
DOMAIN = localhost DOMAIN = localhost

4
playbooks/deploy.yml
View File

@@ -52,6 +52,10 @@
GITEA__security__INTERNAL_TOKEN: "{{ internal_secret }}" GITEA__security__INTERNAL_TOKEN: "{{ internal_secret }}"
GITEA__server__LFS_JWT_SECRET: "{{ lfs_secret }}" GITEA__server__LFS_JWT_SECRET: "{{ lfs_secret }}"
GITEA__oauth2__JWT_SECRET: "{{ jwt_secret }}" GITEA__oauth2__JWT_SECRET: "{{ jwt_secret }}"
GITEA__server__ACME_EMAIL: "{{ email }}"
GITEA__server__SSH_DOMAIN: "{{ full_domain.value }}"
GITEA__server__DOMAIN: "{{ full_domain.value }}"
GITEA__server__ROOT_URL: "https://{{ full_domain.value }}/"
labels: labels:
docker-volume-backup.stop-during-backup: "true" docker-volume-backup.stop-during-backup: "true"
volumes: volumes:

3
terraform/network.tf
View File

@@ -1,9 +1,6 @@
locals { locals {
# The IP block for the VPC. # The IP block for the VPC.
vpc_cidr = "10.0.0.0/16" vpc_cidr = "10.0.0.0/16"
# Here is the domain name changes.
domain_name = "maximhutz.com"
} }
data "aws_availability_zones" "all" {} data "aws_availability_zones" "all" {}

6
terraform/output.tf
View File

@@ -25,3 +25,9 @@ output "boot_secret" {
description = "The access secret to manipulate the codebase repository boot." description = "The access secret to manipulate the codebase repository boot."
sensitive = true sensitive = true
} }
output "full_domain" {
value = "${var.subdomain}.${var.domain}"
description = "The domain of the Gitea instance."
sensitive = true
}

4
terraform/routing.tf
View File

@@ -1,12 +1,12 @@
# The Route53 DNS zone. # The Route53 DNS zone.
data "aws_route53_zone" "main" { data "aws_route53_zone" "main" {
name = local.domain_name name = var.domain
} }
# Push all domain traffic through the reverse proxy. # Push all domain traffic through the reverse proxy.
resource "aws_route53_record" "domain" { resource "aws_route53_record" "domain" {
zone_id = data.aws_route53_zone.main.zone_id zone_id = data.aws_route53_zone.main.zone_id
name = "git.${data.aws_route53_zone.main.name}" name = "${var.subdomain}.${data.aws_route53_zone.main.name}"
type = "A" type = "A"
ttl = "60" ttl = "60"
records = [aws_eip.public.public_ip] records = [aws_eip.public.public_ip]

10
terraform/variables.tf
View File

@@ -27,3 +27,13 @@ variable "boot_role" {
type = string type = string
description = "The name of the role for boot access." description = "The name of the role for boot access."
} }
variable "domain" {
type = string
description = "The name of the domain."
}
variable "subdomain" {
type = string
description = "The name of the subdomain."
}