feat: initial commit

2026-04-08 20:53:49 +02:00 · 2026-04-08 20:53:49 +02:00 · a28c2b5563
commit a28c2b5563
19 changed files with 314 additions and 0 deletions
--- a/services/default.nix
+++ b/services/default.nix
@ -0,0 +1,7 @@
+{ ... }:
+{
+  imports = [
+    ./openssh.nix
+    ./forgejo.nix
+  ];
+}
--- a/services/forgejo.nix
+++ b/services/forgejo.nix
@ -0,0 +1,22 @@
+{...}:
+let
+  serv = import ../config/services.nix;
+  git = serv.git;
+in
+{
+  services.forgejo = {
+    enable = true;
+    database.type = "postgres";
+    lfs.enable = true;
+    settings = {
+      server = {
+        DOMAIN = git.domain;
+        ROOT_URL = "https://${git.domain}/";
+        HTTP_PORT = git.port;
+      };
+      service.DISABLE_REGISTRATION = true;
+    };
+  };
+
+  networking.firewall.allowedTCPPorts = [ git.port ];
+}
--- a/services/openssh.nix
+++ b/services/openssh.nix
@ -0,0 +1,17 @@
+{ ... }:
+let
+  opensshConfig = import ../config/openssh.nix;
+  usersWithKeys = opensshConfig.ssh_users;
+in 
+{
+  services.openssh = {
+    enable = true;
+    settings = {
+      PasswordAuthentication = true;
+      PermitRootLogin = "no";
+      AllowUsers = usersWithKeys;
+    };
+  };
+
+  networking.firewall.allowedTCPPorts = [ 22 ];
+}