manuth/PortValhalla
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Add a script for installing forgejo

Browse source
This commit is contained in:
Manuel Thalmann 2024-11-07 23:58:06 +01:00
parent 9c4a1fe11c
commit 529e91c4fa
4 changed files with 193 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
scripts/Common/Software/docker/services/forgejo/docker-compose.secrets.yml Normal file
View file

@ -0,0 +1,7 @@
services:
forgejo:
environment: {}
ports:
- 127.0.0.1:1337:3000
- 127.0.0.1:1338:22
db: {}

60
scripts/Common/Software/docker/services/forgejo/docker-compose.yml Normal file
View file

@ -0,0 +1,60 @@
services:
forgejo:
image: codeberg.org/forgejo/forgejo:7
restart: unless-stopped
extends:
file: docker-compose.secrets.yml
service: forgejo
depends_on:
- db
environment:
USER_UID: 1337
USER_GID: 1337
FORGEJO__database__DB_TYPE: mysql
FORGEJO__database__HOST: db
FORGEJO__database__LOG_SQL: "false"
FORGEJO__repository__DEFAULT_BRANCH: main
FORGEJO__server__SSH_DOMAIN: "%(DOMAIN)s"
FORGEJO__server__ROOT_URL: https://%(DOMAIN)s/
FORGEJO__server__DISABLE_SSH: "false"
FORGEJO__server__LFS_START_SERVER: "true"
FORGEJO__service__REGISTER_MANUEL_CONFIRM: "true"
FORGEJO__actions__ENABLED: "true"
FORGEJO__openid__ENABLE_OPENID_SIGNUP: "false"
FORGEJO__cron.git_gc_repos__ENABLED: "true"
FORGEJO__cron.gc_lfs__ENABLED: "true"
volumes:
- ./data/forgejo:/data
- config:/data/gitea/conf
- /etc/timezone:/etc/timezone:ro
- /home/forgejo/.ssh:/data/git/.ssh
db:
image: mariadb
restart: unless-stopped
extends:
file: docker-compose.secrets.yml
service: db
environment:
MARIADB_RANDOM_ROOT_PASSWORD: "yes"
MARIADB_AUTO_UPGRADE: "yes"
volumes:
- ./database:/var/lib/mysql
command:
- --character-set-server=utf8mb4
- --collation-server=utf8mb4_unicode_ci
bridge:
image: shenxn/protonmail-bridge
restart: unless-stopped
volumes:
- ./bridge:/root
runner:
image: gitea/act_runner
restart: unless-stopped
depends_on:
- forgejo
volumes:
- ./data/act:/data
- /var/run/docker.sock:/var/run/docker.sock
volumes:
config: {}

101
scripts/Common/Software/docker/services/forgejo/main.fish Executable file
View file

@ -0,0 +1,101 @@
#!/bin/env fish
begin
set -l dir (status dirname)
set -l user "forgejo"
set -l domain "git"
set -l server "$domain" ""
set -l service $user
source "$dir/../service.fish"
function getSSHPortKey -V service
echo "$(getServiceKey "$service").ports[1]"
end
function installSW -V dir -V domain -V server -V service
set -l root (getServiceRoot $argv)
set -l secrets (getServiceSecretsConfig $argv)
set -l source "$dir/$(basename "$secrets")"
set -l pw (nix-shell -p keepassxc --run "keepassxc-cli generate --length 32")
set -l port (getRandomPort)
initializeServiceInstallation $argv
sudo cp "$dir/docker-compose.yml" "$root"
set port (yq (getSSHPortKey) "$source" --raw-output | mutatePort "$port")
DOMAIN=(getServiceDomain $server) PW=$pw DB=Git USER=forgejo PW=$pw begin
set -l gitEnv "$(getServiceKey "$service").environment"
set -l dbEnv "$(getServiceKey "db").environment"
PORT=$port yq "$(getSSHPortKey) = env.PORT" "$source" | \
yq "$gitEnv.FORGEJO__database__NAME = env.DB" | \
yq "$gitEnv.FORGEJO__database__USER = env.USER" | \
yq "$gitEnv.FORGEJO__database__PASSWD = env.PW" | \
yq "$dbEnv.MARIADB_DATABASE = env.DB" | \
yq "$dbEnv.MARIADB_USER = env.USER" | \
yq "$dbEnv.MARIADB_PASSWORD = env.PW" | \
yq -y . | \
sudo tee "$secrets" >/dev/null
end
installDockerService $argv
end
function configureSW -V dir -V user -V service
set -l uid
set -l gid
set -l port
set -l file (mktemp)
set -l root (getServiceRoot $argv)
set -l dir "$root/data"
set -l bin "/usr/local/bin/forgejo"
set -l config "$root/docker-compose.yml"
set -l secrets (getServiceSecretsConfig $argv)
set -l envKey "$(getServiceKey "$service").environment"
configureDockerService $argv
cp "$config" "$file"
and sudo useradd \
--system \
--shell /bin/bash \
--comment 'Git Version Control' \
--create-home \
$user
set uid (id -u $user)
set gid (id -g $user)
and yq "$envKey.USER_UID = $uid" "$file" | \
yq "$envKey.USER_GID = $gid" | \
yq -y . |
sudo tee "$config" >/dev/null
mkdir -p "$dir"
and chown -R $uid:$gid "$dir"
rm "$file"
set port (yq (getSSHPortKey) "$secrets" --raw-output | extractPort)
begin
printf "%s\n" \
"#!/bin/sh" \
"ssh -p $port -o StrictHostKeyChecking=no git@127.0.0.1 \"SSH_ORIGINAL_COMMAND=\\\"$SSH_ORIGINAL_COMMAND\\\" \$0 \$@\""
end | sudo tee "$bin" >/dev/null
chmod +x "$bin"
end
function getServiceServers -V server
printf "%s\0" $server
end
function getServiceLocations
argparse -i "name=" -- $argv
printf "%s\0" "$_flag_name" /
end
function getBackupArgs
printf "%s\n" --hidden --no-ignore . --exclude "docker-compose.yml" (getServiceRoot $argv)
end
runInstaller --force $argv
end

31
scripts/Common/Software/docker/services/service.fish
View file

@ -4,9 +4,28 @@ begin
set -l root /usr/local/lib set -l root /usr/local/lib
set -l secretsFile "docker-compose.secrets.yml" set -l secretsFile "docker-compose.secrets.yml"
set -l nginxRoot "/etc/nginx/conf.d" set -l nginxRoot "/etc/nginx/conf.d"
set -l portPattern "^\([.[:digit:]]\+:\)\([[:digit:]]\+\)\(:[[:digit:]]\+\)"
source "$dir/../../../../lib/software.fish" source "$dir/../../../../lib/software.fish"
function getRandomPort
random 49152 65535
end
function getPortPattern
echo "^\([.[:digit:]]\+:\)\([[:digit:]]\+\)\(:[[:digit:]]\+\)"
end
function __substitutePort -a substitution
sed "s/$(getPortPattern)/$substitution/"
end
function extractPort
__substitutePort "\2"
end
function mutatePort -a port
__substitutePort "\1$port\3"
end
function getServiceName function getServiceName
argparse -i "name=" -- $argv argparse -i "name=" -- $argv
echo "$_flag_name" echo "$_flag_name"
@ -55,7 +74,7 @@ begin
mkdir -p (dirname (getServiceSecretsConfig $argv)) mkdir -p (dirname (getServiceSecretsConfig $argv))
end end
function installDockerService -V dir -V nginxRoot -V portPattern function installDockerService -V dir -V nginxRoot
set -l config (getServiceSecretsConfig $argv) set -l config (getServiceSecretsConfig $argv)
set -l servers (getServiceServers $argv | string split0) set -l servers (getServiceServers $argv | string split0)
@ -64,7 +83,7 @@ begin
for j in (seq 1 4 (count $locations)) for j in (seq 1 4 (count $locations))
set -l file (mktemp) set -l file (mktemp)
set -l port (random 49152 65535) set -l port (getRandomPort)
set -l service $locations[$j] set -l service $locations[$j]
set -l portKey (__getServicePortKey "$service") set -l portKey (__getServicePortKey "$service")
set -l exposedPort set -l exposedPort
@ -72,13 +91,13 @@ begin
sudo mkdir -p "$nginxRoot" sudo mkdir -p "$nginxRoot"
cp "$config" "$file" cp "$config" "$file"
set exposedPort (yq --raw-output "$portKey" "$file" | sed "s/$portPattern/\1$port\3/") set exposedPort (yq --raw-output "$portKey" "$file" | mutatePort $port)
PORT=$exposedPort yq -y "$portKey = env.PORT" "$file" | sudo tee "$config" >/dev/null PORT=$exposedPort yq -y "$portKey = env.PORT" "$file" | sudo tee "$config" >/dev/null
end end
end end
end end
function configureDockerService -V portPattern function configureDockerService
set -l config (getServiceSecretsConfig $argv) set -l config (getServiceSecretsConfig $argv)
set -l servers (getServiceServers $argv | string split0) set -l servers (getServiceServers $argv | string split0)
set -l nginxConfig (__getServiceNginxConfig $argv) set -l nginxConfig (__getServiceNginxConfig $argv)
@ -99,7 +118,7 @@ begin
set -l service $locations[$j] set -l service $locations[$j]
set -l location $locations[(math $j + 1)] set -l location $locations[(math $j + 1)]
set -l portKey (__getServicePortKey "$service") set -l portKey (__getServicePortKey "$service")
set -l port (yq --raw-output "$portKey" "$config" | sed "s/$portPattern/\2/") set -l port (yq --raw-output "$portKey" "$config" | extractPort)
printf "%s\n" \ printf "%s\n" \
"location $location {" \ "location $location {" \