00133e544f
forgejo: get certs for domain
2026-02-22 20:24:03 +11:00
90ba20d2cc
forgejo: move domain from being machine-specific to public
2026-02-22 20:14:59 +11:00
fa05bf798d
forgejo: make public
2026-02-20 17:14:03 +11:00
dd7d4dbff5
chore: move all service data to /media/apps
2026-02-20 17:14:03 +11:00
fc2d9b1076
forgejo: change data dir to /media/git
2025-11-30 21:28:15 +11:00
7537a1e5b6
caddy: add block_non_private_ips snippet
...
blocks ips not in tailnet or in local network from accessing services
using `important block_non_private_ips` in their caddy config
2025-08-04 22:15:05 +10:00
182e5fb3c4
Revert "forgejo: protect with anubis"
...
This reverts commit cdee22e165
2025-06-08 21:26:00 +10:00
5438cc0d76
forgejo: allow registration
...
previously registration was blocked (even with external providers) as
DISABLE_REGISTRATION was enabled.
now users can only register through oidc.
2025-05-25 01:14:43 +10:00
cdee22e165
forgejo: protect with anubis
...
https://anubis.techaro.lol/docs/
2025-05-17 20:35:06 +10:00
26b050c9fc
forgejo: only allow registration through oidc providers
2025-05-12 19:34:19 +10:00
f7357d75b9
forgejo: disable registration
...
users would be created with oauth
2025-05-03 16:34:35 +10:00
66f036aee3
forgejo: fix ssh
...
really only a temporary solution for now, ideally we would do it so
only the forgejo user can use the .ssh/authorizedKeys file in their home
folder. but nix purity rules prevents that
2025-05-03 16:34:35 +10:00
7611e71f44
forgejo: init
2025-05-03 16:34:35 +10:00
