1
1
Fork 0
mirror of https://github.com/roles-ansible/ansible_role_gitea.git synced 2024-08-16 11:39:50 +02:00
Commit graph

48 commits

Author SHA1 Message Date
L3D
f568d8f13c
reorder session variables 2021-03-21 23:26:42 +01:00
L3D
fc7025755a
reorder mailer variables 2021-03-21 23:17:13 +01:00
L3D
9e98056b43
reorder service variables 2021-03-21 22:58:34 +01:00
L3D
ced73dde98
reorder security variables and add have I been pwned var 2021-03-21 22:45:27 +01:00
L3D
0b23826553
reorder gitea indexer config 2021-03-21 17:56:16 +01:00
L3D
32a1532f7a
reorder gitea database config 2021-03-21 17:42:28 +01:00
L3D
1cb903924a
reorder gitea server variables 2021-03-21 17:29:04 +01:00
L3D
db9c8c4341
reorder variables based on config-cheat-sheet 2021-03-21 17:08:17 +01:00
L3D
154a0ac752
Start reordering variables and gitea_auto_watch_new_repos variable 2021-03-21 02:02:15 +01:00
L3D
fb884c7263
resolve merge conflicts from https://github.com/thomas-maurice/ansible-role-gitea/pull/62 2021-03-21 00:27:27 +01:00
L3D
2fa3f51eb4
Cleanup template (#85)
improve template and create loglevel variable
2021-03-02 09:35:13 +00:00
Maxim Burgerhout
183e58f0e5
Add / correct accepted SSL modes for PostgreSQL (#83)
Supported SSL modues for PostgreSQL are: disabled, require, verify-ca
and verify-full.

This fix adds `verify-ca` to README.md and gitea.ini.j2, and corrects
`require` to `required` in README.md.
2021-02-15 18:35:27 +00:00
Finwë
56375819a7
Improve ARM Support (#74)
* Gitea user should be a system user

* Improve installation system

* Download archive instead of binary
* Add checksum validation
* Add GPG check
* Add backup process before upgrading

* Improve ARM support

* Improve support for Vault Encrypted JWT tokens

* Fix spacing in gitea configuration template

When Gitea rewrite the configuration file (e.g.: the JWT token is not
set or doesn't fit their criteria), it'll align space on a per-section
basis in the .ini file.
If the template is not properly spaced, at the next Ansible run, you'll
have an enormous diff, hidding what the real changes are.

* add proper redhat/debian deps for molecule testing

* Gitea group should be a system group

* fix linting for CI

* Update CI and meta information for up-to-date tests and distros

* molecule: fix typo for redhat packages

* fix typo

* bump gitea version to 1.13.1

* Use Ubuntu keyservers to play nicely with everyone

* Update minimum required ansible version to 2.9.8

This is required for Ubuntu Focal, which comes with systemd >= 245
The Get Facts modules doesn't work well with it before the bugfix
introduced in 2.9.8

* Replace yes by True to please the linting

* Truthy values needs to be lower-case

* bump gitea version to 1.13.2

* perform gitea dump as gitea user

* need to set become to yes

* autogenerate JWT_SECRETS (#77)

* autogenerate JWT_SECRETS

Based on https://docs.gitea.io/en-us/command-line/#generate we will now autogenerate JWT_SECRETS if they are not defined.
In my opinion a much better idea than writing a value in the default config.

The check if the variables for the secrets are now 43 characters long i took out. Gitea generates itself suitable secrets, if the user given ones do not fit.

* drop ansible.builtin. syntax

* Update file permissions for "{{ gitea_home }}" (#75)

The file permissions for {{ gitea_home }} especially in conjunction with the recurse: true flag are on closer inspection very open to all and also have a +x set on files.

This should be done better. And I have done here now.

By the way: To improve the -x on normal files in his gitea installation this shell command was useful for me
```
find . -type f -exec chmod a-x {} \+;
find . -type f -exec chmod u=rwX {} \+;
```

* Bump cryptography from 3.2 to 3.3.2 (#79)

Bumps [cryptography](https://github.com/pyca/cryptography) from 3.2 to 3.3.2.
- [Release notes](https://github.com/pyca/cryptography/releases)
- [Changelog](https://github.com/pyca/cryptography/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/3.2...3.3.2)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Gitea user should be a system user

* Improve installation system

* Download archive instead of binary
* Add checksum validation
* Add GPG check
* Add backup process before upgrading

* Improve ARM support

* Fix spacing in gitea configuration template

When Gitea rewrite the configuration file (e.g.: the JWT token is not
set or doesn't fit their criteria), it'll align space on a per-section
basis in the .ini file.
If the template is not properly spaced, at the next Ansible run, you'll
have an enormous diff, hidding what the real changes are.

* add proper redhat/debian deps for molecule testing

* Gitea group should be a system group

* fix linting for CI

* Update CI and meta information for up-to-date tests and distros

* molecule: fix typo for redhat packages

* fix typo

* bump gitea version to 1.13.1

* Use Ubuntu keyservers to play nicely with everyone

* Update minimum required ansible version to 2.9.8

This is required for Ubuntu Focal, which comes with systemd >= 245
The Get Facts modules doesn't work well with it before the bugfix
introduced in 2.9.8

* Replace yes by True to please the linting

* Truthy values needs to be lower-case

* bump gitea version to 1.13.2

* perform gitea dump as gitea user

* need to set become to yes

* check-variables.yml doesn't exists anymore

Co-authored-by: L3D <l3d@c3woc.de>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-02-12 17:56:31 +00:00
L3D
67afb71160
add default "gitea_group: gitea" (#71)
* delete trailing whitespace

* Add gitea_group

This will add the `gitea_group: gitea` and will probably
RESOLVE https://github.com/thomas-maurice/ansible-role-gitea/issues/70

* update variable length

update variable length to make this role idempotent

* vars should not include special character
2021-01-27 14:13:02 +00:00
L3D
cde4a964d5 add LFS_JWT_SECRET option
+ Add comments about git-lfs to the README.
+ New variable for LFS_JWT_SECRET.
+ absolute path for gitea_lfs_content_path.
+ maybe some help to resolve https://github.com/thomas-maurice/ansible-role-gitea/issues/70
2021-01-22 11:07:28 +00:00
L3D
c68565952a delete trailing whitespace 2021-01-22 11:07:28 +00:00
Simeon Keske
aa75493677 add option to specify extra configuration 2020-12-06 21:39:19 +00:00
Leo Maroni
8af72e355e Add disable_git_hooks config option to security 2020-12-06 21:37:51 +00:00
Leo Maroni
8f2e1bcd6a
Add configuration option for enabling notify email 2020-07-28 12:23:26 +02:00
Martin Borer
f48402354f issue #53: define mailer type 2020-07-21 14:18:08 +02:00
Leo Maroni
1df6bd8e23
Add config options for repository indexer 2020-06-18 07:41:59 +02:00
Leo Maroni
2b665bdb1d Add variable to enable adding CAP_NET_BIND_SERVICE to systemd service 2020-06-03 15:16:57 +01:00
Leo Maroni
efc0363f4b Added CAP_NET_BIND_SERVICE to gitea.service to allow binding to ports
lower than 1024
2020-06-03 15:16:57 +01:00
Leo Maroni
8506ca4f2b Add config option to set repository path different to home_path 2020-05-19 14:19:23 +01:00
Simeon Keske
349d9dff4f fix typo in THEMES 2020-05-19 14:13:01 +01:00
Simeon Keske
259d761eb2 add variable gitea_only_allow_external_registration 2020-05-19 14:13:01 +01:00
Simeon Keske
1f88e7238a Allow to specify default theme 2020-05-19 14:13:01 +01:00
Mathias Merscher
c50f79cf4a adds metrics endpoint config support 2020-01-06 11:37:50 +00:00
Mathias Merscher
630d64dbb5 add back oauth2 parameters 2019-12-30 11:25:23 +00:00
L3D
afbd034f50 Enable git lfs options
With this change it is possible to enable the git-lfs server.
And to configure where data are stored.
2019-07-12 21:16:01 +01:00
Bèr Kessels
fe4db0bb07 Add username and password for smpt servers. Defaulting to blank 2019-06-16 19:19:24 +01:00
L3D
9c536d77a9 Simplify configuration file
I kicked out some config values, that are not controlled via ansible variables.
Maybe it makes more sense if we only customize the values, we are really changing. *(like database, domain and other behavior...)*

I had the problem, that after upgrading gitea it won't run with the config provided by this ansible role. But the default config worked fine.

I assume that the official gitea chenged and updated some options.
Some options in the old config file of this role did not appear in the [official cheat sheet](https://docs.gitea.io/en-us/config-cheat-sheet/).

@thomas-maurice: What did you think about it?
Better track every value and update it in our config.

Or clean up the config and only keep the parameter we really need and let gitea set everything else with their default values?
2019-06-02 23:04:10 +02:00
Mathias Merscher
5e2f160441 remove trailing whitespace 2019-03-16 10:07:04 +00:00
Mathias Merscher
b2a6429823 adds template variable for SHOW_REGISTRATION_BUTTON 2019-03-16 10:07:04 +00:00
Mathias Merscher
8837b4522b fix indexer config, keep old openid config 2019-03-16 10:07:04 +00:00
Mathias Merscher
1997360f71 adds template variables for oauth config 2019-03-16 10:07:04 +00:00
Mathias Merscher
d339c620e9 adds template variable for IS_TLS_ENABLED 2019-03-16 10:07:04 +00:00
Mathias Merscher
fcae409935 adds all new config parameters from app.ini.sample
Version: e777c6bdc6/custom/conf/app.ini.sample
2019-03-16 10:07:04 +00:00
Mathias Merscher
48cf9f8fcb update config ini comments 2019-03-16 10:07:04 +00:00
Mathias Merscher
062325f27e adds new ini parameter DEFAULT_PRIVATE 2019-03-16 10:07:04 +00:00
Mathias Merscher
ac01b1e467 add new ini parameter INTERNAL_TOKEN 2019-03-16 10:07:04 +00:00
Mathias Merscher
559efa281f more fail2ban config options 2019-03-15 17:05:09 +00:00
Mathias Merscher
11374216ac adds support for optional deployment of fail2ban jail 2019-03-15 17:05:09 +00:00
Mathias Merscher
af20311115 adds mailer config parameters 2019-03-09 13:38:43 +00:00
Mathias Merscher
fb63b41825 fix gitea_db_passord typo 2019-03-09 13:37:48 +00:00
h0chi
6153ad8c54 Update gitea.ini.j2 2019-02-22 17:39:12 +00:00
Thomas Maurice
9d685ab7a5
Add the support for mysql and postgres databases and documentation 2017-01-11 08:01:37 +01:00
Thomas Maurice
59d3cfc7c8
First commit 2017-01-10 22:09:34 +01:00