From 5a5a234fd9b0501189695af7aea98a1ec1dbd111 Mon Sep 17 00:00:00 2001
From: Yorick van Pelt <yorick@yorickvanpelt.nl>
Date: Fri, 25 May 2018 00:27:43 +0200
Subject: [PATCH] update pennyworth, move git

---
 conf                   |  2 +-
 logical/pennyworth.nix | 38 +++++++++++++++++++++++++++++++++++++-
 packages/default.nix   | 12 +++++++++++-
 servers.json           |  2 +-
 4 files changed, 50 insertions(+), 4 deletions(-)

diff --git a/conf b/conf
index 333177e..e907540 100755
--- a/conf
+++ b/conf
@@ -12,7 +12,7 @@ function get_channel {
 	          echo "nixpkgs=https://github.com/NixOS/nixpkgs/archive/master.tar.gz"
 	          ;;
         stable)
-            echo "nixpkgs=https://nixos.org/channels/nixos-17.03/nixexprs.tar.xz"
+            echo "nixpkgs=https://nixos.org/channels/nixos-18.03/nixexprs.tar.xz"
 	          ;;
         checkout)
             echo "nixpkgs=$PWD/../nixpkgs"
diff --git a/logical/pennyworth.nix b/logical/pennyworth.nix
index 26a5996..1605c7f 100644
--- a/logical/pennyworth.nix
+++ b/logical/pennyworth.nix
@@ -27,7 +27,7 @@
       };
     };
     xmpp = {
-      enable = true;
+      enable = false;
       vhost = "yori.cc";
       admins = [ "yorick@yori.cc" ];
     };
@@ -51,5 +51,41 @@
       private_key = "/root/keys/http.muflax.key";
     };
   };
+  users.extraUsers.git = {
+    createHome = true;
+    home = config.services.gitea.stateDir; extraGroups = [ "git" ]; useDefaultShell = true;};
+  services.gitea = {
+    enable = true;
+    user = "git";
+    database.user = "root";
+    database.name = "gogs";
+    #dump.enable = true; TODO: backups
+    domain = "git.yori.cc";
+    rootUrl = "https://git.yori.cc/";
+    httpAddress = "localhost";
+    cookieSecure = true;
+    extraConfig = ''
+      [service]
+      REGISTER_EMAIL_CONFIRM = false
+      ENABLE_NOTIFY_MAIL = false
+      DISABLE_REGISTRATION = true
+      REQUIRE_SIGNIN_VIEW = false
+      [picture]
+      DISABLE_GRAVATAR = false
+      [mailer]
+      ENABLED = false
+      AVATAR_UPLOAD_PATH = ${config.services.gitea.stateDir}/data/avatars
+    '';
+  };
+  services.nginx.virtualHosts."git.yori.cc" = {
+    forceSSL = true;
+    enableACME = true;
+    locations."/" = {
+      proxyPass = "http://127.0.0.1:${toString config.services.gitea.httpPort}";
+      extraConfig = ''
+        proxy_buffering off;
+      '';
+    };
+  };
   deployment.keyys = [ <yori-nix/keys/http.muflax.key> ];
 }
diff --git a/packages/default.nix b/packages/default.nix
index 0da4db9..a1cd4d9 100644
--- a/packages/default.nix
+++ b/packages/default.nix
@@ -3,5 +3,15 @@
   shallot = super.callPackage ./shallot.nix {};
   yori-cc = super.callPackage ./yori-cc.nix {};
   firmware_qca6174 = super.callPackage ./firmware_qca6174.nix {};
-
+  gitea = 
+    super.gitea.overrideDerivation (o: rec {
+      version = "1.4.1";
+      name = "gitea-${version}";
+      src = self.fetchFromGitHub {
+        owner = "go-gitea";
+        repo = "gitea";
+        rev = "v${version}";
+        sha256 = "1mid67c4021m7mi4ablx1w5v43831gzn8xpg8n30a4zmr70781wm";
+      };
+    });
 })]
diff --git a/servers.json b/servers.json
index 8cbf7f5..41dbce8 100644
--- a/servers.json
+++ b/servers.json
@@ -1,6 +1,6 @@
 {
     "pennyworth": {
-        "pkgs": "channel",
+        "pkgs": "stable",
         "host": "pennyworth.yori.cc"
     },
     "jarvis": {