2024-12-19 02:32:58 -05:00
|
|
|
{ config, ... }:
|
|
|
|
|
{
|
2024-12-15 02:44:50 -05:00
|
|
|
services.gitlab = {
|
|
|
|
|
enable = true;
|
|
|
|
|
https = true;
|
|
|
|
|
host = "git.cything.io";
|
|
|
|
|
user = "git"; # so that you can ssh with git@git.cything.io
|
|
|
|
|
group = "git";
|
|
|
|
|
port = 443; # this *not* the port gitlab will run on
|
|
|
|
|
puma.workers = 0; # https://docs.gitlab.com/omnibus/settings/memory_constrained_envs.html#optimize-puma
|
2025-01-04 22:24:38 -05:00
|
|
|
sidekiq.concurrency = 5;
|
2024-12-15 02:44:50 -05:00
|
|
|
databaseUsername = "git"; # needs to be same as user
|
|
|
|
|
initialRootEmail = "hi@cything.io";
|
2024-12-16 23:20:51 -05:00
|
|
|
initialRootPasswordFile = config.sops.secrets."gitlab/root".path;
|
2024-12-15 02:44:50 -05:00
|
|
|
secrets = {
|
2024-12-16 23:20:51 -05:00
|
|
|
secretFile = config.sops.secrets."gitlab/secret".path;
|
|
|
|
|
otpFile = config.sops.secrets."gitlab/otp".path;
|
|
|
|
|
jwsFile = config.sops.secrets."gitlab/jws".path;
|
|
|
|
|
dbFile = config.sops.secrets."gitlab/db".path;
|
2024-12-15 02:44:50 -05:00
|
|
|
};
|
2024-12-21 16:58:45 -05:00
|
|
|
backup = {
|
|
|
|
|
startAt = "daily";
|
|
|
|
|
# we already postgresqlbackup.service
|
|
|
|
|
skip = [ "db" ];
|
|
|
|
|
keepTime = 48; # hours
|
|
|
|
|
};
|
2025-01-04 22:24:38 -05:00
|
|
|
extraConfig = {
|
2025-01-07 15:13:26 -05:00
|
|
|
gitlab = {
|
|
|
|
|
# NOTE: default_syntax_highlighting_theme needs to be set in the application_settings table in the database
|
|
|
|
|
default_color_mode = 2;
|
|
|
|
|
};
|
2025-01-04 22:24:38 -05:00
|
|
|
prometheus.enabled = false;
|
|
|
|
|
};
|
2024-12-15 02:44:50 -05:00
|
|
|
};
|
|
|
|
|
}
|
