noah/dotfiles
1
0
Fork 0
mirror of https://github.com/nmasur/dotfiles synced 2024-11-09 22:12:56 +00:00
Code Issues Packages Projects Releases Wiki Activity

have gitea actually backup full repos

Browse Source
This commit is contained in:
Noah Masur 2023-07-04 18:01:11 -06:00
parent b599162090
commit ffe867e6a8
1 changed files with 30 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

31
modules/nixos/services/gitea.nix
View File

@ -1,4 +1,4 @@
{ config, lib, ... }: { config, pkgs, lib, ... }:
let giteaPath = "/var/lib/gitea"; # Default service directory let giteaPath = "/var/lib/gitea"; # Default service directory
@ -44,6 +44,7 @@ in {
}; };
networking.firewall.allowedTCPPorts = [ 122 ]; networking.firewall.allowedTCPPorts = [ 122 ];
users.users.${config.user}.extraGroups = [ "gitea" ];
caddy.routes = [{ caddy.routes = [{
match = [{ host = [ config.gitServer ]; }]; match = [{ host = [ config.gitServer ]; }];
@ -84,6 +85,34 @@ in {
requires = [ "gitea.service" ]; requires = [ "gitea.service" ];
}; };
# Run a repository file backup on a schedule
systemd.timers.gitea-backup = lib.mkIf (config.backup.s3.endpoint != null) {
timerConfig = {
OnCalendar = "*-*-* 00:00:00"; # Once per day
Unit = "gitea-backup.service";
};
wantedBy = [ "timers.target" ];
};
# Backup Gitea repos to object storage
systemd.services.gitea-backup =
lib.mkIf (config.backup.s3.endpoint != null) {
description = "Backup Gitea data";
environment.AWS_ACCESS_KEY_ID = config.backup.s3.accessKeyId;
serviceConfig = {
Type = "oneshot";
User = "gitea";
Group = "backup";
EnvironmentFile = config.secrets.backup.dest;
};
script = ''
${pkgs.awscli2}/bin/aws s3 sync --exclude */gitea.db* \
${giteaPath}/ \
s3://${config.backup.s3.bucket}/gitea-data/ \
--endpoint-url=https://${config.backup.s3.endpoint}
'';
};
}; };
} }