fsfe-system-hackers/git-server
17
0
Fork 0
Code Issues 1 Pull Requests Activity
70 Commits 1 Branch 0 Tags
master
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
tobiasd b32050b726
continuous-integration/drone/push Build is passing
Details
updated teplate
2026-05-05 15:09:57 +02:00
group_vars
mail sending config
2024-02-22 08:31:56 +01:00
inventory @ 0793fc7957
bump inventory
2021-08-05 13:43:04 +02:00
roles
updated teplate
2026-05-05 15:09:57 +02:00
.drone.yml
adding drone CI for docs sync
2023-01-13 15:20:10 +01:00
.gitignore
slightly improve vault/gpg process
2024-02-21 16:30:14 +01:00
.gitmodules
add our inventory
2021-04-21 12:32:18 +02:00
ansible.cfg
basic ansible setup
2021-04-21 12:32:45 +02:00
playbook.yml
add firewall setup
2022-03-14 16:40:15 +01:00
README.md
README: general improvements
2025-09-11 13:25:27 +00:00
vaultpw.gpg
add tobiasd's GPG key to the vaultpw.gpg file
2024-02-21 16:32:22 +01:00
vaultpw.sh
vaultpw.sh: remove explicit exit 0
2025-11-12 14:47:34 +00:00

README.md

FSFE Git Service

in docs.fsfe.org

This Ansible playbook takes care of setting up the FSFE's Git Service, currently based on Gitea. Some sensitive bits are encrypted.

  • Base setup of host
  • MySQL database for gitea
  • Gitea configuration
  • Webserver (nginx) including some rate limits

Prerequisites

The machine should be connected via innernet in order to authenticate users via LDAP. This is not part of this playbook.

Updates and configuration

Use this playbook to update the configuration of all elements described above. There is one exception though:

Upgrading Gitea

Before upgrading

  • make a snapshot of davy in Proxmox
  • schedule downtime in the monitoring system
  • announce the possible downtime on team@lists.fsfe.org

Upgrading

To upgrade Gitea itself (in binary form), use /root/bin/gitea-upgrade.sh providing the desired version as the first argument. For example:

/root/bin/gitea-upgrade.sh 1.13.7

This takes care of downloading the binary, checking the hashsum, replacing the binary, and reminding you of restarting the service.

After updating

After major upgrades compare the upstream templates for this release with the ones stored inroles/gitea/files/custom/templates. If the changes are substantial migrate the custom changes. Then you have to rerun the playbook (ansible-playbook playbook -t gitea) and restart gitea to put these into effect.

After the procedure has been complete reply to the email that you sent beforehand informing the team that the maintenance work is done.

Reference in New Issue View Git Blame Copy Permalink
S
Description
Ansible playbook for Gitea server (database, gitea, webserver, ldap)
https://git.fsfe.org
ansiblejinjaldapno-reuse
Readme 277 KiB
Languages
Go Template 53.6%
Jinja 33%
Shell 12.8%
CSS 0.6%