Ansible playbook for Gitea server (database, gitea, webserver, ldap) https://git.fsfe.org
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
Max Mehl 601a95f5de
adopt changed path of public files
2 months ago
files adopt changed path of public files 2 months ago
group_vars switch to productive domain 4 months ago
inventory@0793fc7957 bump inventory 4 months ago
roles add mysql role 8 months ago
tasks fix systemd service 4 months ago
templates adopt templates and config for gitea 1.15.x 2 months ago
.gitmodules add our inventory 8 months ago
README.md extend upgrade instructions 4 months ago
ansible.cfg basic ansible setup 8 months ago
playbook.yml fix systemd service 4 months ago
vaultpw.gpg basic ansible setup 8 months ago
vaultpw.sh basic ansible setup 8 months ago

README.md

FSFE Git Service

This Ansible playbook takes care of setting up the FSFE's Git Service, currently based on Gitea. Some sensible bits are encrypted.

  • Base setup of host
  • MySQL database for gitea
  • Gitea configuration
  • Webserver (nginx) including some rate limits
  • LDAP via client certificates, using stunnel

Updates and configuration

Use this playbook to update the configuration of all elements described above. There is one exception though:

Upgrading Gitea

To upgrade Gitea itself (in binary form), use /root/bin/gitea-upgrade.sh while providing the desired version. For example:

/root/bin/gitea-upgrade.sh 1.13.7

This takes care of downloading the binary, checking the hashsum, replacing the binary, and reminding you of restarting the service.

Afterwards - especially after major upgrades – compare the upstream templates for this release (choose the tag!) with the ones stored in files/gitea_custom/templates. If substantial changes happened with this release, take the new versions and migrate the custom changes to them. You have to restart gitea to put these into effect.