Commit graph

35 commits

Author SHA1 Message Date
Maxim Burgerhout
ed984bb95a
Fix double endif in gitea.ini (#97)
Removed the second one: text between if and endif is now all about lfs,
which seemed to be the point ;)
2021-04-12 18:11:57 +01:00
Anton
4dfd303061
Upgrade/ansible version 2.10 (#84)
* added new vars for lfs remote usage
git lfs can be hosted elsewhere and therefore need some config

* added configuration describtion for lfs vars

* added new vars for notifications

* added describtion for new vars for mail notis

* added gitea_lfs_secret describtion to README

* remove whitespaces and lines

* upgraded minimum ansible version to 2.10

* refactored coansible to use minimum version 2.10

* Cleanup template (#85)

improve template and create loglevel variable

* update requirements for molecule (#78)

* start upgrading requirements

* add some more updated requirements

* add another junk

* add another junk

* update ansible version

* modify backup on upgrade (#81)

* create backup direcotry

create a backup folder and move the gitea backup to backup.yml

* make the backup on update optional

Documentation and introduction of the variable `gitea_backup_on_upgrade: false`

* change become_method to sudo

change become_method to sudo as suggested by @wzzrd. removed become_flags.

* Full path to gitea binary in backup task. thanks to @wzzrd

* update gitea to 1.13.4 (#86)

The current release of gitea is [v1.13.4](https://github.com/go-gitea/gitea/releases/tag/v1.13.4).

The current master of this role is not able to do a version update properly. PLEASE first merge https://github.com/thomas-maurice/ansible-role-gitea/pull/81

* Bump pyyaml from 5.3.1 to 5.4 (#89)

Bumps [pyyaml](https://github.com/yaml/pyyaml) from 5.3.1 to 5.4.
- [Release notes](https://github.com/yaml/pyyaml/releases)
- [Changelog](https://github.com/yaml/pyyaml/blob/master/CHANGES)
- [Commits](https://github.com/yaml/pyyaml/compare/5.3.1...5.4)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* bump gitea version (#87)

fixes security issues https://github.com/go-gitea/gitea/releases/tag/v1.13.6

* added new vars for lfs remote usage
git lfs can be hosted elsewhere and therefore need some config

added configuration describtion for lfs vars

added new vars for notifications

added describtion for new vars for mail notis

added gitea_lfs_secret describtion to README

remove whitespaces and lines

upgraded minimum ansible version to 2.10

refactored coansible to use minimum version 2.10

Co-authored-by: L3D <l3d@c3woc.de>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Timmerman <jens.timmerman@gmail.com>
2021-04-10 18:07:02 +01:00
L3D
2fa3f51eb4
Cleanup template (#85)
improve template and create loglevel variable
2021-03-02 09:35:13 +00:00
Maxim Burgerhout
183e58f0e5
Add / correct accepted SSL modes for PostgreSQL (#83)
Supported SSL modues for PostgreSQL are: disabled, require, verify-ca
and verify-full.

This fix adds `verify-ca` to README.md and gitea.ini.j2, and corrects
`require` to `required` in README.md.
2021-02-15 18:35:27 +00:00
Finwë
56375819a7
Improve ARM Support (#74)
* Gitea user should be a system user

* Improve installation system

* Download archive instead of binary
* Add checksum validation
* Add GPG check
* Add backup process before upgrading

* Improve ARM support

* Improve support for Vault Encrypted JWT tokens

* Fix spacing in gitea configuration template

When Gitea rewrite the configuration file (e.g.: the JWT token is not
set or doesn't fit their criteria), it'll align space on a per-section
basis in the .ini file.
If the template is not properly spaced, at the next Ansible run, you'll
have an enormous diff, hidding what the real changes are.

* add proper redhat/debian deps for molecule testing

* Gitea group should be a system group

* fix linting for CI

* Update CI and meta information for up-to-date tests and distros

* molecule: fix typo for redhat packages

* fix typo

* bump gitea version to 1.13.1

* Use Ubuntu keyservers to play nicely with everyone

* Update minimum required ansible version to 2.9.8

This is required for Ubuntu Focal, which comes with systemd >= 245
The Get Facts modules doesn't work well with it before the bugfix
introduced in 2.9.8

* Replace yes by True to please the linting

* Truthy values needs to be lower-case

* bump gitea version to 1.13.2

* perform gitea dump as gitea user

* need to set become to yes

* autogenerate JWT_SECRETS (#77)

* autogenerate JWT_SECRETS

Based on https://docs.gitea.io/en-us/command-line/#generate we will now autogenerate JWT_SECRETS if they are not defined.
In my opinion a much better idea than writing a value in the default config.

The check if the variables for the secrets are now 43 characters long i took out. Gitea generates itself suitable secrets, if the user given ones do not fit.

* drop ansible.builtin. syntax

* Update file permissions for "{{ gitea_home }}" (#75)

The file permissions for {{ gitea_home }} especially in conjunction with the recurse: true flag are on closer inspection very open to all and also have a +x set on files.

This should be done better. And I have done here now.

By the way: To improve the -x on normal files in his gitea installation this shell command was useful for me
```
find . -type f -exec chmod a-x {} \+;
find . -type f -exec chmod u=rwX {} \+;
```

* Bump cryptography from 3.2 to 3.3.2 (#79)

Bumps [cryptography](https://github.com/pyca/cryptography) from 3.2 to 3.3.2.
- [Release notes](https://github.com/pyca/cryptography/releases)
- [Changelog](https://github.com/pyca/cryptography/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/3.2...3.3.2)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Gitea user should be a system user

* Improve installation system

* Download archive instead of binary
* Add checksum validation
* Add GPG check
* Add backup process before upgrading

* Improve ARM support

* Fix spacing in gitea configuration template

When Gitea rewrite the configuration file (e.g.: the JWT token is not
set or doesn't fit their criteria), it'll align space on a per-section
basis in the .ini file.
If the template is not properly spaced, at the next Ansible run, you'll
have an enormous diff, hidding what the real changes are.

* add proper redhat/debian deps for molecule testing

* Gitea group should be a system group

* fix linting for CI

* Update CI and meta information for up-to-date tests and distros

* molecule: fix typo for redhat packages

* fix typo

* bump gitea version to 1.13.1

* Use Ubuntu keyservers to play nicely with everyone

* Update minimum required ansible version to 2.9.8

This is required for Ubuntu Focal, which comes with systemd >= 245
The Get Facts modules doesn't work well with it before the bugfix
introduced in 2.9.8

* Replace yes by True to please the linting

* Truthy values needs to be lower-case

* bump gitea version to 1.13.2

* perform gitea dump as gitea user

* need to set become to yes

* check-variables.yml doesn't exists anymore

Co-authored-by: L3D <l3d@c3woc.de>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-02-12 17:56:31 +00:00
L3D
cde4a964d5 add LFS_JWT_SECRET option
+ Add comments about git-lfs to the README.
+ New variable for LFS_JWT_SECRET.
+ absolute path for gitea_lfs_content_path.
+ maybe some help to resolve https://github.com/thomas-maurice/ansible-role-gitea/issues/70
2021-01-22 11:07:28 +00:00
L3D
c68565952a delete trailing whitespace 2021-01-22 11:07:28 +00:00
Simeon Keske
aa75493677 add option to specify extra configuration 2020-12-06 21:39:19 +00:00
Leo Maroni
8af72e355e Add disable_git_hooks config option to security 2020-12-06 21:37:51 +00:00
Leo Maroni
8f2e1bcd6a
Add configuration option for enabling notify email 2020-07-28 12:23:26 +02:00
Martin Borer
f48402354f issue #53: define mailer type 2020-07-21 14:18:08 +02:00
Leo Maroni
1df6bd8e23
Add config options for repository indexer 2020-06-18 07:41:59 +02:00
Leo Maroni
8506ca4f2b Add config option to set repository path different to home_path 2020-05-19 14:19:23 +01:00
Simeon Keske
349d9dff4f fix typo in THEMES 2020-05-19 14:13:01 +01:00
Simeon Keske
259d761eb2 add variable gitea_only_allow_external_registration 2020-05-19 14:13:01 +01:00
Simeon Keske
1f88e7238a Allow to specify default theme 2020-05-19 14:13:01 +01:00
Mathias Merscher
c50f79cf4a adds metrics endpoint config support 2020-01-06 11:37:50 +00:00
Mathias Merscher
630d64dbb5 add back oauth2 parameters 2019-12-30 11:25:23 +00:00
L3D
afbd034f50 Enable git lfs options
With this change it is possible to enable the git-lfs server.
And to configure where data are stored.
2019-07-12 21:16:01 +01:00
Bèr Kessels
fe4db0bb07 Add username and password for smpt servers. Defaulting to blank 2019-06-16 19:19:24 +01:00
L3D
9c536d77a9 Simplify configuration file
I kicked out some config values, that are not controlled via ansible variables.
Maybe it makes more sense if we only customize the values, we are really changing. *(like database, domain and other behavior...)*

I had the problem, that after upgrading gitea it won't run with the config provided by this ansible role. But the default config worked fine.

I assume that the official gitea chenged and updated some options.
Some options in the old config file of this role did not appear in the [official cheat sheet](https://docs.gitea.io/en-us/config-cheat-sheet/).

@thomas-maurice: What did you think about it?
Better track every value and update it in our config.

Or clean up the config and only keep the parameter we really need and let gitea set everything else with their default values?
2019-06-02 23:04:10 +02:00
Mathias Merscher
5e2f160441 remove trailing whitespace 2019-03-16 10:07:04 +00:00
Mathias Merscher
b2a6429823 adds template variable for SHOW_REGISTRATION_BUTTON 2019-03-16 10:07:04 +00:00
Mathias Merscher
8837b4522b fix indexer config, keep old openid config 2019-03-16 10:07:04 +00:00
Mathias Merscher
1997360f71 adds template variables for oauth config 2019-03-16 10:07:04 +00:00
Mathias Merscher
d339c620e9 adds template variable for IS_TLS_ENABLED 2019-03-16 10:07:04 +00:00
Mathias Merscher
fcae409935 adds all new config parameters from app.ini.sample
Version: e777c6bdc6/custom/conf/app.ini.sample
2019-03-16 10:07:04 +00:00
Mathias Merscher
48cf9f8fcb update config ini comments 2019-03-16 10:07:04 +00:00
Mathias Merscher
062325f27e adds new ini parameter DEFAULT_PRIVATE 2019-03-16 10:07:04 +00:00
Mathias Merscher
ac01b1e467 add new ini parameter INTERNAL_TOKEN 2019-03-16 10:07:04 +00:00
Mathias Merscher
af20311115 adds mailer config parameters 2019-03-09 13:38:43 +00:00
Mathias Merscher
fb63b41825 fix gitea_db_passord typo 2019-03-09 13:37:48 +00:00
h0chi
6153ad8c54 Update gitea.ini.j2 2019-02-22 17:39:12 +00:00
Thomas Maurice
9d685ab7a5
Add the support for mysql and postgres databases and documentation 2017-01-11 08:01:37 +01:00
Thomas Maurice
59d3cfc7c8
First commit 2017-01-10 22:09:34 +01:00