jackos1998
a7ea91f529
Add a top-level `README.md` mapping the boxes and per-machine docs under `docs/boxes/` (grouped `colony/`, `home/`, `misc/`), one file per host, VM and container documenting role, services and networking with source pointers. Also point `AGENTS.md` at the new docs. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
1.6 KiB
1.6 KiB
git
The Gitea VM — source hosting and CI for the boxes (git.nul.ie).
- Source:
nixos/boxes/colony/vms/git/(default.nix,gitea.nix,gitea-actions.nix) - nixpkgs:
mine - Host: VM on
colony
Role
- Gitea (
gitea.nix) — the Git forge (git.nul.ie). PostgreSQL-backed (the sharedcolony-psql), LFS enabled, with object storage backed by MinIO onobject(a MinIO secret is spliced intoapp.iniat startup). - Gitea Actions runner
(
gitea-actions.nix) — a Docker-mode runner (main-docker) using podman. Labels provide Debian/node-24 (Trixie) and Ubuntu 26.04 images; runner config comes from the upstream module'ssettingsoption. The Actions cache lives on a dedicated disk (/var/cache/gitea-runner). Runs as a fixedgitea-runneruser (notDynamicUser) so it can read its token. - nginx — terminates TLS for
git.nul.ieand proxies to Gitea on:3000. ACME certs fornul.ie/*.nul.ievia the Cloudflare DNS challenge. - podman — also hosts the OCI registry/build images;
/var/lib/containersis an XFS data disk.
Networking
vmsinterface withrouting/internalassignments.- HTTP/HTTPS forwarded in from
estuary; podman default subnet10.88.0.0/16is allowed to forward.
CI
This runner is what executes the repo's own .gitea/workflows/ci.yaml, building
each .#ci.x86_64-linux attribute and pushing to the Harmonia binary cache. See
AGENTS.md.