From 18c8f3526586a8d6e89dc944f010d3006ebc1cfb Mon Sep 17 00:00:00 2001
From: Maciej Jur <maciej@kamoshi.org>
Date: Wed, 19 Jul 2023 18:13:11 +0200
Subject: [PATCH] Add cgit config

---
 hosts/kamoshi/configuration.nix |  1 +
 hosts/kamoshi/profiles/cgit.nix | 30 ++++++++++++++++++++++++++++++
 2 files changed, 31 insertions(+)
 create mode 100644 hosts/kamoshi/profiles/cgit.nix

diff --git a/hosts/kamoshi/configuration.nix b/hosts/kamoshi/configuration.nix
index 374e5fa..e1b7f51 100644
--- a/hosts/kamoshi/configuration.nix
+++ b/hosts/kamoshi/configuration.nix
@@ -4,6 +4,7 @@
     [
       /etc/nixos/hardware-configuration.nix
       ./profiles/freshrss.nix
+      ./profiles/cgit.nix
     ];
 
   # Use the GRUB 2 boot loader.
diff --git a/hosts/kamoshi/profiles/cgit.nix b/hosts/kamoshi/profiles/cgit.nix
new file mode 100644
index 0000000..647beab
--- /dev/null
+++ b/hosts/kamoshi/profiles/cgit.nix
@@ -0,0 +1,30 @@
+{ config, pkgs, ... }:
+let
+  home = "/var/lib/git";
+  address = "git.kamoshi.org";
+in
+{
+  users.users.git = {
+    isSystemUser = true;
+    description = "git user";
+    home = home;
+    shell = "${pkgs.git}/bin/git-shell";
+    openssh.authorizedKeys.keyFiles = [
+      /root/secrets/ssh/kamov.pub
+    ];
+  };
+  services = {
+    nginx = {
+      enable = true;
+      virtualHosts."${address}" = {
+        forceSSL = true;
+        enableACME = true;
+      };
+    };
+    cgit."${address}" = {
+      enable = true;
+      scanPath = home;
+      nginx.virtualHost = address;
+    };
+  };
+}