REFACTOR: lots of changes, using ansible-galaxy roles for certbot, nginx & gitea

roles/gitea/tasks/main.yml

@@ -1,30 +1,20 @@
 ---
-- name: Check for Gitea gpg key
-  stat:
-    path: /etc/apt/trusted.gpg.d/morph027-gitea.gpg
-  register: gitea_key
-
-- name: Add Gitea key, repository && install
-  block:
-    - name: Import Gitea key
-      shell: curl -s https://packaging.gitlab.io/gitea/gpg.key | sudo gpg --no-default-keyring --keyring gnupg-ring:/etc/apt/trusted.gpg.d/morph027-gitea.gpg --import && sudo chmod 644 /etc/apt/trusted.gpg.d/morph027-gitea.gpg
-      when: gitea_key.stat.exists == false or gitea_key.stat.mode != "0644"
-
-    - name: Add Gitea repository
-      apt_repository:
-        filename: morph027-gitea
-        repo: deb https://packaging.gitlab.io/gitea gitea main
-
-    - name: Add Gitea package
-      package:
-        name: gitea
-
-    - name: Configure Gitea
-      template:
-        src: templates/app.ini
-        dest: /etc/gitea/app.ini
-        owner: gitea
-  when: "'gitea' not in ansible_facts.packages"
+- name: "Install gitea"
+  include_role:
+    name: l3d.gitea
+  vars:
+    gitea_fqdn: 'git.{{ domain }}'
+    gitea_home: '/var/lib/gitea'
+    gitea_db_type: 'sqlite3'
+    gitea_theme_default: 'arc-green'
+    gitea_root_url: 'https://git.{{ domain }}'
+    gitea_protocol: http
+    gitea_http_port: "{{ giteaPort }}"
+    gitea_ssh_port: 22
+    gitea_start_ssh: false
+    gitea_allow_only_internal_registration: true
+    gitea_disable_registration: true
+    gitea_require_signin: false
 
 - name: Backup db
   include_tasks: backup.yml

roles/gitea/tasks/restore.yml

@@ -60,12 +60,18 @@
     owner: gitea
   tags: restore
 
-- name: Install config
-  copy:
-    src: /etc/gitea/gitea-dump/app.ini
-    dest: /etc/gitea/app.ini
-    owner: gitea
-    remote_src: true
+# - name: Install config
+#   copy:
+#     src: /etc/gitea/gitea-dump/app.ini
+#     dest: /etc/gitea/app.ini
+#     owner: gitea
+#     remote_src: true
+#   tags: restore
+
+- name: Remove sqlite3 db
+  file:
+    path: /var/lib/gitea/data/gitea.db
+    state: absent
   tags: restore
 
 - name: Generate sqlite3 db
@@ -83,9 +89,7 @@
   tags: restore
 
 - name: Finalize
-  shell:
-    cmd: ./gitea admin regenerate hooks -c /etc/gitea/app.ini
-    chdir: /usr/bin
+  shell: gitea admin regenerate hooks -c /etc/gitea/gitea.ini
   become: true
   become_method: su
   become_user: gitea

roles/gitea/templates/app.ini

@@ -1,61 +0,0 @@
-APP_NAME = OpenPunk Gitea
-RUN_USER = gitea
-RUN_MODE = prod
-
-[database]
-DB_TYPE  = sqlite3
-HOST     = 127.0.0.1:5432
-NAME     = gitea
-USER     = gitea
-PASSWD   = 
-SSL_MODE = disable
-CHARSET  = utf8
-PATH     = /var/lib/gitea/data/gitea.db
-
-[repository]
-ROOT = /var/lib/gitea/gitea-repositories
-
-[server]
-SSH_DOMAIN       = git.{{ domain }}
-DOMAIN           = git.{{ domain }}
-HTTP_PORT        = {{ giteaPort }}
-ROOT_URL         = https://git.{{ domain }}/
-DISABLE_SSH      = false
-SSH_PORT         = 22
-LFS_START_SERVER = false
-OFFLINE_MODE     = false
-
-[mailer]
-ENABLED = false
-
-[service]
-REGISTER_EMAIL_CONFIRM            = false
-ENABLE_NOTIFY_MAIL                = false
-DISABLE_REGISTRATION              = true
-ALLOW_ONLY_EXTERNAL_REGISTRATION  = false
-ENABLE_CAPTCHA                    = false
-REQUIRE_SIGNIN_VIEW               = false
-DEFAULT_KEEP_EMAIL_PRIVATE        = false
-DEFAULT_ALLOW_CREATE_ORGANIZATION = true
-DEFAULT_ENABLE_TIMETRACKING       = true
-NO_REPLY_ADDRESS                  = noreply.localhost
-
-[picture]
-DISABLE_GRAVATAR        = true
-ENABLE_FEDERATED_AVATAR = false
-REPOSITORY_AVATAR_FALLBACK = random
-
-[openid]
-ENABLE_OPENID_SIGNIN = false
-ENABLE_OPENID_SIGNUP = false
-
-[session]
-PROVIDER = file
-
-[log]
-MODE      = file
-LEVEL     = info
-ROOT_PATH = /var/lib/gitea/log
-
-[ui]
-DEFAULT_THEME = arc-green