{ config, ... }: { imports = [ ./nginx ]; services = { forgejo = { enable = true; settings = { server = { DOMAIN = "git.${config.secrets.jimDomain}"; ROOT_URL = "https://git.${config.secrets.jimDomain}:443"; HTTP_PORT = 3110; SSH_PORT = 2299; START_SSH_SERVER = true; }; ui = { DEFAULT_THEME = "forgejo-dark"; }; mailer = { ENABLED = true; SMTP_ADDR = "mx.${config.secrets.jimDomain}"; FROM = "Jimbo's Git "; USER = "noreply@${config.secrets.jimDomain}"; PASSWD = config.secrets.noreplyPassword; PROTOCOL = "smtps"; }; service = { REGISTER_EMAIL_CONFIRM = true; DISABLE_REGISTRATION = true; }; }; }; }; # Allow Forgejo's SSH to work networking.firewall.allowedTCPPorts = [ 2299 ]; }