diff --git a/gitea/gitea.yaml b/gitea/gitea.yaml new file mode 100644 index 0000000..8f443e1 --- /dev/null +++ b/gitea/gitea.yaml @@ -0,0 +1,57 @@ +--- +apiVersion: v1 +kind: Pod +metadata: + annotations: + bind-mount-options:/data/gitea/data: z + bind-mount-options:/data/gitea/config: z + io.kubernetes.cri-o.TTY/gitea: "false" + io.podman.annotations.autoremove/gitea: "FALSE" + io.podman.annotations.init/gitea: "FALSE" + io.podman.annotations.label/gitea: type:container_runtime_t + io.podman.annotations.privileged/gitea: "FALSE" + io.podman.annotations.publish-all/gitea: "FALSE" + labels: + app: gitea-pod + name: gitea-pod +spec: + containers: + - image: docker.io/gitea/gitea:latest-rootless + name: gitea + ports: + - containerPort: 3000 + hostPort: 9080 + hostIP: 127.0.0.1 + securityContext: + capabilities: + drop: + - CAP_MKNOD + - CAP_AUDIT_WRITE + volumeMounts: + - mountPath: /var/lib/gitea + name: data-gitea-data-0 + - mountPath: /etc/gitea + name: data-gitea-config-0 + - mountPath: /etc/timezone + name: etc-timezone-0 + readOnly: true + - mountPath: /etc/localtime + name: etc-localtime-0 + readOnly: true + volumes: + - hostPath: + path: /data/gitea/data + type: Directory + name: data-gitea-data-0 + - hostPath: + path: /data/gitea/config + type: Directory + name: data-gitea-config-0 + - hostPath: + path: /etc/timezone + type: File + name: etc-timezone-0 + - hostPath: + path: /etc/localtime + type: File + name: etc-localtime-0 diff --git a/traefik/configuration/gitea.yml b/traefik/configuration/gitea.yml new file mode 100644 index 0000000..9180ea3 --- /dev/null +++ b/traefik/configuration/gitea.yml @@ -0,0 +1,18 @@ +http: + routers: + gitea: + entrypoints: + - websecure + tls: + certresolver: "myresolver" + domains: + - main: "git.nbit.ch" + rule: "Host(`git.nbit.ch`)" + service: gitea + + services: + gitea: + loadBalancer: + servers: + - url: http://127.0.0.1:9080/ + passHostHeader: false