From bc618df96557bac6ec0c03a1f7e0383df7c92e0b Mon Sep 17 00:00:00 2001
From: "D. Scott Boggs" <scott@tams.tech>
Date: Fri, 23 Jun 2023 10:48:52 +0000
Subject: [PATCH] initial commit

---
 .gitignore         |  5 ++++
 docker-compose.yml | 68 ++++++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 73 insertions(+)
 create mode 100644 .gitignore
 create mode 100644 docker-compose.yml

diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..a85f069
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,5 @@
+*.pw
+*.id
+db/
+config/
+data/
diff --git a/docker-compose.yml b/docker-compose.yml
new file mode 100644
index 0000000..1479453
--- /dev/null
+++ b/docker-compose.yml
@@ -0,0 +1,68 @@
+version: "2"
+
+services:
+  server:
+    image: gitea/gitea:latest-rootless
+    restart: always
+    volumes:
+      - ./data:/var/lib/gitea
+      - ./config:/etc/gitea
+      - /etc/timezone:/etc/timezone:ro
+      - /etc/localtime:/etc/localtime:ro
+    expose: [ 3000 ]
+    ports:
+      # - "3000:3000"
+      - "2222:2222"
+    labels:
+      traefik.enable: true
+      traefik.http.routers.gitea.rule: Host(`git.tams.tech`)
+      traefik.http.routers.gitea.tls: true
+      traefik.http.routers.gitea.tls.certresolver: letsencrypt
+      traefik.http.services.gitea-service.loadbalancer.server.port: 3000
+    networks:
+      - gitea
+      - web
+    environment:
+      GITEA__database__DB_TYPE: postgres
+      GITEA__database__HOST: database:5432
+      GITEA__database__NAME: gitea
+      GITEA__database__USER: gitea
+      GITEA__database__PASSWD__FILE: /run/secrets/pg_password
+      GITEA__mailer__ENABLED: 'true'
+      GITEA__mailer__FROM: git@tams.tech
+      GITEA__mailer__PROTOCOL: smtps
+      GITEA__mailer__SMTP_ADDR: in-v3.mailjet.com
+      GITEA__mailer__USER__FILE: /run/secrets/mail_api_key
+      GITEA__mailer__PASSWD__FILE: /run/secrets/mail_secret
+    depends_on:
+      - database
+    secrets:
+      - mail_api_key
+      - mail_secret
+      - pg_password
+
+  database:
+    image: postgres:14
+    restart: always
+    environment:
+      POSTGRES_USER: gitea
+      POSTGRES_PASSWORD_FILE: /run/secrets/pg_password
+      POSTGRES_DB: gitea
+    volumes:
+      - ./db:/var/lib/postgresql/data
+    networks: [ gitea ]
+    secrets: [ pg_password ]
+
+secrets:
+  pg_password:
+    file: ./.pg.pw
+  mail_api_key:
+    file: ./.mailjet.id
+  mail_secret:
+    file: ./.mailjet.id
+
+networks:
+  gitea:
+    internal: true
+  web:
+    external: true