srcnode/docker/Dockerfile.gitolite, branch v0.1.1 Custom git repository service gitolite: Make admin pubkey an optional input to Docker image 2023-08-13T01:40:04+00:00 Malfurious m@lfurio.us 2023-08-13T01:40:04+00:00 19e7dc8932cf6cc8671b474ae258921480d9c608 Automating the build of this image will be awkward if we need a user-supplied input file each time. At best, it will probably lead to building out of per-instance configuration branches that store the file... The initial administrator pubkey is only really needed to include in the first image that is run at any given site, since a new install doesn't have a config/repository datastore yet. Once that is the case, the procedure in the Dockerfile to init the /var/lib/gitolite directory (now refactored to a shell script file) can be skipped, since that directory will be replaced by the previous container's volume. This is probably not the final form of this kind of build design change, but will work for now to get up and running easily with cychedelic. Signed-off-by: Malfurious <m@lfurio.us> 
Automating the build of this image will be awkward if we need a
user-supplied input file each time.  At best, it will probably lead to
building out of per-instance configuration branches that store the
file...

The initial administrator pubkey is only really needed to include in the
first image that is run at any given site, since a new install doesn't
have a config/repository datastore yet.  Once that is the case, the
procedure in the Dockerfile to init the /var/lib/gitolite directory (now
refactored to a shell script file) can be skipped, since that directory
will be replaced by the previous container's volume.

This is probably not the final form of this kind of build design change,
but will work for now to get up and running easily with cychedelic.

Signed-off-by: Malfurious <m@lfurio.us>
gitolite: Override default sshd_config 2022-08-16T17:53:29+00:00 Malfurious m@lfurio.us 2022-08-16T17:53:29+00:00 41277398778f53584fd6277af6e71da06e307c42 Provide a config file for the back-end SSH daemon. Primarily, this explicitly disables root login, password auth, and additional unnecessary frills. Additionally, the sftp subsystem is omitted. Now that this file is added, hostkey files (and the external volume containing them) are moved to a new dedicated location (/hostkeys/...). This allows us to bake sshd_config into the built gitolite image, instead of it also living in the external volume. This makes it easier for future changes to be incorporated by simply updating the image. Signed-off-by: Malfurious <m@lfurio.us> 
Provide a config file for the back-end SSH daemon.  Primarily, this
explicitly disables root login, password auth, and additional
unnecessary frills.  Additionally, the sftp subsystem is omitted.

Now that this file is added, hostkey files (and the external volume
containing them) are moved to a new dedicated location (/hostkeys/...).
This allows us to bake sshd_config into the built gitolite image,
instead of it also living in the external volume.  This makes it easier
for future changes to be incorporated by simply updating the image.

Signed-off-by: Malfurious <m@lfurio.us>
Add port expose directives to Dockerfiles 2022-08-13T17:08:43+00:00 Malfurious m@lfurio.us 2022-08-13T17:08:43+00:00 fa1482275535b0c9360ec80829132cbcd03c83d5 This is useful as documentation to the user, but can be necessary to work with some docker-compose setups. Signed-off-by: Malfurious <m@lfurio.us> 
This is useful as documentation to the user, but can be necessary to
work with some docker-compose setups.

Signed-off-by: Malfurious <m@lfurio.us>
Fix datastore permissions 2022-08-06T06:38:41+00:00 Malfurious m@lfurio.us 2022-08-06T06:38:41+00:00 ea1b0343eac09b1946a71522230944486c74bb5f For compatibility with the front-end docker image, ensure git repositories (and their parent directories) have mode 0755, aka: go+rx. Signed-off-by: Malfurious <m@lfurio.us> 
For compatibility with the front-end docker image, ensure git
repositories (and their parent directories) have mode 0755, aka: go+rx.

Signed-off-by: Malfurious <m@lfurio.us>
Add gitolite gitconfig file 2022-08-03T00:29:54+00:00 Malfurious m@lfurio.us 2022-08-03T00:29:54+00:00 246aeeda471d69d52322d5d1276dbf41e1dd59db Signed-off-by: Malfurious <m@lfurio.us> 
Signed-off-by: Malfurious <m@lfurio.us>
Add default gitolite RC file 2022-08-02T22:47:19+00:00 Malfurious m@lfurio.us 2022-08-02T22:47:19+00:00 ff153afa84f92b1b0feec09a307d8ec05a3825f8 Signed-off-by: Malfurious <m@lfurio.us> 
Signed-off-by: Malfurious <m@lfurio.us>
Add Dockerfile for gitolite/ssh service 2022-08-02T21:48:11+00:00 Malfurious m@lfurio.us 2022-08-02T21:48:11+00:00 394b99270ab3c9c48eb15b1fc34c8a4a1405616f Signed-off-by: Malfurious <m@lfurio.us> 
Signed-off-by: Malfurious <m@lfurio.us>