srcnode/docker, branch v0.1.1 Custom git repository service gitolite: Make admin pubkey an optional input to Docker image 2023-08-13T01:40:04+00:00 Malfurious m@lfurio.us 2023-08-13T01:40:04+00:00 19e7dc8932cf6cc8671b474ae258921480d9c608 Automating the build of this image will be awkward if we need a user-supplied input file each time. At best, it will probably lead to building out of per-instance configuration branches that store the file... The initial administrator pubkey is only really needed to include in the first image that is run at any given site, since a new install doesn't have a config/repository datastore yet. Once that is the case, the procedure in the Dockerfile to init the /var/lib/gitolite directory (now refactored to a shell script file) can be skipped, since that directory will be replaced by the previous container's volume. This is probably not the final form of this kind of build design change, but will work for now to get up and running easily with cychedelic. Signed-off-by: Malfurious <m@lfurio.us> 
Automating the build of this image will be awkward if we need a
user-supplied input file each time.  At best, it will probably lead to
building out of per-instance configuration branches that store the
file...

The initial administrator pubkey is only really needed to include in the
first image that is run at any given site, since a new install doesn't
have a config/repository datastore yet.  Once that is the case, the
procedure in the Dockerfile to init the /var/lib/gitolite directory (now
refactored to a shell script file) can be skipped, since that directory
will be replaced by the previous container's volume.

This is probably not the final form of this kind of build design change,
but will work for now to get up and running easily with cychedelic.

Signed-off-by: Malfurious <m@lfurio.us>
cgit: Show proper idle times on the index page 2022-08-18T21:43:05+00:00 Malfurious m@lfurio.us 2022-08-18T21:43:05+00:00 7ac25bc55405b51dd89f38ffa340619f5986090b By default, the idle times shown by cgit only reflect the most recent push to the master branch - and that is the time of the push, not of the actual commit. This patch causes the age/timestamp to be set by pushes to any branch. The times will reflect the age of the youngest commit on any branch or tag. Signed-off-by: Malfurious <m@lfurio.us> 
By default, the idle times shown by cgit only reflect the most recent
push to the master branch - and that is the time of the push, not of the
actual commit.

This patch causes the age/timestamp to be set by pushes to any branch.
The times will reflect the age of the youngest commit on any branch or
tag.

Signed-off-by: Malfurious <m@lfurio.us>
cgit: Fix ssh clone url 2022-08-16T18:11:59+00:00 Malfurious m@lfurio.us 2022-08-16T18:11:59+00:00 63383dd83ac4f5dfada4ffd716f6ffcdb852638d Although user@server:path would be the preferred URL form, cgit interprets this as an HTTP link, relative to the repository base URL. That is, even though the desired text appears on screen, the text's link is broken. Someone copying the link, as opposed to copying the text, to use with an actual clone (or git-remote add) will have a bad time. Using a full URL with the ssh:// protocol scheme solves this problem. '.git' is omitted from the end of the path for consistency with the HTTP url (it's use is optional for ssh protocol). Signed-off-by: Malfurious <m@lfurio.us> 
Although user@server:path would be the preferred URL form, cgit
interprets this as an HTTP link, relative to the repository base URL.

That is, even though the desired text appears on screen, the text's link
is broken.  Someone copying the link, as opposed to copying the text, to
use with an actual clone (or git-remote add) will have a bad time.

Using a full URL with the ssh:// protocol scheme solves this problem.
'.git' is omitted from the end of the path for consistency with the HTTP
url (it's use is optional for ssh protocol).

Signed-off-by: Malfurious <m@lfurio.us>
gitolite: Override default sshd_config 2022-08-16T17:53:29+00:00 Malfurious m@lfurio.us 2022-08-16T17:53:29+00:00 41277398778f53584fd6277af6e71da06e307c42 Provide a config file for the back-end SSH daemon. Primarily, this explicitly disables root login, password auth, and additional unnecessary frills. Additionally, the sftp subsystem is omitted. Now that this file is added, hostkey files (and the external volume containing them) are moved to a new dedicated location (/hostkeys/...). This allows us to bake sshd_config into the built gitolite image, instead of it also living in the external volume. This makes it easier for future changes to be incorporated by simply updating the image. Signed-off-by: Malfurious <m@lfurio.us> 
Provide a config file for the back-end SSH daemon.  Primarily, this
explicitly disables root login, password auth, and additional
unnecessary frills.  Additionally, the sftp subsystem is omitted.

Now that this file is added, hostkey files (and the external volume
containing them) are moved to a new dedicated location (/hostkeys/...).
This allows us to bake sshd_config into the built gitolite image,
instead of it also living in the external volume.  This makes it easier
for future changes to be incorporated by simply updating the image.

Signed-off-by: Malfurious <m@lfurio.us>
Add port expose directives to Dockerfiles 2022-08-13T17:08:43+00:00 Malfurious m@lfurio.us 2022-08-13T17:08:43+00:00 fa1482275535b0c9360ec80829132cbcd03c83d5 This is useful as documentation to the user, but can be necessary to work with some docker-compose setups. Signed-off-by: Malfurious <m@lfurio.us> 
This is useful as documentation to the user, but can be necessary to
work with some docker-compose setups.

Signed-off-by: Malfurious <m@lfurio.us>
cgit: Configure cgit for normalmode use 2022-08-07T10:57:34+00:00 Malfurious m@lfurio.us 2022-08-07T10:57:34+00:00 904b4fab582d0def718c0e461e4bb33f4921e6b8 Signed-off-by: Malfurious <m@lfurio.us> 
Signed-off-by: Malfurious <m@lfurio.us>
Add cgit docker image 2022-08-07T05:09:35+00:00 Malfurious m@lfurio.us 2022-08-07T05:09:35+00:00 5f193b72eb666755151faf15b71c4ffc45090745 Apache webserver (httpd) is setup minimally to host cgit on a website (sub)domain root. cgitrc config file is based on that from my previous installation, in my personal website. Signed-off-by: Malfurious <m@lfurio.us> 
Apache webserver (httpd) is setup minimally to host cgit on a website
(sub)domain root.  cgitrc config file is based on that from my previous
installation, in my personal website.

Signed-off-by: Malfurious <m@lfurio.us>
Fix datastore permissions 2022-08-06T06:38:41+00:00 Malfurious m@lfurio.us 2022-08-06T06:38:41+00:00 ea1b0343eac09b1946a71522230944486c74bb5f For compatibility with the front-end docker image, ensure git repositories (and their parent directories) have mode 0755, aka: go+rx. Signed-off-by: Malfurious <m@lfurio.us> 
For compatibility with the front-end docker image, ensure git
repositories (and their parent directories) have mode 0755, aka: go+rx.

Signed-off-by: Malfurious <m@lfurio.us>
Add gitolite gitconfig file 2022-08-03T00:29:54+00:00 Malfurious m@lfurio.us 2022-08-03T00:29:54+00:00 246aeeda471d69d52322d5d1276dbf41e1dd59db Signed-off-by: Malfurious <m@lfurio.us> 
Signed-off-by: Malfurious <m@lfurio.us>
Add default gitolite RC file 2022-08-02T22:47:19+00:00 Malfurious m@lfurio.us 2022-08-02T22:47:19+00:00 ff153afa84f92b1b0feec09a307d8ec05a3825f8 Signed-off-by: Malfurious <m@lfurio.us> 
Signed-off-by: Malfurious <m@lfurio.us>