3 files changed, 38 insertions, 1 deletions

diff --git a/modules/default.nix b/modules/default.nix
index 4865c38..9e13005 100644
--- a/modules/default.nix
+++ b/modules/default.nix
@@ -2,6 +2,7 @@
   bgp = import ./bgp;
   common = import ./common;
   crypto = import ./crypto;
+  git = import ./git;
   hetzner = import ./hetzner;
   image = import ./image;
   kubernetes = import ./kubernetes;
diff --git a/modules/git/default.nix b/modules/git/default.nix
new file mode 100644
index 0000000..08b2672
--- /dev/null
+++ b/modules/git/default.nix
@@ -0,0 +1,37 @@
+{ self, config, lib, pkgs, ... }:
+
+{
+  environment.systemPackages = [ pkgs.gitea ];
+
+  services.gitea = {
+    enable = true;
+    stateDir = "/var/lib/gitea";
+
+    appName = "Vapor Git: producing vaporware since 1999";
+    database = {
+      type = "postgres";
+      name = "gitea";
+      user = "gitea";
+      createDatabase = true;
+    };
+
+    settings.server = {
+      DOMAIN = "git.vapor.systems";
+      ROOT_URL = "https://git.vapor.systems";
+      PROTOCOL = "http+unix";
+      HTTP_ADDR = "/run/gitea/http.sock";
+    };
+  };
+
+  security.acme.certs = {
+    "vapor.systems" = {
+      extraDomainNames = [ "*.vapor.systems" ];
+    };
+  };
+
+  services.nginx = {
+    enable = true;
+    virtualHosts."git.vapor.systems" =
+      self.lib.nginx.proxyDomain "vapor.systems" "http://unix:/run/gitea/http.sock";
+  };
+}
diff --git a/modules/powerdns/primary.nix b/modules/powerdns/primary.nix
index 6dbe988..3fba46f 100644
--- a/modules/powerdns/primary.nix
+++ b/modules/powerdns/primary.nix
@@ -38,7 +38,6 @@
 
     services.nginx = {
       enable = true;
-      defaultListenAddresses = [ "178.63.224.13" ];
       virtualHosts."ns.vapor.systems" = self.lib.nginx.proxyDomain "vapor.systems" "http://10.10.0.1:8000";
     };