sako/nixos
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

do something to forgejo service

Browse source
This commit is contained in:
Sakooooo 2025-01-02 14:38:42 +04:00
parent 86b4cddbf4
commit ff11165f04
Signed by: sako
GPG key ID: 3FD715D87D7725E0
1 changed files with 7 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
modules/server/services/forgejo.nix
View file

@ -82,10 +82,13 @@ in {
journalmatch = _SYSTEMD_UNIT=forgejo.service journalmatch = _SYSTEMD_UNIT=forgejo.service
''; '';
}; };
systemd.services.forgejo.serviceConfig = { systemd.services.forgejo = {
AmbientCapabilities = lib.mkForce [ "CAP_NET_BIND_SERVICE" ]; after = [ "postgresql.service" "redis-forgejo.service" ];
CapabilityBoundingSet = lib.mkForce [ "CAP_NET_BIND_SERVICE" ]; serviceConfig = {
PrivateUsers = lib.mkForce false; AmbientCapabilities = lib.mkForce [ "CAP_NET_BIND_SERVICE" ];
CapabilityBoundingSet = lib.mkForce [ "CAP_NET_BIND_SERVICE" ];
PrivateUsers = lib.mkForce false;
};
}; };
}; };
} }