servius/dotfiles
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

feat: gitea only secure /urer/settings

Browse Source
This commit is contained in:
uttarayan21
2025-08-13 20:14:41 +05:30
parent e7747d0faa
commit 7e6f72a7d0
2 changed files with 16 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
nixos/mirai/services/gitea.nix
View File

@@ -2,7 +2,8 @@
lib,
config,
...
}: {
}:
{
virtualisation.docker.enable = true;
sops = {
# secrets."gitea/registration".owner = config.systemd.services.gitea-actions-mirai.serviceConfig.User;
@@ -71,6 +72,9 @@
{
domain = "git.darksailor.dev";
policy = "one_factor";
resources = [
"/user/settings"
];
}
];
};

12
nixos/mirai/services/llama.nix
View File

@@ -3,7 +3,8 @@
pkgs,
inputs,
...
}: {
}:
{
sops = {
secrets."llama/api_key".owner = config.services.caddy.user;
secrets."llama/user".owner = config.services.caddy.user;
@@ -20,7 +21,7 @@
};
services = {
llama-cpp = {
enable = true;
enable = false;
port = 11435;
model = pkgs.fetchurl {
url = "https://huggingface.co/lmstudio-community/gpt-oss-20b-GGUF/resolve/main/gpt-oss-20b-MXFP4.gguf";
@@ -30,7 +31,12 @@
};
ollama = {
enable = true;
loadModels = ["deepseek-r1:7b" "deepseek-r1:14b" "RobinBially/nomic-embed-text-8k" "qwen3:8b"];
loadModels = [
"deepseek-r1:7b"
"deepseek-r1:14b"
"RobinBially/nomic-embed-text-8k"
"qwen3:8b"
];
port = 11434;
host = "0.0.0.0";
environmentVariables = {