migrate: gitea-dev #1181
Open
migrate: gitea-dev #1181
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
DiffNo diff detected! |
uni-kakurenbo
force-pushed
the
migration/gitea-dev
branch
3 times, most recently
from
b674132 to
e5c0094
Compare
Kentaro1043
requested changes
Oct 8, 2025
gitea-dev/deployment.yaml
Outdated
| containers: | ||
| - env: | ||
| - name: USER_GID | ||
| value: "996" |
Collaborator
There was a problem hiding this comment.
1002が正しいようです。該当箇所
Suggested change
| value: "996" | |
| value: "1002" |
gitea-dev/deployment.yaml
Outdated
| ports: | ||
| - containerPort: 3000 | ||
| protocol: TCP | ||
| - containerPort: 2200 |
Collaborator
There was a problem hiding this comment.
2222番が正しいです
また、IngressはL7ロードバランサーで、http/httpsしかルーティングできないので、こういう書き方をしてホストのポートに直接アタッチする必要があります。
Suggested change
| - containerPort: 2200 | |
| - containerPort: 2222 | |
| hostPort: 2222 |
gitea-dev/config/app.ini
Outdated
Comment on lines
22
to
23
| SSH_PORT = 2200 | ||
| SSH_LISTEN_PORT = 2200 |
Collaborator
There was a problem hiding this comment.
devは2222が正しいです
Suggested change
| SSH_PORT = 2200 | |
| SSH_LISTEN_PORT = 2200 | |
| SSH_PORT = 2222 | |
| SSH_LISTEN_PORT = 2222 |
gitea-dev/service.yaml
Outdated
Comment on lines
12
to
14
| - name: "2200" | ||
| port: 2200 | ||
| targetPort: 2200 |
Collaborator
There was a problem hiding this comment.
ここは必要ないです
Suggested change
| - name: "2200" | |
| port: 2200 | |
| targetPort: 2200 |
gitea-dev/ingress-route.yaml
Outdated
Comment on lines
16
to
20
| - kind: Rule | ||
| match: Host(`git-dev.trapti.tech`) | ||
| services: | ||
| - name: gitea-dev | ||
| port: 2200 |
gitea-dev/deployment.yaml
Outdated
| kind: Deployment | ||
| metadata: | ||
| labels: | ||
| app: gitea-dev |
Collaborator
There was a problem hiding this comment.
この辺の名前から -dev を削除して欲しいです。(本番環境との設定との差異は内容だけにしたいため)
Suggested change
| app: gitea-dev | |
| app: gitea |
gitea-dev/config/app.ini
Outdated
| REPOSITORY_AVATAR_UPLOAD_PATH = /data/gitea/repo-avatars | ||
|
|
||
| [attachment] | ||
| PATH = /data/gitea/attachments |
Collaborator
There was a problem hiding this comment.
ここはS3に投げてるみたいです
Suggested change
| PATH = /data/gitea/attachments | |
| STORAGE_TYPE = minio |
gitea-dev/secrets/gitea-dev.yaml
Outdated
Comment on lines
12
to
13
| GITEA__lfs__MINIO_ACCESS_KEY_ID: ENC[AES256_GCM,data:JhkdKHZsI3BPhVVNZo2WPL0Hqqg=,iv:izcJl5Y465qys/ujRTzHr7Xzoi+XzL3MNVscQ2y3AMY=,tag:hLdo4ZpeEwg9ECJj3cXPcw==,type:str] | ||
| GITEA__lfs__MINIO_SECRET_ACCESS_KEY: ENC[AES256_GCM,data:AAyFxipxE3fk3QJ8hbLLw9RBHg4Yy0Z0vZsKF9jJaiUQOVTu//pREg==,iv:gU1/eUj8ugWjvPZvncNCtoPfsC+USwSfFOVvZrkPUdQ=,tag:6dXKZ5+EQ+mCXxnI/VwfGw==,type:str] |
Collaborator
There was a problem hiding this comment.
これは[storage.minio]セクションにあるべきです。環境変数だとどうなるのか調べたところ、GITEA__storage_0X2E_minio__MINIO_ACCESS_KEY_IDと書くらしいです。わかりにくい...😢
Secretのファイルを編集したあとは再暗号化をお願いします🙏
uni-kakurenbo
force-pushed
the
migration/gitea-dev
branch
4 times, most recently
from
abf1a42 to
e5c0094
Compare
uni-kakurenbo
force-pushed
the
migration/gitea-dev
branch
6 times, most recently
from
3b1abd9 to
9c6fcca
Compare
uni-kakurenbo
force-pushed
the
migration/gitea-dev
branch
from
9c6fcca to
dce4f9a
Compare
Kentaro1043
requested changes
Jan 13, 2026
Comment on lines
+16
to
+20
| - kind: Rule | ||
| match: Host(`git-dev.trapti.tech`) | ||
| services: | ||
| - name: gitea | ||
| port: 2222 |
Collaborator
There was a problem hiding this comment.
ここはIngressを通らないので必要なさそうです
Suggested change
| - kind: Rule | |
| match: Host(`git-dev.trapti.tech`) | |
| services: | |
| - name: gitea | |
| port: 2222 |
|
|
||
| [repository.upload] | ||
| TEMP_PATH = /data/gitea/uploads | ||
|
|
Collaborator
There was a problem hiding this comment.
[repository.signing]が抜けてる気がします
| [database] | ||
| PATH = /data/gitea/gitea.db | ||
| DB_TYPE = mysql | ||
| HOST = private.kmbk.tokyotech.org:33060 |
Collaborator
There was a problem hiding this comment.
tailscaleになってなさそうです
Suggested change
| HOST = private.kmbk.tokyotech.org:33060 | |
| HOST = tailscale.kmbk.tokyotech.org:33060 |
Comment on lines
+33
to
+37
| volumeMounts: | ||
| - name: storage | ||
| mountPath: /data | ||
| - name: config | ||
| mountPath: /app.ini |
Collaborator
There was a problem hiding this comment.
何故か開発環境にはなかったけど、timezoneをホストと合わせるのが良い気がします 該当箇所
| @@ -0,0 +1,29 @@ | |||
| apiVersion: v1 | |||
Collaborator
There was a problem hiding this comment.
現在Secretに関する新ルールのPRが作成中なので、それに合わせてファイル名をsecrets.enc.yamlに変更していただけると助かります🙏
ファイル名の変更時は最暗号化は必要ないです
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
app.iniにどうやって認証情報埋め込めばいいのかわからない