#SPDX-License-Identifier: MIT-0
---
# tasks file for git

- name: Create git directory
  ansible.builtin.file:
    path: /home/apps/git
    state: directory

- name: Create main git container
  containers.podman.podman_container:
    name: gitea
    image: docker.gitea.com/gitea:1.25.4
    env:
      USER_UID: 1000
      USER_GID: 1000
      SSH_PORT: 222
    network:
      - podman
    volumes:
      - "/home/apps/git:/data:z"
      - /etc/timezone:/etc/timezone:ro
      - /etc/localtime:/etc/localtime:ro
    ports:
      - "222:22"
    generate_systemd:
      new: true
      restart_policy: "always"
      path: "~/.config/systemd/user/"
    label:
      traefik.enable: "true"
      traefik.http.routers.gitea.rule: "Host(`git.wtf.lt`)"
      traefik.http.middlewares.gitea-https-redirect.redirectscheme.scheme: "https"
      traefik.http.routers.gitea.middlewares: "gitea-https-redirect"
      traefik.http.routers.gitea-secure.entrypoints: "https"
      traefik.http.routers.gitea-secure.rule: "Host(`git.wtf.lt`)"
      traefik.http.routers.gitea-secure.tls: "true"
      traefik.http.routers.gitea-secure.tls.certresolver: "lets-encrypt"
      traefik.http.services.gitea.loadbalancer.server.port: "3000"

- name: Activate gitea container service
  ansible.builtin.systemd_service:
    name: container-gitea.service
    state: started
    enabled: true
    scope: user