Skip to content

Gitea

Gitea is a self-hosted git server, useful for having a private VCS solution.

There is an official image for this service that we'll use: gitea/gitea.

Pre-Installation

We'll create a folder in the main user's home where all the service's data will be saved.

mkdir ~/services/development/gitea

Docker Compose

Gitea will be run using Docker Compose. The content of the docker-compose.yml file is as follows:

services:
  web:
    image: gitea/gitea:latest
    restart: unless-stopped
    depends_on:
      - db
    networks:
      default:
      proxy_external:
        aliases:
          - gitea
    volumes:
      - ./data:/data
    environment:
      TZ: America/Guayaquil
    labels:
      traefik.enable: true
      traefik.docker.network: proxy_external
      traefik.http.routers.gitea.rule: Host(`subdomain.example.com`)
      traefik.http.routers.gitea.entrypoints: public
      traefik.http.routers.gitea.service: gitea@docker
      traefik.http.services.gitea.loadbalancer.server.port: 3000

  db:
    image: mariadb:10
    restart: unless-stopped
    volumes:
      - ./db:/var/lib/mysql
    environment:
      TZ: America/Guayaquil
      MYSQL_ROOT_PASSWORD: DATABASE_PASSWORD
      MYSQL_DATABASE: gitea
      MYSQL_USER: gitea
      MYSQL_PASSOWRD: DATABASE_PASSWORD

networks:
  proxy_external:
    external: true

Note

Make sure to change DATABASE_PASSWORD to a custom secret value.

Note

Replace subdomain.example.com with the domain name where your service will be accessible from.

Reverse Proxy

This service is exposed by a reverse proxy. More specifically, it is using Traefik.

For this reason, you will see that this service has:

  1. A directive to connect it to the proxy_external external network.
  2. A container alias for the proxy_external network.
  3. A number of labels with names starting with traefik.

If you're not using a reverse proxy, feel free to remove these from the docker-compose.yml file. Keep in mind you might need to bind the ports to connect to the service instead.

Post-Installation

Once you have started the server once, edit the config file located inside the data volume:

nano data/gitea/conf/app.ini

And make sure to have the following lines:

[service]
DISABLE_REGISTRATION = true

This will make sure that nobody else can register into your server without your knowledge.

Running

Start up the service with:

docker compose up -d

That's it! The service will auto-start on system startup and restart on failure.