#!/bin/bash if [ ! -d /data/git/.ssh ]; then mkdir -p /data/git/.ssh fi # Set the correct permissions on the .ssh directory and authorized_keys file, # or sshd will refuse to use them and lead to clone/push/pull failures. # It could happen when users have copied their data to a new volume and changed the file permission by accident, # and it would be very hard to troubleshoot unless users know how to check the logs of sshd which is started by s6. chmod 700 /data/git/.ssh if [ -f /data/git/.ssh/authorized_keys ]; then chmod 600 /data/git/.ssh/authorized_keys fi if [ ! -f /data/git/.ssh/environment ]; then echo "GITEA_CUSTOM=$GITEA_CUSTOM" >| /data/git/.ssh/environment chmod 600 /data/git/.ssh/environment elif ! grep -q "^GITEA_CUSTOM=$GITEA_CUSTOM$" /data/git/.ssh/environment; then sed -i /^GITEA_CUSTOM=/d /data/git/.ssh/environment echo "GITEA_CUSTOM=$GITEA_CUSTOM" >> /data/git/.ssh/environment fi if [ ! -f ${GITEA_CUSTOM}/conf/app.ini ]; then mkdir -p ${GITEA_CUSTOM}/conf # Set INSTALL_LOCK to true only if SECRET_KEY is not empty and # INSTALL_LOCK is empty if [ -n "$SECRET_KEY" ] && [ -z "$INSTALL_LOCK" ]; then INSTALL_LOCK=true fi # Substitute the environment variables in the template APP_NAME=${APP_NAME:-"Gitea: Git with a cup of tea"} \ RUN_MODE=${RUN_MODE:-"prod"} \ DOMAIN=${DOMAIN:-"localhost"} \ SSH_DOMAIN=${SSH_DOMAIN:-"localhost"} \ HTTP_PORT=${HTTP_PORT:-"3000"} \ ROOT_URL=${ROOT_URL:-""} \ DISABLE_SSH=${DISABLE_SSH:-"false"} \ SSH_PORT=${SSH_PORT:-"22"} \ SSH_LISTEN_PORT=${SSH_LISTEN_PORT:-"${SSH_PORT}"} \ LFS_START_SERVER=${LFS_START_SERVER:-"false"} \ DB_TYPE=${DB_TYPE:-"sqlite3"} \ DB_HOST=${DB_HOST:-"localhost:3306"} \ DB_NAME=${DB_NAME:-"gitea"} \ DB_USER=${DB_USER:-"root"} \ DB_PASSWD=${DB_PASSWD:-""} \ INSTALL_LOCK=${INSTALL_LOCK:-"false"} \ DISABLE_REGISTRATION=${DISABLE_REGISTRATION:-"false"} \ REQUIRE_SIGNIN_VIEW=${REQUIRE_SIGNIN_VIEW:-"false"} \ SECRET_KEY=${SECRET_KEY:-""} \ envsubst < /etc/templates/app.ini > ${GITEA_CUSTOM}/conf/app.ini chown ${USER}:git ${GITEA_CUSTOM}/conf/app.ini fi # only chown if current owner is not already the gitea ${USER}. No recursive check to save time if ! [[ $(ls -ld /data/gitea | awk '{print $3}') = ${USER} ]]; then chown -R ${USER}:git /data/gitea; fi if ! [[ $(ls -ld /app/gitea | awk '{print $3}') = ${USER} ]]; then chown -R ${USER}:git /app/gitea; fi if ! [[ $(ls -ld /data/git | awk '{print $3}') = ${USER} ]]; then chown -R ${USER}:git /data/git; fi chmod 0755 /data/gitea /app/gitea /data/git # Replace app.ini settings with env variables in the form GITEA__SECTION_NAME__KEY_NAME su $USER -c "environment-to-ini --config ${GITEA_CUSTOM}/conf/app.ini"