Huge role refactoring/cleanup. Other commits will propably follow. Because some bugs will exist. Still important for longrun and also for auto docs/help/slideshow generation

roles/web-app-gitea/templates/docker-compose.yml.j2

@@ -0,0 +1,20 @@
+{% include 'roles/docker-compose/templates/base.yml.j2' %}
+
+  application:
+{% include 'roles/docker-container/templates/base.yml.j2' %}
+    image: "{{ applications[application_id].images.gitea }}"
+    ports:
+      - "127.0.0.1:{{ports.localhost.http[application_id]}}:{{ container_port }}"
+      - "{{ports.public.ssh[application_id]}}:22"
+    volumes:
+      - data:/data
+      - /etc/timezone:/etc/timezone:ro
+      - /etc/localtime:/etc/localtime:ro
+{% include 'roles/docker-container/templates/healthcheck/curl.yml.j2' %}
+{% include 'roles/docker-container/templates/networks.yml.j2' %}
+{% include 'roles/docker-container/templates/depends_on/dmbs_excl.yml.j2' %}
+
+{% include 'roles/docker-compose/templates/volumes.yml.j2' %}
+  data:
+
+{% include 'roles/docker-compose/templates/networks.yml.j2' %}

roles/web-app-gitea/templates/env.j2

@@ -0,0 +1,66 @@
+# Configuration
+# @see https://docs.gitea.com/next/administration/config-cheat-sheet#repository-repository
+
+# General
+DOMAIN={{domains | get_domain(application_id)}}
+RUN_MODE="{{ 'dev' if (CYMAIS_ENVIRONMENT | lower) == 'development' else 'prod' }}"
+ROOT_URL="{{ domains | get_url(application_id, web_protocol) }}/"
+APP_NAME="{{ applications[application_id].title }}"
+USER_UID=1000
+USER_GID=1000
+
+# Logging configuration
+GITEA__log__MODE=console
+GITEA__log__LEVEL={% if enable_debug | bool %}Debug{% else %}Info{% endif %}    
+
+# Database
+DB_TYPE=mysql
+DB_HOST={{database_host}}:{{database_port}}
+DB_NAME={{database_name}}
+DB_USER={{database_username}}
+DB_PASSWD={{database_password}}
+
+# SSH
+SSH_PORT={{ports.public.ssh[application_id]}}
+SSH_LISTEN_PORT=22
+SSH_DOMAIN={{domains | get_domain(application_id)}}
+
+# Mail Configuration 
+# @see https://docs.gitea.com/next/installation/install-with-docker#managing-deployments-with-environment-variables
+# @todo test
+GITEA__mailer__ENABLED=true
+GITEA__mailer__FROM={{ users['no-reply'].email }}
+GITEA__mailer__PROTOCOL=smtps
+GITEA__mailer__SMTP_ADDR={{ system_email.host }}
+GITEA__mailer__SMTP_PORT={{ system_email.port }}
+GITEA__mailer__USER={{ users['no-reply'].email }}
+GITEA__mailer__PASSWD={{ users['no-reply'].mailu_token }}
+
+# Allow push creation
+# @see https://github.com/go-gitea/gitea/issues/17619
+GITEA__REPOSITORY__ENABLE_PUSH_CREATE_USER={{ applications[application_id].configuration.repository.enable_push_create_user | lower }}
+GITEA__REPOSITORY__DEFAULT_PRIVATE={{ applications[application_id].configuration.repository.default_private | lower }}
+GITEA__REPOSITORY__DEFAULT_PUSH_CREATE_PRIVATE={{ applications[application_id].configuration.repository.default_push_create_private | lower }}
+
+GITEA__security__INSTALL_LOCK=true # Locks the installation page
+
+# (De)activate OIDC
+GITEA__openid__ENABLE_OPENID_SIGNUP={{ applications | is_feature_enabled('oidc',application_id) | lower }}
+GITEA__openid__ENABLE_OPENID_SIGNIN={{ applications | is_feature_enabled('oidc',application_id) | lower }}
+
+{% if applications | is_feature_enabled('oidc',application_id) or applications | is_feature_enabled('ldap',application_id) %}
+
+EXTERNAL_USER_DISABLE_FEATURES=deletion,manage_credentials,change_username,change_full_name
+
+{% if applications | is_feature_enabled('ldap',application_id) %}
+GITEA__ldap__SYNC_USER_ON_LOGIN=true
+{% endif %}
+
+{% endif %}
+
+# ------------------------------------------------
+# Disable user self-registration
+# ------------------------------------------------
+# After this only admins can create accounts
+GITEA__service__DISABLE_REGISTRATION=false
+