tjh.dev / pkgs
Arch PKGBUILDs for https://tangled.org/@tangled.org/core
arch pkgbuild
fork atom

add readme

tjh.dev 66b6e1fd 4fb4c5c9

+50
+50
README.md
··· 1 + # pkgs 2 + 3 + PKGBUILD for my [@tangled.sh](https://tangled.sh/@tangled.sh/core) knotserver setup on [Arch Linux](https://archlinux.org) (because I just can't get my head around nix). 4 + 5 + ## Install 6 + 7 + ```bash 8 + makepkg -D knotserver --install 9 + ``` 10 + 11 + Yay! 12 + 13 + ## Additional steps ... 14 + 15 + ### Secrets 16 + Obtain a server secret from [/knots](https://tangled.sh/knots), and set `KNOT_SERVER_SECRET` in `/etc/tangled/knotserver`. 17 + 18 + ```bash 19 + echo 'KNOT_SERVER_SECRET="..."' > /etc/tangled/knotserver 20 + ``` 21 + 22 + ### Hostname 23 + 24 + Either set `/etc/hostname` to the host's FQDN, or override `KNOT_SERVER_HOSTNAME` in `knotserver.service` 25 + 26 + ```bash 27 + systemctl edit knotserver.service <<EOF 28 + [Service] 29 + Environment="KNOT_SERVER_HOSTNAME=..." 30 + EOF 31 + ```` 32 + 33 + ### Reverse Proxy 34 + 35 + Setup a reverse-proxy to forward `https` requests to `http://localhost:5555`, with a valid SSL certificate. 36 + 37 + ## Running 38 + 39 + ```bash 40 + systemctl enable --now knotserver.service 41 + ``` 42 + 43 + ## SSH 44 + 45 + To permit `git` pushes over SSH, enable the `sshd_config.d` drop-in, and modify the `git` user created by the [extra/git](https://archlinux.org/packages/extra/x86_64/git/) package. 46 + 47 + ```bash 48 + ln -s /usr/lib/systemd/sshd_config.d/knotserver.conf /etc/ssh/sshd_config.d/30-knotserver.conf 49 + usermod -s /usr/bin/bash -d /var/lib/tangled git 50 + ```