ansible(shithubd): set SHITHUB_AUTH__SSH__{ENABLED,HOST} in web.env
- SHA
f94dc012bc6351f61d382ac9a37ab6977fa0883b- Parents
-
9bfc63b - Tree
3615192
tenseleyflow/shithub
/
f94dc01
Browse files
1 changed file
| Status | File | + | - |
|---|---|---|---|
| M |
deploy/ansible/roles/shithubd/templates/web.env.j2
|
8 | 0 |
deploy/ansible/roles/shithubd/templates/web.env.j2modified@@ -19,6 +19,14 @@ SHITHUB_AUTH__SITE_NAME=shithub | ||
| 19 | 19 | SHITHUB_AUTH__EMAIL_FROM={{ shithub_email_from }} |
| 20 | 20 | SHITHUB_AUTH__EMAIL_BACKEND={{ shithub_email_backend }} |
| 21 | 21 | |
| 22 | +# SSH-git surface. Enabled flips the SSH clone URL on repo pages. | |
| 23 | +# The actual SSH service is sshd's Match-User-git block (see | |
| 24 | +# deploy/sshd_config.j2) calling shithubd's ssh-authkeys + ssh-shell | |
| 25 | +# subcommands. Both layers must be in place — toggling Enabled with | |
| 26 | +# no sshd config gives users an SSH URL that 5xx's at connect. | |
| 27 | +SHITHUB_AUTH__SSH__ENABLED=true | |
| 28 | +SHITHUB_AUTH__SSH__HOST=git@{{ shithub_domain }} | |
| 29 | + | |
| 22 | 30 | # storage |
| 23 | 31 | SHITHUB_STORAGE__REPOS_ROOT={{ shithub_data_root }}/repos |
| 24 | 32 | |