4.6 KiB
4.6 KiB
Gitlin
Github向けプライバシーUI
GitlinはGotHubのフォークです。
インストールする方法
従属ソフト
- Go 1.20以上
- nginx又はOpenBSDのrelayd
- 良いOS (GNU/Linux、OpenBSD、又はFreeBSD)
インストールする方法
make
OpenBSD
nvim /etc/rc.d/gitlin
#!/bin/ksh
daemon="/var/www/htdocs/DOMAIN/gitlin serve"
. /etc/rc.d/rc.subr
rc_bg=YES
rc_reload=NO
rc_cmd $1
chmod +x /etc/rc.d/gitlin
rcctl enable gitlin
rcctl start gitlin
FreeBSD
nvim /usr/local/etc/rc.d/gitlin
#!/bin/sh
# PROVIDE: gitlin
# REQUIRE: NETWORKING SYSLOG
# KEYWORD: shutdown
#
# Add the following lines to /etc/rc.conf to enable gitlin:
. /etc/rc.subr
name="gitlin"
rcvar="gitlin_enable"
load_rc_config $name
: ${gitlin_enable:="NO"}
: ${gitlin_facility:="daemon"}
: ${gitlin_priority:="debug"}
command="/var/htdocs/DOMAIN/${name}"
procname="/var/htdocs/DOMAIN/${name}"
pidfile="/var/run/${name}.pid"
start_cmd="${name}_start"
gitlin_start() {
for d in /var/db/gitlin /var/log/gitlin; do
if [ ! -e "$d" ]; then
mkdir "$d"
fi
done
/usr/sbin/daemon -S -l ${gitlin_facility} -s ${gitlin_priority} -T ${name} \
-p ${pidfile} \
/usr/bin/env -i \
"PATH=/var/htdocs/DOMAIN:${PATH}" \
$command
}
run_rc_command "$1"
sysrc gitlin_enable=YES
service start gitlin
Crux
nvim /etc/rc.d/gitlin
#!/bin/sh
#
# /etc/rc.d/gitlin: start/stop the gitlin daemon
#
SSD=/sbin/start-stop-daemon
NAME=gitlin
PROG=/usr/bin/$NAME
PIOD=/run/$NAME.pid
case $1 in
start)
$SSD --start --pidfile $PID --exec $PROG
;;
stop)
$SSD --stop --retry 10 --pidfile $PID
;;
restart)
$0 stop
$0 start
;;
status)
$SSD --status --pidfile $PID
case $? in
0) echo "$PROG は実行中。pid $(cat $PID)" ;;
1) echo "$PROG は実行していませんが、pidファイルは「 $PID 」として存在しそう" ;;
3) echo "$PROG は停止中" ;;
4) echo "状況不明" ;;
esac
;;
*)
echo "usage: $0 [start|sto@|restart|status]"
;;
esac
# End of file
Devuan/Debian/Ubuntu/Arch/Artix/AlmaLinux等
nvim /etc/init.d/gitlin
#!/bin/sh
#
# chkconfig: 35 90 12
# description: Gitlin server
#
NAME=gitlin
DESC=gitlin
DAEMON=/usr/bin/$NAME
start () {
echo "Gitlinサーバーは開始中:\n"
/usr/bin/gitlin -s 9910 &>/dev/null &
touch /var/lock/subsys/gitlin
echo
}
stop () {
echo "Gitlinサーバーは終了中:\n"
pkill gitlin
rm -f /var/lock/subsys/gitlin
echo
}
case "$1" in
start)
start
;;
stop)
stop
;;
status)
status_of_proc "$DAEMON" "$NAME" && exit 0 || exit $?
;;
restart|reload|condrestart)
stop
start
;;
*)
echo $"Usage: $0 {start|stop|restart|status}"
exit 1
esac
ウェブサーバー
OpenBSD
nvim /etc/relayd.conf
# $OpenBSD: relayd.conf,v 1.5 2018/05/06 20:56:55 benno Exp $
#
relayd_address="0.0.0.0"
table <gitlin> { 127.0.0.1 }
http protocol reverse_proxy {
tls keypair "DOMAIN"
match request header append "X-Forwarded-For" value "$REMOTE_ADDR"
match request header append "X-Forwarded-Port" value "$REMOTE_PORT"
match response header set "Referrer-Policy" value "same-origin"
match response header set "X-Frame-Options" value "deny"
match response header set "X-XSS-Protection" value "1; mode=block"
match response header set "X-Content-Type-Options" value "nosniff"
match response header set "Strict-Transport-Security" value "max-age=31536000; includeSubDomains; preload"
match response header set "Cache-Control" value "max-age=86400"
pass request quick header "Host" value "DOMAIN" forward to <gitlin>
return error
pass
}
relay www {
listen on $relayd_address port 443 tls
protocol $relayd_address
forward to <gitlin> check tcp port 9910
}
その他
server {
server_name DOMAIN www.DOMAIN;
root /var/www/htdocs/gitlin;
access_log off;
error_log off;
if ($host = www.DOMAIN) {
return 301 https://DOMAIN$request_uri;
}
location /static {
try_files $uri $uri/ /static/$args;
}
location / {
proxy_pass http://localhost:9910;
}
listen [::]:443 ssl ipv6only=on;
listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/DOMAIN/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/DOMAIN/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf
}
server {
if ($host = DOMAIN) {
return 301 https://DOMAIN$request_uri;
}
if ($host = www.DOMAIN) {
return 301 https://DOMAIN$request_uri;
}
listen 80;
listen [::]:80;
server_name DOMAIN www.DOMAIN;
return 404;
}