nix flake update; gitea runner

nix/application/containers.nix

@@ -42,6 +42,24 @@
 
       };
 
+      gitea-runner = {
+        image = "docker.io/gitea/act_runner:latest";
+        volumes = [ "/home/sezycei/srv/containerdata/gitea/runner/config.yaml:/config.yaml"
+                    "/home/sezycei/srv/containerdata/gitea/runner/data:/data"
+                    "/run/podman/podman.sock:/var/run/docker.sock"
+                  ];
+        environment = 
+          {
+            CONFIG_FILE = "/config.yaml";
+            GITEA_INSTANCE_URL = "https://git.eversole.co";
+            GITEA_RUNNER_REGISTRATION_TOKEN = "Rxl7OYPb4ysOmDZB3jnmzm7hJtQQYeaKHdn4jrbR";
+            GITEA_RUNNER_NAME = "nix0-primary";
+            
+          };
+
+      };
+
+
       jellyfin = {
         image = "linuxserver/jellyfin:latest";
         ports = [ "8096:8096" "8920:8920" ];

nix/application/nginx.nix

@@ -44,13 +44,13 @@
         };
       in
       {
+        "default.host" = { default = true; root = "/var/www/default";};
         "atuin.matri.cx" = proxied { target = "http://127.0.0.1:8888"; };
         "brohan.lol" = static { dir = "/var/www/brohan.lol"; };
         "cache.matri.cx" = proxiedLAN {
           target = "http://${config.services.nix-serve.bindAddress}:${toString config.services.nix-serve.port}";
         };
         "caitlynncox.com" = static { dir = "/var/www/caitlynncox.com"; };
-        "dallasmed65.com" = static { dir = "/var/www/dallasmed65.com"; };
         "docker.matri.cx" = proxiedAuth {
           auth = config.age.secrets.htpasswd-dock.path;
           target = "http://127.0.0.1:3001";

nix/system/network.nix

@@ -2,7 +2,7 @@
   networking = {
     hostName = "eve-psr-nix0";
     firewall = {
-      allowedTCPPorts = [ 22 80 443 23231 23232 23233 ];
+      allowedTCPPorts = [ 22 80 443 5000 23231 23232 23233 ];
       allowedUDPPorts = [ 53 51820 ];
       trustedInterfaces = [ "tun0" ];
     };