git: add role to build and start gitolite-cgit

This contains a role to build and start a gitolite-cgit container. Additionally this installed a firewall rule to open the gitolite sshd port.
author: Johannes Stoelp <johannes.stoelp@gmail.com> 2022-12-14 23:04:46 +0100
committer: Johannes Stoelp <johannes.stoelp@gmail.com> 2022-12-14 23:04:46 +0100
commit: 7f375b8097e7a44cc5924bf1cee5159593cbe0eb (patch)
tree: cc1be9bcbd64aa4f7f2d6b2cd1c04949b9c8c9a8 /roles/git/files/gitolite-cgit/etc/sshd_config
parent: 5262aab814e41005562f44d76e6de8be125199a4 (diff)
download: ansible-memzero-7f375b8097e7a44cc5924bf1cee5159593cbe0eb.tar.gz
ansible-memzero-7f375b8097e7a44cc5924bf1cee5159593cbe0eb.zip
1 files changed, 14 insertions, 0 deletions
diff --git a/roles/git/files/gitolite-cgit/etc/sshd_config b/roles/git/files/gitolite-cgit/etc/sshd_config
new file mode 100644
index 0000000..b6da391
--- /dev/null
+++ b/roles/git/files/gitolite-cgit/etc/sshd_config
@@ -0,0 +1,14 @@
+# sshd_config(5)
+
+AuthorizedKeysFile .ssh/authorized_keys
+
+PermitRootLogin no
+PubkeyAuthentication yes
+HostbasedAuthentication yes
+IgnoreUserKnownHosts no
+PasswordAuthentication no
+PermitEmptyPasswords no
+
+AllowTcpForwarding no
+GatewayPorts no
+X11Forwarding no
author	Johannes Stoelp <johannes.stoelp@gmail.com>	2022-12-14 23:04:46 +0100
committer	Johannes Stoelp <johannes.stoelp@gmail.com>	2022-12-14 23:04:46 +0100
commit	7f375b8097e7a44cc5924bf1cee5159593cbe0eb (patch)
tree	cc1be9bcbd64aa4f7f2d6b2cd1c04949b9c8c9a8 /roles/git/files/gitolite-cgit/etc/sshd_config
parent	5262aab814e41005562f44d76e6de8be125199a4 (diff)
download	ansible-memzero-7f375b8097e7a44cc5924bf1cee5159593cbe0eb.tar.gz ansible-memzero-7f375b8097e7a44cc5924bf1cee5159593cbe0eb.zip