From 7f375b8097e7a44cc5924bf1cee5159593cbe0eb Mon Sep 17 00:00:00 2001
From: Johannes Stoelp <johannes.stoelp@gmail.com>
Date: Wed, 14 Dec 2022 23:04:46 +0100
Subject: git: add role to build and start gitolite-cgit

This contains a role to build and start a gitolite-cgit container.
Additionally this installed a firewall rule to open the gitolite sshd
port.
---
 roles/git/files/gitolite-cgit/etc/sshd_config | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 roles/git/files/gitolite-cgit/etc/sshd_config

(limited to 'roles/git/files/gitolite-cgit/etc/sshd_config')

diff --git a/roles/git/files/gitolite-cgit/etc/sshd_config b/roles/git/files/gitolite-cgit/etc/sshd_config
new file mode 100644
index 0000000..b6da391
--- /dev/null
+++ b/roles/git/files/gitolite-cgit/etc/sshd_config
@@ -0,0 +1,14 @@
+# sshd_config(5)
+
+AuthorizedKeysFile .ssh/authorized_keys
+
+PermitRootLogin no
+PubkeyAuthentication yes
+HostbasedAuthentication yes
+IgnoreUserKnownHosts no
+PasswordAuthentication no
+PermitEmptyPasswords no
+
+AllowTcpForwarding no
+GatewayPorts no
+X11Forwarding no
-- 
cgit v1.2.3