msfjarvis/server-config
1
Fork 0
mirror of https://github.com/msfjarvis/server-config synced 2025-08-14 11:47:01 +05:30
Code Issues Projects Releases Packages Wiki Activity Actions
server-config/systemd_units/gitea.service
Harsh Shandilya c9b2bf0ad8
systemd: Configure security options 
Signed-off-by: Harsh Shandilya <msfjarvis@gmail.com>
2019-12-23 17:57:39 +05:30

26 lines
598 B
Desktop File
Raw Blame History

[Unit]
Description=Gitea (Git with a cup of tea)
After=syslog.target
After=network.target
Requires=postgresql.service
[Service]
LimitMEMLOCK=infinity
LimitNOFILE=65535
RestartSec=2s
Type=simple
User=git
Group=git
WorkingDirectory=/var/lib/gitea/
ExecStart=/usr/local/bin/gitea web -c /etc/gitea/app.ini
Restart=always
Environment=USER=git HOME=/home/git GITEA_WORK_DIR=/var/lib/gitea
PrivateTmp=true
PrivateDevices=true
ProtectSystem=full
ReadWriteDirectories=/var/lib/gitea
CapabilityBoundingSet=CAP_NET_BIND_SERVICE
AmbientCapabilities=CAP_NET_BIND_SERVICE
[Install]
WantedBy=multi-user.target
Reference in a new issue View git blame Copy permalink