{% from 'nginx/lib.jinja' import nginx_ssl_cert_present %}

gitea:
  group.present:
    - name: git
  user.present:
    - name: git
    - gid: git
    - home: /home/git
    - createhome: False
    - require:
      - group: git
  file.managed:
    - name: /usr/bin/gitea
    - source: salt://gitea/files/vendor/1.1.2.linux-amd64/gitea
    - mode: 555
  service.running:
    - enable: True
    - watch:
      - file: gitea
      - file: /etc/systemd/system/gitea.service

/etc/systemd/system/gitea.service:
  file.managed:
    - source: salt://gitea/files/gitea.service
    - onchanges_in:
      - module: reload_systemd

/etc/gitea:
  file.directory:
    - require:
      - file: /data

/etc/gitea/conf:
  file.directory:
    - mode: 750
    - group: git
    - require:
      - file: /etc/gitea
      - group: git

/etc/gitea/conf/app.ini:
  file.managed:
    - source: salt://gitea/files/app.ini
    - mode: 640
    - group: git
    - template: jinja
    - context: {{ pillar['gitea'] }}
    - require:
      - file: /etc/gitea/conf
      - group: git
    - watch_in:
      - service: gitea

/var/log/gitea:
  file.directory:
    - user: git
    - group: git
    - require:
      - user: git
      - group: git

/data/repo:
  file.directory:
    - user: git
    - group: git
    - require:
      - file: /data
      - user: git
      - group: git

/home/git:
  file.directory:
    - user: git
    - group: git
    - require:
      - user: git
      - group: git

/home/git/gitea:
  file.directory:
    - user: git
    - group: git
    - require:
      - file: /home/git
      - user: git
      - group: git

/etc/nginx/sites-enabled/gitea:
  file.managed:
    - source: salt://gitea/files/gitea.nginx
    - template: jinja
    - context:
        server_name: {{ pillar['gitea']['server_name'] }}
    - require:
      - file: nginx_conf
    - watch_in:
      - service: nginx

{{ nginx_ssl_cert_present(pillar['gitea']['server_name']) }}