From 43579925e9ccb73d22ed69e41da3687b98ce0eea Mon Sep 17 00:00:00 2001
From: admin <jkilloran@mapletree.email>
Date: Thu, 5 Feb 2026 11:19:14 -0700
Subject: [PATCH] update forgejo for wildcard cert

---
 lxc1/p2-apps/pre-wildcard-forgejo.bak0 | 48 ++++++++++++++++++++++++++
 1 file changed, 48 insertions(+)
 create mode 100644 lxc1/p2-apps/pre-wildcard-forgejo.bak0

diff --git a/lxc1/p2-apps/pre-wildcard-forgejo.bak0 b/lxc1/p2-apps/pre-wildcard-forgejo.bak0
new file mode 100644
index 0000000..51bf315
--- /dev/null
+++ b/lxc1/p2-apps/pre-wildcard-forgejo.bak0
@@ -0,0 +1,48 @@
+services:
+  forgejo:
+    image: codeberg.org/forgejo/forgejo:9.0
+    container_name: fj-node${FJ_NODE_ID}
+    restart: always
+    environment:
+      - FORGEJO__database__DB_TYPE=mysql
+      - FORGEJO__database__HOST=172.16.201.150
+      - FORGEJO__database__PORT=3306
+      - FORGEJO__database__NAME=${FJ_DB_NAME}
+      - FORGEJO__database__USER=${FJ_DB_USER}
+      - FORGEJO__database__PASSWD=${FJ_DB_PASS}
+      - FORGEJO__server__DOMAIN=git.${TRAEFIK_DNS_SUFFIX}
+      - FORGEJO__server__ROOT_URL=https://git.${TRAEFIK_DNS_SUFFIX}/
+      - FORGEJO__server__SSH_PORT=2222
+
+    volumes:
+      - /git_data:/data
+      - /etc/timezone:/etc/timezone:ro
+      - /etc/localtime:/etc/localtime:ro
+    ports:
+      - "3022:3000"
+      - "2222:22"
+    networks:
+      - fj_external
+    labels:
+      - "traefik.enable=${TRAEFIK_ENABLE}"
+      - "traefik.docker.network=fj_external"
+
+      # --- SHARED HA ROUTER (git.domain.com) ---
+      - "traefik.http.routers.forgejo-shared-${FJ_NODE_ID}.rule=Host(`git.${TRAEFIK_DNS_SUFFIX}`)"
+      - "traefik.http.routers.forgejo-shared-${FJ_NODE_ID}.entrypoints=${TRAEFIK_ENTRY_POINTS}"
+      - "traefik.http.routers.forgejo-shared-${FJ_NODE_ID}.tls.certresolver=${TRAEFIK_RESOLVER}"
+      - "traefik.http.routers.forgejo-shared-${FJ_NODE_ID}.service=forgejo-common-svc"
+
+      # --- NODE-SPECIFIC ADMIN ROUTER (git1... git2...) ---
+      - "traefik.http.routers.forgejo-admin-${FJ_NODE_ID}.rule=Host(`git${FJ_NODE_ID}.${TRAEFIK_DNS_SUFFIX}`)"
+      - "traefik.http.routers.forgejo-admin-${FJ_NODE_ID}.entrypoints=${TRAEFIK_ENTRY_POINTS}"
+      - "traefik.http.routers.forgejo-admin-${FJ_NODE_ID}.tls.certresolver=${TRAEFIK_RESOLVER}"
+      - "traefik.http.routers.forgejo-admin-${FJ_NODE_ID}.service=forgejo-common-svc"
+
+      # --- SHARED SERVICE ---
+      - "traefik.http.services.forgejo-common-svc.loadbalancer.server.port=3000"
+      # Forgejo benefits from sticky sessions to keep the web-git terminal stable
+      - "traefik.http.services.forgejo-common-svc.loadbalancer.sticky.cookie=true"
+networks:
+  fj_external:
+    external: true
\ No newline at end of file