Migrate Forgejo Ansible role from Homebrew to source build

Replace brew install/services with source-built binary + mcquack LaunchAgent, matching the zot/caddy/alloy pattern. Key changes: - defaults: new paths (~/forgejo, ~/code/3rd/forgejo), run_user → erichblume - tasks: binary stat check instead of brew install, LaunchAgent deployment - handlers: launchctl unload/load instead of brew services restart - new forgejo.plist.j2 LaunchAgent template Also stamps frigate-notify, cloudnative-pg, blumeops-pg as reviewed (all up to date) and updates forgejo tracking to v14.0.3. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-28 07:53:49 -07:00 · 2026-03-28 07:53:49 -07:00 · 521cec5fde
commit 521cec5fde
parent 4489fe4492
6 changed files with 89 additions and 21 deletions
--- a/docs/changelog.d/build-forgejo-from-source.infra.md
+++ b/docs/changelog.d/build-forgejo-from-source.infra.md
@ -0,0 +1 @@
+Migrate Forgejo from Homebrew to source build with mcquack LaunchAgent, matching the pattern used by zot, caddy, and alloy. Upgrades to v14.0.3 (7 security fixes including PKCE bypass and OAuth scope bypass).
				`@ -0,0 +1 @@`
				`Migrate Forgejo from Homebrew to source build with mcquack LaunchAgent, matching the pattern used by zot, caddy, and alloy. Upgrades to v14.0.3 (7 security fixes including PKCE bypass and OAuth scope bypass).`