eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions
blumeops/docs/changelog.d
History
Erich Blume 3017f759a7 Migrate Forgejo from Homebrew to source build (#316) 
## Summary

- Migrate Forgejo from Homebrew to source-built binary with mcquack LaunchAgent
- Matches the established pattern used by zot, caddy, and alloy
- Upgrades to v14.0.3 (7 security fixes: PKCE bypass, OAuth scope bypass, open redirect, and more)

## Changes

- **Ansible role**: Replace brew install/services with binary stat check + LaunchAgent
- **Paths**: `/opt/homebrew/var/forgejo` → `~/forgejo`, binary at `~/code/3rd/forgejo/forgejo`
- **Run user**: `forgejo` → `erichblume` (LaunchAgent user; SSH git user stays `forgejo`)
- **Docs**: Updated Forgejo reference card, restart-indri guide
- **Service review**: Stamped frigate-notify, cloudnative-pg, blumeops-pg as current

## One-time migration steps (manual, on indri)

1. Clone from Codeberg, add forge mirror remote
2. Check out v14.0.3, build with `make build && make forgejo`
3. Stop brew, `cp -a` data to `~/forgejo`, fix ownership
4. Run `provision-indri --tags forgejo`
5. Verify, then `brew uninstall forgejo`

## Data safety

- `cp -a` preserves everything (repos, SQLite DB, LFS, sessions, OAuth config)
- Brew version stays installed as rollback until verification passes
- No schema changes between 14.0.2 → 14.0.3

Reviewed-on: #316
2026-03-28 08:19:23 -07:00
..
+branch-cleanup-preserve.misc.md Add preserve/* branch protection and document Pyroscope blocker 2026-03-26 15:32:25 -07:00
+cv-doc-review.doc.md Review CV doc and close build-dep review gap 2026-03-27 07:12:38 -07:00
+homepage-v1.11.0.infra.md Upgrade Homepage container to v1.11.0 2026-03-26 10:17:36 -07:00
+immich-resource-probes.infra.md Add changelog for Immich resource/probe fix 2026-03-27 22:37:15 -07:00
+nvidia-device-plugin-v0.19.0.infra.md Upgrade nvidia-device-plugin v0.18.2 → v0.19.0 and add reference card 2026-03-27 07:19:24 -07:00
+podnotready-lookback.infra.md Reduce PodNotReady alert lookback from 5m to 60s 2026-03-26 19:48:37 -07:00
+qart-tuner.feature.md Add QArt Tuner: QR code art generator with interactive web UI 2026-03-27 15:33:36 -07:00
+review-tailscale-setup.doc.md Review tailscale-setup tutorial: fix inaccuracies 2026-03-26 07:44:36 -07:00
+ringtail-post-deploy-maintenance.infra.md Add ringtail post-deploy maintenance: kernel check, generation pruning, GC 2026-03-27 07:55:45 -07:00
+tune-argocd-outofsync-alert.infra.md Tighten ArgoCDAppOutOfSync alert timing to clear faster after sync 2026-03-26 15:44:09 -07:00
+update-ringtail-flake.infra.md Update ringtail flake inputs (nixpkgs, home-manager) 2026-03-27 07:37:43 -07:00
.gitkeep
build-forgejo-from-source.infra.md Migrate Forgejo from Homebrew to source build (#316) 2026-03-28 08:19:23 -07:00
deploy-snowflake-proxy.feature.md Deploy Tor Snowflake proxy on ringtail (#311) 2026-03-24 20:51:40 -07:00
feature-borgmatic-all-pg-backups.infra.md Add borgmatic backups for authentik and immich databases (#314) 2026-03-27 16:59:58 -07:00
immich-photos-backup.feature.md Add offsite backup for immich photo library to BorgBase (#315) 2026-03-27 19:43:05 -07:00
upgrade-external-secrets-v2.infra.md Upgrade External Secrets Operator v2.2.0 + migrate Helm to kustomize (#312) 2026-03-25 15:56:41 -07:00