Course Outline
Source Code Sovereignty
- Understanding how cloud Git platforms can expose proprietary code and trade secrets.
- Gitea architecture and comparison with GitHub, GitLab, and Forgejo.
- Considerations regarding licensing, terms of service, and data export.
Installation and Configuration
- Deploying Gitea via Docker Compose with PostgreSQL and Redis.
- Installing the binary on Linux with systemd service management.
- Configuring reverse proxy, TLS, and SSH ports.
- Initial setup wizard: database configuration, admin account creation, and app.ini tuning.
Repository Management
- Creating organizations, teams, and repositories.
- Implementing branch protection, required reviews, and signed commits.
- Managing issue tracking, labels, milestones, and Kanban boards.
- Hosting wikis and release artifacts.
CI/CD with Gitea Actions
- Enabling Gitea Actions and registering act runners.
- Writing workflow YAML files for build, test, and deploy processes.
- Ensuring security and container isolation for self-hosted runners.
- Utilizing artifact caching and matrix builds.
Migration from Cloud Forges
- Mirroring and importing repositories from GitHub/GitLab.
- Migrating issues, pull requests, and release notes.
- Preserving commit signatures and GPG key trust.
Authentication and Access Control
- Integrating LDAP, Active Directory, and OpenID Connect.
- Implementing two-factor authentication and managing deploy tokens.
- Controlling repository visibility through public, internal, and private scopes.
Security and Compliance
- Enforcing commit signing with GPG and SSH keys.
- Enabling audit logging for repository access and administrative changes.
- Conducting dependency scanning and setting up vulnerability webhook alerts.
Maintenance and Scaling
- Establishing backup strategies for Git data, issues, and attachments.
- Optimizing the database and offloading attachments to S3.
- Upgrading Gitea and managing breaking changes.
Requirements
- Intermediate understanding of Git and version control concepts.
- Knowledge of Linux server administration, including Docker.
- Familiarity with CI/CD pipelines and webhooks.
Audience
- Development teams looking to replace GitHub or GitLab.com.
- Organizations requiring on-premise source code custody.
- Government and defense contractors subject to code export restrictions.
Testimonials (4)
I like that I've got immediately answer to my questions.
Szabolcs Kriston - Ericsson
Course - Advanced GitLab
Repeat the important takeaway
Milly Chen - Logitech
Course - Gerrit Code Review
Exercises that we were able to do on VMs
Atif Bhatti
Course - Git Hands-on Workshop with Azure DevOps
I liked the easy communication between trainer and us, care given to our problems, insights and additional knowledge provided in anwers to our questions. I liked the pace, it didn't feel rushed at any point, even with technical problems. Each subject was taken care of properly.
