Add gitea service

Needed to modify the nginx configuration to allow streaming of ssh.
Using docker compose for this service, will probably migrate all others soon.

apptabulous/reverseproxy/conf.d/reverse_proxy.conf

@@ -26,6 +26,25 @@ server {
     }
 }
 
+# gitea.m5p3nc3r webserver
+server {
+    listen 80;
+    listen [::]:80;
+    listen 443 ssl;
+    listen [::]:443 ssl;
+    server_name gitea.m5p3nc3r.co.uk;
+
+    ssl_certificate /etc/letsencrypt/live/apptabulous.co.uk/fullchain.pem;
+    ssl_certificate_key /etc/letsencrypt/live/apptabulous.co.uk/privkey.pem;
+
+    # if ($block_uri = 1) {
+    #     return 403;
+    # }
+
+    location / {
+        proxy_pass http://rpi5-2:3000;
+    }
+}
 
 # apptabulous webserver
 server {
@@ -69,32 +88,6 @@ server {
     }
 }
 
-# my-aiva.apptabulous.co.uk
-# server {
-#     listen 80;
-#     listen [::]:80;
-#     listen 443 ssl;
-#     listen [::]:443 ssl;
-#     server_name my-aiva.apptabulous.co.uk;
-
-#     ssl_certificate /etc/letsencrypt/live/apptabulous.co.uk/fullchain.pem;
-#     ssl_certificate_key /etc/letsencrypt/live/apptabulous.co.uk/privkey.pem;
-
-#     if ($block_uri = 1) {
-#         return 403;
-#     }
-
-#     # This must come before the / endpoint so as not to be masked
-#     location /webhook {
-#         proxy_pass http://my-aiva:5000;
-#     }
-
-#     location / {
-#         proxy_pass http://my-aiva:3000;
-#     }
-
-# }
-
 # Watchtower
 server {
     listen 80;

apptabulous/reverseproxy/nginx.conf

@@ -0,0 +1,35 @@
+user  nginx;
+worker_processes  auto;
+
+error_log  /var/log/nginx/error.log notice;
+pid        /run/nginx.pid;
+
+
+events {
+    worker_connections  1024;
+}
+
+
+http {
+    include       /etc/nginx/mime.types;
+    default_type  application/octet-stream;
+
+    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
+                      '$status $body_bytes_sent "$http_referer" '
+                      '"$http_user_agent" "$http_x_forwarded_for"';
+
+    access_log  /var/log/nginx/access.log  main;
+
+    sendfile        on;
+    #tcp_nopush     on;
+
+    keepalive_timeout  65;
+
+    #gzip  on;
+
+    include /etc/nginx/conf.d/*.conf;
+}
+
+stream {
+    include /etc/nginx/stream.d/*.conf;
+}

apptabulous/reverseproxy/stream.d/ssh.conf

@@ -0,0 +1,7 @@
+# Stream the ssh connections for gitea
+server {
+  listen 2222;
+  proxy_pass rpi5-2:2222;   # the machine where sshd runs (often same as gitea)
+  proxy_timeout 1h;
+  proxy_connect_timeout 10s;
+}