cheers/.profile
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
No description
1 commit 1 branch 0 tags 28 KiB
Find a file
Exact
Jon Friesen 6d411a1ecd Org profile README (about Cheers)
2026-05-27 14:42:32 -06:00
README.md Org profile README (about Cheers) 2026-05-27 14:42:32 -06:00

README.md

About Cheers

Cheers is a private Forgejo instance, run by Jon for a few friends who wanted a quiet corner of the internet for code.

If you have an account, you have my deliberate trust. Be cool.

What runs where

It's all in DigitalOcean. Two boxes in SFO3, connected over Tailscale:

  • cheers-core runs Forgejo, Caddy (TLS), a SQLite database, and the Git repositories on a dedicated disk.
  • cheers-runner-1 runs Forgejo Actions jobs. That's where your CI workflows actually execute.

Object storage (LFS, packages, attachments, action logs) lives in DigitalOcean Spaces. Email goes through Resend. DNS at Cloudflare. TLS certificates are auto-issued by Let's Encrypt via Caddy.

Your data is reasonably safe

Two backup layers, neither perfect, both real:

  • SQLite database — streamed continuously to object storage by Litestream. Recovery point: a few seconds.
  • Git repositories — daily manual snapshots of the disk holding them. Recovery point: up to one day of pushes could be lost in the worst case.

Both have been drill-restored at least once.

The honest gap: there's no per-repo restore. If someone force-pushes over your work, recovery is "spin up a scratch copy of the volume and pull your repo out", which is doable but painful. If that becomes a real concern, we'll add hourly per-repo backups.

CI runners

There's one runner, sharing the host's Docker socket with jobs. This is fine for people I trust (you) and wrong for hostile code. Don't run anything weird, and please don't share the runner with strangers' workflows.

If the trust model ever changes, the runner gets isolated more aggressively (per-job VM, per-user runners, etc.).

A few defaults worth knowing

  • Self-signup is off. New accounts come from me directly.
  • New repos default to whichever visibility you chose last time. Your very first repo defaults to public — keep an eye on that.
  • Anonymous visitors can browse public repos. Private repos 404 to logged-out users — they don't even know the repo exists.
  • 2FA is encouraged on every account.

Who runs this

Jon. Best reached by email (jon@jonfriesen.ca) or on Discord. If something's broken and I'm not responding, there's a written recovery runbook so someone else could follow it.

(And yes, that cool dog in the logo is my dog Fred.)

Credits

Found a typo?

You have an account here, which means you can fix it. PRs welcome.