I’ve been looking at gitea because of its gitops capabilities that seem to be pretty much on par with github actions. Do you know if forgejo has something similar? There seems to be a lack of documentation in that area. This has been my only reason for not moving to forgejo but im hoping im wrong and just missed some documentation.
EDIT: Thank you all who provided some additional insights that I was missing. I'll take the leap and give forgejo a try!
There are forejo runners and they seem compatible with a bunch of github actions. I created one that builds a docker image and publishes it on the repo.
Forgejo actions is basically GitHub actions. The difference in my ci scripts is a single line and you can even use GitHub action templates or whatever they're called.
You just need to add some runners to your server, which is pretty easily doable by just using some docker container and deploying that multiple times
I’m aware this is the selfhost community, but for a company of 20 engineers, it is probably best to use something commercial in the cloud.
Biggest pain point was for our ops guy, who constantly had to stay behind to perform upgrades and maintenance, as they couldn’t do it during business hours when the engineers are working. With a team of at least 20, scheduling downtimes could get increasingly more difficult.
It also adds an entire system to be audited by the auditors.
The selfhost vs buy commercial kind of bounces back and forth. For smaller teams, less than 5 to 10 engineers, it might be a fun endeavour; but from that point on, until you get to mega corp scale with dedicated ops department maintaining your entire infrastructure, it is probably more effective to just pay for a solution from a major vendor in the cloud instead.
No PRs means no automated tests/CI/CD, which means you’d slow down the release train. It might typically be just a 2 minutes quick cycle, but that one time it goes off for longer due to a botched update from upstream means you’re never going to do that again during business hours.
In our case cloud is fine, as long as it’s within our security boundary- so that means external SaS is out, but hosted within our cloud is fine. I’m still not super excited about the prospect of managing and maintaining it though :/ We're going down this path because AWS is killing code commit and other pipeline stuff, which sucks because even though other tools are better, code commit was fedRamped and from the same vendor.
We have similar (legal is paranoid about our competitors getting our algorithms), so we just put our self-hosted cloud stuff behind our VPN. Nothing we run is on-prem, but almost everything is in our cloud infra.
That really depends on who buys them. If it's something like Datadog, maybe that's a good thing and they can compete with Github better. It's probably not great for self-hosters, but it could be a great thing for the commercial software ecosystem.
If you only need a bare minimum, and don't plan to heavily use CI/CD, container/packages registries, integrations with other tools i would go with gitea/forgejo (you can always use external tools on top), else i would use selfhosted Gitlab, it has pretty much all the things you could imagine to need with software development and deployment
+1 for Gitlab. As the number of developers increases the features of Gitlab will get more and more important. Only OP can say, but if they're closer to 9 developers than 2, I think it's a safe bet they'll need the extra features sooner rather than later.
If you don't need CI/CD I'm not sure why you need a centralized frontend at all. Git itself is distributed and you can setup any code flow you can think of. It has hooks that can be used to set up code quality checks on select branches. There are local history browser apps for every platform and IDE plugins.
A frontend is no substitute for developer communication — usually what the "PR" thing does is sugarcoat the fact the devs don't know how to use Git and/or don't talk to each other.
I would go with Gitea or Forgejo (not sure how this is going to last) if you need a complete experience like a WebUI, issues, PR, roles and whatnot.
If you're looking for just a git server then gitolite is very good and solid option. The cool thing about this one is that you create your repositories and add users using a repository inside the thing itself :).
Then you can use any Windows GUI you would like like Fork, SourceTree, your IDE etc...
I would use Gitlab only in an airgapped network. Password resets sent to attacker-supplied emails is such a complete failure of a security model it seems like it is only a matter of time until the next critical vulnerability.
TBH have you tried just basic git? There’s a web interface built into git itself and you can use ssh for your repositories. It’s simple and just works. If you need a faster web interface there’s also cgit. There’s no bells and whistles either. Just configure ssh, drop your repos in /srv and get to work.
If you need more that just standard basic git the. The other suggestions here are great especially forgjo!
I'll come out with an anti-recommendation: Don't do GitLab.
They used to be quite good, but lately (as in the past two years or so) they've been putting things behind a licensing paywall.
Now if your company wants to pay for GitLab, then maybe consider it? But I'd probably look at some of the other options people have mentioned in this thread.
I'm all for foss but foss shall not be a reason to stay behind. We've got enough money to pay for it. We just can't host it anywhere. We have to selfhost it. If there's a good reason to use gitlab over forgejo, we will use gitlab.
Gitlab's main advantage is the tight integration with CI/CD and a web based IDE. But it has some annoying limitations in the non-enterprise version.
Forgejo is great, but it comes with only community support.
You can get commercial support from the Gitea project (from which Forgejo forked off), but if that is something important for you, Gitlab has probably also better commercial support structures in place.
The core git is a peer to peer system. You don't need any server at all. It runs on all of your dev's workstations anyway.
If you want a webserver with gitlab etc. on top of it, then that determines most your needs. In addition, a properly set up nameserver is very helpful, and maybe you want even an Active Directory?
We are looking for a versioning system for collaborated work. Each person shall have his own version with a central main version. Being able to commit, push and restore versions.
Thx for asking, we have a nameserver and active directory. We move this system from team foundation server / azure devops server
We're also using Forgejo for a small consulting team working on lots of different projects for a lot of different clients.
A couple of our team members who came from a more complex and scaled environment (particularly our DevOps / SRE guy who's worked at such places as LinkedIn and Snowflake) want to move us to Gitlab because it's "more powerful" but I like Forgejo because it's just super simple. Just does exactly what I need, doesn't give me to many more options.
We have
Projects segregated into teams, organized by client (so only those working on a specific client's projects have access to their repos).
Able to invite clients and put them into the team for their project (we've had a couple clients that want that).
Able to automate deployments with webhooks (this was pretty easy to get working).
One of our devs wanted to use Actions. It's hard to get that working and (at least a month ago) there were warnings that Actons aren't mature yet and are probably insecure (looks like that may have changed with the recent jump to Forgejo 8.0). I think it's now a non issue for us though because we were like "Dude, stop trying to role your own CI/CD, that's why we have two infrastructure people!"
I'm currently looking at onedev.io for personal and startup use but since I haven't had an opportunity to test it out yet I can't vouch for it. It looks cool though and seems to have a good rep.
If you want the full fancy GitHub, they have an on-prem enterprise edition for $21/user/month. https://github.com/pricing
But if you don't need all their bells and whistles, or the team doesn't care about not having the GitHub interface, then the other suggestions are better.
As you look through these recommendations, keep in mind that source code storage will become in-scope for PCI DSS certification in the very near future.
Gitea or forgejo, for hosting your repo and managing access rights. WoodpeckerCI when you eventually need a CI/CD. (Is a fork of DroneCI and integrates nicely with gitea.)