This configuration file serves fossil repos, git repos via soft-serve, and a BlueSky PDS. It is deployed to a droplet, however it can be easily modified to run on any target. It requires a wildcard cert out of necessity for PDS handles and fossil subdomains. Resend is used for outgoing emails from fossil.

Fossil repos are served from a directory and accessed by <repo>.<domain>. I think I've ironed out all the weirdness, with a possible exception to redirects after bot challenges, whoever that itself has varied for be dependent on the computer itself. Go is supported for the fossil repos, however it accesses the repos via go.<domain>/<repo> because of how go names programs. Note that ssh for fossil is not supported in this server as soft-serve has claimed port 22, however in fossil's case ssh is just a wrapper around https, so I opted to exclude it. Adding repos to the server is easy via scp, the /fossil path has been aliased to the fossil directory so uploading repos is as easy as scp <repo>.fossil <host>:/fossil/<repo>.fossil. Note that all fossil repos must have .fossil due to how fossil itself works in dir mode.

Soft-Serve should be accessible over https, however I have not widely tested that yet as I don't bother with it. I do intend to integrate go install support for soft-serve but it's low on my list. Soft-serve is accessed via http through git.<domain>, you can access it via ssh through literally any domain as the server dedicates port 22 to soft-serve.

There should be zero collisions between the PDS and fossil as all traffic for the PDS is routed through /xrpc. If you for some reason need a repo named xrpc you are SOL. I have added pop for use with the pds-create-account script to simplify creating email accounts and sending an email with the new login information.