From 149ce6c87037570d7a0c0495d9e25f2b7bb9cbef Mon Sep 17 00:00:00 2001
From: CroneKorkN <i@ckn.li>
Date: Sun, 10 May 2026 18:49:10 +0200
Subject: [PATCH] left4me: use https git URL so bw clones locally per-apply
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

bw's git_deploy.py:103 falls into a per-apply temp clone path when the
repo URL contains '://' (HTTPS, ssh://, …). Without that, it requires
a static git_deploy_repos map file pointing at a long-lived local
clone — which is the wrong shape for left4me, where the source of
truth is git.sublimity.de.

Switching the default to the HTTPS URL means anyone with the bundle
gets a working clone-from-source on `bw apply`, no operator-side
mirror map required.

Note: the host will pull whatever is pushed to git.sublimity.de
master. Push local commits before applying.
---
 bundles/left4me/metadata.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bundles/left4me/metadata.py b/bundles/left4me/metadata.py
index 3301790..67a5721 100644
--- a/bundles/left4me/metadata.py
+++ b/bundles/left4me/metadata.py
@@ -5,7 +5,7 @@ assert node.has_bundle('systemd')
 defaults = {
     'left4me': {
         # Application-wide defaults; node only overrides if it really needs to.
-        'git_url': 'git@git.sublimity.de:cronekorkn/left4me',
+        'git_url': 'https://git.sublimity.de/cronekorkn/left4me.git',
         'git_branch': 'master',
         'secret_key': repo.vault.random_bytes_as_base64_for(f'{node.name} left4me secret_key', length=32).value,
         'gunicorn_workers': 1,