Make firewall use actual ports in use

hosts/gitea/services/gitea.nix

@@ -50,5 +50,5 @@
       owner = config.systemd.services.gitea.serviceConfig.User;
     };
   };
-  networking.firewall.allowedTCPPorts = [ 3000 ];
+  networking.firewall.allowedTCPPorts = [ config.services.gitea.settings.server.HTTP_PORT ];
 }

hosts/gitea/services/sshd.nix

@@ -1,7 +1,7 @@
-{ ... }: {
+{ config, ... }: {
   services.openssh = {
     enable = true;
     permitRootLogin = "yes";
   };
-  networking.firewall.allowedTCPPorts = [ 22 ];
+  networking.firewall.allowedTCPPorts = config.services.openssh.ports;
 }