diff --git a/configuration.nix b/configuration.nix
index 525e76b..d1f881b 100644
--- a/configuration.nix
+++ b/configuration.nix
@@ -120,6 +120,13 @@
     signupAllowed = false;
   };
 
+  # === Forgejo (Self-hosted Git) ===
+  myModules.forgejo = {
+    enable = true;
+    domain = "git.ashisgreat.xyz";
+    disableRegistration = true; # Admin only
+  };
+
   # === CrowdSec ===
   myModules.crowdsec.enable = true;
 
diff --git a/modules/default.nix b/modules/default.nix
index c40f93e..d889fe1 100644
--- a/modules/default.nix
+++ b/modules/default.nix
@@ -10,5 +10,6 @@
     ./crowdsec.nix
     ./backup.nix
     ./adguard.nix
+    ./forgejo.nix
   ];
 }
diff --git a/modules/forgejo.nix b/modules/forgejo.nix
new file mode 100644
index 0000000..c18813a
--- /dev/null
+++ b/modules/forgejo.nix
@@ -0,0 +1,85 @@
+# Forgejo Module
+# Provides: Self-hosted Git service (Fork of Gitea)
+#
+# Usage:
+#   myModules.forgejo = {
+#     enable = true;
+#     domain = "git.example.com";
+#   };
+
+{
+  config,
+  lib,
+  pkgs,
+  ...
+}:
+
+let
+  cfg = config.myModules.forgejo;
+in
+{
+  options.myModules.forgejo = {
+    enable = lib.mkEnableOption "Forgejo Git service";
+
+    port = lib.mkOption {
+      type = lib.types.port;
+      default = 3002;
+      description = "Internal port to run Forgejo on";
+    };
+
+    domain = lib.mkOption {
+      type = lib.types.str;
+      example = "git.example.com";
+      description = "Public domain name for Forgejo";
+    };
+
+    disableRegistration = lib.mkOption {
+      type = lib.types.bool;
+      default = true;
+      description = "Disable public user registration";
+    };
+  };
+
+  config = lib.mkIf cfg.enable {
+    services.forgejo = {
+      enable = true;
+      database.type = "postgres";
+      
+      settings = {
+        server = {
+          DOMAIN = cfg.domain;
+          ROOT_URL = "https://${cfg.domain}/";
+          HTTP_ADDR = "127.0.0.1";
+          HTTP_PORT = cfg.port;
+          SSH_PORT = 2222;
+        };
+        service = {
+          DISABLE_REGISTRATION = cfg.disableRegistration;
+        };
+        session = {
+          COOKIE_SECURE = true;
+        };
+        security = {
+          PASSWORD_COMPLEXITY = "lower,upper,digit,spec";
+          MIN_PASSWORD_LENGTH = 12;
+        };
+      };
+    };
+
+    # Nginx Reverse Proxy
+    myModules.nginx.domains."${cfg.domain}" = {
+      port = cfg.port;
+      extraConfig = ''
+        client_max_body_size 512M;
+      '';
+    };
+
+    # Open SSH port for Git
+    networking.firewall.allowedTCPPorts = [ 2222 ];
+
+    # Backups (Add Forgejo data to restic if backup module is enabled)
+    myModules.backup.paths = [
+      config.services.forgejo.stateDir
+    ];
+  };
+}