Personal documentation


reprepo is a APT repository.

This page is a guide on how to install and configure reprepro, and serve it with nginx, on debian bookworm.

Install packages

First you need to install reprepro, gnupg and nginx.

apt install reprepro gnupg nginx

Configure the repository

We need to create a gpg key that will be used to sign the repository.

gpg --gen-key

After that we can use /opt/repo as the root directory for out repository, we also need a conf directory inside that.

mkdir -p /opt/repo/conf

We need our public gpg key that we created earlier.

gpg --list-keys

pub   rsa3072 2024-04-21 [SC] [expires: 2026-04-21]
uid           [ultimate] user1 <[email protected]>
sub   rsa3072 2024-04-21 [E] [expires: 2026-04-21]

Our public gpg key is 0548D40EDE49CF56652D065F056751CC91063223, that we will use from now on.

Now we will create our /opt/repo/conf/distributions file and edit it as follows.

vim /opt/repo/conf/distributions
  • Origin: This field is a identifier explaining where the repository came from.
  • Label: This field is copies to the generated metadata.
  • Codename: This field is used to determine the directory structure, chose a Debian or Ubuntu codename for this one.
  • Architectures: This field is the names of the components that packages can be imported into.
  • Description: This field will be copied into the generated metada, its an optional field.
  • SignWith: This field should be your public gpg key, to determine the gpg key the repository will be signed with
Origin: repo.example.com
Label: repo.example.com
Codename: bookworm
Architectures: amd64
Components: main
Description: example repo
SignWith: 0548D40EDE49CF56652D065F056751CC91063223

Now we can import our deb packages into our repository.

cd /opt/repo
reprepo includedeb bookworm /usr/src/package/*.deb

Configure nginx

First we will configure a vhost for our repository

vim /etc/nginx/sites-available/repo.example.com
server {
  listen 80;

  server_name repo.example.com;

  location / {
    root /var/packages;
    index index.html;
    autoindex on;

  location ~ /(.*)/conf {
    deny all;

  location ~ /(.*)/db {
    deny all;

After we will enable the vhost and reload nginx

ln -s /etc/nginx/sites-available/repo.example.com /etc/nginx/sites-enabled
systemctl reload nginx

Now we will export our pgp key for out repository

gpg --armor --output /opt/repo/repo.example.com.gpg.key --export 0548D40EDE49CF56652D065F056751CC91063223

Using the repository

First we will import our gpg key

mkdir -p /etc/apt/keyrings
wget http://repo.example.com/repo.example.com.gpg.key

Then we will add our repository to a new source list

cd /etc/apt/sources.list.d
vim repo.example.com 
deb [signed-by=/etc/apt/keyrings/repo.example.com.gpg.key] http://repo.example.com bookworm main

Now we can install packages from our repository

apt update && apt install my-package

Title: Reprepro

Author: Flaxplax

Publish Date: 21, Apr 2024

Last updated: 27, Apr 2024