summary refs log tree commit diff stats
Commit message (Collapse)AuthorAge
* chore(version): v0.21.0 v0.21.0sils2024-01-19
|
* feat(flake): add formattersils2024-01-19
| | | | You can't live without one.
* fix(.gitignore): exclude nix build resultsils2024-01-19
|
* build(flake): updatesils2024-01-19
|
* fix(system/services/restic): create /srv/snapshots if non-existentsils2024-01-19
|
* chore(version): v0.20.1 v0.20.1Soispha2024-01-17
|
* fix(sys/services/restic): Set the system start time to 'daily'Soispha2024-01-14
| | | | | | Considering that the db dump takes longer than an hour, an hourly service start time could lead to multiple dumps happening concurrently. This should reduce this risk
* fix(sys/services/restic): Include a db dump of PostgreSQLSoispha2024-01-14
| | | | | | | | | | | | | | | Including this dump should remove the risk of a backup with a corrupt PostgreSQL database. Initial test showed that the backup takes around 32 GB and runs in under 3 hours. There is one big oversight not yet included in this commit: All services running a SQLite database are not included in this dump and thus can not be safely recovered. At present these are: - etebase-server (db.sqlite3) - murmur (murmur.sqlite) (This is list was generated with `sudo fd sqlite /srv/`)
* chore(version): v0.20.0 v0.20.0sils2024-01-07
|
* fix(system/services): import restic configsils2024-01-07
|
* feat(system): add resticsils2024-01-07
|
* feat(system/secrets): rename .tix files to .agesils2024-01-06
|
* chore(version): v0.19.0 v0.19.0sils2024-01-06
|
* build(flake): updatesils2024-01-06
|
* feat(system/services/mastodon): define streamingProcessessils2024-01-06
|
* feat(system/services/fail2ban): define config in daemonSettingssils2024-01-06
| | | | This isn't strictly necessary as we define the default config
* feat(system/services/matrix): use mautrix-whatsapp module provided bysils2024-01-06
| | | | nixpkgs
* feat(flake): update to nixos-23.11sils2024-01-06
|
* chore(merge): branch 'redirect'sils2023-12-12
|\
| * fix(system/services/nginx/redirects): Enable ssl for the domainsSoispha2023-11-03
| | | | | | | | | | | | Although the page does not actually serve any content, many browsers will still refuse to access it at all, if they have the 'https-only' mode activated.
* | refactor(system/services/etebase): explain outcommented static filessils2023-11-30
| |
* | fix(system/services/etebase): don't serve static filessils2023-11-27
| | | | | | | | This doesn't work as nginx doesn't have the right permissions.
* | fix(system/services/etebase): serve static_rootsils2023-11-27
| |
* | fix(system/services/etebase): micellanous changes to make it worksils2023-11-27
| |
* | Merge branch 'main' into etebase_newsils2023-11-27
|\ \
| * | fix(system/services/nix): add nixremote to trusted-userssils2023-11-20
| | |
* | | fix(system/impermanence): Remove keycloak mod, as it does not existSoispha2023-11-18
| | |
* | | refactor(system/services/etebase): Use a reference to the port numberSoispha2023-11-18
| | |
* | | fix(system/services/etebase): Use the correct subdomainsSoispha2023-11-18
| | | | | | | | | | | | This is done to comply with the naming scheme employed at `vhack.eu`.
* | | fix(system/services/etebase): Hard-code localhost ipSoispha2023-11-18
| | | | | | | | | | | | | | | Otherwise, etebase might use the ipv6 ip, whilst nginx uses the ipv4 version. This prevents this issue
* | | Fix(system/services/etebase): Add proxy parameterssils2023-11-18
| | |
* | | Fix(system/services/etebase): Proxy ipv4sils2023-11-18
| | |
* | | Refactor(system/services/etebase): Formatsils2023-11-18
| | |
* | | Fix(system/impermanence): Add permissionssils2023-11-18
| | |
* | | Fix(system/services/etebase-server): Use nginxsils2023-11-18
| | |
* | | Fix(system/impermanence): Add etebase-serversils2023-11-18
| | |
* | | Feat(system/services): Add etebase-serversils2023-11-18
| | |
* | | Feat(system/secrets): Add etebase-server secretsils2023-11-18
|/ /
* | docs(system/services/taskserver): Add docs about expectations to runtimeSoispha2023-11-18
| |
* | feat(system/users): remove obsolete ss-key for silssils2023-11-18
| | | | | | | | | | | | | | | | | | | | | | | | # Please enter the commit message for your changes. Lines starting # with '#' will be ignored, and an empty message aborts the commit. # # On branch main # Your branch is up to date with 'origin/main'. # # Changes to be committed: # modified: system/users/default.nix #
* | chore(version): v0.18.0 v0.18.0Soispha2023-11-18
| |
* | build(flake): UpdateSoispha2023-11-18
| |
* | chore(merge): Branch 'taskd'Soispha2023-11-18
|\ \
| * | fix(system/services/taskserver): Support both ipv4 and ipv6Soispha2023-11-18
| | |
* | | fix(system/services/taskserver): Support both ipv4 and ipv6Soispha2023-11-18
| | |
* | | fix(system/users): change ssh-keys for silssils2023-11-18
|/ /
* | feat(git-crypt): add new keysils2023-11-18
| |
* | fix(system/users): add ssh-key for silssils2023-11-15
| |
* | chore(version): v0.17.1 v0.17.1Soispha2023-11-07
| |
* | fix(system/services/taskserver/certs): Move cert generation to scriptSoispha2023-11-07
|/ | | | | | This fully removes the human-factor and allows it to just run `./generate` to generate all required certificates and keys (with the needed extra keys and certificates)