summary refs log tree commit diff stats
Commit message (Collapse)AuthorAge
* fix(hosts/server2): Use correct path to `vhack.eu/nixos-server` repo server2Benedikt Peetz4 hours
|
* fix(modules/back): Remove the `gitPath` from the service nameBenedikt Peetz5 hours
| | | | With it, the service names become nearly illegible.
* feat(modules/nginx): Modularise the redirects and migrate them to server2Benedikt Peetz6 hours
| | | | | | The redirects always have an implicit dependency on the DNS config of the running host. As such, simply stating them for all host is never a possibility and setting them per host the only viable option.
* fix(modules/nix-sync/internal): Fix syntax errors in shell-scriptBenedikt Peetz7 hours
|
* fix(modules/dhcpcd): Also set uid/gid for the `dhcpcd` userBenedikt Peetz7 hours
| | | | | Otherwise, this user's/group's owned files/directories could change when a new user is added or removed, as we do not persist `/var/lib/nixos`.
* build(flake.nix): Re-add `ragenix` to the devShellBenedikt Peetz8 hours
|
* refactor(hosts): Use a `by-name` structure and construct all host depended ↵Benedikt Peetz8 hours
| | | | | | values This allows us to outsource the host-handling from the `flake.nix` file.
* fix(treewide): Add constant uids and gids to each user and groupBenedikt Peetz8 hours
| | | | This allows us to avoid persisting `/var/lib/nixos`.
* docs(CONTRIBUTING.md): RemoveBenedikt Peetz9 hours
| | | | | | | | The information is currently out-dated, was never really up-to-date and as such will not provide anything useful to new contributors. We should probably try to write it again at some point when our workflow has moved more from cathedral to bazaar.
* refactor(system/services/fail2ban): Migrate to `by-name`Benedikt Peetz9 hours
| | | | | | Additionally, I've changed to owner of the `/var/lib/fail2ban` directory to `root:root` as the main `fail2ban` service also runs under `root` and a `fail2ban` user is never created.
* refactor(system/services/rust-motd): Migrate to `by-name`Benedikt Peetz9 hours
|
* fix(modules/impermanence): Don't always persist `/var/log` and `/var/lib/nixos`Benedikt Peetz9 hours
| | | | | | | | | | Persisting them, without marking the `/srv` containing fs as `neededForBoot` will result in a kernel panic in the init (because `impermanence` tries to mount these directories and fails as `/srv` is still missing.) Thus, each host, that sets `/srv` to `neededForBoot` should add these directories to `vhack.persist.directories`.
* fix(system): Remove out-dated importsBenedikt Peetz9 hours
| | | | Both of these modules have been moved to `by-name`
* refactor(system/users): Migrate to `by-name`Benedikt Peetz9 hours
|
* fix(modules/git-server): Use `vhack.persist` for data-directoriesBenedikt Peetz9 hours
| | | | | This avoids having to create them manually on the server and is, overall just generally a better way to solve this problem.
* fix(modules/back): Use correct source-code environment variableBenedikt Peetz9 hours
|
* build(scripts/deploy): InitBenedikt Peetz9 hours
| | | | | This documents the commands used for the first deployment (i.e., with a full, disko-driven, disk formatting step).
* build(scripts/mk_network_config): InitBenedikt Peetz9 hours
| | | | | | | This has been taken directly from `nixos-infect` (which rather under-maintained, sadly). Currently, it is extremely useful to generate the `networking.nix` config for new hosts.
* refactor(modules/impermanence): Migrate to by-name while distributing modsBenedikt Peetz34 hours
|
* fix(modules/back): Set now needed source code URL environment variable backBenedikt Peetz39 hours
|
* docs(pkgs/back): Document useful environment variablesBenedikt Peetz39 hours
|
* feat(pkgs/back): Add a link to the source codeBenedikt Peetz39 hours
| | | | | This is required by the AGPL license and should probably also be done, because we do not have a reason to hide or obfuscate the code.
* feat(hosts/server1): Configure back for the `nixos-server` repoBenedikt Peetz2 days
|
* feat(tests/back): InitBenedikt Peetz2 days
|
* feat(modules/back): InitBenedikt Peetz2 days
|
* build(scripts/test_interactive): Fix typo in variable nameBenedikt Peetz2 days
|
* fix(modules/nix-sync/internal): Use correct command grouping syntaxBenedikt Peetz2 days
| | | | | | Commands in parentheses (i.e., `()`) are _subshells_ and `exit`ting from these will not result in an `exit` of the actually _shell_. Thus, we use want simple command grouping and use the correct syntax for that.
* build(pkgs/back): Apply source filteringBenedikt Peetz2 days
| | | | | This avoids useless rebuilds, just because files like the `README.md` changed.
* docs(pkgs/back): Add note about needed write accessBenedikt Peetz2 days
|
* fix(pkgs/back): Set `meta.mainProgram`Benedikt Peetz2 days
|
* fix(modules/disko): Actually honor `cfg.enable`Benedikt Peetz2 days
|
* test(scripts/lint_missing_tests.sh): RemoveBenedikt Peetz2 days
| | | | | This functionality is now available via the `coImport` feature in the `mkByName` `nixLib` function.
* style(treewide): FormatBenedikt Peetz2 days
|
* build(flake): Use treefmt as nix formatterBenedikt Peetz2 days
| | | | | This allows us to also keep markdown and other documents, that aren't nix, formatted.
* feat(pkgs): Hook up to the flake and add needed infrastructureBenedikt Peetz2 days
|
* feat(pkgs/back): InitBenedikt Peetz2 days
| | | | | Other options, for example `git-bug webui --read-only` is just to bugged to be useful.
* fix(modules/disko): Remove deprecated legacy type and migrate to `by-name` disko/updateBenedikt Peetz4 days
|
* fix(system/services/mastodon): Update char patch to v4.3Benedikt Peetz4 days
|
* fix(modules/redlib): Change subdomain to `redlib` migrate-by-nameBenedikt Peetz5 days
| | | | | | The old `libreddit` subdomain still has redirection to avoid this being a breaking change. But keeping the old subdomain is rather weird considering their new name.
* refactor(system/services/libreddit): Migrate to `by-name`Benedikt Peetz5 days
| | | | This also includes a rename into `redlib` because of upstream changes.
* refactor({modules,test}): Migrate to a `by-name` structureBenedikt Peetz6 days
|
* fix(treewide): Update to nixos release 24.11 update-24.11Benedikt Peetz6 days
|
* build(system/services/taskserver/certs/generate): Convert to `nix-shell`Benedikt Peetz6 days
| | | | Lix does not support the newer `nix shell` shebang.
* fix(system/services/invidious-router): remove_no_ratio = false HEAD mainSilas Schöffel2024-12-06
|
* fix(system/services/libreddit): Use unstable `redlib` versionBenedikt Peetz2024-11-16
| | | | | The current stable version has a bug with regard to parsing the current reddit json responses.
* build(flake.lock): UpdateBenedikt Peetz2024-11-16
|
* docs(system/services/matrix): Fix typos in commentBenedikt Peetz2024-11-03
|
* build(flake): UpdateBenedikt Peetz2024-11-03
|
* feat(taskserver/certs/ca.certs.pem): Regenerate certificate taskdBenedikt Peetz2024-10-05
|
* refactor(taskserver/certs): Format scripts and allow selecting which certs ↵Benedikt Peetz2024-10-05
| | | | to generate
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-12-26 00:58:39 +0000