summary refs log tree commit diff stats
Commit message (Collapse)AuthorAge
...
* feat(nixos/git-server): Add nice gitolite featuresBenedikt Peetz2024-08-13
|
* fix(nixos/git-server): Tell gitolite to allow changing some `git` settingsBenedikt Peetz2024-08-13
|
* test(tests/git-server): Add initial testsBenedikt Peetz2024-08-13
| | | | | | | The last line, testing for the about page rendering is not yet working. I assume that's because of our hand-rolled list-to-string function thingy in the `cgitrc`. After <https://github.com/NixOS/nixpkgs/pull/317293> is merged, this should probably improve immensely.
* feat(nixos/git-server): Add further cgit settingsBenedikt Peetz2024-08-13
| | | | | A lot of the added settings here have been tested. They will get get tests to ensure they stay working, in later commits.
* build(tests): Add complementary scriptsBenedikt Peetz2024-08-02
|
* test(tests): Init infrastructureBenedikt Peetz2024-08-02
| | | | | | The modules still need to be imported one-by-one in `default.nix` files because we have yet to rewrite this, but the new test infrastructure might as well use the new `fileset` functions from `nixpkgs`.
* feat(hosts/server1): Activate the migrated servicesBenedikt Peetz2024-08-02
|
* refactor(nixos/openssh): Migrate from `system/services`Benedikt Peetz2024-08-02
|
* fix(nixos/git-server): Add the required configuration to support http-cloneBenedikt Peetz2024-08-02
|
* refactor(nixos/{nginx, nix-sync}): Migrate from `system/services`Benedikt Peetz2024-08-02
| | | | | Nix-sync was sort-of mixed into the nginx configuration, thus separating it completely seemed reasonable.
* build(flake): UpdateBenedikt Peetz2024-08-02
|
* build(flake): updateSilas Schöffel2024-07-30
| | | | | | | | | | | | | | | | | | | | | | | Flake lock file updates: • Updated input 'crane': 'github:ipetkov/crane/2d83156f23c43598cf44e152c33a59d3892f8b29' (2024-07-09) → 'github:ipetkov/crane/529c1a0b1f29f0d78fa3086b8f6a134c71ef3aaf' (2024-07-24) • Updated input 'disko': 'github:nix-community/disko/786965e1b1ed3fd2018d78399984f461e2a44689' (2024-07-11) → 'github:nix-community/disko/1e6f8a7b4634fc051cc9361959bf414fcf17e094' (2024-07-29) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/47c71d41a11104e76d093e3de99eb9dd39b6fe47' (2024-07-11) → 'github:NixOS/nixpkgs/89526a7d969e38fe8c30253170d44d0f131882de' (2024-07-29) • Updated input 'nixpkgs-unstable': 'github:NixOS/nixpkgs/5f3d1d6eb300f17b57f48b726147789c90301320' (2024-07-10) → 'github:NixOS/nixpkgs/3fcada1050e3820241590679838954bacf7d38f8' (2024-07-30) • Updated input 'rust-overlay': 'github:oxalica/rust-overlay/fec97e65fcbaab0decccba740ac8688f61dadd70' (2024-07-11) → 'github:oxalica/rust-overlay/38c2f156fca1868c8be7195ddac150522752f6ab' (2024-07-30) • Updated input 'simple-nixos-mailserver': 'gitlab:simple-nixos-mailserver/nixos-mailserver/290a995de5c3d3f08468fa548f0d55ab2efc7b6b' (2024-06-18) → 'gitlab:simple-nixos-mailserver/nixos-mailserver/059b50b2e729729ea00c6831124d3837c494f3d5' (2024-07-16)
* fix(git-server): set git default-branch to mainSilas Schöffel2024-07-30
|
* build(flake): updateSilas Schöffel2024-07-11
| | | | | | | | | | | | | | | | | | | | | | | Flake lock file updates: • Updated input 'agenix': 'github:ryantm/agenix/3a56735779db467538fb2e577eda28a9daacaca6' (2024-06-14) → 'github:ryantm/agenix/de96bd907d5fbc3b14fc33ad37d1b9a3cb15edc6' (2024-07-09) • Updated input 'crane': 'github:ipetkov/crane/aa5dcd0518a422dfd545d565f0d5a25971fea52a' (2024-06-29) → 'github:ipetkov/crane/2d83156f23c43598cf44e152c33a59d3892f8b29' (2024-07-09) • Updated input 'disko': 'github:nix-community/disko/d185770ea261fb5cf81aa5ad1791b93a7834d12c' (2024-06-30) → 'github:nix-community/disko/786965e1b1ed3fd2018d78399984f461e2a44689' (2024-07-11) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/10c832d0548e9e3a6df7eb51e68c2783212a303e' (2024-07-01) → 'github:NixOS/nixpkgs/47c71d41a11104e76d093e3de99eb9dd39b6fe47' (2024-07-11) • Updated input 'nixpkgs-unstable': 'github:NixOS/nixpkgs/7f993cdf26ccef564eabf31fdb40d140821e12bc' (2024-07-01) → 'github:NixOS/nixpkgs/5f3d1d6eb300f17b57f48b726147789c90301320' (2024-07-10) • Updated input 'rust-overlay': 'github:oxalica/rust-overlay/648b25dd9c3acd255dc50c1eb3ca8b987856f675' (2024-07-01) → 'github:oxalica/rust-overlay/fec97e65fcbaab0decccba740ac8688f61dadd70' (2024-07-11)
* fix(nginx): add gallery.s-schoeffel.deSilas Schöffel2024-07-11
|
* build(flake): updateSilas Schöffel2024-07-01
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Flake lock file updates: • Updated input 'agenix': 'github:ryantm/agenix/c2fc0762bbe8feb06a2e59a364fa81b3a57671c9' (2024-05-24) → 'github:ryantm/agenix/3a56735779db467538fb2e577eda28a9daacaca6' (2024-06-14) • Updated input 'crane': 'github:ipetkov/crane/17d9e9dedd58dde2c562a4296934c6d6a0844534' (2024-06-09) → 'github:ipetkov/crane/aa5dcd0518a422dfd545d565f0d5a25971fea52a' (2024-06-29) • Updated input 'disko': 'github:nix-community/disko/c1cfbfad7cb45f0c177b35b59ba67d1b5fc7ca82' (2024-06-10) → 'github:nix-community/disko/d185770ea261fb5cf81aa5ad1791b93a7834d12c' (2024-06-30) • Updated input 'impermanence': 'github:nix-community/impermanence/27979f1c3a0d3b9617a3563e2839114ba7d48d3f' (2024-06-09) → 'github:nix-community/impermanence/23c1f06316b67cb5dabdfe2973da3785cfe9c34a' (2024-06-22) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/f589903f0c98110b2ad5fdd764950a99ec26715e' (2024-06-09) → 'github:NixOS/nixpkgs/10c832d0548e9e3a6df7eb51e68c2783212a303e' (2024-07-01) • Updated input 'nixpkgs-unstable': 'github:NixOS/nixpkgs/f12b3b98676c3a9c9373576965743fa30b972b31' (2024-06-10) → 'github:NixOS/nixpkgs/7f993cdf26ccef564eabf31fdb40d140821e12bc' (2024-07-01) • Updated input 'ragenix': 'github:yaxitech/ragenix/06de099ef02840ec463419f12de73729d458e1eb' (2024-03-07) → 'github:yaxitech/ragenix/8a254bbaa93fbd38e16f70fa81af6782794e046e' (2024-06-20) • Updated input 'rust-overlay': 'github:oxalica/rust-overlay/abfe5b3126b1b7e9e4daafc1c6478d17f0b584e7' (2024-06-10) → 'github:oxalica/rust-overlay/648b25dd9c3acd255dc50c1eb3ca8b987856f675' (2024-07-01) • Removed input 'rust-overlay/flake-utils' • Updated input 'simple-nixos-mailserver': 'gitlab:simple-nixos-mailserver/nixos-mailserver/0d51a32e4799d081f260eb4db37145f5f4ee7456' (2024-06-04) → 'gitlab:simple-nixos-mailserver/nixos-mailserver/290a995de5c3d3f08468fa548f0d55ab2efc7b6b' (2024-06-18) • Added input 'simple-nixos-mailserver/nixpkgs-24_05': 'github:NixOS/nixpkgs/805a384895c696f802a9bf5bf4720f37385df547' (2024-05-31)
* fix(peertube): allow sane user creationSilas Schöffel2024-06-28
| | | | | This enables reviewed registration, assigns quota to new users and enables manual approval of new videos.
* fix(peertube): configure httpsSilas Schöffel2024-06-28
|
* fix(peertube): Specify admin email (where to send the reports to)Benedikt Peetz2024-06-28
|
* fix(peertube): Use correct localhost ipBenedikt Peetz2024-06-28
|
* fix(peertube): Add required listen settingBenedikt Peetz2024-06-28
|
* style(system/services/mastodon): Remove forgotten `pkgs-unstable`Benedikt Peetz2024-06-28
|
* fix(peertube): Activate smtp supportBenedikt Peetz2024-06-28
|
* docs(password): Add documentation on the creation of new service passwordsBenedikt Peetz2024-06-28
|
* fix(peertube): Ensure that the nginx reverse proxy worksBenedikt Peetz2024-06-28
|
* feat(flake): Add `git-bug`Benedikt Peetz2024-06-28
|
* fix(peertube/secrets): Improve smtp secretBenedikt Peetz2024-06-27
|
* feat(peertube): InitBenedikt Peetz2024-06-27
|
* fix(nix-sync): Change last occurrences of `repo.path` to `repoPath`Benedikt Peetz2024-06-15
| | | | | | | Using `repo.path` (with the slash on the end) results in operations on the directory, which is the symlink target. Using `repoPath` (without the slash) instead results in the intended operations on the symlink itself.
* fix(secrets.nix): Remove non-existent `settings.age` secret fileBenedikt Peetz2024-06-13
| | | | | | This file was renamed to the `hmac.age` file in 320cc252c1e59de8fed8993b3a527839bc0963a6, but was actually never removed from the `secrets.nix` list.
* refactor(modules/etesync): Move to a complete moduleBenedikt Peetz2024-06-13
|
* refactor(modules): Ensure strict coherence to patternsBenedikt Peetz2024-06-13
|
* fix(impermanence): Re-active etesync moduleBenedikt Peetz2024-06-13
|
* fix(git-server): enable http-clone through cgitSilas Schöffel2024-06-11
|
* fix(libreddit): Remove manual module overrideBenedikt Peetz2024-06-11
| | | | The fixes have been up streamed into `nixpkgs` by now.
* refactor(flake): Use camelCase for `pkgsUnstable`Benedikt Peetz2024-06-11
|
* fix(etesync-server): Re-activateBenedikt Peetz2024-06-11
|
* flake.lock: UpdateBenedikt Peetz2024-06-11
| | | | | | | | | | | | | | | | | | | | | | | Flake lock file updates: • Updated input 'crane': 'github:ipetkov/crane/55e7754ec31dac78980c8be45f8a28e80e370946?narHash=sha256-1hZ/txnbd/RmiBPNUs7i8UQw2N89uAK3UzrGAWdnFfU%3D' (2024-06-04) → 'github:ipetkov/crane/17d9e9dedd58dde2c562a4296934c6d6a0844534?narHash=sha256-hGLeRxSEeFz9WvmQ4s4AuMJ5InLSZvoczDdXkWSFi1A%3D' (2024-06-09) • Updated input 'disko': 'github:nix-community/disko/398acc470f7c2d68621db01900f053e6000129c4?narHash=sha256-eq9gP060TqWqRf2k4WO5FrG49rVq5Jy3Ptusg0CFdds%3D' (2024-06-07) → 'github:nix-community/disko/c1cfbfad7cb45f0c177b35b59ba67d1b5fc7ca82?narHash=sha256-nlh/2uD5p2SAdkn6Zuey20yaR5FFWvhL3poapDGNE4Y%3D' (2024-06-10) • Updated input 'impermanence': 'github:nix-community/impermanence/a33ef102a02ce77d3e39c25197664b7a636f9c30?narHash=sha256-VUXLaPusCBvwM3zhGbRIJVeYluh2uWuqtj4WirQ1L9Y%3D' (2024-02-26) → 'github:nix-community/impermanence/27979f1c3a0d3b9617a3563e2839114ba7d48d3f?narHash=sha256-7C5lCpiWiyPoIACOcu2mukn/1JRtz6HC/1aEMhUdcw0%3D' (2024-06-09) • Updated input 'nixpkgs': 'github:NixOS/nixpkgs/8e0a5f16b7bf7f212be068dd302c49888c6ad68f?narHash=sha256-BKjQ9tQdsuoROrojHZb7KTAv95WprqCkNFvuzatfEo0%3D' (2024-06-07) → 'github:NixOS/nixpkgs/f589903f0c98110b2ad5fdd764950a99ec26715e?narHash=sha256-RmiZ7RBRO7D5pZKy4yhdtPkfezWUXjUTUD0JBxq1%2B14%3D' (2024-06-09) • Updated input 'nixpkgs-unstable': 'github:NixOS/nixpkgs/9bbc9cf36dcfdb4300824fd134ad506794205c0c?narHash=sha256-CdbkVYeP%2Br1yqxujYhNVXTyoQTupOY92Awe2dcupkvw%3D' (2024-06-08) → 'github:NixOS/nixpkgs/f12b3b98676c3a9c9373576965743fa30b972b31?narHash=sha256-Eg2U1nwo5JBmsZ/2RAqXv/4E9clucexY/76P8kMC9Gs%3D' (2024-06-10) • Updated input 'rust-overlay': 'github:oxalica/rust-overlay/6dc3e45fe4aee36efeed24d64fc68b1f989d5465?narHash=sha256-wqbRwq3i7g5EHIui0bIi84mdqZ/It1AXBSLJ5tafD28%3D' (2024-06-08) → 'github:oxalica/rust-overlay/abfe5b3126b1b7e9e4daafc1c6478d17f0b584e7?narHash=sha256-24h/qKp0aeI%2BEw13WdRF521kY24PYa5HOvw0mlrABjk%3D' (2024-06-10)
* fix(gitolite): change user to gitSilas Schöffel2024-06-07
|
* fix(fail2ban): increase max retry number to 7Silas Schöffel2024-06-05
|
* fix(git-server): enable SSL for cgitSilas Schöffel2024-06-05
|
* feat(treewide): add git-server moduleSilas Schöffel2024-06-05
|
* fix(nix-sync): Don't try to exit in a subshellBenedikt Peetz2024-06-05
| | | | | | | | The `(cmd1 && cmd2)` pattern works, but fails with commands like `exit` as the parentheses start a new subshell, which the `exit` command will then close instead of exiting the main shell. The curly brackets have the intended effect here, as they simply group the commands together.
* fix(nix-sync): Ensure that the `target` for `ln` never ends with a `/`Benedikt Peetz2024-06-05
| | | | Otherwise, `ln` tries to create the symlink _in_ the target directory.
* fix(nix-sync): Add code-path to create a repo's path, if absentBenedikt Peetz2024-06-05
|
* fix(nix-sync): Ensure that the service can write to all needed pathsBenedikt Peetz2024-06-01
| | | | | | | Previously, the generated service _could_ write to the directory, but wanted to create the directory, if it was absent. Creating this directory, requires to be able to write in the parent directory. This is fixed, by ensuring that the parent directories are included.
* fix(treewide): stop using none-existent etebase user and groupSilas Schöffel2024-06-01
|
* fix(nix-sync): Explicitly set the `network-online.target` dependencyBenedikt Peetz2024-06-01
|
* fix(disko): explicitely state type of main diskSilas Schöffel2024-06-01
|
* feat(etebase)!: disable etebase-serverSilas Schöffel2024-06-01
| | | | | | Sadly, it's author didn't manage to update to a newer version of django before the used version (3.2) reached EOL and was affected by CVE-2024-27351. It's unreasonable to continue using it.