summary refs log tree commit diff stats
path: root/system (follow)
Commit message (Collapse)AuthorAge
...
| * fix(system/services/nginx/redirects): Enable ssl for the domainsSoispha2023-11-03
| | | | | | | | | | | | Although the page does not actually serve any content, many browsers will still refuse to access it at all, if they have the 'https-only' mode activated.
* | refactor(system/services/etebase): explain outcommented static filessils2023-11-30
| |
* | fix(system/services/etebase): don't serve static filessils2023-11-27
| | | | | | | | This doesn't work as nginx doesn't have the right permissions.
* | fix(system/services/etebase): serve static_rootsils2023-11-27
| |
* | fix(system/services/etebase): micellanous changes to make it worksils2023-11-27
| |
* | Merge branch 'main' into etebase_newsils2023-11-27
|\ \
| * | fix(system/services/nix): add nixremote to trusted-userssils2023-11-20
| | |
* | | fix(system/impermanence): Remove keycloak mod, as it does not existSoispha2023-11-18
| | |
* | | refactor(system/services/etebase): Use a reference to the port numberSoispha2023-11-18
| | |
* | | fix(system/services/etebase): Use the correct subdomainsSoispha2023-11-18
| | | | | | | | | | | | This is done to comply with the naming scheme employed at `vhack.eu`.
* | | fix(system/services/etebase): Hard-code localhost ipSoispha2023-11-18
| | | | | | | | | | | | | | | Otherwise, etebase might use the ipv6 ip, whilst nginx uses the ipv4 version. This prevents this issue
* | | Fix(system/services/etebase): Add proxy parameterssils2023-11-18
| | |
* | | Fix(system/services/etebase): Proxy ipv4sils2023-11-18
| | |
* | | Refactor(system/services/etebase): Formatsils2023-11-18
| | |
* | | Fix(system/impermanence): Add permissionssils2023-11-18
| | |
* | | Fix(system/services/etebase-server): Use nginxsils2023-11-18
| | |
* | | Fix(system/impermanence): Add etebase-serversils2023-11-18
| | |
* | | Feat(system/services): Add etebase-serversils2023-11-18
| | |
* | | Feat(system/secrets): Add etebase-server secretsils2023-11-18
|/ /
* | docs(system/services/taskserver): Add docs about expectations to runtimeSoispha2023-11-18
| |
* | feat(system/users): remove obsolete ss-key for silssils2023-11-18
| | | | | | | | | | | | | | | | | | | | | | | | # Please enter the commit message for your changes. Lines starting # with '#' will be ignored, and an empty message aborts the commit. # # On branch main # Your branch is up to date with 'origin/main'. # # Changes to be committed: # modified: system/users/default.nix #
* | fix(system/services/taskserver): Support both ipv4 and ipv6Soispha2023-11-18
| |
* | fix(system/users): change ssh-keys for silssils2023-11-18
| |
* | fix(system/users): add ssh-key for silssils2023-11-15
| |
* | fix(system/services/taskserver/certs): Move cert generation to scriptSoispha2023-11-07
|/ | | | | | This fully removes the human-factor and allows it to just run `./generate` to generate all required certificates and keys (with the needed extra keys and certificates)
* feat(system/services/taskserver): Add a way to connect users togetherSoispha2023-10-17
|
* fix(system/services/taskserver): Disable debugSoispha2023-10-17
|
* fix(system/services/taskserver): Activate debugSoispha2023-10-16
|
* fix(system/services/taskserver): Use correct key name (`key.pem`)Soispha2023-10-16
|
* fix(system/services/taskserver): Switch to strings instead of pathsSoispha2023-10-16
|
* fix(system/services/taskserver): Store the self-signed ca key in agenixSoispha2023-10-16
|
* feat(system/services/taskserver): Integrate Let's Encrypt certificatesSoispha2023-10-16
| | | | | | | | | | | | The current setup now runs the `taskserver.vhack.eu` domain with a Let's Encrypt certificate and additionally uses a self-signed CA certificate to validate clients. The shell scripts used to generate the CA certificate and the derived client certificate (and keys) are taken nearly unmodified from the upstream repository [1]. [1]: https://github.com/GothenburgBitFactory/taskserver/tree/9794cff61e56bdfb193c6aa4cebb57970ac68aef/pki
* fix(system/services/taskserver): declare certs/keys in pki.manualsils2023-10-16
|
* feat(system/services/taskserver): change ca to letsencryptsils2023-10-16
|
* fix(system/services/taskserver): Hide organisationsSoispha2023-10-16
|
* refactor(system/services/redirects): Move under the nginx directorySoispha2023-10-14
|
* fix(system/services/redirects): disable sslsils2023-10-14
|
* Feat(system/services/redirects): Build up the base to comply with the AGPLSoispha2023-10-14
|
* Style(treewide): Merge attrs togetherSoispha2023-10-14
|
* fix(system/services/miniflux): Set correct subdomain, but leave aliasSoispha2023-10-13
|
* fix(system/services/mastodon): Correctly avoid string castsSoispha2023-10-13
|
* Revert "fix(system/services/mastodon): remove unneccessary stringcasts"sils2023-10-13
| | | | | | These stringcasts were mandatory. This reverts commit cfdd2e350ff5df55beef4fa5b7bc11e9ff5e23c1.
* fix(system/services/mastodon): remove unneccessary stringcastssils2023-10-13
|
* fix(system/services/mastodon): change string to list of stringsils2023-10-12
|
* fix(system/services/mastodon): add nginx to group 'mastodon'sils2023-10-12
|
* fix(system/services/mastodon): allow registration only with vhack.eu/sils.li ↵sils2023-10-12
| | | | mail
* fix(system/services/mastodon): separate domains for user handles and ↵sils2023-10-12
| | | | webinterface
* feat(system/services): actually import mastodonsils2023-10-12
|
* fix(system/services/mastodon): correct age secret pathsils2023-10-12
|
* feat(treewide): add mastodonsils2023-10-12
|