1
0
Fork 0
forked from pub-solar/infra
Find a file
teutat3s 9758aeda5d
garage: fix wildcard DNS cert renewal with wildcard
CNAME records

By usind wildcard CNAME records, we make lego think it needs to validate
challenges using these CNAME records. We actually want regular
_acme-challenge.* records, so use a environment variable to avoid CNAME
detection. This fixes DNS cert renewal. Still curious? See:
https://letsencrypt.org/2019/10/09/onboarding-your-customers-with-lets-encrypt-and-acme/
2024-10-23 20:18:57 +02:00
.forgejo/workflows ci: avoid garbage collection of checks 2024-08-27 12:37:37 +02:00
docs nextcloud: document how to get debugging logs 2024-10-16 17:19:49 +02:00
hosts style: fix formatting 2024-10-17 20:31:47 +02:00
lib docs: add metronom to deploy docs, style: format 2024-05-31 16:52:03 +02:00
logins logins: add teutat3s secondary SSH public key 2024-10-08 19:10:20 +02:00
modules garage: fix wildcard DNS cert renewal with wildcard 2024-10-23 20:18:57 +02:00
overlays mastodon: update to version 4.3.0 from nixos-unstable 2024-10-17 20:31:47 +02:00
secrets garage: fix wildcard DNS cert renewal with wildcard 2024-10-23 20:18:57 +02:00
terraform dns: switch to opentofu + terraform-backend-git, 2024-09-10 16:02:25 +02:00
tests tests: create keycloak test, add working test for website 2024-08-27 09:55:25 +02:00
.editorconfig secrets: ensure no final newline 2024-08-21 16:39:14 +02:00
.envrc Add dev shell 2023-10-28 12:38:14 +02:00
.git-blame-ignore-revs style: update git-blame-ignore-revs 2024-05-08 23:14:34 +02:00
.gitignore chore: add results to gitignore 2024-05-06 19:39:30 +02:00
CONTRIBUTING.md docs: add CONTRIBUTING 2024-05-08 22:29:11 +02:00
flake.lock flake.lock: Update 2024-10-17 20:31:17 +02:00
flake.nix flake: refactor, bye srid 2024-10-05 14:03:40 +02:00
LICENSE.md Add AGPL LICENSE 2024-05-08 22:28:45 +02:00
README.md docs: add CONTRIBUTING 2024-05-08 22:29:11 +02:00
treefmt.toml style: check formatting using nixpkgs standard and 2024-05-08 22:56:28 +02:00

The pub.solar infrastructure

This repository contains almost all of the configuration for the whole pub.solar infrastructure. Our goal is to have everything, from host configurations to Terraform DNS in this repository.

The architecture we are working towards is a vast simplification of what it was before: one dedicated Hetzner server running NixOS with all services. Offsite backups go to several different locations with restic.

Contributing

If you'd like to contribute, it makes sense to talk to the crew on Matrix via #hakken. We can help figuring out how things work and can make sure your ideas fit the pub.solar philosophy. Of course popping a pull request is always celebrated.

To start, check our contributing guide.