Benjamin Yule Bädorf
68278ad983
refactor: use options for config parts
...
This works towards having reusable modules
* `config.pub-solar-os.networking.domain` is used for the main domain
* `config.pub-solar-os.privacyPolicUrl` links towards the privacy policy
* `config.pub-solar-os.imprintUrl` links towards the imprint
* `config.pub-solar-os.auth.enable` enables the keycloak installation.
This is needed because `config.pub-solar-os.auth` has to be available
everywhere, but we do not want to install keycloak everywhere.
* `config.pub-solar-os.auth.realm` sets the keycloak realm name
2024-05-08 19:47:47 +02:00
teutat3s
aa7ab4bc6b
Merge pull request 'matrix: init stickerpicker' ( #181 ) from feat/matrix-stickerpicker into main
...
Reviewed-on: pub-solar/infra#181
Reviewed-by: Hendrik Sokolowski <hensoko@noreply.git.pub.solar>
2024-05-07 18:57:41 +00:00
teutat3s
ff9703e542
matrix: init stickerpicker
2024-05-07 17:47:55 +02:00
teutat3s
9a3a00d25f
Merge pull request 'chore: update element-web, matrix-synapse and others' ( #180 ) from chore/update-flake into main
...
Reviewed-on: pub-solar/infra#180
Reviewed-by: Akshay Mankar <axeman@noreply.git.pub.solar>
2024-05-06 18:31:55 +00:00
teutat3s
a91ff24a7d
chore: add results to gitignore
2024-05-06 19:39:30 +02:00
teutat3s
5ffde90324
chore: bump flake inputs
...
• Updated input 'agenix':
'github:ryantm/agenix/1381a759b205dff7a6818733118d02253340fd5e?narHash=sha256-/JdiT9t%2BzzjChc5qQiF%2BjhrVhRt8figYH29rZO7pFe4%3D' (2024-04-02)
→ 'github:ryantm/agenix/24a7ea390564ccd5b39b7884f597cfc8d7f6f44e?narHash=sha256-BtWQ2Th/jamO1SlD%2B2ASSW5Jaf7JhA/JLpQHk0Goqpg%3D' (2024-04-26)
• Updated input 'flake-parts':
'github:hercules-ci/flake-parts/9126214d0a59633752a136528f5f3b9aa8565b7d?narHash=sha256-sB4SWl2lX95bExY2gMFG5HIzvva5AVMJd4Igm%2BGpZNw%3D' (2024-04-01)
→ 'github:hercules-ci/flake-parts/e5d10a24b66c3ea8f150e47dfdb0416ab7c3390e?narHash=sha256-yzcRNDoyVP7%2BSCNX0wmuDju1NUCt8Dz9%2BlyUXEI0dbI%3D' (2024-05-02)
• Updated input 'flake-parts/nixpkgs-lib':
'github:NixOS/nixpkgs/d8fe5e6c92d0d190646fb9f1056741a229980089?dir=lib&narHash=sha256-iMUFArF0WCatKK6RzfUJknjem0H9m4KgorO/p3Dopkk%3D' (2024-03-29)
→ '50eb7ecf4c
.tar.gz?narHash=sha256-QBx10%2Bk6JWz6u7VsohfSw8g8hjdBZEf8CFzXH1/1Z94%3D' (2024-05-02)
• Updated input 'nixpkgs':
'github:nixos/nixpkgs/dd37924974b9202f8226ed5d74a252a9785aedf8?narHash=sha256-fFE3M0vCoiSwCX02z8VF58jXFRj9enYUSTqjyHAjrds%3D' (2024-04-24)
→ 'github:nixos/nixpkgs/651b4702e27a388f0f18e1b970534162dec09aff?narHash=sha256-tbg0MEuKaPcUrnmGCu4xiY5F%2B7LW2%2BECPKVAJd2HLwM%3D' (2024-05-04)
• Updated input 'unstable':
'github:nixos/nixpkgs/572af610f6151fd41c212f897c71f7056e3fb518?narHash=sha256-cfh1hi%2B6muQMbi9acOlju3V1gl8BEaZBXBR9jQfQi4U%3D' (2024-04-23)
→ 'github:nixos/nixpkgs/25865a40d14b3f9cf19f19b924e2ab4069b09588?narHash=sha256-UlRZtrCnhPFSJlDQE7M0eyhgvuuHBTe1eJ9N9AQlJQ0%3D' (2024-05-05)
2024-05-06 19:39:16 +02:00
teutat3s
def76f8776
Merge pull request 'Put modules into uniform folders - part 2' ( #179 ) from auto-modules into main
...
Reviewed-on: pub-solar/infra#179
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
2024-05-06 16:57:41 +00:00
teutat3s
c738f2d41f
modules: remove leftover apps dir
2024-04-30 00:57:46 +02:00
Pablo Ovelleiro Corral
512ab12de1
Put modules into uniform folders
2024-04-28 19:17:09 +02:00
teutat3s
477e419312
Merge pull request 'refactor: Move all apps into modules' ( #175 ) from refactor/modules into main
...
Reviewed-on: pub-solar/infra#175
Reviewed-by: Hendrik Sokolowski <hensoko@noreply.git.pub.solar>
2024-04-28 16:28:28 +00:00
b12f
667824928b
Merge pull request 'Add official formatter to flake' ( #176 ) from pinpox/infra:add-nixfmt into main
...
Reviewed-on: pub-solar/infra#176
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
Reviewed-by: teutat3s <teutat3s@noreply.git.pub.solar>
Reviewed-by: Hendrik Sokolowski <hensoko@noreply.git.pub.solar>
2024-04-28 16:15:25 +00:00
Benjamin Yule Bädorf
ef94681e11
refactor: Move all apps into modules
2024-04-28 18:07:28 +02:00
Pablo Ovelleiro Corral
c7b743e4dd
Add official formatter to flake
...
Allows running `nix fmt`, which will format using the official style as
agreed upon in nixpkgs
2024-04-28 17:54:09 +02:00
teutat3s
f18fee25e4
Merge pull request 'Add .editorconfig file with tabs as indentation' ( #172 ) from feat/add-editorconfig into main
...
Reviewed-on: pub-solar/infra#172
Reviewed-by: teutat3s <teutat3s@noreply.git.pub.solar>
2024-04-28 15:26:59 +00:00
Hendrik Sokolowski
fee6ce74c7
Merge pull request 'docs: add rough documentation about obs-portal' ( #173 ) from feat/obs-portal-nachtigall into main
...
Reviewed-on: pub-solar/infra#173
Reviewed-by: teutat3s <teutat3s@noreply.git.pub.solar>
2024-04-28 12:13:09 +00:00
Hendrik Sokolowski
a278c178b0
docs: obs-portal: add prosaic sugar
2024-04-28 02:03:03 +02:00
Hendrik Sokolowski
75c7e2dcf5
docs: add rough documentation about obs-portal
2024-04-28 01:23:42 +02:00
teutat3s
41798a1cd6
Merge pull request 'obs-portal: init obs-portal on nachtigall' ( #115 ) from feat/obs-portal-nachtigall into main
...
Reviewed-on: pub-solar/infra#115
Reviewed-by: teutat3s <teutat3s@noreply.git.pub.solar>
2024-04-27 23:14:50 +00:00
Hendrik Sokolowski
10c86c6b20
nachtigall: obs-portal: remove tiles mount
2024-04-28 01:07:49 +02:00
Hendrik Sokolowski
1d6c5003e8
nachtigall: obs-portal: fix dependencies of docker network unit and portal
2024-04-28 01:05:43 +02:00
Hendrik Sokolowski
fef1874938
update obs-portal dns target
2024-04-27 22:45:26 +02:00
Hendrik Sokolowski
c74394449d
remove git conflict heading
2024-04-27 22:45:21 +02:00
Benjamin Yule Bädorf
d280b29394
obs-portal: init obs-portal on nachtigall
...
This follows the official installation instructions at https://github.com/openbikesensor/portal/blob/main/docs/production-deployment.md
Unfortunately, the postgres database needs to have postgis enabled, so
we'll have to start a second instance. To stay close to the official
deployment instructions, this is running in docker.
The secrets were taken from the old installation instance. During
initial installation, we'll need to import data from the old instance
into this one, which might take a while.
2024-04-27 22:45:07 +02:00
Benjamin Yule Bädorf
c49e47dc30
Add .editorconfig file with tabs as indentation
...
Just use tabs guys
2024-04-27 20:47:07 +02:00
teutat3s
5e34acd765
Merge pull request 'Revert "matrix-appservice-irc: remove unneeded syscall override"' ( #171 ) from fix/matrix-appservice-irc into main
...
Reviewed-on: pub-solar/infra#171
Reviewed-by: Akshay Mankar <axeman@noreply.git.pub.solar>
2024-04-27 13:50:46 +00:00
teutat3s
2fa3ccf28e
Revert "matrix-appservice-irc: remove unneeded syscall override"
...
This reverts commit a11255b433
.
2024-04-27 01:44:20 +02:00
teutat3s
505d0f34ea
Merge pull request 'nachtigall: synapse security update' ( #153 ) from chore/synapse-security-update into main
...
Reviewed-on: pub-solar/infra#153
Reviewed-by: Hendrik Sokolowski <hensoko@noreply.git.pub.solar>
2024-04-26 20:48:19 +00:00
teutat3s
ddc5c65bf7
chore: bump flake inputs
...
• Updated input 'home-manager':
'github:nix-community/home-manager/d6bb9f934f2870e5cbc5b94c79e9db22246141ff?narHash=sha256-dA82pOMQNnCJMAsPG7AXG35VmCSMZsJHTFlTHizpKWQ%3D' (2024-04-06)
→ 'github:nix-community/home-manager/86853e31dc1b62c6eeed11c667e8cdd0285d4411?narHash=sha256-Xn2r0Jv95TswvPlvamCC46wwNo8ALjRCMBJbGykdhcM%3D' (2024-04-25)
• Updated input 'nix-darwin':
'github:lnl7/nix-darwin/9e7c20ffd056e406ddd0276ee9d89f09c5e5f4ed?narHash=sha256-olEWxacm1xZhAtpq%2BZkEyQgR4zgfE7ddpNtZNvubi3g%3D' (2024-04-19)
→ 'github:lnl7/nix-darwin/230a197063de9287128e2c68a7a4b0cd7d0b50a7?narHash=sha256-lc75rgRQLdp4Dzogv5cfqOg6qYc5Rp83oedF2t0kDp8%3D' (2024-04-24)
• Updated input 'nixpkgs':
'github:nixos/nixpkgs/bc194f70731cc5d2b046a6c1b3b15f170f05999c?narHash=sha256-YguPZpiejgzLEcO36/SZULjJQ55iWcjAmf3lYiyV1Fo%3D' (2024-04-19)
→ 'github:nixos/nixpkgs/dd37924974b9202f8226ed5d74a252a9785aedf8?narHash=sha256-fFE3M0vCoiSwCX02z8VF58jXFRj9enYUSTqjyHAjrds%3D' (2024-04-24)
• Updated input 'unstable':
'github:nixos/nixpkgs/5c24cf2f0a12ad855f444c30b2421d044120c66f?narHash=sha256-XtTSSIB2DA6tOv%2Bl0FhvfDMiyCmhoRbNB%2B0SeInZkbk%3D' (2024-04-19)
→ 'github:nixos/nixpkgs/572af610f6151fd41c212f897c71f7056e3fb518?narHash=sha256-cfh1hi%2B6muQMbi9acOlju3V1gl8BEaZBXBR9jQfQi4U%3D' (2024-04-23)
2024-04-25 19:21:05 +02:00
teutat3s
a11255b433
matrix-appservice-irc: remove unneeded syscall override
...
PR was merged and backported:
https://github.com/NixOS/nixpkgs/pull/271740
2024-04-25 12:37:58 +02:00
teutat3s
d62b6cda92
Merge pull request 'ci: update forgejo runner to fix cache' ( #152 ) from ci/update-forgejo-runner into main
...
Reviewed-on: pub-solar/infra#152
Reviewed-by: Hendrik Sokolowski <hensoko@noreply.git.pub.solar>
2024-04-23 18:18:39 +00:00
teutat3s
c580fe0fbb
ci: prevent flake inputs from GC as well
2024-04-23 19:10:20 +02:00
teutat3s
60aef1d038
ci: prevent nix garbage collection
2024-04-23 16:00:16 +02:00
teutat3s
fa9ce9d435
gitea-actions-runner: don't run as systemd DynamicUser
...
to enable usage of cache outside of /var/lib/private
2024-04-23 15:42:33 +02:00
teutat3s
9541e5029e
flora-6: move forgejo-runner cache directory to /data
2024-04-23 15:12:11 +02:00
teutat3s
c4d0d34807
ci: revert cache-nix-action to version 4.0.3
2024-04-23 15:12:06 +02:00
teutat3s
d5fe65b60d
ci: disable cachix daemon, spams logs with
...
[2024-04-22 23:46:26][Info] Skipping /nix/store/w2zp8k8yy2avv5r92w0cpq9aixkir2sp-LocalSettings.php
...
2024-04-23 15:11:59 +02:00
teutat3s
0e7dc95250
ci: remove broken purge config from check workflow
2024-04-23 01:42:04 +02:00
teutat3s
c86e22b292
ci: update forgejo-runner to version 3.4.1
...
https://github.com/NixOS/nixpkgs/pull/301383
2024-04-23 00:38:53 +02:00
Hendrik Sokolowski
4992819742
Merge pull request 'set pruneOpts for restic backups to daily 7, weekly 4, monthly 3' ( #151 ) from feature/restic-backup-retention into main
...
Reviewed-on: pub-solar/infra#151
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
Reviewed-by: teutat3s <teutat3s@noreply.git.pub.solar>
2024-04-22 19:38:21 +00:00
Hendrik Sokolowski
a9411d05a8
set pruneOpts for restic backups to daily 7, weekly 4, monthly 3
2024-04-22 20:06:49 +02:00
teutat3s
e8530caf1d
Merge pull request 'ci: update nix-quick-install-action, cache-nix-action, cachix-action' ( #150 ) from chore-update-ci into main
...
Reviewed-on: pub-solar/infra#150
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
2024-04-22 15:19:36 +00:00
teutat3s
7c492e7391
Merge pull request 'chore: forgejo security update, update matrix-synapse et al.' ( #149 ) from chore-update-flake into main
...
Reviewed-on: pub-solar/infra#149
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
2024-04-22 15:18:33 +00:00
teutat3s
a0c6f0dc08
ci: fix cache-nix-action, use new config syntax
2024-04-21 20:17:03 +02:00
teutat3s
46c7c9ecb1
ci: update nix-quick-install-action, cache-nix-action,
...
cachix-action
2024-04-21 19:58:58 +02:00
teutat3s
fb4004e9f0
chore: update flake inputs
...
• Updated input 'nix-darwin':
'github:lnl7/nix-darwin/36524adc31566655f2f4d55ad6b875fb5c1a4083?narHash=sha256-sXcesZWKXFlEQ8oyGHnfk4xc9f2Ip0X/%2BYZOq3sKviI%3D' (2024-03-30)
→ 'github:lnl7/nix-darwin/9e7c20ffd056e406ddd0276ee9d89f09c5e5f4ed?narHash=sha256-olEWxacm1xZhAtpq%2BZkEyQgR4zgfE7ddpNtZNvubi3g%3D' (2024-04-19)
• Updated input 'nixpkgs':
'github:nixos/nixpkgs/90055d5e616bd943795d38808c94dbf0dd35abe8?narHash=sha256-ZEfGB3YCBVggvk0BQIqVY7J8XF/9jxQ68fCca6nib%2B8%3D' (2024-04-13)
→ 'github:nixos/nixpkgs/bc194f70731cc5d2b046a6c1b3b15f170f05999c?narHash=sha256-YguPZpiejgzLEcO36/SZULjJQ55iWcjAmf3lYiyV1Fo%3D' (2024-04-19)
• Updated input 'unstable':
'github:nixos/nixpkgs/cfd6b5fc90b15709b780a5a1619695a88505a176?narHash=sha256-WKm9CvgCldeIVvRz87iOMi8CFVB1apJlkUT4GGvA0iM%3D' (2024-04-12)
→ 'github:nixos/nixpkgs/5c24cf2f0a12ad855f444c30b2421d044120c66f?narHash=sha256-XtTSSIB2DA6tOv%2Bl0FhvfDMiyCmhoRbNB%2B0SeInZkbk%3D' (2024-04-19)
2024-04-21 19:28:02 +02:00
teutat3s
3030b0f84d
Merge pull request 'flora-6: add wg-ssh to ignored systemd-wait-online interfaces' ( #148 ) from flora-6/fix-network-wait-online into main
...
Reviewed-on: pub-solar/infra#148
Reviewed-by: Hendrik Sokolowski <hensoko@noreply.git.pub.solar>
2024-04-14 21:53:33 +00:00
teutat3s
c07d24f6a7
flora-6: add wg-ssh to ignored interfaces
...
for systemd-wait-online to start successfully
2024-04-14 23:22:53 +02:00
teutat3s
0f297c4711
Merge pull request 'chore: security update PHP, update element-web, misc updates' ( #147 ) from chore-update-flake into main
...
Reviewed-on: pub-solar/infra#147
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
2024-04-14 20:29:39 +00:00
teutat3s
679d9b236f
Merge pull request 'nginx: set worker_processes to number of CPU cores' ( #146 ) from feat/nginx-tuning into main
...
Reviewed-on: pub-solar/infra#146
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
2024-04-14 20:22:08 +00:00
teutat3s
78d5e5a4f0
chore: update flake inputs
...
❯ nix store diff-closures $OLD_CLOSURE $NEW_CLOSURE
cpupower: 6.1.84 → 6.1.86
element-web: 1.11.63 → 1.11.64, +148.0 KiB
element-web-wrapped: 1.11.63 → 1.11.64
initrd-linux: 6.1.84 → 6.1.86
linux: 6.1.84, 6.1.84-modules → 6.1.86, 6.1.86-modules, +24.3 KiB
linux-firmware: 20240312 → 20240410, +493.3 KiB
nixos-system-nachtigall: 23.11.20240410.b2cf36f → 23.11.20240413.90055d5
owncast: 0.1.2 → 0.1.3, -376.1 KiB
php: 8.2.17 → 8.2.18
php-bcmath: 8.2.17 → 8.2.18
php-bz2: 8.2.17 → 8.2.18
php-calendar: 8.2.17 → 8.2.18
php-ctype: 8.2.17 → 8.2.18
php-curl: 8.2.17 → 8.2.18
php-dom: 8.2.17 → 8.2.18
php-exif: 8.2.17 → 8.2.18
php-extra-init: 8.2.17.ini → 8.2.18.ini
php-fileinfo: 8.2.17 → 8.2.18
php-filter: 8.2.17 → 8.2.18
php-ftp: 8.2.17 → 8.2.18
php-gd: 8.2.17 → 8.2.18
php-gettext: 8.2.17 → 8.2.18
php-gmp: 8.2.17 → 8.2.18
php-iconv: 8.2.17 → 8.2.18
php-imap: 8.2.17 → 8.2.18
php-intl: 8.2.17 → 8.2.18
php-ldap: 8.2.17 → 8.2.18
php-mbstring: 8.2.17 → 8.2.18
php-mysqli: 8.2.17 → 8.2.18
php-mysqlnd: 8.2.17 → 8.2.18
php-opcache: 8.2.17 → 8.2.18
php-openssl: 8.2.17 → 8.2.18
php-pcntl: 8.2.17 → 8.2.18
php-pdo: 8.2.17 → 8.2.18
php-pdo_mysql: 8.2.17 → 8.2.18
php-pdo_odbc: 8.2.17 → 8.2.18
php-pdo_pgsql: 8.2.17 → 8.2.18
php-pdo_sqlite: 8.2.17 → 8.2.18
php-pgsql: 8.2.17 → 8.2.18
php-posix: 8.2.17 → 8.2.18
php-readline: 8.2.17 → 8.2.18
php-session: 8.2.17 → 8.2.18
php-simplexml: 8.2.17 → 8.2.18
php-soap: 8.2.17 → 8.2.18
php-sockets: 8.2.17 → 8.2.18
php-sodium: 8.2.17 → 8.2.18
php-sqlite3: 8.2.17 → 8.2.18
php-sysvsem: 8.2.17 → 8.2.18
php-tokenizer: 8.2.17 → 8.2.18
php-with-extensions: 8.2.17 → 8.2.18
php-xmlreader: 8.2.17 → 8.2.18
php-xmlwriter: 8.2.17 → 8.2.18
php-zip: 8.2.17 → 8.2.18
php-zlib: 8.2.17 → 8.2.18
searxng: ∅ → 0-unstable-2024-03-08, +15337.5 KiB
searxng-unstable: 2023-10-31 → ∅, -14965.6 KiB
source: +470.3 KiB
uwsgi: 2.0.23 → 2.0.24
zfs-kernel: 2.2.3-6.1.84 → 2.2.3-6.1.86
2024-04-14 22:09:37 +02:00