teutat3s
4f558e8a9b
dns: add DKIM record
2024-02-05 22:27:34 +01:00
teutat3s
0deb8eb6be
Merge pull request 'security: update mastodon to 4.2.5' ( #108 ) from security/mastodon-4.2.5 into main
...
Reviewed-on: pub-solar/infra#108
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
2024-02-01 17:11:05 +00:00
teutat3s
e007b034ed
security: update mastodon to 4.2.5
...
https://github.com/mastodon/mastodon/security/advisories/GHSA-3fjr-858r-92rw
Pull in the patch early while NixOS channels are catching to build and
cache https://github.com/NixOS/nixpkgs/pull/285565
https://nixpk.gs/pr-tracker.html?pr=285565
2024-02-01 17:59:32 +01:00
teutat3s
4eb78dd94f
Merge pull request 'metrics(matrix-synapse): enable internal MAU metrics' ( #107 ) from metrics/synapse-mau into main
...
Reviewed-on: pub-solar/infra#107
Reviewed-by: hensoko <hensoko@noreply.git.pub.solar>
2024-02-01 15:09:58 +00:00
teutat3s
4ce188edec
metrics(matrix-synapse): enable internal MAU metrics
...
https://matrix-org.github.io/synapse/latest/usage/configuration/config_documentation.html#mau_stats_only
2024-02-01 15:51:55 +01:00
teutat3s
62c248348a
Merge pull request 'feat(grafana): add synapse dashboard' ( #106 ) from feat/grafana-synapse-dashboard into main
...
Reviewed-on: pub-solar/infra#106
Reviewed-by: hensoko <hensoko@noreply.git.pub.solar>
2024-02-01 10:31:43 +00:00
teutat3s
27c0cbabf4
Merge pull request 'fix(matrix-synapse): mail hostname, missing tls setting on metrics listener' ( #105 ) from fix/synapse-mail-and-tls into main
...
Reviewed-on: pub-solar/infra#105
Reviewed-by: hensoko <hensoko@noreply.git.pub.solar>
2024-02-01 10:31:34 +00:00
teutat3s
031bab4a4e
fix(nextcloud): interned_strings_buffer should be
...
powers of 2
2024-02-01 11:21:10 +01:00
teutat3s
33d80dc558
feat(grafana): add synapse dashboard
...
Source:
https://github.com/element-hq/synapse/blob/master/contrib/grafana/synapse.json
2024-01-30 20:00:41 +01:00
teutat3s
576ceb6875
fix(matrix-synapse): mail hostname, missing tls
...
setting on metrics listener
2024-01-30 19:42:48 +01:00
teutat3s
101cc3a9d2
Merge pull request 'chore: update mastodon: 4.2.3 -> 4.2.4, element-web: 1.11.54 -> 1.11.55' ( #104 ) from chore/bump-flake-inputs into main
...
Reviewed-on: pub-solar/infra#104
Reviewed-by: hensoko <hensoko@noreply.git.pub.solar>
2024-01-30 16:47:31 +00:00
teutat3s
507c088316
chore: bump flake inputs
...
• Updated input 'nix-darwin':
'github:lnl7/nix-darwin/1e706ef323de76236eb183d7784f3bd57255ec0b' (2024-01-22)
→ 'github:lnl7/nix-darwin/00538eecf2d1a8f98a53a71c9c84f913003ec5e8' (2024-01-29)
• Updated input 'nixpkgs':
'github:nixos/nixpkgs/d7f206b723e42edb09d9d753020a84b3061a79d8' (2024-01-22)
→ 'github:nixos/nixpkgs/56911ef3403a9318b7621ce745f5452fb9ef6867' (2024-01-27)
• Updated input 'unstable':
'github:nixos/nixpkgs/612f97239e2cc474c13c9dafa0df378058c5ad8d' (2024-01-21)
→ 'github:nixos/nixpkgs/ae5c332cbb5827f6b1f02572496b141021de335f' (2024-01-25)
2024-01-29 09:57:38 +01:00
teutat3s
b2e845876a
Merge pull request 'feat(matrix-synapse): enable metrics' ( #100 ) from feat/synapse-metrics into main
...
Reviewed-on: pub-solar/infra#100
Reviewed-by: Akshay Mankar <axeman@noreply.git.pub.solar>
2024-01-28 23:56:42 +00:00
teutat3s
69b976607f
fix(matrix-synapse): make sure to find element in
...
list of config.services.matrix-synapse.settings.listeners that sets
type = "metrics" instead of just using the first element in the list
2024-01-29 00:44:53 +01:00
teutat3s
62429bca08
fix(matrix-synapse): make sure to find element in
...
list of config.services.matrix-synapse.settings.listeners.*.resources
that sets names = "client" instead of just using the first element in the list of listeners
2024-01-29 00:44:53 +01:00
teutat3s
3cfdd9d20a
refactor(matrix-synapse): get first listener port
2024-01-29 00:44:52 +01:00
teutat3s
2f75ae7e62
feat(matrix-synapse): enable metrics
...
Following:
https://github.com/matrix-org/synapse/blob/develop/docs/metrics-howto.md
2024-01-29 00:44:13 +01:00
teutat3s
750d73a22b
Merge pull request 'fix: greenbaum manta URL for terraform remote state' ( #102 ) from fix/manta-url into main
...
Reviewed-on: pub-solar/infra#102
Reviewed-by: Akshay Mankar <axeman@noreply.git.pub.solar>
2024-01-28 23:19:35 +00:00
teutat3s
9e80c52965
Merge pull request 'feat: format with nixpkgs-fmt' ( #103 ) from feat/nixpkgs-fmt into main
...
Reviewed-on: pub-solar/infra#103
Reviewed-by: Akshay Mankar <axeman@noreply.git.pub.solar>
2024-01-28 23:19:13 +00:00
teutat3s
3c7a434b0d
feat: add .git-blame-ignore-revs file
2024-01-28 00:32:41 +01:00
teutat3s
815033c764
treewide: apply nixpkgs-fmt
...
Used command:
nixpkgs-fmt .
2024-01-27 20:29:30 +01:00
teutat3s
0c5a42cb67
Merge pull request 'chore: update element-web, synapse, keycloak, PHP, misc' ( #99 ) from chore/bump-flake-inputs into main
...
Reviewed-on: pub-solar/infra#99
Reviewed-by: hensoko <hensoko@noreply.git.pub.solar>
2024-01-27 16:53:42 +00:00
teutat3s
a335dcf8f5
fix: greenbaum manta URL for terraform remote state
...
eu-central.manta.greenbaum.cloud -> eu-central.manta.greenbaum.zone
2024-01-27 17:06:03 +01:00
teutat3s
0ac447f6f5
Merge pull request 'fix: make turn.pub.solar CNAME record, fixing IPv6' ( #101 ) from fix/turn-dns into main
...
Reviewed-on: pub-solar/infra#101
Reviewed-by: hensoko <hensoko@noreply.git.pub.solar>
2024-01-27 10:42:48 +00:00
teutat3s
766a2770d8
fix: make turn.pub.solar CNAME record, fixing IPv6
2024-01-25 20:23:14 +01:00
teutat3s
b3b3725c9f
feat: php opcache tuning for nextcloud
...
https://docs.nextcloud.com/server/latest/admin_manual/installation/server_tuning.html#:~:text=opcache.jit%20%3D%201255%20opcache.jit_buffer_size%20%3D%20128m
2024-01-25 20:19:32 +01:00
teutat3s
be668fbb17
fix: nextcloud likes interned strings buffer > 8
...
7cf6f51516
made a wrong assumption
2024-01-23 22:18:58 +01:00
teutat3s
e527120879
chore: bump flake inputs
...
• Updated input 'element-themes':
'github:aaronraimist/element-themes/b1dbe27acee74cebe180538ef215208a1c26dc02' (2023-07-29)
→ 'github:aaronraimist/element-themes/fec249ddecfacfbbe6cfaf6a48261d00270b6abe' (2024-01-14)
• Updated input 'home-manager':
'github:nix-community/home-manager/5f0ab0eedc6ede69beb8f45561ffefa54edc6e65' (2024-01-11)
→ 'github:nix-community/home-manager/10cd9c53115061aa6a0a90aad0b0dde6a999cdb9' (2024-01-19)
• Updated input 'nix-darwin':
'github:lnl7/nix-darwin/0dd382b70c351f528561f71a0a7df82c9d2be9a4' (2024-01-03)
→ 'github:lnl7/nix-darwin/1e706ef323de76236eb183d7784f3bd57255ec0b' (2024-01-22)
• Updated input 'nixos-flake':
'github:srid/nixos-flake/4e422edf6b511f8e214b392cf1a0d4707a0399a4' (2023-12-09)
→ 'github:srid/nixos-flake/244072b1f9088833627046d703d7973b90fe7843' (2024-01-23)
• Updated input 'nixpkgs':
'github:nixos/nixpkgs/3dc440faeee9e889fe2d1b4d25ad0f430d449356' (2024-01-10)
→ 'github:nixos/nixpkgs/d7f206b723e42edb09d9d753020a84b3061a79d8' (2024-01-22)
• Updated input 'unstable':
'github:nixos/nixpkgs/317484b1ead87b9c1b8ac5261a8d2dd748a0492d' (2024-01-08)
→ 'github:nixos/nixpkgs/612f97239e2cc474c13c9dafa0df378058c5ad8d' (2024-01-21)
2024-01-23 22:17:45 +01:00
b12f
3ab82b814c
Merge pull request 'fix(mastodon): use working unix sockets for streaming api' ( #98 ) from fix/mastodon-streaming-api into main
...
Reviewed-on: pub-solar/infra#98
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
2024-01-18 15:08:25 +00:00
teutat3s
ffdf55993f
fix(nginx): [warn] could not build optimal proxy_headers_hash
...
nginx: [warn] could not build optimal proxy_headers_hash, you should
increase either proxy_headers_hash_max_size: 2048 or
proxy_headers_hash_bucket_size: 64; ignoring
proxy_headers_hash_bucket_size
2024-01-17 15:16:06 +01:00
teutat3s
94ae6c9302
fix(mastodon): use working unix sockets for streaming api
...
The streaming API is currently unusable because we still pass traffic
to the old unix socket path.
Since c82195d9e8 (diff-157b1ef68573bbec951d6e551513a555e2d1ca7a161a68f1978b11d39a0bef1eR789-R803)
there are multiple unix sockets involved.
2024-01-17 10:32:03 +01:00
teutat3s
ebc34e50bc
Merge pull request 'chore: bump flake inputs' ( #97 ) from chore/bump-flake-inputs into main
...
Reviewed-on: pub-solar/infra#97
2024-01-17 08:58:53 +00:00
teutat3s
67ff6f8656
chore: bump flake inputs
...
• Updated input 'deploy-rs':
'github:serokell/deploy-rs/b709d63debafce9f5645a5ba550c9e0983b3d1f7' (2023-12-20)
→ 'github:serokell/deploy-rs/1776009f1f3fb2b5d236b84d9815f2edee463a9b' (2024-01-10)
• Updated input 'flake-parts':
'github:hercules-ci/flake-parts/34fed993f1674c8d06d58b37ce1e0fe5eebcb9f5' (2023-12-01)
→ 'github:hercules-ci/flake-parts/07f6395285469419cf9d078f59b5b49993198c00' (2024-01-11)
• Updated input 'flake-parts/nixpkgs-lib':
'github:NixOS/nixpkgs/e92039b55bcd58469325ded85d4f58dd5a4eaf58?dir=lib' (2023-11-29)
→ 'github:NixOS/nixpkgs/b0d36bd0a420ecee3bc916c91886caca87c894e9?dir=lib' (2023-12-30)
• Updated input 'home-manager':
'github:nix-community/home-manager/d5824a76bc6bb93d1dce9ebbbcb09a9b6abcc224' (2023-12-23)
→ 'github:nix-community/home-manager/5f0ab0eedc6ede69beb8f45561ffefa54edc6e65' (2024-01-11)
• Updated input 'keycloak-theme-pub-solar':
'git+https://git.pub.solar/pub-solar/keycloak-theme?ref=main&rev=bba54d2f5cd616ff5fded4c95f1e4f99faa2f5d0 ' (2023-12-03)
→ 'git+https://git.pub.solar/pub-solar/keycloak-theme?ref=main&rev=73f1ae5ca6ff8886960cd0eb89d46a9f4af86cb4 ' (2024-01-11)
• Updated input 'nix-darwin':
'github:lnl7/nix-darwin/8a8321271f0835fae2cb195e1137cb381fdbcc8e' (2023-12-27)
→ 'github:lnl7/nix-darwin/0dd382b70c351f528561f71a0a7df82c9d2be9a4' (2024-01-03)
• Updated input 'nixpkgs':
'github:nixos/nixpkgs/d02d818f22c777aa4e854efc3242ec451e5d462a' (2023-12-25)
→ 'github:nixos/nixpkgs/3dc440faeee9e889fe2d1b4d25ad0f430d449356' (2024-01-10)
• Updated input 'unstable':
'github:nixos/nixpkgs/5f64a12a728902226210bf01d25ec6cbb9d9265b' (2023-12-24)
→ 'github:nixos/nixpkgs/317484b1ead87b9c1b8ac5261a8d2dd748a0492d' (2024-01-08)
2024-01-12 00:20:11 +01:00
b12f
28e77fa6ce
Merge pull request 'fix: remove QuickInstantCommons extension' ( #96 ) from fix/mediawiki-recent-changes into main
...
Reviewed-on: pub-solar/infra#96
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
2024-01-08 22:57:41 +00:00
teutat3s
5590b5b1b3
fix: remove QuickInstantCommons extension
...
Docker image updated in 529554b4d1
Seems currently broken:
https://wiki.pub.solar/index.php/Special:RecentChanges with the
extension enabled throws:
Internal error LogicException: Backend with name 'wikimediacommons-backend' already registered.
2024-01-08 21:53:14 +01:00
teutat3s
95f224a9b7
Merge pull request 'feat: update mediawiki to 1.41.0, enable new extension TemplateStyles' ( #95 ) from feat/mediawiki-updates into main
...
Reviewed-on: pub-solar/infra#95
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
2024-01-08 17:12:23 +00:00
teutat3s
8d06c61d2f
fix: remove duplicate wgLogo setting
2024-01-08 17:56:48 +01:00
teutat3s
1d018ade9b
feat: enable InstantCommons
...
https://www.mediawiki.org/wiki/InstantCommons
https://commons.wikimedia.org/wiki/Commons:Reusing_content_outside_Wikimedia/technical#InstantCommons
2024-01-08 17:56:33 +01:00
teutat3s
05f7dbe262
feat: enable wgUseInstantCommons
...
https://commons.wikimedia.org/wiki/Commons:Reusing_content_outside_Wikimedia/technical#InstantCommons
2024-01-08 17:42:57 +01:00
teutat3s
1c05fd39a4
docs: how to update mediawiki wiki.pub.solar
2024-01-08 14:54:25 +01:00
teutat3s
a7f98c2d45
fix: ensure mediawiki logo survives updates
2024-01-08 14:35:43 +01:00
teutat3s
a59e9cb6ea
feat: update mediawiki to 1.41.0, enable extension
...
TemplateStyles
https://gerrit.wikimedia.org/g/mediawiki/core/%2B/REL1_41/RELEASE-NOTES-1.41
2024-01-08 14:14:34 +01:00
b12f
99ff776932
Merge pull request 'feat: shutdown freenode IRC bridge, use shorter IRC aliases,' ( #93 ) from feat/matrix-shutdown-irc-freenode-bridge into main
...
Reviewed-on: pub-solar/infra#93
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
2024-01-08 11:53:45 +00:00
teutat3s
f2217a1409
feat: shutdown freenode IRC bridge, use shorter
...
IRC aliases, use nixos matrix-synapse service config for homeserver port
2024-01-07 20:15:16 +01:00
Hendrik Sokolowski
0fe02a9f73
fix uploads path eventually ( #92 )
...
yeah yeah
Reviewed-on: pub-solar/infra#92
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
Co-authored-by: Hendrik Sokolowski <hensoko@gssws.de>
Co-committed-by: Hendrik Sokolowski <hensoko@gssws.de>
2024-01-07 16:18:43 +00:00
Hendrik Sokolowski
b37ad608a4
update mediawiki config ( #91 )
...
* disable logging to /dev/stderr
* fix upload path
Reviewed-on: pub-solar/infra#91
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
Co-authored-by: Hendrik Sokolowski <hensoko@gssws.de>
Co-committed-by: Hendrik Sokolowski <hensoko@gssws.de>
2024-01-07 15:44:21 +00:00
teutat3s
5e3a4b159f
Merge pull request 'docs: initial docs for ci' ( #90 ) from docs/ci into main
...
Reviewed-on: pub-solar/infra#90
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
2024-01-07 15:26:32 +00:00
b12f
737f6ec35d
Merge pull request 'docs: add privacy hardening docs' ( #89 ) from docs/privacy-hardening into main
...
Reviewed-on: pub-solar/infra#89
Reviewed-by: teutat3s <teutat3s@noreply.git.pub.solar>
2024-01-07 14:51:18 +00:00
teutat3s
2da3aecfbe
docs: initial Forgejo Actions docs
2024-01-07 15:43:40 +01:00
teutat3s
f993c0a94a
docs: init drone CI docs
2024-01-07 15:43:26 +01:00