pub-solar/infra
6
1
Fork 3
Code Issues 24 Pull requests 10 Actions Packages Projects 1 Releases Wiki Activity
608 commits 14 branches 0 tags 3.5 MiB
Commit graph

608 commits

This branch
This branch
All branches
Author SHA1 Message Date
b12f 62e1e0cddc
Merge pull request 'refactor: change file structure to use modules dir' (#41) from refactor/file-structure into main 
Reviewed-on: #41
Reviewed-by: teutat3s <teutat3s@noreply.git.pub.solar>
 2023-11-06 12:11:46 +00:00
Benjamin Bädorf e8ad662631
refactor: change file structure to use modules dir 
This commit changes the file structure around, so that we have the
following parts:

`/modules` contains reusable logic blocks for hosts.
`/hosts` contains host configurations.
`/lib` contains nix library functions.
`/overlays` contains overlay files.
`/public-keys` contains all information regarding public keys.

This change reduces the complexity of flake.nix, instead delegating this
out to the `default.nix` files in the above directories.
 2023-11-06 13:11:30 +01:00
b12f 65a660117a
Merge pull request 'feat: add declarative root ssh key on nachtigall' (#46) from feat/declarative-root-ssh-nachtigall into main 
Reviewed-on: #46
Reviewed-by: teutat3s <teutat3s@noreply.git.pub.solar>
 2023-11-05 20:54:39 +00:00
Benjamin Bädorf d011cb04e1
feat: add declarative root ssh key on nachtigall 2023-11-05 19:35:37 +01:00
Akshay Mankar a9beccc31f
Merge pull request 'fix: keep forgejo email addresses private by default' (#45) from feat/hide-forgejo-email-by-default into main 
Reviewed-on: #45
Reviewed-by: Akshay Mankar <axeman@noreply.git.pub.solar>
 2023-11-05 14:08:44 +00:00
Benjamin Bädorf 633549159e
fix: keep forgejo email addresses private by default 2023-11-05 15:06:30 +01:00
b12f 90b0fb53e6
Merge pull request 'fix: enable websockets for collabora' (#43) from fix/collabora-websockets into main 
Reviewed-on: #43
Reviewed-by: b12f <hello@benjaminbaedorf.eu>
 2023-11-03 17:12:45 +00:00
b12f b8fb9fd867
Merge pull request 'fix: keycloak nginx buffer size' (#44) from fix/keycloak-nginx-buffer-size into main 
Reviewed-on: #44
Reviewed-by: b12f <hello@benjaminbaedorf.eu>
 2023-11-03 17:12:24 +00:00
teutat3s b9e18a167c
fix: keycloak nginx buffer size 
Tune according to
https://www.getpagespeed.com/server-setup/nginx/tuning-proxy_buffer_size-in-nginx
 2023-11-03 13:54:11 +01:00
teutat3s cd1fa3daef
fix: enable websockets for collabora 
Adopt upstream recommended nginx config
https://sdk.collaboraonline.com/docs/installation/Proxy_settings.html#reverse-proxy-with-nginx-webserver
 2023-11-03 12:52:32 +01:00
teutat3s 7a7e4ba4b4
Merge pull request 'fix: tune nextcloud / php-fpm pool settings' (#42) from fix/nextcloud-tuning into main 
Reviewed-on: #42
Reviewed-by: b12f <hello@benjaminbaedorf.eu>
 2023-10-31 22:35:37 +00:00
teutat3s 9fc42c44a8
fix: tune nextcloud / php-fpm pool settings 
Calculated on https://spot13.com/pmcalculator/
with 4GiB RAM available, average php-fpm process size 80MiB

Original settings are
pm = dynamic
pm.max_children = 32
pm.max_requests = 500
pm.max_spare_servers = 4
pm.min_spare_servers = 2
pm.start_servers = 2
 2023-10-31 21:24:27 +01:00
teutat3s 92996fb0c0
Merge pull request 'fix: Searx is running' (#39) from fix/searx into main 
Reviewed-on: #39
Reviewed-by: teutat3s <teutates@mailbox.org>
 2023-10-29 22:51:58 +00:00
Benjamin Bädorf cb26fa3d00
chore: disable uwsgi logging on searx 2023-10-29 23:51:28 +01:00
Benjamin Bädorf 1db27813dd
fix: Searx is running 2023-10-29 23:49:45 +01:00
teutat3s a7b3490c15
Merge pull request 'fix: owncast websockets, forgejo max body size in nginx' (#38) from fix-owncast into main 
Reviewed-on: #38
Reviewed-by: b12f <hello@benjaminbaedorf.eu>
 2023-10-29 22:12:21 +00:00
teutat3s 6f9df4d6c3
docs: use https URL for git checkout 2023-10-29 23:04:58 +01:00
teutat3s 505602bd73
fix: set max body size to 1G for forgejo 2023-10-29 23:04:33 +01:00
teutat3s 9898e35208
fix: enable websockets in nginx for owncast 2023-10-29 23:04:11 +01:00
teutat3s 5f32669fe8
Merge pull request 'feat: searx' (#35) from feat/searx into main 
Reviewed-on: pub-solar/infra-new#35
Reviewed-by: teutat3s <teutates@mailbox.org>
 2023-10-29 21:16:34 +00:00
Benjamin Bädorf edc76ebb1b
chore: add search.pub.solar dns entry 2023-10-29 22:14:13 +01:00
teutat3s e28cedb274
fix: owncast missing import, enable websockets 2023-10-29 22:10:29 +01:00
Benjamin Bädorf 8e5f5d425c
fix: add searx secret key 2023-10-29 20:57:52 +01:00
Benjamin Bädorf fe6edd54b1
feat: searx 2023-10-29 20:57:26 +01:00
b12f 4c874dae4a
Merge pull request 'fix: postgresql service should always wait for ZFS mount' (#37) from fix/postgresql-wait-for-mount into main 
Reviewed-on: pub-solar/infra-new#37
Reviewed-by: b12f <hello@benjaminbaedorf.eu>
 2023-10-29 19:56:14 +00:00
teutat3s 94c7b6d7db
fix: postgresql service should always wait for ZFS mount 2023-10-29 20:53:16 +01:00
teutat3s 67c3be1c43
Merge pull request 'fix: small nextcloud fixes' (#36) from feat/nextcloud into main 
Reviewed-on: pub-solar/infra-new#36
Reviewed-by: teutat3s <teutates@mailbox.org>
 2023-10-29 19:52:16 +00:00
Benjamin Bädorf f013c6e3f8
feat: make docker run on zfs, add unlocking docs 2023-10-29 19:39:48 +00:00
Benjamin Bädorf a10d77dcf6
fix: increase php strings cache size for nextcloud 
https://github.com/nextcloud/server/issues/31223
 2023-10-29 19:39:48 +00:00
Benjamin Bädorf 13d46c22c5
fix: nextcloud connections to other applications 2023-10-29 19:39:48 +00:00
Benjamin Bädorf 2c2d77456e
chore: update nextcloud to v27 2023-10-29 19:39:48 +00:00
Benjamin Bädorf 7b4b79f5d4
fix: add host header to collabora nginx proxy_pass 2023-10-29 19:39:48 +00:00
Benjamin Bädorf 8ad19f72fc
fix: small nextcloud fixes 
* Add admin pass
* Increase max post size
* Fix secret owner
 2023-10-29 19:39:48 +00:00
b12f 90c6108b8f
Merge pull request 'feat: terraform DNS for namecheap' (#29) from feat/terraform-dns into main 
Reviewed-on: pub-solar/infra-new#29
Reviewed-by: Akshay Mankar <axeman@noreply.git.pub.solar>
 2023-10-29 19:39:35 +00:00
Benjamin Bädorf 7a3b9a8cef
fix: update collabora dns to nachtigall 2023-10-29 19:39:22 +00:00
Benjamin Bädorf c718eff9d6
feat: move cloud dns to nachtigall 2023-10-29 19:39:22 +00:00
teutat3s bafa56ea57
fix: DNS terraform @ ALIAS, CNAME does not work for the root domain 
And final dot to nachtigall hostnames to make NameCheap API happy
 2023-10-29 19:39:22 +00:00
teutat3s 20277f23ff
feat: add terraform DNS docs 2023-10-29 19:39:22 +00:00
Akshay Mankar 9cf2ba9d67
devshell: Add terraform 1.12 2023-10-29 19:39:22 +00:00
teutat3s cc24383f23
fix: add account and url to manta remote state 
backend, only TRITON_KEY_ID required in env now.
Also add .terraform to gitignore and add terraform lock file
 2023-10-29 19:39:22 +00:00
teutat3s 0cc3926aac
feat: add additional test DNS entries, switch stream 
to nachtigall
 2023-10-29 19:39:22 +00:00
teutat3s 73f9d84b31
feat: terraform DNS for namecheap initial commit 2023-10-29 19:39:22 +00:00
b12f f55820414e
Merge pull request 'feat: owncast' (#30) from feat/owncast into main 
Reviewed-on: pub-solar/infra-new#30
Reviewed-by: b12f <hello@benjaminbaedorf.eu>
 2023-10-29 15:40:58 +00:00
teutat3s 4897317f4f
feat: add more nginx recommended settings 2023-10-29 15:40:35 +00:00
teutat3s f48782e987
feat: owncast initial commit 
https://owncast.online/
 2023-10-29 15:40:35 +00:00
teutat3s b61eb12325
Merge pull request 'docs: init docs' (#28) from docs/init-docs into main 
Reviewed-on: pub-solar/infra-new#28
Reviewed-by: teutat3s <teutates@mailbox.org>
 2023-10-29 12:55:27 +00:00
b12f b47bfc13d3
Merge pull request 'feat: nextcloud' (#6) from feat/nextcloud into main 
Reviewed-on: pub-solar/infra-new#6
Reviewed-by: hensoko <hensoko@gssws.de>
 2023-10-29 12:53:21 +00:00
Benjamin Bädorf 4d50282ab3
Merge branch 'feat/nextcloud' of git.pub.solar:pub-solar/infra-new into feat/nextcloud 2023-10-29 13:52:50 +01:00
Benjamin Bädorf 42879bde05
fix: don't set maintenance mode in nix config 2023-10-29 13:52:11 +01:00
Benjamin Bädorf 569ff3ee03
fix: fix php package name 2023-10-29 12:49:36 +00:00