Commit graph

637 commits

Author SHA1 Message Date
Akshay Mankar 0fa32ec92f
Merge pull request 'Mailman fixes' (#32) from feat/mailman into main
Reviewed-on: pub-solar/infra-new#32
Reviewed-by: teutat3s <teutates@mailbox.org>
Reviewed-by: Akshay Mankar <axeman@noreply.git.pub.solar>
2023-10-29 12:38:24 +00:00
teutat3s 5aa4f8b947
fix: mailman web static dir permissions 2023-10-29 12:38:12 +00:00
teutat3s e859cbbc10
fix: reduce forgejo logs to warning level 2023-10-29 12:38:12 +00:00
Benjamin Bädorf f1fc31eea7
fix: update mailman nginx https settings 2023-10-29 12:38:12 +00:00
Benjamin Bädorf b7d0e23703
refactor: add nginx to mastodon group in mastodon module 2023-10-29 12:38:12 +00:00
Akshay Mankar 7bbccd855f
Merge pull request 'fix: use 127.0.0.1 IPv4 instead of localhost to avoid errors' (#31) from fix/localhost-ipv4-ipv6 into main
Reviewed-on: pub-solar/infra-new#31
Reviewed-by: Akshay Mankar <axeman@noreply.git.pub.solar>
2023-10-29 11:47:47 +00:00
teutat3s e9ef6be915
fix: use 127.0.0.1 IPv4 instead of localhost to avoid errors
with localhost resolving to IPv6
2023-10-29 12:30:36 +01:00
teutat3s f168a5393f
Merge pull request 'nachtigall: Configure matrix-synapse with telegram integration' (#7) from feat/matrix into main
Reviewed-on: pub-solar/infra-new#7
Reviewed-by: teutat3s <teutates@mailbox.org>
2023-10-29 00:56:00 +00:00
teutat3s 688f9279d1
feat: move matrix related files into subdir 2023-10-29 02:55:35 +02:00
Benjamin Bädorf 531c3554ef
docs: init docs 2023-10-29 00:52:54 +00:00
b12f a601ae4606
Merge pull request 'feat: mailman' (#27) from feat/mailman into main
Reviewed-on: pub-solar/infra-new#27
Reviewed-by: b12f <hello@benjaminbaedorf.eu>
2023-10-29 00:47:09 +00:00
Benjamin Bädorf b8431f595e
nachtigall: Configure matrix-synapse with telegram integration 2023-10-29 01:37:44 +02:00
teutat3s 2916ca4cd3
feat: mailman initial commit 2023-10-29 00:31:09 +02:00
Akshay Mankar 4d0ddf6fb1
remove unnecessary spaces 2023-10-28 23:57:20 +02:00
b12f 15d6d0d64e
Merge pull request 'feat: add forgejo' (#25) from feat/forgejo into main
Reviewed-on: pub-solar/infra-new#25
Reviewed-by: teutat3s <teutates@mailbox.org>
2023-10-28 21:56:30 +00:00
Benjamin Bädorf b311b513d0
fix: gitea secrets 2023-10-28 23:55:39 +02:00
Benjamin Bädorf cda39f5e2a
feat: add forgejo 2023-10-28 23:36:04 +02:00
b12f f49eb67d67
Merge pull request 'feat/keycloak' (#24) from feat/keycloak into main
Reviewed-on: pub-solar/infra-new#24
Reviewed-by: teutat3s <teutates@mailbox.org>
2023-10-28 23:35:07 +02:00
teutat3s 620c1715b4
fix: import keycloak module 2023-10-28 23:33:07 +02:00
Benjamin Bädorf 4f7b30c2c3
fix: use flake.inputs instead of inputs directly 2023-10-28 23:18:44 +02:00
Benjamin Bädorf 806e9dde34
Merge branch 'feat/keycloak' of git.pub.solar:pub-solar/infra-new into feat/keycloak 2023-10-28 23:08:23 +02:00
Benjamin Bädorf 16a5ee93cc
fix: enable SSL for keycloak 2023-10-28 23:06:35 +02:00
Benjamin Bädorf ce24876f3d
feat: add keycloak secrets and virtualhost 2023-10-28 23:06:35 +02:00
Benjamin Bädorf 5139cbe2db
feat: init keycloak 2023-10-28 23:06:35 +02:00
b12f a02d1ee5b2
Merge pull request 'fix: nginx mastodon WEB_DOMAIN LOCAL_DOMAIN' (#26) from mastodon-fix-web-domain into main
Reviewed-on: pub-solar/infra-new#26
Reviewed-by: b12f <hello@benjaminbaedorf.eu>
2023-10-28 23:04:44 +02:00
teutat3s 347d175a8a
feat: add mastodon redirects for OIDC using keycloak 2023-10-28 23:00:07 +02:00
teutat3s 310723a18c
fix: nginx tls connection to upstream 2023-10-28 22:52:57 +02:00
teutat3s 401baf5900
fix: nginx files.pub.solar proxy_pass host header 2023-10-28 22:15:40 +02:00
teutat3s e9fc2dabbe
fix: enable recommendedProxySettings for nginx
https://search.nixos.org/options?channel=unstable&from=0&size=50&sort=relevance&type=packages&query=recommendedProxySettings
2023-10-28 21:42:01 +02:00
Benjamin Bädorf 8da5f0b48a
fix: enable SSL for keycloak 2023-10-28 21:34:45 +02:00
teutat3s 8b09f19add
fix: nginx user needs access to mastodon's unix socket 2023-10-28 21:30:37 +02:00
Benjamin Bädorf 8e07034aad
feat: add keycloak secrets and virtualhost 2023-10-28 21:28:01 +02:00
Benjamin Bädorf d27328fd1f
feat: init keycloak 2023-10-28 21:23:07 +02:00
teutat3s 6f4741fae0
fix: missing nginx proxy cache zone 2023-10-28 21:12:33 +02:00
teutat3s 1983edcc5b
fix: add nginx virtualHost for mastodon
We use pub.solar as our LOCAL_DOMAIN and mastodon.pub.solar as our
WEB_DOMAIN. The NixOS module does not support this special use case.
See: https://github.com/NixOS/nixpkgs/issues/202399
2023-10-28 18:56:22 +02:00
teutat3s b718a29d3a
Merge pull request 'nginx: files.pub.solar' (#23) from feature/nginx-mastodon-files into main
Reviewed-on: pub-solar/infra-new#23
Reviewed-by: hensoko <hensoko@gssws.de>
2023-10-28 18:24:40 +02:00
teutat3s d4ab1756b3
fix: files.pub.solar force TLS, remove default site 2023-10-28 18:24:14 +02:00
Hendrik Sokolowski 1d68ed73c3
add nginx virtual host for files.pub.solar 2023-10-28 18:24:13 +02:00
teutat3s 8a0ac64eac
Merge pull request 'fix: nginx config for pub.solar website' (#22) from fix-nginx into main
Reviewed-on: pub-solar/infra-new#22
Reviewed-by: hensoko <hensoko@gssws.de>
2023-10-28 18:22:40 +02:00
teutat3s f804de372c
Merge pull request 'feat: mastodon + agenix secrets' (#13) from feat-mastodon into main
Reviewed-on: pub-solar/infra-new#13
Reviewed-by: hensoko <hensoko@gssws.de>
Reviewed-by: Akshay Mankar <axeman@noreply.git.pub.solar>
2023-10-28 18:22:31 +02:00
teutat3s c162d46094
fix: address review comments 2023-10-28 18:18:06 +02:00
teutat3s 1e19efe20e
docs: add comment about streaming processes 2023-10-28 18:07:29 +02:00
teutat3s 5ffc4f67ff
fix: nginx config for pub.solar website 2023-10-28 17:50:37 +02:00
b12f a35969e8e4
Merge pull request 'fix: ensure directory for website static files gets created' (#21) from nginx-www-website-path into main
Reviewed-on: pub-solar/infra-new#21
Reviewed-by: hensoko <hensoko@gssws.de>
Reviewed-by: b12f <hello@benjaminbaedorf.eu>
2023-10-28 17:03:44 +02:00
teutat3s 6408288049
fix: ensure directory for website static files gets created 2023-10-28 17:03:22 +02:00
teutat3s 0944b2d11c
feat: enable nginx for mastodon
https://github.com/NixOS/nixpkgs/blob/nixos-unstable/nixos/modules/services/web-apps/mastodon.nix#L762-L785
2023-10-28 17:02:03 +02:00
teutat3s e43cb021ce
feat: use mastodon version 4.2.1 from our fork
This still needs updates in the NixOS module to account for the changes
in https://github.com/mastodon/mastodon/pull/24655 that change how
multiple streaming processes run. Hopefully this is fine for a single
streaming process though.

https://github.com/NixOS/nixpkgs/pull/251950
https://github.com/teutat3s/nixpkgs/tree/mastodon-4.2.1
2023-10-28 16:57:24 +02:00
teutat3s 65689ae524
chore: remove unused nachtigall user keys 2023-10-28 16:57:24 +02:00
teutat3s 2135a5e841
chore: move mastodon + postgres into apps directory 2023-10-28 16:57:23 +02:00
hensoko 0f527e3f41
Merge pull request 'feature/pub-solar-website' (#20) from feature/pub-solar-website into main
Reviewed-on: pub-solar/infra-new#20
2023-10-28 16:56:49 +02:00