infra

Author	SHA1	Message	Date
teutat3s	f911ac7bad	fix(matrix-synapse): needs to defince oidc extras after NixOS module updates https://nixos.org/manual/nixos/stable/release-notes#sec-release-23.11-highlights	2023-12-02 15:35:02 +01:00
teutat3s	904a73b51d	fix(mautrix-telegram): should not try to update config See: https://github.com/mautrix/python/pull/152	2023-12-02 15:33:58 +01:00
teutat3s	35a4ac5619	Merge pull request 'feat: NixOS 23.11 Tapir' (#74 ) from feat/nixos-23.11 into main Reviewed-on: #74 Reviewed-by: Akshay Mankar <axeman@noreply.git.pub.solar>	2023-12-02 12:53:18 +00:00
teutat3s	7cf6f51516	fix: nextcloud interned strings buffer defaults to 23 now All checks were successful Flake checks / Check (pull_request) Successful in 22m24s Details	2023-12-02 11:58:48 +01:00
teutat3s	2ee4bc5682	feat: NixOS 23.11 Tapir https://nixos.org/manual/nixos/stable/release-notes#sec-release-23.11-highlights Track nixos-23.11 branch, remove unstable overlays This will update our services to the following versions: nextcloud: 27.1.3 -> 27.1.4 forgejo: 1.20.5-0 -> 1.20.6-0 keycloak: 21.1.2 -> 22.0.5 matrix-synapse: 1.95.1 -> 1.97.0 Internal: postgresql: 14.9 -> 15.5 Flake inputs diff: • Updated input 'home-manager': 'github:nix-community/home-manager/28535c3a34d79071f2ccb68671971ce0c0984d7e' (2023-11-19) → 'github:nix-community/home-manager/aeb2232d7a32530d3448318790534d196bf9427a' (2023-11-24) • Updated input 'nixpkgs': 'github:nixos/nixpkgs/d2332963662edffacfddfad59ff4f709dde80ffe' (2023-11-30) → 'github:nixos/nixpkgs/5de0b32be6e85dc1a9404c75131316e4ffbc634c' (2023-12-01)	2023-12-02 11:13:56 +01:00
Benjamin Bädorf	1d3934693b	nextcloud: add skeleton directory that adds a good readme for new users All checks were successful Flake checks / Check (pull_request) Successful in 16m18s Details Co-authored-by: teutat3s <teutates@mailbox.org>	2023-12-02 11:11:16 +01:00
Akshay Mankar	2cbc46c154	matrix: Move the whole email section into the secret All checks were successful Flake checks / Check (pull_request) Successful in 15m27s Details Matrix doesn't deep merge the secrets, so this is necessary	2023-11-25 23:37:58 +01:00
teutat3s	9f633582d1	feat: add well-known for matrix support contacts All checks were successful Flake checks / Check (pull_request) Successful in 16m52s Details	2023-11-25 14:28:23 +01:00
Akshay Mankar	8a2d946206	matrix: Use production domains All checks were successful Flake checks / Check (pull_request) Successful in 18m59s Details	2023-11-19 18:17:58 +01:00
Akshay Mankar	35afcd9682	matrix: Make public rooms discoverable over federation	2023-11-19 18:12:08 +01:00
Akshay Mankar	fe284a20d9	matrix: Fix typo	2023-11-19 18:12:08 +01:00
Akshay Mankar	f0c3178b4d	matrix: Use greenbaum cloud for sending emails	2023-11-19 18:12:07 +01:00
Akshay Mankar	7fcefe4b85	matrix: Use chat.pub.solar as invite_client_location	2023-11-19 18:12:07 +01:00
Akshay Mankar	8a2f83c96a	nachtigall: Deploy coturn and configure matrix to use it All checks were successful Flake checks / Check (pull_request) Successful in 19m20s Details	2023-11-19 18:08:15 +01:00
Akshay Mankar	a2e7adbc79	element: Add themes All checks were successful Flake checks / Check (pull_request) Successful in 22m49s Details	2023-11-19 16:03:24 +01:00
Akshay Mankar	e12b3d5c40	matrix: Import config for IRC All checks were successful Flake checks / Check (pull_request) Successful in 18m13s Details	2023-11-19 14:53:14 +01:00
teutat3s	7037abb8f3	fix: forgejo needs module from nixos-unstable All checks were successful Flake checks / Check (pull_request) Successful in 17m50s Details for SSH access	2023-11-19 02:23:34 +01:00
teutat3s	8bc731da6e	Merge pull request 'feat: backups to hetzner storagebox' (#66 ) from feat/backups-to-storagebox into main Reviewed-on: #66 Reviewed-by: b12f <b12f@noreply.git.pub.solar>	2023-11-18 22:13:17 +00:00
teutat3s	40ed46b05b	Merge pull request 'feat: pull in forgejo + mastodon updates early' (#64 ) from feat/early-forgejo-mastodon-updates into main Reviewed-on: #64 Reviewed-by: b12f <b12f@noreply.git.pub.solar>	2023-11-18 22:13:06 +00:00
teutat3s	e41127593b	Merge pull request 'fix(nextcloud): push server is not a trusted proxy' (#62 ) from fix/nextcloud-trusted-proxies into main Reviewed-on: #62 Reviewed-by: b12f <b12f@noreply.git.pub.solar>	2023-11-18 22:12:50 +00:00
teutat3s	a461fc72f6	feat(backups): start backups in 5 minute interval All checks were successful Flake checks / Check (pull_request) Successful in 19m42s Details	2023-11-18 22:41:48 +01:00
teutat3s	2195b7ed0a	feat: backups to hetzner storagebox All checks were successful Flake checks / Check (pull_request) Successful in 19m22s Details	2023-11-18 22:30:23 +01:00
teutat3s	37176a52ce	feat: mastodon module updates from nixos-unstable All checks were successful Flake checks / Check (pull_request) Successful in 18m34s Details Pull in changes from https://github.com/NixOS/nixpkgs/pull/251950 early	2023-11-18 18:46:23 +01:00
teutat3s	d26b3c12f4	fix(nextcloud): push server is not a trusted proxy All checks were successful Flake checks / Check (pull_request) Successful in 17m11s Details The nextcloud push service would fail with the following error message when deploying a new version: please add '2a01:4f8:172:1c25::1' to the list of trusted proxies or configure any existing reverse proxy to forward the 'x-forwarded-for' send by the push server The following x-forwarded-for header was received by Nextcloud: 1.2.3.4 The following trusted proxies are currently configured: "127.0.0.1", "::1" https://docs.nextcloud.com/server/stable/admin_manual/configuration_server/reverse_proxy_configuration.html#defining-trusted-proxies	2023-11-18 18:12:38 +01:00
teutat3s	c88a0608f6	fix: matrix delegation via well-known for test domain All checks were successful Flake checks / Check (pull_request) Successful in 17m14s Details We use pub.solar as our server_name and matrix.pub.solar:8448 for matrix federation traffic. The well-known record served at https://pub.solar/.well-known/matrix/server should point to matrix.pub.solar:8448. The same is true for test.pub.solar and matrix.test.pub.solar:8448. https://matrix-org.github.io/synapse/latest/delegate.html	2023-11-18 17:46:56 +01:00
Benjamin Bädorf	33e003d4b4	feat: add wellknown for matrix test domain	2023-11-18 17:32:56 +01:00
teutat3s	f2364b314a	fix: keycloak secret file permissions	2023-11-15 21:43:44 +01:00
b12f	f5185e5c15	feat: add mediawiki Some checks reported warnings Flake checks / Check (pull_request) Has been cancelled Details Co-authored-by: @teutat3s <teutates@mailbox.org>	2023-11-15 21:40:29 +01:00
teutat3s	25549fdc53	fix: link to our statutes / satzung All checks were successful Flake checks / Check (pull_request) Successful in 16m19s Details	2023-11-15 18:54:47 +00:00
teutat3s	9c1d19d49f	nachtigall: move SSH private key from user to host	2023-11-15 18:54:32 +00:00
teutat3s	43512ae6e7	forgejo-actions-runner: use Node.js docker images Regenerate auth token	2023-11-15 18:54:32 +00:00
teutat3s	1bd7e5c0e7	docs: clean up	2023-11-15 18:54:32 +00:00
teutat3s	7be3567e6d	flora-6: refactor to use flake.parts	2023-11-15 18:54:32 +00:00
teutat3s	e041f05505	feat: advertise sliding sync support to matrix clients All checks were successful Flake checks / Check (push) Successful in 17m48s Details	2023-11-10 19:02:13 +01:00
Benjamin Bädorf	b085c2e2b2	feat: add all matrix well-known data to nginx Some checks failed Flake checks / Check (push) Failing after 13s Details	2023-11-07 15:19:55 +01:00
Benjamin Bädorf	6fa03994b1	fix: add matrix well-known for pub.solar	2023-11-07 15:12:24 +01:00
Benjamin Bädorf	d69e0350ef	fix: use clean new directory for backups on droppie Some checks failed Flake checks / Check (push) Failing after 13s Details	2023-11-06 22:59:17 +00:00
Benjamin Bädorf	07df547f33	fix: specify sftp storage for droppie restic backups	2023-11-06 22:59:17 +00:00
teutat3s	428fcab009	fix: store forgejo sessions in DB Some checks failed Flake checks / Check (push) Failing after 14s Details See: https://docs.gitea.com/administration/config-cheat-sheet#session-session	2023-11-06 22:34:51 +01:00
Benjamin Bädorf	c8233cf6a7	chore: simplify sudo command for backups	2023-11-06 22:22:36 +01:00
Benjamin Bädorf	052d752d27	feat: add settings_local.json to mailman-web backup	2023-11-06 22:20:29 +01:00
Benjamin Bädorf	841757517f	refactor: small backup refactoring	2023-11-06 21:07:24 +00:00
Benjamin Bädorf	42fbde31e5	feat: droppie backups for all nachtigall services	2023-11-06 21:07:24 +00:00
Benjamin Bädorf	e7c70c6cd0	fix: nachtigall root ssh key config fixes	2023-11-06 21:07:24 +00:00
teutat3s	6a96345760	feat: enable gitea actions in forgejo See: https://docs.gitea.com/usage/actions/quickstart	2023-11-06 22:06:16 +01:00
Benjamin Bädorf	e8ad662631	refactor: change file structure to use modules dir This commit changes the file structure around, so that we have the following parts: `/modules` contains reusable logic blocks for hosts. `/hosts` contains host configurations. `/lib` contains nix library functions. `/overlays` contains overlay files. `/public-keys` contains all information regarding public keys. This change reduces the complexity of flake.nix, instead delegating this out to the `default.nix` files in the above directories.	2023-11-06 13:11:30 +01:00
Benjamin Bädorf	d011cb04e1	feat: add declarative root ssh key on nachtigall	2023-11-05 19:35:37 +01:00
Benjamin Bädorf	633549159e	fix: keep forgejo email addresses private by default	2023-11-05 15:06:30 +01:00
b12f	90b0fb53e6	Merge pull request 'fix: enable websockets for collabora' (#43 ) from fix/collabora-websockets into main Reviewed-on: #43 Reviewed-by: b12f <hello@benjaminbaedorf.eu>	2023-11-03 17:12:45 +00:00
teutat3s	b9e18a167c	fix: keycloak nginx buffer size Tune according to https://www.getpagespeed.com/server-setup/nginx/tuning-proxy_buffer_size-in-nginx	2023-11-03 13:54:11 +01:00

1 2 3

142 commits