pub.solar infrastructure, mostly in nix and terraform
Find a file
teutat3s 10ed117dfe
Merge pull request 'loki, prometheus, promtail should connect via wireguard' (#200) from loki-prometheus-via-wireguard into main
Reviewed-on: #200
Reviewed-by: Hendrik Sokolowski <hensoko@noreply.git.pub.solar>
Reviewed-by: b12f <b12f@noreply.git.pub.solar>
2024-06-05 00:04:40 +00:00
.forgejo/workflows ci: update results path to prevent garbage collection 2024-05-30 19:04:40 +02:00
docs docs: update unlocking ZFS pool 2024-06-03 12:30:08 +02:00
hosts metronom: use wireguard IP for SSH, lock down SSH 2024-05-31 16:52:04 +02:00
lib docs: add metronom to deploy docs, style: format 2024-05-31 16:52:03 +02:00
logins logins: add ryzensun to teutat3s logins 2024-05-09 01:58:15 +02:00
modules nginx: use square brackets for IPv6 address 2024-06-05 01:59:54 +02:00
overlays style: run treefmt 2024-05-08 22:57:07 +02:00
secrets loki, promtail, prometheus: remove basic auth, use 2024-06-01 16:51:14 +02:00
terraform dns: add internal *.wg.pub.solar VPN records 2024-06-01 16:51:49 +02:00
tests style: run treefmt 2024-05-08 22:57:07 +02:00
.editorconfig Add official formatter to flake 2024-04-28 17:54:09 +02:00
.envrc Add dev shell 2023-10-28 12:38:14 +02:00
.git-blame-ignore-revs style: update git-blame-ignore-revs 2024-05-08 23:14:34 +02:00
.gitignore chore: add results to gitignore 2024-05-06 19:39:30 +02:00
CONTRIBUTING.md docs: add CONTRIBUTING 2024-05-08 22:29:11 +02:00
flake.lock initial work on mail 2024-05-31 16:52:01 +02:00
flake.nix metronom: use wireguard IP for SSH, lock down SSH 2024-05-31 16:52:04 +02:00
LICENSE.md Add AGPL LICENSE 2024-05-08 22:28:45 +02:00
README.md docs: add CONTRIBUTING 2024-05-08 22:29:11 +02:00
treefmt.toml style: check formatting using nixpkgs standard and 2024-05-08 22:56:28 +02:00

The pub.solar infrastructure

This repository contains almost all of the configuration for the whole pub.solar infrastructure. Our goal is to have everything, from host configurations to Terraform DNS in this repository.

The architecture we are working towards is a vast simplification of what it was before: one dedicated Hetzner server running NixOS with all services. Offsite backups go to several different locations with restic.

Contributing

If you'd like to contribute, it makes sense to talk to the crew on Matrix via #hakken. We can help figuring out how things work and can make sure your ideas fit the pub.solar philosophy. Of course popping a pull request is always celebrated.

To start, check our contributing guide.