Commit graph

134 commits

Author SHA1 Message Date
0f4957d860 tell parsons it's called parsons
(i guess this was lost along with hexchen's nix deploy module?)
2022-11-26 00:08:53 +01:00
eb13717e28 fix acme-fixperms 2022-11-14 18:14:22 +01:00
c09337c973 shoehorn nix-hexchen-style config into flakes
this replaces niv with nix flakes, attempting to preserve the old
structure as much as possible. Notable caveats:
 - I'm not sure if flake inputs expose version information anywhere, so
   the version in pkgs/mattermost/default.nix is now hardcoded.
   Confusingly, this appears to trigger a rebuild. Maybe I've missed something.
 - a lot of the old-style host.nix & deploy.nix machinery in nix-hexchen
   does not work with flakes, and their newer replacements are not exposed
   by upstream; I've put basic imitations of the relevant parts in this repo
 - (in particular, directories in hosts/ won't become deployable configs
   automatically)
 - parts of the code are now probably more complicated than they'd have to be
 - old variables names were preserved; confusingly, this means the flake
   inputs are still called "sources"
2022-11-13 22:45:50 +01:00
4bd1430f0a remove services/syncthing.nix
(apparently not used anymore)
2022-11-11 16:30:38 +01:00
4969444bc4 remove nixda 2022-11-11 16:30:38 +01:00
1291d3c9f6 move nextcloud.nix to a sane location 2022-11-11 16:30:38 +01:00
cde949ac5b remove workadventure 2022-11-11 16:30:38 +01:00
77d7625315
remove gitlab 2022-09-24 17:29:42 +02:00
schweby
65ec0779b7
init basic untested config 2022-07-27 23:26:13 +02:00
hexchen
27cc65fb14 feat: new SSO!!!! 🎉 2022-04-30 20:43:12 +00:00
032c49c375
comment out services/workadventure
(we're not using it and it's eating build times, so I've disabled it for
now)
2022-02-17 19:48:45 +01:00
1aebabe8a0 parsons/restics: s3CredentialsFile is deprecated
This is untested, but the documentation on the s3CredentialsFile option
seems to suggest this should be correct.
2022-02-01 14:03:40 +01:00
schweby
8c527ea552 enable ssh for stream user 2021-12-30 22:30:25 +01:00
6563e0ccfa add services/workadventure for true-love event 2021-11-09 17:02:43 +00:00
schweby
144bd0d5f5 remove services/unifi
no longer needed
2021-11-03 15:36:03 +01:00
56cbb7601b services/vaultwarden: init vaultwarden 2021-09-28 11:13:25 +00:00
hexchen
a113c05025 pkgs: init bitfocus companion for streamdeck 2021-08-28 14:31:14 +00:00
System administrator
20398cf2c8 stuff 2021-08-25 16:23:34 +00:00
hexchen
fd9e8941c7 get rid of hainich. migration done. 2021-08-23 19:32:02 +00:00
schweby
95a0e9f04a parsons: init lantifa wiki 2021-08-23 19:32:02 +00:00
hexchen
41acbdd3e0 parsons: deploy unifi controller 2021-08-23 19:32:02 +00:00
hexchen
35cd963f8c services/gitlab-runner: init on parsons
also disable ci for hainich
2021-08-23 19:32:02 +00:00
hexchen
275d3a16f0 parsons: init lxc 2021-08-23 19:32:02 +00:00
hexchen
373926e33b services/gitlab: init on parsons 2021-08-23 19:32:02 +00:00
schweby
7881b444ba parsons: init syncthing 2021-08-23 19:32:02 +00:00
hexchen
cdeb52f808 services/mail: migrate to parsons 2021-08-23 19:32:02 +00:00
schweby
f5579bc98e parsons: config nginx 2021-08-23 19:32:02 +00:00
hexchen
a5063ae960 parsons: small fixes 2021-08-23 19:32:02 +00:00
schweby
632bf21200 parsons: fix hegedocs 2021-08-23 19:32:02 +00:00
schweby
76c9b07d56 parsons: init hegedocs 2021-08-23 19:32:02 +00:00
hexchen
172d0869b3 services/murmur: migrate to parsons 2021-08-23 19:32:02 +00:00
hexchen
4b11dbf1d4 services/thelounge: move to parsons 2021-08-23 19:32:02 +00:00
84ac81435e hainich: hacky version of thelounge as webchat
Intended for KontraIAA; requirements were that it should be a simple and
non-confusing as possible.

I tried both KiwiIRC and thelounge, and found both horrible to
package (a fact not helped by the somewhat opaque structure of
nixpkgs.nodePackages, which does contain a version of thelounge but
will apparently ignore overrides of the src attribute).

Instead, this now contains a very hacky version of thelounge, which
merely takes the already-built version from nixpkgs and glues some extra
css to it which hides potentially confusing fields.

Things hidden on the "connect" screen:
 - the "name" field (since thelounge offers "nick" "name" and "realname"
   by default, which seems too much for something embedded on a website)
 - the "I have a password" checkbox

Things hidden on the general view:
 - the button to open the side panel (the panel itself is not hidden,
   and will appear by itself on wider layouts), so that users will only
   see that one channel
 - the "channel options" menu (which includes a "leave channel" option
   which would effectively break the webchat)

Things not addressed:
 - thelounge has autocompletion for /join /leave, etc. Do we want to
   disable that as well?
 - It would probably useful to suppress all the "x joined the channel"
   messages. Thelounge supports this, but apparently doesn't support
   setting it as default?

Misc:
 - for now, users will be connected to #thelounge on libera.chat, which
   appears to be okay with being used as an experimental channel
 - I allowed prefetching link previews, but only on the server's side
   (i.e. users' browsers won't fetch content from arbitrary sites)
 - not yet tested on hainich, but should work (tested in a NixOS
   container)
 - currently assumes a "webchat.voc.hacc.space" domain (I think we had a
   voc domain? but I forgot where it is …)
2021-08-23 19:32:02 +00:00
schweby
b23582a52f services/mattermost: init on parsons 2021-08-23 19:32:02 +00:00
hexchen
1c65805589 parsons: init backups 2021-08-07 12:05:26 +00:00
hexchen
da7beff2fe services/nextcloud: init on parsons 2021-08-07 12:05:26 +00:00
hexchen
3541d14c76 parsons: add nftables 2021-08-07 12:05:26 +00:00
hexchen
0b30d81d13 hosts/parsons: init minimal config 2021-08-07 12:05:25 +00:00
hexchen
cbeb0e86c1 mail: emergency alias 2021-08-03 17:13:46 +00:00
20bafd66c5
mattermost: add recommended proxy settings
This unbreaks the keycloak login
2021-07-18 21:26:14 +02:00
69f5448aa3
mattermost 5.34.3 → 5.37.0
Among other things, this contains the "collapsable reply threads" feature
which makes it behave similar to slack.

Also, after spending thirty minutes or so attempting to teach niv that
it should really only fetch the tag "5.37.0" from the mattermost-server
repository and not any other commit, branch, or similar (there is a
"release-5.37" branch, but that seems to be for active development), I
have temporarily given up on it and typed in the urls manually.

Unfortunately, this means that any kind of `niv update` will now break
things. If anyone knows how to use niv correctly for this please patch
this; otherwise I guess we can extract mattermost out from niv again.
2021-07-16 17:45:18 +02:00
schweby
04375f8152
hainich: remove websites
websites are now back on gitlab again
2021-07-14 22:15:03 +02:00
schweby
6a408db9c1
hotfix: add websites to hainich
because gitlab broke websites AGAIN, they are now running on hainich
directly
While this is only a temporary solution, I think it will be as permanent
as they come
2021-06-25 11:38:47 +02:00
schweby
f6bf8c7c00
hainich: remove A20 ghost 2021-06-23 23:06:49 +02:00
octycs
df6f0baa71 hainich/mediawiki: Fix broken URL to plugin 2021-06-11 19:08:22 +02:00
schweby
d37899698c
hainich: remove minecraft
nixos and its concepts/service management/update mechanism don't play nice with minecraft
In general some things I wanted to do (e.g. a map) are to spikiely resource intensive to run on a server meant to provide other services consistently
A replacement will be provided soon™
2021-06-06 18:22:24 +02:00
Lukas
378c79f93e hainich:add hedgedoc for i4f 2021-06-02 19:08:54 +00:00
schweby
644c433809 hainich: init ghost A20 2021-05-12 19:37:15 +00:00
hexchen
3b39b0f316 hainich/gitlab-runner: limit nix builds to 1
running concurrent builds might cause stuff to be redownloaded/rebuilt.
2021-05-10 14:39:51 +00:00
3d8db75c48
mail: add addresses for c3wooc
Assuming I've understood the format of this config correctly, this
should add two new addresses for the c3wooc (one for general contact,
one for patches); both forwarding to its members (currently only hxchn
and me).
2021-05-08 20:06:00 +02:00