Commit graph

675 commits

Author SHA1 Message Date
26f3f98a9c update inputs 2023-03-15 21:50:48 +01:00
f91ea850bc
mail: reenable recieving mail on noreply@
because mail providers are sending out abuse mails for fbls they're
causing *shrung*
2023-03-15 19:06:36 +01:00
a6d21f4fd9 make working on websites nicer
(since every time we have to change anything on these I get annoyed at
having to remember how to build these. Now you can just use `nix run`!)
2023-02-24 17:33:48 +01:00
7fd1c9ff80 remove the default.nix file
(why did we keep this around? in any case, it's broken)
2023-02-24 16:11:43 +01:00
ba91526fc8
common/users: add new ssh-key for moira 2023-02-23 17:24:48 +01:00
72c16d9e1c nicer container configs
today i woke up to the realisation that there's an extremely obvious way
to make these nicer, & then i did exactly that. For some reason I did
not think of this when originally removing the dependency to nix-hexchen's
evalConfig.

unfortunately, this is not /quite/ a no-op. The only actual change is
different whitespace in some of the semantically-equivalent
coredns-configs that got unified.
2023-02-18 14:45:14 +01:00
aa62e616a3 common/users: remove an old ssh key 2023-02-16 01:40:14 +01:00
30510a3194 tracktrain: don't start before network.target
i hope this is the correct option; the last one apparently wasn't
enough.
2023-02-16 01:38:35 +01:00
dc1bdb2682 websites/infra4future.de: further edits
(also remove the link to hacc.wiki, that's kinda outdated)
2023-02-16 01:22:08 +01:00
5fee4c445d websites/infra: update group explanation 2023-02-16 01:22:08 +01:00
9ac7307672 update websites 2023-02-16 01:22:08 +01:00
26f91fac20 parsons: fix nix auto gc 2023-02-15 21:23:44 +01:00
9185f3e0ab update inputs 2023-02-13 20:43:09 +01:00
2e74ca9b35 tracktrain: remove cors header
this is almost certainly not needed anymore. i think.
2023-01-30 21:00:54 +01:00
4c456eae1c tracktrain: don't open firewall twice
just to cause less confusion down the line
2023-01-30 15:00:13 +01:00
7a3e65a3f5 working tracktrain + monitoring 2023-01-22 20:03:11 +01:00
9af819b4b8 init tracktrain 2023-01-22 02:25:07 +01:00
82e2831d3a
common/users: update terrus key 2023-01-10 19:20:47 +01:00
15c49c657f update inputs 2023-01-06 17:45:43 +01:00
87fd563ad3 remove netbox 2023-01-06 16:23:05 +01:00
eb7183ac54 services/mattermost: security update 7.1.4 → 7.1.5 2023-01-02 22:51:16 +01:00
1a54dbd191 alps: please don't start if there's no mailserver yet 2022-12-17 16:37:18 +01:00
015f66d749 netbox: fix uffd secret path
(turns out it's not a good idea to put it into a non-persistant directory)
2022-12-17 16:36:53 +01:00
hexchen
ba5bcf601c flake: update nix-hexchen and remove reference to deploy 2022-12-17 16:00:53 +01:00
9363c9e004 services/alps: use the nixos module
(since nixos 22.11 comes with one)
2022-12-17 15:56:06 +01:00
34a147afe6 python 3.9 -> python 3.10
(nixos 22.11 changed the default version, so some of our stuff broke)
2022-12-17 15:54:31 +01:00
1720b7bf81 update inputs 2022-12-16 22:56:28 +01:00
bb24ce8b87 nixos-22.11: fix module warnings
(also wow nextcloud encryption is apparently broken. colour me surprised!)
2022-12-16 22:56:28 +01:00
7e00264911 update inputs to nixos-22.11
(note that simple-nixos-mailserver is not updated since it doesn't
have a 22.11 release yet)
2022-12-16 22:56:28 +01:00
c5a0f13884
remove lantifa: apparently dead 2022-12-13 23:52:48 +01:00
bcc27eba11
netbox: add Media_Root 2022-12-13 23:47:28 +01:00
c28e533257
services/netbox: fix access to static directory 2022-12-10 13:18:02 +01:00
84dab162c1 don't vendor the netbox package definition
(because there's a simpler but also more cursed way of doing it instead)
2022-12-09 14:08:17 +01:00
f75429781d netbox uff(d) 2022-12-09 02:53:48 +01:00
5a28a55f01 netbox yolo 2022-12-08 23:30:02 +01:00
3df1ec0436 services/nextcloud: update to 25
(this has already been deployed for over a week, but apparently no one
thought to commit it)
2022-12-06 19:45:47 +01:00
b15f303107
mattermost: update to 7.1.4 2022-11-26 16:39:02 +01:00
0f4957d860 tell parsons it's called parsons
(i guess this was lost along with hexchen's nix deploy module?)
2022-11-26 00:08:53 +01:00
ea2d89fa84 make fish my default shell 2022-11-26 00:08:38 +01:00
7fa5939cf9 reduce lockfile size 2022-11-25 22:50:29 +01:00
12da955842 nix: enable 'experimental feature' flakes by default 2022-11-19 15:23:03 +01:00
0127b30566 add deploy-rs gc roots to .gitignore 2022-11-19 15:18:32 +01:00
5a0496a8f7
do unspeakable things to flake.lock 2022-11-15 15:34:59 +01:00
d11c388f31 deploy-rs: disable auto-rollback by default
(as per Moira's request)
2022-11-15 15:19:36 +01:00
79fb386395 flake-enabled readme 🎉 2022-11-14 18:42:33 +01:00
fe2fd2e0eb
cleanup input URLs in flake.nix 2022-11-14 18:29:53 +01:00
eb13717e28 fix acme-fixperms 2022-11-14 18:14:22 +01:00
7b145988d2 fix alps mail interface 2022-11-14 18:14:13 +01:00
1b09180b38 flake: add deploy-rs 2022-11-14 01:41:11 +01:00
c09337c973 shoehorn nix-hexchen-style config into flakes
this replaces niv with nix flakes, attempting to preserve the old
structure as much as possible. Notable caveats:
 - I'm not sure if flake inputs expose version information anywhere, so
   the version in pkgs/mattermost/default.nix is now hardcoded.
   Confusingly, this appears to trigger a rebuild. Maybe I've missed something.
 - a lot of the old-style host.nix & deploy.nix machinery in nix-hexchen
   does not work with flakes, and their newer replacements are not exposed
   by upstream; I've put basic imitations of the relevant parts in this repo
 - (in particular, directories in hosts/ won't become deployable configs
   automatically)
 - parts of the code are now probably more complicated than they'd have to be
 - old variables names were preserved; confusingly, this means the flake
   inputs are still called "sources"
2022-11-13 22:45:50 +01:00