summary refs log tree commit diff stats
Commit message (Collapse)AuthorAge
* feat(hosts/server3): init HEAD mainSilas Schöffel5 days
|
* feat(pkgs/back): add comments to rss feed rssbackSilas Schöffel10 days
|
* fix(pkgs/back/contrib/config.json): add root_urlSilas Schöffel10 days
|
* fix(modules/back): add root_url to back configBenedikt Peetz13 days
| | | | Co-authored-by: Silas Schöffel <sils@sils.li>
* fix(back): add correct links to rss feedBenedikt Peetz13 days
| | | | Co-authored-by: Silas Schöffel <sils@sils.li>
* feat(back): add rss feedBenedikt Peetz13 days
| | | | Co-authored-by: Silas Schöffel <sils@sils.li>
* feat(back/src/issues/issue): implement Display for AuthorBenedikt Peetz13 days
| | | | Co-authored-by: Silas Schöffel <sils@sils.li>
* fix(server2/networking): correct ipv6 addressSilas Schöffel13 days
|
* fix(modules/back): Update to the new config file inputBenedikt Peetz2024-12-26
|
* fix(pkgs/back): Use the errors display trait not debugBenedikt Peetz2024-12-26
| | | | | Sadly, there seems to be no other way to change the error display, than wrapping main.
* chore(pkgs/back): Add missing license headersBenedikt Peetz2024-12-26
|
* fix(pkgs/back): Sort the issues by descending dateBenedikt Peetz2024-12-26
|
* feat(pkgs/back): Rewrite the `git-bug` interface codeBenedikt Peetz2024-12-26
| | | | | | | | The previous code was more or less reverse engineered, whilst this code is based on the actually git-bug source code. This improves the whole issue and operation handling immensely and also makes the code better maintainable. Furthermore, it also adds support for the operations that had not already used in `vhack.eu/nixos-server.git`.
* fix(pkgs/back): Use rocket to manage the configuration valuesBenedikt Peetz2024-12-26
| | | | | This reduces the amount of needed `unwraps`/`expects` and allows us to streamline the parsing processes.
* fix(hosts/server2): Use correct path to `vhack.eu/nixos-server` repoBenedikt Peetz2024-12-25
|
* fix(modules/back): Remove the `gitPath` from the service nameBenedikt Peetz2024-12-25
| | | | With it, the service names become nearly illegible.
* feat(modules/nginx): Modularise the redirects and migrate them to server2Benedikt Peetz2024-12-25
| | | | | | The redirects always have an implicit dependency on the DNS config of the running host. As such, simply stating them for all host is never a possibility and setting them per host the only viable option.
* fix(modules/nix-sync/internal): Fix syntax errors in shell-scriptBenedikt Peetz2024-12-25
|
* fix(modules/dhcpcd): Also set uid/gid for the `dhcpcd` userBenedikt Peetz2024-12-25
| | | | | Otherwise, this user's/group's owned files/directories could change when a new user is added or removed, as we do not persist `/var/lib/nixos`.
* build(flake.nix): Re-add `ragenix` to the devShellBenedikt Peetz2024-12-25
|
* refactor(hosts): Use a `by-name` structure and construct all host depended ↵Benedikt Peetz2024-12-25
| | | | | | values This allows us to outsource the host-handling from the `flake.nix` file.
* fix(treewide): Add constant uids and gids to each user and groupBenedikt Peetz2024-12-25
| | | | This allows us to avoid persisting `/var/lib/nixos`.
* docs(CONTRIBUTING.md): RemoveBenedikt Peetz2024-12-25
| | | | | | | | The information is currently out-dated, was never really up-to-date and as such will not provide anything useful to new contributors. We should probably try to write it again at some point when our workflow has moved more from cathedral to bazaar.
* refactor(system/services/fail2ban): Migrate to `by-name`Benedikt Peetz2024-12-25
| | | | | | Additionally, I've changed to owner of the `/var/lib/fail2ban` directory to `root:root` as the main `fail2ban` service also runs under `root` and a `fail2ban` user is never created.
* refactor(system/services/rust-motd): Migrate to `by-name`Benedikt Peetz2024-12-25
|
* fix(modules/impermanence): Don't always persist `/var/log` and `/var/lib/nixos`Benedikt Peetz2024-12-25
| | | | | | | | | | Persisting them, without marking the `/srv` containing fs as `neededForBoot` will result in a kernel panic in the init (because `impermanence` tries to mount these directories and fails as `/srv` is still missing.) Thus, each host, that sets `/srv` to `neededForBoot` should add these directories to `vhack.persist.directories`.
* fix(system): Remove out-dated importsBenedikt Peetz2024-12-25
| | | | Both of these modules have been moved to `by-name`
* refactor(system/users): Migrate to `by-name`Benedikt Peetz2024-12-25
|
* fix(modules/git-server): Use `vhack.persist` for data-directoriesBenedikt Peetz2024-12-25
| | | | | This avoids having to create them manually on the server and is, overall just generally a better way to solve this problem.
* fix(modules/back): Use correct source-code environment variableBenedikt Peetz2024-12-25
|
* build(scripts/deploy): InitBenedikt Peetz2024-12-25
| | | | | This documents the commands used for the first deployment (i.e., with a full, disko-driven, disk formatting step).
* build(scripts/mk_network_config): InitBenedikt Peetz2024-12-25
| | | | | | | This has been taken directly from `nixos-infect` (which rather under-maintained, sadly). Currently, it is extremely useful to generate the `networking.nix` config for new hosts.
* refactor(modules/impermanence): Migrate to by-name while distributing modsBenedikt Peetz2024-12-24
|
* fix(modules/back): Set now needed source code URL environment variableBenedikt Peetz2024-12-24
|
* docs(pkgs/back): Document useful environment variablesBenedikt Peetz2024-12-24
|
* feat(pkgs/back): Add a link to the source codeBenedikt Peetz2024-12-24
| | | | | This is required by the AGPL license and should probably also be done, because we do not have a reason to hide or obfuscate the code.
* feat(hosts/server1): Configure back for the `nixos-server` repoBenedikt Peetz2024-12-24
|
* feat(tests/back): InitBenedikt Peetz2024-12-24
|
* feat(modules/back): InitBenedikt Peetz2024-12-24
|
* build(scripts/test_interactive): Fix typo in variable nameBenedikt Peetz2024-12-24
|
* fix(modules/nix-sync/internal): Use correct command grouping syntaxBenedikt Peetz2024-12-24
| | | | | | Commands in parentheses (i.e., `()`) are _subshells_ and `exit`ting from these will not result in an `exit` of the actually _shell_. Thus, we use want simple command grouping and use the correct syntax for that.
* build(pkgs/back): Apply source filteringBenedikt Peetz2024-12-24
| | | | | This avoids useless rebuilds, just because files like the `README.md` changed.
* docs(pkgs/back): Add note about needed write accessBenedikt Peetz2024-12-24
|
* fix(pkgs/back): Set `meta.mainProgram`Benedikt Peetz2024-12-24
|
* fix(modules/disko): Actually honor `cfg.enable`Benedikt Peetz2024-12-24
|
* test(scripts/lint_missing_tests.sh): RemoveBenedikt Peetz2024-12-23
| | | | | This functionality is now available via the `coImport` feature in the `mkByName` `nixLib` function.
* style(treewide): FormatBenedikt Peetz2024-12-23
|
* build(flake): Use treefmt as nix formatterBenedikt Peetz2024-12-23
| | | | | This allows us to also keep markdown and other documents, that aren't nix, formatted.
* feat(pkgs): Hook up to the flake and add needed infrastructureBenedikt Peetz2024-12-23
|
* feat(pkgs/back): InitBenedikt Peetz2024-12-23
| | | | | Other options, for example `git-bug webui --read-only` is just to bugged to be useful.