summary refs log tree commit diff stats
Commit message (Collapse)AuthorAge
* build(scripts/deploy): InitBenedikt Peetz2024-12-25
| | | | | This documents the commands used for the first deployment (i.e., with a full, disko-driven, disk formatting step).
* build(scripts/mk_network_config): InitBenedikt Peetz2024-12-25
| | | | | | | This has been taken directly from `nixos-infect` (which rather under-maintained, sadly). Currently, it is extremely useful to generate the `networking.nix` config for new hosts.
* refactor(modules/impermanence): Migrate to by-name while distributing modsBenedikt Peetz2024-12-24
|
* fix(modules/back): Set now needed source code URL environment variableBenedikt Peetz2024-12-24
|
* docs(pkgs/back): Document useful environment variablesBenedikt Peetz2024-12-24
|
* feat(pkgs/back): Add a link to the source codeBenedikt Peetz2024-12-24
| | | | | This is required by the AGPL license and should probably also be done, because we do not have a reason to hide or obfuscate the code.
* feat(hosts/server1): Configure back for the `nixos-server` repoBenedikt Peetz2024-12-24
|
* feat(tests/back): InitBenedikt Peetz2024-12-24
|
* feat(modules/back): InitBenedikt Peetz2024-12-24
|
* build(scripts/test_interactive): Fix typo in variable nameBenedikt Peetz2024-12-24
|
* fix(modules/nix-sync/internal): Use correct command grouping syntaxBenedikt Peetz2024-12-24
| | | | | | Commands in parentheses (i.e., `()`) are _subshells_ and `exit`ting from these will not result in an `exit` of the actually _shell_. Thus, we use want simple command grouping and use the correct syntax for that.
* build(pkgs/back): Apply source filteringBenedikt Peetz2024-12-24
| | | | | This avoids useless rebuilds, just because files like the `README.md` changed.
* docs(pkgs/back): Add note about needed write accessBenedikt Peetz2024-12-24
|
* fix(pkgs/back): Set `meta.mainProgram`Benedikt Peetz2024-12-24
|
* fix(modules/disko): Actually honor `cfg.enable`Benedikt Peetz2024-12-24
|
* test(scripts/lint_missing_tests.sh): RemoveBenedikt Peetz2024-12-23
| | | | | This functionality is now available via the `coImport` feature in the `mkByName` `nixLib` function.
* style(treewide): FormatBenedikt Peetz2024-12-23
|
* build(flake): Use treefmt as nix formatterBenedikt Peetz2024-12-23
| | | | | This allows us to also keep markdown and other documents, that aren't nix, formatted.
* feat(pkgs): Hook up to the flake and add needed infrastructureBenedikt Peetz2024-12-23
|
* feat(pkgs/back): InitBenedikt Peetz2024-12-23
| | | | | Other options, for example `git-bug webui --read-only` is just to bugged to be useful.
* fix(modules/disko): Remove deprecated legacy type and migrate to `by-name`Benedikt Peetz2024-12-21
|
* fix(system/services/mastodon): Update char patch to v4.3Benedikt Peetz2024-12-21
|
* fix(modules/redlib): Change subdomain to `redlib`Benedikt Peetz2024-12-20
| | | | | | The old `libreddit` subdomain still has redirection to avoid this being a breaking change. But keeping the old subdomain is rather weird considering their new name.
* refactor(system/services/libreddit): Migrate to `by-name`Benedikt Peetz2024-12-20
| | | | This also includes a rename into `redlib` because of upstream changes.
* refactor({modules,test}): Migrate to a `by-name` structureBenedikt Peetz2024-12-20
|
* fix(treewide): Update to nixos release 24.11Benedikt Peetz2024-12-19
|
* build(system/services/taskserver/certs/generate): Convert to `nix-shell`Benedikt Peetz2024-12-19
| | | | Lix does not support the newer `nix shell` shebang.
* fix(system/services/invidious-router): remove_no_ratio = falseSilas Schöffel2024-12-06
|
* fix(system/services/libreddit): Use unstable `redlib` versionBenedikt Peetz2024-11-16
| | | | | The current stable version has a bug with regard to parsing the current reddit json responses.
* build(flake.lock): UpdateBenedikt Peetz2024-11-16
|
* docs(system/services/matrix): Fix typos in commentBenedikt Peetz2024-11-03
|
* build(flake): UpdateBenedikt Peetz2024-11-03
|
* feat(taskserver/certs/ca.certs.pem): Regenerate certificateBenedikt Peetz2024-10-05
|
* refactor(taskserver/certs): Format scripts and allow selecting which certs ↵Benedikt Peetz2024-10-05
| | | | to generate
* chore(taskserver/certs/ca.key.pem.gpg): reencrypt with new keys as recipientsSilas Schöffel2024-10-05
|
* fix(system/services/invidious-router): Use the unstable pkgBenedikt Peetz2024-10-04
| | | | | This has been updated to provide a means to send the user to YouTube, if no invidious instances are available.
* build(flake): UpdateBenedikt Peetz2024-10-04
|
* build(flake): UpdateBenedikt Peetz2024-09-21
|
* fix(system/services/invidious-router): Set health check path to a video URLBenedikt Peetz2024-09-18
| | | | | The main page does sometimes load, but videos are still not playable. This new path really checks, whether the instance works.
* fix(system/impermanence): Persist `/var/lib/nixos`Benedikt Peetz2024-09-06
| | | | | | | | | Otherwise, the mapping of uid/gid to user name or group name could change between reboots, which would result in magically change permissions. We were already affected by this at some point, so just remove the possibility of it happening again.
* fix(git-server/cgit): Don't run `cgit` as `root` use `git` insteadBenedikt Peetz2024-09-06
| | | | | | | | | | | | This option was newly added, as previously only on `fcgiwrap` instance was run as root. We probably have not been affected by this, as our `fcgiwrap` instance was already running as `git:nginx`. Usage of the new options seems better either way, as they provide a finer grained control over the user _each_ `fcgiwrap`ped service is running at. The security advisory: https://discourse.nixos.org/t/51419
* fix(services/matrix/mautrix-whatsapp): Disable to remove libolmBenedikt Peetz2024-09-06
| | | | | Libolm is marked as insecure and must thus be removed from the system closure.
* build(flake): Update inputsBenedikt Peetz2024-09-06
|
* fix(system/services/invidious-router): Stop filtering regionsSilas Schöffel2024-08-19
| | | | | | Filtering regions limits our possible instance selection without actually providing great value. Let's stop discriminating based on server location.
* feat(system/services/mastodon): Apply patch to increase the message lengthBenedikt Peetz2024-08-16
|
* fix(disks): Increase root tmpfs size to 6GBBenedikt Peetz2024-08-14
| | | | The 2GB are just not enough.
* chore(version): v0.24.0 v0.24.0Benedikt Peetz2024-08-14
|
* docs(nixos/git-server): Improve the comment on the possible git config keysBenedikt Peetz2024-08-14
|
* fix(nixos/git-server): Use the correct number in the `section-from-path` settingBenedikt Peetz2024-08-14
| | | | | | | | | | | | | | Take for example a repository name like: `some/organisation/project_a/team_c/repo_b`. Setting the setting to `-1` means that cgit traverses the path from left to right, until it has found 1 element (and `section-from-path` (or n for short)is 0, because n is incremented after each iteration). E.g. : ~ [n=-1] starting point: `some/organisation/project_a/team_c/repo_b` ~ [n=0] after the first iteration: `some/organisation/project_a/team_c/repo_b` Now `some/organisation/project_a/team_c` becomes the section, whilst `repo_b` becomes the repo name.
* build(flake.nix): Remove `ragenix` from the devshellBenedikt Peetz2024-08-13
| | | | | | The rust code does not compile, resulting in a really bothersome wait every time a command is run in the devshell because direnv tries to build it again.