laalsaas/nix-config
laalsaas
/
nix-config
forked from c3d2/nix-config
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
1,867 Commits 8 Branches 0 Tags 8.3 MiB
Commit Graph

1152 Commits

Author SHA1 Message Date
Sandro - 248034671d
pulsebert: activate firewall 2022-08-23 00:19:58 +02:00
Sandro - 936e45704b
pulsebert: disable not working wlan0 dhcp 2022-08-23 00:19:45 +02:00
Sandro - c9e34bc740
pulsebert: add sdimage back 2022-08-23 00:19:33 +02:00
Astro b7bc64e2df nfsroot: provide netbootxyz from this host 2022-08-22 22:14:16 +02:00
Sandro - 2c4814b16d
Disable crashing mjpg-streamer 2022-08-21 22:33:44 +02:00
Sandro - b3406003cb
Try getting firewall to work 
somehow allowing ports does not have any effect.
Probably related to the Pi not being reboot save.
 2022-08-21 22:33:44 +02:00
Sandro - 398133fa93
Don't error if octoprint is disabled for testing 2022-08-21 22:10:01 +02:00
Sandro - 72c8847075
Dedupe octoprint port 2022-08-21 22:09:39 +02:00
Sandro - f62d05d770
glotzbert: enable hardware accelerated video decoding in chromium 2022-08-21 00:13:29 +02:00
Astro f0907545d4 Merge remote-tracking branch 'leon/master' 2022-08-20 17:24:25 +02:00
Leon Vita b97ab5e226 fix firewall syntax 2022-08-20 16:22:11 +01:00
Leon Vita 60cacf8cfd fix ssh syntax 2022-08-20 16:16:59 +01:00
Leon Vita 5b23d68513 open ports 2022-08-20 05:55:46 +01:00
Leon Vita 26c22ea868 add config and wireguard-tools 2022-08-20 03:24:53 +01:00
Sandro - c825120197
factorio: increase RAM 2022-08-18 23:30:47 +02:00
Astro ac2a9e2246 server9, server10: refactor into modules/microvm-host 2022-08-17 21:00:01 +02:00
Astro 5741ba6aa6 leon: fix syntax 2022-08-14 23:04:27 +02:00
Astro f4155c5675 scrape, ticker: add dresden-kulturstadt 2022-08-14 23:04:18 +02:00
astro 2b28d6d81c Merge pull request 'add new ssh-key and app' (#41) from leon/nix-config:vps into master 
Reviewed-on: c3d2/nix-config#41
 2022-08-13 23:23:25 +02:00
Leon Vita 97e705423b add new ssh-key and app 2022-08-11 03:27:43 +01:00
Astro 9d256b6306 ticker: wiggle colors 2022-08-10 15:01:46 +02:00
Astro 153d6bc336 ticker: colors 2022-08-10 14:36:29 +02:00
Astro aded3075fa ticker: add software-engineering-community, slubmakerspace, php-usergroup 2022-08-10 14:26:47 +02:00
Sandro - 7ce2490bd6
mediawiki: add LDAPAuthentication2 and PluggableAuth 2022-08-07 20:55:11 +02:00
Sandro - 2ba58ac387
mediawiki: install first extension for LDAP, LDAPProvider, fix deployment, bump flake 2022-08-07 14:59:00 +02:00
Leon Vita a533a648e2 config.nix 2022-08-07 02:47:42 +01:00
Astro 0a7a4715f1 ftp: add astro's key for ftpupload@ 2022-08-05 21:00:09 +02:00
Astro c30245df93 ftp: chroot deeper 2022-08-05 20:59:54 +02:00
Sandro - e30dc899ad
Add factorio 2022-08-05 19:08:42 +02:00
Sandro - 47198a8124
Format 2022-08-05 18:19:12 +02:00
Sandro - 6e7e013ec6
auth: fix json 2022-08-02 01:51:13 +02:00
Sandro - 355c10d79f
auth: seed groups, technical users 2022-08-01 00:16:55 +02:00
Sandro - f2bd987f1e
Move sopsDefaultFile into hosts 2022-07-31 18:13:03 +02:00
Sandro - 36f78974e9
Delete old proxy entries 2022-07-31 17:55:56 +02:00
Sandro - 01e108977f
Format 2022-07-31 17:54:49 +02:00
Sandro - a20be3ca78
Move sops secrets into nix-config, move hosts under hosts/containers to hosts 2022-07-31 17:52:24 +02:00
Sandro - c5a2cad5ab
Delete no longer existing hosts 2022-07-31 17:47:31 +02:00
Sandro - d3c494f5f7
mediawiki: use upstreamed package, correct admin mail 2022-07-27 22:32:44 +02:00
Sandro - 73f937c5f6
gitea: increase paging per size 2022-07-27 21:00:29 +02:00
Sandro - 0b78141b42
WIP 2022-07-24 03:59:15 +02:00
Sandro - f0800a6150
Rename codimd.c3d2.de to hedgedoc.c3d2.de, redirect, add ldap login 2022-07-24 03:59:07 +02:00
Sandro - 9eef50b0f0
gitea: increqase minimal rsa key size 2022-07-23 22:26:08 +02:00
Sandro - 43bdf5cc4e
gitea: route ldap over internal network 2022-07-23 02:04:53 +02:00
Sandro - d07eb5eab2
auth: open ldaps port 2022-07-23 02:04:42 +02:00
Sandro - 70004fb081
Add auth.c3d2.de 2022-07-23 00:06:24 +02:00
Sandro - d26554436e
RIP keycloak 2022-07-22 19:55:18 +02:00
Sandro - fb38db52bb
leon: remove resolved TODO 2022-07-20 20:59:04 +02:00
Sandro - 4c95a28d19
server10: use zfs compatible kernel 2022-07-20 20:57:17 +02:00
Astro 0c3fc6f3ec gnunet: throttle maxNetDownBandwidth 
this has caused avg 1.5 MB/s upload over last two weeks
 2022-07-20 01:46:52 +02:00
Astro 5ba762520b broker: enable websockets 2022-07-19 18:25:28 +02:00
Astro 451719ee2e broker: listen on both ipv4 and ipv6 
though sysctl net.ipv6.bindv6only is already at 0
 2022-07-17 02:00:55 +02:00
Astro e1f7b84669 hydra: fix overlay to restore wander from nixos-unstable 2022-07-17 01:48:50 +02:00
Astro bd0479c4b5 broker: enable mqtt+tls 2022-07-17 01:48:16 +02:00
polygon - 6fed0e0bf9 ftp: theme in Nix store 2022-07-16 22:59:28 +02:00
polygon - 7cec5e2734 ftp: sftp working 2022-07-16 21:50:55 +02:00
polygon - fe8f3d3abb ftp: nginx 2022-07-16 20:38:23 +02:00
Astro b87a73e85c ftp: copy ftpupload.authorized_keys from inbert 2022-07-16 20:37:29 +02:00
Astro 314227533a scrape, ticker: add tjg-dresden 2022-07-16 03:11:27 +02:00
Astro df323b4dfa broker: customize mqttui with username/password 2022-07-16 03:11:06 +02:00
polygon - 7b5f6b388e mosquitto: works 2022-07-16 02:05:36 +02:00
Sandro - 116bae9d15
hydra: set keep-outputs to not gc anything in build jobs 2022-07-16 01:00:06 +02:00
Astro 2128cd02b0 ticker: add dresdenjs, cpp-ug 2022-07-15 18:47:37 +02:00
Astro d6d1347291 ticker: add ezag 2022-07-15 04:08:10 +02:00
Astro 87b1d471be scrape, ticker: add kultursommer, hfmdd, hfbk-dresden 2022-07-15 02:33:47 +02:00
Astro cad90483e1 scrape, ticker: add kunsthaus 2022-07-14 20:38:48 +02:00
Tassilo - 67daa356ae
fixed nix ref 2022-07-13 20:39:21 +02:00
Tassilo - 1351320281
fixed folder names for staging-data-hoarder 2022-07-13 20:23:32 +02:00
Tassilo - 667a7bb974
restructed update script for staging-data-hoarder 2022-07-13 20:10:42 +02:00
Markus Schmidl 0af1d41e0a public-access-proxy: update data-hoarder match arg 2022-07-12 00:57:42 +02:00
Markus Schmidl 009231747f public-access-proxy: add data-hoarder 2022-07-11 23:36:25 +02:00
Astro 36d19c3223 dacbert: remove duplicate boot.kernelPackages 2022-07-10 22:44:22 +02:00
Astro 49ff7a6f61 sdrweb: nomadify 2022-07-10 20:51:45 +02:00
Astro 1b618f0cd8 modules/microvm: c3d2.deployment.server = "nomad" 2022-07-10 20:50:07 +02:00
Astro e96f45dc81 hydra, server9, server10: enable smartd 2022-07-10 03:01:56 +02:00
Markus Schmidl 028ceb3ac5 remove legacy 2022-07-10 03:00:12 +02:00
Markus Schmidl 545336db70 server10: add microvm data-hoarder 2022-07-10 01:28:44 +02:00
Astro 1212323160 c3d2-web: properly redirect stdout+stderr to file 2022-07-10 00:19:47 +02:00
Sandro - 94f9ac621e
hydra: set state version for container 2022-07-09 00:58:03 +02:00
Sandro - 321ff05045
hydra: more parallism with less jobs 2022-07-09 00:57:42 +02:00
Sandro - a890058b8f
pulsebert: enable rtkit 2022-07-08 22:03:31 +02:00
Astro 7aa7cab3b2 c3d2-web: redirect https://datenspuren.de/ -> /2022/ 2022-07-07 17:04:34 +02:00
Astro 08060dced9 improve nomad deployment 2022-07-07 01:21:39 +02:00
Astro c485214385 gnunet: bump limits 2022-07-07 00:32:02 +02:00
Astro 8ef962fe16 gnunet: add 2022-07-06 21:09:04 +02:00
Sandro - 9d9d7b2757
hydra: fix max output size 2022-07-05 21:31:10 +02:00
Astro 5707cd896f add nomad scripting 2022-07-05 00:08:03 +02:00
Astro cb4799d2e9 ticker: add more feeds 2022-07-05 00:07:05 +02:00
Sandro - 98d7d5d6d5
hydra: increase max_output_size 2022-07-04 00:51:01 +02:00
Astro eb1df36d7a hydra: remove nomad client 2022-07-04 00:33:50 +02:00
Astro 9170273a38 modules/cluster: join nomad instances over ipv4 2022-07-04 00:31:23 +02:00
Astro 974e85aaac dacbert: add pi-sensors 2022-07-04 00:22:11 +02:00
Astro e8a66709b7 modules/cluster: init glusterfs and nomad 2022-07-04 00:22:11 +02:00
Sandro - 14d8d34112
mediawiki: turn on captcha to prevent spam 2022-07-03 22:45:19 +02:00
Sandro - b378c49f5e
mediawiki: sort extensions 2022-07-03 22:00:22 +02:00
Sandro - 77a03b1962
mediawiki: fix css loading 2022-07-03 21:57:50 +02:00
Sandro - fa700f5f8a
mediawiki: fix old api links 2022-07-03 21:42:33 +02:00
Astro 2b53f1878b ticker: add kursiv feed 2022-07-03 14:36:39 +02:00
Astro b29d7e936f dacbert, radiobert: allow /dev/mem access for gpio 2022-07-01 19:45:00 +02:00
Astro 274945f951 ticker: add impact-hub 2022-07-01 03:11:51 +02:00
Sandro - 2525f40584
hydra: forcefully enable ca-derivations 2022-07-01 01:31:13 +02:00
Sandro - 0ed536b3fc
hydra-ca: add upstream ca hydra cache 2022-07-01 01:31:13 +02:00
Sandro - 51b70b1f0f
hydra-ca: add git for flakes 2022-07-01 01:31:13 +02:00
Astro a0b116b924 scrape, ticker: add dresden-versammlungen, azconni 2022-07-01 01:05:50 +02:00
vv01f - 4b93a5fbcc add gefilte fest 2022-06-30 19:13:50 +02:00
Markus Schmidl 6025d3d9c9 server9: add zfs mounts to hardware configuration 2022-06-29 20:17:45 +02:00
Markus Schmidl 763d7203db server[9|10]: enable zfs autoscrub 2022-06-29 20:04:57 +02:00
Astro a36901790d nfsroot: fix /etc/exports duplicate fsid 2022-06-29 17:40:15 +02:00
Sandro - a05c9b9f0b
Use short URLs 2022-06-29 01:08:28 +02:00
Astro 29a41c6be0 c3d2-web: bump microvm.mem up to 1G 
deploy-c3d2-web works at 512M but that seems very narrow for `make -j8`
 2022-06-29 00:49:12 +02:00
Sandro - 3fd089cfb1
Fix TLS, format, fix hash for CiteThis extension 2022-06-29 00:06:28 +02:00
Winzlieb - 558f62e162 deactive plugin in mediawiki 2022-06-28 23:43:50 +02:00
Sandro - e13bfbce2d
Don't use nginx *and* apache 2022-06-28 22:35:19 +02:00
Sandro - 5ab9f37518
hydra-ca: allow gitlab downloads 2022-06-28 20:58:07 +02:00
Sandro - f29ae80d1c
Use staging until DNS record is changed 2022-06-28 20:50:43 +02:00
Winzlieb - 2e0f8f7e69 fix 2022-06-28 20:47:17 +02:00
Sandro - b4d2a7f959
Format with nixpkgs-fmt 2022-06-28 20:43:16 +02:00
Winzlieb - ed38402eec add secret keys from SOPS 2022-06-28 20:35:16 +02:00
Astro a450bb1ffd stream: doc 2022-06-28 03:30:58 +02:00
Astro 2792bd107c stream: microvmify 2022-06-28 03:26:08 +02:00
Astro ab144440f9 oparl: turn oparl-scraper into a flake input 2022-06-27 23:06:38 +02:00
Sandro - 72494557b3
Fix next hash 2022-06-27 22:59:01 +02:00
Sandro - 42b68b266e
Fix hash 2022-06-27 22:56:06 +02:00
Sandro - 7fc37408d3
Upload mediawiki extensions to web.archive.org 2022-06-27 22:53:44 +02:00
Winzlieb - bc1248da56 use stable uris for mediawiki extensions 2022-06-27 21:59:37 +02:00
Winzlieb - ac23481c75 updating plugins of mediawiki 2022-06-24 22:21:55 +02:00
Winzlieb - 4fb6d550c5 disable check in logrotate to satify hydra 2022-06-24 21:06:14 +02:00
Sandro - e14254dd45
hydra-ca: add overlays 2022-06-24 03:02:06 +02:00
Astro 160af5e371 glotzbert: add options relatime,discard to / rootfs 2022-06-24 01:26:01 +02:00
Sandro - 639fbb597e
hydra: activate features 2022-06-24 01:17:54 +02:00
Sandro - 8013a2d09a
Add ca hydra 2022-06-24 01:02:39 +02:00
Winzlieb - cc49ecc2a8 upgrading extention urls 2022-06-24 00:33:07 +02:00
Astro 76c91e2179 gitea: add working sendmail config 2022-06-24 00:12:08 +02:00
Astro 86f22a9bdd hydra: bump back up evaluator_workers, memory limits 2022-06-23 23:24:04 +02:00
Astro c8c4d659ee hydra: reduce evaluator_workers, bump memory limits 2022-06-23 23:00:14 +02:00
Sandro - d3b0a58c13
proxy hydra-ca.hq.c3d2.de 2022-06-23 22:54:43 +02:00
Sandro - f502c38020
Drop storage-ng 2022-06-23 22:45:51 +02:00
Astro edd19bdaae config/ceph-storage: eradicate 2022-06-23 22:11:43 +02:00
Astro 726a0ed815 hydra: bump memory limits 2022-06-23 22:11:40 +02:00
Astro 444005558f hydra: use linuxPackages_latest 2022-06-23 22:02:40 +02:00
Astro 836c24ebb9 hydra: bump buildCores to 40 2022-06-23 22:02:30 +02:00
Sandro - 7d7c78bdca
Nuke nix-serv and use hydra direct 2022-06-23 20:55:46 +02:00
Astro 3c64d1a72c hydra: setup bonded network 2022-06-23 20:10:03 +02:00
Astro 9372a2c902 mediawiki: fix 2022-06-23 18:46:35 +02:00
Astro 346561a2f7 mediawiki: microvmify 2022-06-23 18:38:42 +02:00
Astro a8f7337697 oparl: update ratsinfo-scraper 2022-06-23 18:29:11 +02:00
Winzlieb - 38ebf6e3fa wiki.c3d2.de added 2022-06-23 01:33:28 +02:00
Astro 4a0d7bed10 ticker: add klimacamp-dresden 2022-06-22 23:21:06 +02:00
Astro b394f87428 oparl: update ratsinfo-scraper 2022-06-22 02:33:03 +02:00
Sandro - 1dc3bc831c
Upsi 2022-06-22 01:27:08 +02:00
Sandro - ee3b8ce771
hedgedoc: let TLS nginx do 2022-06-22 00:52:29 +02:00
Astro 12a816dfa8 riscbert: fix 2022-06-22 00:48:17 +02:00
Sandro - 1ea91a0166
hedgedoc: persists session secret 2022-06-22 00:42:06 +02:00
Astro a2329fe740 hosts/containers/lxc-template.*: remove 2022-06-22 00:16:45 +02:00
Astro 6ac424c4bf nix-build: remove 2022-06-22 00:16:03 +02:00
Sandro - 00f59d9e37
Add codimd to proxy 2022-06-21 23:42:08 +02:00
Sandro - 5adaa6265a
Turn on recomended nginx settings by default 2022-06-21 23:42:08 +02:00
Astro 6453b2c130 hydra: use localhost only in buildMachines 2022-06-21 23:34:38 +02:00
Astro ed2334e8db nfroot: move tftp server from nix-build 
nix-build is currently no more...
 2022-06-21 23:34:13 +02:00
Sandro - d197d86a50
Add hedgedoc 2022-06-21 22:06:16 +02:00
Astro bfaedfbd17 add system.stateVersion to all the containers that still miss it 2022-06-21 18:32:15 +02:00
Astro f9bf362177 hydra: add webhook to trigger flake-update updater 2022-06-21 17:14:32 +02:00
Markus Schmidl 6b4675838d server9: grub -> /dev/sdc 2022-06-21 14:11:31 +02:00
Markus Schmidl b6060963f4 server9: enable libvirtd 2022-06-21 14:10:59 +02:00
Markus Schmidl 7ab66686ee server9: add zfs kernel module 2022-06-21 12:43:32 +02:00
Sandro - 06c260abe7
gitea: reduce RAM to 4 GB 2022-06-21 01:13:53 +02:00
Sandro - cebe3b4f02
gitea: use socket authentication for postgres 2022-06-20 22:10:30 +02:00
Sandro - 6de81bd390
gitea: convert to microvm 2022-06-20 22:10:23 +02:00
Sandro - 4b43464103
gitea: renovate config 2022-06-20 20:27:14 +02:00
Sandro - af702c0cd8
Drop my prefix 2022-06-20 20:17:13 +02:00
Astro 74f64931ba jabber: flush stdout in prosody-stats.rb 2022-06-20 01:29:43 +02:00
Astro 1af48845fb grafana: fix/update dashboards 2022-06-20 01:20:14 +02:00
Astro 3424512dfe nncp: microvmify 2022-06-20 00:41:20 +02:00
Astro cb12be2f0f jabber: microvmify 2022-06-20 00:15:34 +02:00
Astro 2556173bd0 blogs: microvmify 2022-06-20 00:06:32 +02:00
Astro 43ca19b644 sdrweb: microvmify 2022-06-19 22:29:08 +02:00
Sandro - 349463436c
Increase matemat RAM 2022-06-19 11:43:09 +02:00
Astro 84d1789020 set microvm.vcpu 2022-06-19 03:05:53 +02:00
Astro 2b38d93445 bind: DRY 2022-06-19 02:35:26 +02:00
Astro 6f9cc32959 c3d2-web: DRY 2022-06-19 02:35:08 +02:00
Astro 1b33e49b58 c3d2-web: fix permissions in deploy-c3d2-web.service 2022-06-19 01:56:29 +02:00
Astro 0bd5415ce8 oparl: push after each commit 
last step fails too often :(
 2022-06-19 00:56:20 +02:00
Sandro - e9ee25c5e0
matemat needs more memory 2022-06-18 21:29:09 +02:00
Astro 903e10ae99 disable autoUpdate in microvms 2022-06-18 04:24:15 +02:00
Astro b2a4fb57d6 c3d2-web: add libxslt flag 2022-06-18 03:38:33 +02:00
Astro 8f5414c285 c3d2-web: fix deploy-c3d2-web.service 2022-06-18 02:55:11 +02:00
Astro 68800b4bb7 oparl: remove explicit hypervisor setting 2022-06-18 02:46:11 +02:00
Astro 1f6f4950e4 bind: microvmify 2022-06-18 02:43:11 +02:00
Astro f45e3371a4 c3d2-web: microvmify, fix 2022-06-18 02:42:41 +02:00
Astro 052ca33816 server9: enable collectd 2022-06-18 02:36:36 +02:00
Astro b8a672f653 grafana: fix, microvmify 2022-06-18 02:09:33 +02:00
Astro e03284b6b6 server9: init 2022-06-18 01:07:43 +02:00
Astro 2067f2c393 direkthilfe: init 2022-06-18 00:55:45 +02:00
Astro 72b9c23686 modules/cluster-network: break outa server10 2022-06-18 00:55:45 +02:00
Sandro - c422895d21
hydra: don't start when disk is almost full 2022-06-17 23:28:11 +02:00
Astro 6508600c80 modules/microvm: implement c3d2.deployment.autoNetSetup 2022-06-17 23:23:08 +02:00
Astro 6be5862f97 remove dead code 2022-06-17 22:37:57 +02:00
Sandro - 31225ff9cc
Migrate matemat into microvm 2022-06-17 21:27:38 +02:00
Astro 09d88ff8b4 mobilizon: bump ram from 512 to 1024 MB 2022-06-17 01:16:03 +02:00
Astro 34685b7231 nfsroot: restore microvm.volumes 2022-06-17 00:05:32 +02:00
Astro a723dcacd6 scrape: microvmify 2022-06-17 00:05:21 +02:00