|
17a6e085b5
|
feat(dgn-console): Add perf
build configuration / build_vault01 (push) Successful in 1m8s
build configuration / build_storage01 (push) Successful in 1m9s
build configuration / build_compute01 (push) Successful in 1m15s
lint / check (push) Successful in 26s
build configuration / build_web01 (push) Successful in 1m30s
build configuration / build_web02 (push) Successful in 57s
build configuration / build_rescue01 (push) Successful in 1m13s
build configuration / push_to_cache (push) Successful in 2m16s
|
2024-04-28 19:16:56 +02:00 |
|
|
3f928ce90b
|
feat(modules): Generalize redirections
build configuration / build_web02 (push) Successful in 1m2s
build configuration / build_vault01 (push) Successful in 1m6s
build configuration / build_storage01 (push) Successful in 1m6s
build configuration / build_compute01 (push) Successful in 1m11s
lint / check (push) Successful in 24s
build configuration / build_web01 (push) Successful in 1m30s
build configuration / build_rescue01 (push) Successful in 56s
build configuration / push_to_cache (push) Successful in 2m13s
|
2024-04-23 22:02:04 +02:00 |
|
sinavir
|
fd6674fd5d
|
feat: Enable sendmail setuid wrapper
build configuration / build_web02 (push) Successful in 1m17s
build configuration / build_rescue01 (push) Successful in 1m17s
build configuration / build_storage01 (push) Successful in 1m23s
build configuration / build_vault01 (push) Successful in 1m23s
build configuration / build_compute01 (push) Successful in 1m25s
lint / check (push) Successful in 23s
build configuration / build_web01 (push) Successful in 1m42s
build configuration / push_to_cache (push) Successful in 2m15s
|
2024-04-20 20:40:26 +02:00 |
|
|
c47437116b
|
feat(modules): Introduce per node module import from meta
Check meta / check_meta (push) Successful in 25s
Check meta / check_dns (push) Successful in 46s
build configuration / build_vault01 (push) Successful in 1m6s
build configuration / build_storage01 (push) Successful in 1m10s
build configuration / build_compute01 (push) Successful in 1m15s
build configuration / build_web02 (push) Successful in 53s
lint / check (push) Successful in 26s
build configuration / build_rescue01 (push) Successful in 49s
build configuration / build_web01 (push) Successful in 1m34s
build configuration / push_to_cache (push) Successful in 2m22s
|
2024-04-18 16:23:25 +02:00 |
|
|
cbdbed1099
|
feat(infra): Add nodeMeta argument
|
2024-04-18 15:53:20 +02:00 |
|
|
10a925021f
|
feat(console): Upstream nsncd a les features dont on a besoin
build configuration / build_vault01 (push) Successful in 1m6s
build configuration / build_web02 (push) Successful in 1m11s
build configuration / build_storage01 (push) Successful in 1m14s
build configuration / build_compute01 (push) Successful in 1m17s
build configuration / build_rescue01 (push) Successful in 1m18s
lint / check (push) Successful in 24s
build configuration / build_web01 (push) Successful in 1m33s
build configuration / push_to_cache (push) Successful in 2m10s
|
2024-04-15 09:32:36 +02:00 |
|
sinavir
|
c6fe6b5891
|
feat(monitoring): Enable node exporter on almost all nodes
|
2024-04-14 01:10:10 +02:00 |
|
sinavir
|
ba2284cc68
|
fix(netbox-agent): Increase randomized delay
build configuration / build_vault01 (push) Successful in 1m5s
build configuration / build_web02 (push) Successful in 1m4s
build configuration / build_storage01 (push) Successful in 1m8s
build configuration / build_compute01 (push) Successful in 1m13s
lint / check (push) Successful in 24s
build configuration / build_web01 (push) Successful in 1m32s
build configuration / build_rescue01 (push) Successful in 50s
build configuration / push_to_cache (push) Successful in 2m8s
|
2024-04-13 15:11:27 +02:00 |
|
|
5919b75851
|
feat(dgn-record): Use latest arkheon
build configuration / build_rescue01 (push) Successful in 1m10s
build configuration / build_storage01 (push) Successful in 1m15s
build configuration / build_vault01 (push) Successful in 1m16s
build configuration / build_web02 (push) Successful in 1m16s
build configuration / build_compute01 (push) Successful in 1m22s
lint / check (push) Successful in 22s
build configuration / build_web01 (push) Successful in 1m39s
|
2024-04-06 16:21:21 +02:00 |
|
|
b36b0d7d67
|
feat(infra): Rework nixpkgs version management
Check meta / check_meta (push) Successful in 20s
Check meta / check_dns (push) Successful in 43s
build configuration / build_storage01 (push) Successful in 58s
build configuration / build_compute01 (push) Successful in 1m4s
build configuration / build_vault01 (push) Successful in 52s
build configuration / build_web02 (push) Successful in 51s
lint / check (push) Successful in 24s
build configuration / build_rescue01 (push) Successful in 47s
build configuration / build_web01 (push) Successful in 1m21s
|
2024-04-03 22:05:37 +02:00 |
|
sinavir
|
732ed7081d
|
feat(monitoring): Add simple systemd monitoring
Check meta / check_meta (push) Successful in 22s
Check meta / check_dns (push) Successful in 42s
build configuration / build_vault01 (pull_request) Successful in 1m7s
build configuration / build_compute01 (push) Waiting to run
build configuration / build_storage01 (push) Waiting to run
build configuration / build_vault01 (push) Waiting to run
build configuration / build_web01 (push) Waiting to run
build configuration / build_web02 (push) Waiting to run
build configuration / build_rescue01 (push) Waiting to run
lint / check (push) Waiting to run
build configuration / build_storage01 (pull_request) Successful in 1m20s
build configuration / build_web02 (pull_request) Successful in 55s
build configuration / build_compute01 (pull_request) Successful in 1m28s
build configuration / build_rescue01 (pull_request) Successful in 1m3s
build configuration / build_web01 (pull_request) Successful in 2m15s
|
2024-04-03 21:19:28 +02:00 |
|
sinavir
|
747d8c08cb
|
feat(netbox-agent): init
build configuration / build_vault01 (pull_request) Successful in 1m55s
build configuration / build_web02 (pull_request) Successful in 1m38s
build configuration / build_compute01 (pull_request) Successful in 2m7s
build configuration / build_web01 (pull_request) Successful in 1m59s
build configuration / build_storage01 (pull_request) Successful in 2m12s
build configuration / build_rescue01 (pull_request) Successful in 1m2s
build configuration / build_compute01 (push) Successful in 1m5s
build configuration / build_storage01 (push) Successful in 1m8s
build configuration / build_vault01 (push) Successful in 1m6s
lint / check (push) Successful in 22s
build configuration / build_web01 (push) Successful in 1m27s
build configuration / build_web02 (push) Successful in 53s
build configuration / build_rescue01 (push) Successful in 51s
|
2024-03-28 13:26:19 +01:00 |
|
|
9cbe1b828f
|
feat(dgn-console): Add more utilities
build configuration / build_rescue01 (push) Successful in 1m11s
build configuration / build_vault01 (push) Successful in 1m13s
build configuration / build_web02 (push) Successful in 1m14s
build configuration / build_storage01 (push) Successful in 1m16s
build configuration / build_compute01 (push) Successful in 1m23s
lint / check (push) Successful in 22s
build configuration / build_web01 (push) Successful in 1m38s
|
2024-03-27 15:15:44 +01:00 |
|
|
2a02fd6ef5
|
feat(dgn-console): Add more tools
build configuration / build_compute01 (push) Successful in 1m12s
build configuration / build_storage01 (push) Successful in 57s
build configuration / build_vault01 (push) Successful in 1m9s
build configuration / build_web02 (push) Successful in 56s
build configuration / build_web01 (push) Successful in 1m24s
lint / check (push) Successful in 28s
build configuration / build_rescue01 (push) Successful in 1m3s
|
2024-03-24 18:11:26 +01:00 |
|
sinavir
|
581fa6b560
|
chore: pre-commit hooks are supposed to be run....
build configuration / build_vault01 (push) Successful in 1m5s
build configuration / build_web02 (push) Successful in 1m6s
build configuration / build_compute01 (push) Successful in 1m11s
build configuration / build_storage01 (push) Successful in 1m10s
lint / check (push) Successful in 24s
build configuration / build_web01 (push) Successful in 1m33s
build configuration / build_rescue01 (push) Successful in 49s
|
2024-03-10 01:03:30 +01:00 |
|
|
3bccda09db
|
feat(infra): Enable recording of deployments
build configuration / build_vault01 (push) Successful in 1m5s
build configuration / build_rescue01 (push) Successful in 1m6s
build configuration / build_web02 (push) Successful in 1m7s
build configuration / build_storage01 (push) Successful in 1m11s
lint / check (push) Successful in 23s
build configuration / build_web01 (push) Successful in 1m32s
build configuration / build_compute01 (push) Successful in 1m59s
|
2024-03-08 23:11:31 +01:00 |
|
|
2ade516d48
|
feat(compute01): Deploy arkheon
build configuration / build_web02 (push) Successful in 1m6s
build configuration / build_vault01 (push) Successful in 1m7s
build configuration / build_rescue01 (push) Successful in 1m8s
build configuration / build_storage01 (push) Successful in 1m13s
build configuration / build_compute01 (push) Successful in 1m18s
lint / check (push) Successful in 22s
build configuration / build_web01 (push) Successful in 1m33s
|
2024-03-08 11:55:02 +01:00 |
|
|
6a25f88ee8
|
feat(dgn-ssh): Increase allowed connexions
build configuration / build_storage01 (push) Successful in 59s
build configuration / build_compute01 (push) Successful in 1m6s
build configuration / build_vault01 (push) Successful in 52s
build configuration / build_web01 (push) Successful in 1m18s
build configuration / build_web02 (push) Successful in 49s
lint / check (push) Successful in 21s
build configuration / build_rescue01 (push) Successful in 49s
|
2024-02-26 14:33:39 +01:00 |
|
|
82cafb5fd7
|
feat(meta): Rework and use a module
|
2024-02-23 11:13:21 +01:00 |
|
|
ba30b3034b
|
feat(dgn-backups): Add encrypted master keys
build configuration / build_vault01 (push) Successful in 55s
build configuration / build_storage01 (push) Successful in 58s
build configuration / build_compute01 (push) Successful in 1m2s
build configuration / build_web02 (push) Successful in 50s
build configuration / build_rescue01 (push) Successful in 49s
build configuration / build_web01 (push) Successful in 1m12s
lint / check (push) Successful in 20s
|
2024-02-22 09:57:19 +01:00 |
|
|
a14e853738
|
feat(dgn-backups): Alter start times
|
2024-02-21 22:42:41 +01:00 |
|
|
6161592f5a
|
feat(dgn-backups): Setup postgres databases backups
build configuration / build_vault01 (push) Successful in 1m0s
build configuration / build_web02 (push) Successful in 1m0s
build configuration / build_storage01 (push) Successful in 1m4s
build configuration / build_compute01 (push) Successful in 1m15s
lint / check (push) Successful in 21s
build configuration / build_web01 (push) Successful in 1m24s
build configuration / build_rescue01 (push) Successful in 48s
|
2024-02-21 22:01:32 +01:00 |
|
|
6b827e56b1
|
feat(infra): Init backups
lint / check (push) Successful in 25s
build configuration / build_web02 (push) Successful in 1m4s
build configuration / build_vault01 (push) Successful in 1m6s
build configuration / build_storage01 (push) Successful in 1m13s
build configuration / build_compute01 (push) Successful in 1m25s
build configuration / build_web01 (push) Successful in 1m27s
|
2024-02-21 17:18:14 +01:00 |
|
|
13b7b2fab4
|
feat(dgn-hardware): Update ZFS settings
|
2024-02-21 17:17:40 +01:00 |
|
|
54ec4a6b18
|
feat(dgn-hardware): Factorize bcachefs setup
lint / check (push) Successful in 32s
build configuration / build_vault01 (push) Successful in 1m2s
build configuration / build_web02 (push) Successful in 1m2s
build configuration / build_storage01 (push) Successful in 1m6s
build configuration / build_compute01 (push) Successful in 1m9s
build configuration / build_web01 (push) Successful in 1m25s
|
2024-02-20 21:25:04 +01:00 |
|
|
5832da0941
|
feat(dgn-network): Use only the specified DNS
|
2024-02-20 17:57:24 +01:00 |
|
|
e7f4d76dc1
|
fix(dgn-network): Clarify variables and add dns settings from metadata
|
2024-02-20 17:47:34 +01:00 |
|
|
5e3819c9b2
|
feat(shell): Add pre-commit hooks and reformat the repo
|
2024-02-02 10:51:31 +01:00 |
|
|
ce0dfe5431
|
chore(infra): Remove remnants of dgn-dns
|
2024-02-01 13:35:30 +01:00 |
|
|
31e2387a25
|
feat(dgn-dns): Remove module as the DNS will be hosted externally
build configuration / build_compute01 (push) Failing after 41s
build configuration / build_storage01 (push) Failing after 42s
build configuration / build_web02 (push) Failing after 43s
build configuration / build_web01 (push) Failing after 44s
build configuration / build_vault01 (push) Failing after 47s
ds-fr update / npins_update (push) Successful in 2m1s
|
2024-01-31 16:52:00 +01:00 |
|
|
ef460753a8
|
feat(modules/dgn-ssh): Disable kbdinteractiveauthentication
build configuration / build_web02 (push) Successful in 57s
build configuration / build_storage01 (push) Successful in 1m0s
build configuration / build_vault01 (push) Successful in 1m2s
build configuration / build_web01 (push) Successful in 1m19s
build configuration / build_compute01 (push) Successful in 1m21s
ds-fr update / npins_update (push) Successful in 1m50s
npins update / npins_update (push) Has started running
|
2024-01-30 10:22:27 +01:00 |
|
|
6bdbccf9b2
|
feat(web01): Deploy Crab Fit on meet.dgnum.eu
build configuration / build_storage01 (push) Successful in 47s
build configuration / build_compute01 (push) Successful in 1m11s
build configuration / build_vault01 (push) Successful in 42s
build configuration / build_web02 (push) Successful in 41s
build configuration / build_web01 (push) Has been cancelled
|
2024-01-23 01:06:10 +01:00 |
|
Raito Bezarius
|
1f67e3c310
|
feat(dns): erp.dgnum.eu → web01
We prepare a Dolibarr deployment.
|
2024-01-21 21:05:46 +01:00 |
|
|
e34d5d003f
|
feat(dgn-hardware): Move specific configurations back to the servers
build configuration / build_storage01 (push) Successful in 52s
build configuration / build_vault01 (push) Successful in 1m2s
build configuration / build_web01 (push) Successful in 1m8s
build configuration / build_compute01 (push) Successful in 1m14s
build configuration / build_web02 (push) Successful in 42s
|
2024-01-11 12:58:58 +01:00 |
|
|
345bdd4d44
|
feat(dgn-hardware): Allow bcachefs configuration
|
2024-01-11 12:58:27 +01:00 |
|
|
50368c56dd
|
fix(modules/dgn-console): Only try to create the psql migrate script if postgres is enabled
|
2024-01-10 14:59:39 +01:00 |
|
|
df8831301f
|
feat(storage01): Switch to nix-modules for forgejo nix runners
build configuration / build_compute01 (push) Successful in 1m46s
build configuration / build_storage01 (push) Successful in 55s
build configuration / build_web01 (push) Successful in 1m3s
|
2024-01-10 13:59:11 +01:00 |
|
|
4716f8a398
|
feat(modules): Replace dgn-secrets by age-secrets
build configuration / build_compute01 (push) Successful in 1m6s
build configuration / build_storage01 (push) Successful in 44s
build configuration / build_web01 (push) Successful in 57s
npins update / npins_update (push) Successful in 46s
|
2024-01-09 14:48:33 +01:00 |
|
|
7249301a33
|
fix(network): Use correct ipv6 addresses
|
2024-01-08 17:18:55 +01:00 |
|
|
c5e15987ed
|
feat(modules/dgn-console): Add an activation script showing system diffs
build configuration / build_storage01 (push) Successful in 49s
build configuration / build_compute01 (push) Successful in 1m11s
build configuration / build_web01 (push) Successful in 1m31s
ds-fr update / npins_update (push) Successful in 2m21s
|
2024-01-07 18:17:14 +01:00 |
|
|
03d4fd3982
|
feat(fail2ban): Add preauth jail and enable on storage01
build configuration / build_web01 (push) Successful in 45s
build configuration / build_storage01 (push) Successful in 56s
build configuration / build_compute01 (push) Successful in 1m13s
|
2024-01-05 16:10:06 +01:00 |
|
Tom Hubrecht
|
9b49bd2721
|
feat(dgn-runners): Add curl and link usr/bin/env to bin/env for compatibility with nixos
|
2023-12-22 18:23:48 +01:00 |
|
Tom Hubrecht
|
011e52083b
|
feat(dgn-runners): Install openssh
|
2023-12-15 23:39:49 +01:00 |
|
Tom Hubrecht
|
34e3953418
|
fix(dgn-runners): Set NIX_PATH to current version
|
2023-12-15 20:45:54 +01:00 |
|
Tom Hubrecht
|
8cef4a594a
|
feat(dgn-runners): Init module for runners with a store
|
2023-12-15 20:10:09 +01:00 |
|
Tom Hubrecht
|
45edfee048
|
feat(hardware): Add kernelParams for all machines so that virtualisation is possible
|
2023-12-11 01:05:05 +01:00 |
|
Tom Hubrecht
|
b338eeed6a
|
fix(network): Add dns servers on the main interface
|
2023-12-04 12:36:34 +01:00 |
|
Tom Hubrecht
|
18b6b0f605
|
feat(modules/dgn-harware): Refactor hardware config
|
2023-11-29 16:11:35 +01:00 |
|
Tom Hubrecht
|
7e5920fd16
|
feat(modules/dgn-console): Add a pg upgrade script when necessary
|
2023-11-29 14:58:05 +01:00 |
|
Tom Hubrecht
|
fa799c9dda
|
feat(modules): Deploy fail2ban
|
2023-11-28 20:51:23 +01:00 |
|
Tom Hubrecht
|
2ffae107e6
|
fix(dgn-network): Don't log refused connections
|
2023-11-13 14:21:52 +01:00 |
|
sinavir
|
c30d8961b9
|
fix(vm builds): Add vmvariant to have working dns in vm
|
2023-10-27 14:36:19 +02:00 |
|
Tom Hubrecht
|
a4ad7810ae
|
fix(nsncd): Update source
|
2023-10-26 14:18:36 +02:00 |
|
Tom Hubrecht
|
86129fb971
|
feat(nix-lib): Rename dgn-lib to lib.extra
|
2023-10-04 09:23:48 +02:00 |
|
Tom Hubrecht
|
5622bc3748
|
feat(dgn-secrets): Add a matches option
This option allows specifying regexes tied to options.
When a secret matches a pattern, the the options are applied to it.
|
2023-10-02 22:48:18 +02:00 |
|
Tom Hubrecht
|
958afe957f
|
feat(modules): Init dgn-web
Add a module to enable recommended web settings
|
2023-10-01 23:08:54 +02:00 |
|
Tom Hubrecht
|
ef9f84430e
|
feat(storage01): Deploy atticd on cachix.dgnum.eu
|
2023-09-28 17:20:16 +02:00 |
|
Tom Hubrecht
|
c6121e63d7
|
modules/dgn-secrets: Fix options
|
2023-07-24 09:50:33 +02:00 |
|
Tom Hubrecht
|
c2616ce4f5
|
modules/dgn-dns: init
Also deploy a DNS server on compute01
|
2023-07-21 00:37:05 +02:00 |
|
Tom Hubrecht
|
fef1e90386
|
modules/dgn-console: Update hostname display
|
2023-07-20 15:48:24 +02:00 |
|
Tom Hubrecht
|
2274668f9b
|
modules: Setup dgn-network with configuration from metadata
|
2023-07-20 12:32:31 +02:00 |
|
Tom Hubrecht
|
58e269d7f2
|
modules: Fix typos
|
2023-07-18 17:07:14 +02:00 |
|
Tom Hubrecht
|
c111662a9e
|
modules/dgn-hardware: Set default configurations
|
2023-07-18 17:03:01 +02:00 |
|
Tom Hubrecht
|
935d4a5ee5
|
modules: Use inherit instead of with
|
2023-07-18 17:00:51 +02:00 |
|
Tom Hubrecht
|
5b4cf12ed7
|
machines: Add compute01 and storage01
|
2023-07-18 17:00:31 +02:00 |
|
Tom Hubrecht
|
5a0e196658
|
modules/dgn-access-control: Add license
|
2023-06-30 18:39:38 +02:00 |
|
Tom Hubrecht
|
6003afb8b8
|
modules: Add new modules and agenix
|
2023-06-30 18:39:20 +02:00 |
|
Tom Hubrecht
|
4b610d0b80
|
modules/dgn-ssh: Update settings
|
2023-06-30 18:38:23 +02:00 |
|
Tom Hubrecht
|
9e18e8e078
|
modules/dgn-secrets: Init
Add a way to simplify secrets imports
|
2023-06-30 18:38:10 +02:00 |
|
Tom Hubrecht
|
94305d2723
|
modules/dgn-acme: Init
|
2023-06-30 18:37:44 +02:00 |
|
sinavir
|
5bc379c1d1
|
document access control
|
2023-05-22 21:23:33 +02:00 |
|
Tom Hubrecht
|
a7ce39a2f5
|
modules/dgn-ssh: Add default ssh configuration for all nodes
|
2023-05-22 15:21:25 +00:00 |
|
Tom Hubrecht
|
8a65ff477d
|
modules/dgn-access-control: Use getAllKeys instead of getKeyFiles
|
2023-05-22 16:28:18 +02:00 |
|
Tom Hubrecht
|
be29da5e7e
|
modules/dgn-access-control: Fix keys
|
2023-05-22 15:58:41 +02:00 |
|
Tom Hubrecht
|
24500ed369
|
modules: Init with access control
|
2023-05-22 15:07:03 +02:00 |
|