Commit graph

111 commits

Author SHA1 Message Date
b07e0294aa feat(netbird): Switch back to sub for ids
All checks were successful
build configuration / build_web02 (push) Successful in 58s
build configuration / build_vault01 (push) Successful in 1m0s
build configuration / build_compute01 (push) Successful in 1m7s
build configuration / build_storage01 (push) Successful in 1m12s
lint / check (push) Successful in 19s
build configuration / build_web01 (push) Successful in 1m23s
2024-02-20 09:44:46 +01:00
9059ebe4d8 feat(storage01): Deploy prometheus on prometheus.dgnum.eu
All checks were successful
build configuration / build_compute01 (push) Successful in 54s
build configuration / build_storage01 (push) Successful in 1m37s
build configuration / build_vault01 (push) Successful in 47s
build configuration / build_web02 (push) Successful in 46s
build configuration / build_web01 (push) Successful in 1m8s
lint / check (push) Successful in 20s
ds-fr update / npins_update (push) Successful in 2m8s
2024-02-19 17:37:57 +01:00
ad39c91168 chore(infra): Switch to age-secrets.autoMatch
All checks were successful
lint / check (push) Successful in 23s
build configuration / build_web02 (push) Successful in 1m3s
build configuration / build_vault01 (push) Successful in 1m5s
build configuration / build_storage01 (push) Successful in 1m9s
build configuration / build_web01 (push) Successful in 1m39s
npins update / npins_update (push) Successful in 53s
build configuration / build_compute01 (push) Successful in 42m1s
2024-02-19 14:47:27 +01:00
743e76ebb2 fix(forgejo): Use correct config for mailer
All checks were successful
lint / check (push) Successful in 26s
build configuration / build_vault01 (push) Successful in 1m1s
build configuration / build_web02 (push) Successful in 1m0s
build configuration / build_compute01 (push) Successful in 1m6s
build configuration / build_storage01 (push) Successful in 1m10s
build configuration / build_web01 (push) Successful in 1m21s
npins update / npins_update (push) Successful in 1m20s
ds-fr update / npins_update (push) Successful in 2m12s
2024-02-09 12:37:27 +01:00
64c5cfbee7 feat(forgejo-runners): Make nixfmt-rfc-style available 2024-02-07 18:47:07 +01:00
852e220ec2 fix(forgejo): Don't spam watchers
All checks were successful
lint / check (push) Successful in 30s
build configuration / build_web02 (push) Successful in 1m0s
build configuration / build_vault01 (push) Successful in 1m0s
build configuration / build_compute01 (push) Successful in 1m5s
build configuration / build_storage01 (push) Successful in 1m8s
build configuration / build_web01 (push) Successful in 1m20s
2024-02-07 18:39:53 +01:00
22dea9ec7d feat(forgejo): Setup mail
All checks were successful
build configuration / build_compute01 (push) Successful in 57s
build configuration / build_storage01 (push) Successful in 58s
build configuration / build_vault01 (push) Successful in 49s
build configuration / build_web01 (push) Successful in 1m11s
lint / check (push) Successful in 21s
build configuration / build_web02 (push) Successful in 46s
2024-02-07 10:19:13 +01:00
5e3819c9b2 feat(shell): Add pre-commit hooks and reformat the repo 2024-02-02 10:51:31 +01:00
7a9c9ac473 feat(storage01/netbird): Enable coturn
All checks were successful
build configuration / build_web02 (push) Successful in 55s
build configuration / build_vault01 (push) Successful in 54s
build configuration / build_web01 (push) Successful in 1m15s
build configuration / build_storage01 (push) Successful in 1m15s
build configuration / build_compute01 (push) Successful in 1m19s
2024-01-23 16:22:23 +01:00
c74017d1fc feat(netbird): Use preferred_username instead of uuid
All checks were successful
build configuration / build_vault01 (push) Successful in 53s
build configuration / build_storage01 (push) Successful in 1m6s
build configuration / build_web01 (push) Successful in 1m11s
build configuration / build_compute01 (push) Successful in 1m19s
build configuration / build_web02 (push) Successful in 42s
2024-01-16 08:56:24 +01:00
1d92b61e48 feat(forgejo-runners): Increase number of runners on storage01 2024-01-12 11:01:41 +01:00
e34d5d003f feat(dgn-hardware): Move specific configurations back to the servers
All checks were successful
build configuration / build_storage01 (push) Successful in 52s
build configuration / build_vault01 (push) Successful in 1m2s
build configuration / build_web01 (push) Successful in 1m8s
build configuration / build_compute01 (push) Successful in 1m14s
build configuration / build_web02 (push) Successful in 42s
2024-01-11 12:58:58 +01:00
df8831301f feat(storage01): Switch to nix-modules for forgejo nix runners
All checks were successful
build configuration / build_compute01 (push) Successful in 1m46s
build configuration / build_storage01 (push) Successful in 55s
build configuration / build_web01 (push) Successful in 1m3s
2024-01-10 13:59:11 +01:00
4716f8a398 feat(modules): Replace dgn-secrets by age-secrets
All checks were successful
build configuration / build_compute01 (push) Successful in 1m6s
build configuration / build_storage01 (push) Successful in 44s
build configuration / build_web01 (push) Successful in 57s
npins update / npins_update (push) Successful in 46s
2024-01-09 14:48:33 +01:00
03d4fd3982 feat(fail2ban): Add preauth jail and enable on storage01
All checks were successful
build configuration / build_web01 (push) Successful in 45s
build configuration / build_storage01 (push) Successful in 56s
build configuration / build_compute01 (push) Successful in 1m13s
2024-01-05 16:10:06 +01:00
Tom Hubrecht
9026e89669 feat(storage01): Use nix runners 2023-12-15 20:12:30 +01:00
Tom Hubrecht
1bb4e2e6ce fix(gitea-actions-runner): Type correctly the options
All checks were successful
npins update / npins_update (push) Successful in 4m4s
2023-12-12 19:21:06 +01:00
Tom Hubrecht
b4ded5b2ce feat(containers): Move image storage and factorize some code 2023-12-12 18:39:09 +01:00
Tom Hubrecht
e49a967b20 feat(attic): Disable flake overlay 2023-12-11 15:54:36 +01:00
Tom Hubrecht
45edfee048 feat(hardware): Add kernelParams for all machines so that virtualisation is possible 2023-12-11 01:05:05 +01:00
Tom Hubrecht
db474477c9 fix(garage): Fix chunked file uploads from nextcloud 2023-12-08 17:54:39 +01:00
Tom Hubrecht
f9a194b636 fix(garage): Increase the max body size 2023-12-08 14:53:17 +01:00
Tom Hubrecht
04ce6d37f6 feat(peertube): Allow editing config from the web interface 2023-12-08 14:53:17 +01:00
Tom Hubrecht
a1deeed763 feat(garage): Update to v0.9 and switch to lmdb as db backend 2023-12-05 23:41:26 +01:00
Tom Hubrecht
a94416697f fix(attic): Use correct bucket and allow larger files 2023-12-05 23:10:36 +01:00
Tom Hubrecht
942e75460c feat(gitea-actions-runner): Setup a second identical runner 2023-12-05 13:47:32 +01:00
Tom Hubrecht
ab694c03b6 feat(storage01): Deploy a forgejo runner 2023-12-04 20:55:44 +01:00
Tom Hubrecht
4829f2e11e feat(forgejo): Allow all emails for registration (for now) 2023-12-04 12:43:57 +01:00
Tom Hubrecht
086f968663 feat: Enable netbird on all machines 2023-12-04 09:16:04 +01:00
Tom Hubrecht
6a25ccbd1a feat(netbird): Deploy management server on storage01 2023-12-03 22:13:30 +01:00
Tom Hubrecht
9e893664ec fix(forgejo): Rename db for passwordless connection 2023-11-29 20:31:16 +01:00
Tom Hubrecht
0dc3dfd82d feat: Update compute01, storage01 to 23.11 2023-11-29 16:12:24 +01:00
Tom Hubrecht
18b6b0f605 feat(modules/dgn-harware): Refactor hardware config 2023-11-29 16:11:35 +01:00
Tom Hubrecht
6476bd9adb chore(secrets): Rekey secrets 2023-10-16 10:20:39 +02:00
Tom Hubrecht
de5fe11f84 fix(storage01): Fix garage and peertube config 2023-10-05 23:28:27 +02:00
Tom Hubrecht
86129fb971 feat(nix-lib): Rename dgn-lib to lib.extra 2023-10-04 09:23:48 +02:00
Tom Hubrecht
5622bc3748 feat(dgn-secrets): Add a matches option
This option allows specifying regexes tied to options.
When a secret matches a pattern, the the options are applied to it.
2023-10-02 22:48:18 +02:00
Tom Hubrecht
56cd177d3e feat(nix-lib): Update to 0.1.5 and switch to using mkConfig 2023-10-02 13:53:20 +02:00
Tom Hubrecht
4be2f40abe feat(dgn-web): Enable module on nodes serving web content
Also remove the firewall config as it is now centralized.
2023-10-01 23:08:54 +02:00
Tom Hubrecht
ef9f84430e feat(storage01): Deploy atticd on cachix.dgnum.eu 2023-09-28 17:20:16 +02:00
Tom Hubrecht
1786499291 fix(storage01): Remove unused secret from list 2023-09-27 22:38:43 +02:00
Tom Hubrecht
26b2fa656f chore(storage01): Remove unused secret 2023-09-26 20:57:11 +02:00
Tom Hubrecht
58a55c43e4 feat(peertube): Update config
Add smtp configuration and other miscelleanous settings
2023-09-24 23:11:54 +02:00
Tom Hubrecht
b6cb1e798e fix(forgejo): appName -> settings.DEFAULT.APP_NAME 2023-09-24 13:27:37 +02:00
Tom Hubrecht
f08259134a feat(garage): Use environmentFile for secrets 2023-09-24 13:27:14 +02:00
Tom Hubrecht
be8ac1a424 feat(forgejo): Switch to forgejo module 2023-09-18 20:55:16 +02:00
Tom Hubrecht
7395f240ee fix(forgejo): Use allowlist instead of whitelist
Also fix the filter
2023-09-18 10:48:54 +02:00
Tom Hubrecht
0441ebe4ae feat(storage01): Update zpool configuration
Use only one pool for slow storage
Setup garage to use the available pools
2023-09-17 18:13:35 +02:00
Tom Hubrecht
a49774b6a6 feat(keys): Add a key for thubrecht and rekey secrets 2023-09-16 16:08:08 +02:00
Tom Hubrecht
4e618d6129 feat(forgejo): Update to 1.20.4-0 via patch 2023-09-14 19:27:01 +02:00
Tom Hubrecht
8ff860d3b8 feat(storage01): Deploy peertube on videos.dgnum.eu 2023-09-13 10:39:55 +02:00
Tom Hubrecht
475638baa8 fix(forgejo): Use common rules for the secret name 2023-09-13 10:00:50 +02:00
Tom Hubrecht
4b6e2fc3b1 fix(garage): Setup correctly the reverse proxy 2023-09-11 18:54:17 +02:00
Tom Hubrecht
63090df1a4 feat(storage01): Deploy basic garage 2023-09-11 11:17:52 +02:00
Tom Hubrecht
e755c43d5a storage01/forgejo: Init on git.dgnum.eu 2023-07-24 09:50:57 +02:00
Tom Hubrecht
078365e576 lib: Use sources.nixpkgs instead of <nixpkgs> 2023-07-24 09:10:34 +02:00
Tom Hubrecht
98f2077568 machines: Add boilerplate for enabling modules and services 2023-07-23 21:46:53 +02:00
Tom Hubrecht
8cecf0eae8 hive: Use stateVersion defined in the nodes metadata 2023-07-23 21:46:20 +02:00
Tom Hubrecht
2274668f9b modules: Setup dgn-network with configuration from metadata 2023-07-20 12:32:31 +02:00
Tom Hubrecht
c111662a9e modules/dgn-hardware: Set default configurations 2023-07-18 17:03:01 +02:00
Tom Hubrecht
5b4cf12ed7 machines: Add compute01 and storage01 2023-07-18 17:00:31 +02:00