DGNum/infrastructure
9
6
Fork 3
Code Issues 31 Pull requests 32 Projects 1 Releases Packages Wiki Activity Actions

Compare commits

base: DGNum:41fb436140f193a70d9b16b30125ab1686eb97b9
Branches Tags
DGNum:main
DGNum:ntfy-monitoring
DGNum:snmp-pdu
DGNum:lon/lon
DGNum:lon/proxmox-nixos
DGNum:lon/nixos-unstable
DGNum:lon/nixos-25.05
DGNum:lon/nixos-24.11
DGNum:lon/lix
DGNum:lon/disko
DGNum:lon/agenix
DGNum:disko-remove
DGNum:declarative-buckets
DGNum:nixos-25.05
DGNum:vault01-isp
DGNum:lix-diff
DGNum:zulip
DGNum:netbird-relay
DGNum:demarches01
DGNum:hackdays-ap
DGNum:raito/zulip
DGNum:staging-cas
DGNum:mattermost
DGNum:feature/hackdays01
DGNum:by-name
DGNum:www-eleves
DGNum:audit
DGNum:testing02
DGNum:openwrt-exporter
DGNum:ban_git_scrappers
DGNum:meta-isp
DGNum:mdebray/ap-dev
DGNum:ap-poc-v01
DGNum:hypervisor
DGNum:victoria-metrics
DGNum:init-dgnum-page
DGNum:takumi-can-do-ollama
DGNum:hackdays2025
DGNum:poc-v1.0
..
compare: DGNum:720d11b3d2fea637c737bf212a209349e39fb33d
Branches Tags
DGNum:ntfy-monitoring
DGNum:snmp-pdu
DGNum:main
DGNum:lon/lon
DGNum:lon/proxmox-nixos
DGNum:lon/nixos-unstable
DGNum:lon/nixos-25.05
DGNum:lon/nixos-24.11
DGNum:lon/lix
DGNum:lon/disko
DGNum:lon/agenix
DGNum:disko-remove
DGNum:declarative-buckets
DGNum:nixos-25.05
DGNum:vault01-isp
DGNum:lix-diff
DGNum:zulip
DGNum:netbird-relay
DGNum:demarches01
DGNum:hackdays-ap
DGNum:raito/zulip
DGNum:staging-cas
DGNum:mattermost
DGNum:feature/hackdays01
DGNum:by-name
DGNum:www-eleves
DGNum:audit
DGNum:testing02
DGNum:openwrt-exporter
DGNum:ban_git_scrappers
DGNum:meta-isp
DGNum:mdebray/ap-dev
DGNum:ap-poc-v01
DGNum:hypervisor
DGNum:victoria-metrics
DGNum:init-dgnum-page
DGNum:takumi-can-do-ollama
DGNum:hackdays2025
DGNum:poc-v1.0

1 commit
41fb436140 ... 720d11b3d2

Author SHA1 Message Date
catvayor
720d11b3d2
feat(nimbolus): init a http terraform backend
All checks were successful
Check meta / check_dns (pull_request) Successful in 17s
Details
Check workflows / check_workflows (pull_request) Successful in 19s
Details
Build all the nodes / Jaccess01 (pull_request) Successful in 24s
Details
Run pre-commit on all files / pre-commit (push) Successful in 26s
Details
Build all the nodes / Jaccess04 (pull_request) Successful in 27s
Details
Run pre-commit on all files / pre-commit (pull_request) Successful in 34s
Details
Build all the nodes / netcore01 (pull_request) Successful in 25s
Details
Build all the nodes / ap01 (pull_request) Successful in 43s
Details
Build all the nodes / netcore02 (pull_request) Successful in 25s
Details
Build all the nodes / hypervisor01 (pull_request) Successful in 1m1s
Details
Build all the nodes / lab-router01 (pull_request) Successful in 1m3s
Details
Build all the nodes / hypervisor03 (pull_request) Successful in 1m5s
Details
Build all the nodes / geo02 (pull_request) Successful in 1m5s
Details
Build all the nodes / bridge01 (pull_request) Successful in 1m8s
Details
Build all the nodes / cof02 (pull_request) Successful in 1m8s
Details
Build all the nodes / geo01 (pull_request) Successful in 1m9s
Details
Build all the nodes / hypervisor02 (pull_request) Successful in 1m9s
Details
Build all the nodes / build01 (pull_request) Successful in 1m10s
Details
Build all the nodes / iso (pull_request) Successful in 1m10s
Details
Build all the nodes / tower01 (pull_request) Successful in 57s
Details
Build all the nodes / vault01 (pull_request) Successful in 1m7s
Details
Build all the nodes / compute01 (pull_request) Successful in 1m35s
Details
Build the shell / build-shell (pull_request) Successful in 35s
Details
Build all the nodes / rescue01 (pull_request) Successful in 1m21s
Details
Build all the nodes / web03 (pull_request) Successful in 1m6s
Details
Build all the nodes / web02 (pull_request) Successful in 1m7s
Details
Build all the nodes / storage01 (pull_request) Successful in 1m27s
Details
Build all the nodes / krz01 (pull_request) Successful in 1m51s
Details
Build all the nodes / zulip01 (pull_request) Successful in 51s
Details
Build all the nodes / web01 (pull_request) Successful in 1m14s
Details
2025-06-13 20:54:20 +02:00
5 changed files with 12 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

14
machines/nixos/compute01/nimbolus.nix
View file

@ -2,7 +2,12 @@
#
# SPDX-License-Identifier: EUPL-1.2
{ pkgs, sources, ... }:
{
pkgs,
sources,
config,
...
}:
let
host = "nimbolus.dgnum.eu";
port = 9008;
@ -23,10 +28,9 @@ in
# AUTH_JWT_OIDC_ISSUER_URL = "https://vault.dgnum.eu/v1/identity/oidc";
};
secretEnvironment = {
# FIXME: use agenix and real secrets
KMS_KEY = pkgs.writeText "nimbolus-kms-unsecure" "nVbFN9o4rIP2qi0SWtcgNZlWolrF61/Drx3YxeQTSZk=";
STORAGE_S3_ACCESS_KEY = pkgs.writeText "unsecure" "KEYID";
STORAGE_S3_SECRET_KEY = pkgs.writeText "unsecure" "KEYSECRET";
KMS_KEY = config.age.secrets."nimbolus-kms_key".path;
STORAGE_S3_ACCESS_KEY = config.age.secrets."nimbolus-s3_access".path;
STORAGE_S3_SECRET_KEY = config.age.secrets."nimbolus-s3_secret".path;
};
};
dgn-web.simpleProxies.nimbolus = {

BIN
machines/nixos/compute01/secrets/nimbolus-kms_key Normal file
View file

Binary file not shown.

BIN
machines/nixos/compute01/secrets/nimbolus-s3_access Normal file
View file

Binary file not shown.

BIN
machines/nixos/compute01/secrets/nimbolus-s3_secret Normal file
View file

Binary file not shown.

3
machines/nixos/compute01/secrets/secrets.nix
View file

@ -25,6 +25,9 @@
"netbox-environment_file"
"nextcloud-adminpass_file"
"nextcloud-s3_secret_file"
"nimbolus-kms_key"
"nimbolus-s3_access"
"nimbolus-s3_secret"
"opengist-environment_file"
"outline-oidc_client_secret_file"
"outline-smtp_password_file"