infrastructure

Author	SHA1	Message	Date
Tom Hubrecht	358b5a6497	feat(storage01): Deploy VictoriaMetrics and VictoriaLogs on the VPN	2025-02-09 00:30:46 +01:00
HT Chores	50a97b42ec	chore(npins): Update nixos-unstable	2025-02-08 12:17:26 +00:00
Tom Hubrecht	0597476550	chore(npins): Update dgsi	2025-02-06 14:01:36 +01:00
Tom Hubrecht	7eef4e2661	feat(meta): Use the module system to directly create the admin list from the groups	2025-02-06 13:41:03 +01:00
Tom Hubrecht	0433a00636	chore(bootstrap): Rename file	2025-02-06 13:08:04 +01:00
Tom Hubrecht	9fe392d4ea	chore(meta): Format	2025-02-06 13:08:04 +01:00
sinavir	00c70ce869	chore(lib): Clean instanciation	2025-02-06 13:08:04 +01:00
sinavir	e0759140cc	chore: Refactor meta to a module architecture Get rid of the weird half nix half module stuff.	2025-02-06 13:08:04 +01:00
sinavir	9d24c766f3	feat(keys): Move keys to meta chore: revert meta stuff	2025-02-06 13:08:04 +01:00
Tom Hubrecht	f55107301a	chore(npins): Update dgsi	2025-02-06 11:24:34 +01:00
Ryan Lahfa	b5fe7bd71f	feat(machines/nixos/build01/nix-builder): add builder-specific keys via `dgn-keys` Reuses the commit on builder-specific keys. Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>	2025-02-06 01:30:45 +01:00
Ryan Lahfa	551c75ac47	feat(machines/nixos/build01/nix-builder): enable trusted remote building This enables any nix-builder to be able to remote build with the trusted bit in Nix. This effectively gives root to all these people, I don't think it's a big deal. Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>	2025-02-06 01:30:45 +01:00
Ryan Lahfa	5ca85e3430	feat(keys): add builder-specific keys For remote building, keys are usually isolated from the main keys. This enables another list of keys to add. Signed-off-by: Ryan Lahfa <ryan@dgnum.eu>	2025-02-06 01:28:11 +01:00
catvayor	c5623896f3	feat(isp/legal): scripts to reply to legal request	2025-02-05 17:05:01 +01:00
HT Chores	bdd1c14a46	chore(npins): Update kat-pkgs	2025-02-05 16:56:55 +01:00
HT Chores	8864aefa38	chore(npins): Update dgsi	2025-02-05 16:30:36 +01:00
catvayor	a305a69aad	fix(bridge01/network): hack! resolve arp of the router	2025-02-05 16:20:33 +01:00
catvayor	ce66001883	fix(update): adapted patch to unstable update	2025-02-05 16:08:06 +01:00
HT Chores	c27f63b2e2	chore(npins): Update nixos-unstable	2025-02-05 16:08:06 +01:00
catvayor	b3eb86c0a1	feat(ISP/firewall): forward filtering removes the snat filtering of preliminar tests	2025-02-05 15:52:06 +01:00
HT Chores	5f5fae103f	chore(npins): Update lix-module	2025-02-05 15:44:07 +01:00
HT Chores	69e85ad6da	chore(npins): Update lix	2025-02-05 15:30:26 +01:00
catvayor	69849b3d08	feat(isp): connecting all APs	2025-02-05 14:20:00 +01:00
catvayor	76239af209	refactor(netconf): use dgn-isp for switches	2025-02-05 14:20:00 +01:00
catvayor	1ed3749c33	feat(netconf/dgn-isp): init module to make isp switches description easier	2025-02-05 14:20:00 +01:00
catvayor	15cec17611	feat(netconf/dgn-profiles): init Module to factorise port configuration	2025-02-05 14:20:00 +01:00
sinavir	902cce4edb	fix(bridge01): Make it finally work	2025-02-05 12:32:58 +01:00
sinavir	2f2cee559e	feat(sso/groups): Add grp_cri_nps	2025-02-05 10:56:37 +01:00
sinavir	bf324738b1	feat(sources/nixpkgs): Add kanidm memberless patch	2025-02-04 15:27:05 +01:00
sinavir	bbdc5ef6da	fix(web03/ernestophone): Missing secrets	2025-02-04 14:06:46 +01:00
Elias Coppens	9560055caf	feat(programs): Add utilities programs to dgn-console	2025-02-04 00:25:02 +01:00
catvayor	304103af3a	feat(netconf/netcore01): init	2025-02-03 15:08:36 +01:00
catvayor	d2603b38d8	feat(netconf/netaccess01): init	2025-02-03 15:08:36 +01:00
catvayor	222dbd724c	feat(netcore02): allow hypervisor vlan in potos	2025-02-03 15:08:36 +01:00
catvayor	2b4a332bf6	feat(netconf/scripts): init script for deployment	2025-02-03 15:08:36 +01:00
Tom Hubrecht	fabfc982f2	feat(compute01/dgsi): Update	2025-02-02 11:12:04 +01:00
sinavir	9e0e7d01ec	feat(garage/actes-administratifs): Init bucket	2025-02-02 11:09:27 +01:00
Tom Hubrecht	2c59fd4e81	feat(dgsi): Update staff group	2025-01-30 17:34:04 +01:00
Tom Hubrecht	8705fe8865	feat(meta): Add bureau group	2025-01-30 17:18:49 +01:00
HT Chores	526a2e709d	chore(npins): Update wp4nix	2025-01-30 13:42:31 +01:00
HT Chores	9aa8d49378	chore(npins): Update dgsi	2025-01-30 12:15:33 +00:00
catvayor	905b252ac6	fix(vault01/snat): we lost an ip for the oob	2025-01-28 12:17:19 +01:00
catvayor	7d0f447036	fix(vault01/iprules): allow packets to return to orig saddr	2025-01-28 12:16:42 +01:00
Tom Hubrecht	567b153c31	feat(kanidm): Add groups for service admins	2025-01-28 08:31:45 +01:00
catvayor	93a26c26f9	feat(vault01/radius): declare user vlans	2025-01-27 20:35:35 +01:00
catvayor	c97db7609d	feat(vault01): global options for vlans decl	2025-01-27 20:29:15 +01:00
catvayor	7dab4ef1cb	feat(isp/vault01): (temp) ipv4 for production APs	2025-01-27 10:27:29 +01:00
catvayor	2277fdb32d	feat(isp/vault01): IPv6 send RA for APs	2025-01-27 10:00:02 +01:00
Tom Hubrecht	cd0414f12f	chore(dgsi): Update	2025-01-26 00:53:37 +01:00
Tom Hubrecht	d0b4f2a921	fix(pretalx): Disable test failing in CI	2025-01-26 00:14:09 +01:00

1 2 3 4 5 ...

1123 commits