Commit graph

354 commits

Author SHA1 Message Date
Tom Hubrecht
c4c4ed18a5 chore(ds-fr): Update to 2023-12-18-02 2023-12-18 11:00:10 +01:00
Tom Hubrecht
7705b2c30a fix(nextcloud): Use correct settings for S3 config 2023-12-18 10:46:10 +01:00
Tom Hubrecht
9026e89669 feat(storage01): Use nix runners 2023-12-15 20:12:30 +01:00
Tom Hubrecht
4de8abc45b feat(ds-fr): Update our version 2023-12-14 16:45:59 +01:00
Tom Hubrecht
d5bbf07484 feat(ds-fr): Update our version 2023-12-14 14:20:31 +01:00
Tom Hubrecht
3a5e7fec01 feat(ds-fr): Update to latest version 2023-12-13 15:32:36 +01:00
Tom Hubrecht
def4393a8c feat(ds-fr): Update to latest version and enable admins group 2023-12-13 14:40:20 +01:00
Tom Hubrecht
80e0c58400 feat: Remove sources 2023-12-12 19:26:18 +01:00
Tom Hubrecht
1bb4e2e6ce fix(gitea-actions-runner): Type correctly the options 2023-12-12 19:21:06 +01:00
Tom Hubrecht
5c19f7a787 feat(k-radius): Only bring pydantic from python-updates 2023-12-12 19:18:57 +01:00
Tom Hubrecht
b4ded5b2ce feat(containers): Move image storage and factorize some code 2023-12-12 18:39:09 +01:00
Tom Hubrecht
f8443e00d1 feat(npins): Remove nixos-unstable 2023-12-12 14:45:01 +01:00
Tom Hubrecht
e49a967b20 feat(attic): Disable flake overlay 2023-12-11 15:54:36 +01:00
Tom Hubrecht
8234dfbb74 feat(www.eleves): Deploy eleves webpage on web01 2023-12-11 15:54:00 +01:00
Tom Hubrecht
964fe8cc21 feat(ds-fr): Update to 2023-12-11-01 2023-12-11 11:29:15 +01:00
Tom Hubrecht
ebe56b5070 feat(nextcloud): Setup collabora on code.dgnum.eu 2023-12-11 01:05:20 +01:00
Tom Hubrecht
45edfee048 feat(hardware): Add kernelParams for all machines so that virtualisation is possible 2023-12-11 01:05:05 +01:00
Tom Hubrecht
2e4f7d98c4 feat(outline): Disallow indexing of ds docs 2023-12-10 20:53:00 +01:00
Tom Hubrecht
261ec7d16f feat(ds-fr): Replace documentation links 2023-12-10 20:38:08 +01:00
Tom Hubrecht
1fed2ade2f feat(ds-fr): Add custom documentation url 2023-12-10 20:24:21 +01:00
Tom Hubrecht
afff33da0a feat(ds-fr): Replace the signup link 2023-12-10 19:32:49 +01:00
Tom Hubrecht
dde4e48f96 fix(matterbridge): Finalize configuration 2023-12-10 18:25:10 +01:00
Tom Hubrecht
0569c01192 feat(ds-fr): Update patches 2023-12-10 18:24:52 +01:00
Tom Hubrecht
5aea0b87b1 feat(matterbridge): Update config 2023-12-10 14:34:56 +01:00
Tom Hubrecht
2cd8a54e8e fix(nextcloud): Last fix for memories and preview 2023-12-08 18:52:21 +01:00
Tom Hubrecht
fc5d401dae feat(matterbridge): Update settings 2023-12-08 17:54:50 +01:00
Tom Hubrecht
db474477c9 fix(garage): Fix chunked file uploads from nextcloud 2023-12-08 17:54:39 +01:00
Tom Hubrecht
1e77824251 fix(nextcloud): Fix preview generator and update settings 2023-12-08 17:54:16 +01:00
Tom Hubrecht
fa78327922 feat(web01): Install matterbridge 2023-12-08 14:53:17 +01:00
Tom Hubrecht
f9a194b636 fix(garage): Increase the max body size 2023-12-08 14:53:17 +01:00
Tom Hubrecht
04ce6d37f6 feat(peertube): Allow editing config from the web interface 2023-12-08 14:53:17 +01:00
sinavir
a81c902d53 feat(web01): Update web01 to 23.11 2023-12-06 16:55:51 +01:00
Tom Hubrecht
a1deeed763 feat(garage): Update to v0.9 and switch to lmdb as db backend 2023-12-05 23:41:26 +01:00
Tom Hubrecht
a94416697f fix(attic): Use correct bucket and allow larger files 2023-12-05 23:10:36 +01:00
Tom Hubrecht
ecee23d4df feat(nextcloud): Disable notify_push 2023-12-05 21:56:11 +01:00
Tom Hubrecht
a1df7c59bf feat(nextcloud): Increase max upload size 2023-12-05 21:54:47 +01:00
Tom Hubrecht
791d0327b9 feat(ds-fr): Update to 2023-12-05-01 2023-12-05 17:26:28 +01:00
Tom Hubrecht
942e75460c feat(gitea-actions-runner): Setup a second identical runner 2023-12-05 13:47:32 +01:00
Tom Hubrecht
ab694c03b6 feat(storage01): Deploy a forgejo runner 2023-12-04 20:55:44 +01:00
Raito Bezarius
bd598dfdb0 feat(hedgedoc): allow free URL yes yes 2023-12-04 18:44:59 +01:00
Tom Hubrecht
4829f2e11e feat(forgejo): Allow all emails for registration (for now) 2023-12-04 12:43:57 +01:00
Tom Hubrecht
086f968663 feat: Enable netbird on all machines 2023-12-04 09:16:04 +01:00
Tom Hubrecht
6a25ccbd1a feat(netbird): Deploy management server on storage01 2023-12-03 22:13:30 +01:00
Tom Hubrecht
f173138848 feat(radius): Init config 2023-12-03 20:42:20 +01:00
Tom Hubrecht
3e763f419a feat(hedgedoc): allow free urls 2023-12-03 13:24:22 +01:00
Tom Hubrecht
5426289b21 feat(ds-fr): Update patches 2023-12-03 13:24:09 +01:00
Tom Hubrecht
d2f68277e0 feat(ds-fr): Use imagemagick and make things work 2023-12-01 14:04:20 +01:00
Tom Hubrecht
5662181bd7 feat(ds-fr): Add new patches 2023-12-01 10:39:16 +01:00
Tom Hubrecht
441702b5e5 feat(ds-fr): Correctly apply patches 2023-11-30 19:59:19 +01:00
Tom Hubrecht
0b41aeaf01 feat(onlyoffice): Remove onlyoffica as it does not work currently 2023-11-30 19:58:59 +01:00
Tom Hubrecht
351a31ea92 feat(ds-fr): Split out our commits 2023-11-30 17:54:52 +01:00
Tom Hubrecht
9e893664ec fix(forgejo): Rename db for passwordless connection 2023-11-29 20:31:16 +01:00
Tom Hubrecht
0dc3dfd82d feat: Update compute01, storage01 to 23.11 2023-11-29 16:12:24 +01:00
Tom Hubrecht
18b6b0f605 feat(modules/dgn-harware): Refactor hardware config 2023-11-29 16:11:35 +01:00
Tom Hubrecht
a4d9497158 fix(ds-fr): Add patches 2023-11-29 14:45:21 +01:00
Tom Hubrecht
1f725215db fix(ds-fr): patch everything 2023-11-28 20:51:23 +01:00
Tom Hubrecht
fa799c9dda feat(modules): Deploy fail2ban 2023-11-28 20:51:23 +01:00
Tom Hubrecht
f3ab09fe4e feat(ds-fr): Add custom patches 2023-11-28 20:51:23 +01:00
Tom Hubrecht
23c3ecd99d fix(nextcloud): Write correct options 2023-11-22 16:07:05 +01:00
Tom Hubrecht
a54bedb6c7 fix(nextcloud): Increase php string buffer 2023-11-22 16:01:49 +01:00
Tom Hubrecht
b0b576e9fe feat(nextcloud): Add a service to preview documents each day 2023-11-22 12:56:33 +01:00
Tom Hubrecht
6fd98b6c02 fix(nextcloud): Increase pm.max_children 2023-11-22 09:40:32 +01:00
Tom Hubrecht
ce18c18b2c feat(nextcloud): Change exiftool version used 2023-11-20 17:24:37 +01:00
Tom Hubrecht
d389cb38cd feat(ds-fr): Update to bleeding-edge version 2023-11-20 17:24:12 +01:00
Tom Hubrecht
9555a5c8e5 feat(compute01/ds-fr): Make update autonomous and update to latest version 2023-11-16 09:21:34 +01:00
Tom Hubrecht
c5e1ecf0f7 fix(compute01/nextcloud): Add perl to NC's path 2023-11-14 15:41:24 +01:00
Tom Hubrecht
12ae5d7efd feat(compute01/ds-fr): Update to latest version 2023-11-10 11:18:40 +01:00
sinavir
af0b63b2b6 fix(linkal): Fix metis2linkal 2023-11-08 00:04:18 +01:00
sinavir
ce301ae104 fix(linkal): Fix metis2linkal script 2023-11-07 23:47:50 +01:00
sinavir
dee96a30fd fix(web01): Correct email and s3 settings 2023-10-29 21:16:29 +01:00
Tom Hubrecht
6641c31c55 fix(compute01/vaultwarden): Use secure way to set ADMIN_TOKEN 2023-10-27 14:59:35 +02:00
sinavir
ff9e582e70 feat(linkal): Sync with metis on ens.cal.dgnum.eu 2023-10-27 14:36:57 +02:00
sinavir
bae1d02761 feat(web01): Add castopod 2023-10-27 14:16:48 +02:00
Tom Hubrecht
1c709b5c3b fix(web01/ntfy-sh): Update settings 2023-10-26 14:18:58 +02:00
Tom Hubrecht
c19f8a0822 feat(ntfy-sh): Add smtp setup 2023-10-22 22:31:06 +02:00
Tom Hubrecht
e5fe18f28c feat(web01): Deploy ntfy-sh on push.dgnum.eu 2023-10-22 20:51:18 +02:00
Tom Hubrecht
acc2ee6fef feat(wordpress): Add lavoixduntexte
Add the website lavoixduntexte, as well as wrappers to create addons easily
2023-10-22 18:03:58 +02:00
sinavir
14b436f331 feat(metis): Use providers from upstream 2023-10-20 20:10:55 +02:00
Tom Hubrecht
6476bd9adb chore(secrets): Rekey secrets 2023-10-16 10:20:39 +02:00
Tom Hubrecht
c910159cb2 feat(compute01): Deploy vaultwarden on pass.dgnum.eu 2023-10-14 14:29:16 +02:00
Tom Hubrecht
1ea922c3f1 fix(ds-fr): No use for using the group sendmail 2023-10-07 15:49:18 +02:00
Tom Hubrecht
5b22e8e88d feat(compute01): Enable wordpress 2023-10-07 15:48:53 +02:00
Tom Hubrecht
de5fe11f84 fix(storage01): Fix garage and peertube config 2023-10-05 23:28:27 +02:00
Tom Hubrecht
3785088616 feat(outline): Upgrade to v0.72.0 2023-10-05 23:27:04 +02:00
Tom Hubrecht
c2d7adfcd0 feat(compute01): Deploy hedgedoc on pads.dgnum.eu 2023-10-05 09:52:13 +02:00
Tom Hubrecht
7873680895 fix(onlyoffice): Remove unusable patches 2023-10-05 09:17:06 +02:00
Tom Hubrecht
6f136c5233 chore(ds-fr): Refactor module 2023-10-04 14:35:32 +02:00
Tom Hubrecht
8d5dfb66e3 feat(compute01): Deploy onlyoffice on documentserver.dgnum.eu 2023-10-04 14:34:39 +02:00
Tom Hubrecht
205c5eb544 feat(compute01): Deploy RStudio server on rstudio.dgnum.eu 2023-10-04 14:34:39 +02:00
Tom Hubrecht
86129fb971 feat(nix-lib): Rename dgn-lib to lib.extra 2023-10-04 09:23:48 +02:00
sinavir
143bc82d3e fix(metis): Use serverAliases for metis 2023-10-03 01:05:00 +02:00
Tom Hubrecht
566b392b21 feat(metis): Use upstream expression for the package 2023-10-02 23:13:04 +02:00
Tom Hubrecht
5622bc3748 feat(dgn-secrets): Add a matches option
This option allows specifying regexes tied to options.
When a secret matches a pattern, the the options are applied to it.
2023-10-02 22:48:18 +02:00
Tom Hubrecht
df8c11180b feat(ds-fr): Update to 2023-10-02-01 2023-10-02 21:20:01 +02:00
Tom Hubrecht
36c6859ef9 fix(linkal): Use http-01 challenge for certificates 2023-10-02 21:18:40 +02:00
Tom Hubrecht
56cd177d3e feat(nix-lib): Update to 0.1.5 and switch to using mkConfig 2023-10-02 13:53:20 +02:00
Tom Hubrecht
37137ca20b feat(compute01): Deploy zammad on support.dgnum.eu 2023-10-02 12:50:40 +02:00
Tom Hubrecht
4be2f40abe feat(dgn-web): Enable module on nodes serving web content
Also remove the firewall config as it is now centralized.
2023-10-01 23:08:54 +02:00
Tom Hubrecht
6608ae7726 fix(metis): Add permanent redirect from /calendrier to / 2023-10-01 22:50:15 +02:00
Tom Hubrecht
d48a9bcc4b feat(linkal): Start setting up DNS-01 verification on *.cal.dgnum.eu 2023-09-29 13:27:27 +02:00
Tom Hubrecht
ef9f84430e feat(storage01): Deploy atticd on cachix.dgnum.eu 2023-09-28 17:20:16 +02:00
Tom Hubrecht
18b6744ef1 feat(npins): Add calendrier.eleves.ens.fr
Also deploy updated version with analytics
2023-09-28 12:14:38 +02:00
Tom Hubrecht
1786499291 fix(storage01): Remove unused secret from list 2023-09-27 22:38:43 +02:00
Tom Hubrecht
51880388ec fix(satosa): Make the package reproductible 2023-09-27 22:38:29 +02:00
Tom Hubrecht
be60bb5cbe feat(compute01): Deploy satosa on saml-idp.dgnum.eu 2023-09-27 22:33:18 +02:00
Tom Hubrecht
26b2fa656f chore(storage01): Remove unused secret 2023-09-26 20:57:11 +02:00
Tom Hubrecht
e0bd555d2f feat(compute01): Init satosa at 8.4.0 2023-09-26 20:56:55 +02:00
Tom Hubrecht
8cce7e19cb fix(ds-fr): Switch to local storage
Also disable France Connect login
2023-09-26 20:46:38 +02:00
Tom Hubrecht
2857736e6b feat(web01): Deploy multiple linkals on linkal.dgnum.eu 2023-09-26 18:12:56 +02:00
Tom Hubrecht
156310fdce fix(ds-fr/fc-secrets): Patch only the secrets.yml file 2023-09-26 08:34:43 +02:00
Tom Hubrecht
1c3d44c289 feat(web01): Deploy metis on calendrier.dgnum.eu 2023-09-25 00:40:47 +02:00
Tom Hubrecht
58a55c43e4 feat(peertube): Update config
Add smtp configuration and other miscelleanous settings
2023-09-24 23:11:54 +02:00
Tom Hubrecht
4c5a9685db feat(compute01): Deploy outline on docs.dgnum.eu 2023-09-24 15:47:29 +02:00
Tom Hubrecht
b6cb1e798e fix(forgejo): appName -> settings.DEFAULT.APP_NAME 2023-09-24 13:27:37 +02:00
Tom Hubrecht
f08259134a feat(garage): Use environmentFile for secrets 2023-09-24 13:27:14 +02:00
Tom Hubrecht
c937a56e4f feat(nextcloud): Add available packages 2023-09-24 13:16:57 +02:00
Tom Hubrecht
9f24f1d98d feat(compute01): Deploy demarches simplifiees 2023-09-24 13:16:22 +02:00
Tom Hubrecht
be8ac1a424 feat(forgejo): Switch to forgejo module 2023-09-18 20:55:16 +02:00
Tom Hubrecht
7395f240ee fix(forgejo): Use allowlist instead of whitelist
Also fix the filter
2023-09-18 10:48:54 +02:00
Tom Hubrecht
ac373ba380 feat(nextcloud): Add jpegoptim for use in nc workflow 2023-09-17 18:14:02 +02:00
Tom Hubrecht
0441ebe4ae feat(storage01): Update zpool configuration
Use only one pool for slow storage
Setup garage to use the available pools
2023-09-17 18:13:35 +02:00
Tom Hubrecht
a49774b6a6 feat(keys): Add a key for thubrecht and rekey secrets 2023-09-16 16:08:08 +02:00
Tom Hubrecht
9825675c9c feat(nextcloud): Add ffmpeg for video transcoding 2023-09-15 18:19:11 +02:00
Tom Hubrecht
4e618d6129 feat(forgejo): Update to 1.20.4-0 via patch 2023-09-14 19:27:01 +02:00
Tom Hubrecht
17149184a9 feat(compute01): Deploy kanidm on sso.dgnum.eu 2023-09-14 08:04:48 +02:00
Tom Hubrecht
74e9b18499 feat(compute01): Deploy mastodon on social.dgnum.eu 2023-09-13 11:09:41 +02:00
Tom Hubrecht
8ff860d3b8 feat(storage01): Deploy peertube on videos.dgnum.eu 2023-09-13 10:39:55 +02:00
Tom Hubrecht
475638baa8 fix(forgejo): Use common rules for the secret name 2023-09-13 10:00:50 +02:00
Tom Hubrecht
c4ee0dfc43 feat(nextcloud): Setup s3.dgnum.eu as the primary storage backend 2023-09-11 18:56:07 +02:00
Tom Hubrecht
4b6e2fc3b1 fix(garage): Setup correctly the reverse proxy 2023-09-11 18:54:17 +02:00
Tom Hubrecht
63090df1a4 feat(storage01): Deploy basic garage 2023-09-11 11:17:52 +02:00
Tom Hubrecht
c74ab04df0 feat(compute01): Deploy cloud.dgnum.eu 2023-09-11 11:17:30 +02:00
Tom Hubrecht
e755c43d5a storage01/forgejo: Init on git.dgnum.eu 2023-07-24 09:50:57 +02:00
Tom Hubrecht
078365e576 lib: Use sources.nixpkgs instead of <nixpkgs> 2023-07-24 09:10:34 +02:00
Tom Hubrecht
c97c9303fe keys: Rename web-01 to web01 2023-07-24 09:09:15 +02:00
Tom Hubrecht
98f2077568 machines: Add boilerplate for enabling modules and services 2023-07-23 21:46:53 +02:00
Tom Hubrecht
8cecf0eae8 hive: Use stateVersion defined in the nodes metadata 2023-07-23 21:46:20 +02:00
Tom Hubrecht
c2616ce4f5 modules/dgn-dns: init
Also deploy a DNS server on compute01
2023-07-21 00:37:05 +02:00
Tom Hubrecht
ef211567a8 web01: Finish switching to the new network config 2023-07-20 15:48:01 +02:00
Tom Hubrecht
6c0e2818ac web01: Rename from web-01 2023-07-20 14:21:25 +02:00
Tom Hubrecht
2274668f9b modules: Setup dgn-network with configuration from metadata 2023-07-20 12:32:31 +02:00
Tom Hubrecht
c111662a9e modules/dgn-hardware: Set default configurations 2023-07-18 17:03:01 +02:00
Tom Hubrecht
5b4cf12ed7 machines: Add compute01 and storage01 2023-07-18 17:00:31 +02:00
Tom Hubrecht
4327bac6e4 web-01/plausible: Fix fuckery from happysalada 2023-07-02 17:17:20 +02:00
Tom Hubrecht
da20afa6a6 web-01/plausible: Add smtp password 2023-07-02 13:31:42 +02:00
Tom Hubrecht
c9264e6389 machines/web-01: Install plausible 2023-06-30 18:40:09 +02:00
Tom Hubrecht
a7ce39a2f5 modules/dgn-ssh: Add default ssh configuration for all nodes 2023-05-22 15:21:25 +00:00
Tom Hubrecht
d9f7a944af web-01: Reformat 2023-05-22 15:09:04 +02:00
Tom Hubrecht
91cf28e9d1 web-01: Rename main config files 2023-05-22 15:05:58 +02:00
sinavir
5a0ba44316 web-01: feat: add mosh 2023-05-17 01:11:47 +02:00
sinavir
618f4900e0 web-01: refactor of network and ssh 2023-05-17 01:11:16 +02:00
b74ed6a17b web-01: refactor disko import 2023-05-12 14:50:56 +00:00
fbde3006e5 web-01: minimal config 2023-05-12 14:50:56 +00:00
871f8e1e6a web-01: create partionning scheme 2023-05-12 14:50:40 +00:00