Commit graph

462 commits

Author SHA1 Message Date
Tom Hubrecht
5622bc3748 feat(dgn-secrets): Add a matches option
This option allows specifying regexes tied to options.
When a secret matches a pattern, the the options are applied to it.
2023-10-02 22:48:18 +02:00
Tom Hubrecht
df8c11180b feat(ds-fr): Update to 2023-10-02-01 2023-10-02 21:20:01 +02:00
Tom Hubrecht
36c6859ef9 fix(linkal): Use http-01 challenge for certificates 2023-10-02 21:18:40 +02:00
Tom Hubrecht
56cd177d3e feat(nix-lib): Update to 0.1.5 and switch to using mkConfig 2023-10-02 13:53:20 +02:00
Tom Hubrecht
37137ca20b feat(compute01): Deploy zammad on support.dgnum.eu 2023-10-02 12:50:40 +02:00
Tom Hubrecht
4be2f40abe feat(dgn-web): Enable module on nodes serving web content
Also remove the firewall config as it is now centralized.
2023-10-01 23:08:54 +02:00
Tom Hubrecht
6608ae7726 fix(metis): Add permanent redirect from /calendrier to / 2023-10-01 22:50:15 +02:00
Tom Hubrecht
d48a9bcc4b feat(linkal): Start setting up DNS-01 verification on *.cal.dgnum.eu 2023-09-29 13:27:27 +02:00
Tom Hubrecht
ef9f84430e feat(storage01): Deploy atticd on cachix.dgnum.eu 2023-09-28 17:20:16 +02:00
Tom Hubrecht
18b6744ef1 feat(npins): Add calendrier.eleves.ens.fr
Also deploy updated version with analytics
2023-09-28 12:14:38 +02:00
Tom Hubrecht
1786499291 fix(storage01): Remove unused secret from list 2023-09-27 22:38:43 +02:00
Tom Hubrecht
51880388ec fix(satosa): Make the package reproductible 2023-09-27 22:38:29 +02:00
Tom Hubrecht
be60bb5cbe feat(compute01): Deploy satosa on saml-idp.dgnum.eu 2023-09-27 22:33:18 +02:00
Tom Hubrecht
26b2fa656f chore(storage01): Remove unused secret 2023-09-26 20:57:11 +02:00
Tom Hubrecht
e0bd555d2f feat(compute01): Init satosa at 8.4.0 2023-09-26 20:56:55 +02:00
Tom Hubrecht
8cce7e19cb fix(ds-fr): Switch to local storage
Also disable France Connect login
2023-09-26 20:46:38 +02:00
Tom Hubrecht
2857736e6b feat(web01): Deploy multiple linkals on linkal.dgnum.eu 2023-09-26 18:12:56 +02:00
Tom Hubrecht
156310fdce fix(ds-fr/fc-secrets): Patch only the secrets.yml file 2023-09-26 08:34:43 +02:00
Tom Hubrecht
1c3d44c289 feat(web01): Deploy metis on calendrier.dgnum.eu 2023-09-25 00:40:47 +02:00
Tom Hubrecht
58a55c43e4 feat(peertube): Update config
Add smtp configuration and other miscelleanous settings
2023-09-24 23:11:54 +02:00
Tom Hubrecht
4c5a9685db feat(compute01): Deploy outline on docs.dgnum.eu 2023-09-24 15:47:29 +02:00
Tom Hubrecht
b6cb1e798e fix(forgejo): appName -> settings.DEFAULT.APP_NAME 2023-09-24 13:27:37 +02:00
Tom Hubrecht
f08259134a feat(garage): Use environmentFile for secrets 2023-09-24 13:27:14 +02:00
Tom Hubrecht
c937a56e4f feat(nextcloud): Add available packages 2023-09-24 13:16:57 +02:00
Tom Hubrecht
9f24f1d98d feat(compute01): Deploy demarches simplifiees 2023-09-24 13:16:22 +02:00
Tom Hubrecht
be8ac1a424 feat(forgejo): Switch to forgejo module 2023-09-18 20:55:16 +02:00
Tom Hubrecht
7395f240ee fix(forgejo): Use allowlist instead of whitelist
Also fix the filter
2023-09-18 10:48:54 +02:00
Tom Hubrecht
ac373ba380 feat(nextcloud): Add jpegoptim for use in nc workflow 2023-09-17 18:14:02 +02:00
Tom Hubrecht
0441ebe4ae feat(storage01): Update zpool configuration
Use only one pool for slow storage
Setup garage to use the available pools
2023-09-17 18:13:35 +02:00
Tom Hubrecht
a49774b6a6 feat(keys): Add a key for thubrecht and rekey secrets 2023-09-16 16:08:08 +02:00
Tom Hubrecht
9825675c9c feat(nextcloud): Add ffmpeg for video transcoding 2023-09-15 18:19:11 +02:00
Tom Hubrecht
4e618d6129 feat(forgejo): Update to 1.20.4-0 via patch 2023-09-14 19:27:01 +02:00
Tom Hubrecht
17149184a9 feat(compute01): Deploy kanidm on sso.dgnum.eu 2023-09-14 08:04:48 +02:00
Tom Hubrecht
74e9b18499 feat(compute01): Deploy mastodon on social.dgnum.eu 2023-09-13 11:09:41 +02:00
Tom Hubrecht
8ff860d3b8 feat(storage01): Deploy peertube on videos.dgnum.eu 2023-09-13 10:39:55 +02:00
Tom Hubrecht
475638baa8 fix(forgejo): Use common rules for the secret name 2023-09-13 10:00:50 +02:00
Tom Hubrecht
c4ee0dfc43 feat(nextcloud): Setup s3.dgnum.eu as the primary storage backend 2023-09-11 18:56:07 +02:00
Tom Hubrecht
4b6e2fc3b1 fix(garage): Setup correctly the reverse proxy 2023-09-11 18:54:17 +02:00
Tom Hubrecht
63090df1a4 feat(storage01): Deploy basic garage 2023-09-11 11:17:52 +02:00
Tom Hubrecht
c74ab04df0 feat(compute01): Deploy cloud.dgnum.eu 2023-09-11 11:17:30 +02:00
Tom Hubrecht
e755c43d5a storage01/forgejo: Init on git.dgnum.eu 2023-07-24 09:50:57 +02:00
Tom Hubrecht
078365e576 lib: Use sources.nixpkgs instead of <nixpkgs> 2023-07-24 09:10:34 +02:00
Tom Hubrecht
c97c9303fe keys: Rename web-01 to web01 2023-07-24 09:09:15 +02:00
Tom Hubrecht
98f2077568 machines: Add boilerplate for enabling modules and services 2023-07-23 21:46:53 +02:00
Tom Hubrecht
8cecf0eae8 hive: Use stateVersion defined in the nodes metadata 2023-07-23 21:46:20 +02:00
Tom Hubrecht
c2616ce4f5 modules/dgn-dns: init
Also deploy a DNS server on compute01
2023-07-21 00:37:05 +02:00
Tom Hubrecht
ef211567a8 web01: Finish switching to the new network config 2023-07-20 15:48:01 +02:00
Tom Hubrecht
6c0e2818ac web01: Rename from web-01 2023-07-20 14:21:25 +02:00
Tom Hubrecht
2274668f9b modules: Setup dgn-network with configuration from metadata 2023-07-20 12:32:31 +02:00
Tom Hubrecht
c111662a9e modules/dgn-hardware: Set default configurations 2023-07-18 17:03:01 +02:00
Tom Hubrecht
5b4cf12ed7 machines: Add compute01 and storage01 2023-07-18 17:00:31 +02:00
Tom Hubrecht
4327bac6e4 web-01/plausible: Fix fuckery from happysalada 2023-07-02 17:17:20 +02:00
Tom Hubrecht
da20afa6a6 web-01/plausible: Add smtp password 2023-07-02 13:31:42 +02:00
Tom Hubrecht
c9264e6389 machines/web-01: Install plausible 2023-06-30 18:40:09 +02:00
Tom Hubrecht
a7ce39a2f5 modules/dgn-ssh: Add default ssh configuration for all nodes 2023-05-22 15:21:25 +00:00
Tom Hubrecht
d9f7a944af web-01: Reformat 2023-05-22 15:09:04 +02:00
Tom Hubrecht
91cf28e9d1 web-01: Rename main config files 2023-05-22 15:05:58 +02:00
sinavir
5a0ba44316 web-01: feat: add mosh 2023-05-17 01:11:47 +02:00
sinavir
618f4900e0 web-01: refactor of network and ssh 2023-05-17 01:11:16 +02:00
b74ed6a17b web-01: refactor disko import 2023-05-12 14:50:56 +00:00
fbde3006e5 web-01: minimal config 2023-05-12 14:50:56 +00:00
871f8e1e6a web-01: create partionning scheme 2023-05-12 14:50:40 +00:00