Bruno BELANYI
5563a1718f
WIP: add notes for missing persistence/backup
...
ci/woodpecker/push/check Pipeline failed
TODO:
* Look at for more inspiration https://github.com/nix-community/impermanence/pull/108
* Do home-manager
* Common files https://github.com/nix-community/impermanence/issues/10
2024-11-28 20:19:49 +00:00
Bruno BELANYI
8147670f48
nixos: services: quassel: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
5d60031018
nixos: services: pirate: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
235b7b7a02
nixos: services: monitoring: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
b5cb3ccbb7
nixos: services: nginx: persist SSL certificates
2024-11-28 20:19:49 +00:00
Bruno BELANYI
6ad3677621
nixos: services: transmission: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
dff50c1b56
nixos: services: sabnzbd: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
f5169f5fae
nixos: services: rss-bridge: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
66c05a1388
nixos: services: podgrab: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
192482d816
nixos: services: nextcloud: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
28e9efd254
nixos: services: navidrome: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
88bb795cc5
nixos: services: lohr: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
7ce456d603
nixos: services: jellyfin: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
7a2c1eb473
nixos: services: indexers: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
1320cfbcb0
nixos: services: postgresql: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
d0da754a65
nixos: services: postgresql-backup: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
2fe4dc1c80
nixos: services: paperless: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
b891b6c131
nixos: services: matrix: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
04a6af9a89
nixos: services: forgejo: persist repositories
2024-11-28 20:19:49 +00:00
Bruno BELANYI
d37139ee0f
nixos: services: gitea: persist repositories
2024-11-28 20:19:49 +00:00
Bruno BELANYI
1510142e29
nixos: services: calibre-web: persist library
2024-11-28 20:19:49 +00:00
Bruno BELANYI
0013102716
nixos: services: blog: persist website data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
990ff82250
nixos: services: ssh-server: persist host keys
2024-11-28 20:19:49 +00:00
Bruno BELANYI
b2190162c4
nixos: hardware: networking persist connections
2024-11-28 20:19:49 +00:00
Bruno BELANYI
7e568c29ce
nixos: hardware: bluetooth: persist connections
2024-11-28 20:19:49 +00:00
Bruno BELANYI
d0a7ec4d81
nixos: system: podman: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
828621041a
nixos: system: docker: persist data
2024-11-28 20:19:49 +00:00
Bruno BELANYI
0f2109c4b0
WIP: nixos: system: add persist
...
This is the module that takes care of configuring impermanence at the
system level.
WIP:
* address FIXMEs
* activate home-manager persistence?
* set `programs.fuse.userAllowOther = true;` ?
* point `age` to persisted paths [1] ?
* make sure all services and modules are persisted correctly...
[1]: b1d18d25b8
2024-11-28 20:19:22 +00:00
Bruno BELANYI
e03db8642a
nixos: system: packages: remove 'wget'
ci/woodpecker/push/check Pipeline was successful
2024-11-28 19:59:41 +00:00
Bruno BELANYI
e39fef275c
nixos: services: paperless: use 'environmentFile'
...
ci/woodpecker/push/check Pipeline was successful
That way I don't have to configure all services to make use of it.
Someday I'll find the will to add the `postgresql.service` dependency
upstream, truly removing the need to configure any service at all.
2024-11-27 12:05:41 +00:00
Bruno BELANYI
6a5c4a627a
nixos: services: pyload: add fail2ban jail
ci/woodpecker/push/check Pipeline was successful
2024-11-20 21:06:17 +01:00
Bruno BELANYI
7f0cd6612e
nixos: services: paperless: remove MKL work-around
...
Instead, rely on the upstream service's work-around [1].
This will reduce the amount of package builds I need to do when updating
my server...
[1]: https://github.com/NixOS/nixpkgs/pull/299008
This reverts commit e2ec4d3032
.
2024-11-20 21:06:17 +01:00
Bruno BELANYI
60050113bc
nixos: services: nginx: modify example
...
ci/woodpecker/push/check Pipeline was successful
Now that `websocketLocations` exists, it makes little sense to use
`proxyWebsockets` in an example, so use a different one.
2024-11-19 16:03:38 +00:00
Bruno BELANYI
6a1a35a384
nixos: services: migrate to 'websocketsLocations'
2024-11-19 16:03:38 +00:00
Bruno BELANYI
e9d96138d5
nixos: services: nginx: add 'websocketsLocations'
...
This accounts for the overwhelming majority of my usage of
`extraConfig`.
2024-11-19 16:03:38 +00:00
Bruno BELANYI
138d4d2bd9
nixos: services: nextcloud: add collabora
...
This needs to be configured through the "Nextcloud Office" app,
specifically the WOPI setting is important for security (I put both the
external IP, as well as `::1` and `127.0.0.1`).
2024-11-19 15:58:48 +01:00
Bruno BELANYI
ab8a5daefe
hosts: porthos: secrets: acme: use OVH API
...
ci/woodpecker/push/check Pipeline was successful
I switched registrar, as OVH was ~4x cheaper.
This needs a small change to the module to both refer to OVH instead of
Gandi in the documentation, and make use of the correct API.
I also needed to disable the propagation check, as it looks like OVH is
slower than Gandi, and leads to spurious errors...
2024-11-14 22:19:35 +01:00
Bruno BELANYI
07552f3070
nixos: system: nix: configure GC
2024-10-30 10:33:50 +00:00
Bruno BELANYI
6d2ac0c473
modules: services: matrix: remove sliding sync
...
The functionality has been folded into `synapse` itself, and the module
has been removed from the unstable branch.
This reverts commit b4c2cc581b
.
2024-10-28 10:47:49 +00:00
Bruno BELANYI
a09cef76c5
nixos: services: nextcloud: bump to 30
ci/woodpecker/push/check Pipeline was successful
2024-10-17 15:26:17 +02:00
Bruno BELANYI
09f763bc16
nixos: services: add komga
ci/woodpecker/push/check Pipeline was successful
2024-09-30 22:10:38 +02:00
Bruno BELANYI
898523d079
treewide: fix typos
2024-09-27 13:49:29 +00:00
Bruno BELANYI
cbba752b54
nixos: services: nginx: remove 'literalExample'
...
Those examples do not use functions or any other "difficult to render"
expression.
2024-09-27 13:44:40 +00:00
Bruno BELANYI
3aab65d9ea
nixos: services: tandoor-recipes: add fail2ban note
ci/woodpecker/push/check Pipeline was successful
2024-09-24 13:13:15 +00:00
Bruno BELANYI
b6279108e0
nixos: services: vikunja: add fail2ban note
ci/woodpecker/push/check Pipeline was successful
2024-09-24 10:44:42 +00:00
Bruno BELANYI
0f3c5d1d63
nixos: services: transmission: add fail2ban note
2024-09-24 10:44:42 +00:00
Bruno BELANYI
1f40ac4a9f
nixos: services: grocy: add fail2ban note
2024-09-24 10:44:42 +00:00
Bruno BELANYI
2b64a00dc9
nixos: services: flood: add fail2ban note
2024-09-24 10:44:42 +00:00
Bruno BELANYI
1aa3385e13
nixos: services: navidrome: add fail2ban jail
ci/woodpecker/push/check Pipeline was successful
2024-09-22 02:12:48 +02:00
Bruno BELANYI
a059828a58
nixos: services: miniflux: add fail2ban jail
ci/woodpecker/push/check Pipeline was successful
2024-09-22 01:59:04 +02:00