Bruno BELANYI
aeb3245327
modules: services: blog: GNU T.P.
2022-12-18 12:59:42 +01:00
Bruno BELANYI
c961bdbfc4
modules: services: transmission: remove MemoryHigh
...
The service does not actively try to reduce its memory usage, so to make
sure we do reach `MemoryMax` let's remove the `MemoryHigh`
configuration.
2022-12-16 21:43:49 +01:00
Bruno BELANYI
1e10c6630b
modules: services: nginx: fix SSL renewal
...
See this issue [1].
[1]: https://github.com/go-acme/lego/issues/1772 .
2022-11-29 17:19:24 +01:00
Bruno BELANYI
b85a98c377
modules: services: nextcloud: disable broken SSE
...
I don't use server-side encryption anyway.
2022-11-28 10:18:50 +01:00
Bruno BELANYI
1967c8ef79
modules: services: transmission: limit memory use
2022-11-20 13:15:58 +01:00
Bruno BELANYI
f6a00ec838
modules: services: paperless: require postgres
2022-11-03 18:06:36 +01:00
Bruno BELANYI
05be340b7e
modules: services: nextcloud: bump to 25
2022-11-03 16:59:19 +01:00
Bruno BELANYI
30ce88f42f
flake: bump inputs
...
And migrate to the new RFC42 grafana options.
2022-11-03 16:58:47 +01:00
Bruno BELANYI
4c0c6a75b2
modules: system: packages: configure aliases
...
Disallow them by default, but make it configurable.
2022-09-30 08:59:27 +02:00
Bruno BELANYI
5e021e6436
all: remove package aliases
2022-09-30 08:59:27 +02:00
Bruno BELANYI
c05fafefe8
modules: services: gitea: migrate to 'settings'
2022-08-31 17:19:58 +02:00
Bruno BELANYI
48495851ba
modules: services: grocy: fix SSL configuration
2022-07-28 18:29:10 +02:00
Bruno BELANYI
2ba9c63f2e
modules: services: add grocy
2022-07-28 18:29:10 +02:00
Bruno BELANYI
914b064f72
modules: services: paperless: fix DB dependency
2022-07-28 17:54:02 +02:00
Bruno BELANYI
37d272fcfb
modules: services: lohr: add 'openssh'
...
The git binary is not wrapped to add it in PATH anymore.
2022-05-31 13:54:34 +02:00
Bruno BELANYI
052d5a3df7
modules: services: nextcloud: bump to 24
2022-05-23 15:49:22 +02:00
Bruno BELANYI
46affd5057
modules: hardware: bluetooth: remove wireplumber
...
This configuration file completely breaks my sound setup.
Will investigate more at a later time, in the mean time, since this is
basically the default options, I will just remove the configuration
file.
This reverts commit c987206bc5
.
2022-05-02 11:18:23 +02:00
Bruno BELANYI
43cb3ae582
modules: hardware: add firmware
2022-04-27 14:03:18 +02:00
Bruno BELANYI
cb84b49438
modules: hardware: bluetooth: add wireplumber conf
...
Now that `media-session` is deprecated, I should at least replicate this
configuration for `wireplumber`.
2022-04-27 14:03:10 +02:00
Bruno BELANYI
0caa78af10
flake: bump inputs
...
And ensure that the renamed `paperless` services are configured
correctly.
2022-04-27 14:02:17 +02:00
Bruno BELANYI
a9e004f7c1
modules: secrets: gitea: add 'mail-password'
2022-04-08 21:34:44 +02:00
Bruno BELANYI
94143f9d33
modules: services: gitea: add 'mail' configuration
2022-04-08 21:34:44 +02:00
Bruno BELANYI
0db2c0a13c
modules: services: matrix: use 'settings'
...
The unstructured attributes are hard-deprecated.
2022-03-08 11:56:32 +01:00
Bruno BELANYI
cc91b88b28
flake: bump inputs
...
And do not use 'pipewire-media-session' which is deprecated.
2022-03-02 12:13:13 +01:00
Bruno BELANYI
39431c2656
modules: system: nix: use structural 'settings'
...
Instead of a stringly-typed `extraOptions`.
2022-02-08 14:32:00 +01:00
Bruno BELANYI
ba5782e748
modules: system: packages: remove some packages
...
They either belong in a nix shell or are taken care of by other
configurations.
2022-01-14 15:06:55 +01:00
Bruno BELANYI
8151b28527
modules: services: nginx: use 'acme.default.email'
...
The option `security.acme.email` has been deprecated.
2022-01-14 13:30:22 +01:00
Bruno BELANYI
e6fe5e57c9
modules: system: add podman
2022-01-14 13:24:09 +01:00
Bruno BELANYI
5c7ef3232e
modules: system: nix: add inputs to NIX_PATH
2022-01-07 08:55:58 +01:00
Bruno BELANYI
4d5d662913
modules: services: nextcloud: upgrade version
2021-12-07 19:11:32 +01:00
Bruno BELANYI
070a929f88
flake: bump inputs
...
And use renamed option for agenix identities.
2021-12-07 19:11:32 +01:00
Bruno BELANYI
d86ff6192c
modules: system: nix: don't change daemon niceness
...
This option doesn't really work the way it should anyway [1].
This reverts commit cbf6ea9ac9
.
[1]: https://github.com/NixOS/nixpkgs/pull/138741
2021-11-23 18:53:11 +01:00
Bruno BELANYI
d490a7de78
modules: services: nginx-sso: always rewrite conf
2021-11-06 15:43:00 +01:00
Bruno BELANYI
a36eae4e66
modules: services: paperless: backup 'dataDir'
2021-11-05 17:03:52 +01:00
Bruno BELANYI
dd0c110f71
modules: services: calibre-web: use 'dataDir'
2021-11-05 17:03:52 +01:00
Bruno BELANYI
e2638728e3
modules: services: pirate: sort 'ports' values
2021-11-05 17:03:52 +01:00
Bruno BELANYI
62e62c70e1
modules: services: lohr: declarative ssh key
2021-11-05 16:59:11 +01:00
Bruno BELANYI
b5b8f83e71
modules: secrets: lohr: add 'ssh-key'
2021-11-05 15:31:59 +01:00
Bruno BELANYI
5fdc390411
modules: services: nginx: remove unused argument
2021-11-05 14:58:58 +01:00
Bruno BELANYI
67ea6d9f95
modules: services: drone: remove unused arguments
2021-11-05 14:58:58 +01:00
Bruno BELANYI
450ab4b07b
modules: services: backup: remove deprecated name
2021-11-03 17:16:40 +01:00
Bruno BELANYI
9b184f94ac
modules: home: forward inputs to home-manager
...
This will be useful if and when I end up adding inputs with home-manager
modules defined.
2021-10-22 13:06:53 +02:00
Bruno BELANYI
7ca32d8b05
modules: services: indexers: add prowlarr
2021-10-18 19:48:50 +02:00
Bruno BELANYI
af5103803b
modules: services: indexers: refactor
...
This is cleaner and more correct.
2021-10-18 19:48:50 +02:00
Bruno BELANYI
f5e26526da
modules: services: indexers: fix typo
2021-10-18 19:48:50 +02:00
Bruno BELANYI
69d7fd5d7c
modules: system: nix: change nix build niceness
...
19 is the lowest priority.
2021-10-18 18:49:03 +02:00
Bruno BELANYI
dd48089a82
modules: services: nginx: use 'mkMailAccount'
2021-10-13 15:36:28 +02:00
Bruno BELANYI
2cd56e133f
modules: services: wireguard: add 'milady'
2021-10-10 17:16:29 +02:00
Bruno BELANYI
d43831cbf1
modules: secrets: wireguard: add 'milady'
2021-10-10 17:16:29 +02:00
Bruno BELANYI
55541abd17
modules: secrets: fix permission for grafana
2021-09-26 23:09:33 +02:00
Bruno BELANYI
b9786398a7
modules: secrets: fix permission of 'matrix/mail'
2021-09-26 23:09:33 +02:00
Bruno BELANYI
5fd82472bf
modules: secrets: add 'owner' logic
2021-09-26 23:09:33 +02:00
Bruno BELANYI
8968e30e62
modules: secrets: remove 'with lib;'
2021-09-26 23:09:33 +02:00
Bruno BELANYI
0b580b61e7
secrets: move into 'modules'
2021-09-26 23:09:33 +02:00
Bruno BELANYI
414c27ee63
modules: services: nginx: sso: use runtime secrets
2021-09-26 23:09:33 +02:00
Bruno BELANYI
c7766afe90
modules: services: nginx: allow sso secret files
...
This is in preparation of the migration to agenix, which does not allow
access to the secrets at build time.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
b46b918295
modules: services: drone: split into files
...
This is cleaner to read.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
ac90c5b11a
modules: services: put modules into folders
2021-09-26 23:09:32 +02:00
Bruno BELANYI
836b54b8eb
modules: hardware: put modules into folders
2021-09-26 23:09:32 +02:00
Bruno BELANYI
7bec7ae0f9
modules: system: put modules into folders
2021-09-26 23:09:32 +02:00
Bruno BELANYI
d5b09c48ef
modules: programs: put modules into folders
2021-09-26 23:09:32 +02:00
Bruno BELANYI
c88fa91671
modules: home: put into folder
2021-09-26 23:09:32 +02:00
Bruno BELANYI
33d539ed4f
modules: system: users: use agenix secrets
2021-09-26 23:09:32 +02:00
Bruno BELANYI
91abacd0f6
modules: services: wireguard: use agenix secrets
2021-09-26 23:09:32 +02:00
Bruno BELANYI
16d3cd9f81
modules: services: nginx: use 'credentialsFile'
...
In preparation for the migration to agenix.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
7d37701811
modules: services: matrix: use 'mailConfigFile'
...
In preparation of the migration to agenix.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
4643690b43
modules: services: paperless: use 'secretKeyFile'
...
In preparation for the migration to agenix.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
5579baecfb
modules: services: nextcloud: use 'credentialsfile'
...
In preparation for the migration to agenix.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
9d8da4d2b2
modules: services: miniflux: use 'credentialsFiles'
...
In preparation for the migration to agenix.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
da63787874
modules: services: transmission: secrets w/ file
...
In preparation for the migration to using agenix.
2021-09-26 23:09:31 +02:00
Bruno BELANYI
313b0c23a9
modules: remove unused arguments
2021-09-24 01:21:57 +02:00
Bruno BELANYI
8852699c9a
modules: services: nginx: use 'recursiveMerge'
2021-09-23 22:11:25 +02:00
Bruno BELANYI
c13e57f584
modules: system: users: use 'initialHashedPassword'
...
This is the better option to use in case I want to have a stateless
system.
2021-09-23 21:30:24 +02:00
Bruno BELANYI
2f9d3417d4
modules: system: users: use 'ambroisie' password
...
Do not rely on `my.user.name` which could be changed to a value not
available in the secrets.
2021-09-23 21:28:29 +02:00
Bruno BELANYI
27040532bd
modules: programs: steam: respect XDG conventions
...
Steam wants to pollute HOME with `.steam*` files and folders, which are
useless and annoying.
We want to make sure the wrappers are preferred when installing, so use
`lib.hiPrio` to ensure they get chosen.
2021-09-15 19:23:24 +02:00
Bruno BELANYI
24b540d948
modules: programs: add steam
2021-09-15 19:23:24 +02:00
Bruno BELANYI
91489d5b71
modules: add 'programs' directory
2021-09-15 16:48:10 +02:00
Bruno BELANYI
4ccf549e58
modules: system: remove 'media'
...
It was not the idiomatic way to do this.
2021-09-15 16:10:06 +02:00
Bruno BELANYI
bf6af94bec
modules: services: paperless: proxy websockets
2021-08-31 13:52:11 +02:00
Bruno BELANYI
23484989a6
modules: services: paperless: add admin password
...
This is a fallback in case SSO stops working...
2021-08-31 13:52:11 +02:00
Bruno BELANYI
da4595cd39
modules: services: add paperless
2021-08-31 13:52:11 +02:00
Bruno BELANYI
8319f0ea5c
modules: services: nginx: nginx-sso verbose logs
...
For some reason it still doesn't appear in the systemd log...
2021-08-30 17:38:25 +02:00
Bruno BELANYI
fd898df590
modules: services: nginx: add SSO
2021-08-30 17:36:39 +02:00
Bruno BELANYI
52079bf1e7
modules: services: nginx: enable explicitly
2021-08-30 17:36:39 +02:00
Bruno BELANYI
77cf3430ae
modules: services: use new nginx wrapper
...
And when not possible, document why.
Note for the future: there is some repetition in some modules to
configure the correct value of the subdomain, which I happen to know
will line up correctly thanks to the nginx wrapper. A good way to
refactor this in the future would involve avoiding this repetition,
allowing use to query the correct domain in some way...
2021-08-26 15:54:13 +02:00
Bruno BELANYI
a8514dcdf1
modules: services: nginx: overhaul modularity
...
This should be all that's needed for almost all my services.
2021-08-26 15:54:13 +02:00
Bruno BELANYI
087794433e
modules: services: nextcloud: exclude previews
2021-08-19 14:27:40 +02:00
Bruno BELANYI
98c2f16eb2
modules: services: backup: make it verbose
2021-08-19 14:27:40 +02:00
Bruno BELANYI
c228916072
modules: services: add navidrome
2021-08-19 12:23:06 +02:00
Bruno BELANYI
7d09677792
modules: services: backup: fix exclude files
...
I was using the wrong option... Somehow it didn't error out.
2021-08-09 20:08:43 +02:00
Bruno BELANYI
6c3662dbb3
modules: services: tlp: add power scaling
2021-07-31 16:56:20 +02:00
Bruno BELANYI
19c5cd0e13
modules: services: nextcloud: upgrade version
2021-07-29 13:42:28 +02:00
Bruno BELANYI
522d1f49df
flake: bump inputs
...
And update package names for grafana dashboards to avoid breaking the
config.
2021-07-29 13:42:28 +02:00
Bruno BELANYI
3459067cd4
modules: services: postgres: upgrade version
2021-07-29 13:03:10 +02:00
Bruno BELANYI
5d21cecee7
modules: services: postgres: add migration script
...
The process to upgrade is:
* Make sure the version number of the script is one major version over
the service version.
* Activate the script, rebuild configuration.
* Run `upgrade-pg-cluster` as `root`. One can give arguments like
`--link` or `--jobs 4` to speedup the process. See documentation for
some details.
* Change package to new version once the upgrade is finished, rebuild
configuration.
* Optionally, `ANALYZE` the new database.
2021-07-29 13:02:49 +02:00
Bruno BELANYI
99c33cd7ad
modules: services: add postgresql
...
Enable the service itself in other modules when needed, but pin the
package in a single place.
2021-07-29 12:43:28 +02:00
Bruno BELANYI
eba977b582
modules: services: monitoring: add scrape interval
2021-07-15 18:54:07 +02:00
Bruno BELANYI
24028669f4
modules: services: add monitoring dashboard
2021-07-13 19:17:33 +02:00
Bruno BELANYI
c910b643da
modules: services: add monitoring
...
This includes a dashboard to monitor system ressources, using
Prometheus.
2021-07-13 19:17:33 +02:00
Bruno BELANYI
5fcc96ab77
modules: services: matrix: SSL only for server
...
This is a requirement anyway for homeservers, and the `forceSSL` option
tried to create a redirect for non-SSL traffic, except the `listen`
option only provided SSL endpoints anyway, so this resulted in
additional rules in the nginx config looking like this:
```nginx
server {
server_name matrix.belanyi.fr ;
location /.well-known/acme-challenge {
root /var/lib/acme/acme-challenge;
auth_basic off;
}
location / {
return 301 https://$host$request_uri ;
}
}
```
2021-07-13 17:43:31 +02:00
Bruno BELANYI
4b6f6423db
modules: hardware: sound: refactor options
...
Do not enable ALSA when using pipewire. Ensure that both pulseaudio and
pipewire are not configured at the same time.
2021-06-27 01:59:07 +02:00
Bruno BELANYI
85ff634331
modules: move home configuration from flake
2021-06-25 20:46:36 +02:00
Bruno BELANYI
76cac9af51
modules: change username configuration option
...
It makes more sense to have a `my.user` option.
2021-06-25 20:45:36 +02:00
Bruno BELANYI
9bb09ee8f4
modules: services: indexers: limit Jackett memory
2021-06-15 21:25:56 +02:00
Bruno BELANYI
e4d3d8a949
modules: system: add boot
...
And enable mounting `/tmp` as tmpfs by default.
2021-06-14 16:41:28 +02:00
Bruno BELANYI
902539ea6d
modules: system: documentation: include POSIX man
2021-06-12 13:23:09 +02:00
Bruno BELANYI
23e5ddd7f3
modules: services: matrix: add mail configuration
2021-06-09 19:14:09 +02:00
Bruno BELANYI
4c4c8ea4e5
modules: services: matrix: enable spaces
2021-06-09 18:33:54 +02:00
Bruno BELANYI
ce8138eb07
modules: services: matrix: add SMS verification
2021-06-09 18:32:59 +02:00
Bruno BELANYI
a5d63dcf65
modules: hardware: add mx-ergo
...
This adds the ability to scroll using the ball, which is way better.
2021-06-07 17:56:46 +02:00
Bruno BELANYI
9d96899065
modules: home: use 'username' config value
2021-05-30 01:31:05 +02:00
Bruno BELANYI
22a01eeadf
modules: system: users: make it configurable
...
Notably, make use of my global 'username' option.
2021-05-30 00:46:09 +02:00
Bruno BELANYI
558f9b3919
modules: add option to specify username
...
Given that I use it in plenty of places, it makes sense to place it
there for reference in other modules.
2021-05-30 00:46:09 +02:00
Bruno BELANYI
c23d89dcb2
modules: system: packages: make it configurable
2021-05-30 00:46:09 +02:00
Bruno BELANYI
7916a26a58
modules: system: nix: make it configurable
2021-05-30 00:46:09 +02:00
Bruno BELANYI
565d40fefb
modules: system: language: make it configurable
2021-05-30 00:46:09 +02:00
Bruno BELANYI
a3eaa6d97e
modules: system: move 'packages'
2021-05-29 16:58:44 +02:00
Bruno BELANYI
130e04a152
modules: system: move 'nix'
2021-05-29 16:58:44 +02:00
Bruno BELANYI
43ef533ae1
modules: system: move 'documentation'
2021-05-29 16:58:44 +02:00
Bruno BELANYI
377c97ea9f
modules: system: move 'language'
2021-05-29 16:58:44 +02:00
Bruno BELANYI
7f285ab9cf
modules: system: move 'users'
2021-05-29 16:58:44 +02:00
Bruno BELANYI
50a5347802
modules: system: move 'media'
2021-05-29 16:56:15 +02:00
Bruno BELANYI
3ff50b1c22
modules: add 'system' directory
2021-05-29 16:56:15 +02:00
Bruno BELANYI
9b568beb9a
modules: move 'services' into subfolder
2021-05-29 16:56:15 +02:00
Bruno BELANYI
274b909971
modules: hardware: move 'upower'
2021-05-29 16:56:15 +02:00
Bruno BELANYI
dd19b9dd92
modules: hardware: move 'sound'
2021-05-29 16:56:15 +02:00
Bruno BELANYI
5f0c1f6a79
modules: hardware: move 'networking'
2021-05-29 16:56:15 +02:00
Bruno BELANYI
abbe1bb203
modules: hardware: move 'ergodox'
2021-05-29 16:56:15 +02:00
Bruno BELANYI
ec1bc63de7
modules: hardware: move 'bluetooth'
2021-05-29 16:56:15 +02:00
Bruno BELANYI
66cd746e53
modules: add 'hardware' directory
2021-05-29 16:56:15 +02:00
Bruno BELANYI
36344fe924
modules: ergodox: remove useless group clause
...
The `zsa` module already add the group itself.
2021-05-29 16:15:20 +02:00
Bruno BELANYI
da6c160baf
modules: bluetooth: add pipewire codecs
2021-05-25 23:13:35 +02:00
Bruno BELANYI
10434bdbfc
modules: sound: add pipewire configuration
2021-05-25 18:19:52 +02:00
Bruno BELANYI
20513ab3a2
modules: add sound
...
I will probably want to share this configuration between multiple
machines in the future.
2021-05-25 18:19:52 +02:00
Bruno BELANYI
1647ab4ac7
modules: nix: expose pinned nixpkgs as 'pkgs'
...
That way if I do want to use that latest version, I can still use
`nixpkgs#<whatever>`.
2021-05-22 23:49:57 +02:00
Bruno BELANYI
4fcad6026a
modules: nix: pin flake registry to common inputs
2021-05-22 23:47:27 +02:00
Bruno BELANYI
853bb7a0ce
modules: add upower
2021-05-16 00:03:59 +02:00
Bruno BELANYI
996d61b0f4
modules: users: simplify 'groupsIfExist'
2021-05-16 00:03:59 +02:00
Bruno BELANYI
4650c47974
modules: bluetooth: fix documentation
2021-05-16 00:03:59 +02:00
Bruno BELANYI
ddffa1f247
modules: documentation: add linux man pages option
...
I want to be able to read about syscalls or the C library.
2021-05-10 00:31:01 +02:00
Bruno BELANYI
2b6399606a
modules: documentation: use 'mkDisableOption'
...
The documentation module already gates behind 'documentation.enable' for
the other options.
2021-05-10 00:31:01 +02:00
Bruno BELANYI
35b8de02c2
modules: add bluetooth
2021-05-10 00:31:01 +02:00
Bruno BELANYI
8013120856
modules: networking: add 'wireless' option
2021-05-10 00:31:01 +02:00
Bruno BELANYI
165e26f0b3
modules: users: add myself to 'networkmanager'
2021-05-08 17:14:13 +02:00
Bruno BELANYI
5973841ff5
modules: users: reformat
2021-05-08 17:14:13 +02:00
Bruno BELANYI
2dbb25a9e3
modules: packages: prefer user compinit to global
...
This should make the shell startup faster.
2021-05-08 17:14:13 +02:00
Bruno BELANYI
38a475d35d
modules: users: add myself to 'video' and 'audio'
2021-05-08 17:14:13 +02:00
Bruno BELANYI
864e78bc61
modules: add home
...
This makes setting and referring to my home-manager options easier.
2021-05-08 17:14:13 +02:00
Bruno BELANYI
e51ab70d5b
modules: add documentation
2021-04-25 12:39:17 +00:00
Bruno BELANYI
3a4098a6c4
modules: users: sort groups
2021-03-31 17:56:36 +00:00
Bruno BELANYI
af1332fa89
modules: users: eta reduction of 'groupsIfExist'
2021-03-08 19:02:28 +00:00
Bruno BELANYI
e09da8505e
services: move 'media' to 'modules' instead
...
Its not actually a service, but more of a configuration needed by some
services. Therefore it belongs in modules.
2021-03-07 18:39:42 +00:00
Bruno BELANYI
012163eb44
modules: add ergodox
...
This enables usage of ZSA tools, such as `wally` or their online
training tool for any users that are part of `plugdev`.
2021-03-07 18:39:42 +00:00
Bruno BELANYI
5b63b70958
modules: users: add to groups in single place
2021-03-07 18:39:42 +00:00
Bruno BELANYI
71dcd216f0
modules: users: use zsh as shell
2021-03-03 17:02:48 +00:00
Bruno BELANYI
01b6947cde
modules: packages: enable zsh
2021-03-03 17:02:48 +00:00
Bruno BELANYI
9e9ef7b598
modules: add 'networking.externalInterface' option
2021-02-25 15:29:06 +00:00
Bruno BELANYI
b0d3cb0e8e
modules: move ssh keys into subdirectory
2021-02-25 15:29:06 +00:00
Bruno BELANYI
0732b3a0bd
modules: packages: make 'vim' default editor
2021-02-25 15:29:06 +00:00
Bruno BELANYI
3b148ad684
porthos: split into modules
...
I have separated the modules into host-specific settings, and generic
settings that ought to be shared by every host.
I only have the 'porthos' host for now, but intend to also add my laptop
'aramis' at some point to this repository.
2021-02-08 10:49:59 +00:00