Bruno BELANYI
808b5b7048
WIP: modules: systems: add persist
...
This is the module that takes care of configuring impermanence at the
system level.
WIP:
* address FIXMEs
* activate home-manager persistence?
* set `programs.fuse.userAllowOther = true;` ?
* point `age` to persisted paths [1] ?
* make sure all services and modules are persisted correctly...
[1]: b1d18d25b8
2021-11-18 21:16:35 +01:00
Bruno BELANYI
10d35f73c8
modules: services: nginx-sso: always rewrite conf
continuous-integration/drone/push Build is passing
2021-11-06 15:43:00 +01:00
Bruno BELANYI
4491eaea49
modules: services: paperless: backup 'dataDir'
2021-11-05 17:03:52 +01:00
Bruno BELANYI
5f47ec564c
modules: services: calibre-web: use 'dataDir'
2021-11-05 17:03:52 +01:00
Bruno BELANYI
6633405e42
modules: services: pirate: sort 'ports' values
2021-11-05 17:03:52 +01:00
Bruno BELANYI
7c1f379d82
modules: services: lohr: declarative ssh key
2021-11-05 16:59:11 +01:00
Bruno BELANYI
e91ebb24f0
modules: secrets: lohr: add 'ssh-key'
2021-11-05 15:31:59 +01:00
Bruno BELANYI
79265008d2
modules: services: nginx: remove unused argument
2021-11-05 14:58:58 +01:00
Bruno BELANYI
74a5c50fbe
modules: services: drone: remove unused arguments
2021-11-05 14:58:58 +01:00
Bruno BELANYI
ddeeb974a4
modules: services: backup: remove deprecated name
continuous-integration/drone/push Build is passing
2021-11-03 17:16:40 +01:00
Bruno BELANYI
3058636c87
modules: home: forward inputs to home-manager
...
This will be useful if and when I end up adding inputs with home-manager
modules defined.
2021-10-22 13:06:53 +02:00
Bruno BELANYI
927dd9e02a
modules: services: indexers: add prowlarr
2021-10-18 19:48:50 +02:00
Bruno BELANYI
df1bc0d0d5
modules: services: indexers: refactor
...
This is cleaner and more correct.
2021-10-18 19:48:50 +02:00
Bruno BELANYI
760e24a356
modules: services: indexers: fix typo
2021-10-18 19:48:50 +02:00
Bruno BELANYI
cbf6ea9ac9
modules: system: nix: change nix build niceness
...
19 is the lowest priority.
2021-10-18 18:49:03 +02:00
Bruno BELANYI
ef07c9ff43
modules: services: nginx: use 'mkMailAccount'
2021-10-13 15:36:28 +02:00
Bruno BELANYI
d918bf279d
modules: services: wireguard: add 'milady'
continuous-integration/drone/push Build is passing
2021-10-10 17:16:29 +02:00
Bruno BELANYI
6f3bee895c
modules: secrets: wireguard: add 'milady'
2021-10-10 17:16:29 +02:00
Bruno BELANYI
e805496588
modules: secrets: fix permission for grafana
continuous-integration/drone/push Build is passing
2021-09-26 23:09:33 +02:00
Bruno BELANYI
3201445c08
modules: secrets: fix permission of 'matrix/mail'
2021-09-26 23:09:33 +02:00
Bruno BELANYI
30eaefc1d1
modules: secrets: add 'owner' logic
2021-09-26 23:09:33 +02:00
Bruno BELANYI
5f41bb1647
modules: secrets: remove 'with lib;'
2021-09-26 23:09:33 +02:00
Bruno BELANYI
fec4956063
secrets: move into 'modules'
2021-09-26 23:09:33 +02:00
Bruno BELANYI
e962d4c574
modules: services: nginx: sso: use runtime secrets
2021-09-26 23:09:33 +02:00
Bruno BELANYI
3bf3980e45
modules: services: nginx: allow sso secret files
...
This is in preparation of the migration to agenix, which does not allow
access to the secrets at build time.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
fb6e2afe89
modules: services: drone: split into files
...
This is cleaner to read.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
51067582e0
modules: services: put modules into folders
2021-09-26 23:09:32 +02:00
Bruno BELANYI
78ade4c605
modules: hardware: put modules into folders
2021-09-26 23:09:32 +02:00
Bruno BELANYI
5c2921e00d
modules: system: put modules into folders
2021-09-26 23:09:32 +02:00
Bruno BELANYI
62a18cd3f6
modules: programs: put modules into folders
2021-09-26 23:09:32 +02:00
Bruno BELANYI
c6cc64e156
modules: home: put into folder
2021-09-26 23:09:32 +02:00
Bruno BELANYI
409e0ef357
modules: system: users: use agenix secrets
2021-09-26 23:09:32 +02:00
Bruno BELANYI
b6af754199
modules: services: wireguard: use agenix secrets
2021-09-26 23:09:32 +02:00
Bruno BELANYI
ca5e5a53cd
modules: services: nginx: use 'credentialsFile'
...
In preparation for the migration to agenix.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
ba10af0644
modules: services: matrix: use 'mailConfigFile'
...
In preparation of the migration to agenix.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
0f2c20e51d
modules: services: paperless: use 'secretKeyFile'
...
In preparation for the migration to agenix.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
ca218730ff
modules: services: nextcloud: use 'credentialsfile'
...
In preparation for the migration to agenix.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
ac5fd7f472
modules: services: miniflux: use 'credentialsFiles'
...
In preparation for the migration to agenix.
2021-09-26 23:09:32 +02:00
Bruno BELANYI
db37cea907
modules: services: transmission: secrets w/ file
...
In preparation for the migration to using agenix.
2021-09-26 23:09:31 +02:00
Bruno BELANYI
75312c747b
modules: remove unused arguments
2021-09-24 01:21:57 +02:00
Bruno BELANYI
2d26b36e31
modules: services: nginx: use 'recursiveMerge'
continuous-integration/drone/push Build is passing
2021-09-23 22:11:25 +02:00
Bruno BELANYI
bd1a2000fe
modules: system: users: use 'initialHashedPassword'
...
This is the better option to use in case I want to have a stateless
system.
2021-09-23 21:30:24 +02:00
Bruno BELANYI
4a0c10b897
modules: system: users: use 'ambroisie' password
...
Do not rely on `my.user.name` which could be changed to a value not
available in the secrets.
2021-09-23 21:28:29 +02:00
Bruno BELANYI
9f3811ea3b
modules: programs: steam: respect XDG conventions
...
continuous-integration/drone/push Build is passing
Steam wants to pollute HOME with `.steam*` files and folders, which are
useless and annoying.
We want to make sure the wrappers are preferred when installing, so use
`lib.hiPrio` to ensure they get chosen.
2021-09-15 19:23:24 +02:00
Bruno BELANYI
37bb7fd625
modules: programs: add steam
2021-09-15 19:23:24 +02:00
Bruno BELANYI
45321072fc
modules: add 'programs' directory
2021-09-15 16:48:10 +02:00
Bruno BELANYI
ed456c999d
modules: system: remove 'media'
...
continuous-integration/drone/push Build is passing
It was not the idiomatic way to do this.
2021-09-15 16:10:06 +02:00
Bruno BELANYI
808058d576
modules: services: paperless: proxy websockets
2021-08-31 13:52:11 +02:00
Bruno BELANYI
52706ab4c4
modules: services: paperless: add admin password
...
This is a fallback in case SSO stops working...
2021-08-31 13:52:11 +02:00
Bruno BELANYI
87613a9163
modules: services: add paperless
2021-08-31 13:52:11 +02:00