Bruno BELANYI
fc8ccb8b99
modules: services: pirate: add fail2ban jails
ci/woodpecker/push/check Pipeline was successful
2023-09-03 12:43:46 +02:00
Bruno BELANYI
14bf03e5fd
modules: services: pirate: refactor
...
This will make adding fail2ban jails easier.
2023-09-03 12:42:29 +02:00
Bruno BELANYI
adc4ce9d8a
modules: services: indexers: add prowlarr fail2ban
2023-09-03 12:21:35 +02:00
Bruno BELANYI
6d9d835e1c
modules: services: nix-cache: use harmonia
2023-08-19 14:41:10 +02:00
Bruno BELANYI
ab59054518
modules: services: rename 'nix-cache'
...
I'm about to modify the module to use a different cache implementation,
so this name is more appropriate.
2023-08-19 14:41:10 +02:00
Bruno BELANYI
424bb2e7b9
modules: services: woodpecker: simplify path
...
I'm not sure why it was written that way to begin with.
2023-08-06 20:13:08 +02:00
Bruno BELANYI
7b6779f2b5
modules: services: woodpecker: default packages
...
Now that v1.0.0 is on nixpkgs, no need for my custom packages.
2023-08-06 20:13:08 +02:00
Bruno BELANYI
45c3b82606
modules: services: nginx-sso: use writeShellScript
2023-08-06 20:13:08 +02:00
Bruno BELANYI
58a94bdf1b
pkgs: remove woodpecker-plugin-git
...
I have now upstreamed the package, so let's remove it.
2023-08-06 20:13:08 +02:00
Bruno BELANYI
9f7472222c
treewide: use 'lib.getExe' when possible
...
Don't use it in wireguard to keep it consistent, as only half the
commands could use it.
2023-08-06 20:13:08 +02:00
Bruno BELANYI
ae8d8d75fd
flake: bump inputs
...
Update `fail2ban` to accomodate for RFC-42 migration.
2023-08-06 20:13:08 +02:00
Bruno BELANYI
47533f119e
modules: services: monitoring: add 'secretKeyFile'
ci/woodpecker/push/check Pipeline was successful
2023-07-17 10:59:58 +00:00
Bruno BELANYI
4bb1387376
modules: services: add tandoor-recipes
ci/woodpecker/push/check Pipeline was successful
2023-07-15 15:46:04 +02:00
Bruno BELANYI
5741421604
modules: services: nextcloud: enable 'notify_push'
2023-07-15 15:46:04 +02:00
Bruno BELANYI
c037d3844a
modules: services: nextcloud: configure redis
...
ci/woodpecker/push/check Pipeline was successful
I keep having some file-locking issues, and heard that using redis might
help alleviate those errant locks.
It's also necessary to use the `notify_push` app.
2023-07-15 14:01:14 +01:00
Bruno BELANYI
3e5fbfeb7a
modules: services: nextcloud: bump to 27
ci/woodpecker/push/check Pipeline was successful
2023-06-23 12:03:13 +02:00
Bruno BELANYI
2f03d92dd9
modules: services: woodpecker: use docker module
ci/woodpecker/push/check Pipeline was successful
2023-06-11 16:25:23 +01:00
Bruno BELANYI
e44dd4c6ea
modules: services: drone: use docker module
2023-06-11 16:25:23 +01:00
Bruno BELANYI
df9b060947
modules: system: podman: check for docker conflict
2023-06-11 16:23:31 +01:00
Bruno BELANYI
73fdd4622b
modules: system: add docker
2023-06-11 16:17:42 +01:00
Bruno BELANYI
5aa136f796
modules: system: podman: fix removed option
ci/woodpecker/push/check Pipeline was successful
2023-06-08 15:43:46 +00:00
Bruno BELANYI
18c9458cfa
modules: system: users: add 'docker' group
2023-06-08 15:43:46 +00:00
Bruno BELANYI
c0995929c4
modules: system: podman: add weekly purge
2023-06-08 15:43:46 +00:00
Bruno BELANYI
5d570dbf1e
modules: programs: steam: use writeShellScriptBin
ci/woodpecker/push/check Pipeline was successful
2023-06-03 13:40:44 +01:00
Bruno BELANYI
4f6f483851
modules: programs: steam: simplify wrapper
2023-06-03 13:40:44 +01:00
Bruno BELANYI
175a8acde2
modules: services: add vikunja
2023-05-13 21:18:57 +02:00
Bruno BELANYI
685c571018
modules: services: nginx: add 'socket' option
2023-05-13 21:18:57 +02:00
Bruno BELANYI
574634b64e
modules: services: blog: use 302 redirection
...
ci/woodpecker/push/check Pipeline was successful
That way the browser doesn't cache it, in case I do end up using that
domain after all.
2023-05-07 15:20:14 +01:00
Bruno BELANYI
a1dd0bb792
modules: services: matrix: remove 'with lib'
ci/woodpecker/push/check Pipeline was successful
2023-05-04 12:19:31 +00:00
Bruno BELANYI
c19baeb19d
modules: system: podman: remove unused 'options'
2023-05-04 09:27:19 +00:00
Bruno BELANYI
62d9359eb7
modules: services: matrix: clean-up formatting
2023-05-04 09:27:19 +00:00
Bruno BELANYI
2f3989bba1
modules: services: wireguard: simplify
2023-05-03 15:15:31 +00:00
Bruno BELANYI
49b2cb9781
modules: secrets: remove unused 'options'
2023-05-03 15:15:31 +00:00
Bruno BELANYI
fadb8e96fc
modules: system: nix: add 'cache.selfHosted'
2023-05-03 15:02:44 +00:00
Bruno BELANYI
20d19ed128
modules: system: nix: rename 'inputs' options
2023-05-03 15:02:44 +00:00
Bruno BELANYI
455a4e5431
modules: services: add nix-serve
2023-05-03 15:02:44 +00:00
Bruno BELANYI
d9e115a876
modules: services: woodpecker: adapt gitea URL
2023-05-03 15:02:44 +00:00
Bruno BELANYI
d8c841333b
modules: services: gitea: migrate settings
...
Most of the settings are now RFC-42 compliant.
2023-05-03 15:02:44 +00:00
Bruno BELANYI
638f4a7774
modules: system: boot: rename 'tmp' options
ci/woodpecker/push/check Pipeline was successful
2023-04-17 21:25:15 +02:00
Bruno BELANYI
7cebaa3751
modules: secrets: move wireguard keys
...
This is a bit special, as some of the keys do not belong to NixOS hosts,
so store those in the module itself, and into host-specific directories
for the keys that are NixOS hosts.
2023-04-17 08:18:27 +00:00
Bruno BELANYI
ed745602a1
modules: secrets: move non-existent key workaround
...
Since this configuration was only there to accommodate `aramis`, make it
be host-specific instead, and rely on the default value otherwise.
2023-04-16 19:44:02 +01:00
Bruno BELANYI
6079485b50
modules: secrets: move host-specific secrets
2023-04-16 19:44:02 +01:00
Bruno BELANYI
57008bcb7c
hosts: nixos: add host-specific secrets module
...
This is the same logic as the common module, but for secrets that don't
need to be shared to different hosts.
2023-04-16 19:44:02 +01:00
Bruno BELANYI
34a3f9a0d6
modules: secrets: centralize agenix keys
...
If I intend on splitting the keys depending on which host needs to have
access to it, I should have a singular spot to manage the keys.
2023-04-16 19:44:02 +01:00
Bruno BELANYI
68bf36c45c
modules: secrets: wireguard: remove unused file
...
The peer definitions have been inlined into the Wireguard module a long
time ago.
2023-04-13 17:05:52 +00:00
Bruno BELANYI
54e9303319
modules: secrets: use diff-friendly formatting
ci/woodpecker/push/check Pipeline was successful
2023-04-13 15:55:34 +00:00
Bruno BELANYI
04f23976ee
modules: services: woodpecker: remove unused env
ci/woodpecker/push/check Pipeline was successful
2023-04-13 15:24:34 +00:00
Bruno BELANYI
94141d53b8
modules: services: woodpecker: remove 'TODO'
2023-04-13 15:17:16 +00:00
Bruno BELANYI
f15b3aa23d
modules: services: woodpecker: allow setuid
...
ci/woodpecker/push/check Pipeline was successful
I need it to be able to use `ssh-agent`, for some of my workflows.
2023-04-01 21:06:50 +02:00
Bruno BELANYI
7a5842f03a
modules: services: matrix: remove obsolete comment
continuous-integration/drone/push Build is passing
2023-04-01 15:56:48 +01:00