Compare commits

...

6 commits

Author SHA1 Message Date
fi
0ec4c30108 Update element-web to 1.11.106 2025-07-19 01:33:13 +02:00
fi
779e5767d8 Remove syn2mas package from matrix host 2025-07-19 01:22:45 +02:00
fi
0b59452424 Update mastodon to v4.4.1 2025-07-19 01:20:55 +02:00
fi
4c1dba2f8d flake.lock: Update
Flake lock file updates:

• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/0d81cd273efaaca0aa5c9685a462c6b91fc704fd?narHash=sha256-TPZMmQNsGdsZcsTz%2BMbunpJ2k1H/IIrOUFhRhggVjCI%3D' (2025-07-10)
  → 'github:NixOS/nixpkgs/32a4e87942101f1c9f9865e04dc3ddb175f5f32e?narHash=sha256-f3pO%2B9lg66mV7IMmmIqG4PL3223TYMlnlw%2Bpnpelbss%3D' (2025-07-15)
• Updated input 'nixpkgs-master':
    'github:NixOS/nixpkgs/9f59c3509790d97927db3158a5d57db640a1ffbd?narHash=sha256-7pIGMCV944sxrrfPcdz2FkY8ZrBhVZERRq1BkkXnmKk%3D' (2025-07-10)
  → 'github:NixOS/nixpkgs/a0b29e1b8d072a9f472500997c58252d064c5285?narHash=sha256-TRvw/iAyDqMoRe58kCE6d9FvlsXcdqCTt6w8qRio9U8%3D' (2025-07-16)
• Updated input 'nixpkgs-unstable':
    'github:NixOS/nixpkgs/40de82b434526744da778ed53c742c1282d9e75e?narHash=sha256-5rWuf6RAlMDp/CAEuyYEz7ryxzgjxOCgUDhWEef864c%3D' (2025-07-10)
  → 'github:NixOS/nixpkgs/9100a4f6bf446603b9575927c8585162f9ec9aa6?narHash=sha256-oeRcp4VEyZ/3ZgfRRoq60/08l2zy0K53l8MdfSIYd24%3D' (2025-07-16)
2025-07-16 18:16:02 +02:00
fi
992959801a flake.lock: Update
Flake lock file updates:

• Updated input 'nixos-generators':
    'github:nix-community/nixos-generators/ee07ba0d36c38e9915c55d2ac5a8fb0f05f2afcc?narHash=sha256-Obh50J%2BO9jhUM/FgXtI3he/QRNiV9%2BJ53%2Bl%2BRlKSaAk%3D' (2025-05-19)
  → 'github:nix-community/nixos-generators/032decf9db65efed428afd2fa39d80f7089085eb?narHash=sha256-PeSkNMvkpEvts%2B9DjFiop1iT2JuBpyknmBUs0Un0a4I%3D' (2025-07-07)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/7a732ed41ca0dd64b4b71b563ab9805a80a7d693?narHash=sha256-u7ubvtxdTnFPpV27AHpgoKn7qHuE7sgWgza/1oj5nzA%3D' (2025-07-03)
  → 'github:NixOS/nixpkgs/0d81cd273efaaca0aa5c9685a462c6b91fc704fd?narHash=sha256-TPZMmQNsGdsZcsTz%2BMbunpJ2k1H/IIrOUFhRhggVjCI%3D' (2025-07-10)
• Updated input 'nixpkgs-master':
    'github:NixOS/nixpkgs/e1dca425c33650ae9ea15e577012d49586f29cef?narHash=sha256-2QDfhYjPFui9iQNTXBLcbffWVWbYLntm9EM/eFU3kX8%3D' (2025-07-04)
  → 'github:NixOS/nixpkgs/9f59c3509790d97927db3158a5d57db640a1ffbd?narHash=sha256-7pIGMCV944sxrrfPcdz2FkY8ZrBhVZERRq1BkkXnmKk%3D' (2025-07-10)
• Updated input 'nixpkgs-unstable':
    'github:NixOS/nixpkgs/a2867cc3f8acc944cb19fe0b73c840e9fa1ba589?narHash=sha256-5aZFBHQNQzrfCisewtYBDNbiKcHbxPYChiP4dkEcSXQ%3D' (2025-07-04)
  → 'github:NixOS/nixpkgs/40de82b434526744da778ed53c742c1282d9e75e?narHash=sha256-5rWuf6RAlMDp/CAEuyYEz7ryxzgjxOCgUDhWEef864c%3D' (2025-07-10)
2025-07-10 21:04:29 +02:00
fi
99a626a90d Update element-web to 1.11.105 2025-07-10 21:02:50 +02:00
5 changed files with 25 additions and 34 deletions

View file

@ -2,28 +2,28 @@
let
tangerineUI = pkgs.fetchgit {
url = "https://github.com/nileane/TangerineUI-for-Mastodon.git";
rev = "v2.3";
hash = "sha256-Yl5UOjcp0Q3WpiLgfjQFVVEQs4WlVUSBCS7kuO+39wQ=";
rev = "v2.4.3";
hash = "sha256-OThT3fp676RMfYY3ehzM4DnAlJOqdPoYIHpoBbN/RHQ=";
};
mastodonModern = pkgs.fetchgit {
url = "https://git.gay/freeplay/Mastodon-Modern.git";
rev = "5dc82786107bfb4dc4786571160d63a59cc609d6";
hash = "sha256-0qr+PN1eTR2iqicJEEUskm0DchpZhocEVwoHfwOvHMw=";
rev = "9f8db85eda2a65aa020ab6b81d100a121d39d4c4";
hash = "sha256-W6zwjAjBGARiRPM0hWCnq63nIT2Or0SOQq82bpNtqAk=";
};
mastodonNekoversePatches = pkgs.fetchgit {
url = "https://github.com/yuri-qq/nekoverse-mastodon-patches.git";
hash = "sha256-3jWbKll5RGB1vfEmONVivzGYcoONEkBEHh/rOt9LXlU=";
hash = "sha256-NtdJWMi8/siduX2iFD+GAsK9J+Y6T/tZ/fXqb/QH284=";
};
mastodonNekoverseOverlay = final: prev: {
mastodon = (prev.mastodon.override rec {
version = "4.3.9";
version = "4.4.1";
srcOverride = final.applyPatches {
src = pkgs.stdenv.mkDerivation {
name = "mastodonWithThemes";
src = pkgs.fetchgit {
url = "https://github.com/mastodon/mastodon.git";
rev = "v${version}";
sha256 = "sha256-A2WxVwaarT866s97uwfStBVtv7T5czF7ymRswtZ2K4M=";
sha256 = "sha256-hu6AmR0CvI3lVixJ2UmWY3KAlWbqYULCQAjRGJcuIhc=";
};
# mastodon ships with broken symlinks, disable the check for that for now
dontCheckForBrokenSymlinks = true;
@ -49,8 +49,8 @@ let
"${mastodonNekoversePatches}/patches/006_increase_toot_character_limit.patch"
];
};
yarnHash = "sha256-IC4d/skIHEzJPuKlq4rMAqV+ydqquA6toq4WWCfuDxo=";
yarnMissingHashes = null;
yarnHash = prev.mastodon.src.yarnHash;
yarnMissingHashes = prev.mastodon.src.yarnMissingHashes;
});
};
pkgs-overlay = pkgs.extend mastodonNekoverseOverlay;
@ -62,7 +62,6 @@ in
package = pkgs-overlay.mastodon;
localDomain = "social.nekover.se";
secretKeyBaseFile = "/secrets/mastodon-secret-key-base.secret";
otpSecretFile = "/secrets/mastodon-otp-secret.secret";
vapidPublicKeyFile = "${vapidPublicKey}";
vapidPrivateKeyFile = "/secrets/mastodon-vapid-private-key.secret";
smtp = {
@ -91,6 +90,8 @@ in
OIDC_REDIRECT_URI = "https://social.nekover.se/auth/auth/openid_connect/callback";
OIDC_SECURITY_ASSUME_EMAIL_IS_VERIFIED = "true";
OIDC_END_SESSION_ENDPOINT = "https://id.nekover.se/realms/nekoverse/protocol/openid-connect/logout";
FETCH_REPLIES_ENABLED = "true";
AUTHORIZED_FETCH = "true";
};
extraEnvFiles = [
"/secrets/mastodon-keycloak-client-secret.secret"

View file

@ -9,14 +9,6 @@
permissions = "0640";
uploadAt = "pre-activation";
};
"mastodon-otp-secret.secret" = {
keyCommand = keyCommandEnv ++ [ "pass" "mastodon/otp-secret" ];
destDir = "/secrets";
user = "mastodon";
group = "mastodon";
permissions = "0640";
uploadAt = "pre-activation";
};
"mastodon-vapid-private-key.secret" = {
keyCommand = keyCommandEnv ++ [ "pass" "mastodon/vapid-private-key" ];
destDir = "/secrets";

View file

@ -72,10 +72,8 @@ in
{
environment.systemPackages = with pkgs; [
matrix-authentication-service
syn2mas
];
systemd.services.matrix-authentication-service = {
description = "Matrix Authentication Service";
after = [ "network-online.target" "postgresql.service" ];

View file

@ -1,9 +1,9 @@
{ pkgs, ... }:
let
elementWebVersion = "1.11.96";
elementWebVersion = "1.11.106";
element-web = pkgs.fetchzip {
url = "https://github.com/vector-im/element-web/releases/download/v${elementWebVersion}/element-v${elementWebVersion}.tar.gz";
sha256 = "sha256-zm+mpcHF2rLk2ejwzCOpqHe2mnegHm3ZtJ2v7KC4oxU=";
sha256 = "sha256-5E6za7G7Olia5VzOnBjYMeGJ2Xifqx+vDmCFgNLaRZo=";
};
elementWebSecurityHeaders = ''
# Configuration best practices

24
flake.lock generated
View file

@ -103,11 +103,11 @@
]
},
"locked": {
"lastModified": 1747663185,
"narHash": "sha256-Obh50J+O9jhUM/FgXtI3he/QRNiV9+J53+l+RlKSaAk=",
"lastModified": 1751903740,
"narHash": "sha256-PeSkNMvkpEvts+9DjFiop1iT2JuBpyknmBUs0Un0a4I=",
"owner": "nix-community",
"repo": "nixos-generators",
"rev": "ee07ba0d36c38e9915c55d2ac5a8fb0f05f2afcc",
"rev": "032decf9db65efed428afd2fa39d80f7089085eb",
"type": "github"
},
"original": {
@ -118,11 +118,11 @@
},
"nixpkgs": {
"locked": {
"lastModified": 1751582995,
"narHash": "sha256-u7ubvtxdTnFPpV27AHpgoKn7qHuE7sgWgza/1oj5nzA=",
"lastModified": 1752620740,
"narHash": "sha256-f3pO+9lg66mV7IMmmIqG4PL3223TYMlnlw+pnpelbss=",
"owner": "NixOS",
"repo": "nixpkgs",
"rev": "7a732ed41ca0dd64b4b71b563ab9805a80a7d693",
"rev": "32a4e87942101f1c9f9865e04dc3ddb175f5f32e",
"type": "github"
},
"original": {
@ -150,11 +150,11 @@
},
"nixpkgs-master": {
"locked": {
"lastModified": 1751655236,
"narHash": "sha256-2QDfhYjPFui9iQNTXBLcbffWVWbYLntm9EM/eFU3kX8=",
"lastModified": 1752682292,
"narHash": "sha256-TRvw/iAyDqMoRe58kCE6d9FvlsXcdqCTt6w8qRio9U8=",
"owner": "NixOS",
"repo": "nixpkgs",
"rev": "e1dca425c33650ae9ea15e577012d49586f29cef",
"rev": "a0b29e1b8d072a9f472500997c58252d064c5285",
"type": "github"
},
"original": {
@ -166,11 +166,11 @@
},
"nixpkgs-unstable": {
"locked": {
"lastModified": 1751619433,
"narHash": "sha256-5aZFBHQNQzrfCisewtYBDNbiKcHbxPYChiP4dkEcSXQ=",
"lastModified": 1752644555,
"narHash": "sha256-oeRcp4VEyZ/3ZgfRRoq60/08l2zy0K53l8MdfSIYd24=",
"owner": "NixOS",
"repo": "nixpkgs",
"rev": "a2867cc3f8acc944cb19fe0b73c840e9fa1ba589",
"rev": "9100a4f6bf446603b9575927c8585162f9ec9aa6",
"type": "github"
},
"original": {