nix-infra

fi/nix-infra

Fork 0

Commit graph

3c9eb64539 flake.lock: Update yuri 2023-11-15 12:19:19 +01:00
c86c75d368

flake.lock: Update fi 2023-11-15 12:19:19 +01:00
9240153c62 Add vapid public key yuri 2023-11-15 12:18:23 +01:00
a689aae656

Add vapid public key fi 2023-11-15 12:18:23 +01:00
cd2d708b98 Open firewall for jellyfin http port yuri 2023-11-15 11:54:11 +01:00
687ba97c6e

Open firewall for jellyfin http port fi 2023-11-15 11:54:11 +01:00
85944e91c6 flake.lock: Update yuri 2023-11-11 23:33:39 +01:00
d43bec3320

flake.lock: Update fi 2023-11-11 23:33:39 +01:00
87ee366855 flake.lock: Update yuri 2023-11-09 23:28:59 +01:00
a859d62dbb

flake.lock: Update fi 2023-11-09 23:28:59 +01:00
c437f4dcb0 Update mastodon-nekoverse-patches yuri 2023-10-31 01:00:49 +01:00
2c369c1c8c

Update mastodon-nekoverse-patches fi 2023-10-31 01:00:49 +01:00
fda132d798 flake.lock: Update yuri 2023-10-31 00:42:50 +01:00
aabf304cbf

flake.lock: Update fi 2023-10-31 00:42:50 +01:00
8604ef73bd flake.lock: Update yuri 2023-10-25 14:12:09 +02:00
222f49d574

flake.lock: Update fi 2023-10-25 14:12:09 +02:00
bcb8034311 Bump element-web to v1.11.47 yuri 2023-10-25 14:11:03 +02:00
3277d6048f

Bump element-web to v1.11.47 fi 2023-10-25 14:11:03 +02:00
6be060d42c flake.lock: Update yuri 2023-10-16 11:25:02 +02:00
5ecf001ccf

flake.lock: Update fi 2023-10-16 11:25:02 +02:00
2a77ae39bc Add searx host yuri 2023-10-16 11:22:48 +02:00
967c771b3e

Add searx host fi 2023-10-16 11:22:48 +02:00
d18a4ee24b Use OpenSSH config from CCCHH nix-infra repo yuri 2023-10-10 16:43:51 +02:00
3708003da6

Use OpenSSH config from CCCHH nix-infra repo fi 2023-10-10 16:43:51 +02:00
87170d4e9e flake.lock: Update yuri 2023-10-10 16:05:47 +02:00
578abdf26e

flake.lock: Update fi 2023-10-10 16:05:47 +02:00
27a6513e84 Use stable channel and use helper function for acme challenge proxy yuri 2023-10-10 15:21:16 +02:00
8f63afc43b

Use stable channel and use helper function for acme challenge proxy fi 2023-10-10 15:21:16 +02:00
9c0398a3c1 Update element-web and clean up configuration yuri 2023-10-10 14:19:35 +02:00
15963fd37e

Update element-web and clean up configuration fi 2023-10-10 14:19:35 +02:00
e2ed2de11e flake.lock: Update yuri 2023-10-10 04:19:46 +02:00
406a23a01f

flake.lock: Update fi 2023-10-10 04:19:46 +02:00
a8ecf3d683 Remove nextcloud.grzb.de mapping yuri 2023-10-10 04:16:27 +02:00
09a6abcae6

Remove nextcloud.grzb.de mapping fi 2023-10-10 04:16:27 +02:00
6b447c40aa Migrate Mastodon to NixOS yuri 2023-10-10 04:14:29 +02:00
c347478e96

Migrate Mastodon to NixOS fi 2023-10-10 04:14:29 +02:00
db63ad370d flake.lock: Update yuri 2023-10-08 00:36:36 +02:00
7055927848

flake.lock: Update fi 2023-10-08 00:36:36 +02:00
c20c0e5a85 flake.lock: Update yuri 2023-10-05 23:38:17 +02:00
52d59ef814

flake.lock: Update fi 2023-10-05 23:38:17 +02:00
67c5a733ab Increase worker_connections and set worker_processes to auto yuri 2023-10-07 02:42:26 +02:00
8f8860390e

Increase worker_connections and set worker_processes to auto fi 2023-10-07 02:42:26 +02:00
f0368c9a61 Set locations priority for matrix reverse proxy yuri 2023-10-07 02:42:00 +02:00
16ec762847

Set locations priority for matrix reverse proxy fi 2023-10-07 02:42:00 +02:00
8bb1c5853b Enable sliding-sync for matrix-synapse yuri 2023-10-07 01:40:56 +02:00
c273c7184c

Enable sliding-sync for matrix-synapse fi 2023-10-07 01:40:56 +02:00
9ac8327798 flake.lock: Update yuri 2023-10-07 01:39:07 +02:00
c55d5da5c6

flake.lock: Update fi 2023-10-07 01:39:07 +02:00
05883ca9a6 Also listen on "::1" yuri 2023-10-05 23:35:00 +02:00
9a64012393

Also listen on "::1" fi 2023-10-05 23:35:00 +02:00
5813640e73 Enable dehydrated device feature for element-web client yuri 2023-09-28 05:03:41 +02:00
ab8a9c39dc

Enable dehydrated device feature for element-web client fi 2023-09-28 05:03:41 +02:00
ffa09f900b Change Content-Security-Policy "frame-ancestors" from "none" to "self" yuri 2023-09-28 04:58:38 +02:00
35119a2a8e

Change Content-Security-Policy "frame-ancestors" from "none" to "self" fi 2023-09-28 04:58:38 +02:00
131fc871b7 Set real IP from local proxy yuri 2023-09-28 04:57:17 +02:00
e8427dc81d

Set real IP from local proxy fi 2023-09-28 04:57:17 +02:00
ce5e907ed8 Setup paperless host and reverse proxy for acme http challange yuri 2023-09-25 01:35:11 +02:00
c1e74a4494

Setup paperless host and reverse proxy for acme http challange fi 2023-09-25 01:35:11 +02:00
4c918ad074 Set resolv.conf file manually for uptime-kuma container due to a bug yuri 2023-09-21 23:14:19 +02:00
a2855162eb

Set resolv.conf file manually for uptime-kuma container due to a bug fi 2023-09-21 23:14:19 +02:00
eba7c018ed Use only snake case for element-web config since camel case is deprecated yuri 2023-09-19 17:56:36 +02:00
440251d2fc

Use only snake case for element-web config since camel case is deprecated fi 2023-09-19 17:56:36 +02:00
21c0b67ac2 Configure TLS settings on mail relay yuri 2023-09-19 17:13:36 +02:00
d036d4a167

Configure TLS settings on mail relay fi 2023-09-19 17:13:36 +02:00
eb84404a10 Enable TLS on mail relay yuri 2023-09-19 16:49:00 +02:00
9815afffdb

Enable TLS on mail relay fi 2023-09-19 16:49:00 +02:00
cae1284094 Forward port 80 to mail servers for the http acme challange yuri 2023-09-19 16:48:17 +02:00
91bd9f3c1d

Forward port 80 to mail servers for the http acme challange fi 2023-09-19 16:48:17 +02:00
6c6cfb6da8 Use snat rule instead if masquerade for wireguard nat yuri 2023-09-19 15:58:42 +02:00
215065aa6c

Use snat rule instead if masquerade for wireguard nat fi 2023-09-19 15:58:42 +02:00
74d5abdfe2 Use a less generic nftables table name yuri 2023-09-19 00:09:41 +02:00
0d820c58af

Use a less generic nftables table name fi 2023-09-19 00:09:41 +02:00
cd938d5020 Use another subnet for WireGuard tunnel as is conflicts with the openstack internal subnet yuri 2023-09-19 00:07:23 +02:00
e3b6c9a2bc

Use another subnet for WireGuard tunnel as is conflicts with the openstack internal subnet fi 2023-09-19 00:07:23 +02:00
f9971c842e Add tcpdump to default packages yuri 2023-09-19 00:06:12 +02:00
4538bfb375

Add tcpdump to default packages fi 2023-09-19 00:06:12 +02:00
3723b4edf2 Fix WireGuard nat rules yuri 2023-09-18 03:38:09 +02:00
e7fe3707ee

Fix WireGuard nat rules fi 2023-09-18 03:38:09 +02:00
e0d1e17bbb Change mail-1 wireguard port as it is already used for STS setup yuri 2023-09-18 03:05:53 +02:00
f67a75b07d

Change mail-1 wireguard port as it is already used for STS setup fi 2023-09-18 03:05:53 +02:00
b359ec8644 Use host resolv.conf in container yuri 2023-09-18 02:40:09 +02:00
a30fd6d361

Use host resolv.conf in container fi 2023-09-18 02:40:09 +02:00
d1f2b13232 Add missing wireguard-tools dependency yuri 2023-09-17 21:04:22 +02:00
ef036a6a18

Add missing wireguard-tools dependency fi 2023-09-17 21:04:22 +02:00
03719f5bf8 Pass libnftables.so.1 path into python script yuri 2023-09-17 21:03:18 +02:00
de66b5931c

Pass libnftables.so.1 path into python script fi 2023-09-17 21:03:18 +02:00
ea11e41005 Add wireguard-nat-nftables python script yuri 2023-09-17 04:50:07 +02:00
299d04142f

Add wireguard-nat-nftables python script fi 2023-09-17 04:50:07 +02:00
34b8dcef9c Add valkyrie host yuri 2023-09-16 20:05:33 +02:00
667b1c256b

Add valkyrie host fi 2023-09-16 20:05:33 +02:00
f3385b48a2 Enable firewall yuri 2023-09-14 15:34:58 +02:00
9cf5bd0469

Enable firewall fi 2023-09-14 15:34:58 +02:00
4a802ab44d Setup mail server and restructure some things yuri 2023-09-14 14:43:49 +02:00
ba93d164cf

Setup mail server and restructure some things fi 2023-09-14 14:43:49 +02:00
fa3db3bad6 Update flake.lock yuri 2023-09-03 19:23:56 +02:00
4c382e629d

Update flake.lock fi 2023-09-03 19:23:56 +02:00
1c268bbea6 Just do the nginx proxy_protocol listen in extraConfig and use stable packages yuri 2023-09-03 17:43:41 +02:00
1d8697b70a

Just do the nginx proxy_protocol listen in extraConfig and use stable packages fi 2023-09-03 17:43:41 +02:00
7283b50b39 Bump element-web to v1.11.40 yuri 2023-09-03 16:56:05 +02:00
cc93674cc4

Bump element-web to v1.11.40 fi 2023-09-03 16:56:05 +02:00