Commit graph

64 commits

Author SHA1 Message Date
Inex Code a8aca42762 feat(ssh): Allow ecdsa-sha2-nistp256 keys 2024-01-19 03:01:20 +04:00
Alexander Tomokhov 643f7716ae remove DOMAIN environment variable 2024-01-19 02:48:27 +04:00
Alexander Tomokhov 1e73c88547 uppercase config.selfprivacy.server.provider 2023-12-28 20:05:33 +04:00
Alexander Tomokhov 51f3f12640 system.autoUpgrade: no verbosity of nixos-rebuild 2023-12-28 13:28:46 +04:00
Alexander Tomokhov a32613ece4 nixos-upgrade.serviceConfig.ExecCondition on /etc/nixos changes 2023-12-28 13:19:47 +04:00
Alexander Tomokhov 08aa0b9ffc systemd.services.nixos-upgrade.serviceConfig.WorkingDirectory 2023-12-28 10:57:45 +04:00
Alexander Tomokhov be45d3ed52 systemd.services.nixos-upgrade.serviceConfig.ExecStartPre 2023-12-28 10:42:58 +04:00
Alexander Tomokhov cc78c2915f remove channel option value from syustem.autoUpgrade 2023-12-28 02:07:46 +04:00
Alexander Tomokhov 23332cda46 add TODO about environment.variables.DOMAIN 2023-12-27 12:54:10 +04:00
Alexander Tomokhov 85f85239a3 do not set nix.package 2023-12-27 11:37:59 +04:00
Alexander Tomokhov 5bd15a768a system.stateVersion: default or config.selfprivacy.stateVersion 2023-12-22 23:04:03 +04:00
Alexander Tomokhov 5aba990f95 move system.stateVersion back to userdata 2023-12-22 19:33:24 +04:00
Alexander Tomokhov 5cd12848cc nix.channel.enable = false since we're on flakes 2023-12-20 17:43:46 +04:00
Alexander Tomokhov d881cc8ce5 upgrade nixpkgs to NixOS 23.11 2023-12-18 18:44:18 +04:00
Alexander Tomokhov 83e8f6e8a1 get rid of files.nix; ACME/credentialsFile and other cleanup 2023-12-18 07:49:27 +04:00
Alexander Tomokhov defaca8793 clean configuration; simple-nixos-mailserver is an ordinary SP module 2023-12-12 08:25:10 +04:00
Alexander Tomokhov 25bd151ef3 use lower case for config.selfprivacy.server.provider 2023-12-11 21:58:12 +04:00
Alexander Tomokhov 519ebbcb69 get rid of system argument; do not set nixpkgs.hostPlatform 2023-12-05 07:36:26 +04:00
Alexander Tomokhov 4c4aef5363 get system.stateVersion from "deployment" argument 2023-12-05 04:51:37 +04:00
Alexander Tomokhov c052f9172a move gitea to SP module 2023-12-04 15:59:22 +04:00
Alexander Tomokhov 054d6d9182 move jitsi-meet to SP module 2023-12-04 15:50:00 +04:00
Alexander Tomokhov 3f573e3dc3 activationScripts: rewrite /etc/nixos with configuration source 2023-12-04 15:25:01 +04:00
Alexander Tomokhov c0aa73ca1b move bitwarden to SP module 2023-12-04 14:33:43 +04:00
Alexander Tomokhov 4716b9bf19 move restic to SP module 2023-12-03 10:05:51 +04:00
Alexander Tomokhov c7419b3255 move pleroma to SP module 2023-12-03 09:46:36 +04:00
Alexander Tomokhov b458458c30 move ocserv to SP module 2023-12-03 09:46:36 +04:00
Alexander Tomokhov 6ebcc35882 systemd.enableEmergencyMode = false; systemd.coredump.enable = false; 2023-11-23 11:09:49 +04:00
Alexander Tomokhov a3063ec732 fileSystems./.options = [ noatime ]; 2023-11-21 01:23:28 +04:00
Alexander Tomokhov e45224d67f fix resources/limits.txt but do not use them for now 2023-11-18 19:26:52 +04:00
Alexander Tomokhov 391e41e8a4 disable documentation.enable = false alltogether 2023-11-18 18:54:55 +04:00
Alexander Tomokhov 0704d18b1a do not install {man,info}-pages and docs to save space 2023-11-18 17:39:14 +04:00
Alexander Tomokhov 65e58666fd nixpkgs.hostPlatform = system 2023-11-18 08:28:04 +04:00
Alexander Tomokhov e6e2f1fd84 configuration.nix: a few nix.* tweaks 2023-11-18 06:37:45 +04:00
Alexander Tomokhov d69a8cd662 migrate selfprivacy-api NixOS module to selfprivacy API repository
But do not treat it as a SP module.
2023-11-16 06:36:39 +04:00
Alexander Tomokhov 80447abb2e selfprivacy.userdata -> selfprivacy; SP modules -> selfprivacy.modules 2023-11-16 04:00:15 +04:00
Alexander Tomokhov 41c3a0fc00 add PoC SP module for nextcloud 2023-11-15 22:36:19 +04:00
Alexander Tomokhov 80ba7d0bda PoC working SP module system
+ simple-nixos-mailserver as an SP module
2023-11-13 00:37:50 +04:00
Alexander Tomokhov b4b37f42f2 get rid of overlay for selfprivacy-graphql-api 2023-11-06 13:04:03 +04:00
Alexander Tomokhov 7cee132d8e nixosConfiguration-fun takes a set as an argument
This set must contain:
- hardware-configuration
- userdata (parsed)
2023-11-06 12:50:46 +04:00
Alexander Tomokhov 82dd9ad2d4 now it's a function, requiring userdata argument 2023-07-17 04:37:04 +04:00
Alexander Tomokhov ee2a895c61 test 2023-07-17 04:15:03 +04:00
Inex Code 2e175f8c10 feat: Add state version 2023-03-17 14:50:54 +03:00
Inex Code 9c662d9629 chore: Change channel of overlay for testing 2023-03-17 14:38:48 +03:00
Inex Code bfe0d18090 chore: Switch to API 2.1.0 2022-12-30 21:34:23 +03:00
Inex Code 0d3e8c890c Switch API branch to develop 2022-11-20 17:12:20 +03:00
Inex Code eab3d1e761 fix: path of the provider info 2022-11-08 02:41:18 +03:00
Inex Code a59fbef22a feat: Enable Digital Ocean agent when on DO 2022-11-08 01:44:28 +03:00
inexcode aeeffe42b1 feat: a redis database for SelfPrivacy API 2022-11-04 11:57:00 +03:00
inexcode 53c9655b7b Switched to binds, volume management, new API 2022-08-26 14:21:05 +04:00
Inex Code c1ed3a522c Move secrets out of Nix Store (#19)
Nix store is world-readable, and while nix repl fails to get the secret due to file permissions, we should still set up secrets without getting them in Nix store.

In the past tmpfiles.d was used, but its entire contents get to the nix store.

Now, all files with secrets are generated in activation scripts, with the help of jq and sed.

Also dead Pleroma code was deleted, but CAPTCHA is still broken.

Co-authored-by: inexcode <inex.code@selfprivacy.org>
Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-nixos-config/pulls/19
Co-authored-by: Inex Code <inex.code@selfprivacy.org>
Co-committed-by: Inex Code <inex.code@selfprivacy.org>
2022-07-19 15:18:46 +03:00