Alexander Tomokhov
3f573e3dc3
activationScripts: rewrite /etc/nixos with configuration source
2023-12-04 15:25:01 +04:00
Alexander Tomokhov
c63b6b808c
acme: RestartSec = 15 * 60
2023-12-04 14:33:43 +04:00
Alexander Tomokhov
c0aa73ca1b
move bitwarden to SP module
2023-12-04 14:33:43 +04:00
Alexander Tomokhov
ade4dc08b1
sp-modules: use jq exit status code
2023-12-03 10:37:37 +04:00
Alexander Tomokhov
4716b9bf19
move restic to SP module
2023-12-03 10:05:51 +04:00
Alexander Tomokhov
c7419b3255
move pleroma to SP module
2023-12-03 09:46:36 +04:00
Alexander Tomokhov
b458458c30
move ocserv to SP module
2023-12-03 09:46:36 +04:00
Alexander Tomokhov
4cbe63ac64
flake: abort on missing configPathsNeeded with message
2023-12-01 08:32:31 +04:00
Alexander Tomokhov
600d8f427d
mailserver: set users.groups.acmereceivers.members
2023-11-29 08:28:19 +04:00
Alexander Tomokhov
b6cd5846f2
users.groups: acmerecievers => acmereceivers
2023-11-29 08:25:24 +04:00
Alexander Tomokhov
1a5a4be306
nextcloud: fix secrets extraction
2023-11-29 08:19:04 +04:00
Alexander Tomokhov
364a5c8076
mailserver: adapt to deprecated and new types of certificateScheme
2023-11-26 09:39:47 +04:00
Alexander Tomokhov
a224731dcf
nextcloud: write passwords using install
2023-11-26 09:39:47 +04:00
Alexander Tomokhov
e814157437
fix config attributes contrain for function imports
2023-11-26 08:56:48 +04:00
Alexander Tomokhov
0db1c4a6ce
downgrade simple-nixos-mailserver to 6d0d9fb9
2023-11-26 04:28:36 +04:00
Alexander Tomokhov
a98dafc98c
fix nextcloud (case when enabled)
...
Previously, second mkIf for cleanup case took precedence when merge with
`//`. Now it's 2 modules: one for selfprivacy.modules.nextcloud.enable
== true, another for selfprivacy.modules.nextcloud.enable == false.
2023-11-26 03:11:29 +04:00
Alexander Tomokhov
3138260605
flake.lock: Update
...
Flake lock file updates:
• Updated input 'selfprivacy-api':
'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=8791462f87c4a134f5ccb7099a814892c110d43b ' (2023-11-23)
→ 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=75f4e8d40eff59debcd5eb96e64e2e7c3db75e7f ' (2023-11-23)
2023-11-23 21:33:35 +04:00
Alexander Tomokhov
1bf7190388
flake.lock: Update
...
Flake lock file updates:
• Updated input 'selfprivacy-api':
'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=8ccec537401b51583d89f59790953ad32534563a ' (2023-11-23)
→ 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=8791462f87c4a134f5ccb7099a814892c110d43b ' (2023-11-23)
2023-11-23 21:20:35 +04:00
Alexander Tomokhov
cc26a5e150
flake.lock: Update
...
Flake lock file updates:
• Updated input 'selfprivacy-api':
'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=9c18ab285cd2221a50950c796456929019f5fb2a ' (2023-11-22)
→ 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=8ccec537401b51583d89f59790953ad32534563a ' (2023-11-23)
2023-11-23 11:36:20 +04:00
Alexander Tomokhov
6ebcc35882
systemd.enableEmergencyMode = false; systemd.coredump.enable = false;
2023-11-23 11:09:49 +04:00
Alexander Tomokhov
985aff90d3
disable ssh passwordAuthentication by default
2023-11-23 11:08:59 +04:00
Alexander Tomokhov
bd6b8a5e75
flake.lock: Update
...
Flake lock file updates:
• Updated input 'selfprivacy-api':
'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=2bbc2be6b57f05a159db1f175e8fa84d67eac8da ' (2023-11-22)
→ 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=9c18ab285cd2221a50950c796456929019f5fb2a ' (2023-11-22)
2023-11-23 03:00:25 +04:00
Alexander Tomokhov
6d96b4aa8f
flake.lock: Update
...
Flake lock file updates:
• Updated input 'selfprivacy-api':
'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=aa4e5a9251b440c161b79590fef7d2707cdce9b4 ' (2023-11-22)
→ 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=2bbc2be6b57f05a159db1f175e8fa84d67eac8da ' (2023-11-22)
2023-11-22 23:09:42 +04:00
Alexander Tomokhov
8067559207
flake.lock: Update
...
Flake lock file updates:
• Updated input 'selfprivacy-api':
'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=22f9d2e9df2db29493003d436c6b75fe58b5c5f0 ' (2023-11-21)
→ 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=aa4e5a9251b440c161b79590fef7d2707cdce9b4 ' (2023-11-22)
2023-11-22 22:17:00 +04:00
Alexander Tomokhov
252ed72154
remove autoUpgrade from userdata-variables.nix
2023-11-22 06:45:23 +04:00
Alexander Tomokhov
e53eb8d65d
flake.lock: Update
...
Flake lock file updates:
• Updated input 'selfprivacy-api':
'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=e1847e1ce8327d8d36e80b84cd55d7b38baaa40c ' (2023-11-20)
→ 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=22f9d2e9df2db29493003d436c6b75fe58b5c5f0 ' (2023-11-21)
2023-11-22 01:58:44 +04:00
Alexander Tomokhov
e59d86fcdc
flake.lock: Update
...
Flake lock file updates:
• Updated input 'selfprivacy-api':
'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=nixos-module&rev=e28aa8d60d824133fc3e170d2ed144bf0ec342a3 ' (2023-11-18)
→ 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=e1847e1ce8327d8d36e80b84cd55d7b38baaa40c ' (2023-11-20)
2023-11-21 03:49:45 +04:00
Alexander Tomokhov
7c5bc70fec
rm -rf /old-root on every boot
...
NixOS stage 1 init moves all remnants of previous OS to /old-root.
2023-11-21 03:01:28 +04:00
Alexander Tomokhov
308a70fe20
selfprivacy/current-config-source => selfprivacy/nixos-config-source
2023-11-21 01:24:36 +04:00
Alexander Tomokhov
a3063ec732
fileSystems./.options = [ noatime ];
2023-11-21 01:23:28 +04:00
Alexander Tomokhov
e45224d67f
fix resources/limits.txt but do not use them for now
2023-11-18 19:26:52 +04:00
Alexander Tomokhov
391e41e8a4
disable documentation.enable = false alltogether
2023-11-18 18:54:55 +04:00
Alexander Tomokhov
0704d18b1a
do not install {man,info}-pages and docs to save space
2023-11-18 17:39:14 +04:00
Alexander Tomokhov
6a3a83e270
files.nix: /etc/nixos/userdata.json => /etc/selfprivacy/secrets.json
2023-11-18 09:11:54 +04:00
Alexander Tomokhov
b64be4e34f
/etc/nixos/userdata/userdata.json => /etc/nixos/userdata.json
2023-11-18 08:54:29 +04:00
Alexander Tomokhov
65e58666fd
nixpkgs.hostPlatform = system
2023-11-18 08:28:04 +04:00
Alexander Tomokhov
43abd2ca45
flake.lock: Update
...
Flake lock file updates:
• Updated input 'selfprivacy-api':
'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=nixos-module&rev=e6e9d0677e51e5b1f2f5ee60809d190ab18a9f3e ' (2023-11-16)
→ 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=nixos-module&rev=e28aa8d60d824133fc3e170d2ed144bf0ec342a3 ' (2023-11-18)
2023-11-18 06:39:10 +04:00
Alexander Tomokhov
e6e2f1fd84
configuration.nix: a few nix.* tweaks
2023-11-18 06:37:45 +04:00
Alexander Tomokhov
72d73b6297
autoUpgrade.enable = false by default
2023-11-18 05:40:57 +04:00
Alexander Tomokhov
0f54898cb8
sp-modules: fix nextcloud secrets json path
2023-11-18 05:40:02 +04:00
Alexander Tomokhov
d5b04699c1
sp-module: refactor simple-nixos-mailserver flake
2023-11-16 06:36:39 +04:00
Alexander Tomokhov
d69a8cd662
migrate selfprivacy-api NixOS module to selfprivacy API repository
...
But do not treat it as a SP module.
2023-11-16 06:36:39 +04:00
Alexander Tomokhov
80447abb2e
selfprivacy.userdata -> selfprivacy; SP modules -> selfprivacy.modules
2023-11-16 04:00:15 +04:00
Alexander Tomokhov
f4fb0a9ce8
move nextcloud nginx configuration part to SP module
2023-11-15 23:43:59 +04:00
Alexander Tomokhov
41c3a0fc00
add PoC SP module for nextcloud
2023-11-15 22:36:19 +04:00
Alexander Tomokhov
d281f51775
TODO notes: flake: config contrain algorithm
2023-11-15 20:18:49 +04:00
Alexander Tomokhov
b0bb84138b
delete garbage sp-modules-options.json file
2023-11-15 20:12:33 +04:00
Alexander Tomokhov
4419a1323a
fix config attributes contrain mechanism for SP modules
...
Now it should work for all nested imports too. `imports` are traversed
recursively to redefine each imported module function with altered one,
constraining its config attribute (respecting config-paths-needed.json).
2023-11-15 04:31:20 +04:00
Alexander Tomokhov
26b3071929
system.configurationRevision = self.rev or "@${self.lastModifiedDate}"
2023-11-14 06:22:39 +04:00
Alexander Tomokhov
f33fb9e9bf
just-nixos => sp-nixos; selfprivacy/current-config-source; add formatter
2023-11-14 02:47:08 +04:00