Commit graph

343 commits

Author SHA1 Message Date
Alexander Tomokhov b7045a8198 upgrade nixpkgs to NixOS 23.05 2023-12-18 17:56:15 +04:00
Alexander Tomokhov 67c2b12c44 sp-modules: get rid of systemd.tmpfiles
Because it causes troubles when using bind-mounts for /var/lib/*.
2023-12-18 16:30:40 +04:00
Alexander Tomokhov 83e8f6e8a1 get rid of files.nix; ACME/credentialsFile and other cleanup 2023-12-18 07:49:27 +04:00
Alexander Tomokhov 7f6c48f978 gitea: RequiresMountsFor and ConditionPathIsMountPoint @ /var/lib/gitea 2023-12-12 20:50:09 +04:00
Alexander Tomokhov a797b856fc flake.lock: Update
Flake lock file updates:

• Updated input 'selfprivacy-api':
    'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=dc230e2e898a510bfdc52e57d829996df02f26b5' (2023-12-12)
  → 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=2bdb73d348d1a8b85a71aa480ab1c08fafb2c9ba' (2023-12-12)
2023-12-12 16:30:22 +04:00
Alexander Tomokhov d1711ea9c3 selfprivacy-api: sp-nixos-rebuild with sp-modules relocking 2023-12-12 14:15:06 +04:00
Alexander Tomokhov defaca8793 clean configuration; simple-nixos-mailserver is an ordinary SP module 2023-12-12 08:25:10 +04:00
Alexander Tomokhov 25bd151ef3 use lower case for config.selfprivacy.server.provider 2023-12-11 21:58:12 +04:00
Alexander Tomokhov 519ebbcb69 get rid of system argument; do not set nixpkgs.hostPlatform 2023-12-05 07:36:26 +04:00
Alexander Tomokhov 4c4aef5363 get system.stateVersion from "deployment" argument 2023-12-05 04:51:37 +04:00
Alexander Tomokhov 9dde55159b update selfprivacy-api 2023-12-05 01:56:49 +04:00
Alexander Tomokhov 6cd002ae1d remove restic SP module 2023-12-05 01:56:13 +04:00
Alexander Tomokhov c052f9172a move gitea to SP module 2023-12-04 15:59:22 +04:00
Alexander Tomokhov 054d6d9182 move jitsi-meet to SP module 2023-12-04 15:50:00 +04:00
Alexander Tomokhov 3f573e3dc3 activationScripts: rewrite /etc/nixos with configuration source 2023-12-04 15:25:01 +04:00
Alexander Tomokhov c63b6b808c acme: RestartSec = 15 * 60 2023-12-04 14:33:43 +04:00
Alexander Tomokhov c0aa73ca1b move bitwarden to SP module 2023-12-04 14:33:43 +04:00
Alexander Tomokhov ade4dc08b1 sp-modules: use jq exit status code 2023-12-03 10:37:37 +04:00
Alexander Tomokhov 4716b9bf19 move restic to SP module 2023-12-03 10:05:51 +04:00
Alexander Tomokhov c7419b3255 move pleroma to SP module 2023-12-03 09:46:36 +04:00
Alexander Tomokhov b458458c30 move ocserv to SP module 2023-12-03 09:46:36 +04:00
Alexander Tomokhov 4cbe63ac64 flake: abort on missing configPathsNeeded with message 2023-12-01 08:32:31 +04:00
Alexander Tomokhov 600d8f427d mailserver: set users.groups.acmereceivers.members 2023-11-29 08:28:19 +04:00
Alexander Tomokhov b6cd5846f2 users.groups: acmerecievers => acmereceivers 2023-11-29 08:25:24 +04:00
Alexander Tomokhov 1a5a4be306 nextcloud: fix secrets extraction 2023-11-29 08:19:04 +04:00
Alexander Tomokhov 364a5c8076 mailserver: adapt to deprecated and new types of certificateScheme 2023-11-26 09:39:47 +04:00
Alexander Tomokhov a224731dcf nextcloud: write passwords using install 2023-11-26 09:39:47 +04:00
Alexander Tomokhov e814157437 fix config attributes contrain for function imports 2023-11-26 08:56:48 +04:00
Alexander Tomokhov 0db1c4a6ce downgrade simple-nixos-mailserver to 6d0d9fb9 2023-11-26 04:28:36 +04:00
Alexander Tomokhov a98dafc98c fix nextcloud (case when enabled)
Previously, second mkIf for cleanup case took precedence when merge with
`//`. Now it's 2 modules: one for selfprivacy.modules.nextcloud.enable
== true, another for selfprivacy.modules.nextcloud.enable == false.
2023-11-26 03:11:29 +04:00
Alexander Tomokhov 3138260605 flake.lock: Update
Flake lock file updates:

• Updated input 'selfprivacy-api':
    'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=8791462f87c4a134f5ccb7099a814892c110d43b' (2023-11-23)
  → 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=75f4e8d40eff59debcd5eb96e64e2e7c3db75e7f' (2023-11-23)
2023-11-23 21:33:35 +04:00
Alexander Tomokhov 1bf7190388 flake.lock: Update
Flake lock file updates:

• Updated input 'selfprivacy-api':
    'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=8ccec537401b51583d89f59790953ad32534563a' (2023-11-23)
  → 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=8791462f87c4a134f5ccb7099a814892c110d43b' (2023-11-23)
2023-11-23 21:20:35 +04:00
Alexander Tomokhov cc26a5e150 flake.lock: Update
Flake lock file updates:

• Updated input 'selfprivacy-api':
    'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=9c18ab285cd2221a50950c796456929019f5fb2a' (2023-11-22)
  → 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=8ccec537401b51583d89f59790953ad32534563a' (2023-11-23)
2023-11-23 11:36:20 +04:00
Alexander Tomokhov 6ebcc35882 systemd.enableEmergencyMode = false; systemd.coredump.enable = false; 2023-11-23 11:09:49 +04:00
Alexander Tomokhov 985aff90d3 disable ssh passwordAuthentication by default 2023-11-23 11:08:59 +04:00
Alexander Tomokhov bd6b8a5e75 flake.lock: Update
Flake lock file updates:

• Updated input 'selfprivacy-api':
    'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=2bbc2be6b57f05a159db1f175e8fa84d67eac8da' (2023-11-22)
  → 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=9c18ab285cd2221a50950c796456929019f5fb2a' (2023-11-22)
2023-11-23 03:00:25 +04:00
Alexander Tomokhov 6d96b4aa8f flake.lock: Update
Flake lock file updates:

• Updated input 'selfprivacy-api':
    'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=aa4e5a9251b440c161b79590fef7d2707cdce9b4' (2023-11-22)
  → 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=2bbc2be6b57f05a159db1f175e8fa84d67eac8da' (2023-11-22)
2023-11-22 23:09:42 +04:00
Alexander Tomokhov 8067559207 flake.lock: Update
Flake lock file updates:

• Updated input 'selfprivacy-api':
    'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=22f9d2e9df2db29493003d436c6b75fe58b5c5f0' (2023-11-21)
  → 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=aa4e5a9251b440c161b79590fef7d2707cdce9b4' (2023-11-22)
2023-11-22 22:17:00 +04:00
Alexander Tomokhov 252ed72154 remove autoUpgrade from userdata-variables.nix 2023-11-22 06:45:23 +04:00
Alexander Tomokhov e53eb8d65d flake.lock: Update
Flake lock file updates:

• Updated input 'selfprivacy-api':
    'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=e1847e1ce8327d8d36e80b84cd55d7b38baaa40c' (2023-11-20)
  → 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=22f9d2e9df2db29493003d436c6b75fe58b5c5f0' (2023-11-21)
2023-11-22 01:58:44 +04:00
Alexander Tomokhov e59d86fcdc flake.lock: Update
Flake lock file updates:

• Updated input 'selfprivacy-api':
    'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=nixos-module&rev=e28aa8d60d824133fc3e170d2ed144bf0ec342a3' (2023-11-18)
  → 'git+https://git.selfprivacy.org/SelfPrivacy/selfprivacy-rest-api.git?ref=userdata&rev=e1847e1ce8327d8d36e80b84cd55d7b38baaa40c' (2023-11-20)
2023-11-21 03:49:45 +04:00
Alexander Tomokhov 7c5bc70fec rm -rf /old-root on every boot
NixOS stage 1 init moves all remnants of previous OS to /old-root.
2023-11-21 03:01:28 +04:00
Alexander Tomokhov 308a70fe20 selfprivacy/current-config-source => selfprivacy/nixos-config-source 2023-11-21 01:24:36 +04:00
Alexander Tomokhov a3063ec732 fileSystems./.options = [ noatime ]; 2023-11-21 01:23:28 +04:00
Alexander Tomokhov e45224d67f fix resources/limits.txt but do not use them for now 2023-11-18 19:26:52 +04:00
Alexander Tomokhov 391e41e8a4 disable documentation.enable = false alltogether 2023-11-18 18:54:55 +04:00
Alexander Tomokhov 0704d18b1a do not install {man,info}-pages and docs to save space 2023-11-18 17:39:14 +04:00
Alexander Tomokhov 6a3a83e270 files.nix: /etc/nixos/userdata.json => /etc/selfprivacy/secrets.json 2023-11-18 09:11:54 +04:00
Alexander Tomokhov b64be4e34f /etc/nixos/userdata/userdata.json => /etc/nixos/userdata.json 2023-11-18 08:54:29 +04:00
Alexander Tomokhov 65e58666fd nixpkgs.hostPlatform = system 2023-11-18 08:28:04 +04:00