Commit graph

Select branches

Hide pull requests

main

mynixos

Mono Color

• d771b7cd82
  chore: update flake inputs oddlama 2023-08-14 22:26:26 +02:00
• 03382e15f9
  chore: activate influxdb provisioning module oddlama 2023-08-14 22:26:06 +02:00
• 13eb38d8fc
  chore: remove nix-plugin definition from dev systems oddlama 2023-08-14 22:25:25 +02:00
• 16c9d8bb5e
  feat: add influxdb provisioning module oddlama 2023-08-14 22:23:52 +02:00
• 37f77eed3d
  chore(forgejo): show login by default oddlama 2023-08-03 00:36:32 +02:00
• 3548867a40
  fix(nginx): apply recommended security headers to each location oddlama 2023-08-03 00:36:06 +02:00
• 8be9646d1a
  feat: add paperless oddlama 2023-08-03 00:35:20 +02:00
• d577fb1d1a
  fix(forgejo): use correct group for secret oddlama 2023-08-01 02:10:10 +02:00
• a975cc1f7f
  feat: add forgejo oddlama 2023-08-01 02:01:43 +02:00
• b57d86d1ce
  chore: update flake inputs oddlama 2023-07-31 12:49:57 +02:00
• 1184be0cc0
  chore: update aggregated basic auth hashes oddlama 2023-07-31 12:49:09 +02:00
• 788e7e3fa7
  chore: move generated secrets to separate directory oddlama 2023-07-31 12:42:46 +02:00
• eeac57d30d
  feat(zackbiene): reenable hass with ACME double proxy oddlama 2023-07-27 19:06:03 +02:00
• b2b2e60725
  feat(zackbiene): start clean; add kea instead of dhcpcd chore: switch to hosts.toml oddlama 2023-07-25 18:48:42 +02:00
• 82d757059f
  feat(zackbiene): use efi boot with tow-boot; remove switch-to-configuration patch for now oddlama 2023-07-25 01:24:27 +02:00
• 4175ce3cf7
  chore: update to main nixpkgs, include my temporary switch-to-configuration changes oddlama 2023-07-24 21:42:01 +02:00
• 1110bdcac1
  feat: use generic installer iso from now on oddlama 2023-07-24 14:15:18 +02:00
• b39f516bd7
  fix: invalid lib reference in checks.nix oddlama 2023-07-23 16:00:40 +02:00
• 94cce37bc4
  revert: back to flux for grafana and influxdb, influxql is not supported properly. Guess we'll have some work to do on influxdb v3 then. oddlama 2023-07-06 22:36:29 +02:00
• e521a68e87
  feat(telegraf): track smart attributes oddlama 2023-07-06 22:36:06 +02:00
• 861257933b
  chore: don't use Flux as influxdb query lang (discouraged by maintainers, future will remove support) oddlama 2023-07-06 15:45:07 +02:00
• fa5e23af22
  fix: persist correct path for adguardhome oddlama 2023-07-06 15:27:35 +02:00
• e076aca5a0
  chore: also disable per link DNS for ipv6 (dhcp, RA) on servers oddlama 2023-07-06 15:09:33 +02:00
• 836cd7c6c2
  chore: dont use adguardhome for servers oddlama 2023-07-06 14:49:37 +02:00
• 13d9baedc1
  chore: disable access logs for uninteresting high volume endpoint (telegraf write api), and internal nginx_status oddlama 2023-07-06 12:38:20 +02:00
• f2a97b16c6
  chore: remove ip address from etc issue again due to frequent microvm redraws oddlama 2023-07-06 12:18:36 +02:00
• 554d25d94b
  chore: persist adguardhome state oddlama 2023-07-06 02:49:32 +02:00
• 3f6286ef31
  feat(adguardhome): bind only external interface oddlama 2023-07-06 02:34:07 +02:00
• 31ef29569d
  chore: only enable sensors in telegraf for physical machines oddlama 2023-07-05 15:04:23 +02:00
• 822bace189
  fix: track change to disko dataset creation oddlama 2023-07-05 14:31:01 +02:00
• 7c3a40cd89
  feat: add elewrap to elevate telegraf permissions oddlama 2023-07-05 14:30:42 +02:00
• a087b1f731
  feat(telegraf): allow nginx_status access via ipv6 too oddlama 2023-07-02 12:15:43 +02:00
• 73ab856da9
  feat(nginx): add dummy host that matches unrecognized server_names oddlama 2023-07-02 12:14:52 +02:00
• 01668ddee6
  docs: clarifications oddlama 2023-07-02 00:22:59 +02:00
• 5636a8d08c
  docs: move structure to own document oddlama 2023-07-02 00:17:48 +02:00
• e1e7516e1a
  refactor: add lib extensions to nixpkgs.lib as overlays oddlama 2023-07-02 00:08:17 +02:00
• 385d8178a2
  docs: format oddlama 2023-07-01 01:57:34 +02:00
• 999f3e3e26
  docs: formatting oddlama 2023-07-01 01:46:44 +02:00
• bc757a29e1
  docs: update structure oddlama 2023-07-01 01:44:43 +02:00
• aaf3babf9b
  fix: set hostname with higher priority oddlama 2023-07-01 01:44:26 +02:00
• 11ba487bf0
  fix: set new vm secret paths oddlama 2023-07-01 01:20:17 +02:00
• 80e7c1bdbf
  refactor: finish decoupling the library functions from config oddlama 2023-07-01 01:11:58 +02:00
• 68bb9731d3
  wip: remove very specific special args and unify library functions oddlama 2023-06-30 01:55:17 +02:00
• dfc3084fe9
  docs: minor additions oddlama 2023-06-29 01:19:46 +02:00
• e534bdd38b
  docs: add hosts table oddlama 2023-06-29 01:05:51 +02:00
• 84ac34cb6c
  refactor: major refactor into proper reusable modules. No logical changes. oddlama 2023-06-29 00:27:54 +02:00
• 04872f6ec5
  chore: clean up old nom config oddlama 2023-06-25 22:59:13 +02:00
• 9a810bd125
  feat: convert nom to disko oddlama 2023-06-25 22:58:11 +02:00
• 02a8544825
  chore: remove recursive-nix oddlama 2023-06-25 22:57:43 +02:00
• 5bc7fa310b
  chore: disable autoSubUidGidRange for determinism oddlama 2023-06-25 22:56:53 +02:00
• 1aa2a8d8b7
  chore: unfortunately basic-auth conflicts with influxdb oddlama 2023-06-25 14:59:41 +02:00
• 10a52642ad
  chore: test basic auth with influx, but seems to conflict with internal auth oddlama 2023-06-25 14:37:25 +02:00
• 6e15d49cbc
  fix: missing https scheme in telegraf output influxdb oddlama 2023-06-25 02:56:16 +02:00
• f606e6e554
  feat: enable telegraf on all server nodes; add 10 minute autorestart oddlama 2023-06-25 02:34:05 +02:00
• b8f647fb4a
  feat: add telegraf module oddlama 2023-06-25 00:44:04 +02:00
• df2e046295
  chore: disable auto login on oauth2-proxy and grafana (better for sign-out) oddlama 2023-06-23 23:27:34 +02:00
• ccd62a730a
  feat: add influxdb microvm oddlama 2023-06-23 18:07:54 +02:00
• eb9ee0bf0d
  feat: patch oauth2-proxy to support scopes as groups oddlama 2023-06-23 15:20:58 +02:00
• 1a0378ee5c
  feat: use nginx json logs; oauth2-proxy authentication working, groups not yet oddlama 2023-06-23 00:40:15 +02:00
• 71dbda6262
  feat: promote oauth proxy config to a nginx virtualHosts option oddlama 2023-06-22 02:55:22 +02:00
• a092a5a846
  fix: allow using distributed-config to alter self (skipped promtail secret) oddlama 2023-06-22 01:22:14 +02:00
• dea87afdbc
  fix: invalid space in htpasswd file oddlama 2023-06-22 00:57:30 +02:00
• f0d2475f74
  feat: convert all microvms to use nginx oddlama 2023-06-22 00:51:45 +02:00
• edb1d8791d
  chore: include our oauth module oddlama 2023-06-21 23:58:03 +02:00
• 5f02889bd0
  feat: remove caddy, enable nginx with oauth2_proxy oddlama 2023-06-21 23:57:33 +02:00
• 041cf9cc33
  chore: remove obsolete dhparams on zackbiene oddlama 2023-06-21 23:56:57 +02:00
• 609e562bec
  feat: add oauth2 proxy module and simple nginx reverse proxy module oddlama 2023-06-21 23:56:12 +02:00
• e32d5575b4
  fix: realize mkif earlier to disable local-vms definition oddlama 2023-06-21 01:43:00 +02:00
• b545967e7a
  feat: add adguardhome microvm oddlama 2023-06-21 01:37:25 +02:00
• 6b81ecd961
  feat: prepare sentinel for webapp oauth2 authentication oddlama 2023-06-21 01:36:44 +02:00
• 19acca7cba
  chore: remove microvm local wireguard if not needed oddlama 2023-06-21 01:35:41 +02:00
• 06d5d26dde
  fix: apparently ':' is not a great character for basic auth oddlama 2023-06-18 16:03:41 +02:00
• d6af975817
  feat: enable promtail on all vms oddlama 2023-06-18 14:31:23 +02:00
• 4d5813a2ad
  fix: missing protocol spec in vaultwarden domain oddlama 2023-06-18 13:15:23 +02:00
• 1b42e0cd72
  fix: refactoring mistakes; and add generator for initrd_host_ed25519_key oddlama 2023-06-18 12:55:18 +02:00
• abdf363fba
  feat: add vaultwarden microvm oddlama 2023-06-18 01:12:08 +02:00
• 25437cfdeb
  add hexyl to common utils oddlama 2023-06-17 23:47:39 +02:00
• 53850a4ff2
  chore: remove old todo oddlama 2023-06-17 23:47:30 +02:00
• b682db7173
  chore: add caddy common defaults oddlama 2023-06-17 23:46:15 +02:00
• 9ed52a253c
  feat: enforce deterministic user and group ids oddlama 2023-06-17 23:44:54 +02:00
• b5d2d31b69
  fix: typo oddlama 2023-06-13 03:04:38 +02:00
• 998d6d5348
  refactor: move all proxy related configuration to the nodes that define them oddlama 2023-06-13 02:58:14 +02:00
• ead3c1696f
  chore: update flake dependencies, regenerate basic auth hashes oddlama 2023-06-13 01:02:02 +02:00
• 5bd65732f5
  fix: distributed-config now works across microvms and colmena nodes oddlama 2023-06-13 00:16:18 +02:00
• 69bd2a71ce
  feat: generate secrets oddlama 2023-06-12 01:03:44 +02:00
• f33fa54b65
  refactor: move relevant secrets to microvms oddlama 2023-06-12 00:32:27 +02:00
• dfe1abdfde
  refactor: ward microvms are now own folders oddlama 2023-06-12 00:23:07 +02:00
• 3f19475eda
  wip: prepare moving microvms definitions to own folders oddlama 2023-06-12 00:21:25 +02:00
• e4199be809
  chore: define registry for proxied domains oddlama 2023-06-12 00:20:45 +02:00
• 2c81b11696
  feat: add git fixup command oddlama 2023-06-12 00:20:08 +02:00
• 46ce6ed353
  feat: make promtail module reusable oddlama 2023-06-12 00:18:30 +02:00
• 777d803b76
  feat: add module to allow extending configuration of other nodes oddlama 2023-06-12 00:17:55 +02:00
• 91306427ba
  refactor: move vm definitions to own files oddlama 2023-06-11 14:42:20 +02:00
• d4b7051091
  chore: refactor minimal neovim definition oddlama 2023-06-11 14:42:01 +02:00
• 4abefb0811
  fix: wireguard generator pipe issue oddlama 2023-06-10 02:00:08 +02:00
• e61c82ebfc
  feat: generate caddy basic auth passwords using agenix-rekey oddlama 2023-06-10 00:52:17 +02:00
• cfb7c88862
  feat: remove generate-wireguard-keys in favor of agenix-rekey generators oddlama 2023-06-09 23:21:18 +02:00
• dec790c589
  chore: update to new agenix-rekey format oddlama 2023-06-07 19:48:15 +02:00
• 972b0456da
  chore: use flushBeforeStage2=true to avoid networking issues; fix loki listen address oddlama 2023-06-06 01:04:39 +02:00
• 90499504b5
  chore: nixpkgs bug flushBeforeStage2 required oddlama 2023-06-05 21:05:04 +02:00