Commit Graph

238 Commits

Author SHA1 Message Date
6851879a03
bekkalokk: remove keycloak
Some checks failed
Eval nix flake / evals (pull_request) Failing after 1m39s
Eval nix flake / evals (push) Failing after 1m41s
2024-04-14 23:59:46 +02:00
70603145cf
bekkalokk/website: add sp metadata for all domains
Some checks failed
Eval nix flake / evals (pull_request) Failing after 1m49s
Eval nix flake / evals (push) Failing after 41s
2024-04-14 17:06:01 +02:00
1e4195ea9d bekkalokk: pvv-nettsiden-gallery: Improve thumbnail generation
Some checks failed
Eval nix flake / evals (push) Failing after 1m46s
2024-04-14 02:04:45 +02:00
ee335e3712 bicep/synapse: fix registering users via smtp
Some checks failed
Eval nix flake / evals (push) Failing after 2m0s
2024-04-14 01:52:17 +02:00
5bed292a01
bekkalokk/gitea: move user import stuff to separate nix file 2024-04-11 21:47:44 +02:00
36b7087a3f
base.nix: hotfix for hotfix for nginx on bicep (3352e48f)
Some checks failed
Eval nix flake / evals (push) Failing after 1m49s
Turns out the settings were in biceps local nginx config
2024-04-11 20:41:02 +02:00
1919da7a1c bicep/matrix: remove SAML authentication
Some checks failed
Eval nix flake / evals (push) Failing after 1m50s
2024-04-11 19:55:10 +02:00
0950fedf98 bekkalokk/website: fix some nginx location directives
Some checks failed
Eval nix flake / evals (push) Failing after 1m50s
2024-04-11 13:21:11 +02:00
614c2d624c
bekkalokk/webmail: add redirects for old webmail locations
Some checks failed
Eval nix flake / evals (push) Failing after 1m45s
2024-04-11 10:47:13 +02:00
db211c2304 bekkalokk/website: don't try to listen for ntnu.org
Some checks failed
Eval nix flake / evals (push) Failing after 1m48s
2024-04-11 05:31:33 +02:00
79bf307ef2 bekkalokk: Reconfigure www ingress
Some checks failed
Eval nix flake / evals (push) Failing after 1m46s
Eval nix flake / evals (pull_request) Failing after 1m52s
2024-04-11 00:48:07 +02:00
4d50efc6db Finalize www/idp/webmail migration from spikkjeposche to bekkalokk
Some checks failed
Eval nix flake / evals (push) Failing after 1m48s
2024-04-10 23:31:04 +02:00
9577477460 bekkalokk/nettsiden: add secrets 2024-04-10 23:04:20 +02:00
fc19a8f1e1 bekkalokk: Automatically unpack pvv-nettsiden/gallery and generate thumbnails 2024-04-10 23:04:20 +02:00
8657e77514 bekkalokk: set up pvv-nettsiden 2024-04-10 23:04:18 +02:00
065992620e treewide: nginx optimizations
Some checks failed
Eval nix flake / evals (push) Failing after 1m47s
Eval nix flake / evals (pull_request) Failing after 1m54s
2024-04-10 22:06:44 +02:00
fbbc54328b gitea: add theming module
Some checks failed
Eval nix flake / evals (push) Failing after 1m51s
Eval nix flake / evals (pull_request) Failing after 1m54s
2024-04-09 01:52:57 +02:00
42fd371c3b
mediawiki: restart phpfpm on updated secrets
Some checks failed
Eval nix flake / evals (push) Failing after 2m11s
2024-04-06 23:57:37 +02:00
6e1b06731f bekkalokk: add VisualEditor to mediawiki extensions
Some checks failed
Eval nix flake / evals (push) Failing after 1m53s
Eval nix flake / evals (pull_request) Failing after 1m42s
2024-04-06 21:09:01 +02:00
2cb7e06369
bekkalokk/mediawiki: fix path, upgrade security
Some checks failed
Eval nix flake / evals (push) Failing after 1m54s
2024-04-03 08:29:19 +02:00
a55c908fe7
bekkalokk/mediawiki: change domain from wiki2 to wiki
Some checks failed
Eval nix flake / evals (push) Failing after 1m48s
2024-04-02 19:54:28 +02:00
d531419f35 bekkalokk: init mediawiki
Some checks failed
Eval nix flake / evals (pull_request) Failing after 1m46s
Eval nix flake / evals (push) Failing after 1m53s
Co-authored-by: Jørn Åne <yorinad@pvv.ntnu.no>
2024-04-01 23:57:39 +02:00
806b18ede8 bekkalokk: init idp-simplesamlphp 2024-04-01 23:57:39 +02:00
9495682f57 bekkalokk: package mediawiki extensions outside of module 2024-04-01 00:39:12 +02:00
266ce9ed08 bekkalokk: set up kerberos client 2024-04-01 00:38:49 +02:00
7c6d4d31c7 bicep/matrix/element: update room directories
Some checks failed
Eval nix flake / evals (push) Failing after 1m44s
2024-03-05 05:52:31 +01:00
9f46be1ca1 bicep/matrix: update element lab flags and room directoriy listings
Some checks failed
Eval nix flake / evals (push) Failing after 1m44s
2024-03-05 05:28:23 +01:00
545583cf04 bekkalokk/gitea: Do not change the user visibility
Some checks failed
Eval nix flake / evals (push) Failing after 1m55s
2024-03-03 00:29:24 +01:00
62b269637a bekkalokk/gitea: unset visibility when updating users
Some checks failed
Eval nix flake / evals (push) Failing after 1m50s
2024-02-12 11:24:14 +01:00
7fd9a1e646
started on bikkje container for new loginbox - work in progress
Some checks failed
Eval nix flake / evals (push) Failing after 1m47s
2024-01-07 01:21:11 +01:00
4ea90380ad bicep/matrix: use synapse package from stable
Some checks failed
Eval nix flake / evals (push) Failing after 1m52s
It's fixed now
2023-12-16 00:22:02 +01:00
80ef1ce4fa Buskerud: Remove OV-link, general cleanup
Some checks failed
Eval nix flake / evals (push) Failing after 1m43s
Eval nix flake / evals (pull_request) Failing after 1m42s
2023-12-12 15:27:20 +01:00
2b834eee14 Buskerud: Comment out openvpn-client
Some checks failed
Eval nix flake / evals (pull_request) Failing after 1m42s
Eval nix flake / evals (push) Failing after 1m40s
2023-12-12 11:39:33 +01:00
dd8b677a79 buskerud: bootloader - 3.3TB, OS - 256GB 👍
Some checks failed
Eval nix flake / evals (pull_request) Failing after 1m49s
Eval nix flake / evals (push) Failing after 1m57s
2023-12-10 05:27:58 +01:00
eabd8df3d8 bicep/matrix: use package with fixed pythonEnv
Some checks failed
Eval nix flake / evals (pull_request) Failing after 1m46s
Eval nix flake / evals (push) Failing after 1m52s
2023-12-10 04:32:26 +01:00
0b5e03471f
upgrade to nixpkgs 23.11
Some checks failed
Eval nix flake / evals (push) Failing after 3h8m33s
Eval nix flake / evals (pull_request) Failing after 3h5m17s
2023-12-05 00:36:09 +01:00
d8031ecca1 Merge pull request 'replace-knakelibrak-nginx-reverse-proxy' (#18) from replace-knakelibrak-nginx-reverse-proxy into main
All checks were successful
Eval nix flake / evals (push) Successful in 4m2s
Reviewed-on: #18
2023-12-03 07:01:13 +01:00
8ced91a285
hosts/buskerud: init
All checks were successful
Eval nix flake / evals (push) Successful in 4m43s
Co-authored-by: Felix Albrigtsen <felix@albrigtsen.it>
2023-11-30 19:42:05 +01:00
1ef033c754
bekkalokk/ingress: proxy matrix well-known files to bicep
All checks were successful
Eval nix flake / evals (push) Successful in 3m44s
Eval nix flake / evals (pull_request) Successful in 3m31s
2023-11-28 10:24:18 +01:00
d900dc1b1b
Redirect subpages like ./well-known, add @-domains 2023-11-28 10:24:18 +01:00
d5985e02f3
Prepare to replace knakelibrak
Co-authored-by: Felix Albrigtsen <felix@albrigtsen.it>
2023-11-28 10:23:02 +01:00
2c42b120a6 Merge branch 'extend_smtp'
All checks were successful
Eval nix flake / evals (push) Successful in 3m41s
2023-11-28 08:39:15 +01:00
27ba3f7a7f bicep/matrix: serve server well-known
All checks were successful
Eval nix flake / evals (push) Successful in 3m24s
2023-11-28 08:36:56 +01:00
c1c58122ea bicep/matrix: Improve flexibility of username login
All checks were successful
Eval nix flake / evals (push) Successful in 4m34s
It should be possible to log in  with @username:pvv.ntnu.no now
That way client well-known in third party clients will work

it might also fix the weird logout of session issues in element
2023-11-28 05:14:04 +01:00
54a54ad0f5 Merge pull request 'Roundcube testing on bekkalokk now working.' (#14) from roundcube into main
All checks were successful
Eval nix flake / evals (push) Successful in 11m0s
Reviewed-on: https://bekkalokk.pvv.ntnu.no/Drift/pvv-nixos-config/pulls/14
2023-11-26 05:17:28 +01:00
2a1e649eed bekkalokk: fix roundcube, and move to webmail2.pvv.ntnu.no/roundcube
All checks were successful
Eval nix flake / evals (push) Successful in 16m1s
Eval nix flake / evals (pull_request) Successful in 21m4s
2023-11-26 05:05:15 +01:00
d7638138ed brzeczyszczykiewicz: add bokhylle as alias for the grzegorz service
All checks were successful
Eval nix flake / evals (push) Successful in 8m48s
2023-11-26 02:36:23 +01:00
c8d383c9ab bekkalokk-roundcube init at roundcube.pvv.ntnu.no
All checks were successful
Eval nix flake / evals (pull_request) Successful in 10m54s
Eval nix flake / evals (push) Successful in 12m3s
2023-11-25 21:23:06 +01:00
c4df999058 bob: init
All checks were successful
Eval nix flake / evals (push) Successful in 2m46s
Cool beeg nix builder
for now anyways
2023-11-05 06:06:57 +01:00
3caa66fb64
rename input: unstable -> nixpkgs-unstable
All checks were successful
Eval nix flake / evals (push) Successful in 3m3s
2023-11-05 01:22:48 +01:00
b458801f95 Revert "bekkalokk: add wackattack ctf systemd service"
All checks were successful
Eval nix flake / evals (push) Successful in 2m49s
CTF is over

This reverts commit fa843c4a59.
2023-10-30 09:03:27 +01:00
fa843c4a59
bekkalokk: add wackattack ctf systemd service
All checks were successful
Eval nix flake / evals (push) Successful in 4m9s
2023-10-26 22:10:30 +02:00
e07945d49c bicep/matrix: enable sliding sync
All checks were successful
Eval nix flake / evals (push) Successful in 2m39s
2023-10-22 02:33:40 +02:00
32885891fe bicep/matrix: enable smtp auth
All checks were successful
Eval nix flake / evals (push) Successful in 2m43s
yolo lmao
2023-10-22 01:59:25 +02:00
9b44087693 bekkalokk/gitea: make import user script run by default
Systemd stuff are generally turned on by default but need to be wanted

Much like me
2023-10-14 22:47:56 +02:00
be341622fe georg: init 2023-09-17 04:57:30 +02:00
87a7b17b49 brzeczyszczykiewicz: init 2023-09-17 04:57:30 +02:00
5c529a0233 Fix gitea runners, add 2 more
The gitea runners are now activated correctly,
has support for both debian and ubuntu based systems,
and can will connect to the gitea server through the
loopback interface
2023-09-17 04:05:08 +02:00
bc678b5d51 Merge pull request 'Bekkalokk: Enable podman' (#11) from add-gitea-ci into main
Reviewed-on: #11
2023-09-16 22:38:23 +02:00
ade2f6f5c9 Bekkalokk: Enable podman 2023-09-16 22:38:15 +02:00
5c37b71646 Merge pull request 'Setup gitea action runner' (#10) from add-gitea-ci into main
Reviewed-on: #10
2023-09-16 22:31:22 +02:00
76f18b459c Setup gitea action runner 2023-09-16 22:26:44 +02:00
97cd5a235f Merge pull request 'Gitea enabled actions' (#9) from add-gitea-ci into main
Reviewed-on: #9
2023-09-16 21:51:43 +02:00
e5fac39ce8 Enabled actions 2023-09-16 21:51:13 +02:00
f53c0c6eb5 bicep/synapse: Move database configuration out of secrets 2023-09-16 21:38:39 +02:00
816997b74f bicep/nginx: increase workers and enable modern compression
Should decrease latency
2023-09-13 11:01:09 +02:00
06322a26fc bicep/postgres: enable jit again, make more memory available 2023-09-13 05:22:23 +02:00
a58101bfbc Remove deprecated hosts and clean up 2023-09-13 05:03:57 +02:00
d3b363b028 bicep: Remove deprecated grub version option 2023-09-13 04:54:46 +02:00
4a6ea9be2d bicep/synapse: define registration secret properly 2023-09-13 04:53:56 +02:00
f92ebbee16 bicep/synapse: use postgres unix socket 2023-09-13 04:16:22 +02:00
201e3d306b bicep: Revert postgres socket stuff 2023-09-13 03:58:29 +02:00
437219bb68 bicep/postgres: Enable unix socket auth 2023-09-13 00:52:27 +02:00
d96c30bbd5 Fix calendar-bot timer 2023-09-12 18:23:20 +02:00
36b768b3b2 ( ͡° ͜ʖ ͡°) 2023-09-08 02:33:22 +02:00
9f36bd86a8 Update calendar bot details 2023-09-08 02:25:23 +02:00
1370ccddf8 Initialize host: shark 2023-09-08 02:11:02 +02:00
cfcd230678 Merge pull request 'Fix gitea on bekkalokk' (#7) from configure-gitea into main
Reviewed-on: #7
2023-09-07 18:54:24 +02:00
1afc8841a9
bekkalokk/nginx: remove commented virtualhost for mediawiki 2023-09-07 18:53:05 +02:00
b4b6b4971a
bekkalokk/gitea: misc changes
- change domain from git2 to git1
- enable internal SSH serer
- enable code search
- add custom logos
- update import-user-script to ignore GECOS fields
2023-09-07 18:53:05 +02:00
b52753987d
bicep: use mysql on bicep as production server 2023-09-07 18:40:13 +02:00
3beb76e411 Add pvv-calendar-bot to bicep 2023-08-27 02:36:01 +02:00
bfe94003c4 bicep/matrix/discord: enable legacy authorization because old mx-puppet-discord 😭 2023-08-18 00:54:06 +02:00
a5c83866ca bicep: setup ACME cert for postgres 2023-08-12 02:55:20 +02:00
34a16149f8 ildkule: add config for prometheus_mysqld_exporter
There's a PR waiting to add this module to nixpkgs,
so we should enable this once it gets merged.
2023-07-10 00:06:27 +02:00
998e66db65 bicep: enable mysql 2023-07-10 00:06:09 +02:00
699569249a ildkule: adjust matrix version annotations for nixos matrix module 2023-06-20 14:01:44 +02:00
e73b7d2cd1 ildule: fix upstream dashboard variables 2023-06-20 13:46:00 +02:00
ff30477e86 ildule: Update matrix dashboard from upstream 2023-06-20 13:20:42 +02:00
8f55ef3193 Bekkalokk: Configure Gitea, clean web services
Update bekkalokk secrets format

Update gitea keys and firewall rules

Create gitea-user-import script

Fix SSH host key verification

Gitea-import-users bug squashification

Fix Gitea-import SSH problems
2023-06-05 19:41:25 +02:00
d694724f5c bicep/synapse: Set event cache to 20K
This is double the cache from default
changed because we're seeing periodic cpu spikes
with this cache beeing the main one missing
2023-05-26 02:22:18 +02:00
68ce7acebb Revert "bicep: Emergency fix for matrix postgres auth"
This reverts commit fdbcd8c884.

This was not it
2023-05-23 05:12:46 +02:00
fdbcd8c884 bicep: Emergency fix for matrix postgres auth
I think
2023-05-23 04:59:34 +02:00
815063744b bicep/postgres: Remove jit setting
The nixos build of postgres doesn't support it anyways
2023-05-23 04:57:18 +02:00
dfd827ee74 Clean up jokum removal 2023-05-23 04:29:45 +02:00
9ccfb6cbed Merge branch 'bekkalokk-metrics' 2023-05-21 04:04:29 +02:00
1335ab1d4b Add metrics exporters to bekkalokk 2023-05-21 04:03:14 +02:00
69be23712f Merge branch 'bicep-metrics' of Drift/pvv-nixos-config into main 2023-05-21 03:47:53 +02:00
ce58f91e16 Add metrics exporters to bicep 2023-05-21 03:47:02 +02:00
8ccf9e9298 Update keys and re-enable web services 2023-05-21 02:29:14 +02:00