Commit Graph

198 Commits

Author SHA1 Message Date
d5985e02f3
Prepare to replace knakelibrak
Co-authored-by: Felix Albrigtsen <felix@albrigtsen.it>
2023-11-28 10:23:02 +01:00
2c42b120a6 Merge branch 'extend_smtp' 2023-11-28 08:39:15 +01:00
27ba3f7a7f bicep/matrix: serve server well-known 2023-11-28 08:36:56 +01:00
c1c58122ea bicep/matrix: Improve flexibility of username login
It should be possible to log in  with @username:pvv.ntnu.no now
That way client well-known in third party clients will work

it might also fix the weird logout of session issues in element
2023-11-28 05:14:04 +01:00
54a54ad0f5 Merge pull request 'Roundcube testing on bekkalokk now working.' (#14) from roundcube into main
Reviewed-on: https://bekkalokk.pvv.ntnu.no/Drift/pvv-nixos-config/pulls/14
2023-11-26 05:17:28 +01:00
2a1e649eed bekkalokk: fix roundcube, and move to webmail2.pvv.ntnu.no/roundcube 2023-11-26 05:05:15 +01:00
d7638138ed brzeczyszczykiewicz: add bokhylle as alias for the grzegorz service 2023-11-26 02:36:23 +01:00
c8d383c9ab bekkalokk-roundcube init at roundcube.pvv.ntnu.no 2023-11-25 21:23:06 +01:00
c4df999058 bob: init
Cool beeg nix builder
for now anyways
2023-11-05 06:06:57 +01:00
3caa66fb64
rename input: unstable -> nixpkgs-unstable 2023-11-05 01:22:48 +01:00
b458801f95 Revert "bekkalokk: add wackattack ctf systemd service"
CTF is over

This reverts commit fa843c4a59.
2023-10-30 09:03:27 +01:00
fa843c4a59
bekkalokk: add wackattack ctf systemd service 2023-10-26 22:10:30 +02:00
e07945d49c bicep/matrix: enable sliding sync 2023-10-22 02:33:40 +02:00
32885891fe bicep/matrix: enable smtp auth
yolo lmao
2023-10-22 01:59:25 +02:00
9b44087693 bekkalokk/gitea: make import user script run by default
Systemd stuff are generally turned on by default but need to be wanted

Much like me
2023-10-14 22:47:56 +02:00
be341622fe georg: init 2023-09-17 04:57:30 +02:00
87a7b17b49 brzeczyszczykiewicz: init 2023-09-17 04:57:30 +02:00
5c529a0233 Fix gitea runners, add 2 more
The gitea runners are now activated correctly,
has support for both debian and ubuntu based systems,
and can will connect to the gitea server through the
loopback interface
2023-09-17 04:05:08 +02:00
bc678b5d51 Merge pull request 'Bekkalokk: Enable podman' (#11) from add-gitea-ci into main
Reviewed-on: Drift/pvv-nixos-config#11
2023-09-16 22:38:23 +02:00
ade2f6f5c9 Bekkalokk: Enable podman 2023-09-16 22:38:15 +02:00
5c37b71646 Merge pull request 'Setup gitea action runner' (#10) from add-gitea-ci into main
Reviewed-on: Drift/pvv-nixos-config#10
2023-09-16 22:31:22 +02:00
76f18b459c Setup gitea action runner 2023-09-16 22:26:44 +02:00
97cd5a235f Merge pull request 'Gitea enabled actions' (#9) from add-gitea-ci into main
Reviewed-on: Drift/pvv-nixos-config#9
2023-09-16 21:51:43 +02:00
e5fac39ce8 Enabled actions 2023-09-16 21:51:13 +02:00
f53c0c6eb5 bicep/synapse: Move database configuration out of secrets 2023-09-16 21:38:39 +02:00
816997b74f bicep/nginx: increase workers and enable modern compression
Should decrease latency
2023-09-13 11:01:09 +02:00
06322a26fc bicep/postgres: enable jit again, make more memory available 2023-09-13 05:22:23 +02:00
a58101bfbc Remove deprecated hosts and clean up 2023-09-13 05:03:57 +02:00
d3b363b028 bicep: Remove deprecated grub version option 2023-09-13 04:54:46 +02:00
4a6ea9be2d bicep/synapse: define registration secret properly 2023-09-13 04:53:56 +02:00
f92ebbee16 bicep/synapse: use postgres unix socket 2023-09-13 04:16:22 +02:00
201e3d306b bicep: Revert postgres socket stuff 2023-09-13 03:58:29 +02:00
437219bb68 bicep/postgres: Enable unix socket auth 2023-09-13 00:52:27 +02:00
d96c30bbd5 Fix calendar-bot timer 2023-09-12 18:23:20 +02:00
36b768b3b2 ( ͡° ͜ʖ ͡°) 2023-09-08 02:33:22 +02:00
9f36bd86a8 Update calendar bot details 2023-09-08 02:25:23 +02:00
1370ccddf8 Initialize host: shark 2023-09-08 02:11:02 +02:00
cfcd230678 Merge pull request 'Fix gitea on bekkalokk' (#7) from configure-gitea into main
Reviewed-on: Drift/pvv-nixos-config#7
2023-09-07 18:54:24 +02:00
1afc8841a9
bekkalokk/nginx: remove commented virtualhost for mediawiki 2023-09-07 18:53:05 +02:00
b4b6b4971a
bekkalokk/gitea: misc changes
- change domain from git2 to git1
- enable internal SSH serer
- enable code search
- add custom logos
- update import-user-script to ignore GECOS fields
2023-09-07 18:53:05 +02:00
b52753987d
bicep: use mysql on bicep as production server 2023-09-07 18:40:13 +02:00
3beb76e411 Add pvv-calendar-bot to bicep 2023-08-27 02:36:01 +02:00
bfe94003c4 bicep/matrix/discord: enable legacy authorization because old mx-puppet-discord 😭 2023-08-18 00:54:06 +02:00
a5c83866ca bicep: setup ACME cert for postgres 2023-08-12 02:55:20 +02:00
34a16149f8 ildkule: add config for prometheus_mysqld_exporter
There's a PR waiting to add this module to nixpkgs,
so we should enable this once it gets merged.
2023-07-10 00:06:27 +02:00
998e66db65 bicep: enable mysql 2023-07-10 00:06:09 +02:00
699569249a ildkule: adjust matrix version annotations for nixos matrix module 2023-06-20 14:01:44 +02:00
e73b7d2cd1 ildule: fix upstream dashboard variables 2023-06-20 13:46:00 +02:00
ff30477e86 ildule: Update matrix dashboard from upstream 2023-06-20 13:20:42 +02:00
8f55ef3193 Bekkalokk: Configure Gitea, clean web services
Update bekkalokk secrets format

Update gitea keys and firewall rules

Create gitea-user-import script

Fix SSH host key verification

Gitea-import-users bug squashification

Fix Gitea-import SSH problems
2023-06-05 19:41:25 +02:00
d694724f5c bicep/synapse: Set event cache to 20K
This is double the cache from default
changed because we're seeing periodic cpu spikes
with this cache beeing the main one missing
2023-05-26 02:22:18 +02:00
68ce7acebb Revert "bicep: Emergency fix for matrix postgres auth"
This reverts commit fdbcd8c884.

This was not it
2023-05-23 05:12:46 +02:00
fdbcd8c884 bicep: Emergency fix for matrix postgres auth
I think
2023-05-23 04:59:34 +02:00
815063744b bicep/postgres: Remove jit setting
The nixos build of postgres doesn't support it anyways
2023-05-23 04:57:18 +02:00
dfd827ee74 Clean up jokum removal 2023-05-23 04:29:45 +02:00
9ccfb6cbed Merge branch 'bekkalokk-metrics' 2023-05-21 04:04:29 +02:00
1335ab1d4b Add metrics exporters to bekkalokk 2023-05-21 04:03:14 +02:00
69be23712f Merge branch 'bicep-metrics' of Drift/pvv-nixos-config into main 2023-05-21 03:47:53 +02:00
ce58f91e16 Add metrics exporters to bicep 2023-05-21 03:47:02 +02:00
8ccf9e9298 Update keys and re-enable web services 2023-05-21 02:29:14 +02:00
8b70d84f41 bekkalokk: hardware-config for baremetal 2023-05-21 00:06:25 +02:00
cd0c8c8198
bekkalokk: continue work on mediawiki service 2023-05-19 03:03:47 +02:00
c11a804097
bicep: set up mysql/mariadb 2023-05-18 15:40:13 +02:00
4ff5da28c4 bicep: nginx listen on bicep ip 2023-05-08 03:38:59 +02:00
ee73a964be move matrix to bicep 2023-05-08 03:38:59 +02:00
dcbe6871da
bekkalokk: setup keycloak 2023-05-07 00:34:42 +02:00
0e75e0a5b9
bicep: add backup service 2023-05-06 19:07:10 +02:00
f77a5e946f bicep: mount /data 2023-04-08 05:23:01 +02:00
bac67ee123 bicep: don't wait for all interfaces and especially not jokums 2023-04-07 04:53:36 +02:00
Daniel Olsen
38e3202c9e Move more of jokum
slightly less stupid this time
2023-03-26 14:44:58 +02:00
7620fb3dee move jokum to nixos bicep 2023-03-26 06:36:04 +02:00
dfe8b8b44c
bicep: added postgres settings 2023-03-26 01:50:00 +01:00
169f774e81
bicep dead, but maybe soon bicep alive 2023-03-26 01:09:44 +01:00
2568800794 Add andresbu to node-exporter targets 2023-03-12 00:41:36 +01:00
d9c19385fa synapse: cache more event_auth 2023-03-08 03:18:57 +01:00
70f4777696 fix synapse dashboard 2023-03-04 05:11:40 +01:00
db69d28b42 Revert "metrics: Fix Synapse dashboard"
This reverts commit beb8df8fc7.
2023-03-04 03:14:54 +01:00
8f23d7ba06 jokum: don't use host resolv.conf 2023-03-04 03:04:32 +01:00
3252a3b5d1 turn on jokum 2023-03-04 02:03:37 +01:00
8e819b5546 fix ip for bekkalokk 2023-03-04 00:57:28 +01:00
6cf831a347 switch to networkd 2023-03-04 00:44:30 +01:00
af955c88f8 jokum: move to systemd-nspawn container on bicep 2023-02-26 19:23:00 +01:00
eed3c9b05f matrix: Point mjolnir directly at synapse so it can use the admin api 2023-02-13 03:42:52 +01:00
7a9759ef71 matrix: Add mjolnir as a moderation bot 2023-02-13 02:34:11 +01:00
4684cd239a matrix: enable shared secret registration 2023-02-13 00:58:15 +01:00
c0c0dea069 tune worker distribution post fosdem and turning off prescence 2023-02-06 02:11:07 +01:00
9c18a87866 element: disable presence if disabled in synapse 2023-02-02 18:51:47 +01:00
73aa42a5f5 synapse: Disable presence
For now at least until we move to a stronger
machine.

Most large servers don't have this enabled.
2023-02-02 18:39:08 +01:00
eade192132 synapse: bump federation receiver count to 3 2023-02-02 00:35:26 +01:00
beb8df8fc7 metrics: Fix Synapse dashboard
Some of the panels were set to the wrong
datasource

Additionally since we don't do MAU limits,
I moved the relevant MAU panel to Overview
2023-02-01 22:54:54 +01:00
1a424c79fe synapse: track monthly active users 2023-02-01 19:42:49 +01:00
796155481f
Add host bekkalokk
`bekkalokk` is a new machine, meant to host web services and eventually
miscellaneous services.
2023-01-29 01:51:35 +01:00
efc8eb7ffc
ildkule: add postgres exporter for knakelibrak 2023-01-26 02:16:52 +01:00
84b57bb4db Provision go dashboard for gogs 2023-01-23 14:48:26 +01:00
b4e74a3959 Add node and gogs metrics collection to prometheus 2023-01-23 13:12:46 +01:00
a78f120a65
explicitly state nginx listen addresses 2023-01-22 17:46:48 +01:00
3880190577
ildkule: add postgres dashboard to grafana 2023-01-22 02:28:19 +01:00
171fea39bc
ildkule: switch grafana db from sqlite to postgres 2023-01-22 02:18:21 +01:00
2bc5d7d91e
ildkule: set up postgres metrics exporter 2023-01-22 00:47:22 +01:00
a7408b8800
ildkule: restructure prometheus config 2023-01-21 20:08:36 +01:00