c4f98ec9e7
home/nix: add sops and github token
2024-06-25 20:12:13 +02:00
f74c1f7aa8
secrets: split secrets per machine to reduce conflicts
2024-06-25 19:27:23 +02:00
c7123f23ac
tsuki/invidious: remove
2024-06-09 16:13:32 +02:00
2b0968283d
tsuki/gitea: remove
2024-06-09 16:13:31 +02:00
a20bb288aa
tsuki/jupyter: remove
2024-06-09 15:40:57 +02:00
3b736e4c61
tsuki/pgadmin: remove
2024-06-09 15:34:09 +02:00
37a43a2bd9
tsuki/gitea-runners: init
2024-06-09 15:25:47 +02:00
40c93bb0ae
secrets: add several secrets
2024-01-23 06:32:12 +01:00
0d3e805611
tsuki: move to bare metal, set up zfs
2024-01-23 05:24:47 +01:00
c98a1a0541
tsuki/jupyter: harden security with sops and systemd
2023-07-28 22:00:07 +02:00
8a42e97014
tsuki/monitoring: misc:
...
- Secure grafana better, it had secrets in the nix store
- Set up prometheus exporters for nginx and php-fpm
- Add urls for dashboards
- Disable automatic updates
2023-07-12 02:06:39 +02:00
dc14eaa086
sops: add kasei to sops
2023-05-08 02:50:47 +02:00
3267e5f687
tsuki/headscale: start working on oidc login
2023-05-08 02:36:17 +02:00
58061df4ab
tsuki: set up nextcloud, without enabling it
2023-05-08 02:36:14 +02:00
df3aa7c10e
tsuki: setup oauth2 for pgadmin
...
This commit also changes the pgadmin package from `22.11` to `unstable`
2023-03-17 01:28:33 +01:00
5e2a5a939b
tsuki: move gitea postgres password to sops
2023-03-08 15:59:50 +01:00
a82a3f95c0
tsuki: move hardware config to configuration file
2023-03-08 15:26:07 +01:00
7a0fcf7805
tsuki: configure wildcard certs for nginx
2023-03-08 14:54:43 +01:00
dd6c99226e
tsuki: set up hedgedoc
...
the dynmap subdomain was also renamed from "dyn" to "map" in this commit
2023-03-08 14:54:40 +01:00
1d99bbfd46
Set up sops-nix
2023-03-07 23:15:21 +01:00