Simon Bruder
9f70024257
fuuko/hydra: Make serving build artifacts work
...
hydra-server.service does not have access to the signing key.
2021-05-13 14:23:10 +02:00
Simon Bruder
dc1698ffaa
fuuko: Add hydra
2021-05-13 13:07:17 +02:00
Simon Bruder
10ced7f2bb
fuuko/torrent: Make socat work after forced stop
...
This should improve behavour after e.g. a power outage.
2021-05-03 10:17:00 +02:00
Simon Bruder
440fc97f7f
AriaNg: Include as flake
2021-05-03 10:16:59 +02:00
Simon Bruder
51f814c70d
fuuko/go-neb: Use sops for secrets
2021-05-03 10:16:59 +02:00
Simon Bruder
84c72583fe
fuuko/drone-runner-exec: Use unstable nix
...
This also adds /etc/static as read-only path to the sandbox, since
otherwise /etc/nix/nix.conf can’t be read.
2021-05-01 18:31:05 +02:00
Simon Bruder
400b55a293
Convert to flake
...
Fixes #3 .
2021-05-01 17:36:58 +02:00
Simon Bruder
08b8fce2d4
fuuko/gitea: Store session on disk
2021-04-19 14:35:42 +02:00
Simon Bruder
cd30750fdc
fuuko/media-backup: Init
...
Fixes #49 .
2021-04-16 17:13:46 +02:00
Simon Bruder
ec09bbf6c6
fuuko/gitea: Remove version override
...
Version 1.14.0 has been released and is in nixpkgs.
2021-04-13 09:08:04 +02:00
Simon Bruder
602573cd34
fuuko/dnsmasq: Reliably work after reboot
2021-04-10 23:23:46 +02:00
Simon Bruder
bb8c54065a
fuuko/drone/runner-exec: Remove port collision with grafana
...
Drone docs [1] say “Overriding this value is not recommended”, however I
do not see why I should not be able to change it.
[1] https://docs.drone.io/runner/exec/configuration/reference/drone-http-bind/
2021-04-10 23:21:46 +02:00
Simon Bruder
746581ceba
fuuko/dnsmasq: Replace stubby/DoT with https-dns-proxy/DoH
2021-04-10 20:16:08 +02:00
Simon Bruder
5dff1a426f
fuuko/binary-cache: Add nar-serve
2021-04-08 21:40:14 +02:00
Simon Bruder
8d9e3af211
Add binary cache hosted on fuuko
...
See machines/fuuko/services/binary-cache.nix for limitations.
2021-04-08 16:19:57 +02:00
Simon Bruder
68fbc9e185
fuuko/go-neb: Notify room if alert is firing
2021-04-08 10:04:30 +02:00
Simon Bruder
9dbd7f9c85
vueko/coturn: Manage shared secret with sops
...
This requires not using the NixOS module, since it does not support
loading it from a file.
2021-04-07 12:23:48 +02:00
Simon Bruder
4a8a7e0a4f
Use sops for secrets
...
Since I currently do not have access to sayuri, sayuri’s migration is
not done yet. The host keys and wg-home-private-key secret still have to
be added.
2021-04-06 14:05:48 +02:00
Simon Bruder
5c4284d68c
fuuko: Add dnsmasq prometheus exporter
2021-04-05 13:18:43 +02:00
Simon Bruder
c26539e607
fuuko/prometheus: Actually show node name in alerts
2021-04-04 14:34:44 +02:00
Simon Bruder
1b08afd515
fuuko/gitea: Also use ed25519 ssh key
2021-04-04 11:18:34 +02:00
Simon Bruder
0212f2adbd
fuuko/drone: Init
2021-04-03 18:47:01 +02:00
Simon Bruder
ac7e1c1123
fuuko/dnsmasq: Use DNS over TLS via stubby
2021-04-03 13:11:09 +02:00
Simon Bruder
ce7425d8c4
Remove issei from vpn and prometheus
2021-04-02 18:13:09 +02:00
Simon Bruder
94b2746018
fuuko/go-neb: Add alertmanager matrix receiver
2021-04-02 17:46:07 +02:00
Simon Bruder
2897451a65
fuuko/prometheus: Set external URLs
2021-04-02 16:44:17 +02:00
Simon Bruder
98a4f345eb
fuuko/matrix/mautrix-whatsapp: Init
2021-04-02 15:09:57 +02:00
Simon Bruder
0ae96653a5
fuuko/matrix/synapse: Init
2021-04-02 14:59:14 +02:00
Simon Bruder
2d74dac8c0
fuuko/hedgedoc: Start after postgresql
2021-03-30 16:13:20 +02:00
Simon Bruder
50f0968738
fuuko: Add gitea
2021-03-29 14:08:53 +02:00
Simon Bruder
cb8a8f3c8d
fuuko/prometheus: Enable admin API
2021-03-28 11:04:48 +02:00
Simon Bruder
55099f1884
fuuko/prometheus: Raise retention time to 90d
2021-03-28 11:04:25 +02:00
Simon Bruder
57652d8a79
fuuko: Add hedgedoc
2021-03-10 15:42:21 +01:00
Simon Bruder
966667b87f
fuuko: Exclude scans from system backup
2021-03-10 11:27:56 +01:00
Simon Bruder
db54dfaed1
fuuko/dnsmasq: Allow DNS queries over TCP
...
Sharepoint manages to return enormous responses when querying for an
AAAA record.
$ dig sitename.sharepoint.com AAAA
;; Truncated, retrying in TCP mode.
2021-03-10 09:13:37 +01:00
Simon Bruder
d6bddf40c0
fuuko: Add ankisyncd
2021-03-09 21:22:19 +01:00
Simon Bruder
3a5568a136
fuuko: Enable full postgresql backup
2021-03-09 11:50:32 +01:00
Simon Bruder
515939677b
fuuko/torrent: Add resolv.conf to aria2 netns
...
Even though aria2 doesn’t respect it, it is useful for for debugging.
2021-03-08 19:38:26 +01:00
Simon Bruder
3da67f7576
fuuko: Enable system backups
2021-03-08 17:33:30 +01:00
Simon Bruder
e8626ba27a
fuuko: Add wordclock-dimmer
2021-03-08 17:03:30 +01:00
Simon Bruder
0c081d9805
fuuko: Add dnsmasq
2021-03-08 16:19:49 +01:00
Simon Bruder
786edd1caf
fuuko: Add aria2
2021-03-08 15:55:24 +01:00
Simon Bruder
07f152cb20
fuuko: Add media file index
2021-03-08 15:40:41 +01:00
Simon Bruder
878bdd30d5
fuuko: Add ftp server and scan converter
2021-03-08 15:30:04 +01:00
Simon Bruder
d1cf0f698f
fuuko: Add grafana
2021-03-08 15:10:15 +01:00
Simon Bruder
70ee44fbc5
fuuko: Add prometheus fritzbox exporter
2021-03-08 15:10:15 +01:00
Simon Bruder
f388995ef6
fuuko: Add prometheus
2021-03-08 15:10:15 +01:00
Simon Bruder
df303dcc2b
fuuko: Init
2021-03-08 15:10:15 +01:00