Christoph Heiss
851aa3abb0
secrets: fort: drop some obsolete stuff
...
flake / build (push) Successful in 3m10s
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-08-05 23:15:57 +02:00
Christoph Heiss
cc5d9e0b23
flake: bump nixpkgs, home-manager, nixos-hardware and sops-nix
...
flake / build (push) Successful in 3m31s
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-08-03 23:05:25 +02:00
Christoph Heiss
50be94c9ff
flake: define host fqdn in /etc/hosts
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-08-03 22:56:25 +02:00
Christoph Heiss
a91b221733
flake: use fqdn for nixinate deployment target
...
flake / build (push) Successful in 3m22s
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-30 21:02:19 +02:00
Christoph Heiss
67581b24f0
ci: replace woodpecker with a forgejo actions workflow
...
flake / build (push) Successful in 3m44s
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-18 22:54:42 +02:00
Christoph Heiss
a169c5e3f6
system: desktop: set stable-uuid
for IPv6 DUID for NM by default
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-18 22:07:00 +02:00
Christoph Heiss
9f3d20bcac
extra: nvim: set own target directory for rust-analyzer
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-18 18:25:09 +02:00
Christoph Heiss
91df822d73
tree-wide: simplify lib.concatStringsSep "\n" ..
usages
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-13 19:59:59 +02:00
Christoph Heiss
1fc08d9300
flake: update lix to 2.90.0
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-11 20:41:34 +02:00
Christoph Heiss
77a50d3306
extra: nvim: re-enable preview window for ripgrep shortcut
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-11 17:22:22 +02:00
Christoph Heiss
5ddccfa39a
extra: nvim: do not match on filenames in :Rg command
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-09 15:32:47 +02:00
Christoph Heiss
893ceb1687
services: prometheus: switch over to dedicated subdomain instead of subpath
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-07 17:04:03 +02:00
Christoph Heiss
0daabd8768
services: forgejo: re-enable actions
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-07 16:49:27 +02:00
Christoph Heiss
26d0bcd2c8
flake: update lockfile
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-06 13:32:57 +02:00
Christoph Heiss
cf48860c8b
flake: update nixpkgs to 01-07-2024 to pull in openssh patches
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-06 01:14:51 +02:00
Christoph Heiss
2dc6d5235e
flake: fix home manager configurations for maui
...
ci/woodpecker/push/woodpecker Pipeline was successful
Apparently, `system` was recursively evaluated in this context ..
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-04 10:41:31 +02:00
Christoph Heiss
0223a9c8e1
pkgs: dashboard-icons: unstable-2024-03-24 -> unstable-2024-06-02
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-03 17:16:45 +02:00
Christoph Heiss
ec5fbc889f
pkgs: homer: 24.02.1 -> 24.05.1
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-03 17:14:40 +02:00
Christoph Heiss
46aaba83f1
flake: add formatter for toml files
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-03 17:05:24 +02:00
Christoph Heiss
c9780f9f01
flake: bump nixpkgs, home-manager, et al. to ~30-06-2024
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-03 16:58:02 +02:00
Christoph Heiss
c160e506be
common: nix-options: disable unfree and broken packages and aliases explicitly
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-03 15:30:25 +02:00
Christoph Heiss
d99b71d578
home-manager: desktop: move DOCKER_HOST setting to system-wide config
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-03 15:28:13 +02:00
Christoph Heiss
44a7d23daa
flake: pull in openssh 9.8p1 through nixpkgs directly
...
ci/woodpecker/push/woodpecker Pipeline was successful
.. benefiting from the cache.
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-02 12:25:26 +02:00
Christoph Heiss
118ee71e09
flake: pin nixfmt package to nixfmt-classic
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-02 12:23:10 +02:00
Christoph Heiss
ef0d4cea6d
secrets: fort: update some things
...
ci/woodpecker/push/woodpecker Pipeline failed
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-01 16:52:33 +02:00
Christoph Heiss
69b91d3e25
pkgs: override openssh to version 9.8p1
...
ci/woodpecker/push/woodpecker Pipeline failed
Due to RCE:
https://www.openssh.com/releasenotes.html
https://forum.aux.computer/t/security-advisory-openssh-remote-code-execution-cve-2024-6387-regresshion-update-your-servers-asap
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-07-01 16:07:27 +02:00
Christoph Heiss
c8ab9d9f8b
ci: convert sourcehut build manifest to woodpecker
...
ci/woodpecker/push/woodpecker Pipeline was successful
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-30 23:45:08 +02:00
Christoph Heiss
06fd80f486
services: grafana: switch over to dedicated subdomain instead of subpath
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-29 12:50:54 +02:00
Christoph Heiss
30e6c7ab70
services: forgejo: explicitly set dump file name
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-29 12:48:47 +02:00
Christoph Heiss
941696526b
system: desktop: move fonts configuration to home-manager
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-28 10:37:47 +02:00
Christoph Heiss
43925a3a98
system: desktop: drop iw
package, move lldb
to home-manager
...
Never even used `iw` to this point.
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-28 10:09:45 +02:00
Christoph Heiss
a81e33f7bb
services: forgejo: disable actions
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-26 16:12:03 +02:00
Christoph Heiss
537325a85a
services: forgejo: increase repo health check timeout to 10min
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-26 16:10:30 +02:00
Christoph Heiss
1f52d0f979
machines: maui: fix PATH for lix configuration
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-25 10:04:40 +02:00
Christoph Heiss
0aef3b11f5
flake: update lockfile
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-25 10:02:31 +02:00
Christoph Heiss
b13318b89f
services: sourcehut: drop completely
...
Switched to Forgejo .. it's just so _much_ simpler than sourcehut with
all its small microservices, essentially.
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-24 23:37:09 +02:00
Christoph Heiss
8ee22e9e5c
services: home-assistant: use batch mode for ssh invocations
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-24 23:37:09 +02:00
Christoph Heiss
417ff5defa
services: forgejo: enable backups using restic
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-24 23:37:09 +02:00
Christoph Heiss
d94687c812
services: git-ingress: add dmz'd git-over-ssh ingress for forgejo
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-24 23:37:08 +02:00
Christoph Heiss
599a4db693
services: forgejo: add initial deployment
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-18 22:10:52 +02:00
Christoph Heiss
411190f62b
flake: remove ref
s, refresh lockfile
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-18 11:39:40 +02:00
Christoph Heiss
6e88af9c8a
flake: switch home-manager-based maui to lix too
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-18 11:19:36 +02:00
Christoph Heiss
dab449bea4
flake: switch to lix
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-17 15:55:17 +02:00
Christoph Heiss
8669aa1474
common: nix: set flake registry path
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-17 15:32:10 +02:00
Christoph Heiss
deea4524de
common: nix: disable accept-flake-config
option
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-17 13:34:00 +02:00
Christoph Heiss
03350125f3
common: nix: show more log lines by default
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-17 13:33:45 +02:00
Christoph Heiss
275f1a0a70
common: nix: enable auto-allocate-uids
and cgroups
features
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-17 13:33:11 +02:00
Christoph Heiss
8592a76cc2
extra: nvim: replace spellchecking completely with typos-lsp
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-17 11:38:53 +02:00
Christoph Heiss
e345fa84c7
home-manager: common: add tmux patch for fixing crash over ssh with neovim 0.10
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-17 09:51:00 +02:00
Christoph Heiss
4cae106ce3
extra: nvim: only enable spellcheck for rst, typst and text by default
...
Signed-off-by: Christoph Heiss <christoph@c8h4.io>
2024-06-17 08:59:45 +02:00