CCCHH/nix-infra
CCCHH/nix-infra
2
3
Fork 2
Code Issues1 Pull requests1 Wiki Activity
224 commits 10 branches 0 tags 684 KiB
Commit graph

161 commits

Author SHA1 Message Date
June
f2a1747507
status: set new v6 address 2025-04-28 21:46:00 +02:00
June
2395748e7a
esphome: set new v6 address 2025-04-28 20:50:42 +02:00
c6ristian
aee3f4b385
c3cat fix 2025-04-19 15:01:59 +02:00
c6ristian
15f69c20a4
bump element version 2025-03-14 20:48:05 +01:00
c6ristian
3fc170389d
Update to new IPv6 prefix 2025-03-02 22:00:19 +01:00
Matthias Kühlke
535cc518da
MQTT: Make cats accessible from winkekatze24.de 2025-02-28 23:25:59 +01:00
June
7c13dd1e35
git: disable internal login, to force login via SSO 2025-02-19 21:56:23 +01:00
June
fd2414ec91
nix-box-june: remove nix-box-june as its being decommissioned 
nix-infra is built back in general, so remove nix-box-june as well.
 2025-02-18 00:04:58 +01:00
June
fe5e6cebdc
netbox: remove because of migration to ansible-infra 2025-02-18 00:02:31 +01:00
June
a665aa15f4
eh22-wiki: remove because of migration to ansible-infra 2025-02-10 23:43:27 +01:00
echtnurich
5cf9cffa77
add more checks before config reinit 2025-02-04 19:06:21 +01:00
echtnurich
bb0af02e5c
use nix option for ExecReload 2025-02-04 19:05:44 +01:00
June
73fa9d1e06
git: enable Git LFS 2025-01-24 11:44:48 +01:00
echtnurich
d57c47437f Add reload script for refreshing config during runtime 2025-01-23 23:17:35 +01:00
June
8045681bb5 yate: clean up and nicely format nix configuration 2025-01-23 23:17:35 +01:00
echtnurich
2904ebee15 add yate service for autostart 
introduce /etc/yate, clone/reset on service start

Fix config via git

make yate systemd service

create yate service user

recreate the full config everytime

decolour the log because of blob data

make sure source is available before deleting config

change yate-config repo

fix yate deploy key

fix yate-config not pulling
 2025-01-23 23:17:35 +01:00
June
d55438f104
public-web-static: remove irc from spaceapi response as it's deprecated 2025-01-19 20:28:51 +01:00
June
f5bc9024b1
audio-hauptraum-*: move audio VMs to client network 
Do this per request to hopefully improve mDNS discovery.
 2025-01-14 21:06:26 +01:00
June
5676b1a468
netbox: configure and patch NetBox for OIDC group and role mapping 
The custom pipeline code is licensed under the Creative Commons: CC
BY-SA 4.0 license.

See:
https://github.com/goauthentik/authentik/blob/main/LICENSE
https://github.com/goauthentik/authentik/blob/main/website/integrations/services/netbox/index.md
https://docs.goauthentik.io/integrations/services/netbox/
 2025-01-14 20:49:14 +01:00
June
a039b3febf
update nixpkgs to 24.11 (small) 
Also use non-lts forgejo and adjust config for 24.11.
 2024-12-08 22:21:15 +01:00
c6ristian
c78c278627
Set WOODPECKER_LIMIT_MEM to 6 GB for woodpecker 
so pipelines don't get killed by OOM.
 2024-11-17 22:43:51 +01:00
jopejoe1
2003367108
move authorized keys to flake input 2024-11-17 20:33:38 +01:00
jopejoe1
e404d4740f
remove nixpkgs-unstable 
the current version of woodpecker-server in stable now has the features this was original used for, not other usages of unstable are in tree left so removing it.
 2024-11-17 19:33:00 +01:00
jopejoe1
f7ebe660fe
format files with nix fmt 2024-11-17 19:33:00 +01:00
c6ristian
c25d6c6326
revert: useing pkgs.fetchGit for authorized keys 
reverts the changes from ec64eebfd6
it brakes some of the flake process we use,
setting 'allow-import-from-derivation' doesn't seem like a good fix to me and doesn't work in all cases.
I couldn't find any other solution to fix it for now,
so we will revert it for now, until we have a better solution.
 2024-11-17 19:24:25 +01:00
June
cf46da9df7
public-web-static: make c3cat.de and www work as well as staging 2024-11-12 23:06:01 +01:00
fi
c84d9e7d0a
Update element to 1.11.84 2024-11-11 02:43:08 +01:00
c6ristian
afb4fc71ce
Update infrastructure-authorized-keys rev 2024-11-10 23:10:50 +01:00
June
2ba371f8cd
git: disable making org users auto watch new repos on creation 
Also explicitly disable making users auto watch repos after their first
commit to it.
 2024-11-10 19:38:05 +01:00
June
c8e7bd1ccf
git: enable sending of e-mails to watchers of repositories 2024-11-10 19:26:26 +01:00
June
4f789adb21
hydra: configure hydra host 2024-10-30 01:44:12 +01:00
June
ec64eebfd6
common: use pkgs.fetchgit and git commit hash for authorized keys repo 
Do this to be in line with other places, where resources get fetched
using git and to hopefully avoid errors such as:
Cannot find Git revision 'da9d3ead9d97ce0fef7538638326264957e2f1b4' in ref 'trunk' of repository 'ssh://forgejo@git.hamburg.ccc.de/CCCHH/infrastructure-authorized-keys.git'! Please make sure that the rev exists on the ref you've specified or add allRefs = true; to fetchGit.
This issue was discovered while trying to make the new hydra work.
 2024-10-29 23:17:31 +01:00
dequis
9d1521c485
spaceapid: adjustments to 3d printer state sensors 
- Prefix sensor names with ext_ as the spec says we should use that for
  extensions (this also improves attribute access for tools that don't
  like fields starting with a number)
- Rename printer state to printer busy state, to make it clearer.
- Add ext_3d_printer_minutes_remaining sensors
 2024-10-24 16:25:40 +02:00
June
accd31173b
public-web-static: turn off ports to prevent broken redirects to 8443 2024-10-21 21:35:10 +02:00
June
8165d22159
public-web-static: prevent staging ht ccchh from search machine indexing 2024-10-21 21:30:36 +02:00
June
ecdaa2d5f6
public-web-static: redirect EH20 doku.php?id=$pagename to new format 
See:
2024-10-13 22:09:20 +02:00
Stefan Bethke
de2390c78d
public-web-static: redirect old hackertours 37C3 urls to proper url 2024-10-13 20:59:04 +02:00
June
2fe65b0513
public-web-static: add staging for hackertours.hamburg.ccc.de 2024-10-12 22:14:42 +02:00
June
804094aaeb
public-web-static: add hackertours.hamburg.ccc.de static web host 
It can be deployed using a corresponding deploy key in the same manner
hacker.tours and hamburg.ccc.de can be deployed.
 2024-10-12 20:03:04 +02:00
c6ristian
da8e2bbbf4
Update element to 1.11.80 2024-10-10 20:50:20 +02:00
June
05b96b8fae
netbox: integrate with CCCHH ID (Keycloak) 2024-10-09 02:18:46 +02:00
June
c54b655b0e
all: setup prometheus node exporter for all hosts on Chaosknoten 
Do that so we can have monitoring for them via prometheus, alertmanager
and grafana.
Also add a local ip for the git host for PVE firewalling.
 2024-10-03 16:09:42 +02:00
June
68f11ad955
mjolnir: allow use of deprecated, somewhat insecure libolm 
Do this to be able to update the moderation bot and because the security
issues apparently aren't real world exploitable:
https://matrix.org/blog/2024/08/libolm-deprecation/
 2024-09-30 23:20:06 +02:00
June
445bf05842
public-web-static: host Easterhegg 20 website static export 2024-09-28 05:00:31 +02:00
June
b26320f999
penpot: switch to stock penpot image and version 2.1.3 
Do that since it now has all the fixes applied we need.
 2024-08-27 00:00:55 +02:00
dequis
9b751fa1ed
spaceapid: add 3d printer state sensors (bool) 
The schema only allows numeric values so I'm leaving the time to finish
field out of this for now.
 2024-08-17 00:15:27 +02:00
June
178777007f
penpot: configure penpot host using oci-containers 2024-08-10 22:38:05 +02:00
June
faffcb7d54
spaceapi: remove inside sensors for privacy reasons 2024-08-04 21:05:43 +02:00
June
1ffc959ce3
Update spaceapid to v0.1.0 2024-08-04 21:03:29 +02:00
June
028b5dc9e8
Configure Uptime-Kuma host 2024-08-04 02:19:26 +02:00