CCCHH/nix-infra
CCCHH/nix-infra
2
3
Fork 2
Code Issues 1 Pull requests 1 Wiki Activity
250 commits 7 branches 0 tags 807 KiB
Commit graph

172 commits

Author SHA1 Message Date
June
c7e9c56abc
 		forgejo-actions-runner: increase runner capacity to 4 2025-10-24 22:02:09 +02:00
June
550b0f13ca
 		forgejo-actions-run.: use runner pkg from unstable to make it work again 2025-10-24 19:09:16 +02:00
June
5a33261482
 		expose Matrix admin APIs restricted to trusted networks 
This is needed to have element-admin work.
 2025-10-12 20:45:54 +02:00
June
27777156aa
 		public-web-static: host an element-admin instance 2025-10-12 20:19:27 +02:00
June
defd0893d7
 		matrix: introduce matrix authentication service 2025-10-12 05:28:00 +02:00
June
bab1a46be9
 		update element-web to version 1.12.0 2025-10-05 18:11:31 +02:00
June
aeb47b5d14
 		set default room version to 12 to avoid having to upgrade rooms on crea. 2025-10-05 18:09:37 +02:00
June
ca65a4940c
 		redirect /calendar to the Nextcloud calendar to make this location work 
Apparently this location gets used in several locations, so create a
redirect.
 2025-09-16 19:45:02 +02:00
June
c7ae6a7ee3
 		bump element web to 1.11.109 2025-08-11 20:09:05 +02:00
June
44c1b79597
 		Add cryptoparty-hamburg.de static web host and a staging environment 
Also redirect cryptoparty.hamburg.ccc.de there.
 2025-07-23 20:53:55 +02:00
c6ristian
0383e604a4
 		element update 2025-07-19 20:59:07 +02:00
June
f2a1747507
 		status: set new v6 address 2025-04-28 21:46:00 +02:00
June
2395748e7a
 		esphome: set new v6 address 2025-04-28 20:50:42 +02:00
c6ristian
aee3f4b385
 		c3cat fix 2025-04-19 15:01:59 +02:00
c6ristian
15f69c20a4
 		bump element version 2025-03-14 20:48:05 +01:00
c6ristian
3fc170389d
 		Update to new IPv6 prefix 2025-03-02 22:00:19 +01:00
Matthias Kühlke
535cc518da
 		MQTT: Make cats accessible from winkekatze24.de 2025-02-28 23:25:59 +01:00
June
7c13dd1e35
 		git: disable internal login, to force login via SSO 2025-02-19 21:56:23 +01:00
June
fd2414ec91
 		nix-box-june: remove nix-box-june as its being decommissioned 
nix-infra is built back in general, so remove nix-box-june as well.
 2025-02-18 00:04:58 +01:00
June
fe5e6cebdc
 		netbox: remove because of migration to ansible-infra 2025-02-18 00:02:31 +01:00
June
a665aa15f4
 		eh22-wiki: remove because of migration to ansible-infra 2025-02-10 23:43:27 +01:00
echtnurich
5cf9cffa77
 		add more checks before config reinit 2025-02-04 19:06:21 +01:00
echtnurich
bb0af02e5c
 		use nix option for ExecReload 2025-02-04 19:05:44 +01:00
June
73fa9d1e06
 		git: enable Git LFS 2025-01-24 11:44:48 +01:00
echtnurich
d57c47437f Add reload script for refreshing config during runtime 2025-01-23 23:17:35 +01:00
June
8045681bb5 yate: clean up and nicely format nix configuration 2025-01-23 23:17:35 +01:00
echtnurich
2904ebee15 add yate service for autostart 
introduce /etc/yate, clone/reset on service start

Fix config via git

make yate systemd service

create yate service user

recreate the full config everytime

decolour the log because of blob data

make sure source is available before deleting config

change yate-config repo

fix yate deploy key

fix yate-config not pulling
 2025-01-23 23:17:35 +01:00
June
d55438f104
 		public-web-static: remove irc from spaceapi response as it's deprecated 2025-01-19 20:28:51 +01:00
June
f5bc9024b1
 		audio-hauptraum-*: move audio VMs to client network 
Do this per request to hopefully improve mDNS discovery.
 2025-01-14 21:06:26 +01:00
June
5676b1a468
 		netbox: configure and patch NetBox for OIDC group and role mapping 
The custom pipeline code is licensed under the Creative Commons: CC
BY-SA 4.0 license.

See:
https://github.com/goauthentik/authentik/blob/main/LICENSE
https://github.com/goauthentik/authentik/blob/main/website/integrations/services/netbox/index.md
https://docs.goauthentik.io/integrations/services/netbox/
 2025-01-14 20:49:14 +01:00
June
a039b3febf
 		update nixpkgs to 24.11 (small) 
Also use non-lts forgejo and adjust config for 24.11.
 2024-12-08 22:21:15 +01:00
c6ristian
c78c278627
 		Set WOODPECKER_LIMIT_MEM to 6 GB for woodpecker 
so pipelines don't get killed by OOM.
 2024-11-17 22:43:51 +01:00
jopejoe1
2003367108
 		move authorized keys to flake input 2024-11-17 20:33:38 +01:00
jopejoe1
e404d4740f
 		remove nixpkgs-unstable 
the current version of woodpecker-server in stable now has the features this was original used for, not other usages of unstable are in tree left so removing it.
 2024-11-17 19:33:00 +01:00
jopejoe1
f7ebe660fe
 		format files with nix fmt 2024-11-17 19:33:00 +01:00
c6ristian
c25d6c6326
 		revert: useing pkgs.fetchGit for authorized keys 
reverts the changes from ec64eebfd6
it brakes some of the flake process we use,
setting 'allow-import-from-derivation' doesn't seem like a good fix to me and doesn't work in all cases.
I couldn't find any other solution to fix it for now,
so we will revert it for now, until we have a better solution.
 2024-11-17 19:24:25 +01:00
June
cf46da9df7
 		public-web-static: make c3cat.de and www work as well as staging 2024-11-12 23:06:01 +01:00
fi
c84d9e7d0a
 		Update element to 1.11.84 2024-11-11 02:43:08 +01:00
c6ristian
afb4fc71ce
 		Update infrastructure-authorized-keys rev 2024-11-10 23:10:50 +01:00
June
2ba371f8cd
 		git: disable making org users auto watch new repos on creation 
Also explicitly disable making users auto watch repos after their first
commit to it.
 2024-11-10 19:38:05 +01:00
June
c8e7bd1ccf
 		git: enable sending of e-mails to watchers of repositories 2024-11-10 19:26:26 +01:00
June
4f789adb21
 		hydra: configure hydra host 2024-10-30 01:44:12 +01:00
June
ec64eebfd6
 		common: use pkgs.fetchgit and git commit hash for authorized keys repo 
Do this to be in line with other places, where resources get fetched
using git and to hopefully avoid errors such as:
Cannot find Git revision 'da9d3ead9d97ce0fef7538638326264957e2f1b4' in ref 'trunk' of repository 'ssh://forgejo@git.hamburg.ccc.de/CCCHH/infrastructure-authorized-keys.git'! Please make sure that the rev exists on the ref you've specified or add allRefs = true; to fetchGit.
This issue was discovered while trying to make the new hydra work.
 2024-10-29 23:17:31 +01:00
dequis
9d1521c485
 		spaceapid: adjustments to 3d printer state sensors 
- Prefix sensor names with ext_ as the spec says we should use that for
  extensions (this also improves attribute access for tools that don't
  like fields starting with a number)
- Rename printer state to printer busy state, to make it clearer.
- Add ext_3d_printer_minutes_remaining sensors
 2024-10-24 16:25:40 +02:00
June
accd31173b
 		public-web-static: turn off ports to prevent broken redirects to 8443 2024-10-21 21:35:10 +02:00
June
8165d22159
 		public-web-static: prevent staging ht ccchh from search machine indexing 2024-10-21 21:30:36 +02:00
June
ecdaa2d5f6
 		public-web-static: redirect EH20 doku.php?id=$pagename to new format 
See:
CCCHH/easterhegg-eh20-website#2 (comment)
 2024-10-13 22:09:20 +02:00
Stefan Bethke
de2390c78d
 		public-web-static: redirect old hackertours 37C3 urls to proper url 2024-10-13 20:59:04 +02:00
June
2fe65b0513
 		public-web-static: add staging for hackertours.hamburg.ccc.de 2024-10-12 22:14:42 +02:00
June
804094aaeb
 		public-web-static: add hackertours.hamburg.ccc.de static web host 
It can be deployed using a corresponding deploy key in the same manner
hacker.tours and hamburg.ccc.de can be deployed.
 2024-10-12 20:03:04 +02:00