aboutsummaryrefslogtreecommitdiff
path: root/machines/nixos/x86_64-linux/do-rproxy/default.nix (unfollow)
Commit message (Collapse)AuthorFilesLines
2025-10-18move keycloak and forgejo on rivendellFranck Cuny1-2/+2
I had to rekey all the secrets. Updated the documentation for both how to setup forgejo and keycloak.
2025-10-18configure wireguard for rivendellFranck Cuny1-0/+7
2025-10-13introduce a module for digital ocean dropletFranck Cuny1-16/+3
2025-10-13consistent home-manager configuration for all nixos hostsFranck Cuny1-9/+0
2025-10-09configure podman for all nixos machinesFranck Cuny1-2/+0
2025-10-09import home-manager.nix and user.nix by default on nixosFranck Cuny1-2/+0
2025-10-09automatically import home-manager.nix for all hostsFranck Cuny1-1/+0
2025-10-09more simplification of the configurationFranck Cuny1-3/+0
2025-10-09move common modules under modules/Franck Cuny1-1/+0
Simplify the import on the various hosts.
2025-10-06nix configuration is applied by default to nixos machinesFranck Cuny1-2/+0
2025-09-12start to refactor nixos modulesFranck Cuny1-1/+0
2025-09-08Revert "move droplet specific settings to its own module"Franck Cuny1-3/+6
This reverts commit 3b47113c28c5180d4d5d710e3c1fe74f95aa7226.
2025-09-08move droplet specific settings to its own moduleFranck Cuny1-6/+3
2025-09-07move deployment bits to colmena declarationFranck Cuny1-7/+0
2025-09-01initial attempt at using colmena to deploy nixos configurationsFranck Cuny1-0/+7
Can be used that way: ``` colmena exec --impure -v --on do-rproxy -- 'systemctl status nginx' ``` or ``` colmena --impure apply dry-activate --on synology-vm ```
2025-08-30switch to nginxFranck Cuny1-1/+1
For some reasons, I can't get compression to work with Caddy, and I don't get much benefit from it in the first place anyway.
2025-08-20initial configuration for fail2banFranck Cuny1-0/+1
We need to ensure the firewall is enabled and let's ensure that we open the port for SSH.
2025-08-17create a new systemd slice for critical servicesFranck Cuny1-8/+1
2025-08-12initial setup for forgejo and caddyFranck Cuny1-0/+1
2025-08-12more simplificationsFranck Cuny1-53/+1
2025-08-12move secrets to their own files and delete unused profileFranck Cuny1-14/+10
2025-08-12move profile for home-manager under programsFranck Cuny1-1/+1
2025-08-12profiles for doc, fish, and remove unused profilesFranck Cuny1-1/+3
2025-08-12add profiles for security, firewalls, and usersFranck Cuny1-0/+3
2025-08-12add a profile for bootFranck Cuny1-0/+1
2025-08-12use podman for containers on nixosFranck Cuny1-0/+1
2025-08-12add profile for motdFranck Cuny1-0/+1
2025-08-12create profiles for networkd and nix's GCFranck Cuny1-1/+2
2025-08-12move disks configuration to the host' directoryFranck Cuny1-2/+1
2025-08-12profile for toolsFranck Cuny1-0/+1
2025-08-12profile for sshdFranck Cuny1-0/+1
2025-08-12import localeFranck Cuny1-0/+1
2025-08-12move each machine configuration to a folderFranck Cuny1-0/+0
This will give me a bit more flexibility to configure things per machine in the future.
2025-08-12users -> homeFranck Cuny1-1/+1
2025-08-10setup wireguard tunnel between the VM and DO hostsFranck Cuny1-0/+9
2025-08-10manage a DigitalOcean virtual machine with nixosFranck Cuny1-0/+110
Add a new machine on DigitalOcean and provision it using terraform + nixos-anywhere. This takes care of bringing the machine up on nixos completely, and use a static SSH host key in order to configure wireguard at the same time.
generated by cgit v1.2.3 (git 2.25.1) at 2025-12-08 12:48:52 +0000