aboutsummaryrefslogtreecommitdiff
path: root/machines (unfollow)
Commit message (Collapse)AuthorFilesLines
2025-10-23webfinger setup to support tailscaleFranck Cuny1-43/+94
Based on https://tailscale.com/kb/1240/sso-custom-oidc and https://github.com/randomnetcat/nix-configs/blob/f1963827395d6c82a7e64267fde9b0c82da02380/hosts/bear/auth/default.nix#L134
2025-10-23simplify darwin configurationFranck Cuny5-62/+34
Remove a bunch of files and consolidate everything into the host's file.
2025-10-18move keycloak and forgejo on rivendellFranck Cuny6-137/+7
I had to rekey all the secrets. Updated the documentation for both how to setup forgejo and keycloak.
2025-10-18configure wireguard for rivendellFranck Cuny3-0/+41
2025-10-18move the disk configuration for rivendell as a profileFranck Cuny2-68/+1
2025-10-13introduce a module for baremetal machinesFranck Cuny1-5/+1
2025-10-13introduce a module for digital ocean dropletFranck Cuny2-71/+3
2025-10-13consistent home-manager configuration for all nixos hostsFranck Cuny6-44/+0
2025-10-12make the remote unlock bits a nix moduleFranck Cuny2-59/+24
Move all the hardware configuration for rivendell into the default.nix.
2025-10-12initial setup for the framework destkop (named rivendell)Franck Cuny5-0/+194
2025-10-09configure podman for all nixos machinesFranck Cuny2-4/+0
2025-10-09import home-manager.nix and user.nix by default on nixosFranck Cuny2-4/+0
2025-10-09automatically import home-manager.nix for all hostsFranck Cuny4-5/+0
2025-10-09don't import fonts.nixFranck Cuny1-1/+0
This has been merged in the desktop.nix module.
2025-10-09more simplification of the configurationFranck Cuny2-5/+0
2025-10-09move common modules under modules/Franck Cuny4-15/+0
Simplify the import on the various hosts.
2025-10-06nix configuration is applied by default to nixos machinesFranck Cuny2-4/+0
2025-09-12start to refactor nixos modulesFranck Cuny2-2/+0
2025-09-08Revert "move droplet specific settings to its own module"Franck Cuny2-3/+61
This reverts commit 3b47113c28c5180d4d5d710e3c1fe74f95aa7226.
2025-09-08move droplet specific settings to its own moduleFranck Cuny2-61/+3
2025-09-07move deployment bits to colmena declarationFranck Cuny2-14/+0
2025-09-07the resume is in HTMLFranck Cuny1-2/+0
2025-09-06run my personal website on the dropletFranck Cuny1-1/+28
2025-09-01initial attempt at using colmena to deploy nixos configurationsFranck Cuny2-0/+14
Can be used that way: ``` colmena exec --impure -v --on do-rproxy -- 'systemctl status nginx' ``` or ``` colmena --impure apply dry-activate --on synology-vm ```
2025-08-30switch to nginxFranck Cuny4-75/+76
For some reasons, I can't get compression to work with Caddy, and I don't get much benefit from it in the first place anyway.
2025-08-24run `goget` on `go.fcuny.net`Franck Cuny3-0/+22
2025-08-24open firewall ports for forgejo and keycloakFranck Cuny2-0/+4
2025-08-20initial configuration for fail2banFranck Cuny1-0/+1
We need to ensure the firewall is enabled and let's ensure that we open the port for SSH.
2025-08-17add a wrapper for forgejo admin commandsFranck Cuny1-1/+14
2025-08-17enable forgejo dumpFranck Cuny1-0/+3
2025-08-17create a new systemd slice for critical servicesFranck Cuny2-16/+2
2025-08-14add keycloak for OAuth, runbooks, and finish forgejo setupFranck Cuny5-44/+105
2025-08-12initial setup for forgejo and caddyFranck Cuny7-6/+78
2025-08-12more simplificationsFranck Cuny7-109/+111
2025-08-12move secrets to their own files and delete unused profileFranck Cuny5-45/+62
2025-08-12move profile for home-manager under programsFranck Cuny4-4/+4
2025-08-12profiles for darwinFranck Cuny2-2/+6
2025-08-12profiles for doc, fish, and remove unused profilesFranck Cuny2-2/+6
2025-08-12add a profile for fontsFranck Cuny2-8/+2
2025-08-12move git server profile closer to host configFranck Cuny2-1/+41
2025-08-12move hardware config closer to the host configFranck Cuny2-1/+24
2025-08-12add profiles for darwin and remote builderFranck Cuny2-1/+3
2025-08-12add profiles for security, firewalls, and usersFranck Cuny2-0/+6
2025-08-12add a profile for bootFranck Cuny2-0/+2
2025-08-12use podman for containers on nixosFranck Cuny2-0/+2
2025-08-12add profile for motdFranck Cuny2-0/+2
2025-08-12create profiles for networkd and nix's GCFranck Cuny2-2/+4
2025-08-12move disks configuration to the host' directoryFranck Cuny4-2/+112
2025-08-12profile for toolsFranck Cuny2-0/+2
2025-08-12profile for sshdFranck Cuny2-0/+2
2025-08-12import localeFranck Cuny2-0/+2
2025-08-12move each machine configuration to a folderFranck Cuny4-0/+0
This will give me a bit more flexibility to configure things per machine in the future.
2025-08-12users -> homeFranck Cuny4-6/+6
2025-08-10setup wireguard tunnel between the VM and DO hostsFranck Cuny2-0/+31
2025-08-10manage a DigitalOcean virtual machine with nixosFranck Cuny2-14/+115
Add a new machine on DigitalOcean and provision it using terraform + nixos-anywhere. This takes care of bringing the machine up on nixos completely, and use a static SSH host key in order to configure wireguard at the same time.
2025-08-09add the SSH key for the remote builderFranck Cuny2-0/+12
All the secrets were rekeyed.
2025-08-03absolute path for loading minimal profileFranck Cuny1-1/+1
2025-08-03attempt at configuring the remote builder on the VMFranck Cuny2-0/+11
2025-07-25add a module for backupsFranck Cuny1-0/+9
Enable the module on the VM, and backup the git repositories both to the NAS and to a GCS bucket.
2025-07-25add a module for mounting CIFS volumesFranck Cuny1-0/+15
The new module is for NAS clients, where we specify the server and the paths to mount locally. We add a new secret to have the username of the `nas' user. We mount the backups volume from the NAS under `/data/backups` on the VM.
2025-07-25enable cloudflared on the vmFranck Cuny1-0/+15
2025-07-24fix configuration for work machineFranck Cuny1-3/+0
The hostname is capitalized so let's also capitalize the filename! The overlays are not under `customPackages` anymore.
2025-07-21keep organizing into modules and profilesFranck Cuny3-29/+4
2025-07-21move all profiles, modules, and flakes to top-levelFranck Cuny3-10/+10
2025-07-21move user configurations to top-levelFranck Cuny2-4/+4
2025-07-21install minimal home-manager profile on the VMFranck Cuny1-1/+15
2025-07-21move machines definitions to top-levelFranck Cuny3-0/+179
generated by cgit v1.2.3 (git 2.25.1) at 2025-12-08 13:53:20 +0000