aboutsummaryrefslogtreecommitdiff
path: root/machines (unfollow)
Commit message (Collapse)AuthorFilesLines
2025-10-09move common modules under modules/Franck Cuny4-15/+0
Simplify the import on the various hosts.
2025-10-06nix configuration is applied by default to nixos machinesFranck Cuny2-4/+0
2025-09-12start to refactor nixos modulesFranck Cuny2-2/+0
2025-09-08Revert "move droplet specific settings to its own module"Franck Cuny2-3/+61
This reverts commit 3b47113c28c5180d4d5d710e3c1fe74f95aa7226.
2025-09-08move droplet specific settings to its own moduleFranck Cuny2-61/+3
2025-09-07move deployment bits to colmena declarationFranck Cuny2-14/+0
2025-09-07the resume is in HTMLFranck Cuny1-2/+0
2025-09-06run my personal website on the dropletFranck Cuny1-1/+28
2025-09-01initial attempt at using colmena to deploy nixos configurationsFranck Cuny2-0/+14
Can be used that way: ``` colmena exec --impure -v --on do-rproxy -- 'systemctl status nginx' ``` or ``` colmena --impure apply dry-activate --on synology-vm ```
2025-08-30switch to nginxFranck Cuny4-75/+76
For some reasons, I can't get compression to work with Caddy, and I don't get much benefit from it in the first place anyway.
2025-08-24run `goget` on `go.fcuny.net`Franck Cuny3-0/+22
2025-08-24open firewall ports for forgejo and keycloakFranck Cuny2-0/+4
2025-08-20initial configuration for fail2banFranck Cuny1-0/+1
We need to ensure the firewall is enabled and let's ensure that we open the port for SSH.
2025-08-17add a wrapper for forgejo admin commandsFranck Cuny1-1/+14
2025-08-17enable forgejo dumpFranck Cuny1-0/+3
2025-08-17create a new systemd slice for critical servicesFranck Cuny2-16/+2
2025-08-14add keycloak for OAuth, runbooks, and finish forgejo setupFranck Cuny5-44/+105
2025-08-12initial setup for forgejo and caddyFranck Cuny7-6/+78
2025-08-12more simplificationsFranck Cuny7-109/+111
2025-08-12move secrets to their own files and delete unused profileFranck Cuny5-45/+62
2025-08-12move profile for home-manager under programsFranck Cuny4-4/+4
2025-08-12profiles for darwinFranck Cuny2-2/+6
2025-08-12profiles for doc, fish, and remove unused profilesFranck Cuny2-2/+6
2025-08-12add a profile for fontsFranck Cuny2-8/+2
2025-08-12move git server profile closer to host configFranck Cuny2-1/+41
2025-08-12move hardware config closer to the host configFranck Cuny2-1/+24
2025-08-12add profiles for darwin and remote builderFranck Cuny2-1/+3
2025-08-12add profiles for security, firewalls, and usersFranck Cuny2-0/+6
2025-08-12add a profile for bootFranck Cuny2-0/+2
2025-08-12use podman for containers on nixosFranck Cuny2-0/+2
2025-08-12add profile for motdFranck Cuny2-0/+2
2025-08-12create profiles for networkd and nix's GCFranck Cuny2-2/+4
2025-08-12move disks configuration to the host' directoryFranck Cuny4-2/+112
2025-08-12profile for toolsFranck Cuny2-0/+2
2025-08-12profile for sshdFranck Cuny2-0/+2
2025-08-12import localeFranck Cuny2-0/+2
2025-08-12move each machine configuration to a folderFranck Cuny4-0/+0
This will give me a bit more flexibility to configure things per machine in the future.
2025-08-12users -> homeFranck Cuny4-6/+6
2025-08-10setup wireguard tunnel between the VM and DO hostsFranck Cuny2-0/+31
2025-08-10manage a DigitalOcean virtual machine with nixosFranck Cuny2-14/+115
Add a new machine on DigitalOcean and provision it using terraform + nixos-anywhere. This takes care of bringing the machine up on nixos completely, and use a static SSH host key in order to configure wireguard at the same time.
2025-08-09add the SSH key for the remote builderFranck Cuny2-0/+12
All the secrets were rekeyed.
2025-08-03absolute path for loading minimal profileFranck Cuny1-1/+1
2025-08-03attempt at configuring the remote builder on the VMFranck Cuny2-0/+11
2025-07-25add a module for backupsFranck Cuny1-0/+9
Enable the module on the VM, and backup the git repositories both to the NAS and to a GCS bucket.
2025-07-25add a module for mounting CIFS volumesFranck Cuny1-0/+15
The new module is for NAS clients, where we specify the server and the paths to mount locally. We add a new secret to have the username of the `nas' user. We mount the backups volume from the NAS under `/data/backups` on the VM.
2025-07-25enable cloudflared on the vmFranck Cuny1-0/+15
2025-07-24fix configuration for work machineFranck Cuny1-3/+0
The hostname is capitalized so let's also capitalize the filename! The overlays are not under `customPackages` anymore.
2025-07-21keep organizing into modules and profilesFranck Cuny3-29/+4
2025-07-21move all profiles, modules, and flakes to top-levelFranck Cuny3-10/+10
2025-07-21move user configurations to top-levelFranck Cuny2-4/+4
2025-07-21install minimal home-manager profile on the VMFranck Cuny1-1/+15
2025-07-21move machines definitions to top-levelFranck Cuny3-0/+179
generated by cgit v1.2.3 (git 2.25.1) at 2025-12-08 11:00:17 +0000