| Commit message (Collapse) | Author | Files | Lines | ||
|---|---|---|---|---|---|
| 2025-07-06 | add secrets and configurations for cloudflared | Franck Cuny | 3 | -0/+9 | |
| 2025-06-30 | backup the VM to Google Cloud Storage | Franck Cuny | 3 | -0/+18 | |
| For now we only backup git repositories. | |||||
| 2025-06-12 | remove one of my keys from the secrets | Franck Cuny | 1 | -6/+3 | |
| 2025-06-12 | use a dedicated SSH key for agenix | Franck Cuny | 3 | -12/+23 | |
| The key is still stored in 1password, and we add a script to synchronize the key to the host. The existing keys have been rekeyed with the new key. | |||||
| 2025-06-08 | use agenix to manage some secrets | Franck Cuny | 3 | -0/+20 | |
| I have some secrets that I want to manage for my user without having to rely on 1password, and ensure proper rotation everywhere when needed. For now we only have two secrets (one for `llm` and another one is the API key for anthropic for Emacs). Will document the process better in the near future. | |||||
| 2024-12-28 | remove secrets and agenix since nothing uses them | Franck Cuny | 3 | -19/+0 | |
| 2024-12-19 | switch to the newer version of nixfmt | Franck Cuny | 1 | -6/+8 | |
| `nixfmt-rfc-style' replaces `nixfmt-classic'. It's actively maintained, but also changes the style, so this commit touches all the files in the repository. | |||||
| 2024-12-19 | use treefmt to format all the files | Franck Cuny | 1 | -6/+1 | |
| 2024-12-16 | move gitotlite to vm-synology | Franck Cuny | 2 | -6/+6 | |
| 2024-12-15 | run `ddns-updater' on `vm-synology' | Franck Cuny | 2 | -1/+4 | |
| It has a small UI and the configuration with the secrets is managed with `agenix'. | |||||
| 2024-12-14 | use agenix to manage secrets in the repository | Franck Cuny | 2 | -0/+19 | |
| 2022-04-10 | secrets: move all the secrets under module/ | Franck Cuny | 7 | -25/+0 | |
| Refactor a bit the configuration, which should simplify the management and usage of secrets from now on. | |||||
| 2022-03-11 | rclone: synchronize restic repo to GCS | Franck Cuny | 2 | -0/+0 | |
| Add a couple of secrets to store the configuration and the service account, and add a timer to synchronize the restic repository to a GCS bucket once a day. | |||||
| 2022-03-07 | restic: add the secret for the repo 'systems' | Franck Cuny | 1 | -0/+12 | |
| 2022-03-06 | unifi: configure the poller | Franck Cuny | 1 | -0/+13 | |
| 2022-03-06 | traefik: initial configuration | Franck Cuny | 1 | -0/+0 | |
| I want to run traefik on the NAS, so I can reach grafana and other future services running on that host. To manage TLS, we use let's encrypt with a DNS challenge. For this to work we need a service account configuration, that is encrypted with age. | |||||
| 2022-03-05 | agenix: rekey secrets | Franck Cuny | 2 | -0/+0 | |
| Reinstalled tahoe, new ssh key for the host. | |||||
| 2022-03-01 | secrets: add a new key and rekey existing keys | Franck Cuny | 2 | -18/+19 | |
| 2022-02-21 | tahoe: wireguard setup | Franck Cuny | 1 | -0/+10 | |
| 2022-02-21 | secrets: initial config and a first secret | Franck Cuny | 1 | -0/+10 | |
 |
index : infra | |
| nix configuration for my machines | Gitolite user |
| aboutsummaryrefslogtreecommitdiff |