simono41/chaos-jetzt-nixfiles
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
83 commits 1 branch 0 tags 184 KiB
Commit graph

83 commits

This branch
This branch
All branches
Author SHA1 Message Date
Moritz 'e1mo' Fromm
3d2493f3a0 freescout: 1.8.48 -> 1.8.71 2023-04-13 18:38:10 +02:00
Moritz 'e1mo' Fromm
37a3ca4a70 services/freescout: Initial setup 2023-04-13 18:38:10 +02:00
Moritz 'e1mo' Fromm
07779e14b3
Disable cachix (for now) 2023-04-12 14:18:19 +02:00
Moritz 'e1mo' Fromm
ab4baf558d
update nix-install-action 
Fixes incompatibilities with newer nix versions:
https://github.com/cachix/install-nix-action/releases/tag/v20
 2023-04-12 14:11:56 +02:00
Moritz 'e1mo' Fromm
37b0ccabf0
flake update 2023-04-12 12:22:52 +02:00
Moritz 'e1mo' Fromm
b8f08de175 services/dokuwiki: Add missing timezone option 2023-02-20 17:21:20 +01:00
Moritz
948664e5dc
Merge pull request #13 from chaos-jetzt/gh-actions-quality-of-life 
CODEOWNERS and GitHub actions
 2023-02-20 17:15:27 +01:00
Moritz 'e1mo' Fromm
460c8f13b6
Add initial nix building github actions 
To reduce the amount of redudand rebuilds cachix is used to store
outputs. The cachix cache should be accessible in the cachix UI to
everyone in the @chaos-jetzt/infra team
 2023-02-15 15:20:27 +01:00
Moritz 'e1mo' Fromm
2fdda18666
Add CODEOWNERS 
Very simply file, with this file we don't need to manually request
reviews since this will be done automatically.
 2023-02-15 12:55:50 +01:00
Moritz Kempe
1ec7fb3994 fixed incorrect spelling in deployment command 
When building with the old version, no build target exists for the specified command.
 2023-02-15 12:20:38 +01:00
Moritz 'e1mo' Fromm
f337dd087b
Add mome as admin 
As decided/approved in our plenum today
 2023-02-12 19:04:00 +01:00
adb-sh
6c1e6d5811 Update email and ssh key from adb 2023-02-11 22:10:44 +01:00
Moritz 'e1mo' Fromm
dd3325ab95
Remove redundand dokuwii override+openssh settings 2023-02-10 15:30:09 +01:00
Moritz 'e1mo' Fromm
840eff4f97
flake update 2023-02-10 15:28:34 +01:00
Moritz 'e1mo' Fromm
b7c8b28cf9
Update dokuwiki service config 2023-01-10 10:57:34 +01:00
Moritz 'e1mo' Fromm
76424262ec
Remove pretix from TODO 
Using CTFL Pretix for now
 2023-01-10 09:59:56 +01:00
Moritz 'e1mo' Fromm
8bc71b28bb
Nix flake update 2023-01-10 09:59:50 +01:00
Moritz 'e1mo' Fromm
81d3231d5c
services/website: Allow rsync upload of website 2023-01-08 16:12:15 +01:00
Moritz 'e1mo' Fromm
935f51e7d9
services/monitoring: Fix missing firewall rule 
I didn't notice this was missing in #5 until after deploying it. Since
the ports on the monitoring-network-interface (ens10) were not open,
scraping would fail and thus generate alerts.
 2023-01-06 16:07:46 +01:00
Moritz 'e1mo' Fromm
d199834a61
Add adb and admin htpasswd user 
Also updated instructions for editing the .htpasswd
 2023-01-06 15:51:22 +01:00
Moritz 'e1mo' Fromm
3acc1865c0
services/monitoring: Setup 
The goal is to create a monitoring setup where each server monitors
itself when it comes failing systemd services, disk or RAM filling up,
…. In addition each prometheus will monitor remote prometheus and
alertmanager instances for signs of failure (e.g. being unreachable,
errors in notification delivery, dropping alerts).

A lot of metrics (especially histograms from prometheus or alertmanager)
are being dropped before ingestion to disk save on space and memory.

Depending on how many servers we may or may not have in the future this
could probably use some kind of overhaul since we rightnow have n^2
monitoring peer relationships (not even speaking of possible duplicated
alerts).
 2023-01-06 15:51:22 +01:00
Moritz 'e1mo' Fromm
6e9c9a26cd
Pass flake inputs and outputs in more generic way 2023-01-06 15:51:20 +01:00
Moritz 'e1mo' Fromm
eef22f51c7
Update website-pelican to current version 2023-01-05 20:17:55 +01:00
Moritz 'e1mo' Fromm
e5d5e33cb3
Fix missing keycloak_key on shirley 2022-12-30 22:27:41 +01:00
Moritz 'e1mo' Fromm
383ecccbcc
dokuwiki: Fix acronym + remove TODO from README 
Co-Authored-By: adb-sh <git@adb.sh>
 2022-12-30 16:18:29 +01:00
Moritz 'e1mo' Fromm
451930531e
dokuwiki: Initial service setup 2022-12-30 14:57:33 +01:00
Moritz 'e1mo' Fromm
f49ae3721d Vaultwarden setup 
I decoded on the somewhat unordered looking isDev thing in order to
clearly indicate the seperation between the dev and production setup in
E-Mails for security reasons.
 2022-12-24 17:44:21 +01:00
Moritz 'e1mo' Fromm
3f8cc1e2a9
Add adb as admin as per Plenumsbeschluss (23.12.) 2022-12-23 20:19:02 +01:00
Moritz 'e1mo' Fromm
57f77543b4
Initial goldberg (dev server) version 2022-12-11 16:53:35 +01:00
Moritz 'e1mo' Fromm
690ea06e1c
Deploy to production + matrix well-known 2022-12-11 13:31:38 +01:00
Moritz 'e1mo' Fromm
d782f28bec
Extract extract services to services directory 
That way we can deploy them both on dev and prod hosts and just need to
change the `baseDomain` to differentiate.
 2022-12-11 12:29:02 +01:00
Moritz 'e1mo' Fromm
5d8cf1b67c
Remove leonas access as requested 2022-12-11 11:48:50 +01:00
Moritz 'e1mo' Fromm
fe542b2208
Initial commit 2022-11-27 23:11:34 +01:00