Commit graph

83 commits

Author SHA1 Message Date
Moritz 'e1mo' Fromm
f09d21053f
Merge branch 'e1mo/synapse'
Deployment of matrix synapse after migrating.
2023-09-01 00:34:23 +02:00
Moritz 'e1mo' Fromm
dcc1f00006
matrix-synapse-saml-mapper: Hotfix missing res dir 2023-09-01 00:13:49 +02:00
Moritz 'e1mo' Fromm
2ba5a98d16
flake update: Use fixes from improved synapse packaging
Close #27
2023-08-31 22:57:04 +02:00
Moritz 'e1mo' Fromm
c054a81b1c
matrix: Fix login redirect loop
Maybe/probably a problem with the hostname / IP snypase detected for the
request.
2023-08-31 22:12:19 +02:00
Moritz 'e1mo' Fromm
9c44d7d0fe
Fix monitoring firewall rules for hamilton
Only relevant until #29 is merged
2023-08-31 22:03:41 +02:00
Moritz 'e1mo' Fromm
1f168fe646
Add missing matrix secrets to hamilton 2023-08-31 22:03:18 +02:00
Moritz 'e1mo' Fromm
3016056768
Move prod matrix from shirley to hamilton 2023-08-30 13:26:22 +02:00
Moritz 'e1mo' Fromm
3e278c3586
matrix-synapse-saml-mapper: No more keepDotGit
Since the .git folder can change often (it is not considered stable), it
avoids random breakage if we just fix the version for setuptools_scm in
place.
2023-08-30 13:26:21 +02:00
Moritz 'e1mo' Fromm
11b87685c3
Apply suggestions from code review 2023-08-30 13:26:21 +02:00
Moritz 'e1mo' Fromm
b68e39dc87
synapse: Add registration secret and reduce logging 2023-08-30 13:26:17 +02:00
Moritz 'e1mo' Fromm
49f72f1b89
Add matrix on shirley
Secrets not yet added to not brick our matrix if we accidentally deploy
2023-08-30 13:21:59 +02:00
Moritz 'e1mo' Fromm
34a142fc2d
services/matrix: Setup 2023-08-30 13:21:52 +02:00
Moritz 'e1mo' Fromm
e44a633770
Merge branch 'hedgedoc'
Merge pull request #22 from chaos-jetzt/hedgedoc
2023-08-25 10:49:02 +02:00
Moritz 'e1mo' Fromm
d7358ccdca
hedgedoc: Disable SSO and login for now 2023-08-13 21:00:27 +02:00
Moritz 'e1mo' Fromm
08e525b19d
hedgedoc: Init 2023-08-13 21:00:26 +02:00
Moritz 'e1mo' Fromm
f809aafde4
hamilton: Fix network config 2023-08-13 12:13:50 +02:00
Moritz 'e1mo' Fromm
9b71a51959
Merge pull request #26 from chaos-jetzt/hamilton
hosts/hamilton: init
2023-08-13 11:39:45 +02:00
Moritz 'e1mo' Fromm
2e5d1690d4
services/monitoring: Only monitor non-dev hosts 2023-08-12 11:48:39 +02:00
Moritz 'e1mo' Fromm
d7d6b7e6ef
hosts/hamilton: init 2023-08-12 11:48:39 +02:00
Moritz 'e1mo' Fromm
788fb22732
services/monitoring: enable nginx by default
Otherwise, building hosts that don't have any (nginx using) services
configured will faill.
2023-08-12 11:48:37 +02:00
Moritz 'e1mo' Fromm
c80fafda16
Fix diff script when running on main 2023-08-12 11:41:00 +02:00
Moritz 'e1mo' Fromm
e58bfa3c35
Merge pull request #25 from chaos-jetzt/gha-diff-new-hosts
Rework host diffing

Now it'll detect wether there are changes to a hosts closure at all, lists
build failures as such and is able to handle newly added or removed hosts.

https://github.com/chaos-jetzt/chaos-jetzt-nixfiles/actions/runs/5770703946
shows the intended behavior when hosts are added, removed, builds fail or
changes are made.
2023-08-11 20:36:19 +02:00
Moritz 'e1mo' Fromm
3ec3fb9416
Add error handling to ci build job 2023-08-05 14:37:05 +02:00
Moritz 'e1mo' Fromm
b8f968dc23
Rework diff-hosts
Now it'll detect wether there are changes to a hosts closure at all,
lists build failures as such and is able to handle newly added or
removed hosts.
2023-08-05 14:35:46 +02:00
Moritz 'e1mo' Fromm
1f9d8ba77f
Merge pull request #23 from chaos-jetzt/touchups
Various smaller changes or cleanups that, to me, wouldn't warrant a PR on their
own. Besides addressing some TODOs (namely the one in the flake.nix), goals
included a reduction of redundant and ambiguous code / statements (e.g. the
isDev detection) and a reduction of (visual) complexity making the code easier
to follow, understand and review.
2023-08-04 17:06:21 +02:00
Moritz 'e1mo' Fromm
934aa5e736
Dokuwiki has been migrated 2023-08-04 16:39:12 +02:00
Moritz 'e1mo' Fromm
5722941e1d
Remove deprevated grub version definition
Also merged the various network configurations a bit for better clarity
2023-08-04 16:39:11 +02:00
Moritz 'e1mo' Fromm
8696e2cbef
services/monitoring: Drop unneeded helpers
Attempting to reduce the complexity of the service as a whole.
2023-08-04 16:39:11 +02:00
Moritz 'e1mo' Fromm
ef147a0e22
services/monitoring: Tie up loose ends
Some variables that were intendet to be used were in fact not used (e.g.
allTargets) but that will be needed as soon as we have a second non-dev
host in our nixfiles.
2023-08-04 16:39:11 +02:00
Moritz 'e1mo' Fromm
047d73dc78
Add cj.deployment module
That way we can configure the depployment tags and everything in a
single location.
2023-08-04 16:39:10 +02:00
Moritz 'e1mo' Fromm
52a0991bfb
colmena: Use FQDN for deployment
Complete TODO we initially left there
2023-08-04 16:39:08 +02:00
Moritz 'e1mo' Fromm
a5de6d59b3
Merge pull request #21 from chaos-jetzt/ci-touchups
Also updated the triggers, only building on pushes to main since the rest will eventually be a PR to main, so that the we can ditch the avoid duplicates action.
2023-08-04 16:28:13 +02:00
Moritz 'e1mo' Fromm
458f832b83
Add tickets.chaos.jetzt redirect
With all https://tickets.chaos.jetzt/shortcode links will redirect to
the appropriate ticket-shop without a need for us to place manual
redirect links.
2023-08-03 16:12:42 +02:00
Moritz
2f3a707216
Merge pull request #20 from chaos-jetzt/momme-gpg
Add gpg key for momme
2023-07-25 20:02:36 +02:00
Moritz 'e1mo' Fromm
f445723cd4
Use DeterminateSystems/magic-nix-cache-action
Should significantely increase build times
2023-07-24 18:33:07 +02:00
Moritz 'e1mo' Fromm
6bdafe2bbe
Diff server closures on pull_request
Also updated the triggers, only building on pushes to main since the
rest will eventually be a PR to main, so that the we can ditch the avoid
duplicates action.
2023-07-24 18:32:34 +02:00
Moritz 'e1mo' Fromm
d8d2997bb3
Use full key fingerprint for e1mo in sops 2023-07-23 16:02:25 +02:00
Moritz 'e1mo' Fromm
b5ca65d9a0
Add mommes GPG key to sops 2023-07-23 16:01:04 +02:00
Moritz
6af66d37b0
Merge pull request #18 from chaos-jetzt/flake-update
flake & dokuwiki plugin updates
2023-07-22 22:30:37 +02:00
Moritz 'e1mo' Fromm
c1eebe17dc website: Clear old generations on dev
With https://github.com/chaos-jetzt/website_pelican/pull/33, a lot of
orphans are to be expected which will take up space on our servers. This
introduces a timer which runs once a week and will delete any
website generations older than 28 days.
2023-07-22 21:18:55 +02:00
Moritz 'e1mo' Fromm
cb56ab1f45
Update dokuwiki plugins 2023-07-22 17:47:42 +02:00
Moritz 'e1mo' Fromm
d9c1adde3e
Nix flake update 2023-07-22 17:47:34 +02:00
Moritz 'e1mo' Fromm
5442317071
Remove n0emis from sops
Follow up to cd026b118c
2023-07-17 12:20:02 +02:00
Moritz 'e1mo' Fromm
cd026b118c
Remove n0emis due to them leaving the admin team 2023-07-17 11:54:39 +02:00
Moritz 'e1mo' Fromm
17ed07993d
Colmena: Add deployment tags and block deploy all 2023-05-20 00:48:06 +02:00
Moritz 'e1mo' Fromm
6210804f59
Flake update 2023-05-20 00:43:55 +02:00
Moritz 'e1mo' Fromm
f2ebb3fe5c Set longer cache duration for fonts
Since they are versioned, we can be a bit more liberal with the stated
cache duration.
2023-04-25 14:39:37 +02:00
Moritz 'e1mo' Fromm
681da3fd18 Support custom 404 page
The actual 404 will be generated from pelican. log_not_found was set for
privacy reasons (since we don't have a favicon, every request still gets
logged with it's full IP due to the 404)
2023-04-25 14:39:37 +02:00
Moritz 'e1mo' Fromm
cb4c29f1d7 Deliver images in alternative formats
If the browser supports webp/avif images, nginx checks if any file with
the same name but the other formats extension is available.
2023-04-25 14:39:37 +02:00
Moritz 'e1mo' Fromm
bf891ae2d9 Update freescout flake for php8.2 compatibility 2023-04-13 18:38:10 +02:00