42a9f0def3
services: paperless: fix redis server warning
2021-12-22 20:13:37 +01:00
516cbd4ae7
services: paperless: switch from docker to nixos
2021-12-22 19:18:06 +01:00
ed7cacb3b4
services: nextcloud: upgrade to nextcloud 23
2021-12-22 18:07:14 +01:00
fb1a53e73d
services: fava: workaround file not found bug
2021-11-17 02:29:06 +01:00
f558b4b680
poseidon: upgrade deprecated options
2021-11-17 00:58:54 +01:00
63af1a317e
services: remove prololo beta testing service
2021-09-24 16:16:27 +02:00
7bf83aaac3
services: prololo: bump flake
2021-09-24 14:27:51 +02:00
c80a5e9a87
services: setup prololo test service
2021-09-12 22:26:28 +02:00
6afcd36d8e
services: lohr: bump flake
...
I should clean that up anyway
2021-09-04 18:21:10 +02:00
af0428fe45
services: gitea: upgrade to v1.15.0
2021-08-26 13:58:10 +02:00
c94356e24f
services: navidrome: setup restic backups
2021-08-22 17:51:23 +02:00
901556f805
services: navidrome: make music folder configurable
2021-08-22 17:24:52 +02:00
7ce48f7164
services: add navidrome
2021-08-22 16:43:27 +02:00
d8c3f5c987
services: nextcloud: upgrade to nextcloud 22
2021-08-20 01:52:45 +02:00
2c7abf829a
services: adapt bitwarden to vaultwarden rename
2021-08-20 01:44:44 +02:00
bdd0748620
flake: switch back entire config to unstable
...
Mixing stable and unstable brought me weird problems, so I'm switching
back to unstable entirely until it breaks hard enough to convince me to
go back to stable. :)
2021-08-19 23:34:41 +02:00
12c60e9d2e
services: postgresql: upgraded to v13
2021-08-19 21:30:09 +02:00
1b7c4d40c6
services: nextcloud: ignore heavy files
2021-08-10 00:33:19 +02:00
e8ea4c8b5f
services: nextcloud: regex don't work with restic
2021-08-09 21:13:55 +02:00
b00faf77bb
services: move to restic for everything
2021-08-09 20:19:27 +02:00
e9c0d157f1
services: restic: make it verbose
2021-08-09 20:14:09 +02:00
0c538fbf86
services: backup postgres to restic
2021-08-09 20:11:00 +02:00
a763e0549f
services: setup restic backups service
2021-08-09 20:11:00 +02:00
bd5aa2cef5
services: setup fava service
2021-08-07 15:40:01 +02:00
611308f120
services: paperless: backup correctly
2021-07-19 14:59:15 +02:00
0f4ae45828
services: monitoring: set prometheus scrape interval
2021-07-15 10:27:10 +02:00
c7c87fcdb4
pkgs: fix grafanaDashboards access in flake
...
The `packages` output from the flake needs flake-utils' `flattenTree` to
be valid (because it doesn't support nested sets), but that only works
if I use `recurseIntoAttrs`.
2021-07-14 21:13:38 +02:00
27ae0552eb
services: paperless: fix backup paths
2021-07-14 03:00:36 +02:00
829632e360
services: tailscale: make exit node optional
2021-07-14 00:08:40 +02:00
c16d8513d2
services: wireguard: removed unused module
...
replaced by tailscale
2021-07-13 23:51:17 +02:00
1d8750efed
services: tailscale: move to service
2021-07-13 23:49:45 +02:00
39477a85e7
services: paperless: backups
2021-07-13 22:20:21 +02:00
786d884e3a
services: monitoring: package grafana dashboards
2021-07-13 17:34:36 +02:00
0f8175519b
services: monitoring: update node exporter dash
2021-07-13 17:25:34 +02:00
0b983d1358
services: monitoring: add nginx dashboard
2021-07-13 17:25:34 +02:00
b6f712b817
services: nginx: enable prometheus exporter
2021-07-13 17:25:34 +02:00
2b59116b8d
services: monitoring: only listen on localhost
2021-07-13 17:25:34 +02:00
e7219ae988
services: matrix: enable SSL traffic only
...
This is a requirement anyway for homeservers, and the `forceSSL` option
tried to create a redirect for non-SSL traffic, except the `listen`
option only provided SSL endpoints anyway, so this resulted in
additional rules in the nginx config looking like this:
server {
server_name matrix.alarsyo.net ;
location /.well-known/acme-challenge {
root /var/lib/acme/acme-challenge;
auth_basic off;
}
location / {
return 301 https://$host$request_uri ;
}
}
Which led to nginx listening on port 8000 (the default port in this
situation, I imagine)
2021-07-13 13:54:18 +02:00
c75458d8c9
services: bitwarden: only listen on local host
...
This was never a problem because the firewall did its job, but better
safe than sorry.
2021-07-13 13:34:26 +02:00
d2835ceb77
services: paperless: drop external traffic to docker
2021-07-13 13:22:21 +02:00
8eb1fe5001
services: paperless: restrict to Tailscale
2021-07-13 01:31:55 +02:00
f0e5e90c10
services: use wildcard certificate
...
Should have done this a long time ago
2021-07-13 01:08:01 +02:00
64d479e2ce
services: prometheus: keep metrics for 2 years
2021-07-12 22:12:03 +02:00
95733f9e05
services: paperless: setup reverse proxy
2021-07-12 22:11:41 +02:00
7c8017af03
services: init nuage
2021-07-06 18:22:57 +02:00
568cd2ccd4
services: matrix: add SMS verification support
2021-06-09 15:37:35 +02:00
6c17c2d82c
services: matrix: move smtp port note out of secret
2021-06-09 14:57:51 +02:00
1b6258e363
services: matrix: add smtp server
2021-06-09 14:53:11 +02:00
4ddee48800
services: lohr: latest commit
2021-06-04 17:40:56 +02:00
46df5d0642
services: transmission: use openFirewall setting
2021-06-03 00:33:52 +02:00
