Commit graph

40 commits

Author SHA1 Message Date
Tristan Daniël Maat 1d6ba77c7c
Fix nextcloud device authorization
This previously didn't work because nextcloud believed we were running
http, when in reality we were running https.

Overwrite the protocol, so that nextcloud can authorize devices.
2020-07-27 18:11:30 +01:00
Tristan Daniël Maat c434f513cd
Use a full entrypoint instead of a runAsRoot script for minecraft
This needs to be done because the server does not support qemu, and
NixOS requires qemu to use the runAsRoot feature for docker images.

Instead, create the required files as part of the entrypoint.

Fixes #6
2020-07-27 18:06:32 +01:00
Tristan Daniël Maat 240bad3a6f
Fix broken tlaternet-templates location
I missed the .nix suffix, and due to lacking CI, I didn't catch the
error before merging.

Whoops!
2020-07-20 21:09:21 +01:00
Tristan Daniël Maat dd1335cb36
Update the templates 2020-07-20 21:03:01 +01:00
Tristan Daniël Maat a57565678a
Update the rust webserver 2020-07-20 20:57:00 +01:00
Tristan Daniël Maat da2a3c00de
Add linode hardware configuration 2020-07-20 20:33:11 +01:00
Tristan Daniël Maat 1f0c70f1c2
Add minecraft service
This is an initial configuration to restore old services.

Obviously, vendoring everything in a tarball is pretty awful, and if I
ever wanted to open source this, that would be a problem.

I intend to create a proper derivation in time, but including mods is
difficult from some initial experimentation.
2020-07-19 21:14:21 +01:00
Tristan Daniël Maat 74a19ed164
Make tlater part of the wheel group again
Trying to go sudo-less immediately was probably a bit too
ambitious. Once we have a working continuous deployment setup this may
be applied again.
2020-07-13 21:46:02 +01:00
Tristan Daniël Maat 5a5fad7c82
Set usePredictableinterfacenames
We do this to allow eth0 to be set up for dhcp automagically. Linode
recommends this, and it makes our configuration simpler.
2020-07-13 21:46:00 +01:00
Tristan Daniël Maat d59a8b8fc6
Add client_max_body_size configuration to nginx-proxy
Technically I could use a per-host configuration here and forego the
whole nextcloud nginx container, but for the time being it's simpler
to set the global upload limit to 16G as well.
2020-07-13 21:45:57 +01:00
Tristan Daniël Maat 9b5c8eea37
Use a better nginx configuration for nextcloud
This was taken from
https://github.com/nextcloud/docker/blob/master/.examples/docker-compose/with-nginx-proxy/postgres/fpm/web/nginx.conf

This should be relatively well-optimized for nextcloud, much better
than what I had previously.
2020-07-13 21:45:54 +01:00
Tristan Daniël Maat 9f0e3082bc
Don't name dependsOn services docker-*.service
Apparently NixOS will handle this for us, automagically, but it isn't
quite smart enough to figure out when the user added that manually.
2020-07-13 21:45:51 +01:00
Tristan Daniël Maat cfee748967
Remove tlater from the wheel group
Currently there is no password anyway, so there's no reason to have
wheel permissions.
2020-07-13 21:45:49 +01:00
Tristan Daniël Maat 3c01b94156
Prefix docker volumes with application names
This is important so that `docker volume ls` gives useful information.
2020-07-13 21:45:47 +01:00
Tristan Daniël Maat 367579f5cd
Use Gitea over GitLab
Gitea simply offers better performance. I wasn't using all of GitLab's
features anyway, and while the missing CI is annoying, I hadn't
previously managed to set this up anyway, and it can be easily
replaced by something a bit more dedicated than GitLab's
implementation.

This should hopefully allow me to host git repositories without
compromising on memory/CPU time available to other services.
2020-07-13 21:45:44 +01:00
Tristan Daniël Maat 9010db4f75
Add website service 2020-07-12 00:01:10 +01:00
Tristan Daniël Maat 8fe36b187b
Change the hostname to "tlaternet"
Apparently nixos doesn't support "." in host names anymore.
2020-07-08 19:00:47 +01:00
Tristan Daniël Maat fe3f72d581
Remove lauren's user
No longer hosting services from this server, so it's not really
useful.
2020-02-08 22:08:44 +09:00
Tristan Daniël Maat 5ea5a2e73a
Add Makefile for simpler testing 2020-02-08 21:31:49 +09:00
Tristan Daniël Maat fe11b58a8a
Add nextcloud configuration 2020-02-08 21:30:01 +09:00
Tristan Daniël Maat 5b5f922354
Move gitlab configuration to a networked-docker-container 2020-02-08 21:29:30 +09:00
Tristan Daniël Maat 7266dd3bfa
Move nginx configuration to a networked-docker-container 2020-02-08 21:29:06 +09:00
Tristan Daniël Maat 9d209f5dda
Add module for networked docker containers
The upstream docker-containers options don't support networks, and
they're quite difficult to patch from downstream.

For now, vendor it a little, and patch it up to support networks.

It's unlikely that upstream would take this patch, since it is a
little hacky.
2020-02-08 21:08:42 +09:00
Tristan Daniël Maat ccf48bd68b
nix: Add headless profile 2020-02-02 17:03:54 +09:00
Tristan Daniël Maat 23f05d0939
linode.nix: Fix syntax problem 2020-02-02 17:01:38 +09:00
Tristan Daniël Maat ff005a6bbe
services: Move configurations out of main configuration.nix file 2020-02-02 17:01:35 +09:00
Tristan Daniël Maat 767095e6ab
Don't include an empty package list 2020-02-02 17:01:27 +09:00
Tristan Daniël Maat 54a8d85d1d
users: Move literal public key strings to external files 2020-02-02 17:01:23 +09:00
Tristan Daniël Maat d0501c8af9
tlater: update ssh key 2020-02-02 16:45:08 +09:00
Tristan Maat adfeb07d90 configuration.nix: Add GitLab configuration 2019-12-23 15:19:21 +00:00
Tristan Maat 25dacbb242 .gitignore: Ignore VM save state 2019-12-21 21:43:58 +00:00
Tristan Maat 1740b20360 Add LICENSE 2019-11-26 23:26:10 +00:00
Tristan Maat 8855beea69 Change README location 2019-11-26 23:20:35 +00:00
Tristan Maat fca1606f5a Add a README 2019-11-26 23:19:19 +00:00
Tristan Maat 2e863388c2 Ignore VM files 2019-11-26 23:07:09 +00:00
Tristan Maat 7b211df7e5 Set up nginx-proxy 2019-11-26 23:06:50 +00:00
Tristan Maat ca484ac880 Allow running using VM created by nix-build -A vm 2019-11-26 23:05:44 +00:00
Tristan Maat b56a377c02 Fix typo 2019-11-26 23:05:21 +00:00
Tristan Maat 20828dc1c9 configuration.nix: Add initial ssh authorized keys 2019-11-24 00:52:26 +00:00
Tristan Maat 69a1c04621 Initial commit 2019-11-24 00:52:08 +00:00