kalipso/infrastructure
1
1
Fork 1
Code Issues 42 Pull Requests 2 Actions Projects 2 Releases Wiki Activity
448 Commits 21 Branches 0 Tags
6a55dd26f8efeddbd82fa06ca01993285bfdfab9
Commit Graph

80 Commits

Author SHA1 Message Date
ahtlon
6a55dd26f8 [user module] add backup usr
Some checks failed
Check flake syntax / flake-check (push) Has been cancelled
Details
2025-03-11 18:14:00 +01:00
ahtlon
e2fac827bd [user module] default enable users to prevent lockouts
All checks were successful
Check flake syntax / flake-check (push) Successful in 6m18s
Details 
also, add admin to trusted users
 2025-03-01 21:36:51 +01:00
ahtlon
912c8e1195 Merge remote-tracking branch 'origin/master' into issue77
All checks were successful
Check flake syntax / flake-check (push) Successful in 5m49s
Details
2025-03-01 21:12:55 +01:00
ahtlon
ff2ccd5fb4 [user module] use hashed password without sops (for now) 2025-03-01 21:11:50 +01:00
kalipso
251fe62574 fix host_builder.nix tabs 2025-02-25 18:12:02 +01:00
kalipso
9209f84586 [disko] fix dataset typo 2025-02-11 19:31:37 +01:00
kalipso
a0756e4617 [disko] no encrypted swap when encryption disabled 2025-02-11 17:47:31 +01:00
ahtlon
49aed32687 Add microvm data dirs 
(untested because virtiofs mounts currently dont work)
 2025-02-11 17:47:31 +01:00
ahtlon
8b33a1c704 [user module] fix sops user password
All checks were successful
Check flake syntax / flake-check (push) Successful in 4m17s
Details
2025-01-29 09:29:58 +01:00
kalipso
1f9d39b53d [malovpn] add hetzner
All checks were successful
Check flake syntax / flake-check (push) Successful in 4m39s
Details
2025-01-28 14:56:09 +01:00
ahtlon
eb61088dc9 [user module] actually call the module
Some checks failed
Check flake syntax / flake-check (push) Failing after 2m1s
Details 
and fix some issues
 2025-01-28 12:43:07 +01:00
ahtlon
fdb9980176 add malo user password
All checks were successful
Check flake syntax / flake-check (push) Successful in 4m16s
Details
2025-01-28 12:04:40 +01:00
ahtlon
dfd8eb9c15 Add malo user module 2025-01-28 11:58:38 +01:00
ahtlon
4a67683462 [disko] Bit of a hack but the storage partition now gets mounted after zroot using a file on the disk.
All checks were successful
Check flake syntax / flake-check (push) Successful in 4m17s
Details
2025-01-24 18:30:51 +01:00
ahtlon
fb222bc1a4 [disko] rm btrfs-laptop.nix 2025-01-24 15:08:24 +01:00
kalipso
a8bf6539e6 [run-vm] optional forward ports
Some checks failed
Check flake syntax / flake-check (push) Failing after 1m5s
Details 
currently only allows forwarding to port 80, i was to lazy to handle two
arguments in bash
 2025-01-23 21:12:53 +01:00
kalipso
baf77a1abd [nix] mv buildVM to host_builder 2025-01-23 21:00:30 +01:00
kalipso
4eea2de7ec [nix] mv host_builer.nix host_builder.nix 2025-01-23 21:00:30 +01:00
kalipso
b349391de6 [nix] mv host declarations to hosts.nix, add util to host_builer.nix 2025-01-23 21:00:30 +01:00
kalipso
dcc81ec929 [nix] init host_builder.nix 2025-01-23 21:00:30 +01:00
kalipso
d8e989125a [metrics] init module 2025-01-21 23:11:33 +01:00
kalipso
cd5cfe2bb2 [overwatch] init 2025-01-21 23:11:31 +01:00
ahtlon
d9cf3588bf Start over but right this time 2025-01-19 14:22:08 +01:00
ahtlon
2500b8ab9a basic discourse example 2025-01-19 14:22:08 +01:00
kalipso
168d45ed8a [vpn] set mtu 1340
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 5m47s
Details
2025-01-17 00:29:11 +01:00
kalipso
8e8ddb1435 [vpn] fix persistentKeepalive
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m53s
Details
2025-01-14 21:37:17 +01:00
kalipso
3b6107c13d [fanny] set persistentKeepalive
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m44s
Details 
to be able to ssh even if fanny was not active for a while
 2025-01-14 16:47:08 +01:00
kalipso
aaf1e280fc [vpn] enable ip_forward on servers
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m50s
Details
2025-01-14 15:40:22 +01:00
kalipso
c6c7fe5a57 [vpn] allow peers to communicate within subnet
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m49s
Details
2025-01-14 15:14:58 +01:00
kalipso
60221f474c [vpn] fix allowedIps
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m48s
Details 
it seems allowedIPs need to have /32 subnet
 2025-01-14 15:04:49 +01:00
kalipso
9b526906c0 [vpn] fix allowedIPs in peers.nix
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m52s
Details
2025-01-14 14:38:09 +01:00
kalipso
468c3d63f9 [fanny] add to malovpn 2025-01-14 13:45:53 +01:00
ahtlon
f44adbc815 Allow disableing encryption for testing
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m39s
Details
Evaluate Hydra Jobs / eval-hydra-jobs (pull_request) Successful in 3m29s
Details
2025-01-02 14:07:38 +01:00
ahtlon
9f81b1497d init now automaticly imports all pools
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m29s
Details
Evaluate Hydra Jobs / eval-hydra-jobs (pull_request) Successful in 3m27s
Details
2024-12-31 13:33:24 +01:00
ahtlon
b0a5fd91cd fix my mistakes 2024-12-31 03:18:37 +01:00
ahtlon
e9b5937af9 add configurable disko modul 2024-12-31 02:46:12 +01:00
ahtlon
4d4c4fa6fa add init ssh modul 2024-12-31 02:45:37 +01:00
ahtlon
0087aa78a3 Add atlanpc wireguard access
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m29s
Details
2024-12-30 17:33:48 +01:00
kalipso
56ba8d06cd [malobeo/vpn] do not autostart wg interface on clients
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m29s
Details
2024-12-25 22:36:11 +01:00
kalipso
cf300973d5 [vpn] add peer desktop
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m28s
Details
2024-12-25 21:44:03 +01:00
kalipso
fedf849499 [fanny] set neededForBoot flags
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m32s
Details
2024-12-20 23:47:25 +01:00
System administrator
e7710d63a3 [louse] add user to pipewire group
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m29s
Details
2024-12-20 21:19:24 +01:00
kalipso
3131d1bebb [malobeo/vpn] update peers
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m36s
Details
2024-12-19 16:12:59 +01:00
kalipso
0d6df1d0ce [malobeo/vpn] use wg-quick instead wireguard
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 9m22s
Details 
this is compatible with systemd network (also in the future)
 2024-12-19 15:23:46 +01:00
kalipso
4d79714853 [modules] rename wg0 -> malovpn
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m53s
Details
2024-12-17 23:13:16 +01:00
kalipso
b6aef85860 [vpn] init wireguard
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m57s
Details
2024-12-17 23:04:50 +01:00
kalipso
58b0ff4ec7 [modules] vpn use hostName as fallback name
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m59s
Details
2024-12-17 11:30:33 +01:00
kalipso
014564191d [modules] init vpn 2024-12-17 11:30:33 +01:00
ahtlon
a10fb33c29 [fanny] disable mounting root datasets and add encrypted swap
All checks were successful
Evaluate Hydra Jobs / eval-hydra-jobs (push) Successful in 3m40s
Details
2024-12-16 16:58:07 +01:00
kalipso
6932f8507a [fanny] setup disko drive layout 2024-12-11 11:56:41 +01:00