This is actually a bit more complicated than expected. As you mentioned we cannot mix up declarative/imperative microvms. From the host side we cannot change the microvm shares at all. So a…
maybe i miss something here, but as far as i understand none of the hosts can decrypt the malobeo user secrets.yaml at all right now. In the .sops.yaml. only admin keys are added. Also when we add…
Actually there is more to setting a userpw with sops: https://github.com/Mic92/sops-nix?tab=readme-ov-file#setting-a-users-password
Warning: I have not tested e94410ca54281a41b0d48cd82634d9560917cf03 yet
The problem is that nextcloud runs inside microvm. so its /data dir will actually be a tmpfs. We need to share the…
@Ahtlon instead of using the users.users.<name>.hashedPassword use users.users.<name>.hashedPasswordFile which will work with sops :)
Btw reading the description of that option on…
I will close this for now. if we need a more flexible commandline interface for forwarding ports in the future we can reopen this. but i think in that case the best is to just use --networking…
no feel free to take it. we can start to assign ourselve to issues we work on to make that more clear. i write just the thoughts i had before, but feel free to propose whatever you feel makes…
In this case it was a router problem, but if this repeats it should also be investigated. having a spare pi in the network is in any case a good idea and something we should setup in the future.
is implemented in a8bf6539e6 but only allows forwarding towards port 80.