Commit graph

478 commits

Author SHA1 Message Date
eed797fb13 Use treefmt-nix and Alejandro 2024-10-28 14:11:40 +01:00
2352a1a917 Update flake inputs 2024-10-25 15:48:12 +02:00
fcc2848523 Disable DNS and GSSAPI auth on sshd
Remove NixNG code
2024-09-24 22:45:07 +02:00
3d456b1a43 Make machines' nixos module an attrset 2024-09-22 22:46:56 +02:00
e91f37d700 Remove deploy checks
Move image globals to kubernetes repo
2024-09-22 21:11:09 +02:00
553992ec2f Remove code to prefetch Docker images 2024-09-22 20:40:54 +02:00
eb90e5d1bd Change location of dnsmasq image 2024-09-17 14:19:44 +02:00
85cba9a3ff Deploy NixNG-built dnsmasq container image 2024-09-17 13:22:34 +02:00
ad4d78ed2a Move more stuff to kubernetes-deployments
Remove kubernetes stuff from readme
2024-09-07 21:59:17 +02:00
8744db7f1f Rename pikvm ansible playbook 2024-09-07 14:01:00 +02:00
6dd363a2a8 Restructure and clean up code 2024-09-07 13:59:04 +02:00
660191ab42 Cleanup after kubernetes deployment migration 2024-09-07 13:06:37 +02:00
a335dd4120 WIP: remove kubernetes deployments 2024-09-07 12:39:30 +02:00
c55b0752e7 radicale: 3.2.2.0 -> 3.2.3.0
immich: v1.112.1 -> v1.114.0
freshrss: 1.24.2 -> 1.24.3
2024-09-06 19:36:31 +02:00
be17c95d86 Improve documentation of recovering Longhorn volumes 2024-09-01 16:11:20 +02:00
d6f3aadeaf Enable nix garbage collection service 2024-09-01 11:39:53 +02:00
b139f3d469 Add Ansible playbook to configure PiKVM
Add Nix shell to flake
Monitor PiKVM with Prometheus
Serve Prometheus on /
2024-08-30 17:53:04 +02:00
04439a9ee5 Build tooling around nix-snapshotter 2024-08-29 06:53:05 +02:00
e9899c0d0f Resolve cyberchef and radicale images using nix-snapshotter
Increase inotify max user instances to 256
Disable tailscale by default
2024-08-25 17:04:31 +02:00
52efd614fe chore(jellyfin): update to 10.9.9
chore(radarr): update to 5.9.1
chore(paperless): update to 2.11.6
chore(syncthing): update to 1.27.10
chore(immich): update to 1.112.1
chore(freshrss): update to 1.24.2
2024-08-24 23:01:52 +02:00
55b18ef450 Refactor storage module
Add talos and pikvm machines
2024-08-24 22:30:46 +02:00
0539d35678 chore(forgejo): update to 8.0.1 2024-08-24 22:28:00 +02:00
5432d93f85 refactor: Convert configmaps containing secrets to secrets
closes #85
2024-08-04 14:59:11 +02:00
2c0a60097a chore: Update Paperless 2.3 -> 2.11.2
chore: Update Nextcloud 28 -> 29.0.4
chore: Update Syncthing 1.23.6 -> 1.27.9
chore: Update Forgejo 7.0.5 -> 8.0.0
chore: Update Immich 1.108.0 -> 1.111.0
chore: Update Kitchenowl 0.5.1 -> 0.5.2
chore: Pin Pihole to 2024.07.0
fix: Disallow rolling updates for immich ML
fix: Use tailscale host as domain
2024-07-30 22:29:10 +02:00
5a6b9f203a refactor: Extract all image names 2024-07-30 21:28:35 +02:00
872f8fe89e chore: Update jellyfin, radarr, prowlarr and sonarr 2024-07-30 21:01:41 +02:00
e21e8694c1 docs: Add more deployment instructions 2024-07-30 20:34:37 +02:00
6794fce2a2 fix: Don't use tailscale DNS for physical servers
fix: Don't do rolling updates for pihole
chore: Update flake inputs
2024-07-30 20:33:07 +02:00
8067d9a301 docs: Update readme 2024-07-28 14:48:43 +02:00
9fe5ecbb8d refactor: Set image pull policy to IfNotPresent everywhere
closes #101
2024-07-28 14:32:28 +02:00
bf1facabd7 feat: Replace transmission with deluge 2024-07-28 14:14:38 +02:00
1f72d3463e feat: Deploy ntfy
closes #93
2024-07-27 22:32:23 +02:00
ea84627e59 feat: Use Attic as binary cache
fix: Improve flake outputs yet again
refactor: Delete dead code related to hamnet
2024-07-27 21:12:24 +02:00
6db856cfe9 feat: Put nextcloud and immich behind tailscale 2024-07-25 20:30:21 +02:00
5398db801c feat(traefik): Expose traefik dashboard on Tailscale 2024-07-24 22:21:47 +02:00
fd70b4d934 Fix: Fix Traefik HTTP redirect after update 2024-07-24 21:54:31 +02:00
ae655bba6a chore: Disable EK poule 2024-07-24 21:43:50 +02:00
f961fc24ea feat: Expose Radicale, Paperless and FreshRSS only on Tailscale
fix: Fix flake output names
2024-07-24 21:25:51 +02:00
4e619eb0c4 feat(tailscale): Enable warwick as exit node and subnet router 2024-07-23 22:50:11 +02:00
15e0dce041 feat: Enable tailscale on physical servers
fix: Fix Nix flake checks
2024-07-22 22:54:08 +02:00
c22d356191 Re-enable port 444 for inbucket @pizzaniels 2024-07-22 20:44:51 +02:00
92b096608f Revert "refactor: Remove support for port 444"
This reverts commit 052c75849d.
2024-07-22 20:36:28 +02:00
052c75849d refactor: Remove support for port 444 2024-07-21 21:26:20 +02:00
d3d6abdde8 feat: Rollout tailscale for media stack
fix: Add default for tailscale ingress option
2024-07-21 21:00:32 +02:00
6152ce4577 feat: Expose longhorn UI on tailnet
refactor: Merge inbucket services
2024-07-21 20:30:47 +02:00
e129d5cf8d feat: Expose Pihole on tailnet 2024-07-21 20:02:40 +02:00
1ee68fc2a6 refactor: Rename tailscale sops secrets 2024-07-21 19:48:42 +02:00
cb6b883f6e feat(tailscale): Install k8s operator 2024-07-21 19:47:22 +02:00
8fc6961362 feat(syncthing): Only expose on tailnet 2024-07-21 16:50:52 +02:00
6f3a7a3c44 refactor(tailscale): Modularize Tailscale k8s config 2024-07-21 16:26:21 +02:00