Commit graph

356 commits

Author SHA1 Message Date
6c3ecb4d0b nix/docker/vault: init
This is the Docker image I use for deploying Vault.
2022-03-06 16:51:34 +00:00
75ce92b967 heptapod: update to 0.29.1 2022-03-01 00:00:23 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
4cef54442e nix/pkgs/plex-pass: update version to 1.25.6.5577-c8bd13540 2022-02-23 02:10:56 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
e14cfe989c nix/pkgs/plex-pass: update version to 1.25.5.5492-12f6b8c83 2022-02-09 02:10:53 +00:00
cc6fd576e7 nix/docker/heptapod: 0.28.1 -> 0.28.2 2022-02-05 03:24:04 +00:00
40a3588e99 nix/docker/heptapod: 0.27.3 -> 0.28.1 2022-02-04 19:21:08 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
29c0608903 nix/pkgs/plex-pass: update version to 1.25.4.5487-648a8f9f9 2022-02-02 02:11:03 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
79e5483322 nix/pkgs/plex-pass: update version to 1.25.4.5468-989df2310 2022-02-01 02:11:06 +00:00
3ad4c2399a nix/pkgs/lutris: add more deps 2022-01-23 23:37:19 +00:00
c10d4efd5e nix/pkgs/deluge: update path for trying empty login first 2022-01-16 15:26:38 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
af848af78c nix/pkgs/plex-pass: update version to 1.25.3.5409-f11334058 2022-01-14 02:10:48 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
0917f5eb3e nix/pkgs/plex-pass: update version to 1.25.3.5385-f05b712b6 2022-01-12 02:10:47 +00:00
47d3c07b8f nix/pkgs/heptapod-runner: fix 2021-12-25 20:31:34 +00:00
0b8049e5d4 nix/docker/heptapod: 0.27.0 -> 0.27.3 2021-12-22 00:41:19 +00:00
a72cc6dd19 nix/pkgs/baserow: add public key to baserow_premium 2021-12-21 22:12:33 +00:00
92a744ec1f nix/pkgs: add baserow vs baserow-oss to nix/pkgs 2021-12-21 21:52:16 +00:00
32672f96f6 nix/pkgs/rundeck-bin: 3.4.1-20210715 -> 3.4.9-20211221 2021-12-21 20:00:22 +00:00
68e623d2eb nix/pkgs/baserow: make it configurably OSS-only 2021-12-21 19:39:11 +00:00
9d983e7831 nix/pkgs/baserow: tie to tag for 1.7.1 2021-12-21 19:23:53 +00:00
93a070870a nix/pkgs/baserow: hooray, it works 2021-12-21 05:48:40 +00:00
d806f8da1c baserow: copy missing non-Python directories into sitePackages anyway 2021-12-20 18:08:39 -08:00
c2ca979558 nix/pkgs/baserow: init 2021-12-20 16:18:16 -08:00
2fb7595507 nix/pkgs/baserow: init web-frontend 2021-12-20 13:05:51 -08:00
9f7a675b09 nix/pkgs/heptapod-runner: fix more 2021-12-20 05:56:24 +00:00
7c0d51e9db nix/pkgs/heptapod-runner: update to 0.4.0, fix patch 2021-12-20 02:47:45 +00:00
deployer@localhost
18ac4b13fd nix/pkgs/plex-pass: update version to 1.25.2.5319-c43dc0277 2021-12-14 02:15:15 +00:00
deployer@localhost
279a5233f9 nix/pkgs/plex-pass: update version to 1.25.1.5286-34f965be8 2021-12-08 02:11:08 +00:00
deployer@localhost
ec5af85046 nix/pkgs/plex-pass: update version to 1.25.0.5282-2edd3c44d 2021-12-02 02:10:48 +00:00
a1ee1e396c ops/nixos: alacritty -> kitty 2021-11-28 12:51:40 +00:00
172f12b04d nix/docker/heptapod: 0.26.0 -> 0.27.0 2021-11-25 18:29:40 +00:00
9cb68e94d3 nix/docker/heptapod: update to 0.26.0 2021-11-25 17:27:52 +00:00
47702fd028 nix/pkgs: init gimp-plugin-vtf 2021-11-25 17:13:33 +00:00
bde764c537 nix/pkgs: pin nightly rust
oops.
2021-11-23 12:31:34 +00:00
86e0ce9af9 nix/pkgs/datez: init 2021-11-18 21:33:40 +00:00
5f85aba4b1 nix/docker/heptapod: bump to 0.25.2 2021-11-05 01:30:02 +00:00
deployer@localhost
bdb17c63e3 nix/pkgs/plex-pass: update version to 1.24.5.5173-8dcc73a59 2021-10-28 02:11:00 +00:00
deployer@localhost
2c9f1bfefe nix/pkgs/plex-pass: update version to 1.24.4.5081-e362dc1ee 2021-10-13 02:10:52 +00:00
6e4d2ed6b0 heptapod: 0.25.0 -> 0.25.1 2021-10-09 01:16:36 +00:00
55c0ceeafe nix/docker/heptapod: 0.24.0 -> 0.25.0 2021-09-26 21:56:00 +01:00
7800222723 nix/pkgs/mercurial: switch to mercurialFull instead 2021-09-26 21:16:05 +01:00
5d2cc39419 nix/pkgs: add eapol-test 2021-09-25 12:55:06 +00:00
deployer@localhost
8ea060fa0c nix/pkgs/plex-pass: update version to 1.24.3.5033-757abe6b4 2021-09-21 02:10:56 +00:00
deployer@localhost
1a75721707 nix/pkgs/plex-pass: update version to 1.24.2.4973-2b1b51db9 2021-09-09 02:10:54 +00:00
3f184e6323 nix/gitlab-ci: add separate pipeline steps for Intel/ARM macOS 2021-09-05 09:24:03 +00:00
f7fbfa5436 nix/pkgs: init prometheus-bird-exporter-lfty 2021-08-31 02:01:38 +00:00
31e254192f heptapod: 0.23.2 -> 0.24.0 2021-08-30 20:52:41 +01:00
deployer@localhost
c440846823 nix/pkgs/plex-pass: update version to 1.24.1.4931-1a38e63c6 2021-08-24 02:10:55 +00:00
05ddad31ad bvm-netbox: complete setup 2021-08-16 02:09:47 +00:00
bf274bbc00 nix/docker/heptapod: update 2021-08-14 21:54:09 +00:00
deployer@localhost
4c8abb0a9a nix/pkgs/plex-pass: update version to 1.24.0.4930-ab6e1a058 2021-08-13 02:10:53 +00:00
deployer@localhost
1238334f21 nix/pkgs/plex-pass: update version to 1.23.6.4881-e2e58f321 2021-08-06 02:10:32 +00:00
deployer@localhost
25372154af nix/pkgs/plex-pass: update version to 1.23.5.4862-0f739d462 2021-07-27 02:10:57 +00:00
a911a1f1be rundeck-bin: update to 3.4.1 2021-07-24 21:58:12 +01:00
ca2230756b nix/docker/heptapod: update to 0.22.3 2021-07-16 00:34:55 +00:00
2b9e07816b nix/pkgs/mercurial: drop pygit2, add hg-git 2021-07-03 10:28:34 +00:00
890ffcd477 heptapod: update to 0.22.1 2021-07-03 01:49:24 +00:00
4ef3d2a8e6 lightspeed-react: fix for new nixpkgs 2021-06-29 23:07:32 +00:00
3e7f505653 heptapod: bump to 0.22.0 2021-06-06 17:48:59 +00:00
21d082543a heptapod: bump to 0.21.3 2021-05-30 16:27:55 +00:00
fc0468c20f heptapod: bump to 0.20.7 2021-05-30 14:31:58 +00:00
d874257a28 nix/gitlab-ci: use when: manual and allow_failure: true 2021-05-22 22:58:25 +00:00
bd8cb149bc nix/pkgs/prometheus-snmp-config: fix hash 2021-05-22 00:51:55 +00:00
bdc009d86b nix/pkgs/prometheus-snmp-config: update hash 2021-05-22 00:46:14 +00:00
7b38430804 nix/pkgs/crane: update hash??? 2021-05-22 00:40:18 +00:00
47542c16e3 django-tailwind: 1.1.0 -> 2.0.1 2021-04-29 12:08:13 +00:00
fd2b47acf9 copybara: pin to jdk11 2021-04-18 13:54:14 +00:00
bc41ac0d88 nix/pkgs/plex-pass: update to 1.22.2.4282-a97b03fad 2021-04-11 03:23:55 +00:00
a2f95ffba2 nix/pkgs/plex-pass: convert to SRI for nix-update 2021-04-11 02:16:12 +00:00
db82683461 nix/pkgs/plex-pass: reorganise to make more nix-update friendly 2021-04-11 02:13:51 +00:00
e088dac620 nix/pkgs/rundeck-bin: fix 2021-04-10 22:25:28 +00:00
e0241545d2 add mercurial to rundeck path 2021-04-10 22:17:28 +00:00
15ed0197e3 rundeck: run as deployer 2021-04-10 21:59:29 +00:00
88e7bd85ed nix/pkgs/rundeck-bin: change wrapper to name 'rundeckd' 2021-04-10 17:26:42 +00:00
00cb06aff2 bvm-nixosmgmt: add rundeck 2021-04-10 17:20:35 +00:00
9c1c7ec985 nix/pkgs/rundeck-bin: init 2021-04-10 17:05:21 +00:00
a291107f62 nix/gitlab-ci: attempt to do things on Mac Mini 2021-04-09 20:03:51 +00:00
0943931a6a nix/pkgs: remove pomerium, it's upstream now 2021-04-07 00:41:20 +00:00
13f2f79e6d graphical-client: add wallpapers
If I find more I like, I'll add them here, I guess. For the moment, there's
just the one.
2021-04-06 09:53:56 +01:00
f5622acaf7 nix/pkgs/flameshot: bump to my patched version 2021-04-05 14:57:59 +01:00
e11229d070 nix/pkgs: init my flameshot fork 2021-04-05 12:40:55 +01:00
a598fd0e53 nix/docker/heptapod: can't do that like that :( 2021-04-02 02:08:40 +00:00
09a6c8cafe marukuru: switch heptapod image to being built with dockerTools
Fixes #1
2021-04-02 01:39:01 +00:00
e3b60baa72 Remove Docker push.
As part of #4, I'm removing all of the OpenShift-ness. While I do that, let's keep Twitterchiver as is.
2021-03-30 21:28:43 +01:00
2b8dce0920 depot-wide: overhaul GitLab CI configuration
We now use a stub configuration to kick off the pipeline, which is dynamically
generated using Nix config.
2021-03-28 15:27:46 +00:00
017458ae2e bazel-run: back to Java 11, which is AdoptOpenJDK LTS 2021-03-26 03:52:35 +00:00
7273c31af5 nix/pkgs/pomerium: allow unitless 0 2021-03-14 14:40:54 +00:00
36577c5bba nix/pkgs/pomerium: add timeouts to policy 2021-03-14 14:38:56 +00:00
a71f4a47f9 nix/pkgs: add prometheus-snmp-config 2021-03-14 00:51:11 +00:00
4649556303 alertmanager-discord: init 2021-02-23 00:16:49 +00:00
0a38f01047 nix/pkgs/plex-pass: update to 1.21.4.4054 2021-02-21 03:18:53 +00:00
d8c29b0113 nix/pkgs: remove stdenv.lib from non-generated code 2021-02-13 13:56:02 +00:00
7558697bba nix/pkgs/unifi-hack: update 2021-02-07 23:39:46 +00:00
89e37ba633 nix/pkgs: enigma: init 2021-02-07 23:17:51 +00:00
efdf61b4e6 3p/nixpkgs: fix buildBazelPackage 2021-02-07 22:51:09 +00:00
78040f6c94 nix/pkgs: init hp-rom; add to netboot 2021-01-30 18:47:01 +00:00
b6a1403c04 nix/pkgs: add windows ISOs in prep for doing stuff with them for iPXE 2021-01-30 17:15:16 +00:00
ca27848285 web/quotes: add tailwind 2021-01-20 02:04:30 +00:00
c62b596078 nix/pkgs: remove envoy 2021-01-19 03:56:14 +00:00
1d41593ae2 nix/pkgs: add newer version of django-allauth 2021-01-19 03:51:07 +00:00
47c6327b4d nix/pkgs/copybara: switch to JDK15 after nixpkgs update 2021-01-11 17:44:05 +00:00
1e8eec28b1 nix/pkgs/sheepshaver: ensure STDC_HEADERS is set 2021-01-07 11:48:18 +00:00
0c713bbf64 nix/pkgs/envoy: fix under new nixpkgs 2021-01-07 11:28:45 +00:00
85c2c4d507 unifiHack: init
This package takes the upstream Unifi package, and then applies a AspectJ
aspect which replaces the auth logic with stuff which checks whether there's a
Pomerium header.
2021-01-04 20:49:04 +00:00
2d52be000f tiny-remapper: init 2021-01-04 20:48:20 +00:00
87e7dae108 nix/pkgs/lightspeed-react: add websocketURL parameter 2021-01-04 15:51:00 +00:00
c0245a68ca lightspeed-react: init 2021-01-04 15:05:55 +00:00
d629a3561c lightspeed-webrtc: init 2021-01-04 15:05:46 +00:00
294e7731d6 lightspeed-ingest: init 2021-01-04 15:05:32 +00:00
eb9d9f54a5 nix/pkgs/grafana-plugins: rework a bit 2020-12-30 03:30:24 +00:00
ca4f3c0013 nix/pkgs/grafana-plugins: init 2020-12-30 02:43:10 +00:00
26e379dfb7 depot-wide: create logged-out.int.lukegb.com 2020-12-30 00:57:53 +00:00
7d0493cacd deluge: patch deluge-web to try logging in with a fixed password first 2020-12-28 20:04:27 +00:00
9fc4be6a9c nix/pkgs/plex-pass: update to 1.21.1.3830 2020-12-28 19:45:14 +00:00
784138746f pomerium: document all known pomerium options as nixos module options 2020-12-28 18:54:00 +00:00
8956bc3207 pomerium: use /var/lib/pomerium for autocert state 2020-12-28 17:12:06 +00:00
8ed1d0665e pomerium: unbreak LuaJIT 2020-12-28 17:04:31 +00:00
41bdeda58a pomerium: various fixups to make this work 2020-12-28 15:27:18 +00:00
10c6ddc4c9 etheroute-lon01: install pomerium 2020-12-28 14:08:24 +00:00
f8031ab38c nix/pkgs/pomerium: move to separate folder 2020-12-28 12:20:51 +00:00
d4b439c523 nix/pkgs/pomerium: move envoy zip appending to postFixup phase
This ensures that we don't immediately remove it (because strip will otherwise
just strip it because it's trailing content).
2020-12-27 19:49:02 +00:00
a991f3dca9 nix/pkgs: init pomerium 2020-12-27 19:24:22 +00:00
483786f792 nix/pkgs: init envoy 2020-12-27 18:58:58 +00:00
f6428191cf nix/pkgs/javaws-env: patch JRE to enable RC4/SSLv3 2020-12-26 23:36:15 +00:00
dd27953d33 nix/pkgs: add intermec-cups-driver 2020-12-19 19:25:42 +00:00
8db16c9c60 erbium: fix derivation 2020-11-30 23:39:21 +00:00
8ff8546339 erbium: switch to using crate2nix from upstream 2020-11-30 19:41:39 +00:00
185ef2a819 plex-pass: update to debian, 1.21.0.3616 2020-11-30 19:34:08 +00:00
6d10a1cb0c nix/pkgs: init sheepshaver 2020-11-15 21:23:53 +00:00
d6f36cf247 nix/pkgs/erbium: sigh 2020-11-06 05:08:47 +00:00
fb6544f158 nix/pkgs: init python-emv at 1.0.9 2020-11-05 00:44:17 +00:00
46896bc2ed nix/pkgs/erbium: update deps hash 2020-11-04 18:59:36 +00:00
1c1152c874 erbium: update depsHash 2020-11-01 21:45:24 +00:00
75aef1e3ca nix/pkgs: add erbium 2020-11-01 21:22:52 +00:00
7b80b817dd copybara: depend on jdk14_headless instead of 'headful' jre 2020-10-18 13:26:29 +00:00
d0e40e4a6b nix/pkgs: add crane 2020-10-04 02:33:44 +01:00
225dfdc114 misc: fix up reuse lint 2020-10-04 01:08:07 +01:00
7b53535355 misc: fix up after nixpkgs update 2020-09-30 17:39:34 +00:00
9f90e567f2 nix/pkgs: update plex-pass 2020-09-04 16:54:53 +00:00
6b2df5840e nix/pkgs/copybara: update for new nixpkgs 2020-07-19 18:11:09 +01:00
218815e877 nix/pkgs: remove oven-media-engine
It's upstream now.
2020-07-19 17:57:33 +01:00
60f322d4a6 oven-media-engine: init at 0.10.4 2020-07-12 10:51:57 +00:00
f3d1fee59d nix/pkgs: add bazel-run userenv 2020-06-16 09:39:54 +01:00
48011ebba9 licensing: Apache-2.0, make almost reuse-lint clean 2020-06-07 15:03:12 +01:00
15c82b0498 local repo fixups after bump of nixpkgs 2020-06-06 13:12:39 +01:00
7100a39ee3 nix/pkgs/plexpass: update to 1.19.4.2902 2020-06-06 00:37:51 +00:00
abbbc2c216 hg-git: add 0.9.0a1 for py3, and use that 2020-05-17 03:23:54 +01:00
d796fe1dfd nix/pkgs: fix up copybara/secretsync for new nixpkgs 2020-05-16 19:20:59 +01:00
9b64e2c361 nix/pkgs/copybara: create 2020-05-16 16:37:45 +01:00
823eab4775 secretsync: escape $ in variable content
GitLab doesn't treat $ as literals in file content, which means that it
tries to do variable interpolation.

This is bad and annoying, because e.g. password hashes tend to contain $,
so they get variable-interpolated and thus corrupted.

Fix this by escaping $ on input to GitLab.
2020-05-10 12:11:26 +01:00
91d742c1cd gitlab-ci: try and get deploys works 2020-05-09 23:49:32 +01:00
a9cb53fa16 secretsync: add concept of manifest variable
This is a file-type variable which contains the original mapping of
VARIABLE_NAME to VARIABLE_DATA.

This can be used to automatically repopulate a repository with
secrets that were originally taken from it and transmitted via
GitLab variables (i.e. out-of-band).
2020-05-09 14:26:54 +01:00
ed8c77a9c6 heptapod-runner: make sure our wrapped Mercurial is on the PATH 2020-05-09 13:22:49 +01:00
6266b42b66 secretsync: add
This is a helper utility for syncing filesystem files into GitLab variables, for
deploy-time secrets.
2020-05-09 12:45:13 +01:00
5b96c181b2 heptapod-runner: add derivation 2020-05-09 01:10:49 +01:00
25956f7607 clouvider-fra01: add Plex Pass media server. 2020-05-06 10:02:00 +01:00
79c7b70a96 porcorosso: add javaws bin that drops into a FHS env.
This allows me to use Supermicro's BMC, which appears to drop a
stunnel binary into /tmp and then execute it, which doesn't work
properly in Nix because nothing is where it is expected to be.
2020-05-06 10:01:46 +01:00