Commit graph

446 commits

Author SHA1 Message Date
6ae099999f swann: enable ndppd/radvd 2021-05-12 18:12:41 +00:00
df870ded34 as205479.net: add fp-la{,-pri,-sec} 2021-05-09 11:28:28 +00:00
34117ecd00 bvm-nixosmgmt: allocate .5 2021-05-09 10:26:34 +00:00
b7cd20c769 ops/nixos: refactoring for sway 2021-05-06 03:56:20 +01:00
1c571d965a ops/nixos: add wayland support 2021-05-05 22:13:27 +01:00
561501afb7 howl: wait, there is no eno1 2021-05-05 21:54:02 +01:00
49c1af6624 howl: don't wait for dhcpcd 2021-05-05 00:04:30 +00:00
38a405cb72 howl: add Tailscale IP 2021-05-05 00:01:34 +00:00
df6a1fe819 howl: suspend loop workaround 2021-05-05 21:48:17 +01:00
c31da4140c ops/nixos/howl: init 2021-04-29 12:16:49 +00:00
dfb62d8c7e totoro: switch to postgresql_13 2021-04-25 21:44:05 +00:00
a4631a8fda ops/nixos/lib/blade: set rgw_data_log_backing back to omap 2021-04-23 13:32:34 +00:00
f3a99c40d3 totoro: oops, indent 2021-04-20 14:48:00 +00:00
6cba0be3b5 totoro: move all rules into a single group 2021-04-20 14:35:23 +00:00
eb9b1a43c0 Backed out changeset 4c2687c43d66 2021-04-20 14:18:45 +00:00
02ca2a46be totoro: attempt to repair rules by adding more blanks 2021-04-20 14:11:38 +00:00
3c48f56f6e totoro: track NixOS channels in my local Prometheus 2021-04-20 14:00:17 +00:00
36cc88bcef ipfs: add to pomerium, explicitly set IPs for swarm 2021-04-18 16:24:59 +00:00
42e8b1eed0 bvm-ipfs: add public IPv4/v6 addresses 2021-04-18 16:04:25 +00:00
2ee3044113 switch-prebuilt: use nix build instead of nix copy to use cache.nixos.org 2021-04-17 23:55:31 +00:00
43e8e05e7b ops/nixos: tweak alacritty settings 2021-04-17 20:28:27 +01:00
11066035e2 ops/nixos: add alacritty everywhere 2021-04-17 20:17:43 +01:00
0372f4b848 ops/nixos: set isNormalUser for all existing users
Now there's an assertion which requires either isNormalUser or isSystemUser, so
we set one of them for all the users we have already.
2021-04-17 20:16:27 +01:00
258d62613f ops/nixos/swann: drop unifiPackage, switch back to stock 2021-04-13 17:15:42 +00:00
4707c69469 bvm-nixosmgmt: add nix to rundeck 2021-04-10 23:12:24 +00:00
c398482f7b bvm-nixosmgmt: add openssh to path 2021-04-10 22:35:53 +00:00
e0241545d2 add mercurial to rundeck path 2021-04-10 22:17:28 +00:00
0ea95ab402 blade-{chakotay,kim}: disable rundeck; expected offline 2021-04-10 20:16:44 +00:00
bfa7051e2f ops/nixos: tidy up hostnames 2021-04-10 20:15:30 +00:00
1b3cb3f723 ops/secrets: add rundeck_deployer_rsa.pub 2021-04-10 20:01:31 +00:00
ecd086eae4 ops/nixos: set up things for generating rundeck nodes 2021-04-10 19:59:56 +00:00
5533fd502a ops/nixos: try setting searchDomains differently 2021-04-10 19:40:10 +00:00
d96ef542d7 etheroute-lon01: set X-Forwarded-Roles header for rundeck 2021-04-10 19:22:54 +00:00
d9662bcd10 etheroute-lon01: add rundeck 2021-04-10 17:22:11 +00:00
00cb06aff2 bvm-nixosmgmt: add rundeck 2021-04-10 17:20:35 +00:00
f1121433cf ci-root: actually index with current system (oops) 2021-04-09 19:31:58 +01:00
c65e8b8a54 ops/home-manager-ext: add built attribute
This is so we can more easily build these things on CI.
2021-04-09 18:14:31 +00:00
91f6cb3317 clouvider-lon01: add mac-mini as remote builder 2021-04-09 18:14:06 +00:00
6465f98036 as205479.net: add mac-mini.int 2021-04-09 18:51:07 +01:00
02db8ea7cb ops/nixos/lib/hm: support macOS again
The ntfy package expects to have pyobjc available when running under Darwin,
which is currently broken in nixpkgs. There's a fairly involved ongoing effort
to package it again, but in the mean time we just patch out the dep. I'm using
the pushover backend anyway.

To avoid having to rebuild it rather than just fetch from the NixOS cache, I
only override it when running on Darwin.
2021-04-09 18:48:46 +01:00
bb03f5ea0d ops/nixos: fixups for upstream pomerium module 2021-04-07 00:46:15 +00:00
13f2f79e6d graphical-client: add wallpapers
If I find more I like, I'll add them here, I guess. For the moment, there's
just the one.
2021-04-06 09:53:56 +01:00
f5622acaf7 nix/pkgs/flameshot: bump to my patched version 2021-04-05 14:57:59 +01:00
48bdb3559c lib/hm/graphical-client: add flameshot to environment 2021-04-05 13:00:02 +01:00
21fe79c904 ops/nixos: enable flameshot on graphical-client hosts 2021-04-05 12:42:35 +01:00
549b4f1ccc porcorosso: switch to pipewire 2021-04-05 12:40:41 +01:00
d582d3f352 ops/nixos/lib: inline latest_system_closure.sh
I can't be bothered to make it a proper script, and I also don't really want to
rely on invoking nix-shell at runtime (I'd rather have all the needed tools in
the system closure).
2021-04-04 19:35:38 +01:00
8dab1a04fe ops/nixos/lib: fix latest_system_closure for machines with - in hostname 2021-04-04 19:25:02 +01:00
33cfba2e2f ops/nixos/lib: enable 'switch-prebuilt latest' for getting latest closure 2021-04-04 18:25:01 +01:00
09a6c8cafe marukuru: switch heptapod image to being built with dockerTools
Fixes #1
2021-04-02 01:39:01 +00:00