deployer@bvm-nixosmgmt.blade.as205479.net
bd4e52105d
nix/pkgs/plex-pass: update version to 1.25.9.5721-965587f64
2022-04-07 02:12:24 +00:00
a0802e697f
gitlab-ci: restore machine deploys
2022-04-05 22:13:21 +01:00
98cd1c7427
gitlab-ci: try setting NIX_PATH explicitly
2022-04-05 22:09:21 +01:00
97a2e46eeb
lukegbcom: autodeploy using Vault
2022-04-05 22:04:32 +01:00
67252bab10
lightspeed: delete
2022-04-05 02:41:16 +00:00
9f9991c895
heptapod: 0.30.0 -> 0.30.1
2022-04-04 14:53:06 +01:00
deployer@bvm-nixosmgmt.blade.as205479.net
d2aaa28aa5
nix/pkgs/plex-pass: update version to 1.25.8.5663-e071c3d62
2022-03-25 02:11:03 +00:00
4d00448f55
heptapod: 0.29.1 -> 0.30.0
2022-03-24 22:20:56 +00:00
c60a68a354
nix/gitlab-ci: try to restrict deploy steps to only default
2022-03-20 10:26:56 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
b4b3484e6c
nix/pkgs/plex-pass: update version to 1.25.7.5604-980a13e02
2022-03-17 02:10:56 +00:00
d2481b1461
vault-acme: sleep in lieu of waiting "properly" for DNS propagation
...
Once we've seen the TXT record on any nameserver, assume that it'll reach the
rest of them within 60 seconds.
This is an awful hack because some peculiarities of my setup don't work
properly with the upstream lego code.
2022-03-17 01:03:41 +00:00
b29a330382
ubi_reader: init
2022-03-13 17:32:59 +00:00
c9bd0696ed
heptapod: enable SSH CA
2022-03-13 00:24:57 +00:00
72a647b80f
baserow: disable moto tests which are broken for some reason
2022-03-11 15:53:04 +00:00
e8b2667c01
heptapod-runner: make a separate drv and stop maintaining it as a patchset on top of gitlab-runner
2022-03-11 15:15:30 +00:00
34fa21a171
treewide: fix eval fallout from nixpkgs bump
2022-03-11 14:56:55 +00:00
0c7f785107
vault-agent-acme: tidy up
2022-03-06 23:01:51 +00:00
332d1ca100
nix/docker/vault: update Vault's plugin registry as part of upload
...
It's possible (and likely) that when we update the Vault image that the SHA256
of the plugin will also change.
Automatically update that as the last step of the deploy.
2022-03-06 17:10:58 +00:00
932b47e9e9
vault-acme: init
...
This is a Vault secrets plugin for provisioning SSL certificates using ACME.
2022-03-06 16:52:47 +00:00
6c3ecb4d0b
nix/docker/vault: init
...
This is the Docker image I use for deploying Vault.
2022-03-06 16:51:34 +00:00
75ce92b967
heptapod: update to 0.29.1
2022-03-01 00:00:23 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
4cef54442e
nix/pkgs/plex-pass: update version to 1.25.6.5577-c8bd13540
2022-02-23 02:10:56 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
e14cfe989c
nix/pkgs/plex-pass: update version to 1.25.5.5492-12f6b8c83
2022-02-09 02:10:53 +00:00
cc6fd576e7
nix/docker/heptapod: 0.28.1 -> 0.28.2
2022-02-05 03:24:04 +00:00
40a3588e99
nix/docker/heptapod: 0.27.3 -> 0.28.1
2022-02-04 19:21:08 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
29c0608903
nix/pkgs/plex-pass: update version to 1.25.4.5487-648a8f9f9
2022-02-02 02:11:03 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
79e5483322
nix/pkgs/plex-pass: update version to 1.25.4.5468-989df2310
2022-02-01 02:11:06 +00:00
3ad4c2399a
nix/pkgs/lutris: add more deps
2022-01-23 23:37:19 +00:00
c10d4efd5e
nix/pkgs/deluge: update path for trying empty login first
2022-01-16 15:26:38 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
af848af78c
nix/pkgs/plex-pass: update version to 1.25.3.5409-f11334058
2022-01-14 02:10:48 +00:00
deployer@bvm-nixosmgmt.blade.as205479.net
0917f5eb3e
nix/pkgs/plex-pass: update version to 1.25.3.5385-f05b712b6
2022-01-12 02:10:47 +00:00
47d3c07b8f
nix/pkgs/heptapod-runner: fix
2021-12-25 20:31:34 +00:00
0b8049e5d4
nix/docker/heptapod: 0.27.0 -> 0.27.3
2021-12-22 00:41:19 +00:00
a72cc6dd19
nix/pkgs/baserow: add public key to baserow_premium
2021-12-21 22:12:33 +00:00
92a744ec1f
nix/pkgs: add baserow vs baserow-oss to nix/pkgs
2021-12-21 21:52:16 +00:00
32672f96f6
nix/pkgs/rundeck-bin: 3.4.1-20210715 -> 3.4.9-20211221
2021-12-21 20:00:22 +00:00
68e623d2eb
nix/pkgs/baserow: make it configurably OSS-only
2021-12-21 19:39:11 +00:00
9d983e7831
nix/pkgs/baserow: tie to tag for 1.7.1
2021-12-21 19:23:53 +00:00
93a070870a
nix/pkgs/baserow: hooray, it works
2021-12-21 05:48:40 +00:00
d806f8da1c
baserow: copy missing non-Python directories into sitePackages anyway
2021-12-20 18:08:39 -08:00
c2ca979558
nix/pkgs/baserow: init
2021-12-20 16:18:16 -08:00
2fb7595507
nix/pkgs/baserow: init web-frontend
2021-12-20 13:05:51 -08:00
9f7a675b09
nix/pkgs/heptapod-runner: fix more
2021-12-20 05:56:24 +00:00
7c0d51e9db
nix/pkgs/heptapod-runner: update to 0.4.0, fix patch
2021-12-20 02:47:45 +00:00
deployer@localhost
18ac4b13fd
nix/pkgs/plex-pass: update version to 1.25.2.5319-c43dc0277
2021-12-14 02:15:15 +00:00
deployer@localhost
279a5233f9
nix/pkgs/plex-pass: update version to 1.25.1.5286-34f965be8
2021-12-08 02:11:08 +00:00
deployer@localhost
ec5af85046
nix/pkgs/plex-pass: update version to 1.25.0.5282-2edd3c44d
2021-12-02 02:10:48 +00:00
a1ee1e396c
ops/nixos: alacritty -> kitty
2021-11-28 12:51:40 +00:00
172f12b04d
nix/docker/heptapod: 0.26.0 -> 0.27.0
2021-11-25 18:29:40 +00:00
9cb68e94d3
nix/docker/heptapod: update to 0.26.0
2021-11-25 17:27:52 +00:00
47702fd028
nix/pkgs: init gimp-plugin-vtf
2021-11-25 17:13:33 +00:00
bde764c537
nix/pkgs: pin nightly rust
...
oops.
2021-11-23 12:31:34 +00:00
86e0ce9af9
nix/pkgs/datez: init
2021-11-18 21:33:40 +00:00
5f85aba4b1
nix/docker/heptapod: bump to 0.25.2
2021-11-05 01:30:02 +00:00
deployer@localhost
bdb17c63e3
nix/pkgs/plex-pass: update version to 1.24.5.5173-8dcc73a59
2021-10-28 02:11:00 +00:00
deployer@localhost
2c9f1bfefe
nix/pkgs/plex-pass: update version to 1.24.4.5081-e362dc1ee
2021-10-13 02:10:52 +00:00
6e4d2ed6b0
heptapod: 0.25.0 -> 0.25.1
2021-10-09 01:16:36 +00:00
55c0ceeafe
nix/docker/heptapod: 0.24.0 -> 0.25.0
2021-09-26 21:56:00 +01:00
7800222723
nix/pkgs/mercurial: switch to mercurialFull instead
2021-09-26 21:16:05 +01:00
5d2cc39419
nix/pkgs: add eapol-test
2021-09-25 12:55:06 +00:00
deployer@localhost
8ea060fa0c
nix/pkgs/plex-pass: update version to 1.24.3.5033-757abe6b4
2021-09-21 02:10:56 +00:00
deployer@localhost
1a75721707
nix/pkgs/plex-pass: update version to 1.24.2.4973-2b1b51db9
2021-09-09 02:10:54 +00:00
3f184e6323
nix/gitlab-ci: add separate pipeline steps for Intel/ARM macOS
2021-09-05 09:24:03 +00:00
f7fbfa5436
nix/pkgs: init prometheus-bird-exporter-lfty
2021-08-31 02:01:38 +00:00
31e254192f
heptapod: 0.23.2 -> 0.24.0
2021-08-30 20:52:41 +01:00
deployer@localhost
c440846823
nix/pkgs/plex-pass: update version to 1.24.1.4931-1a38e63c6
2021-08-24 02:10:55 +00:00
05ddad31ad
bvm-netbox: complete setup
2021-08-16 02:09:47 +00:00
bf274bbc00
nix/docker/heptapod: update
2021-08-14 21:54:09 +00:00
deployer@localhost
4c8abb0a9a
nix/pkgs/plex-pass: update version to 1.24.0.4930-ab6e1a058
2021-08-13 02:10:53 +00:00
deployer@localhost
1238334f21
nix/pkgs/plex-pass: update version to 1.23.6.4881-e2e58f321
2021-08-06 02:10:32 +00:00
deployer@localhost
25372154af
nix/pkgs/plex-pass: update version to 1.23.5.4862-0f739d462
2021-07-27 02:10:57 +00:00
a911a1f1be
rundeck-bin: update to 3.4.1
2021-07-24 21:58:12 +01:00
ca2230756b
nix/docker/heptapod: update to 0.22.3
2021-07-16 00:34:55 +00:00
2b9e07816b
nix/pkgs/mercurial: drop pygit2, add hg-git
2021-07-03 10:28:34 +00:00
890ffcd477
heptapod: update to 0.22.1
2021-07-03 01:49:24 +00:00
4ef3d2a8e6
lightspeed-react: fix for new nixpkgs
2021-06-29 23:07:32 +00:00
3e7f505653
heptapod: bump to 0.22.0
2021-06-06 17:48:59 +00:00
21d082543a
heptapod: bump to 0.21.3
2021-05-30 16:27:55 +00:00
fc0468c20f
heptapod: bump to 0.20.7
2021-05-30 14:31:58 +00:00
d874257a28
nix/gitlab-ci: use when: manual and allow_failure: true
2021-05-22 22:58:25 +00:00
bd8cb149bc
nix/pkgs/prometheus-snmp-config: fix hash
2021-05-22 00:51:55 +00:00
bdc009d86b
nix/pkgs/prometheus-snmp-config: update hash
2021-05-22 00:46:14 +00:00
7b38430804
nix/pkgs/crane: update hash???
2021-05-22 00:40:18 +00:00
47542c16e3
django-tailwind: 1.1.0 -> 2.0.1
2021-04-29 12:08:13 +00:00
fd2b47acf9
copybara: pin to jdk11
2021-04-18 13:54:14 +00:00
bc41ac0d88
nix/pkgs/plex-pass: update to 1.22.2.4282-a97b03fad
2021-04-11 03:23:55 +00:00
a2f95ffba2
nix/pkgs/plex-pass: convert to SRI for nix-update
2021-04-11 02:16:12 +00:00
db82683461
nix/pkgs/plex-pass: reorganise to make more nix-update friendly
2021-04-11 02:13:51 +00:00
e088dac620
nix/pkgs/rundeck-bin: fix
2021-04-10 22:25:28 +00:00
e0241545d2
add mercurial to rundeck path
2021-04-10 22:17:28 +00:00
15ed0197e3
rundeck: run as deployer
2021-04-10 21:59:29 +00:00
88e7bd85ed
nix/pkgs/rundeck-bin: change wrapper to name 'rundeckd'
2021-04-10 17:26:42 +00:00
00cb06aff2
bvm-nixosmgmt: add rundeck
2021-04-10 17:20:35 +00:00
9c1c7ec985
nix/pkgs/rundeck-bin: init
2021-04-10 17:05:21 +00:00
a291107f62
nix/gitlab-ci: attempt to do things on Mac Mini
2021-04-09 20:03:51 +00:00
0943931a6a
nix/pkgs: remove pomerium, it's upstream now
2021-04-07 00:41:20 +00:00
13f2f79e6d
graphical-client: add wallpapers
...
If I find more I like, I'll add them here, I guess. For the moment, there's
just the one.
2021-04-06 09:53:56 +01:00
f5622acaf7
nix/pkgs/flameshot: bump to my patched version
2021-04-05 14:57:59 +01:00
e11229d070
nix/pkgs: init my flameshot fork
2021-04-05 12:40:55 +01:00
a598fd0e53
nix/docker/heptapod: can't do that like that :(
2021-04-02 02:08:40 +00:00
09a6c8cafe
marukuru: switch heptapod image to being built with dockerTools
...
Fixes #1
2021-04-02 01:39:01 +00:00
e3b60baa72
Remove Docker push.
...
As part of #4 , I'm removing all of the OpenShift-ness. While I do that, let's keep Twitterchiver as is.
2021-03-30 21:28:43 +01:00
2b8dce0920
depot-wide: overhaul GitLab CI configuration
...
We now use a stub configuration to kick off the pipeline, which is dynamically
generated using Nix config.
2021-03-28 15:27:46 +00:00
017458ae2e
bazel-run: back to Java 11, which is AdoptOpenJDK LTS
2021-03-26 03:52:35 +00:00
7273c31af5
nix/pkgs/pomerium: allow unitless 0
2021-03-14 14:40:54 +00:00
36577c5bba
nix/pkgs/pomerium: add timeouts to policy
2021-03-14 14:38:56 +00:00
a71f4a47f9
nix/pkgs: add prometheus-snmp-config
2021-03-14 00:51:11 +00:00
4649556303
alertmanager-discord: init
2021-02-23 00:16:49 +00:00
0a38f01047
nix/pkgs/plex-pass: update to 1.21.4.4054
2021-02-21 03:18:53 +00:00
d8c29b0113
nix/pkgs: remove stdenv.lib from non-generated code
2021-02-13 13:56:02 +00:00
7558697bba
nix/pkgs/unifi-hack: update
2021-02-07 23:39:46 +00:00
89e37ba633
nix/pkgs: enigma: init
2021-02-07 23:17:51 +00:00
efdf61b4e6
3p/nixpkgs: fix buildBazelPackage
2021-02-07 22:51:09 +00:00
78040f6c94
nix/pkgs: init hp-rom; add to netboot
2021-01-30 18:47:01 +00:00
b6a1403c04
nix/pkgs: add windows ISOs in prep for doing stuff with them for iPXE
2021-01-30 17:15:16 +00:00
ca27848285
web/quotes: add tailwind
2021-01-20 02:04:30 +00:00
c62b596078
nix/pkgs: remove envoy
2021-01-19 03:56:14 +00:00
1d41593ae2
nix/pkgs: add newer version of django-allauth
2021-01-19 03:51:07 +00:00
47c6327b4d
nix/pkgs/copybara: switch to JDK15 after nixpkgs update
2021-01-11 17:44:05 +00:00
1e8eec28b1
nix/pkgs/sheepshaver: ensure STDC_HEADERS is set
2021-01-07 11:48:18 +00:00
0c713bbf64
nix/pkgs/envoy: fix under new nixpkgs
2021-01-07 11:28:45 +00:00
85c2c4d507
unifiHack: init
...
This package takes the upstream Unifi package, and then applies a AspectJ
aspect which replaces the auth logic with stuff which checks whether there's a
Pomerium header.
2021-01-04 20:49:04 +00:00
2d52be000f
tiny-remapper: init
2021-01-04 20:48:20 +00:00
87e7dae108
nix/pkgs/lightspeed-react: add websocketURL parameter
2021-01-04 15:51:00 +00:00
c0245a68ca
lightspeed-react: init
2021-01-04 15:05:55 +00:00
d629a3561c
lightspeed-webrtc: init
2021-01-04 15:05:46 +00:00
294e7731d6
lightspeed-ingest: init
2021-01-04 15:05:32 +00:00
eb9d9f54a5
nix/pkgs/grafana-plugins: rework a bit
2020-12-30 03:30:24 +00:00
ca4f3c0013
nix/pkgs/grafana-plugins: init
2020-12-30 02:43:10 +00:00
26e379dfb7
depot-wide: create logged-out.int.lukegb.com
2020-12-30 00:57:53 +00:00
7d0493cacd
deluge: patch deluge-web to try logging in with a fixed password first
2020-12-28 20:04:27 +00:00
9fc4be6a9c
nix/pkgs/plex-pass: update to 1.21.1.3830
2020-12-28 19:45:14 +00:00
784138746f
pomerium: document all known pomerium options as nixos module options
2020-12-28 18:54:00 +00:00
8956bc3207
pomerium: use /var/lib/pomerium for autocert state
2020-12-28 17:12:06 +00:00
8ed1d0665e
pomerium: unbreak LuaJIT
2020-12-28 17:04:31 +00:00
41bdeda58a
pomerium: various fixups to make this work
2020-12-28 15:27:18 +00:00
10c6ddc4c9
etheroute-lon01: install pomerium
2020-12-28 14:08:24 +00:00
f8031ab38c
nix/pkgs/pomerium: move to separate folder
2020-12-28 12:20:51 +00:00
d4b439c523
nix/pkgs/pomerium: move envoy zip appending to postFixup phase
...
This ensures that we don't immediately remove it (because strip will otherwise
just strip it because it's trailing content).
2020-12-27 19:49:02 +00:00
a991f3dca9
nix/pkgs: init pomerium
2020-12-27 19:24:22 +00:00
483786f792
nix/pkgs: init envoy
2020-12-27 18:58:58 +00:00
f6428191cf
nix/pkgs/javaws-env: patch JRE to enable RC4/SSLv3
2020-12-26 23:36:15 +00:00
dd27953d33
nix/pkgs: add intermec-cups-driver
2020-12-19 19:25:42 +00:00
8db16c9c60
erbium: fix derivation
2020-11-30 23:39:21 +00:00
8ff8546339
erbium: switch to using crate2nix from upstream
2020-11-30 19:41:39 +00:00
185ef2a819
plex-pass: update to debian, 1.21.0.3616
2020-11-30 19:34:08 +00:00
6d10a1cb0c
nix/pkgs: init sheepshaver
2020-11-15 21:23:53 +00:00
d6f36cf247
nix/pkgs/erbium: sigh
2020-11-06 05:08:47 +00:00
fb6544f158
nix/pkgs: init python-emv at 1.0.9
2020-11-05 00:44:17 +00:00
46896bc2ed
nix/pkgs/erbium: update deps hash
2020-11-04 18:59:36 +00:00
1c1152c874
erbium: update depsHash
2020-11-01 21:45:24 +00:00
75aef1e3ca
nix/pkgs: add erbium
2020-11-01 21:22:52 +00:00
7b80b817dd
copybara: depend on jdk14_headless instead of 'headful' jre
2020-10-18 13:26:29 +00:00
d0e40e4a6b
nix/pkgs: add crane
2020-10-04 02:33:44 +01:00
225dfdc114
misc: fix up reuse lint
2020-10-04 01:08:07 +01:00
7b53535355
misc: fix up after nixpkgs update
2020-09-30 17:39:34 +00:00
9f90e567f2
nix/pkgs: update plex-pass
2020-09-04 16:54:53 +00:00
6b2df5840e
nix/pkgs/copybara: update for new nixpkgs
2020-07-19 18:11:09 +01:00
218815e877
nix/pkgs: remove oven-media-engine
...
It's upstream now.
2020-07-19 17:57:33 +01:00
60f322d4a6
oven-media-engine: init at 0.10.4
2020-07-12 10:51:57 +00:00
f3d1fee59d
nix/pkgs: add bazel-run userenv
2020-06-16 09:39:54 +01:00
48011ebba9
licensing: Apache-2.0, make almost reuse-lint clean
2020-06-07 15:03:12 +01:00
15c82b0498
local repo fixups after bump of nixpkgs
2020-06-06 13:12:39 +01:00
7100a39ee3
nix/pkgs/plexpass: update to 1.19.4.2902
2020-06-06 00:37:51 +00:00
abbbc2c216
hg-git: add 0.9.0a1 for py3, and use that
2020-05-17 03:23:54 +01:00
d796fe1dfd
nix/pkgs: fix up copybara/secretsync for new nixpkgs
2020-05-16 19:20:59 +01:00
9b64e2c361
nix/pkgs/copybara: create
2020-05-16 16:37:45 +01:00
823eab4775
secretsync: escape $ in variable content
...
GitLab doesn't treat $ as literals in file content, which means that it
tries to do variable interpolation.
This is bad and annoying, because e.g. password hashes tend to contain $,
so they get variable-interpolated and thus corrupted.
Fix this by escaping $ on input to GitLab.
2020-05-10 12:11:26 +01:00
91d742c1cd
gitlab-ci: try and get deploys works
2020-05-09 23:49:32 +01:00
a9cb53fa16
secretsync: add concept of manifest variable
...
This is a file-type variable which contains the original mapping of
VARIABLE_NAME to VARIABLE_DATA.
This can be used to automatically repopulate a repository with
secrets that were originally taken from it and transmitted via
GitLab variables (i.e. out-of-band).
2020-05-09 14:26:54 +01:00
ed8c77a9c6
heptapod-runner: make sure our wrapped Mercurial is on the PATH
2020-05-09 13:22:49 +01:00
6266b42b66
secretsync: add
...
This is a helper utility for syncing filesystem files into GitLab variables, for
deploy-time secrets.
2020-05-09 12:45:13 +01:00
5b96c181b2
heptapod-runner: add derivation
2020-05-09 01:10:49 +01:00
25956f7607
clouvider-fra01: add Plex Pass media server.
2020-05-06 10:02:00 +01:00
79c7b70a96
porcorosso: add javaws bin that drops into a FHS env.
...
This allows me to use Supermicro's BMC, which appears to drop a
stunnel binary into /tmp and then execute it, which doesn't work
properly in Nix because nothing is where it is expected to be.
2020-05-06 10:01:46 +01:00