Commit Graph

150 Commits (9955194ea6affed6d62f416e499d0fa7f88f467b)

Author SHA1 Message Date
Louis Pearson 16fdef77d8 feat: add /zroot/media 2024-01-09 17:06:27 -07:00
LeRoyce Pearson 362b227202 fix: put connect_via_tailscale matcher inside block 2024-01-09 16:40:25 -07:00
LeRoyce Pearson f224052eca refactor: use ip filtering instead of address binding 2024-01-09 16:36:16 -07:00
Louis Pearson fecaee1a83 fix: make network interfaces required by caddy with bindsto 2024-01-09 15:45:29 -07:00
LeRoyce Pearson 5c7672e67f fix: `caddy.service.service` -> `caddy.service` 2024-01-09 15:25:49 -07:00
Louis Pearson 7c9f92d7ee feat: import zroot on boot 2024-01-09 15:21:20 -07:00
LeRoyce Pearson fb7fd99294 feat: remove nextcloud from zroot
This should _hopefully_ remove the race condition between `zfs-mount`
and `nextcloud`, meaning `zroot` will get automatically mounted.
2024-01-09 14:35:10 -07:00
LeRoyce Pearson f7ed9dacd1 fix: typo: use all lowercase for "requires" and "after" 2024-01-09 14:32:05 -07:00
LeRoyce Pearson 4eb27ecea6 fix: add missing semicolon 2024-01-09 14:30:14 -07:00
LeRoyce Pearson 00d4f16122 fix: caddy: wait for tailscale0 before starting 2024-01-09 14:26:28 -07:00
Louis Pearson 912d4a353c feat: give each *arr it's own subdomain 2024-01-09 13:06:40 -07:00
LeRoyce Pearson cacf5d39ab feat: cockpit: add zfs-manager plugin 2024-01-09 12:52:27 -07:00
Louis Pearson dd23078aae fix: simplify arr configuration 2024-01-09 12:42:05 -07:00
LeRoyce Pearson 84be02a122 feat: cockpit: add cockpit-tailscale plugin 2024-01-09 12:23:56 -07:00
Louis Pearson 77d3ea5593 fix: use real path to static files 2024-01-09 03:03:46 -07:00
Louis Pearson 91948a75f9 feat: add static resources for *arr servers 2024-01-09 02:56:06 -07:00
Louis Pearson 62a1d699f4 feat: expose *arr servers on tailnet 2024-01-09 02:43:17 -07:00
Louis Pearson 5558a958db feat: add the *arrs 2024-01-09 02:38:09 -07:00
Louis Pearson dea3419777 fix: aria caddy configuration, don't download to zfs 2024-01-08 22:46:14 -07:00
Louis Pearson 9331b7b809 fix: ariang: handle_path for jsonrpc 2024-01-08 22:00:13 -07:00
Louis Pearson a0f4b191fa fix: ariang: use handle instead of setting file_server root 2024-01-08 21:55:21 -07:00
Louis Pearson 18af100e0c fix: set root on file_server 2024-01-08 21:45:50 -07:00
Louis Pearson 923835a684 fix: ariang path routing 2024-01-08 21:39:58 -07:00
Louis Pearson 1153c3ecd9 fix: redirect loop 2024-01-08 21:37:01 -07:00
Louis Pearson f72d1e8d9c feat: reverse proxy aria, redirect base aria url to query setting 2024-01-08 21:31:41 -07:00
Louis Pearson 63e7d1fa81 fix: prevent matcher error for aria root 2024-01-08 21:09:19 -07:00
Louis Pearson af03f19638 feat: remove deluge, add aria 2024-01-08 21:05:21 -07:00
Louis Pearson 2e1aff7b4f fix: make deluge config declarative, add auth file 2024-01-08 00:32:32 -07:00
Louis Pearson 859c4a1648 feat: add deluge 2024-01-08 00:16:42 -07:00
Louis Pearson bc1a3dad08 feat: add kavita 2024-01-08 00:15:31 -07:00
LeRoyce Pearson af899a7176 feat: add dex SSO service 2024-01-08 00:07:34 -07:00
LeRoyce Pearson 2086636237 feat: add secrets/DEX_ENVIRONMENT_FILE.age for dex 2024-01-07 23:54:17 -07:00
LeRoyce Pearson 920517510e refactor: change baseDN to `samsehu.perli.casa` 2024-01-07 16:27:45 -07:00
Louis Pearson e7109a915c fix: use correct appid for Gpodder Sync 2024-01-07 15:44:24 -07:00
Louis Pearson 4f68122655 feat: add Gpodder Sync to nextcloud 2024-01-07 15:39:41 -07:00
Louis Pearson 7386bb969a feat: add otherGroups to glauth example users 2024-01-07 14:40:23 -07:00
Louis Pearson 5026d3a12c fix: glauth: dn->dc, add example users to config 2024-01-07 14:32:59 -07:00
Louis Pearson daa8de96bb feat: expose glauth api to tailnet 2024-01-07 14:08:19 -07:00
Louis Pearson 320e3e8673 feat: add glauth 2024-01-07 13:43:00 -07:00
LeRoyce Pearson cb2909cf9c fix: DNS: add some subdomains to tailscale DNS 2024-01-07 09:40:42 -07:00
LeRoyce Pearson bd2147b258 nextcloud: remove postgres configuration 2024-01-07 09:21:58 -07:00
LeRoyce Pearson 97af0dfd02 fix: dns: use NAT ip for general DNS, override A record in headscale 2024-01-07 09:18:30 -07:00
Louis Pearson 3fa9d96d42 fix: dbType -> dbtype 2024-01-07 01:32:26 -07:00
Louis Pearson aa92f6afaa fix: autoupdateapps 2024-01-07 01:30:57 -07:00
Louis Pearson 719c7d9149 Use postgres instead of sqlite 2024-01-07 01:27:54 -07:00
LeRoyce Pearson 6166d5d019 feat: nextcloud: enable caching with apcu 2024-01-07 01:20:10 -07:00
Louis Pearson be61652641 fix: remove onlyoffice 2024-01-07 01:13:23 -07:00
Louis Pearson 68f49492c6 feat: add onlyoffice to extraApps 2024-01-07 00:57:10 -07:00
LeRoyce Pearson 9b6be1ebd6 feat: nextcloud: add tailscale ip as a trusted proxy 2024-01-06 23:59:48 -07:00
LeRoyce Pearson e580eeb25e feat: add forgejo to list of allowed ssh users 2024-01-06 23:42:26 -07:00
LeRoyce Pearson 7245d96672 feat: nextcloud: redir carddav and caldav urls 2024-01-06 23:41:24 -07:00
LeRoyce Pearson 8a4cb72f95 try adding file_server directive to nextcloud reverse proxy 2024-01-06 23:29:03 -07:00
LeRoyce Pearson abad306538 fix: remove header_up Host
The template wasn't working, removing the fixes it.
2024-01-06 22:24:47 -07:00
LeRoyce Pearson 0eb7ee1dbd change trusted proxy address to loopback address 2024-01-06 22:15:08 -07:00
LeRoyce Pearson 01bad7312d remove seafile service 2024-01-06 21:38:21 -07:00
Louis Pearson 1af93b01fc fix: add trusted proxy 2024-01-06 21:37:55 -07:00
Louis Pearson f567578946 fix: upstream_hostport -> upstream.hostport 2024-01-06 21:28:57 -07:00
Louis Pearson d882da8ee8 chore: remove debug logging from caddy/phpfpm 2024-01-06 21:22:34 -07:00
Louis Pearson c875fa2254 feat: use correct root for nextcloud 2024-01-06 21:16:36 -07:00
LeRoyce Pearson d838aa7384 feat: enable seafile service 2024-01-06 20:18:18 -07:00
Louis Pearson 5e38b310bc feat: add debug directive to caddy 2024-01-06 20:13:35 -07:00
Louis Pearson 51bd059485 feat: increase phpfpm log level 2024-01-06 19:56:59 -07:00
Louis Pearson cd1db41963 feat: replace host in nextcloud http headers 2024-01-06 19:36:38 -07:00
LeRoyce Pearson 808d47b0f1 fix: don't bind to wildcard ipv6 address 2024-01-06 19:31:23 -07:00
LeRoyce Pearson 0f09208680 fix: some services were not binding correctly
Some of them still aren't. I've also disabled http/3 because there seems
to be a bug in the QUIC implementation.
2024-01-06 19:19:08 -07:00
Louis Pearson c102645202 fix: use reverse_proxy for nextcloud 2024-01-06 18:05:51 -07:00
Louis Pearson 9c7c4d0220 fix: change nextcloud hostname 2024-01-06 17:49:51 -07:00
Louis Pearson b5c36c6b2d feat: add nextcloud subdomain to blockydns 2024-01-06 17:33:27 -07:00
LeRoyce Pearson a8b9f4b593 feat: blocky: add domain rewrite for forgejo domain 2024-01-06 17:31:29 -07:00
Louis Pearson b968abd805 fix: caddy: use php_fastcgi instead of reverse_proxy for nextcloud 2024-01-06 17:24:21 -07:00
Louis Pearson 78a926be38 fix: remove slash from caddy nextcloud config 2024-01-06 17:17:57 -07:00
Louis Pearson 8e82f4c332 fix: remove https enable in nextcloud 2024-01-06 17:08:19 -07:00
LeRoyce Pearson 9bbd6514ff feat: restrict samsehu.perli.casa DNS queries to magicDNS 2024-01-06 16:51:56 -07:00
LeRoyce Pearson deffbdf8f5 fix: use ts.samsehu.perli.casa for tailnet domains 2024-01-06 16:41:47 -07:00
Louis Pearson 71dee4ccb5 fix: get nextcloud building on dev machine 2024-01-06 16:33:44 -07:00
Louis Pearson 9a20745da6 fix: remove database.createLocally 2024-01-06 16:18:05 -07:00
Louis Pearson 5ec51dbfdb fix: remove unneeded nextcloud conf 2024-01-06 16:15:32 -07:00
LeRoyce Pearson 4ad5130303 feat: set EDITOR environment variable 2024-01-06 16:11:50 -07:00
LeRoyce Pearson 9c1db356b7 Configure base domain for dnsd 2024-01-06 16:02:46 -07:00
Louis Pearson 61c7fbbfe9 fix: nextcloud config 2024-01-06 15:54:49 -07:00
Louis Pearson 66f08c8bbd feat: add nextcloud 2024-01-06 15:45:15 -07:00
LeRoyce Pearson 254f2db23d more stuff 2024-01-06 14:43:02 -07:00
Louis Pearson 6a3d080566 feat: add ZFS 2024-01-06 14:41:24 -07:00
LeRoyce Pearson 6a465666ee no time to explain, lots of changes 2024-01-06 12:30:05 -07:00
LeRoyce Pearson 1d220920e0 feat(headscale): enable magic DNS 2024-01-01 01:57:51 -07:00
LeRoyce Pearson 292ba5e4be fix: add git as a system package and use `git+http` scheme 2023-12-31 22:38:08 -07:00
LeRoyce Pearson 31b1594d67 fix: add http schema to flake uri 2023-12-31 22:34:41 -07:00
LeRoyce Pearson 2b5a0f18d9 fix: use flake for autoUpgrade instead of /etc/nixos 2023-12-31 22:32:44 -07:00
LeRoyce Pearson 5ff437e58c security: disable root login and logging in with passwords 2023-12-31 22:27:25 -07:00
LeRoyce Pearson 5763692afd fix: create lldap user and group to ensure that it can access secrets 2023-12-31 18:27:23 -07:00
LeRoyce Pearson f307e79d38 feat: open mDNS UDP port 2023-12-30 22:14:03 -07:00
LeRoyce Pearson cd4c98a4a8 sec: put lldap default admin password in agenix and update it 2023-12-30 19:39:57 -07:00
LeRoyce Pearson f4029e6197 feat: reverse proxy all services via caddy 2023-12-30 19:14:02 -07:00
LeRoyce Pearson 0e00e52391 refactor: remove DNS-01 ACME challenge and related secrets 2023-12-30 12:04:36 -07:00
LeRoyce Pearson 7073225e85 feat: ddns and caddy server 2023-12-30 12:00:30 -07:00
LeRoyce Pearson da55c99dc9 feat: add `geemili` user as a trusted nix user
This allows me to push configuration updates to the samsehu host
2023-12-29 22:10:30 -07:00
LeRoyce Pearson 7162630e2f fix: some typos 2023-12-29 22:10:20 -07:00
LeRoyce Pearson fcdd6defbc feat: ACME cert service through DNS-01 challenge 2023-12-29 21:20:53 -07:00
LeRoyce Pearson d7172a69ed feat: mdns name resolution 2023-12-29 19:50:55 -07:00
Louis Pearson 68a6046667 feat: initial commit adding existing configuration 2023-12-29 14:42:11 -07:00