Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge pull request 'Upgrade crytptpad to 2024.9.0' (#35) from ↵ | Jill | 2024-10-04 | 3 | -6/+6 |
|\ | | | | | | | | | | | | | KokaKiwi/nixcfg:crytptpad-upgrade-2024.9.0 into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/nixcfg/pulls/35 Reviewed-by: maximilien <me@mricher.fr> | ||||
| * | cluster(prod): Upgrade crytptpad to 2024.9.0 | KokaKiwi | 2024-10-02 | 2 | -4/+4 |
| | | | | | | | | Signed-off-by: KokaKiwi <kokakiwi+deuxfleurs@kokakiwi.net> | ||||
| * | cluster(prod): cryptpad, update pinned sources | KokaKiwi | 2024-10-02 | 1 | -2/+2 |
| | | | | | | | | Signed-off-by: KokaKiwi <kokakiwi+deuxfleurs@kokakiwi.net> | ||||
* | | woodpecker: update to 2.7.1 | Baptiste Jonglez | 2024-10-03 | 1 | -1/+1 |
| | | |||||
* | | woodpecker: make sure grpc proxy gets up-to-date IP address of backend | Baptiste Jonglez | 2024-10-03 | 1 | -0/+1 |
| | | |||||
* | | Add SSH host key for pamplemousse | Baptiste Jonglez | 2024-10-03 | 1 | -0/+1 |
| | | |||||
* | | Update bespin endpoints | Baptiste Jonglez | 2024-10-03 | 1 | -3/+3 |
|/ | |||||
* | modif de Synapse parce que ça buguait + update Matrix syncv3 to v0.99.16 | ADRN | 2024-09-26 | 4 | -8/+43 |
| | |||||
* | update Synapse to v1.104.0 & Riot to v1.11.78 | ADRN | 2024-09-26 | 5 | -14/+34 |
| | |||||
* | finalize jitsi | Quentin Dufour | 2024-09-20 | 3 | -1/+18 |
| | |||||
* | fix listen videobridge management | Quentin Dufour | 2024-09-20 | 1 | -1/+1 |
| | |||||
* | activate management in jitsi | Quentin Dufour | 2024-09-20 | 2 | -2/+4 |
| | |||||
* | Merge pull request 'Upgrade jitsi build recipes to 9646' (#34) from ↵ | Quentin | 2024-09-12 | 9 | -24/+29 |
|\ | | | | | | | | | | | 2024-09-12-update-jitsi into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/nixcfg/pulls/34 | ||||
| * | ready to deploy jitsi | Quentin Dufour | 2024-09-12 | 6 | -12/+15 |
| | | |||||
| * | add NODE_MAJOR_VERSION as argument of jitsi-meet container instead of hard-coded2024-09-12-update-jitsi | ADRN | 2024-09-12 | 2 | -1/+3 |
| | | |||||
| * | upgrade jitsi build recipes | Quentin Dufour | 2024-09-12 | 3 | -12/+12 |
|/ | |||||
* | remove notice message | ADRN | 2024-09-12 | 1 | -1/+1 |
| | |||||
* | update woodpecker to 2.7.0 | Alex Auvolat | 2024-08-25 | 1 | -1/+1 |
| | |||||
* | Merge pull request 'Upgrade crytptpad to 2024.6.1' (#32) from ↵ | Jill | 2024-08-01 | 3 | -8/+8 |
|\ | | | | | | | | | | | KokaKiwi/nixcfg:crytptpad-upgrade-2024.6.1 into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/nixcfg/pulls/32 | ||||
| * | cluster(prod): cryptpad, update pinned sources | KokaKiwi | 2024-07-28 | 1 | -2/+2 |
| | | |||||
| * | cluster(prod): Upgrade crytptpad to 2024.6.1 | KokaKiwi | 2024-07-28 | 2 | -6/+6 |
|/ | |||||
* | Merge pull request 'Update CryptPad to 2024.6.0' (#31) from ↵ | Jill | 2024-07-22 | 5 | -8/+30 |
|\ | | | | | | | | | | | KokaKiwi/nixcfg:crytptpad-upgrade-2024.6.0 into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/nixcfg/pulls/31 | ||||
| * | cluster(prod/app/cryptpad): Update CryptPad to 2024.6.0 | KokaKiwi | 2024-07-02 | 4 | -5/+27 |
| | | |||||
| * | cluster(prod/app/cryptpad): Update pinned channel from nixos-23.11 to ↵ | KokaKiwi | 2024-07-02 | 1 | -3/+3 |
| | | | | | | | | nixos-24.05 | ||||
* | | Temporary access to pamplemousse | Baptiste Jonglez | 2024-07-14 | 1 | -1/+1 |
| | | |||||
* | | prod: Add new node pamplemousse | Baptiste Jonglez | 2024-07-14 | 6 | -0/+33 |
| | | |||||
* | | Revert "staging: enable IPv4 diplonat (UPnP) for corrin site" | Baptiste Jonglez | 2024-07-14 | 1 | -1/+1 |
| | | | | | | | | | | | | | | This reverts commit 22dba1f35cab74f6ecdc20d30eca4ee295810e8f. This site is now also a production site, so from now on UPnP will only be configured from the production cluster. | ||||
* | | Revert "openssh: Temporary patch for CVE-2024-6387 mitigation" | Baptiste Jonglez | 2024-07-14 | 1 | -17/+0 |
| | | | | | | | | This reverts commit b89b625f46003e0a018eaede1a6923c93b423755. | ||||
* | | intervention Jitsi | ADRN | 2024-07-02 | 2 | -3/+9 |
|/ | |||||
* | Merge pull request 'openssh: Temporary patch for CVE-2024-6387 mitigation' ↵ | Jill | 2024-07-02 | 1 | -0/+17 |
|\ | | | | | | | | | | | (#30) from KokaKiwi/nixcfg:openssh-mitigation into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/nixcfg/pulls/30 | ||||
| * | openssh: Temporary patch for CVE-2024-6387 mitigation | KokaKiwi | 2024-07-01 | 1 | -0/+17 |
| | | |||||
* | | Merge pull request 'dathomir: Updates' (#29) from ↵ | Jill | 2024-07-02 | 18 | -21/+40 |
|\ \ | |/ |/| | | | | | | | | | KokaKiwi/nixcfg:dathomir-update into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/nixcfg/pulls/29 Reviewed-by: maximilien <me@mricher.fr> | ||||
| * | cluster(staging): Rename jupiter site to dathomir | KokaKiwi | 2024-06-27 | 13 | -21/+17 |
| | | |||||
| * | cluster(prod): Add new ortie node | KokaKiwi | 2024-06-27 | 5 | -0/+23 |
|/ | |||||
* | update guichet | Quentin Dufour | 2024-06-24 | 1 | -1/+1 |
| | |||||
* | staging: move bottin and guichet to docker, sync with prod config | Baptiste Jonglez | 2024-06-23 | 9 | -161/+198 |
| | |||||
* | cluster(prod/cryptpad): Update cryptpad image on Nomad cluster | KokaKiwi | 2024-06-23 | 1 | -1/+1 |
| | |||||
* | staging: Passage garage en mode docker | Baptiste Jonglez | 2024-06-23 | 1 | -23/+25 |
| | |||||
* | Merge pull request 'Upgrade cryptpad from 2024.3.0 to 2024.3.1' (#27) from ↵ | baptiste | 2024-06-23 | 8 | -6231/+106 |
|\ | | | | | | | | | | | | | KokaKiwi/nixcfg:update-cryptpad-2024.3.1 into main Reviewed-on: https://git.deuxfleurs.fr/Deuxfleurs/nixcfg/pulls/27 Reviewed-by: maximilien <me@mricher.fr> | ||||
| * | cluster/prod(app): Upgrade cryptpad from 2024.3.0 to 2024.3.1 | KokaKiwi | 2024-05-23 | 2 | -6009/+9 |
| | | |||||
| * | cluster/prod(app): Migrate from niv to npins for pinned sources for cryptpad | KokaKiwi | 2024-05-23 | 6 | -222/+97 |
| | | |||||
* | | prod: garage: Enable on-demand-tls check for *.garage S3 endpoint | Baptiste Jonglez | 2024-06-08 | 1 | -0/+1 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | We were hitting Let's Encrypt rate limits because we were generating thousands of non-sense certificates like "foo.bar.baz.garage.deuxfleurs.fr" See https://crt.sh Subdomains of garage.deuxfleurs.fr only make sense when accessing buckets through S3 with vhost-style, so let's enable the on-demand-tls check to make sure that the bucket exists in Garage. In the long term, we might want to have a wildcard certificate for this usage, or simply stop supporting vhost-style S3 access. | ||||
* | | garage: harmonize staging and prod (checks, services) | Baptiste Jonglez | 2024-06-08 | 2 | -71/+104 |
| | | |||||
* | | staging: garage: Handle *.garage.staging for vhost-style S3 and add ↵ | Baptiste Jonglez | 2024-06-08 | 2 | -0/+9 |
| | | | | | | | | on-demand TLS checks | ||||
* | | staging: Upgrade tricot for on-demand TLS checks | Baptiste Jonglez | 2024-06-08 | 1 | -1/+1 |
| | | |||||
* | | Disable DHCPv6 and DHCPv6-PD in all cases | Baptiste Jonglez | 2024-06-02 | 1 | -0/+7 |
| | | |||||
* | | Add common terminfo for more terminal support | Baptiste Jonglez | 2024-06-02 | 1 | -0/+3 |
| | | |||||
* | | Fix nixos deprecation warning | Baptiste Jonglez | 2024-06-02 | 1 | -1/+1 |
| | | |||||
* | | Add small script to gather system information from machines | Baptiste Jonglez | 2024-05-31 | 1 | -0/+6 |
| | | |||||
* | | sshtool: improve usage message | Baptiste Jonglez | 2024-05-31 | 1 | -1/+1 |
| | |