0846abb6bf
signald: update, and persist the /var/lib/signald accounts directory
2023-01-25 06:38:27 +00:00
f3568462c2
fix matrix-synapse after nixpkgs update
2023-01-25 03:46:05 +00:00
f2d22231a3
freshrss: force sync feeds on every launch. requires to login as user "colin"
2023-01-21 03:50:27 +00:00
4da19a6d34
servo: remove users.nix; move autologinUser -> default.nix
2023-01-20 22:16:47 +00:00
2f75925678
servo: lift pleroma user def out of toplevel -> pleroma.nix
2023-01-20 22:15:26 +00:00
55a1856e87
servo: lift git user def out of toplevel -> gitea.nix
2023-01-20 22:14:14 +00:00
2ee0f4efe2
servo: navidrome: give non-private dir and fix perms
2023-01-20 22:11:15 +00:00
f4f0c1bdd6
servo: fix broken config/typo
2023-01-20 07:45:54 +00:00
6a2374e046
wg-home: unify server and client config
2023-01-20 07:42:31 +00:00
094b7223c7
servo: wireguard secret is auto-generated
2023-01-20 07:11:37 +00:00
df848b3262
wg-home: use separate host key than client key
2023-01-20 05:10:51 +00:00
038a9034d7
hosts: remove the is-target attribute and opt into roles via the config system instead
2023-01-20 00:13:13 +00:00
5a232eb832
servo: fix secrets path
2023-01-19 23:57:40 +00:00
9301b95dbb
wg-home: move to shared module so that host and client config can be adjacent
2023-01-19 23:55:56 +00:00
d13bcc49ab
refactor hosts directory, and move ssh keys out of modules/data
...
longer-term, i want hosts/by-name to define host-specific data
that's accessible via the other hosts (things like pubkeys).
also the secrets management needs some rethinking. there's really not
much point in me specifiying where *exactly* a secret comes from at its
use site. i should really be specifying secret store manifests; i.e.
"servo.yaml contains secrets X Y and Z", and leaving the rest up to
auto-computing.
2023-01-19 23:23:43 +00:00
