|
16ca71188f
|
users/services: simplify the before/after/wantedBy criteria, to match s6 concepts
|
2024-03-21 17:16:11 +00:00 |
|
|
d2f6648bce
|
users/services: refactor: replace ExecStart/ExecStopPost with command/cleanupCommand
note that this completely breaks the systemd backend (though easily fixable if wanted)
|
2024-03-21 17:16:11 +00:00 |
|
|
9b793ef4b8
|
programs: services: no need to fully-qualify paths anymore (s6 doesn't require)
|
2024-03-21 17:16:11 +00:00 |
|
|
1417497001
|
users/services: remove serviceConfig.Type option
|
2024-03-21 17:16:11 +00:00 |
|
|
9afd9725d1
|
users: services: remove no-longer-needed Restart and RestartSec options
|
2024-03-21 17:16:11 +00:00 |
|
|
291e704477
|
programs: replace systemd-specific 'environment' option with generic 'env'
note, these services no longer work with systemd, because systemd expects absolute paths
|
2024-03-21 17:16:11 +00:00 |
|
|
0335b89a12
|
fractal: stop persisting old directories
|
2024-03-21 17:16:01 +00:00 |
|
|
40e30cf2f8
|
programs: make sandbox.wrapperType default to "wrappedDerivation" and remove everywhere i manually set that
|
2024-02-28 17:39:00 +00:00 |
|
|
67536e3c1f
|
programs: assorted: correct sandbox paths now that Pictures/Videos/Books are categorized
i don't like this Pictures/ approach though. i may reconsolidate some of those
|
2024-02-27 21:37:20 +00:00 |
|
|
da1053d635
|
programs: configure auto-launching programs to only start *after* graphical-session.target
this ensures they really have their environment
|
2024-02-19 12:58:08 +00:00 |
|
|
5cda3b2805
|
programs: firefox/fractal: document portal filechooser limitations
|
2024-02-16 05:49:56 +00:00 |
|
|
b2fcf6fdfd
|
programs: messengers (fractal, signal, dino, tuba): add media libraries to the sandbox
|
2024-02-15 00:49:24 +00:00 |
|
|
080bd856ec
|
programs: sandboxing: only permit wayland socket access to those specific apps which require it
|
2024-02-14 01:49:49 +00:00 |
|
|
1a18ed533b
|
programs: don't include dbus in the sandbox by default
|
2024-02-13 11:58:33 +00:00 |
|
|
6eaaeeb91a
|
programs: remove audio from the sandbox by default
|
2024-02-13 11:14:38 +00:00 |
|
|
c9af5bf9b4
|
programs: sandboxing: enable net isolation for most sandboxed programs
|
2024-02-08 21:51:32 +00:00 |
|
|
86b23e8183
|
programs: fractal: enable DRI in sandbox
|
2024-02-02 17:19:35 +00:00 |
|
|
6151eee8d5
|
programs (assorted): fix wantedBy = "default.target" to be more specific
now GUI apps aren't stuck in a restart loop until sway starts
in particular, signal-desktop can actually be autostarted
|
2024-02-02 14:21:57 +00:00 |
|
|
db6ba61429
|
programs: sandbox more apps with wrapperType=wrappedDerivation
|
2024-01-29 13:45:57 +00:00 |
|
|
da537ea8ea
|
fractal: switch from firejail -> bwrap
|
2024-01-23 14:13:09 +00:00 |
|
|
2d06b93118
|
fractal: sandbox with firejail
TODO: seems this broke link opening? (xdg-open?)
|
2024-01-22 09:28:50 +00:00 |
|
|
59187a0ec0
|
programs: allow running binaries in a netns-style firejail
|
2024-01-20 11:11:12 +00:00 |
|
|
366a9cea0d
|
fractal: ship optimized build
|
2023-12-07 16:39:36 +00:00 |
|
|
1d38aa62de
|
fractal: persist the new(est) state dir
hope it stops moving around soon lol
|
2023-11-25 08:57:50 +00:00 |
|
|
28d4a4b065
|
persistence: move stores behind a byStore attr to support disabling persistence altogether (for e.g. rescue image)
|
2023-11-08 15:33:15 +00:00 |
|
|
e7768572e5
|
fractal: update docs for fixing broken cache
|
2023-10-22 23:21:35 +00:00 |
|
|
f58bfb3c42
|
fractal: document a state corruption bug/fix
|
2023-10-18 22:16:28 +00:00 |
|
|
2de6c01262
|
fractal: launch on boot
|
2023-10-02 06:12:24 +00:00 |
|
|
cc16fe85b0
|
fractal: ship the nixified build by default
|
2023-10-02 03:20:55 +00:00 |
|
|
d3818b5e44
|
fractal: enable, and persist the right directories
|
2023-09-29 22:08:13 +00:00 |
|
|
8a126d0a64
|
programs: explicitly declare dependencies on gnome-keyring
|
2023-08-02 07:40:57 +00:00 |
|
|
6e523e7162
|
fractal: fix fractal-latest, and persist data directory
|
2023-08-02 06:24:00 +00:00 |
|
|
d39b698066
|
sane.programs.fractal: split to separate file
|
2023-07-30 01:42:58 +00:00 |
|