colin/nix-files
1
0
Fork 1
Code Issues Pull Requests Projects Releases Wiki Activity
6,059 Commits 125 Branches 1 Tag 13 MiB
889b332ade
Commit Graph

10 Commits

Author SHA1 Message Date
Colin
733efcfaf7 servo: nginx: forceSSL for anything media related 2024-04-17 22:49:24 +00:00
Colin
c6ebcfe66e servo: port legacy /var/lib users over to "method = bind" persistence 
i may wittle these down in the future
 2024-02-23 15:49:54 +00:00
Colin
28d4a4b065 persistence: move stores behind a byStore attr to support disabling persistence altogether (for e.g. rescue image) 2023-11-08 15:33:15 +00:00
Colin
0a519eddb4 persist: allow persisting of individual files, not just directories 
i actually do already, with ~/.ssh/id_ed25519 -- it works only as a fluke
 2023-07-08 01:31:14 +00:00
Colin
4fd4efa22f DNS: split the zone generation out of trust-dns 
this is in preparation for upstreaming parts of this into nixpkgs
 2023-06-08 00:32:28 +00:00
Colin
287817056f refactor: sane.services.wan-ports -> sane.ports 2023-05-31 04:25:39 +00:00
Colin
c1ddddddc0 ports: hide behind services.sane.wan-ports 
later i will use this to enable UPnP on relevant ports
 2023-05-26 23:28:30 +00:00
Colin
8db4498ae8 jellyfin: enable port forwarding and DLNA debugging 2023-03-31 12:42:31 +00:00
Colin
f89837f3aa servo: re-enable jellyfin 2023-03-16 09:11:26 +00:00
colin
d13bcc49ab refactor hosts directory, and move ssh keys out of modules/data 
longer-term, i want hosts/by-name to define host-specific data
that's accessible via the other hosts (things like pubkeys).

also the secrets management needs some rethinking. there's really not
much point in me specifiying where *exactly* a secret comes from at its
use site. i should really be specifying secret store manifests; i.e.
"servo.yaml contains secrets X Y and Z", and leaving the rest up to
auto-computing.
 2023-01-19 23:23:43 +00:00