about summary refs log tree commit diff
Commit message (Collapse)AuthorAgeFilesLines
...
| * initial site with hugoFranck Cuny2021-03-0711-0/+180
| | | | | | | | | Start my website from scratch once more, using hugo to generate it. For now the layout is pretty simple: - an index page that will list future notes - notes should be created under the "content" directory The theme is custom and I'll try to keep this simple.
* feat(tahoe): enable sourcegraphFranck Cuny2022-05-221-0/+4
|
* feat(modules): create a module for sourcegraphFranck Cuny2022-05-222-0/+47
| | | | | | | Run sourcegraph ([0]) in a docker container. It's exposed as cs.fcuny.xyz, and we backup some of the directories. [0] https://docs.sourcegraph.com
* feat(dns): add cs.fcuny.xyzFranck Cuny2022-05-221-0/+1
| | | | This will be used for sourcegraph.
* feat(home): add a script to create flamegraph from a processFranck Cuny2022-05-193-0/+28
| | | | | | | This script (`perf-flamegraph-process') takes a process as an argument, and will run it with `perf' to capture the call graph, and will generate the flamegraph from it. The SVG is saved under `~/workspace/tmp/flamegraph'.
* feat(git): add a template for commit messagesFranck Cuny2022-05-182-40/+66
| | | | | | In order to write good commit message, having a reminder of how to write them is useful. This template provides some guidance to categorize the change and how to phrase the description.
* nix: bump dependenciesFranck Cuny2022-05-161-28/+28
|
* sway: comments and floating windows configurationFranck Cuny2022-05-161-4/+27
|
* swaybar: clean up description for bluetoothFranck Cuny2022-05-161-1/+1
|
* zsh: manage tmux and start swayFranck Cuny2022-05-162-1/+16
| | | | If login, start sway. If tmux is not running, start it.
* bluetooh: enable on aptosFranck Cuny2022-05-163-0/+12
|
* alacritty: better colorsFranck Cuny2022-05-151-2/+2
|
* zsh: some cleanupFranck Cuny2022-05-153-4/+20
|
* terminal: once again, fix the colorsFranck Cuny2022-05-152-4/+7
|
* zsh: switch to zsh as the default shellFranck Cuny2022-05-159-4/+108
| | | | | | | | | | `zsh' is available everywhere and is compatible with bash. When using `fish' I need to remember how to do things. While the completion style is nicer, I don't care about the rest. I prefer to have a consistent experience in the shell, no matter where am I. This is an initial configuration, I might need to make a few changes as I go.
* home: run abcde in `~/import`Franck Cuny2022-05-141-0/+1
|
* home: drop custom colors for alacrittyFranck Cuny2022-05-131-26/+0
|
* home: fix name of the package for EmacsFranck Cuny2022-05-131-1/+1
|
* modules: fix configuration for syncthingFranck Cuny2022-05-132-2/+8
| | | | The `documents` folder was not being synced.
* nix: update dependenciesFranck Cuny2022-05-121-30/+62
|
* grafana: there was already something on port 3030 ...Franck Cuny2022-05-121-1/+1
|
* grafana: run on port 3030Franck Cuny2022-05-121-0/+1
| | | | There's already something on port 3000.
* home: set environment variables for drone-cliFranck Cuny2022-05-121-1/+4
|
* aptos: enable bluetoothFranck Cuny2022-05-121-0/+1
|
* add modules to manage bluetoothFranck Cuny2022-05-124-2/+78
|
* docs: some documentationFranck Cuny2022-05-072-0/+28
|
* nix: add a command `dnsupdate` to update the DNSFranck Cuny2022-05-071-1/+13
| | | | | Running `nix run .#dnsupdate` will execute the program to ensure the configuration is correct.
* cmd: add a command to update fcuny.xyzFranck Cuny2022-05-074-0/+851
| | | | | | | | | | | | I'm using fcuny.xyz as a domain to run a number of services on a host using the IP provided by Tailscale. Instead of manually updating the DNS configuration in the console every time I create a new subdomain, let's do this with a small program. The program query Tailscale API to get the IP address of the host `tahoe`, and then query the DNS API to see if anything is missing or is mis-configured. If it's the case, it will resolve the problems.
* repo: add support for direnvFranck Cuny2022-05-071-0/+1
|
* secrets: add a new secrets for gcloud (aptos only)Franck Cuny2022-05-072-0/+5
| | | | | This is the configuration needed to interact with GCP from this repository. We only want it on aptos for now.
* modules: add a few packagesFranck Cuny2022-05-061-0/+2
|
* tahoe: enable exec runner for droneFranck Cuny2022-05-021-1/+1
|
* home: install the drone CLIFranck Cuny2022-05-023-0/+10
|
* modules: fix configuration for drone-runner-execFranck Cuny2022-05-021-1/+1
|
* home: add a module for direnvFranck Cuny2022-05-013-0/+30
|
* gitea: add a dashboard for grafanaFranck Cuny2022-04-241-0/+1176
|
* gitea: enable metric endpointFranck Cuny2022-04-242-7/+13
| | | | Move configuration for the scraper into the gitea module itself.
* backups: do backups for the laptopFranck Cuny2022-04-246-2/+46
| | | | | | | | | | | | | From the laptop I only backup /home/fcuny, as the rest should be straightforward to rebuild with nix. I run that backup as my own user, since I need my ssh key to use the remote repository (which is on the NAS). I also need a new secret for it (I might have been able to use `pass' for this, but well, that's easy enough). For the NAS, I update the list of directories to backup to include home, this will be on the systems backup.
* tmux: start windows at 1Franck Cuny2022-04-241-0/+3
| | | | Renumber windows, I prefer the consistency.
* fish: start tmux on new sessionFranck Cuny2022-04-241-3/+6
| | | | | Unless we're in a SSH connection. If there's already a session 0, attach to it.
* scanner: install tools on the laptopFranck Cuny2022-04-242-1/+9
|
* gcloud: add google-cloud-sdk on trusted hostsFranck Cuny2022-04-243-0/+12
|
* alacritty: use custom colorsFranck Cuny2022-04-221-0/+26
| | | | The default is too dark for my eyes.
* syncthing: add pixel (my phone) to known devicesFranck Cuny2022-04-211-1/+12
| | | | | Copy the pictures from the phone on all my machines. Don't sync the documents on the phone (at least for now).
* syncthing: configure devices and foldersFranck Cuny2022-04-211-0/+18
|
* syncthing: enable on trusted machinesFranck Cuny2022-04-215-2/+17
| | | | Add the cert and key for aptos.
* syncthing: don't run from homeFranck Cuny2022-04-211-1/+0
|
* syncthing: configure the keys for tahoeFranck Cuny2022-04-214-3/+27
|
* syncthing: enable on tahoeFranck Cuny2022-04-213-20/+13
|
* syncthing: let's run it from home-managerFranck Cuny2022-04-212-0/+15
|
* modules: add syncthing as a new moduleFranck Cuny2022-04-212-0/+12
|
* mail: fix tags for notmuchFranck Cuny2022-04-211-1/+1
| | | | | The default tags should be unread and new, otherwise there's nothing left for `afew` to tag.
* flake: add checksFranck Cuny2022-04-132-0/+77
| | | | This is not working great so far.
* drone: backup the state directoryFranck Cuny2022-04-131-0/+2
|
* drone: configuration fixesFranck Cuny2022-04-133-3/+8
|
* drone: initial attempt at configuring itFranck Cuny2022-04-139-0/+194
|
* nginx: configure correctly the dashboardFranck Cuny2022-04-131-2/+2
|
* nginx: install the default dashboardFranck Cuny2022-04-131-0/+6
|
* traefik: remove the moduleFranck Cuny2022-04-134-1934/+0
|
* modules: make the vhost be configurableFranck Cuny2022-04-134-18/+34
|
* grafana: correct domain name ...Franck Cuny2022-04-131-1/+1
|
* grafana: the vhost is configurableFranck Cuny2022-04-132-5/+15
|
* grafana: bind to localhostFranck Cuny2022-04-131-4/+0
|
* modules: set secretsFranck Cuny2022-04-132-2/+6
|
* unifi: use nginx for reverse proxyFranck Cuny2022-04-131-0/+14
|
* transmission: use nginx for reverse proxyFranck Cuny2022-04-131-0/+14
|
* navidrome: use nginx for reverse proxyFranck Cuny2022-04-131-0/+14
|
* grafana: set proper port for reverse proxyFranck Cuny2022-04-131-1/+1
|
* tahoe: set owner for secret related to ACMEFranck Cuny2022-04-131-1/+4
|
* secrets: we can specify which user owns itFranck Cuny2022-04-131-2/+7
|
* grafana: use proper certFranck Cuny2022-04-131-1/+1
|
* secrets: re-key all secrets for tahoeFranck Cuny2022-04-138-30/+27
|
* grafana: try to configure the domain with acme+dnsFranck Cuny2022-04-134-2/+26
|
* nginx: get a simple solution to work firstFranck Cuny2022-04-133-304/+13
|
* nginx: add nginx as a reverse proxyFranck Cuny2022-04-135-1/+426
| | | | This will ultimately replace traefik.
* fish: only start sway when sway is installedFranck Cuny2022-04-131-6/+8
|
* fish: execute sway on login on tty1Franck Cuny2022-04-131-0/+5
|
* secrets: delete duplicated filesFranck Cuny2022-04-137-52/+0
|
* rclone: fix the order of the paramsFranck Cuny2022-04-131-2/+2
|
* secrets: move the actual secrets with hosts configFranck Cuny2022-04-1311-13/+56
| | | | | | Having the secrets closer to the host is easier to manage. At the moment I don't have secrets that are shared across multiple hosts, so that's an OK approach.
* secrets: fix the path to the ssh keyFranck Cuny2022-04-131-4/+3
|
* secrets: load ssh key only if it existsFranck Cuny2022-04-131-1/+1
|
* users: add myself to the group 'nas'Franck Cuny2022-04-131-0/+1
|
* fish: start tmux on terminal startFranck Cuny2022-04-131-0/+6
|
* backups: rename system to hostFranck Cuny2022-04-111-1/+1
| | | | Since this is a host level backup.
* grafana: backup the whole directoryFranck Cuny2022-04-111-1/+1
|
* tahoe: fix backup configurationFranck Cuny2022-04-111-2/+3
|
* home: enable ssh config on trusted hostsFranck Cuny2022-04-101-0/+1
|
* secrets: move all the secrets under module/Franck Cuny2022-04-1018-71/+76
| | | | | Refactor a bit the configuration, which should simplify the management and usage of secrets from now on.
* add a module for backup with resticFranck Cuny2022-04-108-75/+93
| | | | Do a single backup for the host, instead of running multiple ones.
* tahoe: enable network with early bootFranck Cuny2022-04-092-11/+19
| | | | So we can unlock the disks remotely.
* delete configuration related to colorsFranck Cuny2022-04-097-154/+9
| | | | | | | Setting colors is hard, and it's an easy way to waste time. The only color settings I keep are the ones related to waybar, to make sure it does not look like a Christmas tree. Which means that most applications are going to use their default theme, and I'm OK with that.
* add a few more packages for home/Franck Cuny2022-04-098-1/+50
|
* install documentations (man)Franck Cuny2022-04-094-4/+29
|
* add pcmanfm and easyeffectsFranck Cuny2022-04-094-0/+12
|
* remove `mkHome` from libFranck Cuny2022-04-093-61/+1
| | | | | home-manager configuration is used as a module, we don't have two different ways to configure the host anymore.
* small fixesFranck Cuny2022-04-095-5/+5
|
* add a few more modules to home/ and delete stuffFranck Cuny2022-04-0929-662/+93
|
* delete all CLI modulesFranck Cuny2022-04-088-197/+0
| | | | Everything is under home/ now
* delete all devel modulesFranck Cuny2022-04-084-28/+1
| | | | They are all under home/ now
* remove old 'trusted' modulesFranck Cuny2022-04-087-151/+1
| | | | All of them are now under home/
* carmel: configure the desktop properlyFranck Cuny2022-04-083-1/+22
|
* hosts: rename hardware-configuration to hardwareFranck Cuny2022-04-086-3/+3
|
* hosts: add services to tahoeFranck Cuny2022-04-083-11/+10
|
* delete unneeded modulesFranck Cuny2022-04-083-96/+0
|
* services: add avahiFranck Cuny2022-04-082-0/+15
|
* users: add myself to "cdrom" groupFranck Cuny2022-04-081-0/+1
| | | | Otherwise I can't run `abcde`.
* delete unused moduleFranck Cuny2022-04-081-25/+0
|
* home: move waybar's style to a CSS fileFranck Cuny2022-04-082-87/+84
|
* home: move css/config for wofi to external filesFranck Cuny2022-04-083-52/+49
|
* alacritty: use light colorsFranck Cuny2022-04-082-2/+34
|
* aptos: consume the new profilesFranck Cuny2022-04-084-3/+25
| | | | aptos is now using the new home-manager setup.
* profiles: create a few new profilesFranck Cuny2022-04-085-1/+67
|
* modules: add a few moreFranck Cuny2022-04-088-3/+100
|
* home: add more configurations for home-managerFranck Cuny2022-04-0822-0/+829
|
* home: fix for yt-dlp configurationFranck Cuny2022-04-071-1/+1
|
* home: misc fixesFranck Cuny2022-04-0710-23/+24
|
* initial attempt to reconfigure home-managerFranck Cuny2022-04-0717-1/+345
| | | | | | | | | | All the modules that are needed for home-manager should be under `home/`, and each host will have a `host.nix` where the modules are enabled as needed. Later on we can create some profiles to make it easier to consume the configuration. I apply this only to tahoe for now, as the amount of packages needed for my user are pretty limited.
* gitea: fix the moduleFranck Cuny2022-04-061-3/+3
| | | | | Quick fix for now, we will add these values as options to the module once we confirm everything is still working.
* modules: import packagesFranck Cuny2022-04-061-1/+2
|
* refactor transmission and metrics-exporterFranck Cuny2022-04-068-51/+56
|
* refactor traefikFranck Cuny2022-04-064-97/+105
|
* refactor rclone to a moduleFranck Cuny2022-04-064-33/+39
|
* refactor gitea as a moduleFranck Cuny2022-04-064-42/+58
|
* prometheus: proper name for the optionFranck Cuny2022-04-061-1/+1
|
* refactor grafana as a moduleFranck Cuny2022-04-068-42/+48
|
* refactor prometheus as a moduleFranck Cuny2022-04-064-180/+190
|
* refactor unifi to a moduleFranck Cuny2022-04-063-4/+18
|
* import navidrome with other servicesFranck Cuny2022-04-061-1/+2
|
* refactor navidrome to a moduleFranck Cuny2022-04-063-28/+46
|
* enable AMD module correctlyFranck Cuny2022-04-062-2/+2
|
* refactor samba to a proper moduleFranck Cuny2022-04-064-35/+61
| | | | The list of public share is configurable too.
* refactor boot configuration to a moduleFranck Cuny2022-04-0611-64/+68
| | | | | | | | | We don't need the previous `hosts/common/system` configs anymore, as everything has been moved out. We keep some boot configuration for carmel in the host configuration for now, but I need to check why I don't have similar settings for tahoe (since I also need to unlock the host remotely).
* refactor configuration for AMDFranck Cuny2022-04-064-67/+79
|
* refactor intel related configurationFranck Cuny2022-04-056-38/+40
|
* refactor modules for btrfs, ssd, and fwupdFranck Cuny2022-04-058-12/+19
|
* refactor network configurationFranck Cuny2022-04-058-29/+70
|
* refactor security to a moduleFranck Cuny2022-04-053-3/+3
|
* refactor users to a moduleFranck Cuny2022-04-053-6/+11
|
* refactor default packages to a moduleFranck Cuny2022-04-052-15/+8
|
* move locale configuration to a moduleFranck Cuny2022-04-053-9/+3
|
* console configuration is moved to a moduleFranck Cuny2022-04-053-6/+7
|
* create a profile for laptopFranck Cuny2022-04-057-2/+53
|
* carmel: enable the soundFranck Cuny2022-04-051-0/+1
|
* network: move tailscale in modulesFranck Cuny2022-04-059-63/+78
| | | | Move the networking configuration for the hosts to its own file.
* ssh: refactor to a moduleFranck Cuny2022-04-055-8/+19
| | | | Also install mosh and ensure the firewall opens the correct ports.
* nix: refactor to a moduleFranck Cuny2022-04-054-6/+4
|
* sound: add a new moduleFranck Cuny2022-04-0511-44/+59
| | | | | | | | | | This is the start of yet another refactoring of the configuration. Sound configuration is moving to a module, and we enable it as needed at the host level. It takes care of configuring pipewire and install the packages needed too. This module is applied to the laptop and the desktop.
* waybar: fix colors for the workspacesFranck Cuny2022-04-051-9/+9
|
* dashboard: remove ping metricsFranck Cuny2022-04-041-96/+3
| | | | We're using the ones from the prober
* prometheus: fix configurationFranck Cuny2022-04-041-3/+1
|
* prometheus: we need to specify the IP protocolFranck Cuny2022-04-041-1/+5
| | | | | | | | If we don't, by default we try over ipv6, and this is not going to work well for us (yet): ``` ts=2022-04-05T01:39:13.830414184Z caller=main.go:130 module=https_2xx target=https://notes.fcuny.net level=error msg="Error for HTTP request" err="Get \"https://[2a09:8280:1::a:2aed]\": dial tcp [2a09:8280:1::a:2aed]:443: connect: network is unreachable" ```
* prometheus: I'll get this right this timeFranck Cuny2022-04-041-5/+3
|
* prometheus: set the scheme for the URLsFranck Cuny2022-04-041-5/+5
|
* prometheus: add scraper for HTTPFranck Cuny2022-04-041-0/+28
|
* prometheus: configure correctly the blackboxFranck Cuny2022-04-041-10/+23
|
* prometheus: attempt to configure blackbox exporterFranck Cuny2022-04-041-0/+34
|
* dashboard: more update for traefikFranck Cuny2022-04-041-452/+1478
|
* dashboards: more updates for traefikFranck Cuny2022-04-041-1/+2
|
* grafana: try to configure the data sourceFranck Cuny2022-04-041-9/+28
|
* grafana: add dashboard for traefikFranck Cuny2022-04-041-0/+783
|
* grafana: show last 6 hours for node exporterFranck Cuny2022-04-031-2/+2
|
* users: ensure I'm in the docker groupFranck Cuny2022-04-031-1/+1
|
* ncmpcpp: delete configurationFranck Cuny2022-04-031-19/+0
| | | | I don't use this program anymore.
* home-manager: add `isTrusted`Franck Cuny2022-04-0310-4/+7
| | | | | | | | | | Install and configure some programs only on trusted machines. On trusted machines, my mails, GPG and a few other things are configured. A machine where this is not needed on a regular basis to get things done don't need that much information. Also rename `desktop/trust` to `trusted`, in case we want these packages on a host that is not a desktop, and `trusted` is a better description.
* Revert "create a new role for navidrome"Franck Cuny2022-04-033-35/+26
| | | | This reverts commit 814a495e9c74e3211c6b6640397111115832207b.
* create a new role for navidromeFranck Cuny2022-04-033-26/+35
| | | | Apply the role to tahoe.
* firefox: set duckduckgo as default search engineFranck Cuny2022-04-031-9/+20
| | | | This is not really working, need to figure this out.
* set the music directory based on host's nameFranck Cuny2022-04-031-4/+8
|
* rename `desktop` to `isDesktop`Franck Cuny2022-04-035-10/+11
| | | | | | | | The variable is used to define the kind of machine we're managing. `isDesktop` is a bit more descriptive. We import `devel` for all machines, and we fine tune which packages we want to install based on the value of `isDesktop`.
* remove mytoolsFranck Cuny2022-04-032-47/+1
| | | | I don't need this for now, as I've replace music-organizer with beets.
* email: use afew to filter emailsFranck Cuny2022-04-031-25/+17
| | | | This is still not working as I want, will need more iteration.
* simplify multimedia for the desktopFranck Cuny2022-04-038-119/+16
| | | | | | | | | | | I don't need to have systemd units to synchronize medias from a desktop to the NAS: I'll download all the medias on the NAS directly. I don't need to have a module for each type of media, there's not enough configuration to justify that complexity. I also don't need anymore mpd and co. as I'm using navidrome to host the music on the NAS and sublime-music to listen to it on the desktop.
* nas: add videos to the backupsFranck Cuny2022-04-021-7/+2
| | | | | We also don't need the music-organizer anymore since we're switching to beets.
* consolidate configuration for music curationFranck Cuny2022-04-013-18/+14
|
* swaybar: simplify colorsFranck Cuny2022-03-311-18/+17
|
* beets: how to manage soundtracksFranck Cuny2022-03-311-2/+1
|
* beets: more configurationFranck Cuny2022-03-311-2/+17
|
* beets: fix configuration + discogsFranck Cuny2022-03-301-4/+5
|
* beets: a few configuration changesFranck Cuny2022-03-301-2/+6
|
* beets: tool to curate my music collectionFranck Cuny2022-03-302-2/+27
|
* nas: backup navidrome data and add music subdomainFranck Cuny2022-03-282-0/+14
|
* nas: bind navidrome to all interfacesFranck Cuny2022-03-281-1/+4
|
* nas: initial setup for navidromeFranck Cuny2022-03-282-0/+9
|
* nas: install music-organizer from the main branchFranck Cuny2022-03-273-10/+27
|
* nas: install correctly music-organizerFranck Cuny2022-03-271-1/+1
|
* nas: install music-organizerFranck Cuny2022-03-273-8/+44
|
* prometheus: stop scraping the NASFranck Cuny2022-03-261-4/+2
| | | | we're shutting it down!
* common: ensure zsh is installedFranck Cuny2022-03-251-0/+1
|
* gitea: remove invalid configurationFranck Cuny2022-03-251-1/+0
|
* alacritty: use the default colorsFranck Cuny2022-03-252-53/+0
|
* shell: switch from zsh to fishFranck Cuny2022-03-255-53/+14
| | | | why not ?
* docs: add more documentation!Franck Cuny2022-03-253-0/+207
|
* rclone: correct path for the backupsFranck Cuny2022-03-151-2/+2
|
* sway: switch back to waybarFranck Cuny2022-03-142-72/+132
| | | | | Get rid of icons, use plain text with different colors depending on the state.
* theme: dont' set alacritty bg and fgFranck Cuny2022-03-141-3/+0
|
* rclone: fix the pathFranck Cuny2022-03-141-1/+1
|
* prometheus: scrape gitea metricsFranck Cuny2022-03-131-0/+6
|
* gitea: enable metrics endpointFranck Cuny2022-03-131-0/+1
|
* server: typoFranck Cuny2022-03-131-4/+2
|
* rclone: rewrite the service unitFranck Cuny2022-03-131-5/+6
|
* default: install ethtool everywhereFranck Cuny2022-03-121-0/+1
|
* prometheus: collect more stuffFranck Cuny2022-03-121-1/+1
|
* hosts: add profilesFranck Cuny2022-03-124-17/+18
| | | | Profiles contain a collection of modules.
* desktop: element and themeFranck Cuny2022-03-121-0/+4
|
* terminal: nixfmtFranck Cuny2022-03-121-10/+4
|
* wofi: color + nixfmtFranck Cuny2022-03-121-4/+2
|
* notification: fix timeout and documentFranck Cuny2022-03-121-8/+8
|
* devel: add more packagesFranck Cuny2022-03-121-1/+1
|
* users: add another ssh keyFranck Cuny2022-03-121-2/+8
|
* containers: enable dockerd and containerd on aptosFranck Cuny2022-03-121-0/+11
|
* rclone: add users backupFranck Cuny2022-03-111-11/+12
|
* nas: enable rclone configurationFranck Cuny2022-03-111-0/+1
|
* prometheus: scrap more endpointsFranck Cuny2022-03-111-0/+30
|
* rclone: synchronize restic repo to GCSFranck Cuny2022-03-114-0/+32
| | | | | | Add a couple of secrets to store the configuration and the service account, and add a timer to synchronize the restic repository to a GCS bucket once a day.
* wm: ensure element is assigned to space #4Franck Cuny2022-03-101-0/+1
|
* sway: formatting, colors, wlogoutFranck Cuny2022-03-091-44/+75
|
* traefik: typoFranck Cuny2022-03-091-1/+1
|
* traefik: make the rules as specific as possibleFranck Cuny2022-03-091-2/+4
| | | | Otherwise, `git` will conflict, since it exists on both domains.
* traefik: typoFranck Cuny2022-03-091-5/+5
|
* gitea: typoFranck Cuny2022-03-091-1/+1
|
* traefik: handle fcuny.net and fcuny.xyzFranck Cuny2022-03-091-7/+15
| | | | | | | | | | | | | fcuny.net is for public facing domains, while fcuny.xyz are for domains on the tailscale network. I need to support configuration in traefik for both. The main difference, for traefik, is the domain name and which let's encrypt challenge to use (DNS for TS, HTTP for public). Refactor the function `mkServiceConfig` to accept the domain and LE challenge as argument, and add new entries for git.fcuny.net and git.fcuny.xyz.
* gitea: do a backup with resticFranck Cuny2022-03-091-0/+12
|
* gitea: we need to specify the user for the DBFranck Cuny2022-03-091-1/+4
|
* go: ensure GOBIN is in PATHFranck Cuny2022-03-091-1/+3
|
* system: install sqliteFranck Cuny2022-03-091-3/+3
| | | | It's always useful to have it around.
* gitea: initial configurationFranck Cuny2022-03-082-0/+28
|
* nas: backup photos and musicFranck Cuny2022-03-082-0/+118
| | | | | | | Instead of rsync-ing these folders to a GCS bucket, I should instead do a backup. If I screw up something, the content will be sync-ed, and I won't be able to restore it. It's better (maybe more expensive, but that's OK) to keep snapshots and be able to restore.
* backups: spread them so they don't clashFranck Cuny2022-03-073-0/+3
| | | | | If they start running at the same time, they won't be able to succeed since there's a global lock on the repository.
* grafana: backup the data directoryFranck Cuny2022-03-071-0/+14
|
* prometheus: backup the data directoryFranck Cuny2022-03-071-0/+14
|
* unifi: backup the data to the local reoFranck Cuny2022-03-071-0/+14
|
* restic: add the secret for the repo 'systems'Franck Cuny2022-03-072-0/+14
|
* prometheus: scrap unifi poller on the correct IPFranck Cuny2022-03-061-1/+1
|
* prometheus: scrape from unifi-pollerFranck Cuny2022-03-061-31/+40
|
* unifi: set the correct name for the poller's unitFranck Cuny2022-03-061-2/+2
|
* traefik: proper configuration for unifiFranck Cuny2022-03-061-0/+14
|
* unifi: configure the pollerFranck Cuny2022-03-063-5/+33
|
* unifi: add unifi on the NASFranck Cuny2022-03-062-0/+54
|
* transmission: disable the rpc allowlistFranck Cuny2022-03-061-2/+1
| | | | This is not working as I think, will follow up later.
* traefik: add transmission (bt.fcuny.xyz)Franck Cuny2022-03-061-2/+4
|
* nas: install transmissionFranck Cuny2022-03-062-0/+36
| | | | | Create a user and group 'nas' so we can run tranmission in it. This will also help us to enable some specific permissions on some directories.
* grafana: rename the instance for the routerFranck Cuny2022-03-061-16/+16
|
* grafana: add a few more dashboardsFranck Cuny2022-03-063-0/+10539
|
* tahoe: enable tailscaleFranck Cuny2022-03-061-0/+1
|
* traefik: getting a working configurationFranck Cuny2022-03-061-22/+21
|
* traefik: second attempt, simpleFranck Cuny2022-03-062-52/+35
|
* traefik: initial configurationFranck Cuny2022-03-064-0/+90
| | | | | | | | | I want to run traefik on the NAS, so I can reach grafana and other future services running on that host. To manage TLS, we use let's encrypt with a DNS challenge. For this to work we need a service account configuration, that is encrypted with age.
* backups: unit to run maintenance on my backupsFranck Cuny2022-03-052-0/+26
| | | | | This will be run via a timer once a day, to perform maintenance on my backups on the nas.
* prometheus: scrape nodeexporter for the rtrFranck Cuny2022-03-051-15/+24
|
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-10-17 18:36:51 +0000