1
0
Fork 0
Commit graph

202 commits

Author SHA1 Message Date
ibizaman
13ba38a993 do not set serverAliases for dns
Otherwise, those server aliases take precedence over actual virtual hosts that serve those subdomain.
2024-08-11 14:59:31 -07:00
ibizaman
6b17ff858e add host provider for ssl letsencrypt block 2024-08-10 19:51:46 -07:00
ibizaman
0f2f69f7a1 refactor tests to use common blocks 2024-07-16 10:53:29 +02:00
ibizaman
308db5fe6b export all torrent metrics 2024-06-10 22:43:37 -07:00
ibizaman
72818c0d79 bump chunkSize in nextcloud to boost performance for small files
From https://help.nextcloud.com/t/very-slow-sync-for-small-files/11064/13 Not sure it works.
2024-06-10 08:37:45 -07:00
ibizaman
d8ba5f97b8 set ldapExpertUsernameAttr to user_id in nextcloud ldap app
https://github.com/lldap/lldap/pull/907
2024-06-10 08:37:45 -07:00
ibizaman
e6b11a5acb configure nextcloud sso app with same variable 2024-06-10 08:37:45 -07:00
ibizaman
f9cb785cf8 use hardcoded configID for nextcloud LDAP configuration
This makes more sense and is less brittle.
2024-06-10 08:37:45 -07:00
ibizaman
a4c4ee1670 add prometheus deluge exporter 2024-06-09 23:47:31 -07:00
ibizaman
848083dacc break authFile for deluge into user and password attrset 2024-06-09 23:43:46 -07:00
ibizaman
faaa0e2263 bump minimal version of Nextcloud to 28 2024-05-29 15:26:04 -07:00
ibizaman
ebbd19c7fd add vm test for home-assistant 2024-05-27 17:13:05 -07:00
ibizaman
97285e1833 add vm test for vaultwarden 2024-05-27 17:13:05 -07:00
ibizaman
8ebb3af1f0 rename autheliaProtect to vhosts 2024-05-27 17:13:05 -07:00
ibizaman
7020786c41 add default dummy oidc authelia client to satisfy authelia 2024-05-27 17:13:05 -07:00
ibizaman
8ec12338fd make config with secrets correctly generated 2024-05-27 17:13:05 -07:00
Pierre Penninckx
dc46ec8eda
Fix prometheus exporter not accessing nvme hard drives (#238) 2024-05-13 09:00:38 -07:00
Pierre Penninckx
222dfa755c
Revert to loki v2 (#230)
This is needed because v3 requires manual intervention to upgrade
otherwise Loki refuses to start. So until there's a fix, reverting is
the easiest fix.
2024-04-21 23:07:32 -07:00
Pierre Penninckx
425e511792
flake.lock: Update (#226)
Automated changes by the
[update-flake-lock](https://github.com/DeterminateSystems/update-flake-lock)
GitHub Action.

```
Flake lock file updates:

• Updated input 'nixpkgs':
    'github:nixos/nixpkgs/b06025f1533a1e07b6db3e75151caa155d1c7eb3?narHash=sha256-qrxvLS888pNJFwJdK%2Bhf1wpRCSQcqA6W5%2BOx202NDa0%3D' (2024-03-19)
  → 'github:nixos/nixpkgs/5672bc9dbf9d88246ddab5ac454e82318d094bb8?narHash=sha256-NLznXB5AOnniUtZsyy/aPWOk8ussTuePp2acb9U%2BISA%3D' (2024-04-16)
• Updated input 'sops-nix':
    'github:Mic92/sops-nix/83b68a0e8c94b72cdd0a6e547a14ca7eb1c03616?narHash=sha256-RquCuzxfy4Nr8DPbdp3D/AsbYep21JgQzG8aMH9jJ4A%3D' (2024-03-17)
  → 'github:Mic92/sops-nix/cc535d07cbcdd562bcca418e475c7b1959cefa4b?narHash=sha256-APoDs2GtzVrsE%2BZ9w72qpHzEtEDfuinWcNTN7zhwLxg%3D' (2024-04-15)
• Updated input 'sops-nix/nixpkgs':
    'github:NixOS/nixpkgs/9af9c1c87ed3e3ed271934cb896e0cdd33dae212?narHash=sha256-huQT4Xs0y4EeFKn2BTBVYgEwJSv8SDlm82uWgMnCMmI%3D' (2024-03-15)
  → 'github:NixOS/nixpkgs/a0c9e3aee1000ac2bfb0e5b98c94c946a5d180a9?narHash=sha256-icE1IJE9fHcbDfJ0%2BqWoDdcBXUoZCcIJxME4lMHwvSM%3D' (2024-04-12)
• Updated input 'sops-nix/nixpkgs-stable':
    'github:NixOS/nixpkgs/6dc11d9859d6a18ab0c5e5829a5b8e4810658de3?narHash=sha256-y%2Bl3eH53UlENaYa1lmnCBHusZb1kxBEFd2/c7lDsGpw%3D' (2024-03-16)
  → 'github:NixOS/nixpkgs/c27f3b6d8e29346af16eecc0e9d54b1071eae27e?narHash=sha256-RifMwYuKu5v6x6O65msKDTqKkQ9crGwOB7yr20qMEuE%3D' (2024-04-13)
```

### Running GitHub Actions on this PR

GitHub Actions will not run workflows on pull requests which are opened
by a GitHub Action.

To run GitHub Actions workflows on this PR, run:

```sh
git branch -D update_flake_lock_action
git fetch origin
git checkout update_flake_lock_action
git commit --amend --no-edit
git push origin update_flake_lock_action --force
```

---------

Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
2024-04-17 16:06:29 -07:00
Pierre Penninckx
ab1bd23b51
fix hledger options (#228) 2024-04-17 09:03:29 -07:00
Pierre Penninckx
43f19a871a
add contract documentation (#225) 2024-04-14 15:21:20 -07:00
Pierre Penninckx
26f406db5f
fix arr setup (#224) 2024-04-10 23:52:24 -07:00
Pierre Penninckx
b9db764a8b
Disable auth in arr suite if SSO is enabled (#221) 2024-04-09 07:16:50 -07:00
Pierre Penninckx
5179f7fc90
Add external storage app to Nextcloud (#222) 2024-04-08 22:41:52 -07:00
Pierre Penninckx
c488bb5bda
Add scripts to update postgresql (#219) 2024-04-02 22:17:29 -07:00
Pierre Penninckx
482b187621
Fix user in vaulwarden module (#218) 2024-04-02 21:04:10 -07:00
Pierre Penninckx
c75daa23c0
move CI to garnix (#210) 2024-03-19 22:50:41 -07:00
Pierre Penninckx
589e2c936f
add tests for arr services and some more options (#205) 2024-03-13 05:40:32 +00:00
Sivert Sliper
64f9c051b9
Grocy service (#195)
PR to add grocy as a service.

I think LDAP should be [relatively
simple](https://www.reddit.com/r/grocy/comments/18avtb7/sso_tutorial/)
to add, but couldn't find good information on SSO.

Will test this out for a while to make sure it really works before this
can be merged.

---------

Co-authored-by: ibizaman <ibizapeanut@gmail.com>
Co-authored-by: Pierre Penninckx <github@pierre.tiserbox.com>
2024-03-04 01:25:26 +00:00
Sivert Sliper
ee68e27f15
Audiobookshelf service (#123)
Hi,

I tried adding [Audiobookshelf](https://www.audiobookshelf.org/) as a
new service to SHB.

Not sure whether you want this service in SHB at all, but thought I'd
create a PR just in case.

The service runs, but seemingly fails to add an entry to the nginx
config, so it is not reachable. I created the service by basically just
copying deluge and then adapting. Any idea why the nginx subdomain isn't
being created?

The config I used to add this to my SHB server is:

```nix
shb.audiobookshelf = {
  enable = true;
  domain = "sliper.xyz";
  subdomain = "abs";
  dataDir = "audiobookshelf"; #turns out this is actually the working dir of the service (/var/lib/<dataDir>)
  authEndpoint = "https://auth.sliper.xyz";
};
 // ... in shb.authelia.oidcClients
redirect_uris = [ "https://deluge.sliper.xyz" "https://abs.sliper.xyz" ];
```

ps. I also need to fix tabs->spaces. Forgot to set up nvim.

---------

Co-authored-by: sivert <nei@nei.nei>
Co-authored-by: ibizaman <ibizapeanut@gmail.com>
Co-authored-by: Pierre Penninckx <github@pierre.tiserbox.com>
2024-03-04 01:01:00 +00:00
ibizaman
e80cc0d3aa add vm tests for jellyfin and regroup ldap and sso options 2024-03-02 23:03:49 -08:00
ibizaman
046ae67083 optionally make nextcloud systemd services depend on mount point 2024-02-29 22:16:01 -08:00
ibizaman
8c2373430d fix jellyfin and nextcloud-server after changes to lib 2024-02-29 22:13:30 -08:00
ibizaman
937902a7f0 add section about nextcloud appdata folder 2024-02-29 21:00:55 -08:00
ibizaman
d0d94e61c8 use better defaults for nextcloud preview app 2024-02-29 21:00:55 -08:00
ibizaman
fa206d0e15 move templating code to lib file 2024-02-29 20:30:47 -08:00
ibizaman
5288d5f825 fix link 2024-02-11 20:04:42 -08:00
ibizaman
059bfea86a move template function into lib 2024-02-09 21:20:13 -08:00
ibizaman
0500096b45 remove dependency of jellyfin.nix on sops-nix
part of #24
2024-02-07 23:37:47 -08:00
ibizaman
228f7e8b46 remove dependency of deluge.nix on sops-nix
part of #24
2024-02-07 23:13:47 -08:00
ibizaman
f56f997307 remove dependency of vpn.nix on sops-nix
part of #24
2024-02-07 22:57:58 -08:00
ibizaman
7d0276e9f2 fix some deprecated options 2024-02-07 22:33:25 -08:00
ibizaman
a2921edcbd allow to pick nextcloud package version
refs #131
2024-01-30 22:51:34 -08:00
ibizaman
bccd6a1181 add more info for nextcloud 2024-01-28 22:37:30 -08:00
ibizaman
e00a41b086 add group and reloadServices options to ssl block 2024-01-24 22:45:51 -08:00
ibizaman
0bfa15fd3c add extraDomains options for cert generation
fixes #133
2024-01-24 18:46:42 -08:00
ibizaman
43beb92ed2 do not create unrelated groups when login in to nextcloud 2024-01-23 22:07:18 -08:00
ibizaman
56dece4190 fix nextcloud openssl path
I don't remember why I hardcoded this, but the default works fine.
2024-01-22 23:17:08 -08:00
ibizaman
1cf6d264e4 add declarative sso integration for nextcloud 2024-01-22 16:44:10 -08:00
sivert
8a5f4e3bf2 Combine authelia client YAML's into one YAML file
- Fixes #126
  - Generate a single oidc_clients.yaml to define all clients
  - `public` property of OIDC clients is now a bool (as it should be), not a string.
  - sed pattern changed to allow multiple replacements
2024-01-22 13:50:11 -08:00