ibizaman
896c376b6d
add mount contract to authelia block
2024-08-12 06:51:24 -07:00
ibizaman
01eb07a6d2
add mount contract to ldap block
2024-08-12 06:51:24 -07:00
ibizaman
56c06b4404
add mount contract implemented by zfs
2024-08-12 06:51:24 -07:00
ibizaman
13ba38a993
do not set serverAliases for dns
...
Otherwise, those server aliases take precedence over actual virtual hosts that serve those subdomain.
2024-08-11 14:59:31 -07:00
ibizaman
6b17ff858e
add host provider for ssl letsencrypt block
2024-08-10 19:51:46 -07:00
ibizaman
8ebb3af1f0
rename autheliaProtect to vhosts
2024-05-27 17:13:05 -07:00
ibizaman
7020786c41
add default dummy oidc authelia client to satisfy authelia
2024-05-27 17:13:05 -07:00
ibizaman
8ec12338fd
make config with secrets correctly generated
2024-05-27 17:13:05 -07:00
Pierre Penninckx
dc46ec8eda
Fix prometheus exporter not accessing nvme hard drives ( #238 )
2024-05-13 09:00:38 -07:00
Pierre Penninckx
222dfa755c
Revert to loki v2 ( #230 )
...
This is needed because v3 requires manual intervention to upgrade
otherwise Loki refuses to start. So until there's a fix, reverting is
the easiest fix.
2024-04-21 23:07:32 -07:00
Pierre Penninckx
43f19a871a
add contract documentation ( #225 )
2024-04-14 15:21:20 -07:00
Pierre Penninckx
26f406db5f
fix arr setup ( #224 )
2024-04-10 23:52:24 -07:00
Pierre Penninckx
c488bb5bda
Add scripts to update postgresql ( #219 )
2024-04-02 22:17:29 -07:00
Pierre Penninckx
589e2c936f
add tests for arr services and some more options ( #205 )
2024-03-13 05:40:32 +00:00
ibizaman
fa206d0e15
move templating code to lib file
2024-02-29 20:30:47 -08:00
ibizaman
059bfea86a
move template function into lib
2024-02-09 21:20:13 -08:00
ibizaman
f56f997307
remove dependency of vpn.nix on sops-nix
...
part of #24
2024-02-07 22:57:58 -08:00
ibizaman
e00a41b086
add group and reloadServices options to ssl block
2024-01-24 22:45:51 -08:00
ibizaman
0bfa15fd3c
add extraDomains options for cert generation
...
fixes #133
2024-01-24 18:46:42 -08:00
ibizaman
1cf6d264e4
add declarative sso integration for nextcloud
2024-01-22 16:44:10 -08:00
sivert
8a5f4e3bf2
Combine authelia client YAML's into one YAML file
...
- Fixes #126
- Generate a single oidc_clients.yaml to define all clients
- `public` property of OIDC clients is now a bool (as it should be), not a string.
- sed pattern changed to allow multiple replacements
2024-01-22 13:50:11 -08:00
ibizaman
7e2f76e7f9
improve ssl block
2024-01-20 20:19:44 -08:00
ibizaman
adc09acc49
use contract for ssl block
2024-01-19 10:48:10 -08:00
ibizaman
0a34140e34
add nextcloud integration with ldap to the manual and nextcloud demo.
...
refs #17
2024-01-06 09:48:12 -08:00
ibizaman
7a62b5b89c
add usage chapter in the manual
2023-12-25 23:26:50 -08:00
ibizaman
d908ae31c5
add nextcloud manual
2023-12-25 00:51:44 -08:00
ibizaman
9bcf7650e7
update screenshots
2023-12-17 23:31:33 -08:00
ibizaman
6f71d64257
switch to netdata to pull most of the metrics
2023-12-17 23:31:33 -08:00
ibizaman
036d2b92a5
fix grafana not being able to load dashboards
2023-12-17 23:31:33 -08:00
ibizaman
9a5a10a824
add test for authelia
2023-12-11 00:28:30 -08:00
ibizaman
ca2f7039cc
add some sections to block backup chapter
2023-12-08 22:48:06 -08:00
ibizaman
11ab7c5ab5
fix missing headers
2023-12-08 11:52:00 -08:00
ibizaman
49913ca4b6
add manual page for configuring backups
2023-12-08 11:52:00 -08:00
ibizaman
3c9f71da0e
allow to stagger backup jobs
2023-12-08 11:13:37 -08:00
ibizaman
c2ac071c72
enable setting performance impact of backup jobs
2023-12-08 11:13:37 -08:00
ibizaman
207b2e44cb
split backup configuration into smaller chunks
2023-12-08 11:13:37 -08:00
ibizaman
f417372fdc
move monitoring docs close to source
2023-12-08 10:41:15 -08:00
Pierre Penninckx
a63b0a6e2e
switch to nixos-render-docs ( #34 )
...
fixes #33
2023-12-04 00:33:16 -08:00
ibizaman
0242ae26c4
fix ensure clauses in postgresql
...
fixes #35
2023-12-04 00:29:40 -08:00
Pierre Penninckx
0014e5c2f7
avoid some impossible states in authelia and nginx
2023-11-30 22:49:34 -08:00
Pierre Penninckx
76e27ae7eb
add nixos test for ldap
2023-11-30 22:08:38 -08:00
Pierre Penninckx
0ae7220c06
rename oidcEndpoint option to authEndpoint
2023-11-30 12:48:57 -08:00
Pierre Penninckx
54ce26efce
some docs revamps
2023-11-30 12:06:41 -08:00
Pierre Penninckx
4a8a7d686c
build docs and deploy to github pages
2023-11-30 10:38:35 -08:00
Pierre Penninckx
86e86dc787
remove usage of sops file in ssl.nix
2023-11-29 22:20:21 -08:00
Pierre Penninckx
7d9dedb845
provision grafana datasources and some dashboards ( #23 )
...
fixes #22
This commit introduces:
- A few more optional options for the monitoring module, in particular
an SMTP option to setup sending alerts with an STMP server.
- 2 required options for adding a secure key for signing and for an
initial admin password. The latter is nice because at least you can
choose securely the initial admin password instead of it being just
"admin", adding a bit more security to the install process.
- Provisioning Grafana with dashboards, datasources, alerts, contact
points and notification policies.
- Documentation for monitoring in
[docs/blocks/monitoring.md](docs/blocks/monitoring.md).
- A NixOS test that makes sure provisioning did go well as expected.
2023-11-26 09:56:08 -08:00
ibizaman
881af5f111
add more collectors to prometheus node exporter
2023-11-24 20:18:12 -08:00
ibizaman
845017103f
automatically cleanup idle connections
...
This is to fix a nextcloud bug that leaves idle connections open which eats into the available
postgres connection pool.
2023-11-24 02:16:49 -08:00
Pierre Penninckx
52b9233a6c
add postgresql vm test that runs in CI ( #19 )
...
Fixes #14
The tests actually showed a flaw in the implementation, we needed
"password" and not "trust" in the auth file.
Also, having the port defined at the same time as enabling listening for
TCP/IP connection made no sense.
2023-11-23 01:03:33 -08:00
Pierre Penninckx
eae5eade56
distinguish building blocks and provided services
...
I want to show how composable this project is. For example, you could
just use the Authelia module to add SSO to any service, not just those
provided here.
2023-11-20 22:20:19 -08:00