13c18867dc
no just-wide sudo
2026-04-05 00:08:31 +01:00
102b195d27
use dedicated podman user for rootless containers
...
Adds a system user 'podman' (uid 900) with subuid/subgid ranges
and linger for running OCI containers. Removes podman-specific
settings from lew user. DokuWiki switches to sdnotify=healthy
since the image has a built-in healthcheck.
2026-04-04 23:53:32 +01:00
71f32ba49c
fix: use podman.user for rootless instead of mkForce on serviceConfig
...
The oci-containers module has native rootless support via podman.user
which handles cgroup delegation, runtime dirs, and cidfile paths.
Delegate=true workaround for NixOS/nixpkgs#410857 .
2026-04-04 23:36:01 +01:00
b5be0575ee
fix: mkForce rootless user override for oci-containers
2026-04-04 23:25:57 +01:00
10a946ade3
pin container images and run rootless under lew
2026-04-04 23:23:13 +01:00
07faf5c11e
move user config to common, add nix gc and store optimisation
2026-04-04 23:22:55 +01:00
d4e212b88b
add CLAUDE.md to gitignore
2026-04-04 23:22:36 +01:00
44cd74c909
set shell in just
2026-04-04 23:00:10 +01:00
53b0634079
fix: privates the default list on justfile
2026-04-04 22:57:29 +01:00
23089eb93b
fix: list by default
2026-04-04 22:56:47 +01:00
31e2699439
justfile lists by default
2026-04-04 22:55:53 +01:00
e820453afa
added lockfile
2026-04-04 22:54:42 +01:00
78858c11b5
feat: justfile
2026-04-04 22:49:17 +01:00
d154344930
feat: added htop
2026-04-04 22:47:23 +01:00
771846382e
feat: added just
2026-04-04 22:47:13 +01:00
9004fd3933
fix: a mess of ports
2026-04-04 22:47:08 +01:00
b00d1519ac
feat: adds forgejo instance to git.ily.rs
2026-04-04 21:15:59 +01:00
4f9cd8aa35
move wiki to wiki.ily.rs
2026-04-04 20:04:10 +01:00
8beedcf05e
add caddy, podman, foundry vtt, and dokuwiki
2026-04-04 19:55:54 +01:00
7aa50aa403
disable root ssh login
2026-04-04 19:27:22 +01:00
1a7c5c9489
init: scaffold nixos flake for lab server
2026-04-04 19:20:52 +01:00
