8c0db938fc
refactor: simplifies fail2ban config
2026-04-07 21:16:09 +01:00
add77df77f
fix: pin kuma to 2.2.1
2026-04-07 21:15:32 +01:00
4cad9120d6
feat: bumps to kuma version 2
2026-04-07 20:26:00 +01:00
4e2b0841e6
moves the character-records-generator over to master branch
2026-04-07 18:34:54 +01:00
ce0932d638
feat: adds character-records-generator site
2026-04-07 17:14:47 +01:00
15e173b92c
feat: enables both sites
2026-04-07 16:57:53 +01:00
fd060bb33e
feat: added enable options, documents rebuild listener, and moves penfield to its proper domain
2026-04-07 16:55:47 +01:00
196440e90b
feat: static sites
2026-04-07 16:48:29 +01:00
cc562fdede
feat: moves penfield over to a temp domain for testing
2026-04-07 16:45:31 +01:00
1fa1dad73d
feat: documents sites module, and adds penfield
2026-04-07 16:44:29 +01:00
0ce233b7ca
Renames wynne.rs to website.
2026-04-07 16:24:01 +01:00
3d5c125006
refactor: refactor the site into a module
2026-04-07 16:04:48 +01:00
fda7580404
feat: remove servers { logs }
2026-04-07 14:33:51 +01:00
3bc8264d27
feat: uptime kuma on status.*
2026-04-07 14:28:48 +01:00
c3ef189799
feat: fail2ban
2026-04-07 14:28:39 +01:00
60d300cb43
fix: website waits on forgejo
2026-04-07 13:58:42 +01:00
b443cac85f
fix: allow loopback webhooks
2026-04-07 13:57:12 +01:00
70738f4c97
add bash and node to path so pnpm build functions
2026-04-07 13:49:54 +01:00
83aa6fb46d
fix: cyclical systems
2026-04-07 13:32:30 +01:00
bf558644d1
fix: grants wynne-rebuild access to ASTRO_DB_REMOTE_URL
2026-04-07 12:59:37 +01:00
9231f61a8e
fix: root pre-step for creating the directory
2026-04-07 12:49:00 +01:00
87e42f0e27
fix: corrects repo link for new repo rename
2026-04-07 12:41:04 +01:00
1276e9b5f7
feat: attempts to implement continuous builds via Forgejo trigger
2026-04-07 12:35:15 +01:00
9073f45dc3
feat: enables HTTP_GIT for Forgejo for public users pulling
2026-04-07 12:33:00 +01:00
cbac009667
add ily.rs → wynne.rs redirect via Caddy
2026-04-05 01:48:44 +01:00
b0b4a0cb0c
use ASTRO_DB_REMOTE_URL with file: protocol for wynne service
2026-04-05 01:45:04 +01:00
dbe226cde8
move nodejs/pnpm/sqlite to lab-specific packages
2026-04-05 01:30:46 +01:00
cd55a500e9
feat: add wynne.rs service, add nodejs/pnpm to system packages
2026-04-05 01:24:05 +01:00
5fb43260c8
fix: revert dokuwiki to sdnotify=conmon, image lacks healthcheck
2026-04-04 23:58:50 +01:00
102b195d27
use dedicated podman user for rootless containers
...
Adds a system user 'podman' (uid 900) with subuid/subgid ranges
and linger for running OCI containers. Removes podman-specific
settings from lew user. DokuWiki switches to sdnotify=healthy
since the image has a built-in healthcheck.
2026-04-04 23:53:32 +01:00
71f32ba49c
fix: use podman.user for rootless instead of mkForce on serviceConfig
...
The oci-containers module has native rootless support via podman.user
which handles cgroup delegation, runtime dirs, and cidfile paths.
Delegate=true workaround for NixOS/nixpkgs#410857 .
2026-04-04 23:36:01 +01:00
b5be0575ee
fix: mkForce rootless user override for oci-containers
2026-04-04 23:25:57 +01:00
10a946ade3
pin container images and run rootless under lew
2026-04-04 23:23:13 +01:00
07faf5c11e
move user config to common, add nix gc and store optimisation
2026-04-04 23:22:55 +01:00
9004fd3933
fix: a mess of ports
2026-04-04 22:47:08 +01:00
b00d1519ac
feat: adds forgejo instance to git.ily.rs
2026-04-04 21:15:59 +01:00
4f9cd8aa35
move wiki to wiki.ily.rs
2026-04-04 20:04:10 +01:00
8beedcf05e
add caddy, podman, foundry vtt, and dokuwiki
2026-04-04 19:55:54 +01:00
7aa50aa403
disable root ssh login
2026-04-04 19:27:22 +01:00
1a7c5c9489
init: scaffold nixos flake for lab server
2026-04-04 19:20:52 +01:00
