wurzel/fruitbasket
9
1
Fork 0
Code Issues 5 Pull requests Packages Projects Releases Wiki Activity
792 commits 5 branches 0 tags 8.7 MiB
Commit graph

521 commits

Author SHA1 Message Date
quitte c7f3120c9d kanboard: update 2024-05-19 11:29:25 +02:00
quitte 616b3c64f7 ese directus: use port mapping insted of network mode=host 2024-05-19 11:25:15 +02:00
quitte bb697f3a50 decisions: use port mapping insted of network mode=host 2024-05-19 11:25:03 +02:00
quitte b34c53ddf8 podman: conf in extra file 2024-05-19 11:21:30 +02:00
quitte c8afe48290 use podman and kanboard with podman 2024-05-19 11:16:49 +02:00
quitte 16f8ec19f9 firewall: allow ldaps from podman 2024-05-19 11:15:58 +02:00
Rouven Seifert 727f5464ae
keycloak: explain things 2024-05-14 18:59:43 +02:00
Rouven Seifert f5f4bf1b24
keycloak: use from unstable 2024-05-14 18:57:23 +02:00
Rouven Seifert 763a71c93f
initrd-ssh: fix shell 2024-05-14 14:08:21 +02:00
Rouven Seifert 071c0aa464
ldap: fix dex line 2024-05-13 15:50:34 +02:00
Rouven Seifert c595af81e7
nix: flake update 2024-05-08 16:12:10 +02:00
Rouven Seifert 077138401e
dex: deconfigure 2024-05-08 15:37:19 +02:00
Rouven Seifert cb828a2188
decision: move to keycloak 2024-05-08 14:10:46 +02:00
Rouven Seifert f40e47f871
mediawiki: fix account migration 2024-05-08 12:29:07 +02:00
Rouven Seifert 8ea250e387
mediawiki: enable keycloak 2024-05-08 11:47:07 +02:00
Rouven Seifert a339235b33
postgres: add more databases to the backup 2024-05-08 11:41:47 +02:00
Rouven Seifert 02535cca08
grafana: configure oidc 2024-05-08 00:09:40 +02:00
Rouven Seifert 5384918ce6
directus: fix sso 2024-05-07 11:57:15 +02:00
Rouven Seifert 6abc1e75b9
directus: configure openid connect 2024-05-07 11:10:59 +02:00
Rouven Seifert 395ca48ac0
padlist: remove dex configuration 2024-05-06 23:51:28 +02:00
Rouven Seifert 6a2bcecb5e
ifsr.de: add sso redirect 2024-05-06 22:59:48 +02:00
Rouven Seifert a832b8d2a5
keycloak: fix things 2024-05-06 17:05:22 +02:00
Rouven Seifert 5294cd68f8
keycloak: init 2024-05-06 11:24:21 +02:00
Rouven Seifert 4fa9a2fe7d
treewide: cleanup with deadnix 2024-05-06 11:21:12 +02:00
Rouven Seifert 5930da6bdf
ssh: fix type 2024-05-06 11:13:49 +02:00
Rouven Seifert 81ac3b4c0d
ssh: disable password login 2024-05-06 11:12:19 +02:00
Jonas Gaffke 7630dc4494
decisions: use newer image 2024-05-06 11:08:41 +02:00
Rouven Seifert bdc6185fce
grafana: fix root_url 2024-05-02 19:33:50 +02:00
quitte 1f4e9a620b trying to get postfix running 2024-05-02 10:48:26 +02:00
quitte ab5df354ff Merge branch 'monitoring' of ifsr.de:wurzel/fruitbasket into monitoring 2024-04-30 14:23:46 +02:00
Joachim Stramke cf7ff37367 adding postfix to monitoring 2024-04-30 14:22:50 +02:00
quitte f0c73a1763 Merge branch 'monitoring' of ifsr.de:wurzel/fruitbasket into monitoring 2024-04-29 17:10:37 +02:00
quitte d92eff80ce fixing postgres warning 2024-04-29 17:10:35 +02:00
Joachim Stramke d1147621e1 changing scrape intervall 2024-04-29 17:09:37 +02:00
Joachim Stramke 3f47b32983 add first node 2024-04-29 15:12:52 +02:00
quitte 7526b9273b making grafana work 2024-04-29 15:09:56 +02:00
tenksom 9327314ec9 create grafana and prometheus setup 2024-04-29 14:21:58 +02:00
Rouven Seifert d03f4c6fb1
initrd: try loading network modules in stage 1 2024-04-26 22:40:30 +02:00
Rouven Seifert ebe977672a
mailman: restrict registration to tud nets 2024-04-26 22:40:18 +02:00
Rouven Seifert d5ab09207a
core: set zsh as default shell for the root user 2024-04-16 21:44:48 +02:00
Rouven Seifert 375674b1b4
nginx: fix the http3 wordpress fix 2024-04-16 20:51:16 +02:00
Rouven Seifert 08893439e7
http3: attempt a fix for wordpress sites 2024-04-16 20:36:44 +02:00
Rouven Seifert 0d4283f109
Revert "nginx: disable http3 to prevent wordpress error" 
This reverts commit 8606e89c03.
 2024-04-16 20:32:29 +02:00
Rouven Seifert c534e2a8e1
nix-serve: use nix-serve-ng 2024-04-12 11:21:52 +02:00
Rouven Seifert c04bef7173
forgejo: move into dedicated folder and enable initial action support 2024-04-11 15:27:10 +02:00
Lyn Fugmann cc98ba62b3
forgejo: add migration fix patch 2024-04-11 14:04:10 +02:00
Rouven Seifert 5edc459dba
mailman: prevent sending emails to unknown accounts 2024-04-10 10:46:18 +02:00
Jonas Gaffke 8606e89c03 nginx: disable http3 to prevent wordpress error 2024-04-09 18:38:59 +02:00
Rouven Seifert 3b48a937c8
nightline & ewsp: add www. subdomain 2024-04-04 17:12:38 +02:00
Rouven Seifert a0132fa7cf
nginx: enable http3 2024-04-03 14:59:57 +02:00
Rouven Seifert 7e03d4574f
treewide: formatting 2024-03-28 22:10:39 +01:00
Rouven Seifert aa86572079
activation: remove initrd 2024-03-28 22:08:25 +01:00
Rouven Seifert 6bfd7c8e9c
logging: give up on dates in logrotate 2024-03-28 22:02:09 +01:00
Rouven Seifert d482e15bcb
forgot about tomate 2024-03-28 21:01:32 +01:00
Rouven Seifert 4334b5ef50
treewide: minor cleanups 2024-03-28 20:55:47 +01:00
Rouven Seifert f2af8d0a75
quitte: move back to bare-metal 
Das Proxmox ist tot. Lang lebe NixOS!
 2024-03-28 18:06:41 +01:00
tenksom e18a99c452 fixing user groups for websides 
Co-authored-by: fugi <me@fugi.dev>
Co-authored-by: tenksom <joachim@stramke.com>
 2024-03-28 16:01:12 +01:00
Rouven Seifert 4f1f88a779
nginx: streamline all forceSSL and enableACME directives in one file 2024-03-25 19:34:47 +01:00
Rouven Seifert ddd2514cdb
activation script: fix kernel warning 2024-03-19 11:30:00 +01:00
Jonas Gaffke ba2f0fb86b
grav: try dex login 2024-03-17 15:48:54 +01:00
tenksom 30b4bf9540
fixing wrong timezone on ftp 2024-03-16 22:41:36 +01:00
Rouven Seifert 1e689b6c40
Merge pull request #86 from fsr/log-retention 
core: configure log retention
 2024-03-15 11:33:15 +01:00
Rouven Seifert d3da0eab79
rspamd: fix dmarc domain 2024-03-15 00:10:19 +01:00
Rouven Seifert 66a554a13b
core: configure log retention 2024-03-14 23:59:42 +01:00
Rouven Seifert 7023c328d9
mail: move mailman options to mailman.nix 2024-03-14 00:09:06 +01:00
Rouven Seifert 39320d987c
matrix: move into folder 2024-03-12 12:34:20 +01:00
Rouven Seifert fea01b0b2e
courses: move into folder 2024-03-12 12:11:44 +01:00
Rouven Seifert 527651706e
options: move to tree root 2024-03-12 12:06:21 +01:00
Rouven Seifert 01bcc9ecad
refactor: streamline core modules into dedicated folder 2024-03-12 12:03:29 +01:00
Rouven Seifert b429e6468f
refactor: streamline all websites into one folder 2024-03-12 11:49:01 +01:00
Rouven Seifert 71fdea75be
refactor: split mail into modules 2024-03-12 11:41:04 +01:00
Rouven Seifert 736c84cce9
treewide: ran deadnix 2024-03-11 22:49:12 +01:00
Rouven Seifert 05a5e085d8 ftp: fix content type for komplefprüfungen 2024-03-11 12:04:31 +01:00
Rouven Seifert d1fca836b9
mail: match smtp banner to rDNS 2024-03-08 14:41:03 +01:00
Rouven Seifert 8fe2173040
rspamd: fix rspamd signing for mailman 
Mails to the big mailing lists currently fail dkim checking since we add
a footer and rewrite the subject. To not trigger DMARC fails, we sign all
outgoing mails from local networks with our domain.
 2024-03-07 14:56:21 +01:00
Rouven Seifert b9559cf5ce
pad: wiki: add robots.txt 2024-03-06 20:59:11 +01:00
Rouven Seifert c04e11a958
mailman: add robots.txt 2024-03-06 20:49:02 +01:00
Lyn Fugmann 71cb425527
Merge remote-tracking branch 'origin/portunus2' 2024-03-06 12:44:18 +01:00
Rouven Seifert 08e43cf903
Merge pull request #82 from fsr/opendkim 
Disable opendkim
 2024-03-05 17:25:47 +01:00
Rouven Seifert 1955aa3cb2
rspamd: change dkim selector 2024-03-05 17:11:59 +01:00
Rouven Seifert c36a242b35
rspamd: remove faulty allow_hdrfrom_mismatch option 2024-03-05 17:05:37 +01:00
Lyn Fugmann 2d7ed61384
use portunus from nixos-unstable 2024-03-05 15:24:28 +01:00
Rouven Seifert 71bc8234a2
opendkim: disable 2024-03-04 22:44:53 +01:00
Rouven Seifert 8e8cc54f75 mail: configure periodically sent dmarc aggregate reports 2024-03-04 22:40:04 +01:00
Rouven Seifert a1bfa3f7e1
ldap: switch to sssd on quitte 2024-03-04 22:14:24 +01:00
Rouven Seifert a3e15cc105
rspamd: migrate redis to unix sockets 2024-03-04 19:47:09 +01:00
Rouven Seifert 4e1cf47b7b
mail: test rspamd signing with rspamd 2024-03-04 12:08:50 +01:00
Lyn Fugmann 0cf95c4c34
Add hendrik's pgp and ssh keys 2024-02-29 16:24:21 +01:00
Lyn Fugmann 4f5148fbf4
Show warning when kernel version changes 2024-02-29 12:03:02 +01:00
Lyn Fugmann 7f70ae990c
ftp: custom 403 error page 2024-02-27 14:06:06 +01:00
Rouven Seifert 794b565e07
nix-serve: fix port 2024-02-25 23:16:47 +01:00
Rouven Seifert a364e28bb8
nix-serve: init at cache.ifsr.de 2024-02-25 23:10:43 +01:00
Rouven Seifert f9fca746f7
decisions: fix secret 2024-02-22 12:20:21 +01:00
Rouven Seifert d84ad31126
mail: configure optional archive mailbox 
This enables the 'Archive' special use for Mailboxes according to
RFC 6154 [0]. Most Mailclients support this out of the box

[0] https://www.rfc-editor.org/rfc/rfc6154.html
 2024-02-21 14:02:26 +01:00
Rouven Seifert 22ca2010a0
initrd: fix command to unlock disk 2024-02-19 11:35:22 +01:00
Rouven Seifert fecff52804
ewsp: fix nginx group 2024-02-18 14:58:29 +01:00
tenksom a97f94e4b1 fixed nginx group for nightline 2024-02-18 12:54:21 +01:00
Jonas Gaffke b9a216ad59
decisions: add dex openid connect client 2024-02-05 22:01:11 +01:00
quitte ef42822101 Merge branch 'main' of github.com:fsr/fruitbasket 2024-02-04 13:08:18 +01:00
quitte bf6585a833 decisions: fix typs 2024-02-04 13:08:14 +01:00