thary/sp-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
463 Commits 1 Branch 0 Tags
09675706b691bf05884d321080dfca9d4bf5f68c
Commit Graph

158 Commits

Author SHA1 Message Date
Alexander Tomokhov
2cc5743152 fix sp-modules: configPathsNeeded, requiring passthru.selfprivacy.auth 2025-01-29 12:53:44 +04:00
Alexander Tomokhov
2ed4cc0dee passthru.selfprivacy.auth.admins-group = "sp.admins" 2025-01-25 23:20:00 +04:00
Alexander Tomokhov
d008fbcc17 auth: sp.full_users group 2025-01-25 01:24:28 +04:00
Alexander Tomokhov
d8d1a1e86f fix mailserver: evaluate without auth module 2025-01-25 01:08:41 +04:00
Alexander Tomokhov
0c7a8d51b0 fix gitea,nextcloud,roundcube: evaluate without auth module 2025-01-24 16:27:48 +04:00
Alexander Tomokhov
f795bc977f fix auth: config.selfprivacy.modules.auth.enable or false 2025-01-17 16:12:22 +04:00
Alexander Tomokhov
f43ec2686d fix nextcloud: get rid of extra user_ldap configs; other fixes 2025-01-17 16:10:40 +04:00
Alexander Tomokhov
56fe5690c1 fix roundcube: OAuth secret, ExecStartPost ignore failure 2025-01-17 16:10:40 +04:00
Alexander Tomokhov
89d788aab2 fix nextcloud: OAuth secret, ExecStartPost ignore failure 2025-01-17 16:10:38 +04:00
Alexander Tomokhov
5cb3be9a36 fix forgejo: OAuth secret, ExecStartPost ignore failure, subdomain 2025-01-17 16:09:25 +04:00
Alexander Tomokhov
ed10508ed9 auth: create sp.selfprivacy-api.service-account 2025-01-17 16:09:25 +04:00
Alexander Tomokhov
0e7b113ce0 fix(nextcloud): user_oidc mapping-uid is preferred_username 2025-01-17 16:09:25 +04:00
Alexander Tomokhov
bf8fb31065 chore(mailserver): less hardcode 2025-01-17 16:09:25 +04:00
Alexander Tomokhov
041479a48b fix(auth,forgejo): recognize admins 2025-01-17 16:09:25 +04:00
Alexander Tomokhov
153e1c12d5 feat(auth,nextcloud): OAuth2 and LDAP integration 2025-01-17 16:09:22 +04:00
Alexander Tomokhov
a45cf792e5 fix(auth): rename oauth2-provider-name 2025-01-17 15:58:51 +04:00
Alexander Tomokhov
8db13dfccf feat auth,forgejo: OAuth2 and LDAP integration 2025-01-17 15:58:49 +04:00
Alexander Tomokhov
7f9f7a4db2 fix auth: sp.{service}.admins groups provisioning 2025-01-17 15:56:47 +04:00
Alexander Tomokhov
bc8f998176 fix(auth): debug and enable options 2025-01-17 15:56:47 +04:00
Alexander Tomokhov
dd4a356ae7 feat(auth,roundcube): sp.roundcube.admins inherits sp.roundcube.users 2025-01-17 15:56:47 +04:00
Alexander Tomokhov
c127145425 feat(auth,roundcube): members of sp.admins group become admins 2025-01-17 15:56:47 +04:00
Alexander Tomokhov
69c69dfb46 chore dovecot&postfix: rename nix files, disable debug 2025-01-17 15:56:47 +04:00
Alexander Tomokhov
f07b867af2 security: harden some SP modules NixOS config evaluation permissions 2025-01-17 15:56:47 +04:00
Alexander Tomokhov
3a904f599e chore: restructure LDAP related nix files 2025-01-17 15:56:47 +04:00
Alexander Tomokhov
5d76f456c1 auth: ldap-dovecot.nix, clean code 2025-01-17 15:56:47 +04:00
Alexander Tomokhov
ad6d3d6970 WIP: LDAP: Dovecot&Postfix works, but Postfix sends to 25 port 2025-01-17 15:56:47 +04:00
Alexander Tomokhov
b5de64105c kanidm 1.4.0 2025-01-17 15:56:47 +04:00
Alexander Tomokhov
f388e18ef0 minimal kanidm setup 
Only Roundcube and Dovecot communicate with Kanidm.
 2025-01-17 15:56:47 +04:00
Inex Code
5bc89e3359 fix: Missing nix input 2024-12-26 11:07:00 +03:00
Inex Code
0a698cebe5 fix: Ensure mumble's folder ownership 2024-12-26 11:04:43 +03:00
Inex Code
a4d2c06c64 refactor: Even clearer naming for the manifest version 2024-12-24 21:07:29 +03:00
Inex Code
a13a9fe839 refactor: Clearer naming for the manifest version 2024-12-24 20:55:19 +03:00
Inex Code
486b338069 fix: Back up Roundcube database 2024-12-24 20:46:05 +03:00
Inex Code
e348a491b0 feat: PostgreSQL migration 2024-12-24 20:44:41 +03:00
Inex Code
cca51699ee feat: Dynamic templating 2024-12-24 20:40:45 +03:00
Alan Urmancheev
d830288068 feat: NextCloud: add the enableImagemagick option 2024-11-29 17:38:03 +04:00
Inex Code
f8723bf4f9 fix: Allow JitsiMeet to build 2024-10-02 16:36:42 +03:00
Inex Code
4b6807d78f chore: Update Nextcloud 2024-10-02 16:18:57 +03:00
Inex Code
2c9d357ccf fix: typo 2024-09-07 07:56:33 +03:00
Inex Code
def1f392fe fix: wrong certificate for email (#99) 
Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-nixos-config/pulls/99
 2024-09-07 07:55:13 +03:00
nhnn
1710d3fbb8 fix: prosody shouldnt log debug messages 2024-08-08 16:18:39 +03:00
Inex Code
5218868b33 feat: Server monitroing, NixOS 24.05 (#84) 
Co-authored-by: nhnn <nhnn@disroot.org>
Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-nixos-config/pulls/84
 2024-07-30 19:19:06 +03:00
nhnn
b64e876929 fix: monitoring module requires selfprivacy.useBinds option 2024-07-24 06:40:38 +03:00
Inex Code
63daf9d39f fix(forgejo): Apply the selected theme 2024-07-23 02:37:58 +03:00
Inex Code
960f4a3897 feat(forgejo): Add a defaultTheme option 2024-07-23 02:34:57 +03:00
nhnn
094d9d1887 feat: support binds for prometheus monitoring service 2024-07-22 16:01:17 +03:00
Inex Code
1f4f9fd753 fix: Roundcube didn't build 2024-07-18 19:20:15 +04:00
nhnn
7cb625ba0c fix: ensure that node-exporter listens on 127.0.0.1 2024-07-15 17:07:32 +03:00
nhnn
bf8ee7705a fix: ensure that prometheus listens only on 127.0.0.1 2024-07-15 17:07:32 +03:00
nhnn
26c9fd5f6e feat: add prometheus monitoring service 2024-07-15 17:07:32 +03:00