thary/sp-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
489 Commits 1 Branch 0 Tags
3ab2f6a81c50c0cf9165d510322277e7718c4f5f
Commit Graph

489 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
nhnn
3ab2f6a81c chore: update api with ACME fix 2025-07-03 18:22:20 +03:00
nhnn
1e7051ed4e chore: nixos-mailserver update 2025-07-03 18:22:18 +03:00
nhnn
854f515006 fix: old nix was removed 2025-07-03 18:22:17 +03:00
nhnn
7f23388649 chore: bump nixpkgs version 2025-07-03 18:22:17 +03:00
nhnn
14e8cf359d fix: various kanidm, jitsi and general fixes 2025-07-03 18:22:16 +03:00
nhnn
eb29949a03 refactor: remove sudo 2025-07-03 18:22:07 +03:00
nhnn
5e985d0517 feat: conservative hardening options 2025-06-18 20:38:54 +03:00
Inex Code
b596bf9442 fix: Do not import PIL 2025-06-18 20:38:53 +03:00
Inex Code
43b8ee9726 fix: Downgrade nix version 2025-06-18 20:38:52 +03:00
Inex Code
9d5789bb44 fix: Use a newer nix version 2025-06-18 20:38:51 +03:00
Inex Code
6c593b7fbc fix: Disable postgres upgrade 2025-06-18 20:38:49 +03:00
Inex Code
d94b82e7fa style: Use RFC formatter 2025-06-18 20:37:27 +03:00
Inex Code
63a0d84701 feat: Migrate to NixOS 24.11 2025-06-18 20:35:38 +03:00
nhnn
23f93f84d8 fix: remove repl-flake feature 2025-06-18 20:08:13 +03:00
nhnn
887b681f55 fix: switch to nix 2.26 so we can update to 25.05 without issues 2025-06-18 20:00:38 +03:00
nhnn
86233cac27 style: format tree 2025-06-18 19:53:44 +03:00
Clover
ed990906bd feat: add option to enable Samba/CIFS features for Nextcloud (#153) 
same as #152 but minus the formatting from nixfmt

Co-authored-by: cl0vrfi3ld <47996003+cl0vrfi3ld@users.noreply.github.com>
Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-nixos-config/pulls/153
Reviewed-by: Inex Code <inex.code@selfprivacy.org>
Co-authored-by: Clover <cl0vrfi3ld@noreply.git.selfprivacy.org>
Co-committed-by: Clover <cl0vrfi3ld@noreply.git.selfprivacy.org>
 2025-06-15 22:21:30 +03:00
nhnn
cfb471a9ce fix: remove E2E support in jitsi 2025-05-16 14:12:39 +03:00
Alexander Tomokhov
cc7d594807 nextcloud: disable /updater location (substitute html) 2025-05-14 17:22:07 +04:00
Inex Code
c9890828cd Revert "fix: make postfix use modern TLS" 
This reverts commit 085654a506.
 2025-05-11 14:28:26 +03:00
nhnn
085654a506 fix: make postfix use modern TLS 2025-05-09 14:33:23 +03:00
nhnn
b51561ef01 fix: harden vikunja services and don't generate service token for it 2025-05-09 14:33:11 +03:00
Inex Code
744ba8f03c chore: Update API 2025-05-01 17:18:25 +03:00
Inex Code
0b4273e786 chore: Update API and nixpkgs 2025-05-01 16:33:47 +03:00
nhnn
c12025a5de fix: disable updates 2025-05-01 16:10:41 +03:00
nhnn
c9a50cff27 fix: use strings, disable logreader app as it's not useful because user can check logs in SP app 2025-05-01 16:10:38 +03:00
nhnn
09675706b6 fix: make opcache string buffer bigger 2025-05-01 16:09:43 +03:00
nhnn
0075ebd35a fix: try enabling memcache for nextcloud 2025-05-01 16:09:41 +03:00
Alexander Tomokhov
8e924d3aaf nextcloud: disableMaintenanceModeAtStart option 2025-04-29 18:44:41 +04:00
Inex Code
3a84cc7ed4 fix: Allow force disabling the dns propagation check 2025-04-27 09:10:43 +03:00
Inex Code
99ee8f09d7 fix: Set a DNS resolver for ACME 2025-04-27 08:54:48 +03:00
Inex Code
bdec8fd1e9 Merge branch 'sso' into flakes 2025-04-25 15:10:07 +03:00
Inex Code
604c3caa44 chore: Prepare SSO branch for release 2025-04-25 15:08:38 +03:00
Inex Code
fbcb6be4aa fix: API 2025-04-25 15:02:28 +03:00
Inex Code
bd6c0eff02 fix: API tried to read kanidm token form env, not file 2025-04-25 14:57:04 +03:00
Inex Code
24dde4afb5 chore: Update API version 2025-04-25 14:45:06 +03:00
Inex Code
1f1218d89b chore: Update API version 2025-04-25 14:28:31 +03:00
Inex Code
547eb00544 feat: Delete nextcloud admin user (#133) 
Co-authored-by: Alexander Tomokhov <alexoundos@selfprivacy.org>
Reviewed-on: https://git.selfprivacy.org/SelfPrivacy/selfprivacy-nixos-config/pulls/133
 2025-04-25 14:21:44 +03:00
Alexander Tomokhov
72472e8edf auth: do not create sp.selfprivacy-api.* groups 2025-04-22 21:17:59 +04:00
Alexander Tomokhov
8a79551743 auth: remove possibility to use kanidm 1.4.6 2025-04-22 17:34:30 +04:00
Alexander Tomokhov
9f5ace5258 roundcube: specify systemd dependencies with dovecot 2025-04-22 02:07:27 +04:00
Alexander Tomokhov
849b695aa4 auth: create a proper selfprivacy-api token via auth module 
- selfprivacy-api NixOS module can use selfprivacy.auth.clients option
  to configure its own client
- when "selfprivacy-api" OAuth ID name is used, read-write token is
  created and idm_admins membership is set
 2025-04-22 01:26:29 +04:00
Alexander Tomokhov
217fdce469 auth: kanidm.db migration to v1.5.0 for provisioning 
- ExecStartPre sqlite script for any kanidm version <= 1.5.0.
 2025-04-22 00:04:44 +04:00
Alexander Tomokhov
69a5103f8b refact auth: systemd.tmpfiles for /run/keys/selfprivacy-api; comments 2025-04-21 20:22:40 +04:00
Alexander Tomokhov
a96b6b8444 auth: add only roundcube kanidm service account to idm_mail_servers 2025-04-21 20:22:40 +04:00
Alexander Tomokhov
3f1a2b5baf fix nixpkgs-2411 in flake.lock 2025-04-21 20:22:40 +04:00
Alexander Tomokhov
f2e9623d7f auth: selfprivacy.sso.useKanidm_1_4 2025-04-18 21:16:24 +04:00
Alexander Tomokhov
43c3ea06ab nextcloud,auth: set originLanding to user_oidc/login 2025-04-18 21:16:24 +04:00
Alexander Tomokhov
eb5074ba82 nextcloud,auth: migrate to auth module 2025-04-18 21:16:24 +04:00
Alexander Tomokhov
043c192fb7 auth: upgrade kanidm to 1.5 2025-04-18 16:17:38 +03:00