dev/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
427,137 Commits 3 Branches 0 Tags 4.3 GiB
65ddb0ef06
Commit Graph

14478 Commits

Author SHA1 Message Date
oxalica
50eb816d29 nixos/btrbk: fix ordering of subsections and refactor 2022-10-24 08:52:25 +08:00
Sandro Jäckel
f24c4d8a28
nixos/changedetection-io: fix typo 2022-10-24 02:06:49 +02:00
github-actions[bot]
d771a50d9e
Merge staging-next into staging 2022-10-24 00:05:14 +00:00
schnusch
72ee279ab4 nixos/vdirsyncer: init 
inspired by borgbackup
 2022-10-23 23:23:13 +02:00
ajs124
16d6140878
Merge pull request #197386 from Ma27/nextcloud25 
nextcloud25: init
 2022-10-23 23:05:17 +02:00
github-actions[bot]
f4c71b2f8c
Merge staging-next into staging 2022-10-23 18:02:19 +00:00
Raito Bezarius
9b7dc6cb1c services/garage: init 2022-10-23 18:54:18 +02:00
Maximilian Bosch
40b7f52b8f
nextcloud25: init 2022-10-23 17:20:49 +02:00
Sandro
eebe7c8588
Merge pull request #197309 from qowoz/hound 2022-10-23 17:16:23 +02:00
Martin Weinelt
ccbc7eb29e
Merge pull request #197302 from MidAutumnMoon/miniflux-service-fix 2022-10-23 14:58:05 +02:00
Jonas Heinrich
65dd4df8a2
Merge pull request #197172 from jkarlson/dokuwiki 
nixos/dokuwiki: Use stateDir everywhere
 2022-10-23 14:51:52 +02:00
MidAutumnMoon
8b4b334a66
nixos/miniflux: fix startup failure caused by improper SystemCallFilter 2022-10-23 20:28:43 +08:00
github-actions[bot]
1a1df3b37d
Merge staging-next into staging 2022-10-23 12:01:47 +00:00
Maximilian Bosch
f9afc634e3
Merge pull request #191768 from KFearsoff/grafana-rfc42 
nixos/grafana: refactor for RFC42
 2022-10-23 13:28:25 +02:00
Julien Malka
b54ae5a868 nixos/uptime-kuma: init module 2022-10-23 12:44:16 +02:00
github-actions[bot]
683aa50df6
Merge staging-next into staging 2022-10-23 06:08:06 +00:00
Linus Heckemann
79ec5f2d2b
Merge pull request #161124 from Atemu/nixos/nix-skip-all-checks 
nixos/nix-daemon: make checkConfig fully disable nix.conf validation
 2022-10-23 07:55:06 +02:00
zowoq
217bf31c03 hound, nixos/hound: deduplicate runtime deps 2022-10-23 12:50:24 +10:00
Sandro
6ffd08e152
Merge pull request #197144 from SuperSandro2000/changedetection-io-network 2022-10-23 03:27:52 +02:00
Sandro Jäckel
30df44aac2
nixos/changedetection-io: fix typos 2022-10-23 01:45:37 +02:00
KFears
9f963f36e5 nixos/grafana: refactor settings for RFC42 2022-10-22 23:56:14 +04:00
KFears
c7cd659710 nixos/grafana: fix markdown docs 2022-10-22 23:54:32 +04:00
KFears
7908ef062f nixos/grafana: add alerting 2022-10-22 23:54:32 +04:00
KFears
34c2ea6750 nixos/grafana: deprecate notifiers 2022-10-22 23:54:31 +04:00
KFears
0852dc859e nixos/grafana: refactor datasources for RFC42 
This commit refactors `services.grafana.provision.datasources` towards
the RFC42 style. To preserve backwards compatibility, we have to jump
through a ton of hoops, introducing esoteric type signatures and bizarre
structs. The Grafana module definition should hopefully become a lot
cleaner after a release cycle or two once the old configuration style is
completely deprecated.
 2022-10-22 23:53:24 +04:00
Azat Bahawi
76ccbea152
nixos/endlessh: init module 2022-10-22 16:07:52 +03:00
github-actions[bot]
d079720429
Merge staging-next into staging 2022-10-22 12:01:58 +00:00
github-actions[bot]
71e4896d63
Merge master into staging-next 2022-10-22 12:01:25 +00:00
happysalada
fdfdc5df21 caddy: module: rmem_max default 2022-10-22 07:55:53 -04:00
Emil Karlson
082bc22205 nixos/dokuwiki: Use stateDir everywhere 
Current module does not use non-default stateDir everywhere.

Statedir has a consistent default, use the cfg.stateDir everywhere
unconditionally.
 2022-10-22 09:02:23 +03:00
Sandro Jäckel
17f2c5ba71
nixos/changedetection-io: fix container having no network 2022-10-22 02:14:41 +02:00
github-actions[bot]
9af095c466
Merge staging-next into staging 2022-10-22 00:05:07 +00:00
github-actions[bot]
c8a9826fe2
Merge master into staging-next 2022-10-22 00:04:37 +00:00
Sandro
0d1e0a9f80
Merge pull request #191061 from Izorkin/update-peertube-nginx 2022-10-22 00:02:11 +02:00
Sandro
67e4972c5d
Merge pull request #195745 from virusdave/patch-1 2022-10-22 00:00:52 +02:00
Sandro
d4f4e5f099
Merge pull request #189718 from rnhmjoj/pr-pcsc-polkit 2022-10-21 23:16:21 +02:00
ajs124
3dd1098f45
Merge pull request #195567 from helsinki-systems/feat/jenkins-jdk17 
nixos/jenkins: jdk11 -> jdk17
 2022-10-21 22:59:03 +02:00
Martin Weinelt
80fc469031 Merge remote-tracking branch 'origin/master' into staging-next 2022-10-21 22:33:42 +02:00
Luflosi
a255c43f44
nixos/kubo: convert to RFC42-style settings 2022-10-21 20:54:00 +02:00
Elis Hirwing
844715a8b9
Merge pull request #196819 from Stunkymonkey/freshrss-api-fix 
freshrss: fix greader-api
 2022-10-21 19:56:55 +02:00
Jonas Heinrich
c54a28030f nixos/httpd: Make option adminAddr optional 2022-10-21 09:12:25 -04:00
KFears
89e30315e0 nixos/grafana: refactor dashboards for RFC42 
This commit refactors `services.grafana.provision.dashboards` towards
the RFC42 style. To preserve backwards compatibility, we have to jump
through a ton of hoops, introducing esoteric type signatures and bizarre
structs. The Grafana module definition should hopefully become a lot
cleaner after a release cycle or two once the old configuration style is
completely deprecated.
 2022-10-21 16:42:30 +04:00
rnhmjoj
c90b6a859b
nixos/pcscd: allow use without polkit 
The polkit support in pcsclite is entirely optional but package enables
it unconditionally and this breaks connecting to the pcscd daemon on
systems without polkit.

The fix is making this configurable and automatically disabling
`polkitSupport` when the polkit service is disabled.
 2022-10-21 13:06:40 +02:00
Anderson Torres
77b67a2524
Merge pull request #196862 from atorres1985-contrib/hypr 
hypr: init at unstable-2022-05-25
 2022-10-21 08:00:20 -03:00
Florian Klink
690ccd9c4a
Merge pull request #196917 from flokli/nsncd 
nixos/nscd: add option to use nsncd, init nsncd
 2022-10-21 11:22:17 +02:00
Jan Tojnar
c789af6065 gnome._gdkPixbufCacheBuilder_DO_NOT_USE: Extract from nixos/gdk-pixbuf 
Unlike previously, we now fail loudly when a package not containing a gdk-pixbuf modules is passed.
 2022-10-21 10:06:24 +02:00
Florian Klink
aee40c2d8a nixos/nscd: add enableNsncd option 
When set, this switches from using nscd to using nsncd.

It's a protocol-compatible, non-caching and much less flaky alternative.
 2022-10-21 09:37:18 +02:00
Thomas Watson
39d6cfd68f nixos/sddm: remove stale qmlcache workaround 2022-10-20 22:15:04 -05:00
AndersonTorres
af3779f819 nixos/hypr: add module 2022-10-21 00:01:43 -03:00
github-actions[bot]
c434165354
Merge master into staging-next 2022-10-21 00:05:50 +00:00
Sandro
c9719e7fd6
Merge pull request #189269 from Tom-Hubrecht/ntfy-sh 2022-10-20 20:50:34 +02:00
Sandro
89e49d87d3
Merge pull request #196488 from SuperSandro2000/changedetectionio 2022-10-20 20:25:36 +02:00
Dave Nicponski
1a73877305 Tweak nginx config for Let's Encrypt ACME challenges 
Currently, this is using a "URI prefix match", but per nginx docs,

```
[...] the location with the longest matching prefix is selected and remembered. Then regular expressions are checked, in the order of their appearance in the configuration file. The search of regular expressions terminates on the first match, and the corresponding configuration is used. If no match with a regular expression is found then the configuration of the prefix location remembered earlier is used.
```
which means a config like this (from wordpress service) will override that
```
locations = {
          "~ /\\." = {
            priority = 800;
            extraConfig = "deny all;";
          };
};
```
😱
Luckily, from nginx docs:
```
If the longest matching prefix location has the “^~” modifier then regular expressions are not checked.
```

Whew!
 2022-10-20 10:59:28 -04:00
Izorkin
abdcfec3a0
nixos/peertube: add nginx configuration 2022-10-20 14:49:51 +03:00
Florian Klink
7987b41d44 nixos/nscd: nixpkgs-fmt 2022-10-20 13:15:16 +02:00
LuoChen
b9d9daf749 synergy: fix services.synergy.server.tls.cert (#196867) 2022-10-20 12:34:45 +08:00
github-actions[bot]
aac580f88f
Merge master into staging-next 2022-10-20 00:05:13 +00:00
Felix Bühler
27e5ca478b
Merge pull request #196140 from uninsane/pr/freshrss-patchShebangs 
freshrss: patchShebangs instead of specifying interpreter at use site
 2022-10-20 00:03:13 +02:00
Felix Buehler
fe9fb739a9 freshrss: fix greader-api 2022-10-19 23:34:26 +02:00
Sandro Jäckel
c9aab9ba97
nixos/changedetection-io: init 2022-10-19 21:33:31 +02:00
github-actions[bot]
958cbc7d51
Merge master into staging-next 2022-10-19 18:09:25 +00:00
Domen Kožar
d2cfe468f8
Merge pull request #196728 from veehaitch/github-runner-new-pats 
nixos/github-runner: support fine-grained personal access tokens
 2022-10-19 14:40:23 +02:00
Martin Weinelt
5d2330ddb5
Merge pull request #195760 from jmbaur/prometheus-kea-exporter 2022-10-19 14:02:15 +02:00
github-actions[bot]
bbaff9a043
Merge master into staging-next 2022-10-19 12:01:22 +00:00
Vincent Haupert
ea8cf2e486 nixos/github-runners: support fine-grained personal access tokens 
Add support for GitHub's new fine-grained personal access tokens [1]. As
opposed to the classic PATs, those start with `github_pat_` instead of
`ghp_`.

Make sure to use a token which has read and write access to the
"Administration" resource group [2] to allow for registrations of new
runners.

[1] https://github.blog/2022-10-18-introducing-fine-grained-personal-access-tokens-for-github/

[2] https://docs.github.com/en/rest/overview/permissions-required-for-github-apps#administration
 2022-10-19 13:50:34 +02:00
Domen Kožar
ff27dc3a09
Merge pull request #176691 from codedownio/multiple-github-runners 
GitHub runners: configurable user, environment, and service overrides + multiple runners
 2022-10-19 13:38:23 +02:00
Tom McLaughlin
c2cc9aeafd Use config name by default, falling back to attr name 2022-10-19 03:33:30 -07:00
Jan Tojnar
457f28f6f8 Merge branch 'master' into staging-next 
; Conflicts:
;	pkgs/development/tools/codespell/default.nix

codespell 2.2.2 switched to pyproject & setuptools_scm:
https://github.com/codespell-project/codespell/pull/2523
 2022-10-19 05:24:28 +02:00
Tom Hubrecht
bbf5ba11b4
nixos/ntfy-sh: init 2022-10-19 02:20:16 +02:00
Sandro
e188e93b8f
Merge pull request #196477 from MatthewCroughan/mc/stateless-cups 2022-10-18 23:22:12 +02:00
Atemu
bf6d84958d rl-2211: document nix.checkConfig option changes 
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-18 21:43:52 +02:00
Atemu
ef70bdd10f nixos/nix-daemon: make checkConfig fully disable nix.conf validation 
A new option checkAllErrors is introduced which implements the old checkConfig
toggle behaviour

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-18 21:42:31 +02:00
Sandro
2917c9a67e
Merge pull request #195205 from NULLx76/vmagent 2022-10-18 21:16:10 +02:00
Sandro
7307c3ae6c
Merge pull request #191922 from NukaDuka/karma 2022-10-18 21:10:04 +02:00
matthewcroughan
a99ab1fbc1 nixos/printing: add services.printing.stateless option 
This will remove all state directories related to CUPS on startup, which
is particularly useful for guaranteeing that printer discovery works
more reliably on some networks, since CUPS will no longer be able to
store state that effects the next run of the service, such as old
printer names and mDNS information.

Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-17 22:59:24 +01:00
Jean-François Roche
dc529302fe
nixos: add cachix watch-store service 
Self hosted CI push built packages asynchronously to cachix using a service.

Based on @Mic92 [code](https://github.com/cachix/cachix/issues/370#issuecomment-817081937)
 2022-10-17 18:24:03 +02:00
Tom McLaughlin
5221e7af04 Add comments to explain about the name defaults 2022-10-17 00:04:52 -07:00
Tom McLaughlin
2c099d1a14 Set runner name to attr name for github-runners.${name} 2022-10-17 00:01:04 -07:00
github-actions[bot]
ab4849492d
Merge master into staging-next 2022-10-17 06:24:16 +00:00
Sarah Brofeldt
85d3faa877
Merge pull request #196218 from qowoz/k8s 
kubernetes: drop e2e tests
 2022-10-17 06:33:01 +02:00
github-actions[bot]
18a6423900
Merge master into staging-next 2022-10-17 00:04:21 +00:00
Christian Kögler
46431c0819
Merge pull request #196286 from NickCao/nixos-iwd 
nixos/iwd: allow setting iwd package
 2022-10-16 21:02:05 +02:00
Christian Kögler
daba20d006
Merge pull request #196301 from bobvanderlinden/pr-nixos-dwm-package 
nixos/dwm: add package option
 2022-10-16 20:47:01 +02:00
Bob van der Linden
0d07870dc5
nixos/dwm: add package option 2022-10-16 20:34:28 +02:00
Maximilian Bosch
a2134c24a4
Merge pull request #195808 from mayflower/fix-wordpress-fonts-dir 
nixos/wordpress: make fonts directory writable
 2022-10-16 20:05:09 +02:00
github-actions[bot]
f52955a521
Merge master into staging-next 2022-10-16 18:01:42 +00:00
Maximilian Bosch
b55eefa3bd
Merge pull request #195703 from Ma27/bump-grafana 
grafana: 9.1.7 -> 9.2.0
 2022-10-16 19:33:14 +02:00
Nick Cao
46982f4194
nixos/iwd: allow setting iwd package 2022-10-16 23:12:26 +08:00
github-actions[bot]
e648107a22
Merge master into staging-next 2022-10-16 06:06:19 +00:00
zowoq
6f983050bb nixos/kubernetes: use package from config 2022-10-16 12:38:50 +10:00
Johan Thomsen
ae712870af nixos/kubernetes: drop obsolete options/cmdline flags 2022-10-16 10:13:05 +10:00
Robert Scott
4f54ef201d gocd-server: 19.3.0 -> 22.2.0 2022-10-15 13:34:50 +01:00
github-actions[bot]
886633ba43
Merge master into staging-next 2022-10-15 00:04:00 +00:00
Sandro
bdca71e9c0
Merge pull request #191924 from SuperSandro2000/ddclient-daemon 2022-10-14 23:52:14 +02:00
github-actions[bot]
283841a1ce
Merge master into staging-next 2022-10-14 06:20:50 +00:00
colin
9443d83e6f freshrss: patchShebangs instead of specifying interpreter at use site 
this makes it easier for one to manually administer freshrss.
for example, i can import OPML from the CLI like:

```
$ nix build .#freshrss
$ freshrss FRESHRSS_DATA_PATH=/var/lib/freshrss ./result/cli/import-for-user.php --user admin --file my-opml.opml
```

whereas previously i would have needed to include
`environment.systemPackages = [ php ];` in my system for that to work.
 2022-10-13 21:46:04 -07:00
Timothy DeHerrera
912a3deedc
Merge pull request #110197 from milahu/patch-1 
firewall: move rpfilter to mangle.PREROUTING to fix conntrack
 2022-10-13 21:04:40 -06:00
Tom McLaughlin
fc8fdb03a0 Try simpler github-runner.nix 2022-10-13 19:54:36 -06:00
Tom McLaughlin
69d9538b34
Update nixos/modules/services/continuous-integration/github-runners.nix 
Co-authored-by: Vincent Haupert <mail@vincent-haupert.de>
 2022-10-13 18:53:25 -06:00
Tom McLaughlin
cf1b952988
Update nixos/modules/services/continuous-integration/github-runner.nix 
Co-authored-by: Vincent Haupert <mail@vincent-haupert.de>
 2022-10-13 18:49:02 -06:00
Maximilian Bosch
5afde0064a
nixos/wordpress: make fonts directory writable 
Needed to host e.g. google fonts locally.
 2022-10-13 17:30:22 +02:00
github-actions[bot]
62bcf0ac62
Merge staging-next into staging 2022-10-13 12:02:06 +00:00
victor
28d2fcc400 vmagent: init at 1.82.0 2022-10-13 13:32:47 +02:00
Maximilian Bosch
0df6c52026
nixos/grafana: ensure that declarative prometheus data-sources don't use direct access 
Support for that was permanently dropped in Grafana 9.2.0, see also
f30795b088
 2022-10-13 10:28:29 +02:00
K900
803f180021
Merge pull request #191357 from K900/plasma-beta 
Plasma 5.26.0, KDE Frameworks 5.99
 2022-10-13 10:31:12 +03:00
Vladimír Čunát
00a757ed3f
Merge branch 'master' into staging 2022-10-13 08:27:55 +02:00
Vladimír Čunát
7a94322ed7
Merge #182618: GNOME 42 → 43 2022-10-13 08:14:27 +02:00
Jared Baur
5d79c93d77
nixos/prometheus-kea-exporter: Fix ExecStart arguments 
The current `ExecStart` will not allow for multiple sockets to properly
be passed to the program since the extra newline character is interpreted to
be part of the socket path.
 2022-10-12 20:39:09 -07:00
Artturi
e66d2fd89d
Merge pull request #194256 from Artturin/treewides2 2022-10-13 00:08:01 +03:00
Thiago Kenji Okada
b87716afc9
Merge pull request #188881 from shadaj/patch-4 
nixos/restic: make it possible to use the existing backup cache for prune/check
 2022-10-12 21:26:00 +01:00
K900
37a64594bd nixos/plasma-bigscreen: enable uinput correctly 
This is required for plasma-remotecontrollers to actually work.
Make sure to also add your user to the `uinput` group.
 2022-10-12 20:28:53 +03:00
Shadaj Laddad
dd34f474ed nixos/restic: make it possible to use the existing backup cache for prune/check 
Configures the `--cache-dir` parameter for the prune and check commands run after backing up. For `check`, also adds a `checkOpts` flag to enable using the cache, since that is disabled by default.
 2022-10-12 09:09:27 -07:00
K900
5e62c78f4b nixos/plasma5: add very basic plasma-bigscreen module 2022-10-12 17:15:56 +03:00
Pascal Bach
1ca4c178dd
Merge pull request #195488 from KoviRobi/gitlab-runner-clear-docker-cache 
Gitlab runner clear docker cache
 2022-10-12 07:56:46 +02:00
Patrick Jackson
4c69843460 nixos/mullvad-vpn: change dependency for the daemon to pkg mullvad 2022-10-11 12:37:49 -07:00
ajs124
18a17d11ff nixos/jenkins: jdk11 -> jdk17 
see https://www.jenkins.io/doc/upgrade-guide/2.361/
we'll need to do this eventually, not sure when the best point in time is
 2022-10-11 21:16:37 +02:00
Bobby Rong
35dffb9f93 pantheon.elementary-tasks: Mark as broken 
Does not build with e-d-s 3.45+ / libsoup 3 and porting is likely not easy.
 2022-10-11 18:52:33 +02:00
Jan Tojnar
0e989a5bd9 gnome.nautilus: 43.alpha → 43.beta 
https://gitlab.gnome.org/GNOME/nautilus/-/compare/43.alpha...43.beta

Also change the environment variable name to prevent crashes when running in an old environment.

Changelog-Reviewed-By: Jan Tojnar <jtojnar@gmail.com>
 2022-10-11 18:52:15 +02:00
Jan Tojnar
50c6895e77 gnome-browser-connector: 10.1 → 42.0 
https://discourse.gnome.org/t/split-and-rename-of-chrome-gnome-shell/11075
815ec9e1af...v42.0

- Renamed and split into a separate repo from the extensions.
- CMake build replaced with Meson (jq also not needed)
- requests Python module not needed since updates are now solely handled by GNOME Shell itself

Also

- Corrected license
- Cleaned up the module
- Replaced PYTHONPATH in a wrapper by Python environment

Changelog-Reviewed-By: Jan Tojnar <jtojnar@gmail.com>
 2022-10-11 18:52:12 +02:00
Tom McLaughlin
0b67081ad8 Cherry-pick 499748b 2022-10-11 06:10:11 -06:00
Tom McLaughlin
9a7f38040b Fix user type 2022-10-11 06:04:25 -06:00
Tom McLaughlin
b744fee880 Re-add DynamicUser = true per review discussion 2022-10-11 06:04:25 -06:00
Tom McLaughlin
b3de807a6a Update descriptions to use lib.mdDoc 2022-10-11 06:04:25 -06:00
Tom McLaughlin
327e05c382 Get rid of DynamicUser flag 2022-10-11 06:04:25 -06:00
Tom McLaughlin
f13759e21f Fix a deprecated types.string -> types.str 2022-10-11 06:04:25 -06:00
Tom McLaughlin
998083f2ad github-runner: configurable user, environment, service overrides + multiple runners 2022-10-11 06:04:21 -06:00
github-actions[bot]
5d957f3dba
Merge staging-next into staging 2022-10-11 00:05:26 +00:00
Martin Weinelt
cf7f4393f3
Merge pull request #193494 from NixOS/staging-next 2022-10-11 01:12:59 +02:00
Sandro
e7625f9130
Merge pull request #195418 from Baitinq/description_in_gitolite_module 2022-10-11 00:51:48 +02:00
Baitinq
01faaeb4bd
nixos/gitolite: add 'description' module option 
This option allows for the customization of the description of the
created gitolite user.

An example of this being useful is for the integration of gitolite with
cgit, which itself uses the gitolite user's description as the author of
the git repo displayed in its generated site.
 2022-10-10 23:14:46 +02:00
Martin Weinelt
294201004f Merge remote-tracking branch 'origin/master' into staging-next 2022-10-10 21:45:18 +02:00
Robert Kovacsics
c8eae7a526 nixos/gitlab-runner: Add gitlab-runner.clear-docker-cache service 2022-10-10 18:17:19 +01:00
Bernardo Meurer
499748bc04
Merge pull request #195003 from veehaitch/fix-github-runner-first-start 2022-10-10 12:35:24 -03:00
Bernardo Meurer
f5fb6e5755
Merge pull request #194496 from jansol/pipewire 2022-10-10 11:56:38 -03:00
Artturin
7e49471316 treewide: optional -> optionals where the argument is a list 
the argument to optional should not be list
 2022-10-10 15:40:21 +03:00
Artturin
f4ea1208ec treewide: *Flags convert to list from str 
*Flags implies a list

slightly relevant:
> stdenv: start deprecating non-list configureFlags https://github.com/NixOS/nixpkgs/pull/173172

the makeInstalledTests function in `nixos/tests/installed-tests/default.nix` isn't available outside of nixpkgs so
it's not a breaking change
 2022-10-10 15:30:59 +03:00
github-actions[bot]
265121ef54
Merge master into staging-next 2022-10-10 12:01:42 +00:00
Cabia Rangris
c9e1ec215b
Merge pull request #195324 from zhaofengli/fwupd-config-merging 
nixos/fwupd: Fix configuration file merging
 2022-10-10 14:11:53 +04:00
Zhaofeng Li
bbbda58c4e nixos/fwupd: Fix configuration file merging 2022-10-10 00:01:32 -06:00
Kartik Gokte
8d5a404437 nixos/karma: init 2022-10-10 10:46:25 +05:30
github-actions[bot]
44f6a02f39
Merge master into staging-next 2022-10-09 18:01:35 +00:00
Jan Solanti
96dd839e8f pipewire: 0.3.58 -> 0.3.59 2022-10-09 20:17:42 +03:00
Sandro
f5802f496d
Merge pull request #187026 from azahi/endlessh-go 2022-10-09 16:50:02 +02:00
github-actions[bot]
8972888c55
Merge master into staging-next 2022-10-09 12:01:31 +00:00
Franz Pletz
8a86d9d4aa
Merge pull request #195190 from Ma27/coturn-replace-secret 
nixos/coturn: refactor secret injection
 2022-10-09 13:48:49 +02:00
Maximilian Bosch
4ece171482
Merge pull request #194738 from mayflower/pi-tokenjanitor 
nixos/privacyidea: add proper support for `privacyidea-token-janitor`
 2022-10-09 09:50:20 +02:00
Maximilian Bosch
4fd75277dd
nixos/coturn: refactor secret injection 
The original implementation had a few issues:

* The secret was briefly leaked since it is part of the cmdline for
  `sed(1)` and on Linux `cmdline` is world-readable.
* If the secret would contain either a `,` or a `"` it would mess with
  the `sed(1)` expression itself unless you apply messy escape hacks.

To circumvent all of that, I decided to use `replace-secret` which
allows you to replace a string inside a file (in this case
`#static-auth-secret#`) with the contents of a file, i.e.
`cfg.static-auth-secret-file` without any of these issues.
 2022-10-09 09:31:48 +02:00
talyz
fae653deb4 nixos/gitlab: Configure ActionCable 
ActionCable is used to provide realtime updates in a few places,
mainly the issue sidebar.
 2022-10-09 08:12:19 +02:00
talyz
9b3ff51c77 nixos/gitlab: Set a more appropriate type for extraConfig 2022-10-09 08:12:19 +02:00
talyz
58158100f7 nixos/gitlab: Make sure docker-registry starts after cert generation 2022-10-09 08:12:19 +02:00
talyz
8e8253ddb4 nixos/gitlab: Create registry state path 2022-10-09 08:12:19 +02:00
talyz
3dedfb3fa0 nixos/gitlab: Connect to redis through a unix socket by default 
This gives us slightly higher security as you have to be in the gitlab
group to connect, and possibly a (very small) performance benefit as
well.
 2022-10-09 08:12:19 +02:00
talyz
843082eb3a nixos/gitlab: Add findutils to runtime dependencies 
Needed for the gitlab:cleanup:orphan_job_artifact_files rake task.
 2022-10-09 08:12:19 +02:00
talyz
bee6e1dafa nixos/gitlab: Deduplicate runtime dependency listing 2022-10-09 08:12:19 +02:00
talyz
0211edd1ff nixos/gitlab: Add workhorse.config option 2022-10-09 08:12:19 +02:00
github-actions[bot]
130aa9ca68
Merge master into staging-next 2022-10-09 00:03:29 +00:00
Jörg Thalheim
b4bb571fa0 iwd: remove myself as maintainer 2022-10-08 16:50:37 +02:00
Vladimír Čunát
6565abc264
Merge branch 'master' into staging-next 2022-10-08 10:20:07 +02:00
Vincent Haupert
941c79b620 nixos/github-runner: fix bugs related to InaccessiblePaths= 
This commit fixes two bugs:

1) When starting a github-runner for the very first time, the
   unconfigure script did not copy the `tokenFile` to the state
   directory. This case just was not handled so far. As a result, the
   runner could not configure. The unit did, however, fail even before
   as the state token file is configured as inaccessible for the service
   through `InaccessiblePaths=`. As the given path did not exist in the
   described case, setting up the unit's namespacing failed.

2) Similarly, the `tokenFile` is also marked as not accessible to the
   service user. There are, however, cases where other namespacing
   options make the files inaccessible even before `InaccessiblePaths=`
   kicks in; thus, they appear as non existing and cause the namespacing
   to fail yet again. Prefixing the entry with a `-` causes Systemd to
   ignore the entry if it cannot find it. This is the behavior we want.

I also took fixing those bugs as a chance to refactor the unconfigure
script to make it easier to follow.
 2022-10-08 01:32:55 +02:00
Nick Cao
309ea5a1af nixos/udev: allow marking firmware as not compressible 2022-10-07 19:40:58 +00:00
Alexander Bantyev
99cc02fe98
Merge pull request #193694 from cab404/fwupd-remote-list 
nixos.fwupd: add remote list option
 2022-10-07 14:23:19 +04:00
github-actions[bot]
c5f0d725df
Merge master into staging-next 2022-10-06 18:03:10 +00:00
Robert Hensing
1ab9d1beb1 nixos/snipe-it: Refactor to use config.networking.fqdnOrHostName 2022-10-06 16:43:07 +02:00
Robert Hensing
ed5aa53f45 nixos/matamo: Refactor to use config.networking.fqdnOrHostName 2022-10-06 16:43:07 +02:00
Robert Hensing
5699ff529a nixos/discourse: Refactor to use config.networking.fqdnOrHostName 2022-10-06 16:24:39 +02:00
Robert Hensing
c069475f82 nixos/bookstack: Refactor to use config.networking.fqdnOrHostName 2022-10-06 16:24:38 +02:00
Robert Hensing
12da62fef5 nixos/jitsi-videobridge: Refactor to use config.networking.fqdnOrHostName 2022-10-06 16:24:38 +02:00
Robert Hensing
06a1a29467 nixos/flannel: Refactor to use config.networking.fqdnOrHostName 2022-10-06 16:24:38 +02:00
Robert Hensing
185f12d96f nixos/smartd: Refactor to use config.networking.fqdnOrHostName 2022-10-06 16:24:34 +02:00
Robert Hensing
fec3f62d38 nixos/kubelet: Refactor to use config.networking.fqdnOrHostName 2022-10-06 16:24:31 +02:00
pennae
3826e303c6 nixos/firefox-syncserver: remove extra add_header 
syncstorage-rs sets this header starting with 0.12.3.
 2022-10-06 14:48:53 +02:00
pennae
f97c9d60e4 nixos/firefox-syncserver: proxyPass singleNode to 127.0.0.1 
syncstorage-rs does not listen on ::1 unless explicitly configured.
 2022-10-06 14:48:53 +02:00
pennae
8dc30e9e98 nixos/firefox-syncserver: set default for oauth verifier threads 
the 0.12.1 update introduced a static thread pool for verifying oauth
tokens. set a reasonable default for self-hosted setups (10 threads).
 2022-10-06 14:48:53 +02:00
github-actions[bot]
8d6fbd7341
Merge master into staging-next 2022-10-06 12:01:31 +00:00
Maximilian Bosch
15914eba85
nixos/privacyidea: fix manual build 2022-10-06 13:50:31 +02:00
Maximilian Bosch
ecaf6aed02
nixos/privacyidea: add proper support for privacyidea-token-janitor 
`privacyidea-token-janitor`[1] is a tool which helps to automate
maintenance of tokens. This is helpful to identify e.g. orphaned tokens,
i.e. tokens of users that were removed or tokens that were unused for a
longer period of time and apply actions to them (e.g. `disable` or
`delete`).

This patch adds two new things:

* A wrapper for `privacyidea-token-janitor` to make sure it's executable
  from CLI. To achieve this, it does a `sudo(8)` into the
  `privacyidea`-user and sets up the environment to make sure the
  configuration file can be found. With that, administrators can
  directly invoke it from the CLI without additional steps.

* An optional service is added which performs automatic cleanups of
  orphaned and/or unassigned tokens. Yes, the tool can do way more
  stuff, but I figured it's reasonable to have an automatic way to clean
  up tokens of users who were removed from the PI instance. Additional
  automation steps should probably be implemented in additional
  services (and are perhaps too custom to add them to this module).

[1] https://privacyidea.readthedocs.io/en/v3.7/workflows_and_tools/tools/index.html
 2022-10-06 11:43:20 +02:00
Jörg Thalheim
988c9130e1
Merge pull request #193767 from winterqt/update-dendrite 
dendrite: 0.9.9 -> 0.10.1
 2022-10-06 09:28:32 +02:00
github-actions[bot]
863df54d13
Merge master into staging-next 2022-10-06 06:05:17 +00:00
Stanisław Pitucha
4a6979d310
Merge pull request #194603 from phiadaarr/jitsiVideobridge 
jitsi-videobridge: fix link in docs
 2022-10-06 12:19:43 +11:00
github-actions[bot]
939050602c
Merge master into staging-next 2022-10-05 18:07:32 +00:00
Ian McFarlane
49c4a6d602 nixos/getty: mkdefault for etc/issue 2022-10-05 12:46:23 -04:00
José Luis Lafuente
396f4f05b9
nixos/tmate-ssh-server: init module (#192270) 
* nixos/tmate-ssh-server: init module

Co-authored-by: Aaron Andersen <aaron@fosslib.net>
 2022-10-05 17:34:30 +01:00
Philipp Arras
1e430612dc jitsi-videobridge: fix link in docs 2022-10-05 18:11:57 +02:00
Milan Hauth
a1e9f1e036 nixos/firewall: move rpfilter from raw to mangle 
fix wireguard (wg-quick)

netfilter packet flow:
raw.prerouting -> conntrack -> mangle.prerouting

rpfilter must be after conntrack
otherwise response packets are dropped
 2022-10-05 09:50:56 +02:00
Martin Weinelt
253ca4957d Merge remote-tracking branch 'origin/master' into staging-next 2022-10-05 00:44:16 +02:00
Jan Tojnar
e14d1e1bc9
Merge pull request #192969 from jtojnar/extra-gsettings-strict 
GNOME/Cinnamon/Pantheon: Clean up GSettings overrides and make strict
 2022-10-04 00:59:08 +02:00
Sandro
b70049a463
Merge pull request #183349 from Luflosi/rename-ipfs-to-kubo 2022-10-03 21:34:14 +02:00
David Morgan
bd62717fd3
libinput: Add tappingButtonMap option (#189612) 
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2022-10-03 21:13:43 +02:00
Sandro
1385382014
Merge pull request #191532 from ambroisie/add-tandoor-recipes 2022-10-03 20:25:06 +02:00
Bruno BELANYI
d8b1d34806 nixos/tandoor-recipes: init module 2022-10-03 09:48:54 +02:00
github-actions[bot]
0ae3aa5345
Merge master into staging-next 2022-10-02 17:45:43 +00:00
Jörg Thalheim
ffde4721ab
Merge pull request #194052 from rapenne-s/fail2ban_doc 
nixos/fail2ban: improve module documentation
 2022-10-02 17:09:43 +02:00
Luflosi
eefaaf41d6
kubo: rename from ipfs 
Go-IPFS was renamed to Kubo in version 0.14.0, see https://github.com/ipfs/kubo/issues/8959.
 2022-10-02 16:00:22 +02:00
github-actions[bot]
fc393d5731
Merge master into staging-next 2022-10-02 12:01:22 +00:00
Solene Rapenne
605a588ea6 nixos/fail2ban: improve module documentation 2022-10-02 12:59:54 +02:00
Christian Kögler
6845ddc94b
Merge pull request #192864 from alyaeanyx/nix-serve-package-option 
nixos/nix-serve: add package option
 2022-10-02 11:39:28 +02:00
github-actions[bot]
25043f0f28
Merge master into staging-next 2022-10-01 12:01:27 +00:00
Christian Kögler
1c23b486f2
Merge pull request #189275 from wentasah/nullmailer-ownership 
nixos/nullmailer: Always adjust ownership of spool directories
 2022-10-01 12:51:57 +02:00
Christian Kögler
95de459778
Merge pull request #191963 from pbsds/code-remote-module 
nixos/code-server: escape shell extraArguments
 2022-10-01 10:15:32 +02:00
Christian Kögler
d3fc91e579
Merge pull request #191352 from maifel-maifel/mr-networking-deprecation-note 
nixos/networking: add a suggestion to use networkd options
 2022-10-01 09:10:30 +02:00
Winter
7414171dd1 dendrite: 0.9.9 -> 0.10.1 2022-09-30 16:56:57 -04:00
github-actions[bot]
e1d2f74dee
Merge master into staging-next 2022-09-30 18:03:29 +00:00
Martin Weinelt
656e267275
Merge pull request #193565 from NixOS/home-assistant 2022-09-30 18:00:37 +02:00
Jonas Heinrich
b881869205 nixos/wordpress: Add language support 2022-10-01 00:44:32 +09:00
Martin Weinelt
4978672881
nixos/home-assistant: update bluetooth and serial component list 
And fix the capability logic for bluetooth devices.
 2022-09-30 15:07:17 +02:00
cab
e03e61f62e
nixos.fwupd: add remote list option 
Co-authored-by: jtojnar <jtojnar@gmail.com>
 2022-09-30 16:47:16 +04:00
github-actions[bot]
f29cec4450
Merge master into staging-next 2022-09-30 06:22:32 +00:00
Martin Weinelt
b76d66b4fd nixos/sachet: replace literalExample with literalExpression 2022-09-29 21:13:50 -04:00
github-actions[bot]
7170a03e58
Merge master into staging-next 2022-09-30 00:07:38 +00:00
Sandro
00b86b69f0
Merge pull request #193009 from SuperSandro2000/nix-daemon-localhost 2022-09-29 23:38:05 +02:00
github-actions[bot]
9d19287993
Merge master into staging-next 2022-09-29 18:03:40 +00:00
Linus Heckemann
3f7fa3fe68
Merge pull request #193404 from evrim/master 
nix-daemon module: fix mandatoryFeatures in nix.buildMachines
 2022-09-29 15:48:05 +02:00
github-actions[bot]
9c14978f84
Merge master into staging-next 2022-09-29 12:01:25 +00:00
Vladimír Čunát
8ba120420f
Merge #191339: staging-next 2022-09-15 2022-09-29 09:16:47 +02:00
Sandro
f88b09a712
Merge pull request #189176 from maifel-maifel/mr-wireguard-fwmark-mtu 2022-09-29 00:04:33 +02:00
void
6349a7d15b nix-daemon module: fix mandatoryFeatures in nix.buildMachines 2022-09-29 00:35:17 +03:00
Lassulus
af364a3655
Merge pull request #190172 from Stunkymonkey/init-freshrss 2022-09-28 23:11:33 +02:00
Felix Buehler
0b204f0c28 freshrss: init at 1.20.0, tests and module 2022-09-28 22:46:15 +02:00
github-actions[bot]
f18d801779
Merge staging-next into staging 2022-09-28 18:05:53 +00:00
Martin Weinelt
7da8d25d87 Merge remote-tracking branch 'origin/master' into staging-next 2022-09-28 17:15:11 +02:00
digital
eb49174f7b nixos/wireguard: add option to set mtu 
Some networks can only transfer packets with a lower than normal maximum
transfer unit size. In these cases, it is necessary to set a MTU that
works for the given upstream network.
 2022-09-28 17:14:38 +02:00
digital
084509af8b nixos/wireguard: add option to set firewall mark 
Wireguard can tag its packets with a firewall mark. This can be used for
firewalls or policy routing. This is very useful in some setups where
all traffic should go through a wireguard interface. The wireguard
packets cannot go through the wireguard interface and must be routed
differently, which can be done via the Firewall Mark.

The nixos option `config.networking.wireguard.interface.<name>.fwMark`
is of type `types.str` and not `types.int` to allow for specifying the
mark as a hexadecimal value.
 2022-09-28 17:14:38 +02:00
David Warde-Farley
a81954b818 Fix docs. 2022-09-28 10:48:10 -04:00
David Warde-Farley
c3e75d4931 Use null instead of empty string. 
Per @aanderse in 7556fd7.
 2022-09-28 10:48:10 -04:00
David Warde-Farley
0d5a365f61 caddy: Omit --adapter from invocations if empty string supplied 
This allows specifying configuration in the natively processed Caddy JSON format.

Fixes #153142.
 2022-09-28 10:48:10 -04:00
Alexander Bantyev
3814271800
Merge pull request #188273 from cab404/klipper-mutable-config 
klipper: additional config options
 2022-09-28 04:12:05 +04:00
github-actions[bot]
d6a1c7033e
Merge staging-next into staging 2022-09-28 00:06:37 +00:00
github-actions[bot]
70776ac218
Merge master into staging-next 2022-09-28 00:06:02 +00:00
Artturi
1c1c182814
Merge pull request #192851 from Artturin/treewides1 2022-09-28 00:50:06 +03:00
Jonathan Ringer
a2bcf8564d
nixos/openrgb: init module 2022-09-27 11:59:33 -07:00
github-actions[bot]
28a3306bd7
Merge master into staging-next 2022-09-27 12:01:17 +00:00
Sandro
2e977bf954
Merge pull request #188575 from gador/pgadmin-6.13 2022-09-27 10:18:38 +02:00
Artturin
6910a4eea0 treewide: makeWrapper to nativeBuildInputs 
this should be all of them other than the failed splices
found with nixpkgs-lint
 2022-09-26 17:53:26 +03:00
Sandro Jäckel
2970778928
nixos/nix-daemon: allow removing protocol for hydra 2022-09-26 11:50:19 +02:00
Frederik Rietdijk
de57d754a0 Merge master into staging-next 2022-09-26 09:31:22 +02:00
Jan Tojnar
1d4bddaed5 gnome.nixos-gsettings-override: extract from NixOS module 
This will clean up the module slightly and bring it more in line with Pantheon & Cinnamon.
While at it do some other refactoring inspired by those modules:

- Correct a typo in light background attribute name.
- Rename the attribute name.
- Quote arguments.
- Extract the overridden package list and override text into variables.
- Avoid having separate copy commands for overrides from packages.
- Avoid `with` statements.
- Use `concatMapStringsSep`.
 2022-09-26 00:52:08 +02:00
Sandro
d374d79d89
Merge pull request #190496 from NukaDuka/kthxbye 2022-09-25 23:43:29 +02:00
Martin Weinelt
68c0ca4416 Merge remote-tracking branch 'origin/master' into staging-next 2022-09-25 21:36:31 +02:00
Kartik Gokte
5a93846946 nixos/kthxbye: init 2022-09-26 00:16:03 +05:30
Emery Hemingway
dbf8bba95b nixos/yggdrasil: services.yggdrasil.config renamed to settings 2022-09-25 11:10:32 -05:00
Sandro
e85617ef84
Merge pull request #192806 from r-ryantm/auto-update/onlyoffice-documentserver 2022-09-25 17:40:08 +02:00
Mario Rodas
0ea721a941
Merge pull request #192196 from oxalica/pkg/v2ray 
v2ray: 4.45.0 -> 5.1.0 and refactor
 2022-09-25 09:20:49 -05:00
Michael Hoang
823e4d2fdb nixos/nextcloud: handle passwords with spaces 2022-09-25 23:57:55 +10:00
alyaeanyx
850053ebe7 nixos/nix-serve: add package option 2022-09-25 11:08:59 +02:00
Sandro Jäckel
0a564318e8
nixos/onlyoffice: fix database upgrades 2022-09-25 01:35:01 +02:00
K900
640aa41dfb nixos/plasma5: only generate kwinrc/kdeglobals if we have anything to generate 2022-09-24 15:10:14 +03:00
Azat Bahawi
99dc9b9c16
nixos/endlessh-go: init module 2022-09-23 23:55:54 +03:00
github-actions[bot]
ef833a6fd2
Merge master into staging-next 2022-09-23 12:01:34 +00:00
Alexander Bantyev
9ee2ceb492
Merge pull request #192496 from cab404/moonraker-defaults-fix 
nixos.moonraker: fix config options location
 2022-09-23 11:25:57 +04:00
cab
e46430d503
nixos.moonraker: version change fixes 
Old config locations were deprecated
https://moonraker.readthedocs.io/en/latest/configuration/#option-moved-deprecations.

Also, added PrivateTmp to accomodate for logs being unconditionally
written there.
 2022-09-23 11:17:54 +04:00