nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-25 00:12:56 +00:00
Code Issues Packages Projects Releases Wiki Activity
246,972 Commits 232 Branches 124 Tags 7.4 GiB
03ce325365
Commit Graph

9232 Commits

Author SHA1 Message Date
Peter Hoeg
9123308be5 nixos/mailhog: run with DynamicUser 2020-09-07 17:56:53 +08:00
WilliButz
5d51096839
nixos/prometheus-exporters: fix default firewall filter 
Instead of always using the default port of one exporter for its default
firewall filter, the port from the current service configuration is used.
 2020-09-07 10:28:36 +02:00
Oleksii Filonenko
6322325a53
caddy: 1.0.5 -> 2.0.0 
Rename legacy v1 to `caddy1`
 2020-09-07 09:39:16 +02:00
Maximilian Bosch
cac5339531
nixos/doc/borgbackup: correct install instructions for vorta 
No need to fiddle around with `flatpack` to get `vorta`, a graphical
desktop-client for `borgbackup` running as it's available in `nixpkgs`.
 2020-09-06 22:44:37 +02:00
Silvan Mosberger
f822080b05
Merge pull request #68887 from teto/ssh_banner 
services.openssh: add banner item
 2020-09-06 22:15:25 +02:00
Matthieu Coudron
1835fc455b services.openssh: add banner 
Add the possibility to setup a banner.

Co-authored-by: Silvan Mosberger <github@infinisil.com>
 2020-09-06 21:32:20 +02:00
Florian Klink
d7046947e5
Merge pull request #91121 from m1cr0man/master 
Restructure acme module
 2020-09-06 18:26:22 +02:00
elseym
aaf0002f68
prometheus-unifi-poller-exporter: init module 2020-09-06 17:48:19 +02:00
elseym
b381aacbba
nixos/unifi-poller: init unifi-poller service 2020-09-06 17:47:52 +02:00
Peter Hoeg
6e22c6ea6a
Merge pull request #96769 from peterhoeg/m/phpfpm 
nixos/phpfpm: always restart service on failure
 2020-09-06 21:41:38 +08:00
Florian Klink
569fdb2c35
Merge pull request #93424 from helsinki-systems/feat/gitlab-mailroom 
nixos/gitlab: Support incoming mail
 2020-09-06 15:34:02 +02:00
Julien Moutinho
fb6d63f3fd apparmor: fix and improve the service 2020-09-06 07:43:03 +02:00
Peter Hoeg
5483b1e216
Merge pull request #97123 from peterhoeg/m/fscache 
nixos/cachefilesd: don't set up manually
 2020-09-06 10:23:32 +08:00
Evan Stoll
854a229ae5
nixos/terraria: allow dataDir to be configured (#89033) 
* nixos/terraria: allow dataDir to be configured

add dataDir option to terraria module

* Update nixos/modules/services/games/terraria.nix

Co-authored-by: WORLDofPEACE <worldofpeace@protonmail.ch>

Co-authored-by: WORLDofPEACE <worldofpeace@protonmail.ch>
 2020-09-05 16:37:52 -04:00
Lassulus
964606d40f
Merge pull request #96659 from doronbehar/module/syncthing 
nixos/syncthing: add ignoreDelete folder option
 2020-09-05 22:05:04 +02:00
Even Brenden
660882d883 nixos/displayManager: add XDG_SESSION_ID to systemd user environment 
xss-lock needs XDG_SESSION_ID to respond to loginctl lock-session(s)
(and possibly other session operations such as idle hint management).
This change adds XDG_SESSION_ID to the list of imported environment
variables when starting systemctl.

Inspired by home-manager, add importVariables configuration.

Set session to XDG_SESSION_ID when running xss-lock as a service.

Co-authored-by: misuzu <bakalolka@gmail.com>
 2020-09-05 20:36:18 +02:00
Oleksii Filonenko
d71cadacd9
nixos/caddy: use v2 by default 2020-09-05 14:09:17 +02:00
Oleksii Filonenko
8cc592abfa
nixos/caddy: add support for v2 2020-09-05 14:09:16 +02:00
Peter Hoeg
6ef2152b5d nixos/cachefilesd: don't set up manually 
Use our available infrastructure instead of manually handling setup.
 2020-09-04 16:11:55 +08:00
Philipp Bartsch
47928442a8 nixos/opendkim: add keyPath to ReadWritePaths 2020-09-03 17:54:16 +02:00
Philipp Bartsch
118f341723 nixos/opendkim: add systemd service sandbox 2020-09-03 17:54:15 +02:00
Lucas Savva
61dbf4bf89
nixos/acme: Add proper nginx/httpd config reload checks 
Testing of certs failed randomly when the web server was still
returning old certs even after the reload was "complete". This was
because the reload commands send process signals and do not wait
for the worker processes to restart. This commit adds log watchers
which wait for the worker processes to be restarted.
 2020-09-02 19:25:30 +01:00
Lucas Savva
982c5a1f0e
nixos/acme: Restructure module 
- Use an acme user and group, allow group override only
- Use hashes to determine when certs actually need to regenerate
- Avoid running lego more than necessary
- Harden permissions
- Support "systemctl clean" for cert regeneration
- Support reuse of keys between some configuration changes
- Permissions fix services solves for previously root owned certs
- Add a note about multiple account creation and emails
- Migrate extraDomains to a list
- Deprecate user option
- Use minica for self-signed certs
- Rewrite all tests

I thought of a few more cases where things may go wrong,
and added tests to cover them. In particular, the web server
reload services were depending on the target - which stays alive,
meaning that the renewal timer wouldn't be triggering a reload
and old certs would stay on the web servers.

I encountered some problems ensuring that the reload took place
without accidently triggering it as part of the test. The sync
commands I added ended up being essential and I'm not sure why,
it seems like either node.succeed ends too early or there's an
oddity of the vm's filesystem I'm not aware of.

- Fix duplicate systemd rules on reload services

Since useACMEHost is not unique to every vhost, if one cert
was reused many times it would create duplicate entries in
${server}-config-reload.service for wants, before and
ConditionPathExists
 2020-09-02 19:22:43 +01:00
Félix Baylac-Jacqué
09c383c17a
Merge pull request #94917 from ju1m/biboumi 
nixos/biboumi: init
 2020-09-02 17:43:27 +02:00
WORLDofPEACE
18348c7829
Merge pull request #96042 from rnhmjoj/loaOf 
treewide: completely remove types.loaOf
 2020-09-02 08:45:37 -04:00
Julien Moutinho
f333296776 nixos/biboumi: init 2020-09-02 08:31:53 +02:00
John Ericson
1965a241fc
Merge pull request #61019 from volth/gcc.arch-amd 
platform.gcc.arch: support for AMD CPUs
 2020-09-01 22:31:16 -04:00
rnhmjoj
bc62423a87
nixos/doc: convert loaOf options refs to attrsOf 2020-09-02 00:42:51 +02:00
rnhmjoj
20d491a317
treewide: completely remove types.loaOf 2020-09-02 00:42:50 +02:00
Aaron Andersen
c51e7b7874 nixos/beanstalkd: add openFirewall option 2020-09-01 10:07:28 -04:00
Janne Heß
d85f50b71f
nixos/gitlab: Support pages 
Fixes #84525
 2020-09-01 12:08:36 +02:00
Lassulus
a081e99e41
Merge pull request #83780 from hax404/robustirc-bridge 
robustirc-bridge: init at 1.8
 2020-08-31 18:14:45 +02:00
Frederik Rietdijk
303e0bca3b
Merge pull request #96610 from romildo/rm.deepin 
deepin: remove from nixpkgs
 2020-08-31 17:58:11 +02:00
Peter Hoeg
07408cac94 nixos/phpfpm: always restart service on failure 2020-08-31 21:19:54 +08:00
Silvan Mosberger
6716867eb3
Merge pull request #96686 from nixy/add/tor-package-option 
tor: Add option to tor service for package
 2020-08-30 23:02:37 +02:00
Andrew R. M
168a9c8d38 Add option to tor service for package 2020-08-30 14:35:36 -04:00
José Romildo Malaquias
b768afb2e9 deepin: remove from nixpkgs 
The Deepin Desktop Environment (DDE) is not yet fully packaged in
nixpkgs and it has shown a very difficult task to complete, as
discussed in https://github.com/NixOS/nixpkgs/issues/94870. The
conclusion is that it is better to completely remove it.
 2020-08-30 15:27:42 -03:00
Georg Haas
9376dd8516
nixos/modules/robustirc-bridge: init 2020-08-30 18:34:22 +02:00
Doron Behar
8cd4d59a32 nixos/samba: remove upstream deprecated syncPasswordsByPam option 2020-08-30 14:29:13 +03:00
Doron Behar
5789ffc509 nixos/syncthing: add ignoreDelete folder option 2020-08-30 10:55:03 +03:00
Matthew Bauer
fc726e3494 Revert "nixos/nix-daemon.nix: assert distributedBuilds and buildMachines!=[]" 
This reverts commit 67b6e56391.
This reverts commit 250885d0ca.

Causes issues for some configs, see 67b6e56391
 2020-08-29 22:39:24 -05:00
Lassulus
a55bb108fc
Merge pull request #85328 from langston-barrett/lb/restart-dispatcher 
nixos/networkmanager: restart dispatcher when nameservers change
 2020-08-29 16:24:28 +02:00
Aaron Andersen
af25b37814
Merge pull request #96316 from aanderse/redmine 
nixos/redmine: replace extraConfig option with settings option
 2020-08-29 09:13:13 -04:00
Aaron Andersen
bcdcd5d9fc
Merge pull request #95880 from aanderse/postgresql-settings 
nixos/postgresql: replace extraConfig option with settings option
 2020-08-29 09:12:54 -04:00
Robert Hensing
4841b30784
Merge pull request #94804 from hercules-ci/init-nixos-hercules-ci-agent 
nixos/hercules-ci-agent: init
 2020-08-29 10:20:14 +02:00
Symphorien Gibol
7200fde2d5 nixos/dovecot: configure mailboxes for all processes 
Notably fts plugins need them for fts_autoindex_exclude = \SomeFlag
 2020-08-28 22:24:04 +02:00
Nick Hackman
626bd1f111 Fix typo in services/editors/emacs documentation 
In section `sec-modify-via-packageOverrides`: is -> if
 2020-08-27 16:58:52 -04:00
Matthew Bauer
3814422afa
Merge pull request #96218 from matthewbauer/cage-supply-pam-environment 
nixos/cage: supply pamEnvironment
 2020-08-27 10:15:29 -05:00
Matthew Bauer
fe8d0c2e0b nixos/cage: supply pamEnvironment 
Without this, you don’t get any of the sessionVariables in the cage
application. Things like XDG_DATA_DIRS, XCURSOR_PATH, etc. are
missing.
 2020-08-27 10:11:45 -05:00
Lassulus
c265ca02ca
Merge pull request #85963 from seqizz/g_physlock_message 
physlock: add optional lock message
 2020-08-27 10:18:34 +02:00
Aaron Andersen
2a44265608 nixos/postgresql: replace extraConfig option with settings option 2020-08-26 17:06:48 -04:00
Lassulus
e453860b8f
Merge pull request #86236 from ThibautMarty/fix-nullOr-types 
treewide: fix modules options types where the default is null
 2020-08-26 18:21:29 +02:00
Lassulus
12baef56e4
Merge pull request #96127 from hmenke/shadowsocks 
shadowsocks service: support plugins
 2020-08-26 16:49:55 +02:00
Aaron Andersen
a7c69047df nixos/redmine: remove database.password option 2020-08-26 07:08:07 -04:00
Aaron Andersen
6cf743e52d nixos/redmine: allow user to override contents of additional_environment.rb 2020-08-26 07:08:07 -04:00
Aaron Andersen
dee97b8b44 nixos/redmine: replace extraConfig option with settings option 2020-08-26 07:08:07 -04:00
Henri Menke
d35cb15153
nixos/shadowsocks: support plugins 2020-08-26 14:01:41 +12:00
Lassulus
e357d0ec8c
Merge pull request #95678 from helsinki-systems/upd/sogo 
sogo: 4.3.2 -> 5.0.0
 2020-08-26 00:04:36 +02:00
Herwig Hochleitner
49dba2c4ad
Merge pull request #96263 from bendlas/warn-wpa-supplicant-config 
nixos: wpa_supplicant: warn on unused config
 2020-08-25 23:34:18 +02:00
Anderson Torres
fffabfaefd
Merge pull request #96179 from bbigras/sssd 
nixos/sssd: fix the module
 2020-08-25 16:59:11 -03:00
Jonathan Ringer
7e07d142e7 nixos/octoprint: improve example 2020-08-25 09:13:13 -07:00
Augustin Borsu
19a7012769 jupyterhub: fix authenticator configuration 
authentication_class  is invalid, it should be authenticator_class cfr [project doc|https://tljh.jupyter.org/en/latest/topic/authenticator-configuration.html]
 2020-08-25 13:50:18 +02:00
Herwig Hochleitner
8e3da733b1 nixos: wpa_supplicant: warn on unused config 2020-08-25 12:29:58 +02:00
Sebastien Bariteau
db2de55cbe
nixos/espanso: init module (#93483) 
nixos/espanso: init module
 2020-08-24 20:37:33 -04:00
Bruno Bigras
5d36e00b7d nixos/sssd: fix the module 
'system.nssModules' was not set correctly

fix #91242
 2020-08-24 10:10:47 -04:00
Robert Hensing
346a1b0ec6 nixos/hercules-ci-agent: init 2020-08-23 20:13:15 +02:00
Lassulus
bfd706923e
Merge pull request #87700 from serokell/mkaito/upstream/prometheus-port 
prometheus: Split options listenAddress and port
 2020-08-23 09:29:01 +02:00
Lassulus
4165f9869e
Merge pull request #91586 from manveru/amazon-ssm-agent-2.3.1319.0 
ssm-agent: 2.0.633.0 -> 2.3.1319.0
 2020-08-23 08:48:16 +02:00
Justin Humm
6a7b11055c
Merge pull request #93532 from erictapen/gollum-h1-title 
nixos/gollum: introduce --h1-title option
 2020-08-22 22:45:43 +02:00
Lassulus
2fb9ee9caa
Merge pull request #87553 from JoeDupuis/enhancing-monit-module 
nixos/monit: Allow splitting the config in multiple files
 2020-08-22 19:21:55 +02:00
Silvan Mosberger
af1ac757ff
Merge pull request #95986 from turboMaCk/imwheel-service 
nixos/services.imwheel: sleep 3s before restarting
 2020-08-22 16:51:48 +02:00
Silvan Mosberger
f8e6745ad3
Merge pull request #82817 from pacien/smartd-fix-hostname-notifications 
smartmontools: fix missing hostname in notifications
 2020-08-22 16:09:14 +02:00
Marek Fajkus
dcaa2d2c74
nixos/services.imwheel: sleep 3s before restarting 2020-08-22 14:52:18 +02:00
Lassulus
d8e671676d
Merge pull request #89785 from buckley310/logstash 
logstash: fix support for multiple plugin paths
 2020-08-22 14:07:20 +02:00
Lassulus
82b424453b
Merge pull request #86632 from Atemu/undervolt-timer-optional 
Undervolt: Make timer optional
 2020-08-22 11:48:30 +02:00
Atemu
ed83bac1d9 undervolt: make timer opt-in 
It should no longer be needed but is worth keeping around in case it is
 2020-08-22 10:42:20 +02:00
Atemu
e6f0a1e7eb undervolt: apply undervolt on boot and resume 
The undervolt did not persist reboots or sleep/hibernation. With this
change you should no longer have to apply the undervolt on a timer
 2020-08-22 10:42:19 +02:00
Silvan Mosberger
1b8a94db67
nixos/logrotate: Fix option reference 
Fixes the manual build
 2020-08-22 01:38:38 +02:00
Aaron Andersen
4df837063f
Merge pull request #95809 from aanderse/logrotate 
nixos/logrotate: switch `paths` option type from listOf to attrsOf
 2020-08-21 17:31:52 -04:00
Aaron Andersen
91db1c8aec
Merge pull request #87712 from aanderse/zabbix 
zabbix: 4.4.8 -> 5.0.2
 2020-08-21 17:11:55 -04:00
Aaron Andersen
06d17caf92 nixos/httpd: configure log rotation 2020-08-21 17:04:07 -04:00
Aaron Andersen
00f08005af nixos/logrotate: switch paths option type from listOf to attrsOf 2020-08-21 17:04:04 -04:00
Silvan Mosberger
bf777413f9
Merge pull request #95722 from Infinisil/dovecot-mailboxes-improved 
nixos/dovecot: Improve mailboxes type
 2020-08-21 22:40:50 +02:00
Jörg Thalheim
6f4141507b
meguca: remove (#95920) 2020-08-21 13:00:40 -07:00
Jörg Thalheim
b6e2e4c777
Merge pull request #93425 from helsinki-systems/feat/gitlab-shell-config 2020-08-21 19:20:42 +01:00
Janne Heß
ae1dada42f
nixos/gitlab: Support incoming mail 
When incoming mails are enabled, an extra service is needed.
Closes #36125.
 2020-08-21 18:56:20 +02:00
Lassulus
ebf11e405d
Merge pull request #95122 from rudolph9/nixos/xmonad 
nixos/xmonad: Fix behavior of config opt
 2020-08-21 08:51:42 +02:00
adisbladis
7d6e7b3cd3
Merge pull request #95878 from adisbladis/emacs-26 
emacs: Fix emacs26 attribute(s)
 2020-08-21 01:26:44 +02:00
Aaron Andersen
b87b6abd17
Merge pull request #95294 from aanderse/postgresql-rootless 
nixos/postgresql: run ExecStartPost as an unprivileged user
 2020-08-20 19:16:23 -04:00
adisbladis
d1fdc67c53
nixos/editors: Remove any explicit mention of Emacs 25 2020-08-21 00:34:15 +02:00
Aaron Andersen
fd250d57bb
Merge pull request #79123 from aanderse/apachectl 
nixos/httpd: remove impurity from /etc
 2020-08-19 20:56:51 -04:00
Anderson Torres
e7139f46cd
Merge pull request #93654 from Church-/jellyfin_10.6.0 
jellyfin 10.5.5 -> 10.6.0
 2020-08-19 10:21:16 -03:00
Aaron Andersen
f6a3403055 nixos/zabbix: use proper character set and collation for mysql database 2020-08-18 10:30:27 -04:00
Silvan Mosberger
fc121e2813
nixos/dovecot: Improve mailboxes type 
The previous use of types.either disallowed assigning a list at one
point and an attrset an another.
 2020-08-18 14:25:51 +02:00
Frederik Rietdijk
fe7bab33d7
Merge pull request #95553 from zowoq/rename-maintainers 
maintainers: prefix number with underscore
 2020-08-18 11:30:24 +02:00
Silvan Mosberger
7db9fd1dbc
Merge pull request #81467 from dawidsowa/rss-bridge 
rss-bridge: init at 2020-02-26
 2020-08-18 05:00:41 +02:00
zowoq
0052523a18 maintainers: 1000101 -> _1000101 2020-08-18 07:59:48 +10:00
zowoq
7d9c49f8e6 maintainers: 0x4A6F -> _0x4A6F 2020-08-18 07:59:44 +10:00
Jörg Thalheim
8b18e07c40
Merge pull request #95522 from doronbehar/fix/transmission 
nixos/transmission: handle watch-dir
 2020-08-17 19:54:48 +01:00
Jörg Thalheim
914d37cbc9
Merge pull request #95686 from ju1m/transmission-fix 
transmission: fix BindReadOnlyPaths=
 2020-08-17 19:52:27 +01:00
Julien Moutinho
f6c3d4f723 transmission: fix BindReadOnlyPaths= 2020-08-17 14:09:12 +02:00
Martin Weinelt
a153452e54
Merge pull request #95508 from Ma27/nextcloud-nginx 
nixos/nextcloud: update nginx config
 2020-08-17 13:46:47 +02:00
ajs124
696357c376 sogo: remove SOGoZipPath 
sogo links against libzip now
 2020-08-17 12:15:16 +02:00
pacien
ea37c9caa1 smartmontools: use standard subject in notification emails 
This makes the notification script use the subject generated by smartmontools
itself both for consistency with other distros and to include the hostname.
 2020-08-16 20:48:42 +02:00
pacien
f1922cdbdc smartmontools: fix missing hostname in notifications 
This properly registers some missing dependencies of smartd_warning.sh.
 2020-08-16 20:48:03 +02:00
Florian Klink
bda86eee87
Merge pull request #95222 from eadwu/kresd/runtime-fixes 
kresd: runtime fixes
 2020-08-16 18:44:27 +02:00
Florian Klink
16fc531784
Merge pull request #95505 from flokli/remove-mathics 
mathics: remove package, module and test
 2020-08-16 18:42:10 +02:00
Edmund Wu
68366adf3c
nixos/kresd: ensure /run/knot-resolver exists 2020-08-16 12:20:10 -04:00
Edmund Wu
6c67af2fac
nixos/kresd: ensure /var/lib/knot-resolver exists 2020-08-16 12:20:03 -04:00
Edmund Wu
1a6240bde4
nixos/kresd: fix CacheDirectory permissions as per tmpfiles 2020-08-16 12:18:32 -04:00
Edmund Wu
ed89d043dc
nixos/kresd: remove derivation from systemd.tmpfiles 
Using per-unit directives as per https://github.com/NixOS/nixpkgs/pull/95222#issuecomment-674512571
 2020-08-16 12:17:14 -04:00
Maximilian Bosch
e8bdadb864
Merge pull request #95109 from Ma27/nextcloud-reverse-proxy 
nixos/nextcloud: add documentation for alternative reverse-proxies
 2020-08-16 18:09:45 +02:00
Noah Hendrickson
ce9f0c42f9 nixos/jellyfin: added a package option to the options section, defaults to using the default jellyfin package if nixos version is 20.09 or greater, otherwise will default to using the new jellyfin_10_5 derivation for older systems. 2020-08-16 11:41:41 -04:00
Doron Behar
ccee8dc09f nixos/mpd: Allow to configure a credentialsFile 
Allow to specify a password file to be located outside the store, and be
read in `ExecStartPre`.
 2020-08-16 18:03:47 +03:00
Florian Klink
b2f3bbd3fb
Merge pull request #95507 from flokli/remove-mesos 
mesos: remove package, module and test (and chronos/marathon which depends on it)
 2020-08-16 14:46:24 +02:00
Jörg Thalheim
aeffd67cec
Merge pull request #95493 from Izorkin/nginx-unit 2020-08-16 13:20:31 +01:00
paumr
d420369354 nixos/emacs: formatted with nixpkgs-fmt 2020-08-16 10:22:56 +00:00
Doron Behar
22abe3202f nixos/transmission: handle watch-dir as incomplete-dir 
`watch-dir` was neglected after #92106 - this change makes using this
setting work.
 2020-08-16 12:43:02 +03:00
Aaron Andersen
8e045b42fd nixos/postgresql: move ExecStartPost into postStart 2020-08-15 16:59:53 -04:00
Aaron Andersen
ec82ae3c39 nixos/postgresql: run ExecStartPost as an unprivileged user 2020-08-15 16:59:49 -04:00
Florian Klink
01684d6e9b nixos/mathics: remove module 2020-08-15 20:16:13 +02:00
Florian Klink
b7be00ad5e
Merge pull request #93358 from helsinki-systems/fix/gitlab-customrb 
nixos/gitlab: Fix extra-gitlab.rb
 2020-08-15 20:13:28 +02:00
Maximilian Bosch
42f6244899
nixos/nextcloud: update nginx config 
This patch ensures that latest Nextcloud works flawlessly again on our
`nginx`. The new config is mostly based on upstream recommendations
(again)[1]:

* Trying to access internals now results in a 404.
* All `.php`-routes get properly resolved now.
* Removed 404/403 handling from `nginx` as the app itself takes care of
  this. Also, this breaks the `/ocs`-API.
* `.woff2?`-files expire later than other assets like images.

Closes #95293

[1] https://docs.nextcloud.com/server/latest/admin_manual/installation/nginx.html
 2020-08-15 17:12:11 +02:00
Florian Klink
645ea787c9 nixos/marathon: remove module 
The corresponding package failed to build for >9 months.
 2020-08-15 16:59:58 +02:00
Florian Klink
a90b929020 nixos/chronos: remove module 
The chronos package has been broken for > 9 months due to the breakage
of the mesos package.
 2020-08-15 16:59:38 +02:00
Florian Klink
34d91a8cba nixos/mesos*: remove 
The mesos package has been broken for >9 months.
 2020-08-15 16:59:37 +02:00
Izorkin
26898b8518 nixos/unit: update sandboxing options 2020-08-15 11:21:09 +03:00
Martin Weinelt
f1efdd2c0b
Merge pull request #89444 from mweinelt/pinnwand-module 
nixos/pinnwand: init; steck: init at 0.5.0; nixos/tests/pinnwand: init
 2020-08-14 22:09:33 +02:00
Aaron Andersen
f1f4cc6e1b
Merge pull request #95231 from aanderse/mysql-cleanup 
nixos/mysql: run postStart as an unprivileged user
 2020-08-13 21:38:44 -04:00
Aaron Andersen
f08049e712 nixos/mysql: move ExecStartPost into postStart 2020-08-13 17:03:22 -04:00
dawidsowa
9aaf34bdb8 nixos/rss-bridge: init 2020-08-13 19:51:30 +02:00
Florian Klink
962e15aebc nixos: remove StandardOutput=syslog, StandardError=syslog lines 
Since systemd 243, docs were already steering users towards using
`journal`:

eedaf7f322

systemd 246 will go one step further, it shows warnings for these units
during bootup, and will [automatically convert these occurences to
`journal`](f3dc6af20f):

> [    6.955976] systemd[1]: /nix/store/hwyfgbwg804vmr92fxc1vkmqfq2k9s17-unit-display-manager.service/display-manager.service:27: Standard output type syslog is obsolete, automatically updating to journal. Please update│······················
 your unit file, and consider removing the setting altogether.

So there's no point of keeping `syslog` here, and it's probably a better
idea to just not set it, due to:

> This setting defaults to the value set with DefaultStandardOutput= in
> systemd-system.conf(5), which defaults to journal.
 2020-08-13 18:49:15 +02:00
Jörg Thalheim
0f2ee10cbf
Merge pull request #94270 from jerith666/postfix-dane 
postfix: add useDane config option
 2020-08-13 06:53:53 +01:00
Matt McHenry
a45f1453eb postfix: add useDane config option 2020-08-12 21:18:36 -04:00
Matthew Bauer
6fffd50623
Merge pull request #95220 from obsidiansystems/ipfs-quic-socket-activated 
nixos/ipfs: Allow QUIC connections to socket activate too
 2020-08-12 13:47:29 -05:00
Justin Humm
90ed2c01f0
Merge pull request #95266 from Lassulus/gollum-text 
nixos/gollum: replace toFile with writeText
 2020-08-12 19:28:41 +02:00
lassulus
957da625c5 nixos/gollum: replace toFile with writeText 2020-08-12 19:16:05 +02:00
Florian Klink
22e8ada3b3
Merge pull request #95264 from flokli/nginx-config-reload 
nixos/nginx: move configuration testing script into reload command
 2020-08-12 18:47:02 +02:00
Maximilian Bosch
fddeb7cb73
Revert "nextcloud: use mkDefault for whole nginx config" 
This breaks the Nextcloud vhost declaration when adding e.g. another
vhost as the `services.nginx.virtualHosts` option has `{ nextcloud =
...; }` as *default* value which will be replaced by another
`virtualHosts`-declaration with a higher (e.g. the default) priority.

The following cases are now supported & covered by the module:

* `nginx` is enabled with `nextcloud` enabled and other vhosts can be
  added / other options can be declared without having to care
  about the declaration's priority.

* Settings in the `nextcloud`-vhost in `nginx` have to be altered using
  `mkForce` as this is the only way how we officially support `nginx`
  for `nextcloud` and customizations have to be done explicitly using
  `mkForce`.

* `nginx` will be completely omitted if a user enables nextcloud
  and disables nginx using `services.nginx.enable = false;`. (because
  nginx will be enabled by this module using `mkDefault`).

This reverts commit 128dbb31cc.
Closes #95259
 2020-08-12 18:28:45 +02:00
Florian Klink
300049ca51 nixos/nginx: move configuration testing script into reload command 
nginx -t not only verifies configuration, but also creates (and chowns)
files. When the `nginx-config-reload` service is used, this can cause
directories to be chowned to `root`, causing nginx to fail.

This moves the nginx -t command into a second ExecReload command, which
runs as nginx's user. While fixing above issue, this will also cause the
configuration to be verified when running `systemctl reload nginx`, not
only when restarting the dummy `nginx-config-reload` unit. The latter is
mostly a workaround for missing features in our activation script
anyways.
 2020-08-12 18:13:29 +02:00
Jörg Thalheim
dc255dcac0
Merge pull request #94291 from Izorkin/gitea 2020-08-12 12:23:05 +01:00
Aaron Andersen
e3c210dfd1 nixos/mysql: run ExecStartPost as an unprivileged user 2020-08-12 07:21:27 -04:00
Aaron Andersen
31098a03a2 nixos/mysql: cleanup some descriptions 2020-08-12 07:11:00 -04:00
Aaron Andersen
ff9921f0fd nixos/mysql: loosen mariadb check 2020-08-12 07:10:59 -04:00
Aaron Andersen
3792fef4ec nixos/mysql: add group option 2020-08-12 07:10:56 -04:00
Aaron Andersen
9b56677634 nixos/mysql: remove variable with confusing name 2020-08-11 21:09:41 -04:00
John Ericson
e6fe9abd8b nixos/ipfs: Allow QUIC connections to socket activate too 
Well, via the underlying UDP. QUIC-level socket activation we'll get
someday.
 2020-08-11 22:08:19 +00:00
Florian Klink
921da91c8a
Merge pull request #93702 from tnias/usbguard20200723 
nixos/usbguard: rework
 2020-08-11 12:14:32 +02:00
Silvan Mosberger
f21c42143b
Merge pull request #48740 from midchildan/add-mirakurun 
mirakurun: init at 3.3.0
 2020-08-11 06:55:56 +02:00
midchildan
3c951a6e93
video/mirakurun: add module 2020-08-11 13:52:17 +09:00
Kurt Robert Rudolph
c54beb953d nixos/xmonad: Fix behavior of config opt 
Prior to this change, the `config` option (which allows you define the
haskell configuration for xmonad in your configuration.nix instead of
needing something in the home directory) prevents desktop manager
resources from starting. This can be demonstrated by configuring the
following:

```
  services.xserver = {
    displayManager.defaultSession = "xfce+xmonad";
    displayManager.lightdm.enable = true;

    desktopManager.xterm.enable = false;
    desktopManager.xfce.enable = true;
    desktopManager.xfce.enableXfwm = false;
    desktopManager.xfce.noDesktop = true;

    windowManager.xmonad = {
      enable = true;
      enableContribAndExtras = true;
      extraPackages = haskellPackages: [
        haskellPackages.xmonad-contrib
        haskellPackages.xmonad-extras
        haskellPackages.xmonad
      ];
      config = ''
        import XMonad
        import XMonad.Config.Xfce
        main = xmonad xfceConfig
               { terminal = "terminator"
               , modMask = mod4Mask }
      '';
    };
  };
```

and after user log in, search for xfce processes `ps aux | grep xfce`.
You will not find xfce processes running until after the xmonad process is killed.

The bug prevents utilities included with the desktopManager,
(e.g. powerManagement, session logout, etc.)
from working as expected.
 2020-08-10 19:17:54 -07:00
Maximilian Bosch
dd957c2cb7
nixos/nextcloud: add documentation for alternative reverse-proxies 
Follow-up for #93584[1]. This change adds a simple example how to use
`Nextcloud` with `httpd`.

[1] https://github.com/NixOS/nixpkgs/pull/93584#discussion_r465233063
 2020-08-10 22:09:01 +02:00
Chris Ostrouchov
2147589c7a pythonPackages.systemdspawner: init at 0.14 2020-08-10 10:03:43 -07:00
Chris Ostrouchov
228f08035d nixos/jupyterhub: init service 2020-08-10 10:03:43 -07:00
Matt Layher
15e5ad6c7c nixos/corerad: use SIGHUP to restart the service 
Signed-off-by: Matt Layher <mdlayher@gmail.com>
 2020-08-09 16:15:49 -07:00
Stefan Frijters
5141082267 nixos/urserver: init 2020-08-09 12:33:37 -07:00
Izorkin
2f6a18af5a nixos/netadata: enable simple sandboxing 2020-08-09 10:19:30 +03:00
Martin Weinelt
8774b9090d
nixos/pinnwand: init 2020-08-09 01:52:22 +02:00
Philipp Bartsch
ffd18cc1b1 nixos/usbguard: rework 
Use StateDirectory to create necessary directories and hardcode some
paths. Also drop file based audit logs, they can be found in the
journal. And add module option deprecation messages.
 2020-08-08 23:26:07 +02:00
Luflosi
4d9dec0aba
nixos/ipfs: add QUIC transport to swarmAddress list 
According to https://github.com/ipfs/go-ipfs/blob/master/docs/config.md#addressesswarm, the default list of swarm multiaddrs now includes the QUIC transport.
 2020-08-08 23:08:56 +02:00
Jörg Thalheim
08ba31a660
Merge pull request #94907 from zowoq/ecc-nixos 
nixos/*: editorconfig fixes
 2020-08-08 20:35:29 +01:00
Peter Hoeg
4767015ec8
Merge pull request #84073 from pnelson/nextdns-1.4.36 
nextdns: init at 1.7.0
 2020-08-08 14:29:12 +08:00
zowoq
8fb410c0ad nixos/*: editorconfig fixes 2020-08-08 10:54:16 +10:00
Jörg Thalheim
ba930d8679
nixos/modules: remove trailing whitespace 
This leads to ci failure otherwise if the file gets changed.
git-blame can ignore whitespace changes.
 2020-08-07 14:45:39 +01:00
Jörg Thalheim
e879d83e38
Merge pull request #92106 from ju1m/transmission 2020-08-07 14:40:17 +01:00
Florian Klink
38724d8e8e
Merge pull request #94837 from aanderse/gitlab 
nixos/gitlab: fix module after #94454
 2020-08-07 09:05:35 +02:00
Aaron Andersen
69eb22e4cd nixos/gitlab: fix module after #94454 2020-08-06 22:37:48 -04:00
Julien Moutinho
2a49db6a89 transmission: apply RFC0042 and harden the service 2020-08-07 04:28:11 +02:00
aszlig
1365b9ac70
nixos/manual: Fix build 
In fd9eb16b24, the option
"services.nextcloud.nginx.enable" has been removed since the module now
exclusively supports nginx only.

Unfortunately, with the option gone from the manual, the link in the
Nextcloud-specific documentation referencing the NixOS option also
became a dead link and thus the manual will no longer build.

I also removed a second reference to this option in the Nextcloud-
specific documentation, which while it doesn't lead to a build error in
the manual is nevertheless a good idea to remove as well to ensure we
don't present outdated information to readers of the manual.

Signed-off-by: aszlig <aszlig@nix.build>
Cc: @DavHau, @Ma27
 2020-08-07 03:27:42 +02:00
Pascal Bach
cee4e14bdf nixos/postgresql: fix setup script 
The missing () caused parts of the escripts to be added to the
ExecStartPost line instead of inside the script.

This caused postgresql start to fail under certain conditions.
 2020-08-06 19:47:17 +02:00
Maximilian Bosch
50d8cdb3ca
Merge pull request #93584 from DavHau/nextcloud-improvements 
nextcloud: restrict web server support to nginx; stop sharing nginx user/group; improve setup service
 2020-08-06 19:00:21 +02:00
Florian Klink
056bb77adb
Merge pull request #94454 from aanderse/postgresql-cleanup 
nixos/postgresql: fix several issues
 2020-08-06 11:12:31 +02:00
Jonathan Ringer
8d57f75f7a nixos/smartd: fix description for docbook 2020-08-06 10:06:59 +10:00
Aaron Andersen
f42f8a6d3c nixos/postgresql: replace deprecated usage of PermissionsStartOnly 2020-08-05 17:31:16 -04:00
Aaron Andersen
e50e89e1a8 nixos/postgresql: conditionally provision data directory with StateDirectory 2020-08-05 17:31:16 -04:00
Aaron Andersen
4f5fc729c7 nixos/postgresql: use a standard default value for dataDir 2020-08-05 17:31:12 -04:00
tmplt
f9f48250fe nixos/smartd: add option for notifiction email sender 2020-08-05 14:26:48 -07:00
volth
5c384e1268
nix-daemon: platform.gcc.arch is not x86 specific 2020-08-05 17:03:45 +00:00
volth
707e43b961
nix-daemon: platform.gcc.arch is not x86 specific 2020-08-05 17:02:30 +00:00
Aaron Andersen
4e3b009778
Merge pull request #94624 from dadada/dadada/dokuwiki-acl-path 
nixos/dokuwiki: fix path to ACL
 2020-08-05 07:28:12 -04:00
volth
cf7b63df5b gcc.arch: refactor, move tables under lib/ 2020-08-05 11:18:26 +00:00
Marek Mahut
0bc37f7cb4
Merge pull request #94609 from 1000101/dokuwiki 
nixos/dokuwiki: drop SSL forcing and document incompatibility
 2020-08-05 11:54:42 +02:00
Marek Mahut
6cf131d54e
Merge pull request #94340 from 1000101/maintainer 
nixos/modules: add myself as maintainer of several services
 2020-08-05 11:54:29 +02:00
Izorkin
31ce2636a4 nixos/gitea: add lfs options 2020-08-05 11:19:33 +03:00
Izorkin
6c258a7c21 nixos/gitea: add ssh options 2020-08-05 11:19:32 +03:00
Izorkin
dfd32f11f3 nixos/gitea: update sandboxing options 2020-08-05 11:19:32 +03:00
Izorkin
6a0fd33b4c nixos/gitea: add support socket connection 2020-08-05 11:19:32 +03:00
Izorkin
1a0e633c60 nixos/gitea: enable pid file 2020-08-05 11:19:32 +03:00
Izorkin
4e68da6337 nixos/gitea: add 'backupDir' option 2020-08-05 11:19:32 +03:00
Izorkin
f77e28d83d nixos/gitea: enable data access only for 'gitea' group 2020-08-05 11:19:32 +03:00
DavHau
128dbb31cc nextcloud: use mkDefault for whole nginx config 2020-08-05 11:50:26 +07:00
Ryan Mulligan
c4814c03b7 treewide: add Jitsi maintainers 
* makes jitsi maintainer team
 2020-08-04 13:07:36 -07:00
Aaron Andersen
620e154921
Merge pull request #94043 from aanderse/zabbix-settings 
nixos/zabbix*: replace extraConfig option with settings option
 2020-08-04 12:49:43 -04:00
Jörg Thalheim
1476c6f349
Merge pull request #91146 from tmplt/doc-zfs-replicate 
nixos/zfs-replication: document expected lz4 on host system
 2020-08-04 08:46:06 +01:00
dadada
938bd67988
nixos/dokuwiki: fix path to ACL 2020-08-03 23:40:41 +02:00
Ryan Mulligan
4162c69b3c
Merge pull request #92468 from petabyteboy/jitsi-meet 
nixos/jitsi-meet: init
 2020-08-03 12:43:37 -07:00
1000101
850b3ea028 nixos/dokuwiki: drop SSL forcing 2020-08-03 16:10:05 +02:00
Aaron Andersen
34298f0673
Merge pull request #94551 from StijnDW/dokuwiki 
nixos/dokuwiki: fix https redirect
 2020-08-03 08:17:37 -04:00
DavHau
ca916e8cb3 nextcloud: deprecate nginx, use chgrp, mkDefault for nginx, fix tests 2020-08-03 14:21:45 +07:00
Martin Weinelt
cc4f533a9a
nixos/snapserver: update module to work with snapcast 0.20 2020-08-02 16:58:07 +02:00