25951 Commits

Author	SHA1	Message	Date
Atemu	a04b45f10e	Merge pull request #238596 from nikstur/qemu-vm-use-host-pkgs ... nixos/qemu-vm: use cfg.host.pkgs	2023-06-26 09:06:31 +02:00
Luke Granger-Brown	cba7cd9b6d	Merge pull request #233282 from pkern/spamassassin ... spamassassin: 3.4.6 → 4.0.0	2023-06-25 23:55:34 +01:00
Luke Granger-Brown	58b48cd720	nixos/spamassassin: add DMARC module to default config	2023-06-25 17:35:16 +00:00
Marco Rebhan	af614b53d1	nixos/avahi: Add package option ... Allows replacing the avahi package (e.g. for debugging) without having to use an overlay, avoiding unnecessary package rebuilds.	2023-06-25 11:01:58 -03:00
Felix Buehler	6672dde558	treewide: use optionalAttrs instead of 'else {}'	2023-06-25 11:01:34 -03:00
pennae	32deda9ec0	Merge pull request #238222 from mads256h/harden-davmail ... davmail: enable sandboxing options	2023-06-25 14:57:19 +02:00
Felix Buehler	933a41a73f	treewide: use optional instead of 'then []'	2023-06-25 09:11:40 -03:00
Philipp Kern	0ce6a09235	spamassassin: 3.4.6 → 4.0.0 ... The HashCash module has been removed, so this change also drops it from the default config for spamassassin.	2023-06-25 09:38:10 +00:00
Will Fancher	b154feadb9	Merge pull request #237823 from lilyinstarlight/fix/systemd-initrd-no-rev ... nixos/version: remove nixpkgs commit rev from initrd	2023-06-24 20:25:32 -04:00
happysalada	8db05aa52f	nixos/rustus: inital module	2023-06-25 04:26:53 +08:00
Nick Cao	cca08f710c	Merge pull request #237507 from Alexis211/document-wgautomesh-gossip-secret ... wgautomesh: clearer documentation for `gossip_secret_file`	2023-06-24 22:48:34 +08:00
nikstur	f6b37ddaf2	nixos/qemu-vm: use cfg.host.pkgs	2023-06-24 00:45:15 +02:00
Franz Pletz	48d0d69869	Merge pull request #239348 from Ma27/bump-grafana	2023-06-23 23:15:43 +02:00
Naïm Favier	b7098c1239	Merge pull request #239427 from ncfavier/syncthing-escaping ... nixos/syncthing: fix escaping	2023-06-23 20:29:42 +02:00
Naïm Favier	9a9ded1675	nixos/syncthing: fix escaping	2023-06-23 20:19:51 +02:00
Robert Hensing	b1ad9cd27d	Merge pull request #238136 from hercules-ci/nixos-nixpkgs-dont-check-when-_module.args.pkgs-is-set ... `nixos/nixpkgs`: Don't check when `_module.args.pkgs` is set	2023-06-23 19:17:36 +02:00
pennae	50a780ce5c	Merge pull request #237824 from drupol/add-guacamole-server-and-client ... {guacamole-server,guacamole-client}: init at 1.5.2	2023-06-23 15:41:50 +02:00
Maximilian Bosch	6e6c2e6530	nixos/grafana: clarify that there's still a bit of time until notifiers are removed ... See https://github.com/grafana/grafana/pull/66269	2023-06-23 13:45:56 +02:00
Nick Cao	e844ee1d27	Merge pull request #239208 from jelle-bigbridge/patch-1 ... nixos/vault: set coredump ulimit to 0	2023-06-23 09:57:19 +08:00
Ryan Lahfa	230a3705fc	Merge pull request #234223 from alyssais/stage-1-bind-file	2023-06-22 21:47:30 +02:00
Sandro	996d7cabba	Merge pull request #225877 from jappeace/upgrade-keter-2.1 ... nixos/keter: 2.0 -> 2.1	2023-06-22 20:00:22 +02:00
Jelle Besseling	53a3ddfab8	vault: set coredump ulimit to 0	2023-06-22 16:44:30 +02:00
Artturin	ed55524562	nixos/malloc: add back maybe unnecessary line	2023-06-22 17:28:44 +03:00
Artturi	920b833494	Merge pull request #238459 from SuperSamus/vm.max_map_count	2023-06-22 11:37:48 +03:00
Elis Hirwing	da7b79c90e	Merge pull request #239049 from LeSuisse/php80-removal ... php: drop PHP 8.0	2023-06-22 08:43:39 +02:00
K900	66cb54c7fc	nixos/supergfxd: add pciutils to path ... Used for some weird code paths. Fixes #239059.	2023-06-22 08:27:44 +03:00
seth	18aeed351a	nixos/nvidia: fix typo in PRIME/nvidiaBusID assertion	2023-06-21 17:51:59 -04:00
Pol Dellaiera	6cc1b175d3	nixos/guacamole-server: init	2023-06-21 22:11:44 +02:00
Thomas Gerbet	84c0cb1471	php: drop PHP 8.0 ... Closes #224505	2023-06-21 22:09:16 +02:00
Pol Dellaiera	a950888024	nixos/guacamole-client: init	2023-06-21 20:47:31 +02:00
Franz Pletz	5224f298f0	Merge pull request #235202 from SuperSandro2000/intel-vaapi-driver	2023-06-21 20:15:17 +02:00
Martino Fontana	e1a6c85c2b	nixos/sysctl: raise default vm.max_map_count to 1048576	2023-06-21 19:25:42 +02:00
Sandro	45539f8552	nixos/keter: fix port type	2023-06-21 18:23:47 +02:00
Domen Kožar	b37c9b89a4	Merge pull request #221169 from bouk/bouk/mainpr ... opentelemetry-collector: add NixOS module	2023-06-21 13:07:50 +01:00
Pol Dellaiera	ec2b581c34	Merge pull request #238832 from Garmelon/grafana-config-options-fix ... nixos/grafana: Fix and adjust config options	2023-06-21 11:45:24 +02:00
Jörg Thalheim	7b697d9698	Merge pull request #238822 from SuperSandro2000/grub-1-removal ... nixos/grub: remove grub 1 from descriptions	2023-06-21 09:21:04 +01:00
Joscha	daa75a4093	nixos/grafana: Fix and adjust config options	2023-06-20 23:19:45 +02:00
Sandro Jäckel	900104fc52	nixos/grub: remove grub 1 from descriptions	2023-06-20 22:34:25 +02:00
Weijia Wang	e9b4c2b8f2	exhibitor: drop	2023-06-20 22:14:35 +03:00
Alyssa Ross	eafa1fd10d	nixos/public-inbox: set ProtectHome=tmpfs ... This fixes using coderepos in /home, by allowing the coderepo paths to be bind mounted into an otherwise empty /home tmpfs. Since this was the usecase for making ProtectHome= overrideable, we don't need the mkDefault any more.	2023-06-20 17:19:09 +00:00
Alyssa Ross	03216e705c	nixos/public-inbox: make coderepo paths accessible	2023-06-20 17:19:09 +00:00
Alyssa Ross	68c68f39db	nixos/public-inbox: remove unused indexing code ... This was never run, because public-inbox-init now always initializes Xapian.	2023-06-20 17:11:23 +00:00
Sandro	0b77630d18	Merge pull request #209068 from CRTified/adguard-dhcp	2023-06-20 13:37:34 +02:00
Sandro	8eec7326a3	Merge pull request #219106 from m-bdf/nixos-testing-increase-device-timeout	2023-06-20 11:48:45 +02:00
rnhmjoj	7d263715bd	nixos/fakeroute: run as unprivileged user	2023-06-20 01:12:04 +00:00
pennae	c8b4e5d557	Merge pull request #237557 from pennae/dedocbookify-nixos ... nixos/doc: dedocbookify	2023-06-19 14:05:03 +02:00
Florian Klink	1272a034f0	Merge pull request #238396 from R-VdP/fsck_path_fix ... nixos/systemd: Make the fsck unit depend only on FS packages.	2023-06-19 12:58:27 +03:00
Joscha	5e4ec14596	nixos/grafana: update and add settings ... I went through all categories that were already present in the grafana module and added most options from the official docs at https://grafana.com/docs/grafana/v9.5/setup-grafana/configure-grafana/ I also modified the descriptions of some existing options to match the official docs more closely.	2023-06-18 22:23:48 +02:00
Joscha	2f68d8cb10	nixos/grafana: reformat	2023-06-18 22:23:39 +02:00
Ilan Joselevich	c8afc7dd83	Merge pull request #238193 from MatthewCash/master ... nixos/kmscon: disable reload-systemd-vconsole-setup service	2023-06-18 16:18:43 +03:00
Ryan Lahfa	8f83962b34	Merge pull request #238289 from NixOS/netdata-fix	2023-06-18 15:10:33 +02:00
Bobby Rong	34c861d69c	Merge pull request #238384 from bobby285271/fix/pantheon-sessionCommands ... nixos/pantheon: allow excluding pantheon-agent-geoclue2	2023-06-18 19:23:09 +08:00
r-vdp	c3fa4f9170	nixos/systemd: Make the fsck unit depend only on FS packages. ... This means that this unit no longer need to be rebuilt when the system path is changed.	2023-06-18 12:46:13 +02:00
Bobby Rong	013bb477b4	nixos/pantheon: allow excluding pantheon-agent-geoclue2 ... Bash will raise syntax error for sessionCommands if sessionPath is empty.	2023-06-18 17:23:57 +08:00
Pol Dellaiera	f6e54f4eb8	Merge pull request #192889 from pbsds/code-server-ext-compat ... code-server: add vscode-with-extensions compatibility	2023-06-18 09:12:59 +02:00
Peder Bergebakken Sundt	53077eb1be	code-server: add vscode-with-extensions compatibility	2023-06-17 23:14:50 +02:00
Emily	187729fe5d	Merge pull request #233324 from R-VdP/fwupd_1_9_1 ... fwupd: 1.8.15 -> 1.9.2	2023-06-17 22:55:59 +02:00
pacien	d99dd867fb	nixos/pixelfed: fix code cache cleanup ... The "bootstrap" directory only exists within the app's package. The cached code is placed at the root of the runtime directory instead.	2023-06-17 19:57:29 +02:00
Vladimír Čunát	6d80b598ef	Merge #237233: staging-next 2023-06-11	2023-06-17 18:53:26 +02:00
Raito Bezarius	2d7e29b60e	nixos/netdata: fix claim_token_file -> claimTokenFile ... It was forgotten in afc6f0d93b.	2023-06-17 17:51:45 +02:00
Pol Dellaiera	2028c38a83	Merge pull request #238083 from deinferno/tailscale-kmod ... nixos/tailscale: fix ipv6 nat (v6nat) support	2023-06-17 16:15:17 +02:00
Ryan Lahfa	3d941b6be8	Merge pull request #236656 from nikstur/qemu-vm-persistent-block-device-names	2023-06-17 14:52:26 +02:00
github-actions[bot]	f300d1d5c2	Merge master into staging-next	2023-06-17 12:01:26 +00:00
Mads Mogensen	40c923aa13	davmail: enable sandboxing options ... The output from `systemd-analyze security davmail`: Before: `Overall exposure level for davmail.service: 8.2 EXPOSED 🙁` After: `Overall exposure level for davmail.service: 1.3 OK 🙂`	2023-06-17 11:32:42 +02:00
Alyssa Ross	18f2be2e56	nixos/public-inbox: require that URL be non-empty ... public-inbox-init doesn't work if passed an empty URL.	2023-06-17 07:57:27 +00:00
Vladimír Čunát	41d7e84dd8	Merge branch 'master' into staging-next ... Trivial conflict: nixos/doc/manual/release-notes/rl-2311.section.md	2023-06-17 07:46:50 +02:00
Matthew_Cash	ae234ed1ab	nixos/kmscon: disable reload-systemd-vconsole-setup service	2023-06-16 19:12:07 -07:00
Robert Hensing	8f31bff794	nixos/nixpkgs: Don't check when _module.args.pkgs is set	2023-06-16 22:08:16 +02:00
Robert Hensing	a742767baf	nixos/nixpkgs: Make default Nixpkgs lazy when overridden	2023-06-16 21:46:26 +02:00
nikstur	0bdba6c99b	nixos/qemu-vm: use persistent block device names ... This change removes the bespoke logic around identifying block devices. Instead of trying to find the right device by iterating over `qemu.drives` and guessing the right partition number (e.g. /dev/vda{1,2}), devices are now identified by persistent names provided by udev in /dev/disk/by-*. Before this change, the root device was formatted on demand in the initrd. However, this makes it impossible to use filesystem identifiers to identify devices. Now, the formatting step is performed before the VM is started. Because some tests, however, rely on this behaviour, a utility function to replace this behaviour in added in /nixos/tests/common/auto-format-root-device.nix. Devices that contain neither a partition table nor a filesystem are identified by their hardware serial number which is injecetd via QEMU (and is thus persistent and predictable). PCI paths are not a reliably way to identify devices because their availability and numbering depends on the QEMU machine type. This change makes the module more robust against changes in QEMU and the kernel (non-persistent device naming) and by decoupling abstractions (i.e. rootDevice, bootPartition, and bootLoaderDevice) enables further improvement down the line.	2023-06-16 19:36:03 +02:00
deinferno	26ff15b981	nixos/tailscale: fix ipv6 nat (v6nat) support	2023-06-16 12:18:55 +00:00
Maximilian Bosch	3df3a89892	nixos/nextcloud: fix declarative cache configuration ... It's supposed to be `memcache.distributed`, not an associative PHP array named `memcache` with a key `distributed`. This was probably never caught because the initial `grep -q` check in the test was invalid: `redis-cli` prints nothing if no keys can be found when not writing to a tty apparently.	2023-06-16 14:11:38 +02:00
Maximilian Bosch	5a2769d981	nextcloud27: init ... Fixes #237560	2023-06-16 14:11:38 +02:00
github-actions[bot]	ebaef3ce4c	Merge master into staging-next	2023-06-16 12:01:08 +00:00
David McFarland	8ea644997f	nixos/gpg-agent: move pinentry-program to /etc/gnupg/gpg-agent.conf	2023-06-16 08:24:52 -03:00
David McFarland	960a5142aa	nixos/gnupg: add systemd configuration ... This depended on the systemd user configuration provided upstream in doc/examples. However, this was all removed in: eae28f1bd4	2023-06-16 08:21:47 -03:00
Charles Hall	370f3e4883	nixos/lemmy: remove option removed upstream	2023-06-16 05:59:32 -04:00
Ryan Lahfa	a056d3567c	Merge pull request #236279 from minijackson/netbox-3.5.3	2023-06-16 11:49:13 +02:00
Ryan Lahfa	afc6f0d93b	Merge pull request #228479 from zimbatm/netdata-auto-claim	2023-06-16 11:30:30 +02:00
github-actions[bot]	af7beed7be	Merge master into staging-next	2023-06-16 06:01:09 +00:00
Will Fancher	e57b65abbb	Merge pull request #238021 from dcarosone/empty-zpool-name-assertion ... nixos/zfs: assert that pool names are not empty	2023-06-15 23:21:07 -04:00
Daniel Carosone	86ecee627a	typo	2023-06-16 12:25:34 +10:00
Daniel Carosone	2dcb1b3ed7	nixos/zfs: assert that pool names are not empty ... a zfs fileSystems entry with an absolute (e.g. device) path rather than a zfs dataser is parsed as an empty pool name, causing a doomed-to-fail import job to be created as a boot dependency. Catch this as an assertion	2023-06-16 10:40:09 +10:00
github-actions[bot]	839c033ffb	Merge master into staging-next	2023-06-16 00:02:18 +00:00
Raito Bezarius	db230657fc	nixos/pixelfed: cleanup package cache at the very start	2023-06-16 00:50:10 +02:00
Maciej Krüger	95c729c030	Merge pull request #223952 from m-bdf/fix-cfs-zen-tweaks ... Fix cfs-zen-tweaks	2023-06-15 21:56:00 +02:00
github-actions[bot]	036d56d643	Merge master into staging-next	2023-06-15 12:01:17 +00:00
Charles Hall	af585658b8	nixos/lemmy: reduce moving parts	2023-06-15 06:56:56 -04:00
Charles Hall	fa9306c041	nixos/lemmy: allow overriding packages	2023-06-15 06:56:56 -04:00
Charles Hall	b1853ecfcd	nixos/lemmy: only use env var when instructed ... Lemmy checks the environment variable before the configuration file; i.e. if the file is used to configure the database but the environment variable is set to anything, the connection will fail because it'll ignore the file. This was the previous behavior. Now, the environment variable will be unset unless the user explicitly chooses to set it, which makes the file-based configuration function correctly. It's also possible to manually set the environment variable, which has the major advantage of working around [this issue][0], which prevents certain setups from working. [0]: https://github.com/LemmyNet/lemmy/issues/2945	2023-06-15 06:56:56 -04:00
Charles Hall	dd0b5a7e08	nixos/lemmy: warn for option removed upstream ... Also hide it since it shouldn't be used.	2023-06-15 06:56:56 -04:00
Carl Richard Theodor Schneider	59207cc930	nixos/adguardhome: Add allowDHCP option ... This option conditionally adds the `CAP_NET_RAW` capability to the service, which is mandatory for enabling the integrated DHCP server. It also adds another test case to validate that the DHCP server successfully provides IP addresses to clients. Co-authored-by: Sandro <sandro.jaeckel@gmail.com>	2023-06-15 12:27:35 +02:00
Jörg Thalheim	23ef0fdbf7	Merge pull request #237793 from Mic92/nix-ld ... nix-ld: 1.1.0 -> 1.2.1	2023-06-15 08:51:56 +01:00
Jörg Thalheim	5ac7371bd1	nixos/nix-ld: use mkPackageOptionMD	2023-06-15 09:47:26 +02:00
Jörg Thalheim	b60f21e135	nixos/nix-ld: also include ld.so in nixos profile	2023-06-15 09:47:25 +02:00
r-vdp	52214d7f38	fwupd: 1.8.15 -> 1.9.1 ... Release notes: https://github.com/fwupd/fwupd/releases/tag/1.9.1	2023-06-15 09:33:12 +02:00
github-actions[bot]	a5a4b79b0d	Merge master into staging-next	2023-06-15 06:01:39 +00:00
Bobby Rong	6a00501dfa	Merge pull request #235371 from bobby285271/upd/cinnamon ... Cinnamon 5.8	2023-06-15 09:41:41 +08:00
github-actions[bot]	c2fa140937	Merge master into staging-next	2023-06-15 00:02:27 +00:00
Lily Foster	b5cc73db7d	nixos/version: remove nixpkgs commit rev from initrd ... This avoids unnecessary initrd rebuilds when nothing in the initrd would have changed aside from the nixpkgs revision.	2023-06-14 16:57:34 -04:00
Lily Foster	be48010eb2	nixos/networkd: make overriding boot.initrd.systemd.package a little easier by using mkDefault	2023-06-14 16:09:25 -04:00
Silvan Mosberger	746e3349f8	Merge pull request #236025 from GaetanLepage/invidious-restart	2023-06-14 21:18:55 +02:00
github-actions[bot]	0f19fc4c44	Merge master into staging-next	2023-06-14 18:01:25 +00:00
Pol Dellaiera	f45bee3f4d	Merge pull request #237003 from pacien/ddclient-remove-ipv6-opt ... nixos/ddclient: remove obsolete ipv6 option	2023-06-14 19:57:34 +02:00
Jappie Klooster	5c4ae23ec0	nixos/keter: Run nixpkgs-fmt	2023-06-14 11:56:35 -04:00
Jappie Klooster	3f2f5bea96	nixos/keter: 2.0 -> 2.1 ... keter 2.1 now can log to stderr instead of file rotation. Which is faster and more reliable. These changes support that. Announcement: https://discourse.haskell.org/t/keter-2-1-0-released/6134 fix test by disabling log rotation run nixpkgs fmt move comment right before L37 run nixpkgs format on test Add overridable default configuration depracate keterRoot and use root, same for package split doc lines use lib.getExe to get keter binary put mkRenamedOptionModule on one line	2023-06-14 11:54:03 -04:00
Gaetan Lepage	2e582d4edc	nixos/invidious: add automaticRestart option	2023-06-14 16:19:40 +02:00
Janne Heß	1ee0ab1b79	Merge pull request #237720 from NixOS/swap-dry-activate ... switch-to-configuration.pl: fix inverted dry-activate logic for swap	2023-06-14 14:45:35 +02:00
github-actions[bot]	be1f07fc6e	Merge master into staging-next	2023-06-14 12:01:12 +00:00
Maximilian Bosch	d7ac3423d3	Merge pull request #235387 from doronbehar/nixos/nextcloud.adminpassFile ... nixos/nextcloud: Mention that adminpassFile is only used on startup	2023-06-14 12:41:35 +02:00
Wout Mertens	a97fe8990d	switch-to-configuration.pl: fix inverted dry-activate logic for swap	2023-06-14 12:11:45 +02:00
Bobby Rong	30d897c0ff	nixos/cinnamon: enable touchegg by default ... Needed for gesture support.	2023-06-14 15:48:15 +08:00
Bobby Rong	664601d819	nixos/cinnamon: enable switcherooControl by default ... xapp-gpu-offload-helper looks for this.	2023-06-14 15:48:15 +08:00
Bobby Rong	bc559b4ca3	nixos/cinnamon: install mint-l by default ... This is part of Linux Mint 21.2.	2023-06-14 15:48:15 +08:00
Bobby Rong	e0034fb284	cinnamon.mint-artwork: 1.7.3 -> 1.7.5 ... Read debian/changelog for what is changed.	2023-06-14 14:14:57 +08:00
github-actions[bot]	bdc9d2055e	Merge master into staging-next	2023-06-14 00:02:31 +00:00
Pol Dellaiera	7907dd9d6b	Merge pull request #235924 from Stunkymonkey/remove-then-{} ... treewide: use lib.optionalAttrs instead of 'then {}'	2023-06-13 20:14:58 +02:00
github-actions[bot]	f29c608f98	Merge master into staging-next	2023-06-13 18:01:32 +00:00
pennae	f52f531a4e	nixos/make-options-doc: deprecate docbook outputs ... they're no longer necessary for us and will almost definitely start to rot now (like commonmark and asciidoc outputs did previously). most existing users seem to take the docbook output and run it through pandoc to generate html, those can easily migrate to use commonmark instead. other users will hopefully pipe up when they notice that things they rely on are going away. optionsUsedDocbook has only been around for one release and only exposed to allow other places to generate warnings, so that does not deserve such precautions.	2023-06-13 16:56:32 +02:00
pennae	0997ae1903	nixos/manual: disallow docbook option docs ... it's been long in the making, and with 23.05 out we can finally disable docbook option docs and default to markdown instead. this brings a massive speed boost in manual and manpage builds, so much so that we may consider enabling user module documentation by default. we don't remove the docbook support code entirely yet because it's a lot all over, and probably better removed in multiple separate changes.	2023-06-13 16:56:30 +02:00
Pol Dellaiera	9ce1accb88	nixos/modules/openvscode-server: fix options	2023-06-13 15:08:56 +02:00
github-actions[bot]	51c0c12cd4	Merge master into staging-next	2023-06-13 12:01:28 +00:00
Sandro	9183a72d11	Merge pull request #232862 from misuzu/gotosocial-init	2023-06-13 11:36:46 +02:00
Jenny	3a86958c97	prometheus-junos-czerwonk-exporter: init at 0.10.1 + module (#235433)	2023-06-13 10:15:05 +02:00
Alex Auvolat	bbd4ce7d5e	wgautomesh: clearer documentation for gossip_secret_file	2023-06-13 10:01:12 +02:00
github-actions[bot]	9dc5849025	Merge master into staging-next	2023-06-13 00:02:27 +00:00
Martin Weinelt	104455784c	Merge pull request #219791 from emilylange/nixos-caddy ... nixos/caddy: change `acmeCA` default to `null`, omit empty `bind` directive	2023-06-12 22:40:54 +02:00
Martin Weinelt	eb6e16e3c5	Merge pull request #236875 from mweinelt/wyoming_piper_whisper ... wyoming-piper: init at 0.0.3, wyoming-faster-whisper: ini at 0.0.3	2023-06-12 21:02:18 +02:00
github-actions[bot]	a69b4c6b89	Merge master into staging-next	2023-06-12 18:01:15 +00:00
Will Fancher	5709754a1d	Merge pull request #237336 from zi3m5f/fix-systemd-nspawn-machineid-option ... systemd-nspawn: fix spelling of MachineID option and add module test	2023-06-12 13:12:59 -04:00
Martin Weinelt	f213f33f15	nixos/wyoming/faster-whisper: init	2023-06-12 18:44:44 +02:00
Martin Weinelt	7f17f8da9f	nixos/wyoming/piper: init	2023-06-12 18:44:44 +02:00
Robert Hensing	7e63eed145	Merge pull request #237282 from isker/patch-3 ... nixos/nix-daemon: fix URL for nix.conf	2023-06-12 17:01:15 +02:00
Colin	bd77d4ae46	nixos/lemmy: support nginx	2023-06-12 09:59:11 -04:00
github-actions[bot]	d0fbe5588d	Merge master into staging-next	2023-06-12 12:01:32 +00:00
Robert Hensing	ed551f4ecf	Merge pull request #237218 from hercules-ci/fix-nixos-generate-config-system ... nixos-generate-config: Fix generated hostPlatform.system	2023-06-12 12:26:56 +02:00
zi3m5f	67f5dcfd94	nixos/nspawn: fix spelling of systemd.nspawn MachineID option ... This changes option systemd.nspawn.execConfig.MachineId to MachineID. See man page systemd.nspawn(5)	2023-06-12 12:08:15 +02:00
Ryan Lahfa	3897d52760	Merge pull request #236134 from Tom-Hubrecht/pixelfed ... nixos/pixelfed: Fix missing permissions for nginx serving files	2023-06-12 11:59:31 +02:00
Ian Kerins	2f20e0e131	nixos/nix-daemon: fix URL for nix.conf ... The existing URL no longer takes you somewhere useful.	2023-06-11 23:17:50 -04:00
github-actions[bot]	112762351d	Merge master into staging-next	2023-06-12 00:02:19 +00:00
Martin Weinelt	fe2f291e17	Merge pull request #236757 from max-privatevoid/pam-kanidm ... nixos/pam: support Kanidm	2023-06-11 20:22:00 +02:00
Robert Hensing	1350e522fa	nixos-generate-config: Fix generated hostPlatform.system ... While the intent of the code was correct, the system string can not be used in the substituteAll function. See https://github.com/NixOS/nixpkgs/issues/237216	2023-06-11 19:28:51 +02:00
Max	847a7f1102	nixos/kanidm: auto-restart kanidm-unixd-tasks	2023-06-11 17:17:42 +02:00
Max	34a4165674	nixos/pam: support Kanidm	2023-06-11 17:17:42 +02:00
github-actions[bot]	b5b56fecff	Merge staging-next into staging	2023-06-11 12:02:12 +00:00
Marillindië	e394dc22f9	xray: allow binding lower ports ... Set CapabilityBoundingSet, AmbientCapabilities and NoNewPrivileges as described in XTLS/xray-install.	2023-06-11 09:03:50 +01:00
github-actions[bot]	9f2767ce37	Merge staging-next into staging	2023-06-10 18:01:41 +00:00
Ryan Lahfa	6262a46ba8	Merge pull request #234034 from NixOS/qemu/direct-boot ... nixos/qemu-vm: introduce `virtualisation.directBoot`	2023-06-10 18:12:56 +02:00
IndeedNotJames	93b9fc8ac0	nixos/caddy: omit empty bind directive when listenAddresses is empty ... context: https://caddy.community/t/random-502-errors-when-proxying-to-application-with-self-signed-certificate/19657/6	2023-06-10 13:59:15 +02:00
IndeedNotJames	3f93ec5814	nixos/caddy: change acmeCA default to null ... The nixos/caddy module is somewhat old by now and has undergone quite some refactors. This specific module option (originally named `ca`) used to make a bit more sense when Caddy did not have multiple ACME CAs as fallback (LE & ZeroSSL) by configured by default yet (ZeroSSL came with v2.3.0). I also rephrased the description slightly, to mention Caddy's automatic issuer fallback and a note which this option maps to in the Caddyfile, to provide a bit more context and a more up-to-date recommendation. Specifically that "fine-grained configuration" section comes from a time when this module did some custom tls/issuer config json merging with the templated Caddyfile using `jq`. The "The URL to the ACME CA's directory" section is a word-for-word copy from the official Caddy docs, which also include a link to LE's docs to the referenced staging endpoint. So I added that as well.	2023-06-10 13:59:10 +02:00