Adrian Pistol
191131077b
unifi7: 7.4.156 -> 7.5.176
2023-09-24 17:25:08 +02:00
Ryan Lahfa
0fa52bd973
Merge pull request #257043 from Tom-Hubrecht/garage-envfile
2023-09-24 17:07:21 +02:00
Tom Hubrecht
2d38d9edc0
nixos/garage: Add an environmentFile option
...
Since garage 0.8.2, garage accepts environment variables for passing secrets,
e.g. `GARAGE_RPC_SECRET` or `GARAGE_ADMIN_TOKEN`. The added `environmentFile`
allows those secrets to not be present in the nix store.
2023-09-24 14:47:05 +02:00
Maximilian Bosch
9bd9e20e9a
Merge pull request #256090 from CRTified/sshd-validation-fix
...
nixos/sshd: Specify connection parameters for configuration validation
2023-09-24 14:12:46 +02:00
github-actions[bot]
b6d5fc29bc
Merge master into staging-next
2023-09-24 12:01:00 +00:00
Aryeh Hillman
b6766564ed
Update wg-quick.nix
...
Update wg-quick.nix such that a search for `WireGuard` in the `NixOS Options` section of search.nixos.org brings up the convenient `networking.wg-quick.interfaces.wg0.configFile` option.
2023-09-24 13:24:27 +02:00
Lin Jian
c5ba4c687e
nixos/kanata: add default value, doc and warning for devices
2023-09-24 17:09:23 +08:00
Minijackson
6c7e768420
netbox_3_5: introduce alias
...
clears up ambiguity
use that alias in tests
Co-authored-by: Raito Bezarius <masterancpp@gmail.com>
2023-09-24 10:13:05 +02:00
Jakub Sokołowski
4e587ac821
mtr-exporter: support specifying multiple jobs
...
This ability has been added in `0.3.0` release:
https://github.com/mgumz/mtr-exporter/releases/tag/0.3.0
https://github.com/NixOS/nixpkgs/pull/252667
To achieve this a config is generated and symlinked at `/etc/mtr-exporter.conf`.
Signed-off-by: Jakub Sokołowski <jakub@status.im>
2023-09-24 09:13:31 +02:00
github-actions[bot]
0e6413dbff
Merge master into staging-next
2023-09-24 00:02:23 +00:00
Felix Schröter
5365ecb40b
rome: remove
...
rome is no longer maintained.
A fork called biome is available in nixpkgs.
2023-09-23 19:43:45 -03:00
Thiago Kenji Okada
a3a7520a2f
Merge pull request #119856 from ilian/oci-image
...
oci-image: init scripts to build and upload image
2023-09-23 21:09:07 +01:00
Martin Weinelt
1ff350f7b8
Merge pull request #81460 from vcunat/p/knot-nixConfig
...
nixos/knot: allow full configuration by nix values
2023-09-23 20:55:54 +02:00
Thomas Gerbet
a3e7a80c7e
mattermost: 7.10.5 -> 8.1.2
...
Fixes MMSA-2023-00224, MMSA-2023-00230, MMSA-2023-00222, MMSA-2023-00223, MMSA-2023-00217,
MMSA-2023-00210, MMSA-2023-00234, MMSA-2023-00232 and MMSA-2023-00239.
Mattermost 7.10.x is EOL, this contribution moves to the 8.1.x branch which is the new ESR.
Changelog can be found here:
https://docs.mattermost.com/install/self-managed-changelog.html#release-v8-0-major-release
https://docs.mattermost.com/install/self-managed-changelog.html#release-v8-1-extended-support-release
2023-09-23 20:06:48 +02:00
github-actions[bot]
ab2ecc25c1
Merge master into staging-next
2023-09-23 18:00:59 +00:00
Nick Cao
1fe305df27
Merge pull request #256906 from oddlama/fix-typesense-0.25.1
...
nixos/typesense: disable MemoryDenyWriteExecute which is needed since 0.25.1
2023-09-23 11:37:13 -04:00
Janne Heß
cc55ef9d55
Merge pull request #254993 from helsinki-systems/feat/stc-mount-improvements
...
nixos/switch-to-configuration: Mount improvements and a lot more test cases
2023-09-23 17:03:13 +02:00
oddlama
11d4f6e4a8
nixos/typesense: disable MemoryDenyWriteExecute which is needed since 0.25.1
...
also adjust default state directory mode to allow typesense group
2023-09-23 16:37:23 +02:00
Aaron Andersen
2af64a3d1d
Merge pull request #246173 from bb2020/mbpfan
...
nixos/mbpfan: adjust defaults
2023-09-23 09:41:11 -04:00
Nick Cao
4a5b19463a
Merge pull request #256762 from mweinelt/matrix-synapse-network-online
...
nixos/matrix-synapse: wait for network-online.target
2023-09-23 09:12:06 -04:00
Maciej Krüger
9a914a7c52
Merge pull request #256491 from mkg20001/mkg/sudo-rs-resolve
...
nixos/{sudo,-rs}: revert sudo-rs, make own module
2023-09-23 15:08:06 +02:00
digital
94e939985b
nixos/boot/rasbperrypi: add support for boot.initrd.secret with uboot ( #240358 )
...
Co-authored-by: digital <didev@dinid.net>
2023-09-23 14:32:09 +02:00
Vladimír Čunát
1869818c57
nixos/knot: add release notes and partial compatibility
2023-09-23 10:05:17 +02:00
Martin Weinelt
45e71a7a99
nixosTests.kea: use knot.settings for configuration
2023-09-23 10:04:02 +02:00
Martin Weinelt
8e93f353cc
nixosTests.knot: use settings format
2023-09-23 10:04:02 +02:00
Vladimír Čunát
ce85980e77
nixos/knot: also allow config by YAML file
2023-09-23 10:04:02 +02:00
Vladimír Čunát
7fb737dde6
nixos/knot: allow full configuration by nix values (RFC 42)
2023-09-23 10:04:02 +02:00
github-actions[bot]
f95580a6ff
Merge master into staging-next
2023-09-23 06:00:57 +00:00
Artturi
87ee3c4fdf
Merge pull request #176886 from hyperfekt/nonderivation_fish-completion
2023-09-23 06:28:23 +03:00
Martin Weinelt
457d9bbc94
nixos/matrix-synapse: wait for network-online.target
...
While network.target only guarantees that network devices have been
created the `network-online.target` allows delaying service startup
until after a configurable network state has been reached.
This should resolve spurious failures, e.g. when synapse tries to load
the discovery information for its OIDC provider from a remote host.
2023-09-22 22:41:40 +02:00
Peder Bergebakken Sundt
bdda7b0a53
python3Packages.flitBuildHook: remove
2023-09-22 21:11:24 +02:00
Sergei Trofimovich
e57034f9a7
modules/xmr-stak: drop broken cudaSupport option
...
Tanvir Ahmed T. reports that `services.xmr-stak.enable = true;` shows
that `23.05` ships broken `xmr-stak` module:
error: function 'anonymous lambda' called with unexpected argument 'cudaSupport'
I broke it when I removed `cudaSupport` flag in
a5ce71d4e8https://github.com/NixOS/nixpkgs/issues/256703
2023-09-22 17:40:04 +01:00
Maciej Krüger
59a8959287
release-notes: adjust to sudo-rs module
...
As it's now called sudo-rs and also remove breaking changes for sudo
2023-09-22 15:14:15 +02:00
Maciej Krüger
8e9b72be82
nixos/sudo-rs: add crossCompile 'fix'
...
This is just a quick fix based on pname,
as I have no idea how to use slicing in the module
We should instead use slicing to get the package for the host
2023-09-22 15:14:14 +02:00
Maciej Krüger
04e64fa716
nixosTests.sudo-rs: use sudo-rs
...
As the module was renamed, we need to use the new one
2023-09-22 15:14:14 +02:00
Maciej Krüger
03762aa42a
test-driver: revert stderr nullpipe
...
Removes 2>/dev/null which re-adds stderr output breaking execute
2023-09-22 15:14:13 +02:00
Maciej Krüger
7c8b8bd3e4
nixos/sudo-rs: init
...
adds a new sudo-rs module that contains sudo-rs changes removed from sudo module
2023-09-22 15:14:13 +02:00
Maciej Krüger
57d41f9751
nixos/sudo: revert sudo-rs 922926cfbc (partial #253876 )
...
This reverts the module changes that were added
by the addition of sudo-rs (merge 922926cfbc409d29ca73454151375d8742134c80f5aadb56be8b9e867ac83a95964fd5b1eab8ca53717e51a140c11da39117f0107b4f63914bf58369f66eb0df3bd63eb55e81d8d0b8019f
2023-09-22 15:13:56 +02:00
github-actions[bot]
3431cedfe3
Merge master into staging-next
2023-09-22 12:01:02 +00:00
K900
daebf5c6e2
Merge pull request #254071 from alois31/plasma-setuid
...
nixos/plasma5: remove pointless setuid wrappers
2023-09-22 14:21:03 +03:00
Janne Heß
358347e8b6
nixos/switchTest: Also test swap devices
2023-09-22 10:26:11 +02:00
Janne Heß
85c1c30fd9
nixos/switch-to-configuration: Never unmount / or /nix
...
Also adds a huge test for fstab handling
2023-09-22 10:26:10 +02:00
Alyssa Ross
7d40fbbc04
nix-prefetch-git: ignore global and user git config
...
nix-prefetch-git is either run as part of a build, usually sandboxed,
or outside a build, unsandboxed, to prefetch something that will later
be used in a build. It's important that the latter use produces
hashes that can be reproduced by the former.
One way that they can differ is if the user's git config does
something that changes the result of git clone. I ran into this,
because my global git config automatically enables git-lfs, whereas
nix-prefetch-git otherwise only uses git-lfs if specifically
requested. This led to very confusing hash mismatches.
2023-09-22 06:59:40 +00:00
github-actions[bot]
c651d7d9e9
Merge master into staging-next
2023-09-22 00:02:14 +00:00
Thiago Kenji Okada
371cebacb5
maintainers/scripts/oci: add missing parameter
2023-09-21 22:57:39 +01:00
Thiago Kenji Okada
c655cdb536
maintainers/scripts/oci: make scripts fail on error
2023-09-21 22:57:39 +01:00
Thiago Kenji Okada
d5d4b08488
nixos/virtualisation: always use EFI for OCI
2023-09-21 22:57:39 +01:00
Thiago Kenji Okada
cd67657ae2
nixos/virtualisation: use systemd-networkd for OCI
2023-09-21 22:57:39 +01:00
Thiago Kenji Okada
5eae6db9e3
nixos/virtualisation: remove deprecated option from OCI common
2023-09-21 22:57:39 +01:00
ilian
e8fc4d22e9
maintainers/scripts/oci: Fix indentation
2023-09-21 22:57:39 +01:00
Samuel Dionne-Riel
2eb41eb208
nixos/virtualization: Allow building EFI / A1 OCI images
...
A couple notes:
---------------
Adding invalid `console=` parameters is not an issue. Any invalid
console is unused. The kernel will use the "rightmost" (last) valid
`console=` parameter as the default output. Thus the SBBR-mandated AMA0
on A1, and ttyS0 on x86_64 as documented by Oracle.
`nvme_core.shutdown_timeout=10` was added as it was written this way in
the A1 images. Unclear whether `nvme.shutdown_timeout=10` is wrong. At
worst this is a no-op.
2023-09-21 22:57:38 +01:00
Samuel Dionne-Riel
d944fb4a19
nixos/virtualization: Allow building EFI OCI images
2023-09-21 22:57:38 +01:00
Samuel Dionne-Riel
9849ccb241
nixos: Add OCI image options
...
Follows what amazon images does.
2023-09-21 22:57:38 +01:00
Samuel Dionne-Riel
3a35abf169
nixos/oci-image: Minor cleanup
2023-09-21 22:15:22 +01:00
Samuel Dionne-Riel
5056824e64
maintainers/scripts/oci: Allow A1 image builds
2023-09-21 22:15:22 +01:00
ilian
362d1d6218
oci-image: init scripts to build and upload image
...
Add image configuration for Oracle Cloud Infrastructure and scripts to
build and upload the image as a Custom Image.
2023-09-21 22:15:22 +01:00
Artturi
ff10769cc9
Merge pull request #165298 from danielfullmer/gdm-banner
2023-09-21 23:40:15 +03:00
Bjørn Forsman
ed7c0c6e75
nixos/wireguard: add metric option
...
This new option, networking.wireguard.interfaces.NAME.metric, allows
increasing the metric of the routes, effectively lowering priority.
(I'm using high metric to allow having the Wireguard interface always
up, even when the client machines are on their home network. Before I
had to stop the interface when home to avoid packet routing issues.)
2023-09-21 22:19:21 +02:00
github-actions[bot]
25421963c7
Merge master into staging-next
2023-09-21 18:00:53 +00:00
Robert Gerus
294c4ec956
nixos/glasgow: init hardware module
2023-09-21 11:48:01 -05:00
Maciej Krüger
7fd7b57ddc
release-notes: mention networking.networkmanager.firewallBackend
...
Co-authored-by: Florian Klink <flokli@flokli.de>
Co-authored-by: Lin Jian <me@linj.tech>
2023-09-21 16:19:07 +02:00
Sandro Jäckel
9a85d77152
nixos/networkmanager: default firewallBackend to nftables, remove firewallBackend
...
Co-authored-by: Florian Klink <flokli@flokli.de>
Co-authored-by: Lin Jian <me@linj.tech>
2023-09-21 16:18:57 +02:00
Sandro Jäckel
ad0ca163e1
nixos/networkmanager: cleanup, fix example rendering
2023-09-21 15:16:54 +02:00
Martin Weinelt
b4bd254b86
Merge pull request #256289 from Ma27/refactor-synapse-assertions
...
nixos/matrix-synapse: refactor assertions for missing listener resources
2023-09-21 14:06:38 +02:00
github-actions[bot]
4c610adf95
Merge master into staging-next
2023-09-21 12:01:19 +00:00
hexchen
8ec182e570
nixos/prometheus: fix blackbox exporter
2023-09-21 08:49:10 +02:00
github-actions[bot]
743d7baa31
Merge master into staging-next
2023-09-21 06:01:07 +00:00
Pierre Bourdon
2db9117928
Merge pull request #255556 from louib/allow_disabling_openssh_root_login
...
nixos/virtualisation: allow configuring openssh root login on GCE
2023-09-21 05:56:12 +02:00
github-actions[bot]
2b20c287ac
Merge master into staging-next
2023-09-21 00:02:13 +00:00
Artturi
7f45760504
Merge pull request #192593 from jlesquembre/test-driver
2023-09-21 00:47:45 +03:00
Fabián Heredia Montiel
b2f85dbf28
Merge remote-tracking branch 'origin/master' into staging-next
2023-09-20 15:08:16 -06:00
Yorick
829514e2da
Merge pull request #251597 from wietsedv/calibre-web
...
nixos/calibre-web: add package and enableKepubify options
2023-09-20 22:35:16 +02:00
Arnout Engelen
69ecad6acb
Merge pull request #254563 from raboof/prometheus-exporter-nextcloud-fixup
...
prometheus-exporter-nextcloud: require either tokenFile or passwordFile
2023-09-20 22:33:10 +02:00
Nikolay Korotkiy
09846eacb2
Merge pull request #252001 from imincik/qgis-nixos-test
...
qgis: add nixos tests
2023-09-20 23:46:57 +04:00
Robert Schütz
728bae020d
Merge pull request #253687 from dotlambda/plausible-2.0.0
...
plausible: 1.4.4 -> 2.0.0
2023-09-20 19:28:09 +00:00
José Luis Lafuente
c25c10e919
nixos/tests: make wait_for timeouts configurable
...
While working on #192270 , I noticed that only some wait_for_* helper
functions make the timeout configurable. I think we should be able to
customize it in all cases
2023-09-20 21:56:46 +03:00
Robert Schütz
c4574a95c5
plausible: also install tracker
2023-09-20 09:07:28 -07:00
Maximilian Bosch
d004375485
nixos/matrix-synapse: refactor assertions for missing listener resources
...
While reviewing other changes related to synapse I rediscovered the
`lib.findFirst (...) (lib.last resources)` hack to find a listener
supporting the `client` resource. We decided to keep it that way for now
a while ago to avoid scope-creep on the RFC42 refactoring[1]. I wanted
to take care of that and forgot about it.
Anyways, I'm pretty sure that this is bogus: to register a user, you
need the `client` API and not a random listener which happens to be the
last one in the list. Also, you need something which serves the `client`
API to have the entire synapse<->messenger interaction working (whereas
`federation` is for synapse<->synapse).
So I decided to error out if no `client` listener is found. A listener
serving `client` can be defined in either the main synapse process or
one of its workers via `services.matrix-synapse.workers`[2].
However it's generally nicer to use assertions for that because then
it's possible to display multiple configuration errors at once and one
doesn't have to chase one `throw` after another. I decided to also error
out when using the result from `findFirst` though because module
assertions aren't thrown necessarily when you evaluate a single config
attribute, e.g. `config.environment.systemPackages` which depends on an
existing client listener because of `registerNewMatrixUser`[3].
While at it I realized that if `settings.instance_map` is wrongly
configured, e.g. by
settings.instance_map = mkForce {
/* no `main` in here */
}
an `attribute ... missing` error will be thrown while evaluating the
worker assertion.
[1] https://github.com/NixOS/nixpkgs/pull/158605#discussion_r815500487
[2] This also means that `registerNewMatrixUser` will still work if you
offload the entire `client` traffic to a worker.
[3] And getting a useful error message is way better for debugging in such a
case than `value is null while a set was expected`.
2023-09-20 15:48:03 +02:00
bb2020
5caa82281e
nixos/mbpfan: adjust defaults
2023-09-20 16:10:26 +03:00
Maciej Krüger
61536e7a1f
nixosTests.sudo-rs: fix syntax
2023-09-20 13:58:08 +02:00
Janik H.
3b673297e7
nixos/usbguard: restore ruleFile option
2023-09-20 13:55:55 +02:00
Maciej Krüger
922926cfbc
Merge pull request #253876 from nbraud/nixos/sudo-rs
2023-09-20 13:55:33 +02:00
Lin Jian
d27a248494
Merge pull request #255064 from tomfitzhenry/vikunja-cli
...
nixos/vikunja: install 'vikunja' CLI tool
2023-09-20 18:03:34 +08:00
zaldnoay
79599c86ae
nixos/frp: fix example url of configure file
2023-09-20 13:55:53 +08:00
github-actions[bot]
429d006c1a
Merge master into staging-next
2023-09-20 00:02:14 +00:00
Weijia Wang
0425ad73b3
Merge pull request #255549 from wegank/wordpress-bump
...
wordpress: 6.2.2 -> 6.3.1
2023-09-20 00:41:56 +02:00
Will Fancher
c6db677b1c
Merge pull request #255008 from SuperSandro2000/x-triggers-name
...
systemd-lib: add name to X-{Reloads,Restart}-Triggers to easily ident…
2023-09-19 17:38:05 -04:00
Pol Dellaiera
3ff2629897
Merge pull request #255880 from Atemu/installer-configuration.nix-search.nixos.org
...
nixos/installer: mention search.nixos.org
2023-09-19 21:50:15 +02:00
github-actions[bot]
e26a9c8bb7
Merge master into staging-next
2023-09-19 18:01:23 +00:00
Niklas Hambüchen
1a8e576180
Merge pull request #255977 from nh2/vaultwarden-fix-default-config-evaluation
...
vaultwarden service: Fix doubly-nested `config` value. Fixes evaluation
2023-09-19 18:46:58 +02:00
Niklas Hambüchen
c460434104
nixos/vaultwarden: Fix doubly-nested config value. Fixes evaluation
2023-09-19 16:46:08 +00:00
Carl Richard Theodor Schneider
cd2dead42c
nixos/tests/openssh: add Match config for validation test
2023-09-19 18:13:44 +02:00
Carl Richard Theodor Schneider
716bde190c
nixos/sshd: specify lport,laddr for config validation
2023-09-19 18:13:44 +02:00
Nick Cao
e8e461df5d
Merge pull request #254833 from NickCao/qt4-leftover
...
nixos/environment: drop QT_PLUGIN_PATH for qt4 and kde4 as they has b…
2023-09-19 10:08:27 -04:00
Izorkin
64fe8c9292
nixos/nginx: allow enabling QUIC packet routing using eBPF
2023-09-19 16:16:34 +03:00
github-actions[bot]
e22ad0ef4c
Merge master into staging-next
2023-09-19 12:01:22 +00:00
Arnout Engelen
1bf360af28
prometheus-exporter-nextcloud: require either tokenFile or passwordFile
...
follow-up on 28b3156bc6
2023-09-19 13:19:54 +02:00
Fabián Heredia Montiel
90040cd36a
linux/hardened/patches/6.5: init at 6.5.3-hardened1
2023-09-19 07:09:14 +00:00
github-actions[bot]
3245a21e71
Merge master into staging-next
2023-09-19 06:01:00 +00:00
Artturi
73d552ecb7
Merge pull request #254918 from RaitoBezarius/dnssec-resolved
2023-09-19 06:45:07 +03:00
Daniel Fullmer
67c5103f40
nixos/gdm: add banner option
...
This exposes the banner message option in GDM. Some computing
environments have compliance requirements which include displaying a
message to the user before logon.
2023-09-19 05:17:59 +03:00
Erno Hopearuoho
7d112f7da3
luksroot: fix issue when yubikey is detached during boot process
...
Fixes #228141 , which describes an issue where detaching Yubikey during the boot process
causes cryptsetup to write empty passphrase instead of the challenge-response salt stored
on the boot drive.
2023-09-18 23:10:06 -03:00
nicoo
d8d0b8019f
nixos/sudo: Add myself as maintainer
2023-09-18 18:03:58 +00:00
nicoo
d63eb55e81
nixos/sudo: Generate sudo-i PAM config for interactive use of sudo-rs
2023-09-18 18:03:58 +00:00
nicoo
7b5b3f5124
nixos/sudo: Add tests for sudo-rs too
...
Duplicated sudo's testsuite for now, as its maintainer does not with
to collaborate on testing effors; see #253876 .
Environment-related tests were removed, as sudo-rs does not support
`(NO)SETENV` yet; see memorysafety/sudo-rs#760
2023-09-18 18:03:58 +00:00
github-actions[bot]
f6ea8c7459
Merge master into staging-next
2023-09-18 18:01:08 +00:00
Maximilian Bosch
e4f0f0977e
Merge pull request #241973 from 999eagle/feat/synapse-workers
...
nixos/synapse: add support for workers, cleanup
2023-09-18 19:54:20 +02:00
Maciej Krüger
4729358fa5
nixos/test-driver: do not break if the command writes to stderr
...
Capturing `stderr` as part of the return `output` could break existing tests.
2023-09-18 17:36:16 +00:00
nicoo
f66eb0df3b
nixos/sudo: Only wrap sudoedit when using Miller's sudo
2023-09-18 17:36:15 +00:00
nicoo
914bf58369
nixos/{sudo, terminfo}: Adjust defaults for compatibility with sudo-rs
2023-09-18 17:36:15 +00:00
nicoo
f0107b4f63
nixos/sudo: Check syntax using the configured package
...
This is preferable even for regular `sudo`, but will ensure the check is useful
when using `sudo-rs` in the future.
Also, dropped antediluvian comment about the syntax check being disabled,
when it was clearly not commented out:
- introduced in 2007, commit 6d65f0ae03ae14f3e978d89959253d9a8f5e0ec1;
- reverted in 2014, commit e68a5b265a
2023-09-18 17:36:15 +00:00
nicoo
c11da39117
nixos/sudo: Drop the sudoers comment for extraRules
...
All rules are now handled through `extraRules`,
and it is never empty so `optionalString` isn't needed either.
2023-09-18 17:36:15 +00:00
nicoo
717e51a140
nixos/sudo: Make the default rules' options configurable
2023-09-18 17:36:15 +00:00
nicoo
b1eab8ca53
nixos/sudo: Handle root's default rule through extraRules
...
This makes things more uniform, and simplifies compatibility with sudo-rs.
Moreover, users can not inject rules before this if they need to.
2023-09-18 17:35:45 +00:00
nicoo
3a95964fd5
nixos/sudo: Drop useless lib. qualifiers
...
Also normalise indentation for `mdDoc` to what's prevalent in this file.
2023-09-18 17:35:07 +00:00
nicoo
8b9e867ac8
nixos/sudo: Refactor checks for Todd C. Miller's implemetation
2023-09-18 17:35:07 +00:00
nicoo
f5aadb56be
nixos/sudo: Refactor option definitions
2023-09-18 17:35:06 +00:00
nicoo
0365b05f13
nixos/terminfo: Add config option not to add extra sudo config
...
This will be necessary for compatibility with `sudo-rs`.
2023-09-18 17:35:06 +00:00
nicoo
8742134c80
nixos/sudo: Only keep SSH_AUTH_SOCK if used for authentication
...
This will make compatibility with `sudo-rs` easier.
2023-09-18 17:35:06 +00:00
nicoo
454151375d
nixos/sudo: Don't include empty sections
...
This makes the generated sudoers a touch easier to read.
2023-09-18 17:35:06 +00:00
nicoo
409d29ca73
nixos/sudo: Split up configFile into individual sections
2023-09-18 17:35:06 +00:00
Atemu
9084f59d36
nixos/installer: mention search.nixos.org
...
It's immensely helpful and more user-friendly than the humongous
configuration.nix man page.
2023-09-18 14:38:26 +02:00
github-actions[bot]
9fd6a65a3a
Merge master into staging-next
2023-09-18 12:01:07 +00:00
Lin Jian
4dc624f9c7
Merge pull request #255264 from emilylange/nixos/caddy
...
nixos/caddy: ensure vhosts come after user-specified `cfg.extraConfig`
2023-09-18 19:34:34 +08:00
Matthieu Coudron
b53c715e50
services.postgres: add initialScript example
2023-09-18 11:57:58 +02:00
Matthieu Coudron
956a1876aa
services.postgresql: add identMap example
...
to make things clearer
2023-09-18 11:57:58 +02:00
Matthieu Coudron
482619dac7
services.postgres: move the generated statement at the top of the file
2023-09-18 11:57:57 +02:00
emilylange
fcdcccaed6
nixos/caddy: ensure vhosts come after user-specified cfg.extraConfig
...
This solves an issue, where loading the nixos-unstable module in
nixos-stable using `disabledModules` and `imports` resulted in the
following Caddyfile:
```
<globalConfig>
<vhosts>
<extraConfig>
```
instead of
```
<globalConfig>
<extraConfig>
<vhosts>
```
This is important in cases where `cfg.extraConfig` contains so called
Caddyfile snippets.
See https://caddyserver.com/docs/caddyfile/concepts#structure
Co-authored-by: Lin Jian <me@linj.tech>
2023-09-18 11:12:19 +02:00
Sophie Tauchert
24f6a70abf
nixos/synapse: make sure workers require main process
...
This should ensure systemd handles starting all services (main and
workers) in a single transaction, thus preserving unit orderings
defined through After= even when not restarting the target.
2023-09-18 10:52:54 +02:00
Sophie Tauchert
aed8a5c6cd
nixos/synapse: add documentation for required reverse proxy setup
2023-09-18 08:24:38 +02:00
Maximilian Bosch
6b95c618e2
nixos/rl-2311: fix option references for synapse workers
2023-09-18 08:24:38 +02:00
Sophie Tauchert
dea34ad0fa
nixos/synapse: default tls to off for workers and document worker replication port
2023-09-18 08:24:37 +02:00
Sophie Tauchert
c693c2fd96
nixos/synapse: simplify replication listener assertion
2023-09-18 08:24:37 +02:00
Sophie Tauchert
ca1ffe5869
nixos/synapse: move services.matrix-synapse.workers.config to services.matrix-synapse.workers
2023-09-18 08:24:37 +02:00
Sophie Tauchert
53ab84cf49
nixos/synapse: automatically configure logging for synapse and workers
2023-09-18 08:24:36 +02:00
Sophie Tauchert
857b4932ec
nixos/synapse: remove obsolete log context
...
see 0304ad0c3d
2023-09-18 08:24:36 +02:00
Sophie Tauchert
2edea7611b
nixos/synapse: document options better
...
Co-authored-by: Daniel Olsen <daniel.olsen99@gmail.com>
2023-09-18 08:24:36 +02:00
Sophie Tauchert
b20cbb12cd
nixos/synapse: add test for running synapse with workers
...
Co-authored-by: Daniel Olsen <daniel.olsen99@gmail.com>
2023-09-18 08:24:36 +02:00
Sophie Tauchert
3a6a07ecf1
nixos/synapse: automatically configure replication listener
2023-09-18 08:24:35 +02:00
Sophie Tauchert
72a26e2b54
nixos/synapse: add options to configure workers
2023-09-18 08:24:35 +02:00
Sophie Tauchert
b329180128
nixos/synapse: add option to configure redis automatically
2023-09-18 08:24:35 +02:00
Sophie Tauchert
b7c41da8d6
nixos/synapse: update listener settings
...
The resource type health is currently missing, but should be available
according to https://matrix-org.github.io/synapse/latest/usage/configuration/config_documentation.html#listeners
2023-09-18 08:24:35 +02:00
Sophie Tauchert
f15212aad8
nixos/synapse: cleanup, split out listener type and service config
2023-09-18 08:24:33 +02:00
github-actions[bot]
cb25ab46c1
Merge master into staging-next
2023-09-18 00:02:10 +00:00
Jörg Thalheim
fd6901755d
stage1: use correct zfs package
...
This in particular broke zfsUnstable because it added symbols not present in zfsStable
2023-09-17 21:11:29 +02:00
github-actions[bot]
d2fdbb7e40
Merge master into staging-next
2023-09-17 18:00:59 +00:00
Robert Scott
1bd27e1de9
Merge pull request #255648 from risicle/ris-docker-tools-nixos-tests-disk-3072
...
nixosTests.docker-tools: bump `diskSize` from 2048 -> 3072
2023-09-17 16:49:54 +01:00
github-actions[bot]
4851185192
Merge master into staging-next
2023-09-17 12:01:05 +00:00
Maximilian Bosch
b4dbea193a
Merge pull request #255179 from Ma27/rm-grafana-migration-error
...
nixos/grafana: remove hacky deprecation helper from dashbaords & datasources
2023-09-17 13:44:33 +02:00
Robert Scott
0834c95bd6
nixosTests.docker-tools: bump diskSize from 2048 -> 3072
2023-09-17 12:18:42 +01:00
