nordic-dev.net/nixpkgs
nordic-dev.net/nixpkgs
2
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-12-29 00:53:57 +00:00
Code Issues Packages Projects Releases Wiki Activity
340,400 Commits 187 Branches 125 Tags 9.5 GiB
ea0f1cd800
Commit Graph

12083 Commits

Author SHA1 Message Date
Vincent Haupert
3cf9508c72 nixos/github-runner: refactor tokens handling 
This commit changes how we deal with the current token, i.e., the token
which may exist from a previous runner registration, and the configured
token, i.e., the path set for the respective NixOS configuration option.

Until now, we copied the configured and the current token (if any) to
the runtime directory to compare them. The path of the current token may
reference a file which is only accessible to specific users (even only
root). Therefore, we ran the copying of credentials with elevated
privileges by prefixing the `ExecStartPre=` script with a `+` (see
systemd.service(5)). In this script, we also changed the owner of the
files to the service user. Apparently, however, the user/group pair
sometimes did not exist because we use `DynamicUser=`.

To address this issue, we no longer change the owner of the file.
Instead, we change the file permissions to 0666 to allow the runner
configuration script (runs with full sandboxing) to read-write the file.
Due to the current permissions of the runtime directory (0755), this
would expose the token. Therefore, we process the tokens in the state
directory, which is only accessible to the service user.

If a new token file exists in the state directory, the configuration
script should trigger a new runner registration. Afterward, it deletes
the new token file. The token is still available using the path of the
current token which is inaccessible within the service's sandbox.
 2021-12-01 16:15:43 +01:00
Bobby Rong
28a115edc4
pantheon.extra-elementary-contracts: drop 2021-12-01 23:00:10 +08:00
bb2020
21a54a4e4c nixos/transmission: adjust message-level enum 2021-12-01 17:55:06 +03:00
Bobby Rong
b5038e5127
pantheon.gnome-bluetooth-contract: init at unstable-2021-02-23 2021-12-01 22:42:21 +08:00
Bobby Rong
0a9d1ce156
pantheon.file-roller-contract: init at unstable-2021-02-23 2021-12-01 22:42:21 +08:00
Thiago Kenji Okada
d5f93fc0d5
Merge pull request #148080 from LibreCybernetics/update-gnome-docs 
gnome: update docs regarding nvidiaWayland
 2021-12-01 10:35:16 -03:00
Maciej Krüger
7a89ee6171
nixos/lxd-image-server: fix logrotate 2021-12-01 08:39:36 +01:00
Martin Weinelt
254dd2a102 nixos/home-assistant: consider extraComponents in hardening 
Previously the extraComponents added to an overriden package would not
have been considered in hardening measures enforced by the module.

Home Assistant is warning the user about component definitions having
moved away from YAML, so using an override to include support for a
component might become the better way moving forward.
 2021-12-01 01:09:52 +01:00
Martin Weinelt
1f726635ee nixos/charybdis: implement reload functionality 
IRC daemons are highly stateful daemons, so allow config changes without
kicking all server and client connections.

Basically a port of 60c62214f5.
 2021-11-30 23:33:34 +01:00
Fabián Heredia Montiel
5bb9d9176d gnome: update docs regarding nvidiaWayland 2021-11-30 15:59:30 -06:00
Ryan Mulligan
aa37441c3e nixos/drbd: fix 
- fix environment.etc."drbd.conf"
- don't generate an ExecStart script for just one command
 2021-11-30 21:43:51 +01:00
Sandro
06811e74f3
Merge pull request #146533 from SuperSandro2000/nginx 2021-11-30 21:16:09 +01:00
pennae
8072ee22f2 dhcpcd, nixos/dhcpcd: enable privsep 
dhdpcd 9 support privilege separation with a dedicated user and seccomp
filtering. this has been enabled for a while in other distributions as
well.

if the dhcpcd module is not used and the _dhcpcd user/group isn't
definied otherwise dhcpcd will fall back to not using privsep.
 2021-11-30 19:51:45 +01:00
pennae
5269674a6d dhcpcd: 8.1.4 -> 9.4.1 
by @erictapen:

- Removed note about testing and moved it to passthru.tests
- Removed patch, as it is probably the same as
  56b2bb17d2ec67e1f93950944211f6cf8c40e0fb, wich landed in upstream.

other changes:

- changed PIDFile in the module, since dhcpcd 9 changed the location
 2021-11-30 19:51:45 +01:00
Aaron Andersen
1800a86072
Merge pull request #146965 from pmeiyu/webdav 
Add webdav-server-rs
 2021-11-30 12:03:27 -05:00
Peng Mei Yu
4abccb5466 nixos/webdav: set uid and gid 2021-11-30 10:19:14 +08:00
Peng Mei Yu
ce4ad53e6a nixos/webdav-server-rs: init 2021-11-30 10:19:14 +08:00
Kevin Cox
2b35c41b81
Merge pull request #147153 from LibreCybernetics/enable-nvidia-wayland-on-gdm-by-default 
nixos/gdm: enable nvidiaWayland by default
 2021-11-29 17:15:06 -05:00
Aaron Andersen
a4977db2e8
caddy: include and utilize systemd service from upstream (#147305) 2021-11-29 23:16:25 +09:00
Aaron Andersen
f366af7a1b
Merge pull request #136630 from mweinelt/logrotate-hourly 
nixos/logrotate: allow hourly frequency
 2021-11-29 07:42:14 -05:00
Peng Mei Yu
640e54cda9 maintainers: Rename pengmeiyu to pmy 2021-11-29 18:39:31 +08:00
Maciej Krüger
e14fadd95c
Merge pull request #147080 from mkg20001/cinstuff 2021-11-29 07:26:02 +01:00
rnhmjoj
97a3b2af1d
monero: rename to monero-cli 
To make repology.org happy, use the -cli suffix.
 2021-11-28 11:35:14 +01:00
Maciej Krüger
7aff811292
nixos/cinnamon: add xapps to extra app list 2021-11-27 09:10:58 +01:00
Izorkin
2f66ac01e9
nixos/nginx: disable rejectSSL activation when https is disabled 2021-11-27 09:39:57 +03:00
Izorkin
7376f4e34f
nixos/nginx: tengine requires allowing @ipc calls 2021-11-27 09:39:57 +03:00
Izorkin
78546bbbc5
nixos/nginx: add kTLS option 2021-11-27 09:39:57 +03:00
Thiago Kenji Okada
25cdc0a9c9
Merge pull request #147490 from illdefined/nix-daemon 
modules/nix-daemon: Add missing mk(Rename|Removed)OptionModule
 2021-11-26 19:31:02 -03:00
Mikael Voss
257e92258e
modules/nix-daemon: Add missing mk(Rename|Removed)OptionModule 
Commit 3a92a1a replaced the nix.daemonNiceLevel and nix.daemonIONiceLevel
options. This commit adds appropriate mk(Rename|Removed)OptionModule.
 2021-11-26 13:25:20 +01:00
Samuel Dionne-Riel
8e92630aae nixos: Provide nix-bash-completions again for stable commands 2021-11-26 02:16:56 -05:00
Julien Moutinho
b84beda44c nixos/transmission: disable downloadDirPermissions by default 2021-11-25 03:48:31 +01:00
Fabián Heredia Montiel
539811a4d3 nixos/gdm: enable nvidiaWayland by default 2021-11-23 12:17:05 -06:00
Martin Weinelt
386a1e79eb
nixos/smartctl-exporter: init 2021-11-23 11:30:28 +01:00
Yurii Matsiuk
8e986f6389
nixos/bluetooth: fix bluetooth warnings 2021-11-23 10:54:26 +01:00
Sandro
4eb8b9decd
Merge pull request #143886 from Julow/xmonad-large-closure 2021-11-22 16:26:25 +01:00
Sandro
338bf1f1b2
Merge pull request #143995 from erictapen/systemd-workingdirectory 2021-11-22 16:25:54 +01:00
Rok Garbas
e3cd002ada
Merge pull request #145049 from fernsehmuell/patch-1 
add opcache to list of php packages
 2021-11-22 06:15:57 -08:00
Niklas Hambüchen
0939143e24
Merge pull request #137176 from GoldsteinE/clickhouse-package 
nixos/clickhouse: add package option
 2021-11-21 21:43:58 +01:00
Goldstein
427941d737 nixos/clickhouse: add package option 
Consistent with other services and helps to work around #130101
 2021-11-21 20:29:41 +01:00
Aaron Andersen
c9fde80d80
Merge pull request #146445 from GTrunSec/nomad 
nixos/nomad: add flag of plugin-dir
 2021-11-21 13:45:25 -05:00
Aaron Andersen
65bdad3185
Merge pull request #146728 from newAM/sabnzbd-package-option 
nixos/sabnzbd: add package option
 2021-11-21 13:43:16 -05:00
ajs124
5816eb198f
Merge pull request #141833 from poscat0x04/dovecot-quota-backend 
nixos/dovecot: use the count backend for quota plugin
 2021-11-21 19:37:08 +01:00
Will Fancher
851495a752 Move systemd-lib.nix and systemd-unit-options.nix into utils 2021-11-20 17:52:29 -05:00
Vanilla
35ec24523b
nixos/hbase: Fix missing top-level in hbase-site.xml 2021-11-20 15:29:36 +08:00
Alex Martens
4639589f88 nixos/sabnzbd: add package option 2021-11-19 20:01:24 -08:00
maralorn
2a1b1189ef
Merge pull request #146398 from hercules-ci/hercules-ci-agent-update-0.8.4 
hercules-ci-agent: 0.8.3 -> 0.8.4
 2021-11-20 01:11:17 +01:00
Artturi
1c005b3de1
Merge pull request #139337 from Artturin/tempaddr 2021-11-20 01:27:13 +02:00
Artturi
5de36a0410
Merge pull request #131416 from Artturin/x11-module-fixes 2021-11-19 18:55:37 +02:00
Sandro
29b7d4ada1
Merge pull request #145035 from pmeiyu/master 2021-11-19 17:05:50 +01:00
Marek Mahut
2e75b280a7
prometheus-nginx-exporter: boolean conversion to string 2021-11-19 16:22:04 +01:00
Robert Hensing
3a98abe8bd nixos/hercules-ci-agent: Update module 2021-11-19 11:05:04 +01:00
Jörg Thalheim
4665684cee
Merge pull request #146525 from GWspekulatius/getty_remove_serialSpeed 
nixos/getty: remove serialSpeed option
 2021-11-19 09:57:54 +00:00
Michael Schneider
1331b3d252 nixos/getty: remove serialSpeed 
It is expected that the baudrate is already initialized before the getty is started. Therefore the serialSpeed option is redundant.
 2021-11-19 10:17:26 +01:00
Artturin
31759dc4b7 nixos/networkmanager: remove redundant ipv6.ip6-privacy 
this setting was added in 2016 in commit
bcdd81d9e1

the posibility to preferTempAddress was added to
nixos/network-interface in 2018 in commit
1fec496f38

preferTempAddress was renamed to tempAddress
in 2020 in commit 2485e6399e

therefore this setting is redundant since nm will use the sysctl option

nixos/network-interfaces: add default to sysctl so that the value for it
is set

networkmanager falls back to it
https://man.archlinux.org/man/NetworkManager.conf.5
 2021-11-19 01:12:25 +02:00
Artturi
aa64f17479
Merge pull request #146420 from Artturin/cadvisorfix 2021-11-18 23:40:03 +02:00
Sandro
9cb930ff68
nixos/nginx: fix start when recommendedOptimisation is off 
Also done by other distros for example Fedora https://bodhi.fedoraproject.org/updates/FEDORA-2020-78690e2cdd
 2021-11-18 21:47:12 +01:00
Sandro
4f0e1c04eb
Merge pull request #146123 from thiagokokada/libinput-module-fixes 2021-11-18 19:44:00 +01:00
Sandro
f271698f25
Merge pull request #146287 from jojosch/mjolnir-1.2.0 2021-11-18 18:40:45 +01:00
Aaron Andersen
b6d40f7f79
Merge pull request #146343 from VergeDX/hbase 
nixos/hbase: add settings option for hbase-site.xml
 2021-11-18 08:35:04 -05:00
Vanilla
cb5f41a067
nixos/hbase: add settings option for hbase-site.xml 2021-11-18 11:54:41 +08:00
Niklas Hambüchen
a807630064
Merge pull request #144123 from nh2/logstash-service-jvm-options 
nixos/logstash: Add logstashJvmOptionsFile option
 2021-11-18 02:53:35 +01:00
GTrunSec
6a1fdd60e6
nixos/nomad: add flag of plugin-dir 2021-11-17 15:42:05 -08:00
Thiago Kenji Okada
467c58cd11
Merge pull request #146422 from ratsclub/service-xmrig 
nixos/xmrig: add kernel module msr
 2021-11-17 20:08:55 -03:00
Victor Freire
47f638403e nixos/xmrig: add kernel module msr 2021-11-17 18:53:58 -03:00
Michele Guerini Rocco
90bb5d0e19
Merge pull request #146409 from aanderse/zabbix 
nixos/zabbixServer: explicitely set security.wrappers ownership
 2021-11-17 22:05:16 +01:00
Artturin
0894568aee nixos/cadvisor: add zfs to path when zfs enabled 
fixes https://github.com/NixOS/nixpkgs/issues/105139
 2021-11-17 20:47:44 +02:00
Aaron Andersen
ebbf93136f nixos/zabbixServer: explicitely set security.wrappers ownership 2021-11-17 11:26:14 -05:00
Victor Freire
ed312a6815 nixos/xmrig: add services.xmrig to module-list.nix 2021-11-17 12:29:40 -03:00
Janne Heß
ba34952f0d
Merge pull request #146268 from helsinki-systems/upd/nginx 
nginxStable: 1.20.1 -> 1.20.2
 2021-11-17 12:02:50 +01:00
Artturin
670f5474b9 nixos/{startx,xserver,sx}: make it possible to use both a gui dm 
and startx at the same time without using lib.mkForce
 2021-11-16 23:30:27 +02:00
Artturin
a7ea834b17 nixos/plex: replace literalExample with literalExpression 2021-11-16 20:37:44 +02:00
Johannes Schleifenbaum
62cec07035
nixos/mjolnir: set rawHomeserverUrl in config 2021-11-16 19:21:33 +01:00
Sandro
a0a5e0be1c
Merge pull request #139553 from andrew-d/andrew/plex-scanners 2021-11-16 19:17:31 +01:00
ajs124
c408cd921f nixos/nginx: fix SystemCallFilter after 1fc113f0df 2021-11-16 17:30:57 +01:00
Vanilla
79dc6a5629
nixos/hbase: use jre8 instead of latest. 2021-11-16 22:15:46 +08:00
Bobby Rong
b4d72c7292
Merge pull request #146203 from bobby285271/pantheon 
nixos/pantheon: cleanup FAQ section
 2021-11-16 10:34:43 +08:00
Bobby Rong
cd58f44937
nixos/pantheon: cleanup FAQ section 2021-11-16 10:06:24 +08:00
Bobby Rong
18d56c5c6e
Merge pull request #146094 from VergeDX/influxdb2 
nixos/influxdb2: Add Hyperlink highlight for url.
 2021-11-16 10:04:01 +08:00
Robert Scott
5e15d5da4a
Merge pull request #142522 from risicle/ris-strongswan-5.9.4 
strongswan: 5.8.1 -> 5.9.4
 2021-11-15 21:08:20 +00:00
Robert Scott
d13480917a strongswan: 5.8.1 -> 5.9.4 
remove two now-included patches, add new nixos module parameter
ca_id
 2021-11-15 21:06:57 +00:00
Mikael Voss
ee8e993fd4 modules/nix-daemon: Replace daemon(IO)NiceLevel options 
The nix.daemonNiceLevel options allows for setting the nice level of the
Nix daemon process. On a modern Linux kernel with group scheduling the
nice level only affects threads relative to other threads in the same
task group (see sched(7)). Therefore this option has not the effect one
might expect.

The options daemonCPUSchedPolicy and daemonIOSchedClass are introduced
and the daemonIONiceLevel option renamed to daemonIOSchedPrority for
consistency. These options allow for more effective control over CPU
and I/O scheduling.

Instead of setting daemonNiceLevel to a high value to increase the
responsiveness of an interactive system during builds -- which would not
have the desired effect, as described above -- one could set both
daemonCPUSchedPolicy and daemonIOSchedClass to idle.
 2021-11-15 18:34:17 +01:00
Thiago Kenji Okada
c7a180ab0c nixos/libinput: improve docs 2021-11-15 08:55:25 -03:00
Vanilla
baeb944384
nixos/influxdb2: Add Hyperlink highlight for url. 2021-11-15 16:12:15 +08:00
Maciej Krüger
dc19eaec1b
Merge pull request #144965 from mkg20001/ts-firewall 2021-11-14 21:23:55 +01:00
Sandro
95382df163
Merge pull request #138125 from juselius/unified-cgroup-fix 2021-11-13 21:21:28 +01:00
Moritz Hedtke
9d01ce82ac
nixos/tests: add step-ca test 2021-11-13 12:40:47 +01:00
gardspirito
a3358146df
nixos/mx-puppet-discord: provide registration file & fix typo in settings example 2021-11-13 13:27:56 +03:00
Graham Christensen
87ef832e49 nixos: mjolnir: literalExample -> literalExpression 2021-11-12 21:06:17 -05:00
Graham Christensen
fd1f8e1498
Merge branch 'master' into mjolnir-init 2021-11-12 20:56:14 -05:00
Sandro
312a3af375
Merge pull request #145257 from astro/openwebrx 2021-11-13 02:43:01 +01:00
Artturi
4e61e1242c
Merge pull request #144933 from Artturin/ananicyinit 
ananicy: init at unstable-2021-11-05
 2021-11-12 21:08:14 +02:00
Sandro
6aa376ea9b
Merge pull request #138336 from shdpl/release-21.05 2021-11-12 18:43:15 +01:00
Sandro
fee23ab3f1
Merge pull request #84154 from eadwu/clight/location-assertion 2021-11-12 18:09:40 +01:00
Mariusz `shd` Gliwiński
8e3d255347
[nixos/lightdm] allow for background option to be either path or color 2021-11-12 17:31:13 +01:00
Travis Athougies
82037871bb
nixos/postfix: Use better types for submissionOptions and submissionsOptions (#138205) 2021-11-12 17:28:39 +01:00
Maximilian Bosch
dbe1a4804d
Merge pull request #145192 from happysalada/plausible_add_release_cookie 
plausible: add remote connection with iex
 2021-11-11 18:24:10 +01:00
Sandro
d3f2137f5c
Merge pull request #144250 from aanderse/nixos/zabbixWeb 2021-11-11 15:21:09 +01:00
Artturin
8743e81cd3 nixos/ananicy: init 2021-11-11 02:05:42 +02:00
Astro
f1020d20fa nixos/openwebrx: init 2021-11-10 23:42:18 +01:00
Sandro
93a0ff08d8
Merge pull request #141551 from astro/collectd-plugin-config 2021-11-10 20:11:24 +01:00
xaverdh
03a257e5a3
treewide: quote urls according to rfc 0045 (#145260) 
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2021-11-10 11:37:56 +01:00
Sandro
e5ac2e1a52
Merge pull request #122452 from ju1m/tor 2021-11-09 21:50:57 +01:00
Sandro Jäckel
c819ee9b67
nixos/tinc: disable chroot by default 2021-11-09 21:30:18 +01:00
Pascal Bach
9abd378c7e nixos/antennas: initial service 2021-11-09 17:00:06 +01:00
Maciej Krüger
11f1d8620a
nixos/matomo: delete tmp folder to fix borked upgrades 2021-11-09 15:14:31 +01:00
Maciej Krüger
769f20e20a
nixos/matomo: allow changing hostname easily 2021-11-09 15:10:01 +01:00
happysalada
aff0f5792b plausible: add remote connection with iex 2021-11-09 08:15:53 -05:00
Maximilian Bosch
25e6a0ad62
Merge pull request #143345 from happysalada/update_plausible 
plausible: 1.3.0 -> 1.4.0
 2021-11-08 23:48:53 +01:00
Astro
19fc2904f3 nixos/collectd: give plugins option a mergeable type 2021-11-08 17:09:56 +01:00
Peng Mei Yu
5609f84d1b nixos/webdav: init 2021-11-08 23:56:27 +08:00
fernsehmuell
4fe305186d
add opcache to list of php packages 
opcache is used later, but was never added to phpExt.
 2021-11-08 10:29:16 +01:00
Bas van Dijk
7f7780daa5 nixos/prometheus: throw a helpful error when services.prometheus.environmentFile is defined 2021-11-07 19:04:24 +00:00
Bas van Dijk
0e4abb0df7 nixos/prometheus: remove services.prometheus.environmentFile 
The option `services.prometheus.environmentFile` has been removed since it was causing [issues](https://github.com/NixOS/nixpkgs/issues/126083) and Prometheus now has native support for secret files.
 2021-11-07 14:45:40 +00:00
Bas van Dijk
dd1edacb7b
Merge pull request #142654 from yrd/prometheus-config-modules 
nixos/prometheus: add new configuration options
 2021-11-07 15:37:12 +01:00
Izorkin
d1a8806e39 nixos/mastodon: allow '@resources' filter to mastodon-web service 2021-11-07 11:59:36 +01:00
Maciej Krüger
dd4a34019a
nixos/teamspeak: add openFirewall, openFirewallServerQuery 
Also set default address to v6 as v6-any always enables v4-any, not always other way
 2021-11-07 08:18:18 +01:00
Victor Freire
46180e407e nixos/xmrig: init 2021-11-06 15:04:14 -03:00
Aaron Andersen
a97d32da9c
Merge pull request #144895 from arcnmx/ddclient-privs 
nixos/ddclient: password permission fixes
 2021-11-06 12:17:01 -04:00
arcnmx
cdd385510a nixos/ddclient: customizable package option 2021-11-06 08:50:39 -07:00
arcnmx
7deb5247a5 nixos/ddclient: fix privs when loading password 2021-11-06 08:50:39 -07:00
Izorkin
a71576b07b nixos/mastodon/streaming: add '@memlock' SystemCallFilter 2021-11-06 16:45:20 +01:00
Izorkin
91e510ae22 nixos/mastodon: add '@ipc' SystemCallFilter 2021-11-06 16:45:20 +01:00
Izorkin
700ea62f54 nixos/mastodon: remove duplicates SystemCallFilters 2021-11-06 16:45:20 +01:00
Izorkin
943f15d4b7 nixos/mastodon: add new sandboxing options 2021-11-06 16:45:20 +01:00
Thomas Tuegel
a506f9c797
Merge pull request #143673 from oxalica/fix/sddm-default-session 
plasma5: set default session to plasma X11 and fix sddm
 2021-11-06 09:55:47 -05:00
happysalada
9c71958cfa plausible: use loadcredentials 
plausible: service fixes, remove console attempt

plausible: fix yarn.nix call
 2021-11-06 09:15:19 -04:00
Jörg Thalheim
185aeb4ab8
Merge pull request #142765 from pennae/mosquitto-fixes 
nixos/mosquitto: restore checkPasswords=false from old module, add module doc chapter
 2021-11-06 10:08:43 +00:00
Pascal Bach
0f60c45e9c nixos/unifi: refactor mountpoints 
Use service internal bind mounts instead of global ones.

This also moves the logs to /var/log/unifi on the host
and the run directory to /run/unifi.

Closes #61424
 2021-11-05 12:20:40 +01:00
Yannik Rödel
7d34d32b3d nixos/prometheus: add remaining service discovery options 2021-11-05 12:18:13 +01:00
Bernardo Meurer
1403ce522d
Merge pull request #144239 from illustris/hadoop 
nixos/hadoop: Add HA services and HTTPFS
 2021-11-04 23:30:47 -07:00
Bernardo Meurer
a13bfe7fbc
roon-server: 1.8-831 -> 1.8-846 2021-11-04 09:40:19 -07:00
Yannik Rödel
b3d4f6d841 nixos/prometheus: add service discovery options 2021-11-04 15:07:18 +00:00
Yannik Rödel
904d29e1c4 nixos/prometheus: add new configuration options 2021-11-04 15:02:00 +00:00
Bas van Dijk
0140e239f3
Merge pull request #143147 from basvandijk/prometheus-reload 
nixos/prometheus: optionally support reloading on config changes
 2021-11-04 13:54:18 +01:00
Robert Hensing
3bccce68d1
Merge pull request #144440 from SuperSandro2000/lib-fromJSON 
treewide: switch ``builtins.fromJSON(builtins.readFile ./file.json)``…
 2021-11-04 12:17:40 +01:00
Bas van Dijk
f12e976ade module/prometheus: optionally support reloading on config changes 
The new option `services.prometheus.enableReload` has been introduced
which, when enabled, causes the prometheus systemd service to reload
when its config file changes.

More specifically the following property holds: switching to a
configuration (`switch-to-configuration`) that changes the prometheus
configuration only finishes successully when prometheus has finished
loading the new configuration.

`enableReload` is `false` by default in which case the old semantics
of restarting the prometheus systemd service are in effect.
 2021-11-04 11:15:21 +00:00
illustris
57225575df nixos/hadoop: fix errors in HTTPFS 2021-11-04 11:26:32 +05:30
illustris
8331b56701 nixos/hadoop: correct openFirewall options 2021-11-04 11:18:11 +05:30
illustris
c8df915e0e nixos/hadoop: add links for config files 2021-11-04 11:07:32 +05:30
Aaron Andersen
0c5d86b18c
Merge pull request #135601 from stackshadow/code-server-bin 
code-server: init code-server-module
 2021-11-03 22:15:26 -04:00
illustris
42e14ff69f nixos/hadoop: replace enable = mkoption bools with mkEnableOption 2021-11-03 22:44:25 +05:30
illustris
c3d147f507 nixos/hadoop: replace "enabled" options with "enable" options 
The module has been using "enabled" in place of enable since init ( 0c10b2baa6 )
 2021-11-03 22:44:25 +05:30
illustris
9ca4363191 nixos/hadoop: add HTTPFS 2021-11-03 22:44:25 +05:30
illustris
39c007ce9c nixos/hadoop: Add HA capabilities 
- Add HDFS journalnode and ZKFC services
- Test failover of HDFS and YARN master services in full hadoop test
- Check if a minimal HDFS cluster works in the minimal HDFS test
 2021-11-03 22:44:24 +05:30
Sandro Jäckel
8547db919a
treewide: switch `builtins.fromJSON(builtins.readFile ./file.json)` to lib.importJSON ./file.json 2021-11-03 14:43:52 +01:00
Maciej Krüger
e7fd175e97
nixos/lxd-image-server: init 
Co-authored-by: Aaron Andersen <aaron@fosslib.net>
 2021-11-03 14:32:44 +01:00
Maciej Krüger
f9bbc60cfb
nixos/odoo: apply suggestions from review 2021-11-03 12:40:59 +01:00
Pascal Bach
b01c019afd
Merge pull request #136191 from LeSuisse/nixos-unifi-poller-loki 
nixos/unifi-poller: add support of Loki
 2021-11-03 08:25:13 +01:00
Maciej Krüger
abc90b4851
nixos/odoo: init 2021-11-03 03:52:41 +01:00
Aaron Andersen
45891c5f1c
Merge pull request #143705 from felschr/ddclient-password-file 
nixos/ddclient: replace password with passwordFile option
 2021-11-02 19:42:49 -04:00
Aaron Andersen
5d7683fcae nixos/zabbixWeb: remove added whitespace to the passwordFile option 2021-11-02 10:35:55 -04:00
Michele Guerini Rocco
b67e752c29
Merge pull request #144210 from evils/fancontrol 
nixos/fancontrol: restart on-failure
 2021-11-02 10:22:25 +01:00
Evils
9cb2107476 nixos/fancontrol: restart on-failure 2021-11-02 09:24:31 +01:00
github-actions[bot]
4b2ca106c9
Merge master into staging-next 2021-11-02 06:01:22 +00:00
Jonas Heinrich
50029ed89c nixos/dokuwiki: add missing option enable 2021-11-02 09:23:06 +09:00
github-actions[bot]
d27dd6653e
Merge master into staging-next 2021-11-02 00:01:32 +00:00
Sandro
c3051ea7c2
Merge pull request #144024 from SuperSandro2000/fix-plasma-users 2021-11-01 23:56:12 +01:00
Niklas Hambüchen
29f4f7110c nixos/smokeping: Add nh2 to maintainers 2021-11-01 23:20:40 +01:00
Niklas Hambüchen
c7ed7466c3 nixos/smokeping: Don't listen on all interfaces by default. 
In general, NixOS services are configured such that by default
they are not exposed to the Internet for security, see #100192.
 2021-11-01 23:20:40 +01:00
Niklas Hambüchen
bb2a6ec751 nixos/smokeping: Use requiredBy instead of wantedBy. 
This makes switch-configuration fail if something is wrong with it,
which is desired especially for NixOps deployments.
 2021-11-01 23:20:40 +01:00
Niklas Hambüchen
123171b557 nixos/smokeping: Remove partOf to ensure restarts work. 
Details on https://github.com/NixOS/nixops/issues/1063#issuecomment-453253666.

`partOf` makes that if `smokeping.service` is stopped, `thttpd.service` will
be stopped as well.
(But not that `thttpd` will be started when `smokeping` is started).

Once `thttpd.service` is stopped that way, `Restart = always` will not apply.

When the smokeping config options are changed, NixOS's `switch-configuration.pl`
will stop `smokeping` (whit shuts down thttpd due to `partOf`), and then restart
smokeping; but this does not start thttpd.
As a result, thttpd will be off after changing the config, which isn't desired.

This commit fixes it by removing the `partOf`, which makes `Restart` work
as expected.
 2021-11-01 23:20:40 +01:00
Niklas Hambüchen
17e4387b38 nixos/smokeping: Make default imgUrl relative. 
This avoids a common problem:

Until now, port forwarding to multiple hosts running smokeping did not work;
they all show the data of the first smokeping instance.
That ws because the image URLs generated by smokeping are absolute
(`imgurl` setting).
Consequently, if you ran
  ssh node-1 -L 8081:localhost:8081
  ssh node-2 -L 8081:localhost:8082
  ssh node-3 -L 8081:localhost:8083
and try to open http://localhost:8081, http://localhost:8082 and
http://localhost:8083, they all would show the images of node-1!

Using a relative `imgurl` fixes that.
As per smokeping docs on `imgurl`:

> Either an absolute URL to the `imgcache` directory or one relative to the
> directory where you keep the SmokePing cgi.
 2021-11-01 23:20:40 +01:00
Niklas Hambüchen
2760695df0 nixos/smokeping: Add host option. 
Allows setting smokeping to not listen on the public Internet.
 2021-11-01 23:20:40 +01:00
Niklas Hambüchen
0a2103547f nixos/smokeping: Remove bash wrapper, refactor. 
The bash wrapper process served no purpose, and systemd directly controlling the
processes is more reliable / more responsive to systemctl commands.
 2021-11-01 23:20:40 +01:00
Martin
f4d551c0d4 maintainer: add stackshadow 2021-11-01 18:47:04 +01:00
Martin
e620c32e59 code-server: init code-server-module 2021-11-01 18:46:57 +01:00
Niklas Hambüchen
f692dc62c8 nixos/logstash: Add logstashJvmOptionsFile option 2021-11-01 16:21:02 +01:00
oxalica
ad20e87e39
plasma5: set default session to plasma X11 
Plasma wayland currently has many tiny bugs hurting user experience.
 2021-11-01 18:58:00 +08:00
oxalica
91812b84b8
sddm: respect services.xserver.displayManager.defaultSession 2021-11-01 18:57:59 +08:00
github-actions[bot]
7eaf56d92e
Merge master into staging-next 2021-11-01 00:01:32 +00:00
Sandro
33f7dd3cfd
Merge pull request #143620 from jtojnar/ppd 2021-10-31 22:48:45 +01:00
Sandro
89aa371808
Merge pull request #143745 from jwoudenberg/yubikey-agent-fixes 2021-10-31 21:56:56 +01:00
Guillaume Girol
9545fade8b
Merge pull request #142743 from symphorien/ihm-5-dev-2 
python3.pkgs.ihatemoney: 4.2 -> 5.1.1
 2021-10-31 19:32:40 +00:00
Sandro Jäckel
c88d7f42cb
nixos/plasma5: fix accounts-daemon can't read profile image from systemsettings5 2021-10-31 19:50:07 +01:00
Sandro Jäckel
19142fd079
nixos/plasma5: enable accounts dbus daemon to beable to modify user settings like Pictures 2021-10-31 19:01:59 +01:00
Sandro Jäckel
22987611d0
nixos/plasma5: assorted manually formatting changes and cleanups + statix 
nixos/plasma5: asd
 2021-10-31 19:01:58 +01:00
github-actions[bot]
7ca1d48ff2
Merge master into staging-next 2021-10-31 18:01:01 +00:00
Maximilian Bosch
aaeba3c577
Merge pull request #143840 from maralorn/nextcloud-cron 
nixos/nextcloud: Adapt cron frequency to changed upstream requirement
 2021-10-31 15:50:47 +01:00
Jan Tojnar
ef02a97f27
Merge pull request #142865 from jansol/master 
pipewire: 0.3.38 -> 0.3.39
 2021-10-31 15:32:20 +01:00
Kerstin Humm
62ab77a322
nixos/borgbackup: specify systemd WorkingDirectory 2021-10-31 13:39:46 +01:00
Kerstin Humm
8d3b180052
nixos/radicale: specify systemd WorkingDirectory 2021-10-31 13:39:18 +01:00
Kerstin Humm
6c8e827c23
nixos/gollum: Specify systemd WorkingDirectory 2021-10-31 13:37:00 +01:00
github-actions[bot]
e4e8cd182e
Merge master into staging-next 2021-10-31 06:01:06 +00:00
Evils
b6ff276fb1 nixos/rasdaemon: init module 2021-10-30 22:22:12 -04:00
Jules Aguillon
b69d9d3c23 xmonad: Don't add ghc to the closure when 'config' is set 
When 'services.xserver.windowManager.xmonad.config' is not null, the
restart feature won't work by default and is not desirable unless
specific care is made, as explained by the documentation.

I think it's reasonable to not include the haskell dependencies in the
environment by default. That reduces the size of my system by 2GB.
 2021-10-30 21:32:58 +02:00
github-actions[bot]
0fa76ebdca
Merge master into staging-next 2021-10-30 18:00:59 +00:00
Silvan Mosberger
f1447fdaa8
nixos/invidious: init 
Co-authored-by: Simon Bruder <simon@sbruder.de>
 2021-10-30 16:33:38 +02:00
Malte Brandy
868157b9d6
nixos/nextcloud: Adapt cron frequency to changed upstream requirement 
https://docs.nextcloud.com/server/22/admin_manual/configuration_server/background_jobs_configuration.html

Says that the job should be run every 5 minutes.
Nextcloud shows a warning in the settings screen whenever the last run
was more than 10 minutes ago.
 2021-10-30 14:22:22 +02:00
github-actions[bot]
846f94d984
Merge master into staging-next 2021-10-30 12:01:09 +00:00
Mario Rodas
e49cd51ebc
Merge pull request #142672 from truh/update/plantuml-server_1.2021.12 
plantuml-server: 1.2021.7 -> 1.2021.12
 2021-10-30 04:44:16 -05:00
Felix Tenley
f880f906b9
nixos/ddclient: replace password with passwordFile option 2021-10-30 10:26:24 +02:00
github-actions[bot]
227e1c837c
Merge master into staging-next 2021-10-30 06:01:25 +00:00
happysalada
a8f9539d01 lemmy: systemd postgresql setup service cleanup 2021-10-30 09:16:09 +09:00
github-actions[bot]
2d204edb98
Merge master into staging-next 2021-10-30 00:01:30 +00:00
Jasper Woudenberg
810b3b5fcd nixos/yubikey-agent add maintainer jwoudenberg 2021-10-29 23:13:50 +02:00
Jasper Woudenberg
4ceb33b982 nixos/yubikey-agent: start enabled agent on boot 
This adds a `wantedBy` clause to the user systemd service for
yubikey-agent, to ensure an enabled agent is started on boot. This
brings the behavior inline with existing documentation.

If the user has selected a graphical pinentry program, then we need to
wait for the graphical environment to exist before starting the
yubikey-agent. I've found that if we start the agent earlier it will
fail when we perform an ssh command later.
 2021-10-29 23:13:46 +02:00
Maximilian Bosch
a1eaddd5c5
Merge pull request #139472 from Flakebi/signald 
signald: 0.13.1 -> 0.14.1 and add service
 2021-10-29 23:09:43 +02:00
Flakebi
cb5186feea
signald: add module 
Based on https://gitlab.com/coffeetables/myrdd/-/blob/master/modules/signald.nix
 2021-10-29 22:48:10 +02:00
Jan Tojnar
046ec82346 power-profiles-daemon: 0.8.1 → 0.10.1 
https://gitlab.freedesktop.org/hadess/power-profiles-daemon/-/blob/0.10.1/NEWS

Requires installing to system for polkit policy.
 2021-10-29 09:17:27 +02:00
github-actions[bot]
e7fbce41fc
Merge master into staging-next 2021-10-29 06:01:10 +00:00