tobias/nixpkgs
1
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2025-11-12 02:36:39 +01:00
Code Issues Packages Projects Releases Wiki Activity
887939 commits 197 branches 129 tags 14 GiB
Commit graph

2735 commits

Author SHA1 Message Date
Robert Helgesson 90c505624b nixos/grav: remove X-XSS-Protection 
See <https://github.com/NixOS/nixpkgs/issues/438800>.
 2025-09-02 20:40:09 +02:00
Robert Helgesson 22617bd181 nixos/grav: use PHP 8.3 
The stable version of Grav is not compatible with later versions of
PHP.
 2025-09-02 20:40:09 +02:00
Sandro da5d204889
nixos/hedgedoc: add configureNginx option (#427898) 2025-09-02 18:18:03 +02:00
Diogo Correia c129255508
nixos/grocy: don't set X-XSS-Protection anymore 
Part of #438800.

The OWASP recommentation[1] is:

> The X-XSS-Protection header has been deprecated by modern browsers
> and its use can introduce additional security issues on the client
> side. As such, it is recommended to set the header as X-XSS-Protection: 0
> in order to disable the XSS Auditor, and not allow it to take the default
> behavior of the browser handling the response. Please use
> Content-Security-Policy instead.

[1] https://owasp.org/www-project-secure-headers/#x-xss-protection
 2025-09-01 22:36:10 +01:00
Diogo Correia 80f6d36543
{nixos/,}grocy: add diogotcorreia as maintainer 2025-09-01 22:30:43 +01:00
dish e143b6b049
nixos/kanboard: remove X-XSS-Protection (#439035) 2025-09-01 16:50:24 -04:00
Sandro 6779ff00b3
nixos/glitchtip: fix sourcemap uploads, add stateDir option (#438957) 2025-09-01 17:53:54 +02:00
Defelo 6ef10ab044
nixos/glitchtip: add stateDir option 2025-09-01 16:57:10 +02:00
Defelo 95968f2f73
nixos/glitchtip: fix sourcemap uploads 2025-09-01 16:57:07 +02:00
Morgan Jones 344caf9640
mattermost: charset fixes (#436376) 2025-09-01 02:19:03 +00:00
Zexin Yuan 47fcf23026
nixos/kanboard: remove X-XSS-Protection 2025-09-01 09:43:15 +08:00
Robert Schütz 06c99c29c9 nixos/nextcloud: remove X-XSS-Protection 
see https://github.com/nextcloud/server/pull/53476
 2025-08-31 10:14:01 +02:00
Erin of Yukis 1ec5da1a27
nixos/jitsi-meet: fix systemd protection flag warning 
Fixes systemd warning:

> /etc/systemd/system/jitsi-excalidraw.service:26: Failed to parse ProtectProc=true, ignoring: Invalid argument

when Jitsi-Meet Excalidraw Backend is enabled. `ProtectProc=true` is not a thing according to man pages, `ProtectProc=noaccess` is the most restrictive setting and likely what was originally intentioned.
 2025-08-29 08:56:37 +00:00
Philip Taron 43d66715e5
fetchNextcloudApp: add sha512 (#435930) 2025-08-27 12:14:53 -07:00
staticdev 2196fed2b6 fetchNextcloudApp: add sha512 2025-08-26 22:25:48 +02:00
isabel 0471c45c8f
sharkey: 2025.4.3 -> 2025.4.4 (#431142) 2025-08-25 22:22:25 +01:00
dish 970dcca69c
treewide: Fix links in module documentation 2025-08-25 12:55:11 -04:00
Ruby Iris Juric 64a200b22a
sharkey: add tmarkus as maintainer 
https://github.com/NixOS/nixpkgs/pull/431142#pullrequestreview-3149369365
 2025-08-25 20:16:04 +10:00
Morgan Jones 6cc8a8cdb5
nixos/mattermost: remove fallback charset for MySQL 
This was causing issues on newer versions of MariaDB (breaking
NixOS tests) like:

```
Error 1064 (42000): You have an error in your SQL syntax;
check the manual that corresponds to your MariaDB server version
for the right syntax to use near '%2Cutf8' at line 1
```

Since this is simply a fallback character set and all supported versions
of MariaDB support utf8mb4, delete the fallback.

This change should be fully compatible with existing deployments.
 2025-08-23 20:41:44 -07:00
Pol Dellaiera bc36d3ac43 maintainers: drop drupol 2025-08-20 17:54:38 +02:00
Jonas Heinrich fd71ab35d6
invoiceplane: 1.6.2 -> 1.6.3 (#431713) 2025-08-20 16:48:57 +02:00
dotlambda 32991f1eac
nixos/immich: add support for VectorChord (#428568) 2025-08-19 13:31:01 -07:00
isabel ddd7db501d
nixos/bluesky-pds: rename from pds 2025-08-19 20:59:04 +01:00
Sefa Eyeoglu a9c17c34b1
nixos/immich: add VectorChord migration docs 
Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
 2025-08-19 17:56:20 +02:00
Sefa Eyeoglu 0b93bf6c22
nixos/immich: add enableVectors option 
Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
 2025-08-19 17:55:28 +02:00
Sefa Eyeoglu fd1994a8b7
nixos/immich: add enableVectorChord option 
This enables VectorChord in the database (currently) alongside
pgvecto.rs. Note that VectorChord requires pgvector, which is enabled as
well by this option.

Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
 2025-08-19 17:55:14 +02:00
Jonas Heinrich aa06ffc4c3 nixos/invoiceplane: Update patch 2025-08-17 10:30:23 +02:00
lassulus c4142d912d
nixos/jitsi-meet: fix prosody configuration (#434201) 2025-08-17 01:07:41 +02:00
⛧-440729 [sophie] d58a9b9134
nixos/jitsi-meet: fix prosody configuration 2025-08-16 12:43:31 +02:00
RatCornu f07a87c1e5
nixos/szurubooru: change python3.12 to python3 2025-08-15 23:53:42 +02:00
Felix Bargfeldt 409bce8932
zipline: 4.2.1 -> 4.2.3, prune node_modules (#432028) 2025-08-15 12:54:26 +02:00
MiaFoxcat ab475572f4 nixos/outline: add discord auth 2025-08-15 00:16:35 +02:00
Sefa Eyeoglu 1a24457782
nixos/immich: only start after reaching postgres.target 
Without this dependency, we may run into a race condition, especially in
our tests.

Signed-off-by: Sefa Eyeoglu <contact@scrumplex.net>
 2025-08-14 22:30:00 +02:00
w 95452e8797
nixos/onlyoffice: fix gixy error (#419765) 2025-08-14 13:58:47 +02:00
Toma 84ac628079
nixos/lanraragi: update description (#433505) 2025-08-14 01:29:17 +02:00
TomaSajt 45e24e83c4
nixos/lanraragi: update description 2025-08-13 23:55:44 +02:00
Defelo ed4ce19544
zipline: 4.2.1 -> 4.2.3 
Changelog: https://github.com/diced/zipline/releases/tag/v4.2.2
Diff: https://github.com/diced/zipline/compare/v4.2.1...v4.2.2

Changelog: https://github.com/diced/zipline/releases/tag/v4.2.3
Diff: https://github.com/diced/zipline/compare/v4.2.2...v4.2.3
 2025-08-13 14:38:20 +02:00
Yifei Sun 645af1a698
nixos/calibre-web: fix book cover not showing up due to cache directory defaults to cps path under /nix/store/ 2025-08-12 15:37:08 +02:00
6543 f7611cad51 nixos/nextcloud: unify usage of lib functions 2025-08-11 18:49:21 +02:00
Jörg Thalheim 4940959d28
nixos/mediawiki: fix error from wfGetDB being removed (#427623) 2025-08-10 11:42:14 +02:00
lassulus cb771a25a1
jitsi-meet: fix infinite recursion with prosody package (#432371) 2025-08-10 09:34:49 +02:00
lassulus 6f224e65ea jitsi-meet: fix infinite recursion with prosody package 2025-08-10 00:23:58 +02:00
oddlama a7f40a2648
nixos/mealie: add extraOptions to allow setting trusted proxies for OIDC redirect uri 2025-08-08 20:01:41 +02:00
oddlama 7ba29b306f
nixos/mealie: add trustedProxies option to fix OIDC redirect uri 2025-08-08 20:01:34 +02:00
Maximilian Bosch 3e41a080eb
Merge: nixos/nextcloud: configure redis by default (#421813) 2025-08-07 17:27:21 +02:00
isabel 281eb01683
nixos/snips-sh: init (#390655) 2025-08-07 11:16:11 +01:00
Martin Weinelt 7db4feef65
nixos/discourse: fix postgres dependency 
This was broken during the postgresql.target migration in 41c5662cbe.
 2025-08-04 15:48:21 +02:00
Felix Bühler a7566d72a0
nixos/freshrss: fix loading extensions' static content (#430651) 2025-08-03 21:39:11 +02:00
Aleksana 3c74938b56
nixos/outline: add support for S3 Transfer Acceleration (#429498) 2025-08-03 22:23:57 +08:00
Matt Christ 637fc36529 nixos/freshrss: fix loading extensions' static content 
Before this change, the THIRDPARTY_EXTENSIONS_PATH would end up with a
double-slash in the path, which was breaking FreshRSS's is_valid_path
detection.
 2025-08-03 09:22:46 -05:00
Martin Weinelt 56674702b0
nixos/postfix: modernize, cleanup (#416840) 2025-08-02 23:50:59 +02:00
isabel 3ad01858c5
nixos/snips-sh: init module 
Co-authored-by: NotAShelf <raf@notashelf.dev>
 2025-08-02 09:45:27 +01:00
lassulus 2ea007a23b
services/jitsi: Add missing dependency for breakout rooms (#429837) 2025-08-01 13:42:22 +02:00
Pol Dellaiera 35d4463792
nixos/drupal: config extend (#428153) 2025-08-01 04:38:23 +02:00
Andrew Benbow ed75819998 nixos/drupal: extend config interface, add config sync dir 2025-07-31 16:03:56 -04:00
Daniel Langbein 09206bfe33
nixos/homer: fix escape docstring 2025-07-31 20:42:36 +02:00
pinpox deb236c834
services/jitsi: Add missing dependency 
To be able to use jitsi's breakout rooms (`muc_breaktout_rooms`),
prosody needs to include the `cjson` lua dependency.
 2025-07-31 17:37:12 +02:00
Sandro c4e4ad2cda
komga: bugfix allow komga access to /proc/mounts (#429206) 2025-07-31 15:13:24 +02:00
Martin Weinelt cdeff13765
nixos/lasuite-meet: serve admin ui static assets via nginx (#429362) 2025-07-30 17:40:00 +02:00
Cobalt 069ad13822
nixos/outline: add support for S3 Transfer Acceleration 
An optional extension for anyone using the transfer acceleration, either
on S3 or as a workaround for non-public S3 services.
 2025-07-30 14:22:11 +02:00
Chris Moultrie 5983d4bed3
web-apps/komga: add tebriel to maintainers 2025-07-29 22:34:31 -04:00
Chris Moultrie 42eb3d422a
komga: bugfix allow komga access to /proc/mounts by service 
New Java call to the Files.getFileStore uses /proc/mounts so we can no
longer hav ProcSubset as only "pid".
 2025-07-29 11:15:03 -04:00
Niklas Hambüchen 436a8a1152
umami: init at 2.19.0; nixos/umami: init (#380249) 2025-07-29 16:48:52 +02:00
Diogo Correia 6d61e7b089 nixos/umami: init module 2025-07-29 14:38:02 +00:00
Alexander Sieg 32ca49df92
nixos/lasuite-meet: serve admin ui static assets via nginx 2025-07-29 16:20:44 +02:00
xanderio a70576d5ce
nixos/lasuite-meet: fix preStart script for backend (#425556) 2025-07-29 16:09:19 +02:00
Sandro 781856bcb7
go-httpbin: init at 2.18.3, nixos/go-httpbin: init module (#427717) 2025-07-29 15:48:11 +02:00
Martin Weinelt 7f52135a59
nixos/postfix: fold main and master config into settings attribute 2025-07-28 17:03:08 +02:00
Martin Weinelt 029f408b94
treewide: migrate postfix configurations to service.postfix.config 
The `services.postfix.config` option is a freeform type that represents
settings in `main.cf`. The top-level options on the postfix module were
replaced by these and that is the reason behind this migration.
 2025-07-28 16:42:17 +02:00
Jennifer Graul 1918e3ced1
nixos/peering-manager: fix bgp session poller 
The "--all" flag from poll_bgp_sessions has been removed and is now the
default.
 2025-07-28 13:29:13 +02:00
Jennifer Graul 4c21b28447
nixos/peering-manager: add environmentFile option 2025-07-28 13:29:10 +02:00
Jennifer Graul 6f35ae801e
nixos/peering-manager: remove enableOidc option since it is now builtin 2025-07-28 13:19:01 +02:00
Maximilian Bosch c3da85f1bb
Merge: nixos/nextcloud: fix eval (#428709) 2025-07-28 11:37:35 +02:00
Izorkin cbec672b38
nixos/libretranslate: init 2025-07-27 03:46:22 +02:00
Sandro Jäckel 9e2d007b94
nixos/nextcloud: configure redis by default 2025-07-26 23:31:35 +02:00
Sandro Jäckel 58def163c0
nixos/nextcloud: fix eval 2025-07-26 23:22:15 +02:00
Cosima Neidahl 009450ee9e
nixos/peertube-runner: init module (#427007) 2025-07-25 21:28:22 +02:00
June Stepp f200c10c8a
nixos/peertube-runner: init module 2025-07-25 10:58:04 -05:00
Sandro Jäckel 7259b7ca67
nixos/hedgedoc: add configureNginx option 2025-07-24 22:01:49 +02:00
6543 b6088b0d8e nixos/nextcloud: remove with lib usage 2025-07-24 17:00:10 +02:00
Maximilian Bosch 5d30429bbf
Merge: nixos/nextcloud: move phpPackage default into option (#423792) 2025-07-24 16:31:49 +02:00
Wolfgang Walther 5a0711127c
treewide: run nixfmt 1.0.0 2025-07-24 13:55:40 +02:00
Wolfgang Walther 62fe016519
treewide: run treefmt with mdcr/nixfmt 2025-07-24 13:52:31 +02:00
Wolfgang Walther 6c47e7d5da
treewide: fix syntax errors in nix code blocks 
Fixes all code blocks with "nix" language in markdown files for syntax
errors to be able to run nixfmt in the next step.
 2025-07-24 13:52:29 +02:00
Defelo 224dc30d39
nixos/go-httpbin: init module 2025-07-23 16:17:47 +02:00
Pol Dellaiera 0a5c852bbf
nixos/drupal: add config for private files directory (#427260) 2025-07-23 10:59:12 +02:00
Rémi NICOLE 16bf4a02fa
nixos/nextcloud: fix module maintainers (#427548) 2025-07-23 10:40:37 +08:00
Ashelyn Dawn 0918d45da9
nixos/mediawiki: update maintenance script usage 
Calling maintenance scripts directly was deprecated in 1.40, so we
should call them via run.php instead

Release notes: https://www.mediawiki.org/wiki/Release_notes/1.40#Upgrading_notes_for_1.40
 2025-07-22 19:48:21 -06:00
Ashelyn Dawn 61c4a6463b
nixos/mediawiki: wfGetDB removed 
MediaWiki 1.44 has removed the wfGetDB function, so the init script
can no longer use it

Release notes: https://www.mediawiki.org/wiki/Release_notes/1.44#Breaking_changes_in_1.44
 2025-07-22 19:48:21 -06:00
Andrew Benbow 711f3730a9 nixos/drupal: add config for private files directory 2025-07-21 17:35:39 -04:00
Gaétan Lepage 2935230aa7
peertube: remove spawn (#427111) 2025-07-21 18:47:52 +02:00
Norbert Melzer c623ad67be
nixos/LANraragi: Add openFirewall option (#421882) 2025-07-21 16:49:01 +02:00
liberodark 1c1d6a725a peertube: remove spawn 2025-07-21 12:55:23 +02:00
Yt ff3ffc8143
nixos/meilisearch: generic settings; handle secrets better. + fix racy test (#424481) 2025-07-20 04:48:44 -04:00
Maximilian Bosch 3289277081
Merge: nixos/nextcloud-notify_push: delay restart and add same dependences f… (#421552) 2025-07-19 12:59:50 +02:00
Paul Haerle f79d2fc207
Fix link syntax in Markdown files (#426381) 2025-07-18 16:06:24 +02:00
Andrew Voynov e2ce2981bf
nixos/services: fix Markdown link syntax in web-apps/ocis.md 2025-07-18 18:25:21 +05:00
Sandro d69cbe23e1
nixos/chhoto-url: init module (#424630) 2025-07-18 13:32:14 +02:00
Defelo 55e6f26bff
nixos/chhoto-url: init module 2025-07-18 12:00:32 +02:00
Maximilian Bosch bf79e3edcd
Merge: nixos/lasuite-docs: perform migrations after generating secret key (#425493) 2025-07-17 18:18:07 +02:00
xanderio caea8a1c0a
nixos/dependency-track: fix default JVM heap size (#425747) 2025-07-17 16:11:36 +02:00
Pol Dellaiera 12614d7b94
nixos/bookstack: Updated to accommodate passwordless login for mysql & Module now creates themes directory; nixosTests.bookstack: Updated to also test passwordless login for mysql; bookstack: Changed to allow themes directory to be writable (#422309) 2025-07-17 09:45:42 +02:00
Savyasachee Jha 912ca9239a nixos/bookstack: Module now creates themes directory 2025-07-17 07:57:13 +02:00
June Stepp 4ee1354ae6 nixos/peertube: only include whisper when transcription is enabled 
`whisper-ctranslate2` has a large closure size with unique dependencies.
 2025-07-16 21:25:16 +02:00
Julian Stecklina 5517b6f068 nixos/dependency-track: fix default JVM heap size 
The default of 4GB is too low for a production setup and causes
DependencyTrack to hit java.lang.OutOfMemoryError. This causes
Dependency Track to enter a weird state where it will throw 502 and
504 errors.

The initial 4GB was set to make Dependency Track run in the (too
small) VM in the NixOS integration test. Move the explicit heap
configuration there. For the service itself, we now don't set a limit.
This means the JVM will choose its maximum heap on its own, which does
a much better job for realistic scenarios.

I added a release note, because people who run Dependency Track on
very tiny VMs/machines may experience issues.
 2025-07-16 12:16:49 +02:00
soyouzpanda 31dcccb074
nixos/lasuite-meet: fix preStart script for backend 
- Use Systemd bind mount instead of symlinking the static directory
- Perfom migrations after generating secret key

Thanks @networkException and @Ma27
 2025-07-15 22:00:49 +02:00
Maximilian Bosch 4005a14f8f
nixos/lasuite-docs: perform migrations after generating secret key 
When generating the key inside the module rather than specifying a
hard-coded one, you'd get an error like this otherwise

    Jul 15 16:02:53 nixos systemd[1]: Starting Docs from SuiteNumérique...
    [...]
    Jul 15 16:02:54 nixos lasuite-docs-pre-start[19466]: ValueError: Couldn't setup configuration 'impress.settings.Production':  Path '/var/lib/lasuite-docs/django_secret_key' does not exist.
 2025-07-15 18:23:14 +02:00
Jonas Heinrich dfd06eef52
froide-govplan: 0-unstable-2025-01-27 -> 0-unstable-2025-06-25 (#422026) 2025-07-14 08:46:17 +02:00
sodiboo 5a8660f10f nixos/meilisearch: generic settings; handle secrets better. 2025-07-13 20:42:05 +02:00
Izorkin 5a922bf3e5 libvirt: nixos/mastodon: add fasp Sidekiq jobClasses 2025-07-12 15:40:09 +02:00
Jonas Heinrich d6e3516544 nixos/froide-govplan: Increase startup timeout 2025-07-10 10:54:47 +02:00
liberodark 481a3f2549 nixos/peertube: fix crash when import video 2025-07-09 19:10:22 +02:00
Sandro Jäckel 81edb3c986
nixos/nextcloud: move phpPackage default into option 
This allows it to be accessed like options.services.nextcloud.phpPackage.default

(cherry picked from commit 5a7afe0a331f97d7dbc65abe38f9a1807d2d753d)
 2025-07-09 16:10:29 +02:00
Kerstin 5de825150d
mastodon: 4.3.8 -> 4.4.0 (#414502) 
Co-authored-by: Izorkin <izorkin@elven.pw>
 2025-07-09 15:56:45 +02:00
Jonas Heinrich cd85e93ff7 nixos/froide-govplan: Fix PYTHONPATH 2025-07-09 15:48:05 +02:00
June Stepp 6d35689a8d nixos/peertube: support auto transcription 
`ProcSubset = "pid"` was removed, because /proc/cpuinfo needs to be
accessed.
 2025-07-08 10:58:16 +02:00
Chris Kruining f7e134def9
nixos/lanraragi: add openFirewall option 
Makes it easier to set up the service, many other services offer this option
 2025-07-07 16:36:26 +02:00
Jeremy Fleischman 0a4c03ed81
nextcloud: add nextcloud.nginx.enableFastcgiRequestBuffering option 
Enabling this option fixes (works around) Nextcloud's notorious "0 byte file"
issue. See these upstream issues:

- https://github.com/nextcloud/documentation/issues/9574
- https://github.com/nextcloud/server/issues/7995

This fixes https://github.com/NixOS/nixpkgs/issues/252980

Co-authored-by: Maximilian Bosch <6025220+Ma27@users.noreply.github.com>
 2025-07-06 13:21:01 -07:00
Ruby Iris Juric 11d8fbb0b6
nixos/sharkey: init module 2025-07-07 01:01:39 +10:00
Maximilian Bosch 85ec73855b
Merge: nixos/nextcloud: document nextcloud-occ command (#422639) 2025-07-05 18:44:48 +02:00
Maximilian Bosch 5a6f0a43ae
nixos/nextcloud: document nextcloud-occ command 
It's not clear how to use this command in other systemd units, this
section gives a recommendation.

I realized that there's no explicit mention of `nextcloud-occ` in the
first place, so I wrote some introductory sentences as well.
 2025-07-05 12:42:06 +02:00
Maximilian Bosch 0ccca18bd8
Merge: nixos/nextcloud-notify_push: allow overwriting recommendedProxySettings without mkForce (#421786) 2025-07-05 11:40:11 +02:00
Maximilian Bosch c21958fae8
Merge: nixos/nextcloud: add assertion explaining to set dbtype (#422433) 2025-07-05 10:00:20 +02:00
K900 a6900e5833
nixos/lasuite-meet: init (#407742) 2025-07-05 10:21:40 +03:00
soyouzpanda 15f71480e2 nixos/lasuite-meet: init 2025-07-05 10:10:15 +03:00
Pol Dellaiera e0472e2056
nixos/drupal: make https the default for Caddy (#418254) 2025-07-04 23:47:12 +02:00
Dominique Martinet 78a20758e0 nixos/nextcloud: add assertion explaining to set dbtype 
Since 25.05 dbtype no longer defaults to sqlite and this yields an error
that is understandable enough but not easy to properly address.

Add an assert that is more explicit.

Before:
```
       error: The option `nodes.nextcloud.services.nextcloud.config.dbtype' was accessed but has no value defined. Try setting the option.
```

After:
```
       error:
       Failed assertions:
       - `services.nextcloud.config.dbtype` must be set explicitly (pgsql, mysql, or sqlite)

       Before 25.05, it used to default to sqlite but that is not recommended by upstream.
       Either set it to sqlite as it used to be, or convert to another type as described
       in the official db conversion page:
       https://docs.nextcloud.com/server/latest/admin_manual/configuration_database/db_conversion.html
```

Link: https://github.com/NixOS/nixpkgs/pull/369242#issuecomment-3036296243
 2025-07-05 06:35:26 +09:00
Savyasachee Jha cab8025470 nixos/bookstack: Updated to accommodate passwordless login for mysql 2025-07-04 08:23:57 +02:00
Sandro Jäckel d8ada6c1d6
nixos/nextcloud-notify_push: delay restart and add same dependences for setup unit 
So that in case of nextcloud taking a few seconds longer to start up,
the setup unit doesn't go into a fail state.
 2025-07-03 15:42:30 +02:00
Vladimir Timofeenko 7e7b797156 nixos/homebox: fix link to documentation 2025-07-02 08:26:51 -07:00
Sandro Jäckel c049f1746c
nixos/nextcloud-notify_push: allow overwriting recommendedProxySettings without mkForce 2025-07-02 15:11:27 +02:00
Maximilian Bosch a064abed61
Merge: nixos/postgresql: move postStart into separate unit (#403645) 2025-06-27 18:09:54 +02:00
Rémi NICOLE 17f82c3cd7
nixos/netbox: don't force use of sudo in netbox-manage (#419237) 2025-06-27 13:10:55 +00:00
teutat3s 0c7a8d5255
nixos/nextcloud: sync nginx config with upstream 
Upstream changes were checked by checking out the stable31 branch of the
https://github.com/nextcloud/documentation and comparing:

git diff c1c9b0a072537544769fdd6062989a631d4fb17c admin_manual/installation/nginx-root.conf.sample

Notably, this adds the text/javascript and application/wasm mime types to the list of
gzip'ed mime types, which improves nextcloud loading in our testing.

Also adds webp support.
 2025-06-25 20:36:45 +02:00
Leona Maroni a467ed2611
netbox_4_3: init at 4.3.2 (#414367) 2025-06-25 11:17:09 +02:00
Arnout Engelen cab186d016
nixos/galene: allow using self-signed certificates (#417508) 2025-06-24 20:47:40 +02:00
Wolfgang Walther 41c5662cbe
nixos/postgresql: move postStart into separate unit 
This avoids restarting the postgresql server, when only ensureDatabases
or ensureUsers have been changed. It will also allow to properly wait
for recovery to finish later.

To wait for "postgresql is ready" in other services, we now provide a
postgresql.target.

Resolves #400018

Co-authored-by: Marcel <me@m4rc3l.de>
 2025-06-24 15:26:47 +02:00
Wolfgang Walther 3a63b54b2c
nipap: init at v0.32.7 (#417076) 2025-06-24 13:18:00 +00:00
Taliyah Webb 33ab0a191e
nixos/netbox: don't force use of sudo in netbox-manage 2025-06-24 11:20:10 +02:00
transcaffeine 142421f155
netbox_4_3: init at 4.3.2 
Release notes:
  - https://github.com/netbox-community/netbox/releases/tag/v4.3.0
  - https://github.com/netbox-community/netbox/releases/tag/v4.3.1
  - https://github.com/netbox-community/netbox/releases/tag/v4.3.2
Full changelog: https://github.com/netbox-community/netbox/compare/v4.2.9...v4.3.2
 2025-06-24 10:47:07 +02:00
Luke Granger-Brown a013d9258c nixos/nipap: init 2025-06-23 21:52:32 +01:00
Martin Weinelt 8dfb4412a7
engelsystem: unvendor composer and yarn dependencies 2025-06-22 23:56:49 +02:00
Wolfgang Walther dfbaabf75c
nixos/immich: assert postgresql is below v17 (#418962) 2025-06-22 16:19:10 +00:00
Wolfgang Walther cb30307559
nixos/immich: assert postgresql is below v17 
We recently bumped the default PostgreSQL version to v17 in the NixOS
module. This breaks immich, which still needs PostgreSQL 16.
 2025-06-22 17:50:08 +02:00
Maximilian Bosch 683bc0289e
Merge: nixos/nextcloud: add php-systemd extension if log_type is "systemd" (#416735) 2025-06-22 17:04:52 +02:00
Maximilian Bosch 5d2e8705fb
Merge: nixos/{libeufin,roundcube,immich}: fix postgresql.package regression (#418514) 2025-06-22 16:43:20 +02:00
Wolfgang Walther 62d2b6d593
nixos/immich: fix postgresql.package regression 
`config.services.postgresql.package` is now only available when the
PostgreSQL module is actually enabled. If we're not using the local
database, we'll need to fallback to the latest postgresql version, since
we don't know about the remote version.
 2025-06-22 14:25:03 +02:00
Lukas Nagel 589374dd71 nixos/nextcloud: add php-systemd extension if log_type is "systemd" 2025-06-21 08:47:47 +02:00
Guillaume Girol deaa642681
nixos/nextcloud: configure only unique trusted_domains (#413386) 2025-06-21 00:16:01 +02:00
Kerstin Humm ed0af3bf25 nixos/mastodon: make robust for cases where postgresql isn't enabled on the host 
E.g. when a remote PostgreSQL database is used

Apparently you can't access the services.postgresql.package value
anymore if postgresql isn't enabled?
 2025-06-20 14:40:25 +02:00
Andrew Benbow ae9adb2fa1 nixos/drupal: make https default for caddy 2025-06-19 16:02:09 -04:00
Leona Maroni 0a8f3e11c0
fediwall: init at 0.4.0 (#413666) 2025-06-19 18:11:51 +02:00
Pol Dellaiera ba7f45dbf8
bookstack: 24.12.1 -> 25.05.1, nixos/bookstack: refactor, nixosTests.bookstack: init (#389071) 2025-06-18 15:13:29 +02:00
transcaffeine ba7d1fec08
nixos/fediwall: init 2025-06-17 20:45:25 +02:00
Savyasachee Jha c75204d911 nixos/bookstack: refactored to comply with RFC42 and changed structure to take advantage of laravel caching 2025-06-17 20:35:53 +02:00
Arnout Engelen 87fbf71ed6
nixos/galene: allow using self-signed certificates 
Fixes #356170

Later we might also want to make it easier to run behind nginx as a reverse proxy, for consistency with other modules.
 2025-06-17 13:13:33 +02:00
RatCornu 94de595a56 nixos/szurubooru: init at 2.5-unstable-2025-02-11 2025-06-16 08:34:16 +02:00
Maximilian Bosch d2a5ec6b6b
Merge: nixos/nextcloud: Remove unused version logic (#413043) 2025-06-11 22:12:09 +02:00
provokateurin 58003922a8
nixos/nextcloud: Remove unused version logic 
All relevant versions are not supported anymore, therefore the version logic is no longer necessary.
 2025-06-10 08:57:08 +02:00
Pol Dellaiera 8e7e639670
nixos/drupal: bugfix postInstall hook and options (#414592) 2025-06-09 22:07:53 +02:00
Andrew Benbow 51e0229d2d nixos/drupal: bugfix postsInstall hook and options 2025-06-09 14:23:38 -04:00
Defelo f71748184c
nixos/olivetin: use yq-go to merge config files 2025-06-08 22:21:25 +02:00
Yureka f7a8cfb119
nixos/lasuite-docs: Set collaboration server allowed origins (#413190) 
Without this, the collaboration server closes the websocket connection
and activity within the doc is not synchronized.
 2025-06-07 15:38:27 +02:00
Pol Dellaiera 13cd7afd74
nixos/glance: add environmentFile option (#413373) 2025-06-06 09:15:18 +02:00
Pol Dellaiera 1f36324dfd
readeck: 0.18.2 -> 0.19.2 (#411362) 2025-06-05 11:23:22 +02:00
williamvds 82b8a1e117
maintainers: rename williamvds -> averyvigolo 2025-06-04 21:27:11 +01:00
linsui 17f95268f3 nixos/readeck: add back MemoryDenyWriteExecute 
SQLite driver is reverted to its CGO version so this can be enabled
 2025-06-05 03:47:00 +08:00
John Wiegley 8922d4f099
pihole: init at various (#361571) 
Adds pihole-ftl.service and pihole-ftl-log-deleter.service.

Authored-By: williamvds <william@williamvds.me>
 2025-06-04 08:12:30 -07:00
williamvds 727fe21d5d
nixos/pihole-web: init 
Pihole's dashboard is a web app which visualises statistics from pihole-FTL
(i.e. dnsmasq), shows query logs, and allows configuration.

With this module, configuration is largely declarative and immutable, so
settings can't be changed, but they can be viewed from the webpage.

The admin page also allows regenerating the DNS ("gravity") database.
 2025-06-03 23:15:18 +01:00
6543 0019d96579 nixos/nextcloud: configure only unique trusted_domains 2025-06-02 23:51:51 +02:00
Gutyina Gergő 3bddd16a37
nixos/glance: add environmentFile option 2025-06-02 23:07:13 +02:00
Andrew Benbow 223d142ea0 nixos/drupal: init 2025-06-02 16:56:22 -04:00
Gutyina Gergő 6591213349
nixos/glance: clarify settings _secret 2025-06-02 22:47:21 +02:00
Martin Weinelt d5bbb50acc
nixos/lasuite-docs: fix media proxying (#412732) 2025-06-02 21:22:37 +02:00
Martin Weinelt 0e4118f672
nixos/lasuite-docs: use systemd bind mount instead of stateful symlink for static directory (#413308) 2025-06-02 20:13:39 +02:00
networkException 0b360e9328
nixos/lasuite-docs: use systemd bind mount instead of stateful symlink for static directory 2025-06-02 19:51:42 +02:00
Peder Bergebakken Sundt c77ac9dfc3 treewide: fix typos 2025-06-02 16:07:07 +02:00
Arne Keller 005efa5c0c
nixos/filebrowser: add user and group options (#412653) 2025-06-01 17:16:35 +02:00
h7x4 5b840ad984
bluemap: 5.4 -> 5.7 (#357164) 2025-06-01 15:20:10 +02:00
h7x4 5b3e5519c1
nixos/bluemap: merge addons option into packs 
Mentioned in the release notes for bluemap 5.5:

> Move all contents (if any) of bluemaps addons folder into
> bluemaps packs folder and delete the addons folder.
> (Native addons now go into the packs folder alongside resourcepacks)

https://github.com/BlueMap-Minecraft/BlueMap/releases/tag/v5.5
 2025-06-01 04:18:54 +02:00
Peder Bergebakken Sundt cfbe1487f1
nixos/stash: fix empty immutable plugins (#402574) 2025-06-01 03:46:25 +02:00
Peder Bergebakken Sundt e2c60b31f8
nixos/test/stash: fix eval (#412794) 2025-06-01 03:45:59 +02:00
Peder Bergebakken Sundt 8be90eac26
nixos/stash: fix mutableSettings logic (#408198) 2025-06-01 03:39:01 +02:00
Peder Bergebakken Sundt dd3cbbe9d7 nixos/test/stash: fix eval 
nixosTests.stash fails eval when trying to convert cfg.settings to json due to a lambda sneaking its way in there. Bisected the issue to 0de1d18795. This fixes the issue.
 2025-06-01 03:16:41 +02:00
Puck Meerburg 39fe05dec0 nixos/lasuite-docs: fix media proxying 2025-05-31 18:02:44 +00:00
Martin J. Andersen c7ddf0b314 nixos/filebrowser: add user and group options 2025-05-31 15:47:12 +02:00
Ramses 6f71f0c7b2
nixos/keycloak: enable strict shell checks in systemd units (#409042) 2025-05-29 09:26:57 +02:00
Lukas Wurzinger 96ec055edb nixos/filebrowser: init module 2025-05-29 00:54:49 +05:30
Sandro f2e0bb7591
nixos/mediagoblin: fix gmg argument parsing and media reprocessing (#362655) 2025-05-28 16:14:10 +02:00
Sandro Jäckel 81d2a488e6
nixos/mediagoblin: fix initial media reprocessing with gmg 
Running `mediagoblin-gmg reprocess initial` before would fail with
missing GST_PLUGIN_PATH and tools in PATH.
 2025-05-28 16:00:20 +02:00
Sandro Jäckel dd63ca898e
nixos/mediagoblin: fix gmg argument parsing 
Before the argument to mediagoblin-gmg would be passed to the actual command
and the rest to sh which is obviously nonsense.
 2025-05-28 16:00:15 +02:00
PAEPCKE, Michael 5aa1b5c829
nixos/readeck: improve systemd start target 2025-05-25 19:19:45 +00:00
Martin Weinelt c49cc6a396
nixos/lasuite-docs: init (#401798) 2025-05-24 18:43:49 +02:00
soyouzpanda f3120f0710
nixos/lasuite-docs: init 2025-05-24 18:27:39 +02:00
Yt 95b919fd5d
nltk-data: make searchable, add all downloadables (#409952) 2025-05-24 09:24:00 -04:00
Felix Singer 559c4d0133 nixos/gerrit: Pin Java version to 21 
Gerrit 3.12 only supports Java 21. So in order to not get any unexpected
issues, set the default of jvmPackage to jdk21_headless.

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2025-05-24 01:13:16 +02:00
Benjamin Sparks a4c3b3eff2 treewide: nltk-data.averaged_perceptron_tagger_eng -> nltk-data.averaged-perceptron-tagger-eng 2025-05-23 01:24:27 +02:00
Winter 51a5e7059a
Revert "nltk-data: make searchable, add all downloadables" 2025-05-22 14:17:31 -04:00
Acid Bong 89abf8819f nixos/dex: add package option 2025-05-22 23:12:26 +05:30
K900 a656825f1c
nixos/opencloud: slightly better documentation (#409515) 2025-05-22 16:44:21 +03:00
Yt ef3140231e
nltk-data: make searchable, add all downloadables (#409482) 2025-05-21 21:56:01 -04:00
Benjamin Sparks 60d135d45a treewide: nltk-data.averaged_perceptron_tagger_eng -> nltk-data.averaged-perceptron-tagger-eng 2025-05-21 23:20:49 +02:00
K900 448ae8f0bc nixos/opencloud: slightly better documentation 2025-05-21 21:55:01 +03:00
K900 059f376f89
opencloud: init at 2.3.0 (#404891) 2025-05-21 20:36:00 +03:00
K900 b504cc1362 nixos/opencloud: init module 
Co-authored-by: Christoph Heiss <christoph@c8h4.io>
 2025-05-21 17:47:35 +03:00
Ulrik Strid fbbba999f4
nixos/davis: fix several outstanding bugs (#409068) 2025-05-21 15:36:41 +02:00
Casey Link b6f51cf13d nixos/davis: Use the php version defined by the davis package 2025-05-20 20:03:42 +02:00
Casey Link 23d344b9da nixos/davis: fix several outstanding bugs 
As reported in #317303, this fixes:

- nginx config is now actually optional
- mail dsn options are now optional
- broken stdout logging has been replaced with default file logging in
  state dir

fixes #317303
 2025-05-20 15:19:19 +02:00
Jean-François Roche 6abb0d239d nixos/keycloak: enable strict shell checks in systemd units 2025-05-20 13:51:31 +02:00
Felix Singer f14efb6fa2 nixos/gerrit: Add Felix Singer as maintainer 
I'm already a maintainer of the Gerrit package and I've done various
work on the Gerrit module. So it makes sense to be a maintainer there as
well.

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2025-05-19 04:28:36 +02:00
DoctorDalek1963 7dcad49a30
nixos/stash: fix mutableSettings logic 
Fixes services.stash.mutableSettings so that it makes sense. The logic
was previously backwards and the settings would be overriden if
mutableSettings was true.
 2025-05-18 00:36:45 +01:00
Ratchanan Srirattanamet ff4214fabd nixos/kimai: fix upgrading to Kimai 2.32 by clearing cache earlier 
During testing of Kimai 2.32, it's been found that fixes done in PR
371917 [^1] is not enough to prevent error in the case of upgrading from
2.31 to 2.32.

Hinted by an upstream issue [^2], make sure that the cache is cleared
before running `kimai:install`, not after. This fixes upgrading from
2.31 to 2.32, and should prevent similar issue from popping up again.

[^1]: https://github.com/NixOS/nixpkgs/pull/371917
[^2]: https://github.com/kimai/kimai/issues/5437
 2025-05-16 11:19:58 +02:00
Maximilian Bosch 26126c75df
Merge: Use cacert in Nextcloud (#406252) 2025-05-15 18:50:53 +02:00
provokateurin 12f8199080
nixos/nextcloud: Override cacert package with config.security.pki.caBundle 2025-05-15 18:19:52 +02:00
Luj b98b4f43bd
readeck: 0.17.1 -> 0.18.2 (#405276) 2025-05-14 17:38:22 +02:00
Sandro 60571a4fa9
nixos/gancio: fix cli not passing all args (#401581) 2025-05-14 15:11:36 +02:00
Jonas Heinrich 002ebbc4de
oncall: init at 2.1.7; nixos/oncall: init (#388723) 2025-05-13 23:21:54 +02:00
linsui bff193eaba readeck: 0.17.1 -> 0.18.2 2025-05-13 23:32:38 +08:00
Maximilian Bosch 0be521cb0e
Merge: nixos/nextcloud: use LoadCredential to read services.nextcloud.secretFile (#405970) 2025-05-13 13:45:36 +02:00
Sandro 95afdf2b49
nixos/gancio: properly quote 
Co-authored-by: Wroclaw <wroclaw223@outlook.com>
 2025-05-12 17:55:46 +02:00
provokateurin dfb7f45bb8
nixos/nextcloud: Disable integrity check 2025-05-11 21:34:33 +02:00
thiloho a847800945
nixos/archtika: remove module 2025-05-11 16:27:16 +02:00
Jonas Heinrich ce6e5f037a nixos/oncall: init 2025-05-11 13:30:01 +02:00
networkException 23468ad19f
nixos/nextcloud: use LoadCredential to read services.nextcloud.secretFile 
This patch adds support for using systemd's LoadCredential
feature to read in a json file at a path defined in the
services.nextcloud.secretFile option.

This is a follow up to 2ce1e84103.
 2025-05-10 20:36:01 +02:00
lassulus fb297f0be8
movim: 0.30 → 0.30.1; {movim,nixos.movim}: mysql → mariadb (#401596) 2025-05-10 07:58:20 +02:00
Pol Dellaiera aaf817bb5b
nixos/glance: allow specifying secret settings (#395551) 2025-05-08 13:58:03 +00:00
Izorkin 4ec6492b3b nixos/mastodon: add option elasticsearch.prefix 2025-05-08 14:48:52 +02:00
piegames a1848a66d8
nixos/stash: Fix regex in default value (#403279) 2025-05-07 12:45:34 +02:00
Yt e3fa38df6b
lauti: rename from eintopf and update to 1.0.0 (#403263) 2025-05-06 16:24:25 -04:00
Bruno BELANYI e8f532dea2
nixos/mealie: add 'database.createLocally' (#403670) 2025-05-06 13:45:40 +01:00
Riyyi 39fbbb7ba0
nixos/nextcloud: fix typo in extraApps example (#404314) 2025-05-05 17:00:50 +08:00
Bruno BELANYI 2e44a3dd76 nixos/mealie: add 'database.createLocally' 2025-05-02 23:15:59 +01:00
piegames 8a71705aba nixos/stash: Fix regex in default value 
`\.` in a Nix string is just `.`, so it will match on any characters
instead of just dot.
 2025-05-01 13:18:19 +02:00
Jonas Heinrich a22c5fac3f nixos/eintopf: rename package to lauti 2025-05-01 12:27:49 +02:00
Alexander Sieg 5205c8b5ca
nixos/snipe-it: clear and rebuild caches on startup 2025-04-29 15:45:04 +02:00
renesat cb4459412a
nixos/stash: fix empty immutable plugins 2025-04-28 18:41:14 +02:00
Gutyina Gergő 27d160b60b
nixos/glance: allow specifying secret settings 2025-04-26 13:42:15 +02:00
Maximilian Bosch 31357d17a3
Merge: nixos/nextcloud: Disable web updater by default (#401147) 2025-04-25 18:31:53 +02:00
โทสฺตัล 9e32e76a72 {movim,nixos.movim}: mysql → mariadb 
Docs say now the separation between MySQL & MariaDB too great to be
supported going forward, so to better reflect that, rename to match.
 2025-04-25 08:22:55 +07:00
Sandro Jäckel 3a5c613ce2
nixos/gancio: fix cli not passing all args 2025-04-25 01:27:15 +02:00
Defelo 965558108f
nixos/olivetin: init module 2025-04-24 23:40:51 +02:00
provokateurin 530c6f09c9
nixos/nextcloud: Disable web updater by default 
Disables the "Open updater" button in the admin overview and makes sure it is not possible to update the instance through the web interface.
Nextcloud runs from the source code in the nix store and should not try to update itself manually.
The only way to update Nextcloud is to update nixpkgs and therefore the web updater must be disabled.
 2025-04-23 17:08:25 +02:00
xanderio 71ae33edd3
nixos/dependency-track: fix nginx config for frontend (#393041) 2025-04-23 16:19:22 +02:00
0x4A6F d8bfbd35ee
upgrade nodejs_18 dependents in prevision for upcoming EOL (#399749) 2025-04-22 22:01:51 +02:00
Maximilian Bosch 2cb444f4fc
Merge: nixos/nextcloud: S3: Rename autocreate (a no-op) to verify_bucket_exists (#399629) 2025-04-22 16:03:51 +02:00
Maximilian Bosch 4c336c55b2
Merge: nextcloud29: drop (#397974) 2025-04-22 15:56:50 +02:00
Marcus Ramberg d3ad1eb896
hoarder: rename to karakeep, nixos/karakeep: init module (#399603) 2025-04-22 08:19:44 +02:00
Eric Roberts 9790df5968 nixos/karakeep: init module 2025-04-21 20:20:20 -04:00
Antoine du Hamel dc8397c07b
upgrade nodejs_18 dependents in prevision for upcoming EOL 2025-04-21 19:56:15 +02:00
Martin Weinelt 96c56efbc6
discourse: 3.3.2 -> 3.4.2 (#394129) 2025-04-21 16:44:43 +02:00