tobias/nixpkgs
1
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2025-11-23 17:13:32 +01:00
Code Issues Packages Projects Releases Wiki Activity
801502 commits 199 branches 75 tags 12 GiB
Commit graph

2321 commits

Author SHA1 Message Date
sehqlr 15eafd036b Fixed the Monica email configuration bug 2024-12-20 14:48:38 -06:00
K900 81932cf82a Merge remote-tracking branch 'origin/staging-next' into staging 2024-12-20 21:34:46 +03:00
Arne Keller 4ff852554d
nixos/akkoma: include ImageMagick by default (#353164) 2024-12-20 19:13:50 +01:00
Arne Keller dab5c03aa4
firefly-iii: 6.1.24 -> 6.1.25, nixos/firefly-iii: Improved cache clearing (#366564) 2024-12-20 19:12:47 +01:00
Arne Keller 94200398f9
nixos/actual: init at 24.10.1 (#347825) 2024-12-20 18:55:13 +01:00
Arne Keller 75269f6e77
nixos/akkoma: Provide cache directory via environment (#352706) 2024-12-20 18:12:13 +01:00
oddlama 93af2d0523
nixos/actual: init module and tests 
Co-authored-by: PatrickDaG <58092422+PatrickDaG@users.noreply.github.com>
 2024-12-20 15:06:04 +01:00
github-actions[bot] f970ef5718
Merge staging-next into staging 2024-12-20 12:06:14 +00:00
Robin Gloster 70145b71c3
Update TT-RSS, add simple test and updater flag customization (#356592) 2024-12-20 10:58:55 +00:00
Mathieu Fenniak 8d680a8c59 calibre-web: fix ebook conversion missing config_binariesdir setting 2024-12-19 14:39:34 -07:00
Savyasachee Jha 51bed7030f nixos/firefly-iii: Improved cache clearing 2024-12-19 20:13:58 +05:30
github-actions[bot] eb65114f5f
Merge staging-next into staging 2024-12-18 00:15:29 +00:00
misuzu 96ec911551
nixos/gancio: add gancio to nginx extraGroups only if nginx enabled (#352143) 2024-12-17 22:13:00 +02:00
github-actions[bot] 8e083c99ce
Merge staging-next into staging 2024-12-17 18:05:44 +00:00
Sam Grayson 275baaeee3
nixos/matomo: Fix typo in assertion message (#365931) 
This typo is confusing because it seems like the assertion requires nginx to be non-null (old text: "either nginx or nginx.webServerUser is mandatory").
 2024-12-17 18:25:41 +02:00
Sandro Jäckel a81d5824e8
nixos/nextcloud-notify_push: add nextcloudUrl option 
to have better control over the URL for when bendDomainToLocalhost is
not good enough
 2024-12-15 22:43:12 +01:00
Wolfgang Walther e58e0c158e
various: replace substituteAll with replaceVarsWith 
This covers cases which need to use replaceVarsWith because the use
isExecutable = true.
 2024-12-15 13:35:30 +01:00
Geoffrey “Frogeye” Preud'homme 95ebb0ea4b
nixos/powerdns-admin: adapt for newer flask-session 
It broke somewhere between NixOS 24.05 and 24.11 due to flask-session
being upgraded. It now requires an explicit value and an empty string
will no longer do.
cachelib's SimpleCache was chosen as it doesn't require any other
configuration, and keeps previous behaviour.
 2024-12-14 23:14:47 +01:00
Felix Zieger b663e569c7
nixos/nostr-rs-relay: init (#365038) 
* nixos/modules/services/web-apps: add nostr-rs-relay

* add jb55 as maintainer

* remove lib.mddoc

* mkenable requires name
 2024-12-14 12:27:20 +02:00
Ember 'n0emis' Keske 601504d994 Remove n0emis as direct maintainer 2024-12-13 22:10:53 +01:00
Sandro Jäckel b43f31e53a
nixos/nextcloud-notify_push: turn off keepalive_timeout, proxy_buffering 
Just a safe guard in case it was configured in a higher level as
otherwise notify_push would break.
 2024-12-13 17:58:08 +01:00
Sandro 7f632a70b8
nixos/bookstack: add package option (#364347) 2024-12-12 21:21:52 -05:00
nicoo f6c5531461
nixos: Don't set !allowSubstitutes (#314664) 
It is set by `runCommandLocal` and prevents fetching the build output
from `cache.nixos.org` or another trusted substituter.
 2024-12-12 18:26:24 +00:00
Arne Keller 27aef3ef74
nixos/dokuwiki: Don't force http with Caddy (#327743) 2024-12-12 10:21:24 +01:00
K900 7ea7a19b2d
nixos/bookstack: fix unintended escaping of nginx locations (#363581) 2024-12-11 20:23:22 +03:00
Robert Schütz d55cc4608d
nixos/immich: restrict media filesystem permissions (#361627) 2024-12-11 08:45:12 -08:00
Benjamin Saunders fd21ef2a65 nixos/immich: restrict filesystem permissions 
immich appears to create this directory with permissions 0755 by
default, which needlessly exposes user data to other processes.
 2024-12-10 20:02:17 -08:00
Silvan Mosberger 4f0dadbf38 treewide: format all inactive Nix files 
After final improvements to the official formatter implementation,
this commit now performs the first treewide reformat of Nix files using it.
This is part of the implementation of RFC 166.

Only "inactive" files are reformatted, meaning only files that
aren't being touched by any PR with activity in the past 2 months.
This is to avoid conflicts for PRs that might soon be merged.
Later we can do a full treewide reformat to get the rest,
which should not cause as many conflicts.

A CI check has already been running for some time to ensure that new and
already-formatted files are formatted, so the files being reformatted here
should also stay formatted.

This commit was automatically created and can be verified using

    nix-build a08b3a4d19.tar.gz \
      --argstr baseRev b32a094368
    result/bin/apply-formatting $NIXPKGS_PATH
 2024-12-10 20:26:33 +01:00
Nick Cao 3c9a1fe232
nixos/wakapi: don't merge EnvironmentFile paths (#363205) 2024-12-09 13:37:24 -05:00
s1341 8ae4064d70 nixos/bookstack: fix unintended escaping of nginx locations 2024-12-09 15:41:22 +02:00
Elian Doran 655768419e nixos/trilium: add adjustable package 2024-12-09 11:56:53 +01:00
Lukas Werling 1475f480d5 nixos/dokuwiki: Don't force http with Caddy 
Caddy usually expects just a hostname without scheme to do its automatic
HTTPS.  It is possible to get the old behavior (only HTTP) by setting
`services.caddy.virtualHosts.<host>.hostName`.
 2024-12-09 11:49:52 +01:00
Arne Keller 414c290f3b
nixos/galene: add turnAddress option and fix httpAddress (#353421) 2024-12-09 06:37:50 +01:00
Zexin Yuan 53bd25e9e2
kanboard: init at 1.2.42 (#357229) 2024-12-08 20:17:10 -05:00
NotAShelf a8537d1198
nixos/wakapi: don't merge EnvironmentFile paths 2024-12-08 20:26:54 +03:00
Yt d530a7b9ea
nixos/lemmy: fix nginx backend to proxy needed headers (#306984) 2024-12-06 19:27:00 -05:00
Aleksana 123a31096f
firefly-iii: fix typo (#360434) 2024-12-06 22:46:32 +08:00
misuzu cd9300a455
nixos/akkoma: Make imports explicit (#320513) 2024-12-05 15:00:33 +02:00
w b66069df87
nixos/invoiceplane: fix sites option description (#316699) 2024-12-04 22:47:12 +08:00
liberodark 0c053dfc7c
peertube: 6.0.4 -> 6.3.3 (#358194) 2024-12-03 09:45:16 +01:00
Aleksana ca55ed1674
filesender: FIX: missing format definition. (#316885) 2024-12-03 16:40:22 +08:00
Frédéric Christ dd5ac98f89 nixos/keycloak: Enable Dual-Stack by default. 
Keycloak already has Dual-Stack made the default for a while:
https://github.com/keycloak/keycloak/pull/21340/files#diff-28d941fe33e0f8217892e8096ba7152ba9ade67e3b2c3f0ce31a333d90cc339d
 2024-12-01 20:20:27 +01:00
Ratchanan Srirattanamet 106bef066f nixos/kimai: set PHP package for PHP-FPM pool to Kimai's PHP package 
I've already made it so that Kimai's PHP package has all required
extensions. So use that instead of the default PHP package.

This fixes a warning in Kimai's doctor page.
 2024-12-01 18:09:47 +00:00
Ratchanan Srirattanamet a1b3091db8 nixos/kimai: fix incorrect service name for PHP-FPM service mixin 
'systemd.services' will append '.service' suffix, so the extra
'.service' shouldn't be there. This fixes setting environment file.
 2024-12-01 18:09:46 +00:00
Jenny d3ba34c9e4
plausible: 2.0.0 -> 2.1.4 (#356221) 2024-12-01 18:31:00 +01:00
Aleksana a94c29f625
privatebin: fix description typo (#360424) 2024-12-01 18:36:43 +08:00
Pol Dellaiera c5150dd981
firefly-iii: 6.1.21 -> 6.1.24, firefly-iii-data-importer: 1.5.6 -> 1.5.7 (#355838) 2024-12-01 08:59:37 +01:00
pascal 002ebede7a
firefly-iii: fix typo 2024-11-30 15:01:30 +01:00
pascal e06fd90239
privatebin: fix description typo 2024-11-30 14:30:15 +01:00
Thomas Gerbet 33f830be76
moodle: 4.4.1 -> 4.4.3 (#334639) 2024-11-30 13:08:19 +01:00
Valentin Gagarin 0ad4684753 agorakit: unbreak by setting valid database package 2024-11-26 22:20:19 +01:00
Savyasachee Jha 167c90ca01 nixos/firefly-iii-data-importer: Changes to clear cache more consistently upon updates 2024-11-25 09:46:52 +05:30
Savyasachee Jha 0c7f7224aa nixos/firefly-iii: Changes to clear cache more consistently upon updates 
and other minor updates to align with new RFC formatter.
 2024-11-25 09:46:52 +05:30
Maximilian Bosch 52aad27d73
nixos/castopod: pin to php 8.2 
The package is pretty outdated, so I'm not sure if it'll work with PHP
8.3, let's keep it on 8.2 for now until the maintainers update it.
 2024-11-23 20:44:28 +01:00
Alexander Sieg e8c9fa5bc8 plausible: 2.0.0 -> 2.1.4 2024-11-22 13:52:18 +01:00
Rémi NICOLE a25e476c6a
nixos/netbox: clear old static files on upgrade (#354036) 2024-11-22 10:19:21 +01:00
Kerstin Humm 897954b8ae nixos/open-web-calendar: init module 2024-11-21 16:34:39 +01:00
Thiago Kenji Okada 778f30c08c
porn-vault: init at 0.30.0-rc.11 (#355785) 2024-11-20 21:52:34 +00:00
Luana cc671e2b6b nixos/porn-vault: init module 2024-11-19 21:11:40 -03:00
Weijia Wang 5bdc0862bf
wordpress: 6.6.2 -> 6.7 (#356449) 2024-11-19 22:44:51 +01:00
Cosima Neidahl e6b5e795bf
kimai, nixos/kimai: init at 2.24.0 (#353187) 2024-11-19 01:05:53 +01:00
Florian Agbuya 75a6be1684 flarum: fix 'mysql' has been renamed to/replaced by 'mariadb' 2024-11-18 13:03:05 +08:00
Ratchanan Srirattanamet 29e586e508 nixos/kimai: init module & add test 2024-11-17 16:20:21 +00:00
Julien Malka cee07e8dc8 nixos/agorakit: init module 2024-11-17 16:08:58 +01:00
Viorel-Cătălin Răpițeanu d1da56f629 wordpressPackages: package and theme updates 
1. Make twentytwentyfive theme default
2. Update all packages
 2024-11-17 15:56:28 +02:00
gileri b652b30119
tt-rss: Add updateDaemon.commandFlags parameter 2024-11-16 23:58:58 +01:00
Maximilian Bosch 97a911e8fb
Merge: nixos/postgresql: extension based hardening relaxation (#355010) 2024-11-16 22:29:36 +01:00
Martin Weinelt 223a6c6ed0
nixos/postgresql: rename extraPlugins to extensions 
This is the upstream lingo, and it makes everything slightly less
confusing.
 2024-11-16 14:46:16 +01:00
Maximilian Bosch 0b3eef7441
postgresql_12: remove 
This will be EOL at the end of November, so there's little reason to
keep it in 24.11[1]. As discussed, we'd like to keep it for as long as
possible to make sure there's a state in nixpkgs that has the latest
minor of postgresql_12 available with the most recent CVEs fixed for
people who cannot upgrade[2].

This aspect has been made explicit in the manual now for the next .11
release.

During the discussions it has been brought up that if people just do
`services.postgresql.enable = true;` and let the code decide the
postgresql version based on `system.stateVersion`, there's a chance that
such EOL dates will be missed. To make this harder, a warning will now
be raised when using the stateVersion-condition and the oldest still
available major is selected.

Additionally regrouped the postgresql things in the release notes to
make sure these are all shown consecutively. Otherwise it's a little
hard to keep track of all the changes made to postgresql in 24.11.

[1] https://endoflife.date/postgresql
[2] https://github.com/NixOS/nixpkgs/pull/353158#issuecomment-2453056692
 2024-11-15 09:17:06 +01:00
Austin Horstman 57533f358a
pingvin-share: 1.1.3 -> 1.2.4 (#354105) 2024-11-14 13:40:09 -06:00
Sandro 1556ad266a
nixos/changedetection-io: fix creation of data dir (#318666) 2024-11-12 19:10:53 +01:00
Sandro 8c164faef4
nixos/nextcloud-notify_push: fix defaultText rendering (#352479) 2024-11-10 23:42:18 +01:00
Austin Horstman f5f87e7240
dashy-ui: init at 3.1.1-unstable-2024-07-14 (#349149) 2024-11-10 09:35:31 -06:00
TheRealGramdalf 7f76ced733 nixos/dashy: init module 2024-11-10 00:04:25 +00:00
Robert Schütz 06be8564e5
immich: 1.119.1 -> 1.120.1 (#354083) 2024-11-09 14:53:47 -08:00
Robert Schütz ee1cffa25c immich: 1.119.1 -> 1.120.1 
Changelog: https://github.com/immich-app/immich/releases/tag/v1.120.0
           https://github.com/immich-app/immich/releases/tag/v1.120.1
 2024-11-09 14:44:21 -08:00
Jenny 1b171c15ab
nixos/mobilizon: change psql socket dir to none symlinked directory (#352508) 2024-11-07 14:01:37 +01:00
RatCornu ad6564b0c3
nixos/pingvin-share: update env variable name 2024-11-07 00:23:28 +01:00
Minijackson fe58368de6
nixos/netbox: switch to symlink to check for upgrades 
This makes it so that the upgrade script also runs when the
configuration changed, or when plugins were added.

This is also a hack to force everyone to run the upgrade script again,
since static files might have been copied incorrectly (see parent commit)
 2024-11-06 16:14:56 +01:00
Minijackson ff6d89ac69
nixos/netbox: clear old static files on upgrade 
This fixes an issue where upgrading NetBox didn't correctly clean old
files, and the interface wasn't correct / didn't show object relations.
 2024-11-06 16:13:18 +01:00
Franz Pletz 0fc41ad977
treewide: Remove ineffective capability grants. (#333533) 2024-11-06 08:12:51 +01:00
Sandro ef9ef9ea88
mediagoblin: init at 0.14.0, nixos/mediagoblin: init (#350578) 2024-11-06 00:22:31 +01:00
Pol Dellaiera 7f81fa0cb9
nixos/snipe-it: fix secure flag for cookies (#353009) 2024-11-04 20:10:24 +01:00
Simon Hauser c4edf93988
Cleanup helsinki maintainer (#353611) 
* maintainers: update email conni2461

* maintainers: add helsinki-jo

* tree-wide: cleanup maintainership of helsinki-systems
 2024-11-04 12:59:26 +01:00
Alexandre Iooss 0512de2512 nixos/galene: add turnAddress option and fix httpAddress 2024-11-03 17:14:08 +01:00
Tomo fa08eabc4a atlassian-{bamboo,confluence,crowd,jira}: drop 
Support for the Atlassian Server products ended in
February 2024 and there was insufficient interest in
maintaining the Atlassian Data Center replacements

c.f. https://github.com/NixOS/nixpkgs/pull/353043#issuecomment-2452825826
 2024-11-02 20:36:14 +00:00
Mikael Voss 89fbc2b61b
nixos/akkoma: Include ImageMagick by default 
ImageMagick is used to generate image previews in the media proxy. While
compatible, GraphicsMagick fails to read a lot of images in practice.
 2024-11-02 17:16:49 +01:00
Sandro Jäckel ff9dd57d3d
nixos/mediagoblin: init 2024-11-02 00:20:01 +01:00
Leona Maroni 12dea28165
nixos/snipe-it: fix secure flag for cookies 2024-11-01 23:36:37 +01:00
Mikael Voss a00c1932ab
nixos/akkoma: Provide cache directory via environment 
CACHE_DIRECTORY is used in the default configuration and therefore needs
to be provided in the environment for pleroma_ctl.
 2024-10-31 21:19:02 +01:00
Robert Schütz 95447fbb60
immich: 1.119.0 -> 1.119.1 (#352155) 2024-10-31 12:35:13 -07:00
Bruno BELANYI 745f78a683 nixos/komga: introduce 'settings' option 2024-10-31 11:08:11 +00:00
Sandro 907c79314b
nixos/mobilizon: change psql socket dir to none symlinked directory 2024-10-31 01:42:45 +01:00
Sandro 9dd1f943ec
nixos/nextcloud-notify_push: fix defaultText rendering 2024-10-30 23:48:18 +01:00
Atemu 8336127b57
peertube: startup script: exec into nodejs (#352005) 2024-10-30 13:25:54 +01:00
ppom 1eb6cc1582 nixos/peertube: startup script: exec into nodejs 
1. Removed the #!/bin/sh shebang at the beginning, because
systemd.services.<name>.script already adds a #!/nix/store/.../bin/bash
shebang.

Previously:
	#!/nix/store/516kai7nl5dxr792c0nzq0jp8m4zvxpi-bash-5.2p32/bin/bash
	set -e
	#!/bin/sh
	umask 077
	...

2. Exec into nodejs, so that the startup script is no longer running but
replaces itself by nodejs.
This way, only one processus is running inside peertube.service.
 2024-10-30 12:00:00 +01:00
Robert Schütz 22ffb72803 nixos/immich: generate config file from services.immich.settings 2024-10-29 17:58:50 -07:00
Robert Schütz 376dd27232 nixos/immich: add systemd slice 2024-10-29 16:24:32 -07:00
Jean-Baptiste Giraudeau da7b5ed446
nixos/gancio: add gancio to nginx extraGroups only if nginx enabled 2024-10-29 18:06:57 +01:00
Mikael Voss 88b1884142
nixos/akkoma: Make imports explicit 2024-10-29 00:06:19 +01:00
Robert Schütz 74e0f237ea immich: 1.118.2 -> 1.119.0 
Changelog: https://github.com/immich-app/immich/releases/tag/v1.119.0
 2024-10-28 13:04:14 -07:00
Martin Weinelt 8195804e5d
nixos/sftpgo: add extraReadWriteDirs option and fix docs links (#315619) 2024-10-26 22:34:45 +02:00
Rémi NICOLE 0433962e5b
netbox: 3.7.8 -> 4.1.3 (#331750) 2024-10-25 09:09:06 +00:00
Leona Maroni a378c72099
youtrack_2022_3: drop (#349356) 2024-10-24 22:46:57 +02:00
Matthieu Coudron 5c8ff2e60c
nixos/immich: use 'immich' as syslog identifier (#350551) 
use 'immich' as syslog identifier

seeing 'immich' instead of the generic 'server' in journalctl is more understandable
 2024-10-24 00:15:19 +02:00
Minijackson 4409a8d78f
nixos/netbox: increase timeout for NetBox pre-start script 
since the script does database migrations and index,
it could timeout on slower system with a big enough database
 2024-10-23 21:07:35 +02:00
Minijackson 69610ea296
netbox: switch to netbox_4_1, mark netbox_3_7 as EOL 
also switch the netbox-upgrade test to check upgrade from 3.7 -> 4.1
 2024-10-23 21:07:32 +02:00
Yt e7d7f71c0b
nextcloudPackages.whiteboard: init at 1.0.4; nextcloudPackages: update (#342773) 2024-10-22 19:04:21 -04:00
Franz Pletz eae71219ea
nixos/wakapi; fix logical errors; add NixOS test (#350435) 2024-10-22 19:02:05 +02:00
NotAShelf a466f14627
nixos/wakapi: fix incorrect assertion conditions 
Using implication here (->) causes the assertions to fail haphazardly due to the ordering *implied* by the operator. By using AND, we avoid this case. Unsurprisingly, this was caught by the NixOS test.
 2024-10-22 12:27:24 +03:00
NotAShelf fbec0c0d7f
nixos/wakapi: fix failing assertions 2024-10-22 12:05:02 +03:00
NotAShelf c3ce64b13a
nixos/wakapi: fix typo in warning conditional 
This makes the warning work as intended again.
 2024-10-22 11:59:09 +03:00
Martin Weinelt 7d2fd18921
nixos/pretalx: feature the files.upload_limit setting 
The default of 10 MiB might be too constraining for slide decks and
collateral in 2024.
 2024-10-22 02:49:29 +02:00
Martin Weinelt bd281d0259
pretalx: 2024.2.1 -> 2024.3.0 
https://docs.pretalx.org/changelog/#v2024-3-0
 2024-10-22 02:43:51 +02:00
Jonas Heinrich 345a761d13 nixos/nextcloud-whiteboard-server: init 2024-10-21 15:49:23 +00:00
Leona Maroni dc14253a18
nixos/youtrack: drop support for YouTrack 2022.3 2024-10-21 17:36:23 +02:00
Maximilian Bosch c5b89642bf
Merge: nixos/nextcloud: fix shellcheck findings with enableStrictShellChecks enabled (#349558) 2024-10-18 23:57:53 +02:00
Sandro d72c0ce546
nixos/nextcloud-notify_push: fix connecting to mysql via socket (#348114) 2024-10-18 20:25:32 +02:00
Christina Sørensen d218858bb1
nixos/wakapi: add database options; gate db creation behind database.createLocally (#341176) 2024-10-18 18:04:46 +02:00
Brendan Taylor 04e39de6eb nixos/immich: do not set services.redis.servers.immich.user 
the redis module expects a user and group to exist with this name.
previously if there was no group with the same name as
`services.immich.user` the immich redis server would fail to start.

instead we can use the redis module's default behaviour: it will
create a user & group named "redis-immich".
 2024-10-17 07:19:02 -06:00
Leona Maroni edd292c18b
nixos/dokuwiki,nixos/wordpress,nixos/invoiceplane: Remove deprecated isCoercibleToString (#292801) 2024-10-17 09:32:14 +02:00
Robert Schütz e3152f80bf nixos/immich: change default port to 2283 
This was always upstream's default but they also change the internal
port, i.e. behind the reverse proxy, to 2283 in
https://github.com/immich-app/immich/pull/13185.
 2024-10-16 10:30:34 -07:00
Felix Bühler e544a67eba
nixos/freshrss: fix phpfpm.pool (#347324) 2024-10-15 22:39:24 +02:00
Sandro Jäckel 1ada7c1d36
nixos/nextcloud: fix shellcheck findings with enableStrictShellChecks enabled 2024-10-14 18:20:25 +02:00
Richard Steinmetz b9ca8498aa nixos/nextcloud-notify_push: fix connecting to mysql via socket 2024-10-14 13:30:05 +02:00
Felix Buehler de810c5163 nixos/freshrss: update de parameters 2024-10-13 23:07:46 +02:00
Kerstin 35c52ab030
mastodon: 4.2.13 -> 4.3.0 (#337545) 2024-10-12 19:37:08 +02:00
Pol Dellaiera afd96bad04
Bump and fix nextjs-ollama-llm-ui (#347856) 2024-10-12 10:42:53 +02:00
Bruno Bigras 986d7cad0d
wakapi: set StateDirectory (#347431) 2024-10-11 14:48:16 -04:00
Kranium Gikos Mendoza f385d942e1 nextjs-ollama-llm-ui: fix nextjs cache dir (#344316) 2024-10-11 17:35:37 +11:00
Izorkin 36a83a3bf1
mastodon: 4.2.13 -> 4.3.0 
Changelog:
https://github.com/mastodon/mastodon/releases/tag/v4.3.0
 2024-10-10 16:58:54 +02:00
Felix Singer 3d30811d4e nixos/gerrit: Apply initial hardening using the systemd unit 
These options are a good start for sandboxing the service. It's planned
to set `ProtectSystem` to `strict` instead of `full`, but that requires
specific directories to be configured as writable. It's also planned to
filter system calls. However, that requires more testing but it
shouldn't prevent us from applying these options for now and add others
later.

Signed-off-by: Felix Singer <felixsinger@posteo.net>
 2024-10-10 07:12:28 +02:00
Robert Schütz db4fd8f4e3
nodePackages.npm: drop (#346536) 2024-10-09 12:01:42 -07:00
Matthew Croughan 4eb19953b6
node-red: move from nodePackages (#347018) 2024-10-09 16:11:38 +01:00
Bruno Bigras 90f457d197 wakapi: set StateDirectory 
fix #347393
 2024-10-09 02:54:57 -04:00
Felix Buehler 6290926fed nixos/freshrss: fix phpfpm.pool 2024-10-08 20:23:52 +02:00
Robert Schütz b129e21ffd node-red: move from nodePackages 2024-10-08 08:29:56 -07:00
e1mo 4f899ed44d
nixos/dokuwiki,nixos/wordpress,nixos/invoiceplane: Remove deprecated isCoercibleToString 
Close #292788
 2024-10-08 11:53:03 +02:00
Sandro 0538ecd092
rss-bridge: Remove pkg patch, adapt nixos service (#331295) 2024-10-07 18:57:22 +02:00
Robert Schütz 506df4e38e nodePackages.npm: drop 2024-10-05 11:23:49 -07:00
Nick Cao 6069dde181
nixos/keycloak: make initialAdminPassword optional 2024-10-05 08:37:41 -04:00
Nick Cao 0cdc3e2a0b
nixos/keycloak: drop removed proxy option 
Reference: https://www.keycloak.org/docs/latest/upgrading/index.html#proxy-option-removed
 2024-10-04 20:20:46 -04:00
Nick Cao 16cd47369f
nixos/keycloak: KEYCLOAK_ADMIN{,PASSWORD} -> KC_BOOTSTRAP_ADMIN_{USERNAME,PASSWORD} 
Reference: https://www.keycloak.org/docs/latest/upgrading/index.html#admin-bootstrapping-and-recovery
 2024-10-04 20:08:06 -04:00
Nick Cao d2ec2d3c29
nixos/keycloak: link $out/lib to KC_HOME_DIR to fix loading optimized app image 
Reference: https://www.keycloak.org/docs/latest/upgrading/index.html#additional-validations-on-the-optimized-startup-option
 2024-10-04 20:06:08 -04:00
Mynacol aa0fc3e8b8 rss-bridge: Remove pkg patch, adapt nixos service 
The rss-bridge service changes introduced in f2201789fe
resp. https://github.com/NixOS/nixpkgs/pull/223148 removes the need for
the package patch. This commit removes the patch to ease updating and
maintenance.
Relevant service functionality was also removed (e.g. the setting of
RSSBRIDGE_DATA).

The explicit definition of FileCache.path so users can easily see its
default value and change it, requires to use a freeformType to let users
freely add potentially upcoming config options. This type is restricted
to ini types (although we coerce them to environment variables).
This however makes the list of enabled_bridges impossible. That was
fixed by explicitly introducing this option with a type allowing lists.
The default value however should be unset, which is expressed as `null`,
which further spurred a change in the environment variable generation to
ignore null values (instead of coercing them to an empty string).

A breaking change note was added to highlight this change. A check that
warns users of the not-application of their existing config file is
not easily possible, as people could have only added or changed the
config.ini.php file on the file system without changing a nix variable.
 2024-10-04 14:58:15 +02:00
Pol Dellaiera 2199b69a7a
nixos/privatebin: init module & privatebin: init at 1.7.4 (#344014) 2024-10-04 09:51:40 +02:00
Sandro e00cc9f2fa
openwebrx: remove alias alsaUtils -> alsa-utils (#346259) 2024-10-04 02:21:40 +02:00
Astro 48b4aa8eae openwebrx: s/alsaUtils/alsa-utils/ 
allows running with allowAliases = false
 2024-10-03 23:53:56 +02:00
h7x4 5190ddc27d
treewide: \xc2\xa0 -> (#345898) 2024-10-03 18:23:59 +02:00
lassulus def08aa2e3
jitsi-meet: Default NAT harvester, Excalidraw Caddy, Prosody lockdown (#280615) 2024-10-02 21:08:06 +01:00
Peder Bergebakken Sundt 3100acba08 treewide: \xc2\xa0 -> 
I have no idea what this escape sequence even is, but it breaks the nix parser with cryptic errors if not used in a comment.
A friend let me know MacOS is prone to input weird spaces, not sure if that is the source.

Candidates were located and created with:

    chr="$(echo -e '\xc2\xa0')"; rg -F "$chr" -l | xe sd -F "$chr" " "

There are some examples left, most being example output from `tree` in various markdown documents, some patches which we can't really touch, and `pkgs/tools/nix/nixos-render-docs/src/tests/test_commonmark.py` which I'm not sure if should be addressed
 2024-10-02 15:33:06 +02:00
Maximilian Bosch 55a45406a6
nixos/nextcloud: update relatedPackages 2024-10-01 13:36:16 +02:00
Maximilian Bosch 20ed9ccd88
nextcloud: correct stateversion logic 2024-10-01 12:48:47 +02:00
Jonas Heinrich 1b121c1ea2
nextcloud30: init at 30.0.0 2024-10-01 12:48:45 +02:00
Nick Cao 5aa3097833
nixos/hatsu: init module (#345102) 2024-09-30 18:35:12 -04:00
藍+85CD 2f15b523d9
nixos/hatsu: init module 2024-10-01 00:33:38 +08:00
Erin Yuki Schlarb 56581588c3 jitsi-meet: Add option to disable Prosody services not used by Jitsi Meet 
The default Prosody config assumes that Prosody will be used as a federated
XMPP server, while the usecase for Jitsi Meet is much narrower.
 2024-09-30 18:19:34 +02:00
Erin Yuki Schlarb 7ab8f255b9 jitsi-meet: Restrict jitsi-excalidraw systemd service to the minimum requried 2024-09-30 18:19:33 +02:00
Erin Yuki Schlarb 9e8b3f97cc jitsi-meet: Also forward Excalidraw connections when using Caddy as web server 2024-09-30 18:19:33 +02:00
h7x4 11f77694ac
nixos/bluemap: move to web-apps (#345353) 2024-09-30 17:53:27 +02:00
Erin Yuki Schlarb 67e261beb5 jitsi-meet: Set internal MUC options set in official Docker image 2024-09-30 17:31:04 +02:00
Viorel-Cătălin Răpițeanu db71929224 wordpressPackages: update packages, add ru_RU lang, make twentytwentyfour default 2024-09-29 23:09:33 +03:00
h7x4 c25213a9bd
nixos/bluemap: move to web-apps 2024-09-29 21:40:39 +02:00
Savyasachee Jha 22e2e02118 nixos/privatebin: init 2024-09-29 23:02:19 +05:30
Leona Maroni a23db91282
nixos/immich: add option database.port (#345094) 2024-09-28 18:01:08 +02:00
7c6f434c c87aad4296
Add Collabora Online (#330708) 2024-09-27 08:33:57 +00:00
Robert Schütz c5d95d4999
immich: some improvements (#344237) 2024-09-26 07:14:52 -07:00
Brendan Taylor 8debc8df79 nixos/immich: add option database.port 2024-09-26 08:06:59 -06:00
DCsunset 68d108bb04 nixos/stirling-pdf: add missing dependency ghostscript 2024-09-25 01:01:33 +00:00
Martin Weinelt aaa7fb5840
nixos/{pretix,pretalx}: set up log rotation (#343982) 2024-09-24 22:48:17 +02:00
Robert Schütz 7cdda564e0 nixos/immich: override machine-learning with cfg.package 
Otherwise they could use different versions:

    nix-repl> (immich.overrideAttrs { version = "0"; }).machine-learning.version
    "1.115.0"
 2024-09-24 09:53:24 -07:00
Yt d026e3fa1a
immich: init at 1.115.0; nixos/immich: init module (#324127) 2024-09-24 05:56:12 -04:00
Jan van Brügge cedcd9f4f0
nixos/immich: init module 2024-09-23 22:38:02 +02:00
Martin Weinelt 1d8c946fdb
nixos/pretalx: enable log rotation 
This limits the amount of logs we store by default to 3 months.
 2024-09-23 16:58:52 +02:00
Martin Weinelt 9a85a7e2ce
nixos/pretix: enable log rotation 
This limits the amount of logs we store by default to 3 months.
 2024-09-23 16:57:31 +02:00
Marcel 0556c426ff
nixos/pretix: fix database.host option type (#343917) 
Support database configuration using TCP and not only Unix sockets.
 2024-09-23 10:52:08 +02:00
Leona Maroni 761ae3237c
dependency-track: init at 4.11.6 (#328669) 2024-09-22 18:49:11 +02:00
Alexander Sieg 5b67f3b831
nixos/dependency-track: init module 2024-09-22 16:38:45 +02:00
Aleksana 5c16154521
nixos/davis: fix nginx conf's well-known redirect (#342995) 2024-09-22 21:28:31 +08:00
Weijia Wang d582ac052d nixos/wordpress: fix tests 2024-09-19 22:25:37 +02:00
Andrew Kvalheim 818d2a60a8 hedgedoc: correct typo in deprecation notice 
Continues #244941
 2024-09-19 11:05:05 -07:00
Casey Link 5b64b4072a
nixos/davis: fix nginx conf's well-known redirect 
We mistakenly used a non-existing nginx variable for the X-Forwarded-Proto causing
the well-known redirect to return erroneous Location headers like:

    Location: ://dav.example/dav

instead of the correct:

    Location: https://dav.example/dav
 2024-09-19 12:03:51 +02:00
Maximilian Bosch 3302dc7c34
nixos/doc: mention "No such file or directory" error on Nextcloud 
That was... interesting to debug. It took a me a bit of reading C code
until I realized that the realpath cache is internally used for
`file_get_contents`, but not for `file_exists` 🙃

I'm not comfortable on doing the workaround in the module, but I think
it's good to have this documented in the manual.
 2024-09-16 18:57:10 +02:00
Aleksana f1580efb3b
maintainers/team-list: add cyberus team (#331059) 2024-09-16 18:14:16 +08:00
NotAShelf b4878419ee
nixos/wakapi: add database options; gate db creation behind database.createLocally 
Currently the NixOS module for Wakapi will create the database
automagically if the user has database dialect configured in the Wakapi
configuration file. By all means, this is undocumented behaviour and an
anti-feature.

This MR adds a database.createLocally option that allows the end-user to
create auto-creation behaviour, and lays out groundwork for automated
database setups for different database dialects supported by Wakapi.
 2024-09-16 12:50:01 +03:00
kirillrdy 51b7b3bddf
flarum: fix installation and migration logic (#341340) 2024-09-16 16:58:19 +10:00
Albert Safin afb0b0ee58 nixos/collabora-online: init 2024-09-14 21:24:30 +00:00
tmarkov b44fdbfc11 nixos/windmill: add database.url option and defaults 2024-09-14 00:36:55 +03:00
Gaétan Lepage d4474ed33b
nixos/invidious: add options for configuring inv-sig-helper (#340748) 2024-09-12 14:57:57 +02:00
Florian Agbuya 317a52a757 flarum: fix installation and migration logic 2024-09-12 16:14:41 +08:00
⛧-440729 [sophie] 81b0701a4d
nixos/invidious: add options for configuring inv-sig-helper 2024-09-12 09:08:02 +02:00
Emily 1a55636200
nixos/dokuwiki: don’t use lib.escapeShellArg (#340309) 2024-09-11 00:34:05 +01:00
Jean-Baptiste Giraudeau 3a33b6c3a8
nixos/gancio: set default value for settings.baseurl 2024-09-10 13:13:32 +02:00
Jean-Baptiste Giraudeau 432bfec026
nixos/gancio: use unix socket between nginx and gancio 2024-09-10 13:13:28 +02:00
Jean-Baptiste Giraudeau 58ec286785
nixos/gancio: actually enable ssl by default. 2024-09-09 15:48:52 +02:00
Kerstin e248589c0f
gancio: init at 1.19.0 (#279011) 2024-09-08 22:51:23 +02:00
Jean-Baptiste Giraudeau f5e44554c4
nixos/gancio: init module 2024-09-08 18:09:57 +02:00
ash 2bab9e4eba nixos/dokuwiki: factor out toPhpString 2024-09-07 15:30:54 +01:00
ash 345c8a7310 nixos/dokuwiki: don’t use lib.escapeShellArg 
PHP strings don't obey shell quoting rules. See #333744.
 2024-09-07 14:39:07 +01:00
kirillrdy 5f4c0543d2
Flarum: fix installation and client interface issues (#339202) 2024-09-07 06:32:54 +10:00
Bjørn Forsman 4861c28956 homebox: update URLs in documentation 
https://github.com/hay-kot/homebox was archived on 2024-06-12 and we use
the https://github.com/sysadminsmedia/homebox fork since the beginning,
in commit 4be8e799db
("homebox: init at 0.13.0").

Update the documentation to be in sync with the source we build from.
 2024-09-06 19:34:15 +02:00
Kerstin Humm 21ac7729ae nixos/weblate: add borgbackup to path 2024-09-04 12:54:31 +02:00
Florian Agbuya 1032b5fa95 flarum: disable automatic DB creation 2024-09-04 16:33:30 +08:00
Florian Agbuya 249dacfaa8 flarum: fix flarum directory permissions 2024-09-04 16:33:18 +08:00
Bernardo Meurer fc13b0acdb
Merge branch 'master' into add-rutorrent-service 2024-09-03 01:18:16 +00:00
Finn Behrens 55e7c6155a nixos/moodle: update to php83 2024-09-02 20:04:33 +02:00
Sandro 58ac9a4a4e
nixos/mediawiki: add resetUserEmail script (#332325) 2024-08-29 16:04:54 +02:00
Sandro b5e4bf3745
kasmweb: 1.12.0 -> 1.15.0 (#246777) 2024-08-29 13:03:51 +02:00
Christina Sørensen a96a49338e
nixos/wakapi: init module (#335436) 2024-08-28 18:58:13 +02:00
Fernando Ayats b21bec17eb
nixos/freshrss: improve description for virtualHost 2024-08-28 10:25:10 +02:00
Sandro 7f9873b3b9
nixos/stirling-pdf: make calibre dependency optional based on config (#337060) 2024-08-28 09:53:33 +02:00
Savyasachee Jha 3ce5da914b nixos/firefly-iii-data-importer: init 2024-08-28 08:29:32 +02:00
DCsunset b94de95f9d nixos/stirling-pdf: make calibre dependency optional based on config 2024-08-26 01:47:17 +00:00
Franz Pletz a266f38ade
Merge pull request #336584 from mweinelt/engelsystem-cache-migration 2024-08-25 01:50:39 +02:00
Peder Bergebakken Sundt d38f701636
Merge pull request #334559 from litchipi/ifm_fixup 
ifm-web: init at 4.0.2
 2024-08-24 01:07:30 +02:00
Martin Weinelt 760b2b5562
nixos/engelsystem: refactor option setup 2024-08-22 19:50:17 +02:00
Martin Weinelt fe0d323af5
nixos/engelsystem: prune template cache on version changes 
After upgrading to 3.5.0 we noticed, that registering would redirect to
the login page and not work at all. At the same time the admin user was
unable to access its user settings.

This issue could be tracked back to the template cache, that must be
invalidated between release upgrades.
 2024-08-22 19:16:28 +02:00
Emily 01a749e0bf
Merge pull request #336077 from emilazy/push-yoykzrxwpykp 
pict-rs_0_3: drop
 2024-08-22 14:58:04 +01:00
Sandro 18fb834638
Merge pull request #322730 from bbenno/update-wp-httpd-htaccess 2024-08-22 14:33:17 +02:00
Sandro a45dc99ba3
Merge pull request #287565 from RatCornu/pingvin-share 2024-08-22 11:59:03 +02:00
Emily afdee7e458 pict-rs_0_3: drop 
This was broken by the Rust 1.80 upgrade, and is an old version that
we’d have to patch to keep working.

We have already done the 0.4 → 0.5 update without keeping around
the old version or adding in any additional `stateVersion` logic
in <https://github.com/NixOS/nixpkgs/pull/280221>. As a result,
migration for 0.3 users is going to be a little awkward. I’ve done
my best to provide comprehensive instructions for anyone who hasn’t
already bumped to 0.4.

It is probably a footgun to add `stateVersion` logic for any
package that makes backwards‐incompatible schema changes and only
supports migration from the immediately previous version. Users
won’t get migrated by default and we have to either package and
maintain an endlessly growing list of old versions or add complicated
instructions like this. It’s not really practical for us to support
a significantly better migration story than upstream does.
 2024-08-22 01:54:09 +01:00
Emily 1a35d0ccb5 nixos/pict-rs: fix environment variable name 
Thanks to @marius851000 for reporting this issue. I assume it probably
changed in 0.5 or something.
 2024-08-21 23:09:55 +01:00
s1341 5c1ed3ad5a kasmweb: 1.12.0 -> 1.15.0 2024-08-21 15:06:02 +03:00
Litchi Pi ef03964b92 ifm-web: init at 4.0.2 
Signed-off-by: Litchi Pi <litchi.pi@proton.me>
 2024-08-20 10:42:02 +02:00
Kerstin f0ceb9f402
Merge pull request #335768 from erictapen/mastodon 
nixos/mastodon: remove pin for postgresql version
 2024-08-19 23:11:53 +02:00
isabel f3c2be2a80
nixos/wakapi: init module 2024-08-19 17:16:01 +01:00
Kerstin Humm f5bb4b807c weblate: 5.6.2 -> 5.7 
Changelog: https://github.com/WeblateOrg/weblate/releases/tag/weblate-5.7

Also had to rework django-compressor settings and aligned them more
closely with the official docs:
https://cheat.readthedocs.io/en/latest/django/compressor.html
 2024-08-19 16:10:40 +02:00
Kerstin Humm 1592790b03
nixos/mastodon: use correct postgresql package 2024-08-19 11:06:57 +02:00
Sandro 69701a3807
Merge pull request #320060 from PatrickDaG/homebox 
homebox: init at 0.13.0; nixos/homebox: init
 2024-08-18 16:32:43 +02:00
Nick Cao 12f650234b
Merge pull request #334257 from Dan-Theriault/miniflux-no-admin-required 
nixos/miniflux: make admin provisioning optional
 2024-08-13 21:54:34 -04:00
Dan Theriault f6788b6165 nixos/miniflux: make admin provisioning optional 
Miniflux supports provisioning users via SSO, which renders admin
accounts unnecessary for some use-cases. This change retains the
existing default, but makes it easier to disable admin provisioning.
 2024-08-13 18:56:16 -04:00
Kerstin Humm 13c96978c3 nixos/weblate: init module and test 
Co-authored-by: Taeer Bar-Yam <Radvendii@users.noreply.github.com>
 2024-08-13 08:44:54 +02:00
Litchi Pi 0ec7dd5011 fix: replace relative paths in sources with nix store paths 
Signed-off-by: Litchi Pi <litchi.pi@proton.me>
 2024-08-10 16:23:27 +02:00
Eduard Bachmakov cb10fe8aaf treewide: Remove ineffective capability grants. 
Systemd units with `PrivateUsers` set get their capabilities within the user namespace only [1].
As a result they do cannot bind to privileged ports even though they *appear* like they should be able to.

The units in this commit [2] set `PrivateUsers` unconditionally so binding to privileged ports is currently impossible.
Granting them CAP_NET_BIND_SERVICE is useless and misleading any reader of those modules.
Technically, this commit also hardens these modules ever so slightly.

(There are corner cases where this could make sense (e.g. across units, using `JoinsNamspaceOf`) but this is arcane enough to not to be present in nixpkgs.)

[1]: systemd.exec(5): PrivateUsers
[2]: found using `rg -e 'PrivateUsers.?=\s+[^f][^a]' -l | xargs rg -e '\bCAP_' -l`
 2024-08-09 23:10:30 +02:00
Patrick f8639ea08d
nixos/homebox: init 2024-08-08 20:01:46 +02:00
Fea 0c9cb0041b nixos/misskey: init 2024-08-06 12:24:15 +02:00
Anna Aurora dfd120537d
nixos/meme-bingo-web: fixed documentation, service description and did further hardening 2024-08-06 03:14:22 +02:00
Martin Weinelt 3dfb2c685a
nixos/pretix: restart web and worker unit on failure 
Found a few instances, where celery intermittently complained about a
misconfigured redis instance and exited.

> redis.exceptions.ResponseError: MISCONF Redis is configured to save RDB
> snapshots, but it's currently unable to persist to disk. Commands that
> may modify the data set are disabled, because this instance is
> configured to report errors during writes if RDB snapshotting fails
> (stop-writes-on-bgsave-error option). Please check the Redis logs for
> details about the RDB error.
 2024-08-05 17:37:12 +02:00
Sandro Jäckel 4ae7723c9b
nixos/mediawiki: add resetUserEmail script 2024-08-04 22:03:59 +02:00
Martin Weinelt 3a719e06c7
nixos/mediawiki: move to php 8.2 
There is breakage on PHP 8.1 since the last staging cycle.
 2024-08-04 18:51:41 +02:00
Johannes Jöns 79723dbb2a
Merge pull request #331358 from pinpox/init-screego-module 
nixos/screego: init module
 2024-08-04 18:34:51 +02:00
RatCornu 924437f5de
nixos/pingvin-share: init at 0.29.0 2024-08-04 01:18:03 +02:00
Weijia Wang ec581817ca nixos/wordpress: unpin php81 in check phase 2024-08-03 20:24:27 +02:00
Sandro 377e40297c
Merge pull request #330046 from DCsunset/stirling-pdf-module-init 
nixos/stirling-pdf: init module
 2024-08-03 18:22:02 +02:00
Guanran Wang ea6f4d5e86
treewide: remove periods from lib.mkEnableOption 
Co-authored-by: éclairevoyant <848000+eclairevoyant@users.noreply.github.com>
 2024-08-02 23:55:32 +08:00
Felix Bühler 04101568c0
Merge pull request #325644 from Stunkymonkey/sogo-chmod-install 
nixos/sogo: prefer 'install' over 'chmod'/'chown'
 2024-08-01 23:25:37 +02:00
Martin Weinelt 7b07f5371f
Merge pull request #331406 from mweinelt/pretix-2024.7.0 
pretix: 2024.6.0 -> 2024.7.0
 2024-08-01 13:04:29 +02:00
lassulus 35ac2fed3e
Merge pull request #330946 from toastal/movim-0.26 
movim: 0.25.1 → 0.26
 2024-08-01 11:39:13 +02:00
Pablo Ovelleiro Corral c882d9b673
nixos/screego: init module 
Add module for screego
 2024-08-01 10:51:38 +02:00
Martin Weinelt 4ba537131f
nixos/pretix: increases startup timeout 
Migrations on a busy machine can exceed 5 minutes, which I can reproduce
on a busy builder.
 2024-08-01 04:37:20 +02:00
toastal 936a378123 movim service: updates for 0.26 2024-07-31 14:12:14 +07:00
DCsunset 0c2918fc91 nixos/gotify-server: add environment and environmentFiles options 2024-07-30 17:38:00 -04:00
DCsunset e1ced8b12c nixos/gotify-server: add package option 2024-07-30 17:32:01 -04:00
DCsunset b5a051f694 nixos/gotify-server: add maintainer 2024-07-30 17:29:55 -04:00
DCsunset 2079eeb882 nixos/gotify-server: clean up and reformat module 2024-07-30 17:28:54 -04:00
Alexander Sieg 20b3a5458d
nixos/outline: add cyberus team as maintainer 2024-07-30 12:37:45 +02:00
DCsunset 05113f61f0 nixos/stirling-pdf: init module 2024-07-26 18:12:50 -04:00
K900 26801aa449 Merge remote-tracking branch 'origin/master' into staging-next 2024-07-26 14:31:21 +03:00
Pol Dellaiera ceda66b310
Merge pull request #251687 from martinetd/cryptpad 
nixos/cryptpad: init, cryptpad: init at 2024.6.0
 2024-07-26 09:21:51 +02:00
K900 1410c766c8 Merge remote-tracking branch 'origin/master' into staging-next 2024-07-26 08:41:08 +03:00
Jörg Thalheim 0fbc43eaea
Merge pull request #323641 from XenGi/fix-freshrss 
nixos/freshrss: add ability to use socket path
 2024-07-26 00:20:49 +02:00
github-actions[bot] 7208220b63
Merge master into staging-next 2024-07-24 18:01:18 +00:00
Dominique Martinet 7c448e8d44 nixos/cryptpad: harden service 
cryptpad is not directly exposed to the network, but has plenty that can
be hardened more properly, so fix that.
 2024-07-24 16:17:32 +09:00
Dominique Martinet b846e8762f nixos/cryptpad: init 
This is a full rewrite independent of the previously removed cryptpad
module, managing cryptpad's config in RFC0042 along with a shiny test.

Upstream cryptpad provides two nginx configs, with many optimizations
and complex settings; this uses the easier variant for now but
improvements (e.g. serving blocks and js files directly through nginx)
should be possible with a bit of work and care about http headers.

the /checkup page of cryptpad passes all tests except HSTS, we don't
seem to have any nginx config with HSTS enabled in nixpkgs so leave this
as is for now.

Co-authored-by: Pol Dellaiera <pol.dellaiera@protonmail.com>
Co-authored-by: Michael Smith <shmitty@protonmail.com>
 2024-07-24 16:17:26 +09:00
Payas Relekar aebb3d3474 nixos/goatcounter: init 2024-07-24 10:17:44 +05:30
github-actions[bot] d284ef371e
Merge master into staging-next 2024-07-23 12:01:18 +00:00
Litchi Pi 0fb7268b9b Init IFM service at version 4.0.2 
Signed-off-by: Litchi Pi <litchi.pi@proton.me>
 2024-07-23 08:44:50 +02:00
bolives-hax 9319cf87b8
Merge branch 'NixOS:master' into add-rutorrent-service 2024-07-22 01:37:39 +02:00
bl0v3 7c1315628b fix exposeInsecureRPC2mount rtorrent group 2024-07-22 01:11:07 +02:00
Martin Weinelt 983077457f
Merge remote-tracking branch 'origin/staging-next' into staging 
Conflicts:
-	pkgs/development/python-modules/uvcclient/default.nix
-	pkgs/development/tools/rust/rust-analyzer/default.nix
 2024-07-18 12:35:33 +02:00
Aaron Andersen 2e930eafb9
Merge pull request #318285 from gador/nixos-zabbixWeb-nginx 
nixos/zabbixWeb: Add nginx as webserver, add zabbix 6.4
 2024-07-17 21:22:13 -04:00
Florian Brandes 7d3b77d66f
nixos/zabbixWeb: format 
Signed-off-by: Florian Brandes <florian.brandes@posteo.de>
 2024-07-17 22:33:47 +02:00
Florian Brandes 9ca5b84e27
nixos/zabbixWeb: add nginx config 
Co-authored-by: Aaron Andersen <aaron@fosslib.net>
Signed-off-by: Florian Brandes <florian.brandes@posteo.de>
 2024-07-17 22:31:50 +02:00
Emily aef28c7834 nixos/akkoma: unpin ffmpeg_5 
Their Dockerfile uses Alpine’s ffmpeg package, which is already
on 6. They just invoke the command‐line tool and nothing they do
looks particularly version‐sensitive.
 2024-07-14 08:34:23 +01:00
Masum Reza 025f6d60e3
Merge pull request #326047 from britter/britter/onlyoffice-typos 
onlyoffice: typo fixes, remove top level `with lib;`
 2024-07-10 15:01:05 +05:30
Benedikt Ritter 57ea5be929
onlyoffice: Remove top-level with lib; 
Prepend affected components with `lib.` instead.
 2024-07-10 10:42:29 +02:00
lassulus 11dbf85aad
Merge pull request #325637 from Stunkymonkey/jtisi-meet-chmod-chown 
nixos/jitsi-meet: prefer 'serviceConfig' over 'chmod'/'chown'
 2024-07-10 09:57:18 +02:00
Benedikt Ritter d61489db1a
onlyoffice: Fix typos 2024-07-10 09:14:21 +02:00
Pol Dellaiera db41081a91
Merge pull request #323743 from NixOS/nixos/module/glance-init 
nixos/glance: init module
 2024-07-09 06:42:22 +02:00
Felix Buehler 87051a8f44 nixos/sogo: prefer 'install' over 'chmod'/'chown' 2024-07-08 22:41:47 +02:00
Felix Buehler 16eb9ced4e nixos/jitsi-meet: prefer 'serviceConfig' over 'chmod'/'chown' 2024-07-08 22:10:25 +02:00
Pol Dellaiera 00e9e54702
nixos/glance: init module 2024-07-08 13:14:09 +02:00
Sandro b2a1b6f508
Merge pull request #324924 from SuperSandro2000/mediawiki-syntaxcheck 
nixos/mediawiki: check if LocalConfig.php is valid syntax
 2024-07-07 15:17:08 +02:00
Sandro Jäckel 313d2ccf83
nixos/mediawiki: check if LocalConfig.php is valid syntax 2024-07-06 02:06:50 +02:00
Maximilian Bosch a9855af287
Merge pull request #321771 from Mynacol/nextcloud-preserveenv 
nixos/nextcloud: Remove --preserve-env in sudo
 2024-07-05 21:24:50 +00:00
Jonas Heinrich e97d5eb3eb
Merge pull request #293210 from onny/eintopf 
nixos/eintopf: init; eintopf: init at 0.13.16
 2024-07-05 13:12:59 +02:00
Jonas Heinrich 28512d1ba4 nixos/eintopf: init 2024-07-05 13:12:35 +02:00
Weijia Wang 9c1cfad9a0
Merge pull request #307910 from r-ryantm/auto-update/pixelfed 
pixelfed: 0.11.13 -> 0.12.1
 2024-07-03 00:55:55 +02:00
Mynacol af072cfb55 nixos/nextcloud: Remove --preserve-env in sudo 
This helps supporting sudo-rs, which currently does not implement the
--preserve-env flag and probably won't so in the foreseeable future [1].

The replacement just sets both environment variables behind the sudo
invocation with env, as sudo-rs also doesn't implement env var lists.

The OC_PASS variable is dropped, as it is seemingly unused and would
leak through this approach through /proc.

[1] https://github.com/memorysafety/sudo-rs/issues/129
 2024-07-02 11:29:35 +02:00
Felix Buehler bb33682f3a nixos/freshrss: add extensions 2024-07-01 23:38:56 +02:00
Maximilian Bosch c2586ca239 nixos/nextcloud: warn about unsafe path transitions 
Closes #294588
It _may_ also be an answer to #169733.

See explanation from upstream[1] for further details.

[1] https://github.com/systemd/systemd/issues/19618#issuecomment-843273818
 2024-07-01 21:20:12 +02:00
Ricardo Band 96c60c6b09 nixos/freshrss: add ability to use socket path 
This change enables server:port combinations like "localhost:5432" but
also socket paths like "/run/postgresql". Without this change a port was
mendatory and attached to the path (/run/postgresql:5432) resulting in
an incorrect socket path. The underlying script already configures paths
correctly, so this small change should be enough.
 2024-06-30 20:31:37 +02:00
Jörg Thalheim d6cf181343 nixos/shiori: fix databaseUrl example 2024-06-30 13:41:38 +02:00
Jörg Thalheim 84a8354c58 nixos/shiori: fix BindPaths conditions if databaseUrl is not set 2024-06-30 13:06:11 +02:00
Jörg Thalheim 992f8bf968 nixos/shiori: fix nixos types for paths 2024-06-30 13:06:11 +02:00
Danilo Reyes 4f021e14a3 shiori: 1.5.5 -> 1.7.0 2024-06-29 15:30:22 -06:00
Kim Lindberger b75986fd26
Merge pull request #310642 from arcnmx/keycloak-hostname-strict 
nixos/keycloak: relax hostname settings assertion
 2024-06-29 17:09:02 +02:00
Thomas Gerbet 85be596266
Merge pull request #322585 from wegank/limesurvey-security 
nixos/limesurvey: drop default encryption key and nonce
 2024-06-28 23:43:24 +02:00
Masum Reza 383744754e
Merge pull request #314798 from yomaq/healthchecks-settingsFile 
nixos/healthchecks: add settingsFile option
 2024-06-29 00:02:35 +05:30
Masum Reza 8808f7d7fc
Merge pull request #278982 from felbinger/master 
python311Packages.mozilla-django-oidc: init at 4.0.1; peering-manager: add oidc support
 2024-06-28 23:49:34 +05:30
Weijia Wang daa81ecb2e nixos/limesurvey: drop default encryption key and nonce 
Co-authored-by: Thomas Gerbet <thomas@gerbet.me>
 2024-06-28 00:34:00 +02:00
Silvan Mosberger c8dec6df38
Merge pull request #322801 from eclairevoyant/discourage-mkpackageoptionmd 
lib: deprecate mkPackageOptionMD
 2024-06-27 20:15:08 +02:00
Jonas Heinrich 77e7768849
Merge pull request #322397 from Ma27/bump-nextcloud 
nextcloud: drop 27, 28.0.6 -> 28.0.7, 29.0.2 -> 29.0.3
 2024-06-27 14:09:29 +02:00
éclairevoyant aeee4fc133
treewide: replace mkPackageOptionMD with mkPackageOption 2024-06-26 23:05:42 -04:00
Benno Bielmeier f99e50320e nixos/wordpress: update .htaccess for httpd 
Update standard wordpress .htaccess content if using httpd
according to [1] (as of 2024-06-26)

[1]: https://developer.wordpress.org/advanced-administration/server/web-server/httpd/
 2024-06-26 22:23:29 +02:00
Nico Felbinger c4d2c90da0
nixos/peering-manager: add oidc support 
Co-authored-by: Jenny <me@netali.de>
Co-authored-by: Sandro <sandro.jaeckel@gmail.com>
 2024-06-26 07:45:18 +02:00
Sandro 33f83c6252
Merge pull request #316977 from eclairevoyant/fix-mkEnableOption 
treewide: fix mkEnableOption usage
 2024-06-25 22:42:16 +02:00
Maximilian Bosch 60657a4591
nextcloud27: remove 
Version will be EOL by the end of 2024-06.
 2024-06-25 14:08:15 +02:00
bl0v3 9abeee7aab fixed doc 2024-06-25 01:17:47 +02:00
bolives-hax 50d6aae3fe
Merge branch 'NixOS:master' into add-rutorrent-service 2024-06-25 00:04:28 +02:00
arcnmx a910bc8146 nixos/keycloak: relax hostname settings assertion 
The `hostname-strict` setting enables dynamic hostname resolution.
 2024-06-23 19:36:36 -07:00
Maximilian Bosch 2ac989c06f
Merge pull request #321931 from Ma27/occ-improvements 
nixos/nextcloud: occ improvements
 2024-06-23 17:42:42 +00:00
Maximilian Bosch a71e967ef3
Merge pull request #320983 from Ma27/nc-dbtableprefix 
nixos/nextcloud: deprecate dbtableprefix
 2024-06-22 16:54:41 +00:00
Maximilian Bosch 50d5306e7c
nixos/nextcloud: use dedicated memory limit for the entire CLI 
Originally, I wanted to execute `nextcloud-occ` with a higher memory
limit because I needed to trigger an expensive operation by hand,
regenerating a bunch of previews.

While doing so, I realized how painful it is to put an invocation of
nextcloud-occ together for that, especially when you need to put it
into another systemd unit in Nix code.

That's why I decided to use the memory limit now for every
CLI invocation just in case. The stuff you do in those units (e.g.
running background jobs) is something you can also do by hand with
`nextcloud-occ` and you'll most likely want to have the same memory
limit there.
 2024-06-22 18:39:08 +02:00
Maximilian Bosch ab9b8f8cf4
nixos/nextcloud: services.nextcloud.occ is not internal 
This option is actually useful when having a systemd unit invoking
`nextcloud-occ`, then you want to do something like

    path = [ config.services.nextcloud.occ ]

This is possible today, but not documented (and the option completion
from nil doesn't pick it up as a result).
 2024-06-22 18:38:04 +02:00
Nick Cao d10d0fc423
nixos/keycloak: update options for release 25.0.0 
Reference: https://www.keycloak.org/docs/25.0.0/upgrading/
 2024-06-22 10:23:09 -04:00
Ruby Iris Juric 088b397516 nixos/zitadel: Drop Sorixelle as maintainer 2024-06-21 16:11:10 +02:00
Thomas Gerbet 88130cec79
Merge pull request #321097 from PatrickDaG/firefly-6.1.18 
firefly-iii: 6.1.17 -> 6.1.18
 2024-06-20 23:03:48 +02:00
Patrick 6154279455
nixos/firefly-iii: enhance provisioning service 2024-06-20 12:16:48 +02:00
Pyrox d94a39f87d
mealie: 1.7.0 -> 1.9.0 
Also fix a small issue with the module not casting the port number
to a string
 2024-06-19 20:48:39 -04:00
Maximilian Bosch 45d2b8b536
nixos/nextcloud: deprecated dbtableprefix 
Closes #320381

Installation with a custom dbtableprefix is not allowed anymore for a
while[1] and we shouldn't advertise it as such.

The option is deprecated for now since I'm not sure if there are some
weird corner-cases where removing the option directly would break
existing installations from before <20 with a custom dbtableprefix. The
migration-path for such a case is as follows:

* Check if /var/lib/nextcloud/config/config.php has the correct
  dbtableprefix set and if not, take care of it.
* Remove `dbtableprefix` from the NixOS configuration. It's effectively
  state anyways.

After a bit of time to switch (perhaps after the next release
branchoff), the option can be removed.

[1] https://github.com/nextcloud/server/issues/24836
 2024-06-19 11:43:33 +02:00
Aria 83b00c3637
akkoma: remove maintainer tcmal (#320858) 2024-06-18 22:33:38 +02:00
Sandro 07f7e6653b
Merge pull request #320593 from onny/invoiceplane-fix 
nixos/invoiceplane: Ensure patching index.php
 2024-06-18 13:33:06 +02:00
Jonas Heinrich 2a8ccf6144 nixos/invoiceplane: Ensure patching index.php 2024-06-17 20:48:21 +02:00
Martin Weinelt decdb5e848
Merge pull request #317814 from Eisfunke/fix-pretix-celery-default-text 
nixos/pretix: fix defaultText for celery options
 2024-06-17 20:39:10 +02:00
Felix Bühler ec48be343d
Merge pull request #320351 from Stunkymonkey/freshrss-enable-doc-improve 
nixos/freshrss: add description about php-fpm
 2024-06-16 23:30:26 +02:00
Pol Dellaiera 2754a6f4a8
Merge pull request #319456 from redxtech/fix-nextjs-ollama-llm-ui 
nixos/nextjs-ollama-llm-ui: fix for respecting ollamaUrl config option
 2024-06-16 22:46:43 +02:00
Felix Buehler e9d13cc80e nixos/freshrss: add description about php-fpm 2024-06-16 22:14:12 +02:00
Kai Norman Clasen 14b558e094
nixos/firefly-iii: change statedirectory 
Set `StateDirectory=firefly-iii` instead of trying to derive it from
`dataDir` + add `dataDir` to `ReadWritePaths`, allowing `dataDir` to be
set to full paths outside of `/var/lib`.
 2024-06-14 22:29:09 +02:00
éclairevoyant 7d8742da87
treewide: fix mkEnableOption usage 2024-06-14 02:41:42 -04:00
Gabe Dunn 8b182a177f
nixos/nextjs-ollama-llm-ui: fix for respecting ollamaUrl config option 2024-06-12 21:24:29 -06:00
Felix Buehler edcdf6ad3b nixos/freshrss: fix reload when config changes 2024-06-10 22:16:20 +02:00
James Atkins 7f78cd20fd nixos/changedetection-io: fix creation of data dir 
Create data directory using tmpfiles if it is not in the standard location.
Do not run mkdir manually.
 2024-06-09 18:28:22 -05:00
Markus Kowalewski b98e90213d
Merge pull request #317035 from ck3d/fix-node-red-path 
nixos/node-red: fix passthru of PATH
 2024-06-09 20:13:58 +00:00
Nicolas Lenz 0b8fdfd917
nixos/pretix: fix defaultText for celery options 2024-06-06 21:37:14 +02:00
Maximilian Bosch 7e2210236e
Merge pull request #316004 from Ma27/nc-memlimit 
nixos/nextcloud: make memory_limit of nextcloud-cron configurable
 2024-06-04 19:18:03 +00:00
Christian Kögler 966d214719 nixos/node-red: fix passthru of PATH 2024-06-03 23:23:38 +02:00
yomaq 3f0bd8ab85 nixos/healthchecks: add settingsFile option 
Single unified env file read by systemd
 2024-06-03 08:56:52 -05:00
Robin Hack 04c973335e filesender: FIX: missing format definition. 
Seems like there is missing format definition in example.

Affected line:
default = format.lib.mkMixedArray [ "exampleauth:UserPass" ] {
 2024-06-03 15:37:37 +02:00
Sandro Jäckel 41452802cb
treewide: fix all obviously wrong mkEnableOptions 2024-06-03 13:20:32 +02:00
Eric Wolf 7c0937d668
nixos/nextcloud-notify_push: use Type=notify 
This prevents the post start script from running
before necessary sockets have been created.

It also prevents an unused shell from being kept around
by using `exec` to make `notify_push` the main process.
 2024-06-02 23:19:07 +02:00
Thomas Gerbet e12faccb31
Merge pull request #313794 from tcmal/akkoma-3.13.2 
akkoma: 3.13.1 -> 3.13.2
 2024-06-02 12:57:31 +02:00
Weijia Wang b966c334d7 nixos/pixelfed: default to php82 2024-06-02 00:16:19 +02:00
Peder Bergebakken Sundt 080af6461e
Merge pull request #314294 from james-atkins/mealie-update 
mealie: 1.2.0 -> 1.7.0
 2024-05-31 20:41:37 +02:00
Yt 6606ce9c0c
Merge pull request #273101 from onny/invoiceplane-settings2 
nixos/invoiceplane: Remove deprecated extraConfig
 2024-05-31 00:04:34 +00:00
Maximilian Bosch dddd08d188
nixos/nextcloud: make memory_limit of nextcloud-cron configurable 
The memory limit is equal to what's configured in php-fpm. Given that we
run in a different environment, it seems reasonable to allow different
memory contraints here.
 2024-05-30 23:38:55 +02:00
Jennifer Graul e8885abab9
nixos/sftpgo: add extraReadWriteDirs option 2024-05-29 14:35:25 +02:00
Jennifer Graul 3a66bd1dc7
nixos/sftpgo: change type of dataDir option to path 
The dataDir options describes a path, so it should be an option of type
path.
 2024-05-29 14:32:57 +02:00
Jennifer Graul 736d58b90e
nixos/sftpgo: fix upstream docs links 2024-05-29 14:29:13 +02:00
Izorkin 8730a7e8d8
nixos/mastodon: optimize systemd startup order block 2024-05-29 13:45:23 +03:00
Izorkin a05afb1437
nixos/mastodon: update redis host and port configurations 2024-05-29 13:45:17 +03:00
tcmal 7952d92b82 nixos/akkoma: dont disable protectsystem in confinement mode 
this works fine since #289593
 2024-05-28 15:47:03 +01:00
tcmal a247fc94b4 nixos/akkoma: deal with $RUNTIME_DIRECTORY containing multiple entries 
this fixes issues with confined module tests.

see https://github.com/NixOS/nixpkgs/pull/313794#issuecomment-2126909110
 2024-05-28 15:47:03 +01:00
Jonas Heinrich 4217b9cd9a nixos/invoiceplane: Remove deprecated extraConfig 2024-05-28 14:07:44 +02:00
Pol Dellaiera d091b7f681
Merge pull request #313112 from savyajha/firefly-iii 
firefly-iii: 6.1.15 -> 6.1.16
 2024-05-25 10:41:44 +02:00
Andrew Morgan fad7ecc30f mealie: set the correct port in BASE_URL 
Otherwise it would default to port 8080, which breaks generated links
when `cfg.port` is set to another port.
 2024-05-24 09:17:47 -05:00
James Atkins bcaf6de467 mealie: 1.2.0 -> 1.7.0 
https://github.com/mealie-recipes/mealie/releases/tag/v1.7.0
 2024-05-24 09:17:42 -05:00
Malte Neuss 8a05b4f8d4 nixos/nextjs-ollama-llm-ui: init module 
NixOS already has good support for the Ollama
backend service. Now we can benefit from
having a convenient web frontend as well for it.
 2024-05-23 23:48:55 +02:00
nhnn 3d47565193
nixos/filesender: init module 2024-05-22 08:37:48 +03:00
Pol Dellaiera 4bb2fe0d38
Merge pull request #312251 from thenhnn/filesender-packaging-simplesamlphp-module 
nixos/simplesamlphp: init
 2024-05-21 17:12:11 +02:00
nhnn 3e14c44e21
nixos/simplesamlphp: init module 2024-05-21 11:47:39 +03:00
Savyasachee Jha eee8b0bff3 nixos/firefly-iii: Changes to module and tests 
Module has been fixed and now uses the maintenance service to cache
settings so as to not require environment files wherever possible.

The tests now test using mariadb and postgresql as well as sqlite to be
more complete. A test has been added for testing whether app.js has been
compiled successfully, as well as to check whether the cronjob fires
successfully.
 2024-05-20 17:51:35 +05:30
Pol Dellaiera a041ac59a9
Merge pull request #311608 from fsagbuya/flarum 
flarum: init at 1.8.1, module
 2024-05-20 09:19:31 +02:00
Florian Agbuya 7ad171b5ad nixos/flarum: init module 2024-05-20 11:20:07 +08:00
Sandro 52f4cce004
Merge pull request #308423 from Moraxyc/add-artalk 
artalk: init at 2.8.6
 2024-05-19 18:06:08 +02:00
Sandro 5497cebc92
Merge pull request #304257 from Raroh73/add/commafeed 
commafeed: init at 4.3.3
 2024-05-19 17:44:06 +02:00
Moraxyc da28a5ff2a
nixos/artalk: init module 2024-05-18 02:15:33 +08:00
Pol Dellaiera 3da72dcbc5
Merge pull request #312249 from dotlambda/nextcloud 
nixos/nextcloud: correct latest version
 2024-05-16 22:27:52 +02:00
Robert Schütz dce84c46d7 nixos/nextcloud: correct latest version 2024-05-16 08:53:01 -07:00
Jade Lovelace f05ecf16e6
Merge pull request #250638 from benley/keycloak-systemd-notify 
nixos/keycloak: Add systemd startup notification
 2024-05-15 14:13:20 -07:00
Martin Weinelt 10955966a5
Merge pull request #311916 from wegank/pretalx-plugins-init 
pretalx: add a few plugins
 2024-05-15 21:41:03 +02:00
Martin Weinelt f4f9f96037
nixos/pretalx: add plugins option 
Allow loading pretalx plugins in a declarative manner. They are passed
into the package dependencies at build time, so that collectstatic and
other django maintenance functions account for them, since we cannot
regenerate assets at runtime anyway.
 2024-05-15 16:24:24 +02:00
Benjamin Staffin 64c94bd40a nixos/keycloak: Add systemd startup notification 
This makes it possible for other systemd units to depend on
keycloak.service using `after` and `wants` relationships, and systemd
will actually wait for Keycloak to finish its initialization before
starting any dependent units.  This can be important for services like
oauth2-proxy, which (when configured to use Keycloak as its auth
provider) will fail to start until Keycloak's
`.well-known/openid-configuration` endpoint is available.
 2024-05-14 14:26:35 -04:00
Patrick 77a6460e74
nixos/your_spotify: init 2024-05-13 22:10:13 +02:00
Martin Weinelt 9731a32d81
Merge pull request #309115 from NyCodeGHG/nixos/miniflux-sd-notify 
nixos/miniflux: use systemd notify and watchdog
 2024-05-13 10:12:37 +02:00
Martin Weinelt 622af635bb
pretalx: adopt and set up code ownership 2024-05-09 18:20:14 +02:00
Martin Weinelt 9afcf733f3
nixos/pretix: update hardening 
- Transition from world-readable to group-readable UMask
- Remove world permissions from state directory
 2024-05-09 18:20:14 +02:00
Martin Weinelt 82f2cc7489
nixos/pretalx: set up hardening 2024-05-09 18:20:13 +02:00
Martin Weinelt b4b3165619
nixos/pretalx: fix state directory mode 
The state directory contains static files that need to be accessible by
a webserver, but homeMode defaults to 0750 and switching the generation
will always force the homeMode, thereby breaking access to the assets.

Instead, fully rely on systemd to provide the StateDirectory with the
correct mode.
 2024-05-09 18:20:13 +02:00
Martin Weinelt a4193dba8f
nixos/pretix: fix state directory mode 
The state directory contains static files that need to be accessible by
a webserver, but homeMode defaults to 0750 and switching the generation
will always force the homeMode, thereby breaking access to the assets.

Instead, fully rely on systemd to provide the StateDirectory with the
correct mode.
 2024-05-09 17:00:02 +02:00
Jonas Heinrich 4a451cb3ce
Merge pull request #308291 from Ma27/nc-update-db 
nixos/nextcloud: add nextcloud-update-db.service, nextcloud-cron isn't oneshot
 2024-05-08 11:29:45 +02:00
Jakob Klepp 5afa8d15cb
plantuml-server: remove unnecessary systemd option path 
@nh2 pointed out that adding `/var/lib/plantuml/bin` to `PATH` is odd
 2024-05-07 19:16:29 +02:00
nikstur 951e023010
Merge pull request #309838 from cyberus-technology/take-plausible-maintainership 
plausible: take take-plausible-maintainership
 2024-05-07 18:34:24 +02:00
Leona Maroni 31be9134a2
Merge pull request #309836 from cyberus-technology/fix-nixos-plausible-unit 
nixos/plausible: fix unit start script
 2024-05-07 15:46:50 +02:00
Alexander Sieg 8edee82bc2
plausible: take take-plausible-maintainership 2024-05-07 15:35:22 +02:00
Alexander Sieg 3be1b16698
nixos/plausible: fix unit start script 
In 8bb777ee37 a condition was added to
only execute the createdb.sh script if database setup was configurated.
However a superfluace " was added at the end of the line which cased an
escaping error the resulted in #309520.

Fixes #309520
 2024-05-07 15:27:08 +02:00
Maximilian Bosch c7a1616be7
nixos/nextcloud: add trailing slashes to carddav/caldav redirect 
This seems to solve the problem with the warning about carddav/caldav
redirects being broken.
 2024-05-05 18:17:25 +02:00
Marie Ramlow 212c34f8c0 nixos/miniflux: use systemd notify and watchdog 
Miniflux supports notifying systemd when it's ready.
It also supports the systemd watchdog, which will restart miniflux when it's stuck.
 2024-05-05 14:47:05 +02:00
Jade Lovelace f96f3c9e30 nixos/keycloak: pass --verbose to starting keycloak 
This sets the exception handler to show the full exception on startup.
We don't think it does anything else, with respect to logging, for
instance. Everything else can be configured in the config file, and this
is plain reasonable to simply always enable in our view.
 2024-05-04 17:43:38 -07:00
Aaron Andersen efd518852d
Merge pull request #300090 from lytedev/300088 
plausible: Do not run createdb.sh unless configured to setup the database
 2024-05-04 18:41:49 +00:00
Daniel Flanagan 8bb777ee37 plausible: Do not run createdb.sh unless configured to setup the database 
Closes #300088
 2024-05-04 10:28:21 -05:00
Maximilian Bosch 5ef467d6f5
nixos/nextcloud: add nextcloud-update-db.service, nextcloud-cron isn't oneshot 
This service performs operations that significantly increase the
performance of Nextcloud, can take a while. These are designed however
to not require maintenance mode and can be executed during normal
operation[1].

Make nextcloud-cron a simple unit instead of oneshot: otherwise we risk
that it'll be stopped by the startup timeout (oneshot executes ExecStart
while "activating") which can be an issue for very long running tasks or
if Nextcloud needs to catch up if one task was broken for a while.

[1] https://docs.nextcloud.com/server/29/admin_manual/maintenance/upgrade.html#long-running-migration-steps
 2024-05-01 20:09:37 +02:00
Maximilian Bosch 7001f74335
Merge pull request #306595 from RaitoBezarius/nc29 
nextcloud29: init at 29.0.0, nextcloud27: 27.1.8 -> 27.1.9, nextcloud28: 28.0.4 -> 28.0.5
 2024-05-01 10:16:20 +00:00
Maximilian Bosch 28f4adfb79
nixos/nextcloud: document known warnings 2024-05-01 11:03:23 +02:00
Kyle Carberry 14679b13eb nixos/coder: sync maintainers to coder package 2024-04-29 21:11:23 -04:00
Jörg Thalheim 368b2d71b4
Merge pull request #307130 from toastal/movim-no-parallel 
movim: include authentication patch & remove parallel dependency
 2024-04-29 09:34:08 +02:00
toastal 13852fc9ad movim: remove parallel dependency 
Currently there is an issue with $PATH & parallel causing build errors.
It’s probably best to just remove the dependency where bash forking is
good enough here.
 2024-04-28 16:27:01 +07:00
Amelia Cuss 2e0b0c2707 nixos/akkoma: Don't warn if no installWrapper 
Currently the installWrapper warning is issued if sudo (and sudo-rs)
aren't installed.  This is fine, except we get the warning even if we
explicitly turn off installWrapper -- say, for this very reason!

Rather than warning on every build until either sudo is installed or
Akkoma is uninstalled, only warn if cfg.installWrapper is true.
 2024-04-27 23:38:29 +10:00
Weijia Wang c0e50ded28
Merge pull request #306046 from misuzu/maintainers 
{gotosocial,castopod,swapspace,psi-plus,kmon}: remove misuzu from maintainers
 2024-04-27 05:23:55 +02:00
Raroh73 3a0fa1e7aa
nixos/commafeed: init module 2024-04-26 17:19:33 +02:00