c1f7eda12c
programs/distrobox: add description for Distrobox config value
...
This is why the custom manual cannot be built.
2023-11-23 22:14:10 +08:00
b84e38896b
profiles/i18n: reformat code
2023-11-13 19:51:50 +08:00
3c6f443580
services/wezterm-mux-server: add user shell
...
The service is experimental at this point since I use something like
Mosh and Eternal Terminal. Domain multiplexing is pretty nice feature
with Wezterm, though.
2023-11-12 10:52:04 +08:00
214765a7b4
profiles/desktop: add more basic fonts
2023-11-12 10:50:57 +08:00
3f78b8dc2e
profiles/i18n: add basic fonts for more language support out-of-the-box
2023-11-12 10:50:32 +08:00
3673eaa9cb
profiles/dev: remove Mosh program
...
This is best handled on a case-by-case basis. Some hosts are now using
Eternal Terminal and some are using Mosh.
2023-11-12 10:49:10 +08:00
32e1eda149
tasks/multimedia-archive: use updated version of Archivebox Nix module
2023-11-09 11:31:59 +08:00
2be753489e
services/archivebox: escape extraArgs properly
2023-11-08 21:09:05 +08:00
ad710cdb9d
services/archivebox: harden services
2023-11-07 20:53:45 +08:00
8b812a34c9
services/archivebox: add dedicated service user and group
2023-11-07 20:53:15 +08:00
cee845a94b
services/archivebox: replace withDependencies option with extraPackages
...
We also added a package option for ArchiveBox alongside it.
2023-11-07 20:51:47 +08:00
edfc8f8cc3
services/archivebox: update module examples and descriptions
2023-11-07 20:50:37 +08:00
aeac081cd2
services/archivebox: update job service name generation
2023-11-07 20:47:22 +08:00
534a300768
services/archivebox: remove archivePath option
...
It is quite limiting to what workflow it allows. Though, this iteration
now enforces it to be in `/var/lib/archivebox`, setting an arbitrary
option is less desirable.
2023-11-07 20:38:00 +08:00
e9d55ab771
profiles/dev: add ghcr.io in containers registry list
2023-11-07 13:31:37 +08:00
3f291fe665
hosts/ni: modularize networking config
2023-11-06 16:10:42 +08:00
16fa8cb64f
config: replace command-not-found with nix-index
2023-11-04 23:22:54 +08:00
71d3fc6303
modules: update comments
2023-10-29 15:25:18 +08:00
9615a4e578
tasks/multimedia-archive: remove persistent option
2023-10-27 13:25:32 +08:00
9ddddcf1e3
services/yt-dlp: remove persistent option
2023-10-27 13:25:08 +08:00
eab8631e9b
services/gallery-dl: remove persistent option
2023-10-27 13:24:21 +08:00
52871b4fa3
services/archivebox: refactor and remove persistent option
2023-10-27 13:23:37 +08:00
479166c78d
services/vouch-proxy: add wantedBy for systemd service
...
Forgot to add that which is why there's no enabled service.
2023-10-20 15:33:16 +08:00
f789aabd35
programs/distrobox: add extraConfig option
2023-10-18 18:59:46 +08:00
6293a13965
profiles/dev: add sshfs
2023-10-18 09:37:43 +08:00
39ccbe0976
profiles/dev: use Distrobox Nix module
2023-10-18 09:17:33 +08:00
de8beb9780
programs/distrobox: remove settingsFile option
2023-10-18 09:16:25 +08:00
7f06e6a677
programs/distrobox: remove assertion
...
It seems to be more suitable as a program module.
2023-10-18 09:13:42 +08:00
af54c3570a
programs/distrobox: improve quoting for generated settings
2023-10-18 09:13:18 +08:00
5bd11ed430
programs/distrobox: init
2023-10-17 18:52:44 +08:00
8fb9770882
services/vouch-proxy: escape service names for systemd
2023-10-17 18:33:02 +08:00
ec0fe7dec8
services/vouch-proxy: fix permissions for generated secrets
2023-10-14 14:03:40 +08:00
5657a5e023
services/vouch-proxy: use system user for service
...
This enables integration with secrets such as sops-nix instead of the
previous service config of being a dynamic user.
2023-10-14 11:06:23 +08:00
d43708983a
services/wezterm-mux-server: update service hardening options
...
It should be less strict overall with the ProtectHome= settings.
2023-10-14 11:05:46 +08:00
6012556a3d
services/wezterm-mux-server: revert to system user for service
...
I don't know how to completely make it isolated AND working.
2023-10-14 11:05:17 +08:00
7daea6c427
services/vouch-proxy: update service config
2023-10-13 14:24:44 +08:00
3ee04bb812
chore: reformat codebase
2023-10-09 20:48:01 +08:00
7d55e45f70
services/vouch-proxy: add some more hardening options
2023-10-09 20:46:06 +08:00
2dbb3ed68c
services/vouch-proxy: restructure for multiple instances
...
This resolves some cases where the admin does not have all of their
users within the protected domain and some in others.
2023-10-09 20:43:13 +08:00
bd478aebc7
profiles/dev: add Dive for virtualization submodule
2023-10-09 22:32:13 +08:00
5152bae032
services/vouch-proxy: add more systemd directives
2023-10-09 22:31:27 +08:00
b4b64fa50b
services/vouch-proxy: improve conditional settings file option
2023-10-07 20:42:52 +08:00
069723d38a
services/wezterm-mux-server: hardcode user and group
...
With DynamicUser directive, it should be easy to make this usable.
2023-10-06 13:48:12 +08:00
86d8878fab
services/vouch-proxy: init
2023-10-07 20:41:14 +08:00
12bb71be20
services/wezterm-mux-server: improve code
2023-10-05 10:23:09 +08:00
c410ece05a
treewide: remove options attribute for modules
2023-10-02 14:26:11 +08:00
9654d7f551
programs/blender: reformat and update description
2023-09-25 22:06:51 +08:00
cd3cf148b9
programs/blender: fix Blender system resources directory
...
Also improve the way how Blender resources are joined. It isn't the
most idiomiatic code but we can improve it.
2023-09-25 15:29:56 +08:00
5f73ab74e9
programs/blender: fix erroneous attribute
2023-09-24 19:21:24 +08:00
f1c271cb59
profiles/browsers: update Firefox configuration
2023-09-24 19:20:52 +08:00
