3cb74f2bd9
update from address in forgejo
2026-05-14 10:16:09 +03:00
1837cfacb3
add mailer settings to forgejo
2026-05-14 10:06:05 +03:00
05ac7b8bc4
add mailer creds for forgejo
2026-05-14 10:05:41 +03:00
d0d7d13ff7
update resume
2026-05-13 10:14:38 +03:00
9137d988b1
update resume
2026-05-12 19:55:21 +03:00
8d0f110ea7
add resume repo as input to flake and use it as nginx root
2026-05-12 19:39:47 +03:00
cb5d682b7d
update backend vendor hash
2026-05-11 10:44:53 +03:00
5585eaf745
update tide and secrets with mailjet config
2026-05-11 10:38:59 +03:00
f602861bff
update tide
2026-05-10 19:36:31 +03:00
719cb5334e
update tide and secrets
2026-05-10 11:06:30 +03:00
72797604b5
update tide
2026-05-09 22:30:17 +03:00
1e8d26bc6e
set useAcmehost to null
2026-05-09 22:21:53 +03:00
a4c735ec17
add direnv to use flake
2026-05-09 22:21:39 +03:00
07042daa14
Merge branch 'fix-sops-age-keyfile'
2026-05-09 22:17:19 +03:00
f0259cfb96
point sops at age key file
...
sops-nix's default identity discovery imports the host's SSH
ed25519 key as an age identity, but secrets/tide.yaml is encrypted
to the age key generated with age-keygen and stored at
/var/lib/sops-nix/key.txt. Without sops.age.keyFile pointing at
that path, activation fails with 'Error getting data key: 0
successful groups required, got 0'. Also blank the SSH/GPG
fallback paths so the module never silently picks up an
unintended identity.
2026-05-09 22:17:15 +03:00
bd417f5784
update tide lock for pgsql
2026-05-08 16:09:00 +03:00
063813a4c3
Merge branch 'switch-tide-input'
2026-05-08 16:07:29 +03:00
ed0dfd568d
pin tide flake input to forgejo
...
Switch from a local path: input to the canonical forgejo URL so
remote nixos-rebuild on the server can resolve it. Lock file
pinned to the current TIDE master revision.
2026-05-08 16:07:26 +03:00
9312eaef3e
update tide lock
2026-05-08 16:02:29 +03:00
4fd52921d6
add sops and secrets
2026-05-08 15:58:20 +03:00
b44795bd59
Merge branch 'add-tide'
2026-05-08 10:59:05 +03:00
d195c6b37c
wire tide service into nixos config
...
Imports the tide nixos module from the TIDE flake and configures
it for tide.yisroelbaum.com (frontend) and apitide.yisroelbaum.com
(backend), reusing the existing wildcard ACME cert. Secrets are
pulled from sops-encrypted secrets/tide.yaml; replace the
placeholder with real encrypted content before deploy.
2026-05-08 10:56:13 +03:00
b7716061e4
add tide and sops-nix flake inputs
2026-05-08 10:56:08 +03:00
792f83a324
update git submodule for home manager
2026-04-09 22:16:08 +03:00
b336ef04b8
add start ssh server for forgejo
2026-04-09 19:28:45 +03:00
71dec084b6
secure cookies and ssh port set to 2222
2026-04-09 19:16:05 +03:00
0f536bbff4
refactor boot info
2026-04-09 10:59:19 +03:00
53a94c2e61
refactor forgejo to its own file including nginx config
2026-04-09 10:53:32 +03:00
1da3624a02
extract domain name to flake and pass down with special args
2026-04-09 10:52:25 +03:00
3e2fce475b
disable registration of other users
2026-04-09 00:09:17 +03:00
1d7f21f2bf
fix option name for location config
2026-04-08 23:44:31 +03:00
c58f1ff9af
adjust nginx headers for forgejo subdomain
2026-04-08 23:41:14 +03:00
247f411d01
fix server settings
2026-04-08 23:34:15 +03:00
60b9cf5933
add protocol and domain for forgejo
2026-04-08 23:28:00 +03:00
b40131651e
add root url
2026-04-08 23:24:34 +03:00
8b6494cbbc
switch gitea for forgejo
2026-04-08 23:19:06 +03:00
c3b070b57c
remove unnecessary extra domain names and fix webroot for acme cert
2026-04-06 22:54:37 +03:00
8263938f57
change from use acme host to enable acme
2026-04-06 22:54:15 +03:00
933afeaf03
specify domain for wildcard
2026-04-06 22:44:10 +03:00
530c9cef1d
remove redundant acme challenge roots
2026-04-06 22:43:53 +03:00
ca7a4a57c2
create dev shell with nixos rebuild
2026-04-06 22:03:12 +03:00
81035289f7
enable gitea and give it a subdomain
2026-04-06 21:57:47 +03:00
6fa078202c
add readme with instructions for deployment
2026-04-06 21:57:26 +03:00
41cec6b754
change submodule url from ssh to https
2026-03-29 21:47:23 +03:00
0116a8d8b1
add submodules back with different name
2026-03-29 21:39:41 +03:00
a409e85341
removing submodule files
2026-03-29 21:35:47 +03:00
5cd4abee5b
update flake inputs
2026-03-29 21:15:44 +03:00
f775031c38
try home manager again with submodules enabled
2026-03-29 21:10:34 +03:00
7714fd90d3
update nixpkgs to unstable
2026-03-29 17:52:38 +03:00
c1d8c5a261
use nixos unstable for nixpkgs
2026-03-29 17:49:24 +03:00
