summary refs log tree commit diff
AgeCommit message (Collapse)Author
2026-03-03release under the AGPL HEAD mainIrene Knapp
Force-Push: initial development Change-Id: I93d306cfe8a767a050d4c449ca1bc941a6d4a9a4
2026-01-29remove the acme preliminary-selfsigned optionIrene Knapp
in nixos 25.11 it's now the only supported behavior, so we don't need the option Force-Push: config Change-Id: Id6a82e7b6631569e8d75bdf35a5a9391575326cd
2025-10-22documentation improvementsIrene Knapp
Change-Id: Iddb80b7d6ff1f747d961962623b7352e252b584f
2025-10-22add some bootstrap groupsIrene Knapp
Change-Id: Ie821c8b8a87622c79a5d7a3b92670dbdf430b896
2025-10-22update user account name fieldsIrene Knapp
Change-Id: Iff6c4537d3ad9513a7ef77c96d6400213e726918
2025-10-22Merge "comment out rootPW. Add openldap to the flake" into mainRobert
2025-10-22comment out rootPW.Robert Orr
Add openldap to the flake Change-Id: I727e8fe9f0fa4cf4bd98f8b1571837b543bb3311
2025-10-20haproxy needs to listen on IPv6Irene Knapp
this came up during the server migration - the ACME cert failed because it was only listening on IPv4, and the new machine also does IPv6 Force-Push: it's been a long ops day and I just want this fully squared away, sorry Change-Id: Ic0a721c78059427dd38b99ff41d3e1c0566ac1cb
2025-10-17Modify openldap.nix to get rid of tabs.Robert Orr
First try at openldap configuration. also an initial ISL.ldif and some example ldif and a list of commands that work when run on the server itself. Also, some different example ldif files Change-Id: I0d702410fbf5a6aa4c626e4f1fc233bb72bad4e5
2025-10-09add a skeleton for documentationIrene Knapp
Change-Id: I528864e13c4b318dd70a004b8c2029831863c37c
2025-10-09x86_64-linux has been spelled wrong this entire timeIrene Knapp
and we never noticed because we only had ARM machines, but that has changed this fixes it, which should help with both the dev shell and `nix flake check` I'm doing this fix in every repo, see also cl/1659 Change-Id: Icf01e9fe15669a67c87417302e4d2ab3b13d82cd Force-Push: trivial changes across many repos; too much work to review all of them
2025-10-01add a skeleton openldap config, which isn't actually turned on yetIrene Knapp
I'd like to check this in to serve as a basis for your work, and you can turn it on when you feel it's ready. sound good? Change-Id: Icd192b1a7beacf844b5df7742114271889fd384a
2025-07-31try to spin up haproxy, nginx, and an ACME clientIrene Knapp
no login/ACL stuff yet Change-Id: If6eeaed671b2711dc809e94ea00bc6387dcae2f4
2025-06-19turn on the Collabora backend serviceIrene Knapp
Change-Id: I144a170de1d943caae2e77ef0121d448764741b1
2025-06-17switch to using the upstream nixos mattermost moduleIrene Knapp
this does start up correctly, creating its state directory and so on. it isn't yet world-visible, because we don't have the SSO set up yet. that's likely to make testing it difficult, which is unfortunate but necessary, since there's no way it's secure. Change-Id: I9f40c21c2d41f7e037299cc51a26fdee4d53d3af
2025-06-05add database setup; export everything from the flake as a moduleIrene Knapp
database.nix is substantially copied from the ISL config repo, with a few changes to make it more generic and usable by others I also removed stuff in mattermost.nix that wasn't doing anything; I'll detail that in comments Change-Id: I0ff6ea69f293dc4070f277f30ae0fde5254cd87c
2025-06-05running mattermost server outside of docker.Robert Orr
The config.json file needs to be copied to /var/lib/mattermost/config with perms of 640 and owned by mattermost:mattermost. It is understood that this may need to be re-arranged to fit in with the rest of a system; and that the actual production deployment process is not yet defined. Change-Id: Ied3c80541fdc3b72bc7fdfa558114afd5d66d4c3
2025-04-16initial configuration of a nix flakeIrene Knapp
this also sets up direnv and gitignore Change-Id: Ifa286098ec0be1122e167757c11be1cd3d06ec93 Force-Push: I'm trying to do initial setup and I want to move quickly
2025-04-16Initial empty repositoryIrenes
generated by cgit-pink 1.4.1 (git 2.36.1) at 2026-04-21 13:33:53 +0000