sercanto/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
1616 commits 1 branch 0 tags 3.4 MiB
Commit graph

1616 commits

Author SHA1 Message Date
adisbladis
c91f606639 hosts.web01: init 
This machine is intended to host web applications.
Initially [Lemmy](https://join-lemmy.org/), but perhaps more down the line.

The initial PR only deals with setting up the machine and required infra like DNS, not setting up Lemmy itself which will be a follow-up.
 2023-07-05 08:57:43 +00:00
zowoq
efeb2ce042 Revert "switch to mergify" 
This reverts commit 6b948a13c8.

doesn't currently work with github merge queue
 2023-07-03 03:21:21 +00:00
Hercules CI Effects
a6282b2f52 flake.lock: Update 
Flake lock file updates:

• Updated input 'darwin':
    'github:LnL7/nix-darwin/25ae710ba3cd448c5d5678788d37f3d149378bc0' (2023-06-25)
  → 'github:LnL7/nix-darwin/b06bab83bdf285ea0ae3c8e145a081eb95959047' (2023-07-02)
• Updated input 'flake-parts':
    'github:hercules-ci/flake-parts/37dd7bb15791c86d55c5121740a1887ab55ee836' (2023-06-26)
  → 'github:hercules-ci/flake-parts/267149c58a14d15f7f81b4d737308421de9d7152' (2023-07-01)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/4b14ab2a916508442e685089672681dff46805be' (2023-06-27)
  → 'github:NixOS/nixpkgs/3454e7a9c8c78ee815bd2d5d3ff8a977f4d419f3' (2023-07-02)
• Updated input 'sops-nix':
    'github:Mic92/sops-nix/2ff6973350682f8d16371f8c071a304b8067f192' (2023-06-22)
  → 'github:Mic92/sops-nix/5ed3c22c1fa0515e037e36956a67fe7e32c92957' (2023-07-02)
• Updated input 'srvos':
    'github:numtide/srvos/1d882a37529bec2890204b86f89e62e4c3ccce0a' (2023-06-29)
  → 'github:numtide/srvos/64cffff50bbf91de54a5b06d60bb1ecbfec53009' (2023-07-03)
• Updated input 'treefmt-nix':
    'github:numtide/treefmt-nix/0a4f06c27610a99080b69433873885df82003aae' (2023-06-28)
  → 'github:numtide/treefmt-nix/df3f32b0cc253dfc7009b7317e8f0e7ccd70b1cf' (2023-06-29)
 2023-07-03 03:18:54 +00:00
zowoq
8c3dcc3951 docs/continuous-integration: add darwin 2023-07-02 23:53:39 +00:00
zowoq
d40867bc26 refactor storage box 
this is now under the nix-community hetzner account
 2023-07-02 23:45:27 +00:00
zowoq
6b948a13c8 switch to mergify 
this lets us consolidate automerges and remove GH_TOKEN_FOR_UPDATES
 2023-07-02 23:41:02 +00:00
zowoq
aba917aac1 reencrypt secrets 2023-07-02 17:31:49 +00:00
adisbladis
dcd03ebd64 .sops.yml: Add adisbladis key 2023-07-02 17:31:49 +00:00
zowoq
9f921e27c5 modules: refactor cachix secrets, watch-store 
move cachix related files into directory
 2023-07-01 22:08:15 +00:00
zowoq
7f0c3d5ffd modules: refactor hydra, nur-update 
these are single files, don't need to be in a directory
 2023-07-01 22:08:15 +00:00
zowoq
a7f4795647 modules: builder -> community-builder 
slightly better name for this module
 2023-07-01 22:08:15 +00:00
zowoq
4dada30f83 Revert "switch back to post-build-hook" 
This reverts commit 94de107c30.

watch-store seems to be working again with cachix 1.6
 2023-07-01 09:48:51 +00:00
Hercules CI Effects
1b22419687 flake.lock: Update 
Flake lock file updates:

• Updated input 'disko':
    'github:nix-community/disko/fef67a1ddc293b595d62a660f57deabbcb70ff95' (2023-06-26)
  → 'github:nix-community/disko/8002e7cb899bc2a02a2ebfb7f999fcd7c18b92a1' (2023-06-28)
• Updated input 'flake-parts':
    'github:hercules-ci/flake-parts/71fb97f0d875fd4de4994dfb849f2c75e17eb6c3' (2023-06-01)
  → 'github:hercules-ci/flake-parts/37dd7bb15791c86d55c5121740a1887ab55ee836' (2023-06-26)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/e3f793e5c698717833678fb2757f48dc7738dca7' (2023-06-25)
  → 'github:NixOS/nixpkgs/4b14ab2a916508442e685089672681dff46805be' (2023-06-27)
• Updated input 'srvos':
    'github:numtide/srvos/065fecbf3c2c3b6d11f23eb8e370ba88d9534ce8' (2023-06-26)
  → 'github:numtide/srvos/1d882a37529bec2890204b86f89e62e4c3ccce0a' (2023-06-29)
• Updated input 'treefmt-nix':
    'github:numtide/treefmt-nix/b100498935f04a70605dfde0edc6e311d865b869' (2023-06-24)
  → 'github:numtide/treefmt-nix/0a4f06c27610a99080b69433873885df82003aae' (2023-06-28)
 2023-06-29 07:08:48 +00:00
zowoq
e79972444c terraform/cloudflare: remove search.nix-community.org 2023-06-28 11:19:23 +00:00
Hercules CI Effects
dc62ac7555 flake.lock: Update 
Flake lock file updates:

• Updated input 'darwin':
    'github:LnL7/nix-darwin/bc346a67d34a336ca3c507570875cc88038e6120' (2023-06-21)
  → 'github:LnL7/nix-darwin/25ae710ba3cd448c5d5678788d37f3d149378bc0' (2023-06-25)
• Updated input 'disko':
    'github:nix-community/disko/4823509bb3b014dc85abefc13efcfa076d36338a' (2023-06-19)
  → 'github:nix-community/disko/fef67a1ddc293b595d62a660f57deabbcb70ff95' (2023-06-26)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/8b0f22dc5155e8a6d329520c27751dfb0f821d63' (2023-06-21)
  → 'github:NixOS/nixpkgs/e3f793e5c698717833678fb2757f48dc7738dca7' (2023-06-25)
• Updated input 'srvos':
    'github:numtide/srvos/19091a689799acd0a15cd77629af41d3741424bc' (2023-06-21)
  → 'github:numtide/srvos/065fecbf3c2c3b6d11f23eb8e370ba88d9534ce8' (2023-06-26)
• Updated input 'treefmt-nix':
    'github:numtide/treefmt-nix/6521a278bcba66b440554cc1350403594367b4ac' (2023-05-31)
  → 'github:numtide/treefmt-nix/b100498935f04a70605dfde0edc6e311d865b869' (2023-06-24)
 2023-06-26 03:22:24 +00:00
zowoq
43ed97b67a hosts/build02/nixpkgs-update-backup: don't use ssh-agent 
not sure why it got stuck but we can avoid using it
 2023-06-22 23:14:56 +00:00
Hercules CI Effects
b548c87c23 flake.lock: Update 
Flake lock file updates:

• Updated input 'darwin':
    'github:LnL7/nix-darwin/8a5af0da9d8dab8a188436750489e304ac682085' (2023-06-18)
  → 'github:LnL7/nix-darwin/bc346a67d34a336ca3c507570875cc88038e6120' (2023-06-21)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/6069d0b4972eb6c7b0c4b29cf9d19d91edce742f' (2023-06-18)
  → 'github:NixOS/nixpkgs/8b0f22dc5155e8a6d329520c27751dfb0f821d63' (2023-06-21)
• Updated input 'sops-nix':
    'github:Mic92/sops-nix/1634d2da53f079e7f5924efa7a96511cd9596f81' (2023-06-18)
  → 'github:Mic92/sops-nix/2ff6973350682f8d16371f8c071a304b8067f192' (2023-06-22)
• Updated input 'srvos':
    'github:numtide/srvos/bd0aabcae396b826a4a8dd5ba078b06ee099430c' (2023-06-19)
  → 'github:numtide/srvos/19091a689799acd0a15cd77629af41d3741424bc' (2023-06-21)
 2023-06-22 03:36:56 +00:00
dependabot[bot]
fee5639e98 build(deps): bump cachix/install-nix-action from 21 to 22 
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action) from 21 to 22.
- [Release notes](https://github.com/cachix/install-nix-action/releases)
- [Commits](https://github.com/cachix/install-nix-action/compare/v21...v22)

---
updated-dependencies:
- dependency-name: cachix/install-nix-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-20 01:02:24 +00:00
Hercules CI Effects
56e6e6ad2b flake.lock: Update 
Flake lock file updates:

• Updated input 'darwin':
    'github:LnL7/nix-darwin/7c16d31383a90e0e72ace0c35d2d66a18f90fb4f' (2023-06-09)
  → 'github:LnL7/nix-darwin/8a5af0da9d8dab8a188436750489e304ac682085' (2023-06-18)
• Updated input 'disko':
    'github:nix-community/disko/fa4ec0bd26a103b3aa0d5a60f60399724face977' (2023-06-15)
  → 'github:nix-community/disko/4823509bb3b014dc85abefc13efcfa076d36338a' (2023-06-19)
• Updated input 'hercules-ci-effects':
    'github:hercules-ci/hercules-ci-effects/657935127398706754113c1cea5800798ecb99a7' (2023-06-07)
  → 'github:hercules-ci/hercules-ci-effects/04e4ab63b9eed2452edee1bb698827e1cb8265c6' (2023-06-15)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/ba1a6ec548000d4a50719d14e6f73f63016674d5' (2023-06-14)
  → 'github:NixOS/nixpkgs/6069d0b4972eb6c7b0c4b29cf9d19d91edce742f' (2023-06-18)
• Updated input 'sops-nix':
    'github:Mic92/sops-nix/cb85e297937af1bd1434cf5f85a3f86a21dc8207' (2023-06-11)
  → 'github:Mic92/sops-nix/1634d2da53f079e7f5924efa7a96511cd9596f81' (2023-06-18)
• Updated input 'srvos':
    'github:numtide/srvos/01d15efe6df0d2988a65beba28d03eff0dae48d4' (2023-06-15)
  → 'github:numtide/srvos/bd0aabcae396b826a4a8dd5ba078b06ee099430c' (2023-06-19)
 2023-06-19 03:53:28 +00:00
Hercules CI Effects
e1ac93c7f8 flake.lock: Update 
Flake lock file updates:

• Updated input 'disko':
    'github:nix-community/disko/55eea2030a42845102334eb29f054f0c6604a32c' (2023-06-12)
  → 'github:nix-community/disko/fa4ec0bd26a103b3aa0d5a60f60399724face977' (2023-06-15)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/1f5a30f31065c3ffdcfa7243b35c75c1e9657f4d' (2023-06-13)
  → 'github:NixOS/nixpkgs/ba1a6ec548000d4a50719d14e6f73f63016674d5' (2023-06-14)
• Updated input 'srvos':
    'github:numtide/srvos/ce0ba41968e69f2e470c6ea580df8f7e3252ff56' (2023-06-13)
  → 'github:numtide/srvos/01d15efe6df0d2988a65beba28d03eff0dae48d4' (2023-06-15)
 2023-06-15 03:09:25 +00:00
zowoq
f12fb44fd1 Revert "hosts/darwin02: use unstable telegraf" 
This reverts commit 83ca767304.

fixed in nixpkgs
 2023-06-14 01:01:41 +00:00
zowoq
1777869057 flake.lock: Update 
Flake lock file updates:

• Updated input 'disko':
    'github:nix-community/disko/5d9f362aecd7a4c2e8a3bf2afddb49051988cab9' (2023-06-08)
  → 'github:nix-community/disko/55eea2030a42845102334eb29f054f0c6604a32c' (2023-06-12)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/3d318cb303f285d2964d4137619cb21ddd56cfd5' (2023-06-11)
  → 'github:NixOS/nixpkgs/1f5a30f31065c3ffdcfa7243b35c75c1e9657f4d' (2023-06-13)
• Updated input 'srvos':
    'github:numtide/srvos/5db34b8c369dad476406ef8ac6382fd019bd07a3' (2023-06-12)
  → 'github:numtide/srvos/ce0ba41968e69f2e470c6ea580df8f7e3252ff56' (2023-06-13)
 2023-06-14 01:01:41 +00:00
zowoq
9b43290fac dev/effect: add set +x 2023-06-14 00:15:26 +00:00
zowoq
0065d9388f dev/effect: refactor 2023-06-14 00:03:51 +00:00
Hercules CI Effects
d48d3ff41f flake.lock: Update 
Flake lock file updates:

• Updated input 'darwin':
    'github:LnL7/nix-darwin/40e4b85baac86969f94d6dba893aeae015c562c1' (2023-06-08)
  → 'github:LnL7/nix-darwin/7c16d31383a90e0e72ace0c35d2d66a18f90fb4f' (2023-06-09)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/58ca986543b591a8269cbce3328293ca8d64480f' (2023-06-08)
  → 'github:NixOS/nixpkgs/3d318cb303f285d2964d4137619cb21ddd56cfd5' (2023-06-11)
• Updated input 'sops-nix':
    'github:Mic92/sops-nix/a522e12ee35e50fa7d902a164a9796e420e6e75b' (2023-06-04)
  → 'github:Mic92/sops-nix/cb85e297937af1bd1434cf5f85a3f86a21dc8207' (2023-06-11)
• Updated input 'srvos':
    'github:numtide/srvos/fdba924a48438ad1cf87d2832cd687ffe9c290e3' (2023-06-08)
  → 'github:numtide/srvos/5db34b8c369dad476406ef8ac6382fd019bd07a3' (2023-06-12)
 2023-06-12 03:01:39 +00:00
zowoq
b3df4976da modules/remote-builder: aarch64-build04 -> build04 2023-06-11 08:27:24 +00:00
zowoq
f76d6c9db4 hosts/build04: drop feature comments 2023-06-11 08:27:24 +00:00
zowoq
dc9f156a42 hosts/darwin02: set system-features 2023-06-11 08:27:24 +00:00
zowoq
6d261cac59 dev/effect: avoid downloading closure on the deploying machine 
copied from 428fa51089
 2023-06-10 22:44:11 +00:00
zowoq
83ca767304 hosts/darwin02: use unstable telegraf 2023-06-10 04:10:13 +00:00
zowoq
91352a4c01 hosts/darwin02: add telegraf 2023-06-10 04:10:13 +00:00
zowoq
10c0ca8dca Revert "darwin02: use patched hercules-ci-agent" 
This reverts commit 6249a81408.

fixed in nixpkgs
 2023-06-09 07:48:49 +00:00
zowoq
cafa9835bc flake.lock: Update 
Flake lock file updates:

• Updated input 'darwin':
    'github:LnL7/nix-darwin/4338bc869e9874d54a4c89539af72f16666b2abe' (2023-05-31)
  → 'github:LnL7/nix-darwin/40e4b85baac86969f94d6dba893aeae015c562c1' (2023-06-08)
• Updated input 'disko':
    'github:nix-community/disko/f1178c6e72b7d8ab2b55990397969324822275eb' (2023-06-07)
  → 'github:nix-community/disko/5d9f362aecd7a4c2e8a3bf2afddb49051988cab9' (2023-06-08)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/32d8e07a8ea673bc9b8c0f8106fb0b776c6ea6a8' (2023-06-07)
  → 'github:NixOS/nixpkgs/58ca986543b591a8269cbce3328293ca8d64480f' (2023-06-08)
 2023-06-09 07:48:49 +00:00
zowoq
df2b560cc4 hosts/darwin02: various 
- add htop to systemPackages

- set timezone
 2023-06-08 21:58:55 +00:00
zowoq
e33afe7f9c effect: add darwin-deploy 2023-06-08 21:48:45 +00:00
Hercules CI Effects
51e87fc33b flake.lock: Update 
Flake lock file updates:

• Updated input 'disko':
    'github:nix-community/disko/d02e565b95bdc68d8d7179a8eae27a1e4b04e507' (2023-06-04)
  → 'github:nix-community/disko/f1178c6e72b7d8ab2b55990397969324822275eb' (2023-06-07)
• Updated input 'hercules-ci-effects':
    'github:hercules-ci/hercules-ci-effects/6d8e62977dc34fd2c187879856ebb6cf1faabba9' (2023-05-31)
  → 'github:hercules-ci/hercules-ci-effects/657935127398706754113c1cea5800798ecb99a7' (2023-06-07)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/3f697e808b31a955462bc0b20b229d4072c99aa7' (2023-06-04)
  → 'github:NixOS/nixpkgs/32d8e07a8ea673bc9b8c0f8106fb0b776c6ea6a8' (2023-06-07)
• Updated input 'srvos':
    'github:numtide/srvos/67cb598ff754419efd6a7745507220c689103077' (2023-05-31)
  → 'github:numtide/srvos/fdba924a48438ad1cf87d2832cd687ffe9c290e3' (2023-06-08)
 2023-06-08 03:32:54 +00:00
zowoq
304c9ddac8 effect: move into /dev 
follow up from a060248b95
 2023-06-08 01:58:36 +00:00
zowoq
c6c8c35e7d effect: use self for src 2023-06-08 01:58:36 +00:00
zowoq
6249a81408 darwin02: use patched hercules-ci-agent 2023-06-06 08:52:37 +00:00
zowoq
6bbadc06be flake: add lib.darwinSystem for inputs 2023-06-06 08:52:37 +00:00
zowoq
628b089424 darwin02: add hercules ci agent 2023-06-06 08:52:37 +00:00
zowoq
9c4b508837 tasks.py: interim support for deploying darwin02 2023-06-06 08:52:37 +00:00
zowoq
fd2cab374b remote-builder-darwin02: init 2023-06-06 08:52:37 +00:00
zowoq
9ad1c65ec6 darwin02: init 2023-06-06 08:52:37 +00:00
zimbatm
a03be316ba secrets: add darwin02 password 2023-06-06 08:52:37 +00:00
zowoq
0594d601a0 flake: remove ciSystems 2023-06-06 08:52:37 +00:00
zowoq
a1aa19ebfc flake.lock: Update 
Flake lock file updates:

• Updated input 'tf-pkgs':
    'github:NixOS/nixpkgs/5751551558d7896ffb30ff3d709b4943bb3eafa8' (2023-05-04)
  → 'github:NixOS/nixpkgs/3f697e808b31a955462bc0b20b229d4072c99aa7' (2023-06-04)

Terraform updates:

terraform-provider-cloudflare: 4.5.0 → 4.7.1
terraform-provider-tfe: 0.44.1 → 0.45.0
 2023-06-06 03:44:44 +00:00
Hercules CI Effects
9e53149e7c flake.lock: Update 
Flake lock file updates:

• Updated input 'disko':
    'github:nix-community/disko/0d270372b21818eba342954220c1a30a7bdaba19' (2023-05-30)
  → 'github:nix-community/disko/d02e565b95bdc68d8d7179a8eae27a1e4b04e507' (2023-06-04)
• Updated input 'flake-parts':
    'github:hercules-ci/flake-parts/6ef2707776c6379bc727faf3f83c0dd60b06e0c6' (2023-05-31)
  → 'github:hercules-ci/flake-parts/71fb97f0d875fd4de4994dfb849f2c75e17eb6c3' (2023-06-01)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/facaddacdd82a5109ff3b3d6b9e56785d9663d2f' (2023-05-31)
  → 'github:NixOS/nixpkgs/3f697e808b31a955462bc0b20b229d4072c99aa7' (2023-06-04)
• Updated input 'sops-nix':
    'github:Mic92/sops-nix/876846cde9762ae563f018c17993354875e2538e' (2023-05-30)
  → 'github:Mic92/sops-nix/a522e12ee35e50fa7d902a164a9796e420e6e75b' (2023-06-04)
 2023-06-05 03:37:18 +00:00
zowoq
fd1fa16251 .github/labeler.yml: add secret file in repo root 2023-06-04 21:44:43 +00:00
zowoq
749bf9322a terraform: update GANDI_KEY 2023-06-02 08:31:58 +00:00