452cfe37df
feat: CDKTF | migrate longhorn to cdktf
2025-07-15 09:10:04 +05:00
5bfb72ef81
feat: CDKTF | migrate postgres to CDKTF
2025-07-14 21:09:38 +05:00
cde19a0d73
chore: CDKTF | cleanup
2025-07-14 13:37:49 +05:00
9e2a57c0eb
feat: OnePassword | migrate to CDKTF ( #4 )
...
Reviewed-on: #4
2025-07-14 08:28:39 +00:00
1be613bedf
feat: Gitea | migrate helm chart into CDKTF ( #3 )
...
Reviewed-on: #3
2025-07-14 07:50:57 +00:00
2cca9727ce
feat: Flake | add nil ls for nix
2025-06-21 13:05:34 +05:00
afc4877e4c
fix: Postgres | increase WAL storage capacity
2025-06-21 12:59:48 +05:00
5fa157cf59
fix: Flake | update node from 20 to 24 for copilot
2025-06-21 12:59:34 +05:00
f1038939f4
chore: Flake | switch to flakehub for nixpkgs
...
The GitHub CDN is slow af
2025-06-21 12:59:19 +05:00
c7e85bab5c
fix: Cloudflare | add non proxied domain routes
2025-05-14 12:38:14 +05:00
ecd83b7c30
fix: NixOS | remove wireguard
2025-03-18 12:50:05 +05:00
0aaac76a82
chore: NixOS | update wireguard client pubkey
2025-03-18 12:37:05 +05:00
ab9f4324ce
feat: Cloudflare | add vpn.dogar.dev to dns
2025-03-18 12:22:19 +05:00
8838707e60
fix: NixOS | add dns settings to wireguard
2025-03-18 12:22:02 +05:00
34f2aa5283
fix: NixOS | public key again
2025-03-18 12:02:58 +05:00
714442fca2
fix: NixOS | update pubkey for wireguard
2025-03-18 11:57:02 +05:00
e54ebc5f0c
fix: NixOS | name the peer and fix invalid syntax
2025-03-18 11:50:01 +05:00
3f7b5e23c1
fix: NixOS | misnamed wireguard public key
2025-03-18 11:42:28 +05:00
70c9a6af9e
feat: NixOS | install wireguard server
2025-03-18 11:34:05 +05:00
699511e864
chore: NixOS | cleanup unused vars and references
2025-01-31 16:48:48 +05:00
17a31970dd
chore: remove wikijs secret
2025-01-31 16:48:27 +05:00
b1d0162eb6
fix: remove wikijs and update cnpg operator
2025-01-29 21:42:59 +05:00
3257b51613
chore: update flake.nix
2025-01-29 21:31:59 +05:00
96be97beb8
fix: WikiJS | finish setup
2024-12-23 17:48:17 +05:00
bf716f834b
feat: WikiJS | initial setup
2024-12-23 16:02:46 +05:00
3191171228
fix: remove git.dogar.dev from proxied domains
2024-12-16 19:09:33 +05:00
737fca6481
feat: Authentik | upgrade to 2024.10.5
2024-12-11 13:51:00 +05:00
30243d86db
fix: Authentik | update version + add rihla auth domain
2024-11-30 15:18:22 +05:00
b1de30cb87
chore: enable proxied dns routes
2024-11-20 15:04:28 +05:00
c8257741e1
feat: add nix flake for development
2024-11-20 15:03:20 +05:00
e503427098
fix: 1Password | add cloudflare token secret
2024-11-18 13:49:20 +05:00
6dd312ea13
feat: Longhorn | set up automatic backups to R2
2024-10-24 20:11:41 +05:00
33f03970f8
chore: Minio | remove minio
2024-10-24 17:20:42 +05:00
df97a4ca38
feat: Minio | create operator and tenant helm deployments
2024-10-24 17:15:24 +05:00
653ff659f6
fix: ExternalDNS | use pihole secure domain through ingress
2024-10-24 14:13:51 +05:00
d4dd6bac73
fix: CoreDNS | configure sequential nameserver usage
...
This is required for core dns to pick the correct nameservers as
configured by the host's resolv.conf file, according to
https://github.com/k3s-io/k3s/discussions/7822
2024-10-24 13:49:41 +05:00
4f3b705305
fix: PiHole | remove dnsmasq hosts and use Cloudflare backup DNS
2024-10-24 13:49:41 +05:00
0d4f700b89
feat: NixOS | use LUKS and proper hostname for k3s domain
...
feat: NixOS | move cluster config to /master
fix: update all stuff for office network
feat: PiHole | set up DHCP server
chore: Cloudflare | delete api token secret
chore: remove external-dns annotations from ingressed services
fix: PiHole | turn off liveness checks due to host ip
fix: GiteaActions | use encrypted storage for runner
fix: ElasticSearch | use encrypted volumes for storage
fix: Pihole | static mac addresses all caps
feat: NixOS | manual network configuration
fix: NixOS | k3s cluster init point to static ip with tls-san
chore: Postgres | move certificate resources into own file + reduce volume size
fix: Pihole | add ingress class name
sec: NixOS | remove token from git
2024-10-24 13:49:41 +05:00
38e5e53fd9
fix: ElasticSearch | using clusterIP was a mistake
2024-10-13 17:35:32 +05:00
5f0cd94f34
chore: use RSA certificates and clusterIP on elasticsearch
2024-10-12 22:31:52 +05:00
f8d7470ee6
fix: ElasticSearch | use single node cluster
2024-10-12 21:55:57 +05:00
f54e6f11de
chore: Network | use nginx as much as possible
2024-10-12 21:11:06 +05:00
058666330a
feat: Gitea | enable smtp mail
2024-10-12 18:58:26 +05:00
db935d355c
fix: Gitea | use redis for queue
2024-10-12 18:26:54 +05:00
70736f440e
fix: Gitea | use https endpoint in action runners
2024-10-12 16:05:22 +05:00
6d8afdefb6
feat: ElasticSearch | set up https for service
2024-10-12 13:35:14 +05:00
b313b746df
feat: Authentik | set up for HA
2024-10-12 13:34:58 +05:00
80a6b9c49c
feat: Authentik | set up authentik + dependencies
...
Includes redis and changes to pihole, nginx, prometheus and gitea
2024-10-12 09:31:50 +05:00
5a7fccdfa1
feat: Cloudflare | set up DDNS container
2024-10-12 09:31:16 +05:00
dea64bc039
feat: ElasticSearch | add elasticsearch cluster
2024-10-12 09:30:49 +05:00
