tuxcord/tuxcord.nix
8
2
Fork 1
Code Issues 13 Pull Requests Actions Packages Projects 1 Releases Wiki Activity

Compare commits

base: tuxcord/tuxcord.nix:f517adc341124156d77d93c93c26ab06a1ef0bfd
Branches Tags
tuxcord/tuxcord.nix:main tuxcord/tuxcord.nix:staging tuxcord/tuxcord.nix:styling/forgejo tuxcord/tuxcord.nix:auth/authelia tuxcord/tuxcord.nix:auth/authentik
..
compare: tuxcord/tuxcord.nix:81ae20f672731c4c670da1c4d833fd4399cae81a
Branches Tags
tuxcord/tuxcord.nix:staging tuxcord/tuxcord.nix:styling/forgejo tuxcord/tuxcord.nix:auth/authelia tuxcord/tuxcord.nix:auth/authentik tuxcord/tuxcord.nix:main

6 Commits
f517adc341 .. 81ae20f672

Author SHA1 Message Date
ErrorNoInternet 81ae20f672 treewide: initialize npins
Check / Nix flake (push) Failing after 9s
Details
Lint / Nix expressions (push) Failing after 11s
Details
2026-05-03 19:14:24 -04:00
ErrorNoInternet 5a03f66a34 treewide: refactor code 2026-05-03 19:14:24 -04:00
javalsai a5b2e46586 nixos/security: add acme through dns challenge 
few side refactors of this:
- no more `dns.domain`, it all must rely on `fqdn`, prevents
  inconsistencies.
- also added an specific host `tuxcord-acmetest` that uses the key zone
  for `nix.tuxcord.net` to test certificate pulling.
 2026-05-03 19:13:21 -04:00
javalsai 64c1ea18e0 docs: document installation, secrets and setup steps
Check / Nix flake (push) Failing after 8s
Details
Lint / Nix expressions (push) Failing after 10s
Details
2026-05-03 19:13:21 -04:00
javalsai 1a866719ea nixos/services: make dns configuration easier 2026-05-03 19:13:21 -04:00
javalsai a0125116cd nixos/service: add dns (bind named server) 2026-05-03 19:12:19 -04:00
1 changed files with 15 additions and 11 deletions
Expand all files Collapse all files
nixos/modules/dns.nix
+15 -11
View File
@@ -82,17 +82,21 @@ in
};
};
environment.persistence."/persist" = {
directories = [
{
directory = "/var/dns";
group = "named";
user = "named";
}
];
};
environment.persistence."/persist".directories = [
{
directory = "/var/dns";
group = "named";
user = "named";
}
];
networking.firewall.allowedTCPPorts = [ config.services.bind.listenOnPort ];
networking.firewall.allowedUDPPorts = [ config.services.bind.listenOnPort ];
networking.firewall =
let
ports = [ config.services.bind.listenOnPort ];
in
{
allowedTCPPorts = ports;
allowedUDPPorts = ports;
};
};
}