about summary refs log tree commit diff
AgeCommit message (Collapse)AuthorFilesLines
2022-01-08 r/3559 chore(wpcarro/emacs): Remove tests from buffer.elWilliam Carroll1-21/+0
More cleaning... Change-Id: I4ff450879f0cda9b3a8e8dab61519a4d8c342c91 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4800 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3558 feat(wpcarro/emacs): Prefer Vim style of word-searchingWilliam Carroll1-1/+1
In my opinion the following versions of compound words should be searched similarly... - `testingThisOut` (camel case) - `TestingThisOut` (class case) - `testing_this_out` (snake case) - `testing-this-out` (kebab case) ...but Emacs's default searching treats the snake and kebab cases differently, which makes it difficult to search for buffer-local occurrences of symbols in Python, Elisp (among other languages). This has been bothering me for some time. I must've attempted to fix this awhile ago by using `setq` (when I should've used `customize-set-variable`, which makes me wonder: how much of my configuration is flaky because I'm using `setq` where I should be using `customize-set-variable`? For more context about this change, see `describe-variable` for `evil-symbol-word-search`. Change-Id: Ie03f0da119f59e04abc5de3143aa6edaf6115168 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4804 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3557 feat(wpcarro/emacs): Enhance markdown editing experienceWilliam Carroll1-1/+4
See comments in the code for context. Change-Id: I0791222881788b89612359c0b3b263dc7dc9bd63 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4803 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3556 feat(wpcarro/scratch): create a proof-of-concept blockchain serverWilliam Carroll3-0/+286
> You cannot get educated by this self-propagating system in which people study > to pass exams, and teach others to pass exams, but nobody knows anything. You > learn something by doing it yourself, by asking questions, by thinking, and by > experimenting. > - Richard Feynman In the spirit of learning by doing, I decided to implement a simple blockchain server. More work remains, but I'm tired after working on this for ~2-3h. I'd like to reimplement this from memory using a statically typed language like Haskell. I'd also like to implement node discovery (https://en.bitcoin.it/wiki/Satoshi_Client_Node_Discovery) because that is still something I don't quite understand. But I'm signing-off for now... Change-Id: I74f424e7f52ffbf81eaad420d7d5205da66d33b5 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4802 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3555 feat(wpcarro/emacs): Include *scratch* and *Messages*William Carroll1-1/+5
While these aren't technically source code buffers, but the purpose of `buffer-ivy-source-code` is to create a list of buffers I likely want to switch to, which includes these. Change-Id: If3f7b6afa6282a3fb8d0d4a3f7aa4ee64287df65 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4799 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3554 fix(wpcarro/emcas): Debug "Logout" commandWilliam Carroll1-1/+1
gLinux doesn't use `lightdm.service` (you can confirm this by seeing if `lightdm` is listed in the units reported by calling `systemctl`). I found `gdm` (i.e. Gnome Display Manager), and it appears that calling... ```shell systemctl restart gdm.service ``` ...does the trick. Change-Id: Iff47d20db57ce11138f9af943fe64cc18068f5bb Reviewed-on: https://cl.tvl.fyi/c/depot/+/4798 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3553 fix(wpcarro/simple_vim): Debug simple_vimWilliam Carroll2-15/+9
No need to `mkDerivation` when I'm already using `writeShellScriptBin`. Also: prefer `<CR>` instead of `<Enter>` for consistency reasons. Change-Id: Ida8ecec0bd4e3e8c0fbb1ea34eefd61a0fefb4bc Reviewed-on: https://cl.tvl.fyi/c/depot/+/4797 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3552 fix(wpcarro/emacs): Change display.el to use Display PortWilliam Carroll1-2/+2
I switched cables recently. Change-Id: I6026cf6598f857e02c29a039885336fb3c147ecb Reviewed-on: https://cl.tvl.fyi/c/depot/+/4796 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3551 feat(wpcarro/emacs): Define new deviceWilliam Carroll1-4/+9
For my latest workstation. Change-Id: Idd18c07f05f2afdf57fde25a5aad627759ca1643 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4795 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3550 chore(wpcarro): Update README.mdWilliam Carroll1-2/+4
Format GPG section to (hopefully) improve readability. Change-Id: Ief731ea640efc2233cc691b0b06a46500eef5672 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4794 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3549 feat(wpcarro/gpg): Zip output from configs/.gnupg/export.shWilliam Carroll1-7/+10
This makes it easier to `scp` to the new host. Change-Id: If746a71204c97255547b579252622005b4d13b20 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4793 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3548 feat(wpcarro/cryptopals): Support repeating key cipherWilliam Carroll1-0/+16
I think this is a form of symmetric encryption where the passphrase (e.g. "ICE") is repeated (e.g. "ICEICEICEICEI...") until it matches the length of the cleartext string; after that, the two byte-strings are XOR'd against one another and then encoded as hexadecimal creating the ciphertext. Change-Id: Ib148f06d6c42a41377d1df1f0738d77da935a9f6 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4789 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3547 fix(wpcarro/cryptopals): Update cleartext scoring algorithmWilliam Carroll3-11/+45
Create a frequency table of alphabetic characters by reading each character in "Alice in Wonderland"; use this frequency table to score cleartext when decoding ciphers. Change-Id: Id322af64d792c15231a1a02794f396c46196c207 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4788 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3546 refactor(wpcarro/emacs): Prefer $PATH resolution of scrotWilliam Carroll1-4/+1
...instead of the harder dependency on the installation location. Change-Id: Ifdde2ab8b3b6069c653012ad5599007d4467a188 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4815 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3545 fix(wpcarro/emacs): Support inserting "+" in a vterm terminalWilliam Carroll1-1/+4
Much better :) Change-Id: Ib8efd5db04ae011f634dcd952fdd5875905ec3e6 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4814 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3544 fix(wpcarro/emacs): Restore ability to paste in visual modeWilliam Carroll1-2/+3
I filed an issue with evil in case there's a potential bug-fix or feature: https://github.com/emacs-evil/evil/issues/1537 Change-Id: Ia9293b59696ac693f9bffb4d3505ea8fa2d59784 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4810 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3543 feat(wpcarro/emacs): prefer shorter tab-widthWilliam Carroll1-0/+3
The default of eight spaces seemed excessive. Change-Id: Id5cbbdc557a7b1d467c7c20390f58b00045a50cf Reviewed-on: https://cl.tvl.fyi/c/depot/+/4809 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3542 refactor(wpcarro/emacs): Prefer simpler project-find-fileWilliam Carroll1-15/+4
This version better interacts with google3. Change-Id: Ib65618dbdc7d76a27479a4e0cfc52c079537dc64 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4808 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3541 feat(wpcarro/diogenes): Support monsterpoker.appWilliam Carroll3-0/+50
Deploy dummy Shopify site as both a learning exercise and proof-of-concept for Raf's card game, Monster Poker. Change-Id: I7bc91dcbf4e171c5e169140f5e9d811303e1285f Reviewed-on: https://cl.tvl.fyi/c/depot/+/4787 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3540 chore(wpcarro/diogenes): Update README to consume deploy-diogenesWilliam Carroll1-6/+2
Fixing stale documentation Change-Id: I607dc69377a4db6f9a4a35e39793486c20a8cb4c Reviewed-on: https://cl.tvl.fyi/c/depot/+/4786 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3539 fix(wpcarro/diogenes): Ensure PTR has trailing dotWilliam Carroll1-1/+1
For example see how Google does it: ```shell $ dig google.com 142.250.64.206 $ dig -x 142.250.64.206 mia07s56-in-f14.1e100.net. # <- trailing dot ``` Change-Id: I300ffdc03cc740628a4f07f7822e8fadaf12a57a Reviewed-on: https://cl.tvl.fyi/c/depot/+/4755 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3538 chore(wpcarro/website): Templatize websiteWilliam Carroll5-31/+44
Preferring billandhiscomputer.com in lieu of wpcarro.dev. wpcarro is a bit of a tough username for others to remember and for me to say out-loud (it usually involves me spelling it and explaining to others why Carroll is missing 2x-Ls). I think it's time for a change. During the transition, I don't want to deal with stale links to https://wpcarro.dev, so I'm templatizing more of my website and blog so that these values can be replaced. Expect more forthcoming changes. Change-Id: Ic2f5519e6b0d76fcb8b737bf50009e8388f1b178 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4754 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3537 feat(wpcarro/diogenes): Support PTR record configurationWilliam Carroll1-0/+6
This support reverse-DNS lookups. I encountered a problem where I accidentally deleted my instance's `nat_ip` (external, ephemeral IP). I needed to run... ```shell terraform apply -replace=google_compute_instance.diogenes ``` ...which invalidates terraform's local cache of the state. I believe this used to be called `terraform taint`. Things are mostly WAI, with one known issue: quasselcore and billandhiscomputer.com complain about missing SSL certs, but I believe this is a race-condition. Calling... ```shell systemctl restart quassel.service ``` ...resolves the issue for quassel. Unfortunately the same doesn't work for nginx.service, but after a bit of time https://billandhiscomputer.com "just works". Clearly I'm not sure what's going on here. At least not yet... Change-Id: I9f059655cb6e83d56618b77cfe4ed38283614ef6 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4753 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3536 fix(wpcarro/diogenes): Ensure quassel can read ACME certWilliam Carroll1-0/+3
Add quassel to the nginx group because only user=acme and group=nginx can read /var/lib/acme/* Change-Id: If456b8ebf43ee098cd8007c3c6235c78c1071250 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4752 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3535 feat(wpcarro): Define deploy-diogenes helperWilliam Carroll4-2/+42
TL;DR: - Mimmick depot's bin -> __dispatch.sh for personal utils - Define deploy-diogenes to more tighten my feedback loop Change-Id: I2b12a1c32a955574f5be5d4f38025bd97e9c7b77 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4751 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3534 fix(wpcarro/terraform): Drop source_tags (prefer source_ranges)William Carroll1-1/+1
source_tags means: > the firewall will apply only to traffic with source IP that belongs to a tag > listed in source tags. This mechanism exists (presumably) for local networking between instances that I manage. For ingress traffic, I'd like to open these ports to the wider internet. Change-Id: If0963c853f10f3c205581cce100671714a5f6a3a Reviewed-on: https://cl.tvl.fyi/c/depot/+/4750 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3533 feat(wpcarro/nixos): Include whois in my coreutilsWilliam Carroll1-0/+1
More DNS debugging tools Change-Id: I5ac192a1f8811149ae3eb0133c7d06496753248b Reviewed-on: https://cl.tvl.fyi/c/depot/+/4749 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3532 fix(wpcarro/diogenes): Launch billandhiscomputer.comWilliam Carroll1-52/+51
These are now available at https://billandhiscomputer.com. I still need to update the website copy and transfer wpcarro.dev over from Google Domains. I think I prefer billandhiscomputer (username bill, bill_and_his_computer, bill-and-his-computer, the_real_bill), so I may deprecate wpcarro. We'll see... Change-Id: Ia7831ee4813e2cf639047d22d59d302a50e06e66 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4748 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3531 feat(wpcarro/diogenes): Nixify diogenes's Terraform configurationWilliam Carroll5-178/+331
TL;DR: - Define googleCloudVM function to provision NixOS VMs on Google Cloud. - Consume googleCloudVM in diogenes/default.nix - Define README.md for basic usage instructions (subject to change). - Delete diogenes's HCL - Remove `diogenesSystem` from meta.targets I'm still having trouble with DNS: - I need to transfer the Google Domains config to Cloud DNS - `host billandhiscomputer.com` is NXDOMAIN, so I don't trust my tf DNS config - This is preventing me from getting SSL certs, which blocks my website, quassel Change-Id: If315876c96298e83a5953f13b62784d2f65a1024 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4747 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3530 fix(wpcarro/keys): Append wpcarro@gmail.com to SSH keysWilliam Carroll1-3/+3
I wasn't sure if removing the email portion would be a schema error, but NixOS's GCE image relies on the tripartite structure, and maybe other things do too. Change-Id: I1b045fad974a7227d1980fff19c9d4f48ba58356 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4746 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3529 feat(wpcarro/configs): Define configs/.gitconfigWilliam Carroll1-0/+3
On non-NixOS configs, `git` has been complaining about missing `--global` variables for `user` and `email`. TODO(wpcarro): Support this in google-briefcase instead. Change-Id: Iae29fe9aaa6c13295063137f241eeb5861d4b244 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4792 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3528 chore(wpcarro): Simplify README.mdWilliam Carroll1-5/+12
I rewrote my `README.md` most recently to show some managers what type of side-projects I was working on. After successfully transfering to SRE internally, I don't need the `README.md` to be a marketing document but rather a tutorial for my future self. This change is a step in that direction. Change-Id: Ieaf0e72c8a33a163e6b6adefd76665ca675e8462 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4791 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-08 r/3527 refactor(wpcarro/configs): Nixify configs/{install,uninstall}William Carroll2-6/+25
After receiving another computer from Google and attempting to "easily" install my configuration, I realized that I had some holes. In reality these could (and perhaps should) be easily tested using CI that attempts to cleanly install my configuration on various platfoms (e.g. Debian, NixOS), but I'm not interested in supporting something like that (at least not at the moment). For now, it suffices to nixify some of the lingering shell scripts with implicit dependencies on tools like `stow`. > Don't let perfect be the enemy of good? Change-Id: Ifdeac2c855e46973e3a4ea416418109a748eb41d Reviewed-on: https://cl.tvl.fyi/c/depot/+/4790 Tested-by: BuildkiteCI Reviewed-by: wpcarro <wpcarro@gmail.com> Autosubmit: wpcarro <wpcarro@gmail.com>
2022-01-07 r/3526 feat(ops/auto-deploy): Support emergency stops via stop fileVincent Ambo1-0/+9
Adds a feature to emergency-stop deploys by simply running `touch /var/lib/auto-deploy/stop`. This can be useful in some situations, especially if there is a process that reconciles service state (so that e.g. stopping the unit's timer would be undone). Change-Id: I233dfac365a578bfa4110eb605b50be079974ba4 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4827 Autosubmit: tazjin <tazjin@tvl.su> Tested-by: BuildkiteCI Reviewed-by: grfn <grfn@gws.fyi> Reviewed-by: wpcarro <wpcarro@gmail.com>
2022-01-07 r/3525 chore(cache.tvl.su): Raise cache priority to 50Vincent Ambo1-0/+5
The priority of binary caches is decided by the remotes in Nix (???), and by default nix-serve (which is *very* slow) has a lower priority than cache.nixos.org (which means that it will be preferred over the faster cache for paths that exist on both). To avoid this, override the hardcoded (????) priority by serving the nix-cache-info response directly from nginx instead. Change-Id: I15a2d6618386d16edaf69f1c9257a36bd72132d2 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4823 Tested-by: BuildkiteCI Autosubmit: tazjin <tazjin@tvl.su> Reviewed-by: grfn <grfn@gws.fyi>
2022-01-07 r/3524 revert: "fix(ops/pipelines): Remove duplicated wait step"tazjin1-0/+4
This reverts commit 5e036ed9fc579d14353eb7da4af4b426c99f96e6. Reason for revert: This introduced a logic error since the remaining step runs at the wrong point in the pipeline. Temporarily reverting to having duplicated waits in order to clean up later. Change-Id: Ifa6ece50dd22924f02efd7b790a5863ca1189af7 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4841 Tested-by: BuildkiteCI Reviewed-by: tazjin <tazjin@tvl.su> Autosubmit: tazjin <tazjin@tvl.su>
2022-01-07 r/3523 fix(tazjin/emacs): comment out tdlibCheck while telega is brokenVincent Ambo1-1/+3
telega.el currently throws errors related to some broken internal logic about media codecs, which breaks this check in CI. Change-Id: I8518977dba801dec90b966c84771ff0f59dcbb3d Reviewed-on: https://cl.tvl.fyi/c/depot/+/4824 Tested-by: BuildkiteCI Autosubmit: tazjin <tazjin@tvl.su> Reviewed-by: tazjin <tazjin@tvl.su>
2022-01-06 r/3522 feat(tvix): set up a simple command line parser for nix-storeProfpatsch3-2/+347
We are going to have a 1:1 drop-in replacement for the old-style nix tools, and this starts implementing the cli parser part. The first step is to have a simple integration test suite that can verify that we match the nix CLI. clap is a super complicated parsing library, but looking through the rest they are either too opinioated to be of use for us, or depend on clap as implementation. Change-Id: I4cf6051f3a4f782c3242fd0d2b9eab3fbe33d8ad Reviewed-on: https://cl.tvl.fyi/c/depot/+/4756 Tested-by: BuildkiteCI Reviewed-by: tazjin <tazjin@tvl.su> Autosubmit: Profpatsch <mail@profpatsch.de>
2022-01-06 r/3521 feat(tvix): set up cargo rust projectProfpatsch9-0/+56
First steps for baba Change-Id: Id6a68c5630cb85f280f4dcc7b2acf10c02454fd6 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4732 Tested-by: BuildkiteCI Reviewed-by: tazjin <tazjin@tvl.su>
2022-01-05 r/3520 chore(3p/lisp): remove unused lisp packagesVincent Ambo4-110/+0
Change-Id: Id259341e251170c1caeeab5c9fcb6fbd973372f8 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4816 Autosubmit: tazjin <tazjin@tvl.su> Tested-by: BuildkiteCI Reviewed-by: sterni <sternenseemann@systemli.org>
2022-01-04 r/3519 chore(3p/overlays/emacs): 2021-12-07 -> 2022-01-04sterni1-3/+3
Change-Id: Ib2cbb2f531488e4e86d63e94b163864924c9189f Reviewed-on: https://cl.tvl.fyi/c/depot/+/4783 Tested-by: BuildkiteCI Reviewed-by: tazjin <tazjin@tvl.su>
2022-01-04 r/3518 feat(ops): Add initial oauth2_proxy configurationVincent Ambo4-0/+58
The intent is to configure oauth2_proxy pointing at Keycloak to enable usage with nginx auth_request directives. I want to expose this as a function from within the module in which nginx server configuration blocks can be wrapped, but the function for that is currently a placeholder. Change-Id: I5ed7deb9bf1c62818f516e68c33e8c5b632fccfe Reviewed-on: https://cl.tvl.fyi/c/depot/+/4767 Tested-by: BuildkiteCI Reviewed-by: grfn <grfn@gws.fyi>
2022-01-04 r/3517 chore(ops): Remove login.tvl.fyi moduleVincent Ambo2-25/+0
It looks like we won't need this for oauth2_proxy when combined with nginx auth_request setups. Change-Id: I2294aee6226b4f64a27bf6592c2d18092d0268cc Reviewed-on: https://cl.tvl.fyi/c/depot/+/4766 Tested-by: BuildkiteCI Autosubmit: tazjin <tazjin@tvl.su> Reviewed-by: grfn <grfn@gws.fyi>
2022-01-04 r/3516 fix(emacs-pkgs/nix-util): Fix nix/sly-from-depot functionVincent Ambo1-6/+4
A formatting error broke this at some point (the let clauses were outside of the definition list). Change-Id: Iaa2dc9ad02d2f7e909ca9bf28705e782ad26060b Reviewed-on: https://cl.tvl.fyi/c/depot/+/4765 Tested-by: BuildkiteCI Autosubmit: tazjin <tazjin@tvl.su> Reviewed-by: sterni <sternenseemann@systemli.org> Reviewed-by: grfn <grfn@gws.fyi>
2022-01-04 r/3515 feat(grfn/home): Use mold as rust linkerGriffin Smith1-0/+4
This is *way* faster, as advertised Change-Id: Iad452dc3b3b768331d7de0421f768f82e9b76a60 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4785 Reviewed-by: grfn <grfn@gws.fyi> Autosubmit: grfn <grfn@gws.fyi> Tested-by: BuildkiteCI
2022-01-04 r/3514 fix: address warnings for renamed security.acme.email optionsterni2-2/+2
Can no longer be null and has been renamed to security.acme.defaults.email: https://github.com/nixos/nixpkgs/commit/377c6bcefce8e8ccd471892a1b24621d5a909457 Change-Id: Icac9506185da176365369ed3c7db3c71ffc90b1b Reviewed-on: https://cl.tvl.fyi/c/depot/+/4784 Tested-by: BuildkiteCI Reviewed-by: grfn <grfn@gws.fyi> Autosubmit: sterni <sternenseemann@systemli.org>
2022-01-03 r/3513 chore(3p): bump NixOS channels to 2022-01-02sterni1-6/+6
Change-Id: Ie6882b17380388e20c8d1e9406279c96283b936f Reviewed-on: https://cl.tvl.fyi/c/depot/+/4757 Tested-by: BuildkiteCI Reviewed-by: grfn <grfn@gws.fyi>
2022-01-02 r/3512 fix(ops/pipelines): Realise anchor derivation for rootingVincent Ambo2-4/+4
Turns the anchor derivation into something that can actually be built (a call creating a propagated build inputs file), and builds it. This should fix the anchoring logic we have on canon. Change-Id: If6a7662b82e2e396388980f65e332cf67a45b46e Reviewed-on: https://cl.tvl.fyi/c/depot/+/4763 Tested-by: BuildkiteCI Autosubmit: tazjin <mail@tazj.in> Reviewed-by: sterni <sternenseemann@systemli.org>
2022-01-02 r/3511 refactor(ops/keycloak): Split out clients & user-sourcesVincent Ambo3-106/+113
Without some kind of physical organisation it's a little difficult to understand whether things are going "in" (supplying users to Keycloak) or "out" (getting auth/user info from Keycloak). Change-Id: I516501081e3448c81c710fcbc79cc68ad2a80f3b Reviewed-on: https://cl.tvl.fyi/c/depot/+/4762 Tested-by: BuildkiteCI Reviewed-by: Profpatsch <mail@profpatsch.de>
2022-01-02 r/3510 fix(ops/pipelines): Remove duplicated wait stepVincent Ambo1-4/+0
This now happens in //nix/buildkite instead Change-Id: Ie9e239ee4f28ac34aa4d3279dac55d70a2cb9d86 Reviewed-on: https://cl.tvl.fyi/c/depot/+/4764 Tested-by: BuildkiteCI Reviewed-by: sterni <sternenseemann@systemli.org>