2606f1a1c6
tadpole: Scope authorized_keys_command to alex
...
The command was hijacking auth for all users, including `gitea`, which
broke `git push` over SSH — `gitea`'s `authorized_keys` (with the
`gitea serv` command restriction) was being bypassed, and sshd would
try to exec the raw `git-receive-pack` instead.
Pass `%u` to the command and short-circuit unless the requested user
is `alex`, so other users fall back to their own `~/.ssh/authorized_keys`.
2026-06-03 12:58:08 +02:00
7839d2604c
pinwheel/backwards/tadpole: Remove codeberg.org
2026-01-10 13:32:03 +01:00
e8fcf8102c
tadpole: Fix gitea oauth2 issuer URL
...
To have a trailing slash, which is expected of pre gitea 1.25
`tailscale` integrations
2026-01-04 19:31:28 +01:00
e788efc4ff
pinwheel/manatee/backwards: Adjust for updated nixpkgs
2026-01-03 16:41:41 +01:00
200cb8b026
tadpole: Update whib backend host
2025-10-26 21:12:59 +01:00
b7ad1d391f
tadpole: Add whib-frontend service
2025-10-26 16:24:29 +01:00
c478f795f1
tadpole/test-vm: Update WHIB service
...
- Update `WHIB` input
- Update secrets to reflect changes in input
2025-02-02 11:05:59 +01:00
5b21268c54
tadpole: Use port 3001 for gitea
2025-01-03 12:39:41 +01:00
e89a61c6c5
tadpole: Assert that nginx is running when using ppp.pm-site
2025-01-03 11:29:29 +01:00
7ab5cc5b1c
tadpole: Assert that nginx is running when using gitea
2025-01-03 11:29:29 +01:00
6ca1c92a81
tadpole: Add WHIB backend
2025-01-03 11:29:29 +01:00
a333821780
tadpole: Fix gitea reverse proxy host
2024-10-13 20:49:24 +02:00
3ca0a58a04
tadpole: Remove unneeded assertion of existing certs for gitea
2024-09-17 21:11:31 +02:00
cbaba1db4c
tadpole: Clean up nginx and certs modules
2024-09-17 21:11:31 +02:00
3092241f0b
tadpole: Change default email for certs
2024-09-17 21:11:31 +02:00
c9c8939c8e
tadpole: Add match block for git.ppp.pm in ssh
2024-09-17 21:11:31 +02:00
f15701f426
Apply nixfmt
2024-09-02 21:55:41 +02:00
73cd7e9aaa
tadpole: Specify ssh port for gitea
2024-09-01 10:24:40 +02:00
55671ba649
tadpole: Use standard SSH port for gitea
2024-09-01 10:24:40 +02:00
c4bab62de4
tadpole: Add webfinger for gitea
2024-08-30 21:09:35 +02:00
0d5b7fe3f5
tadpole: Extract cert for gitea
2024-08-30 20:49:30 +02:00
4567ba0614
tadpole: Add certs module
2024-08-30 20:47:33 +02:00
a1c93b2165
tadpole: Disable registration in gitea
2024-08-29 20:53:26 +02:00
4ff44969a3
tadpole: Enable gitea
2024-08-29 20:52:32 +02:00
0e5dcd0f71
tadpole: Add gitea module
2024-08-29 20:52:32 +02:00
1f45893928
tadpole: Use option for gc configuration limit
2024-08-18 14:41:41 +02:00
7c6f961b1f
tadpole: Add secrets for ssh machine (root) key
2024-07-29 10:40:07 +02:00
020eb70f1f
tadpole: Move secrets in ssh module
2024-07-29 10:24:55 +02:00
8c303f557a
tadpole: Automatically garbage collect generations
2024-07-27 12:13:47 +02:00
813d896b61
tadpole: Add boot module
2024-07-27 12:13:47 +02:00
390bc08ed1
tadpole: Add ppp.pm-site module
2024-07-25 09:36:31 +02:00
4acb861aa9
tadpole: Add nginx module
2024-07-21 10:52:42 +02:00
04dfe6a48e
tadpole: Add tmux module
2024-07-21 10:45:39 +02:00
fb1cbc0b8a
tadpole: Bind stastic ip
2024-07-21 10:37:16 +02:00
f119c99464
tadpole: Add network module
2024-07-21 10:36:15 +02:00
03a983cd3a
tadpole: Add authorized ssh key for pinwheel
2024-07-20 21:45:13 +02:00
f59344809e
tadpole: Add ssh secrets for codeberg.org
2024-07-20 21:21:36 +02:00
d0b98b48c8
tadpole: Add agenix module
2024-07-20 20:57:14 +02:00
4967e846a8
tadpole: Add ssh module
2024-07-20 20:57:14 +02:00
34cc2ca164
tadpole: Add localisation module
2024-07-20 20:57:14 +02:00
b1d64e8680
tadpole: Add modules directory
2024-07-20 20:57:14 +02:00
Alexander Heldt