Gleipnir/nixos-systems
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
344 commits 1 branch 0 tags 938 KiB
Commit graph

12 commits

Author SHA1 Message Date
Eli Ribble
bacd06e90f
Update staging server key after rebuild 2026-02-18 15:24:52 +00:00
Eli Ribble
0b8cedf800
Add new staging server key for sops 2026-02-18 05:06:57 +00:00
Eli Ribble
343f999efb
Update host key for corp server 2026-01-13 04:48:16 +00:00
Eli Ribble
c5c612e35e Re-wipe nocix-amd-legacy-sexcore again, update secrets (again) 2026-01-05 03:31:47 +00:00
Eli Ribble
cbb8daebf9 Working nixos-anywhere directly to nocix-amd-legacy-sexcore 
This was essentiall an OS wipe, adding root authorized keys, then
running nix-anywhere out of the main flake. Saves a bunch of steps which
is really nice.

I removed the data disk from the disko config in the hopes it would
solve a problem that looked like:

  ### Installing NixOS ###
  Pseudo-terminal will not be allocated because stdin is not a terminal.
  Warning: Permanently added 'nocix-amd-legacy-sexcore.gleipnir.technology' (ED25519) to the list of known hosts.
  installing the boot loader...
  mkdir: cannot create directory ‘/mnt/sys’: Structure needs cleaning
 2026-01-05 01:29:00 +00:00
Eli Ribble
23a61985dc WIP getting legacy-sexcore back up 
At this point I was able to successfully nixos-anywhere the system and
SSH back in afterwards. That's progress worth keeping.
 2026-01-04 21:07:51 +00:00
Eli Ribble
df208876aa
Add dev_poweredge key 
For building nix binary cache
 2025-12-15 18:47:41 +00:00
Eli Ribble
6f89f0fe56 Add noxic-amd-legacy-hexcore to sops secrets 2025-10-07 17:07:19 +00:00
Eli Ribble
20330304b6 Enable cross-origin requests from minio to label studio 
This allows streaming of audio files directly to label studio
 2025-10-03 15:01:36 +00:00
Eli Ribble
54b79f1437 Switch reverse proxy to also handle s3 API 
Without this we only get the console but can't actually access the
S3-compatible portion of the API
 2025-10-03 15:01:36 +00:00
Eli Ribble
0632df5a30 Add proper Authentik scopes to minio OIDC config 
See https://integrations.goauthentik.io/infrastructure/minio/ for
details that I was following
 2025-10-03 15:01:36 +00:00
Eli Ribble
dad759c4b3 Add minio module for S3-compatible object storage 
Label Studio _really_ prefers using a direct object storage model. Can't
say I blame them, it makes sense given they are running Python.

I had to bump Authentik to not use its default port so that minio could
use its own default port. That seemed safest given that Authentik is
always proxied but minio/S3 may _not_ be. I'm just not sure.
 2025-10-03 15:01:36 +00:00