···
A list of things to do, in no particular order.
4
-
* [ ] Move to colmena and start using it for deployments.
5
-
* https://sourcegraph.com/github.com/kradalby/dotfiles/-/blob/flake.nix?L180%3A7=
6
-
* https://sourcegraph.com/search?q=context%3Aglobal+lang%3ANix+file%3Aflake.nix+colmena&patternType=standard&sm=1&groupBy=repo
7
-
* [ ] De-duplicate code throughout the tree(ongoing)
8
-
* [ ] ~~Move metadata and any other things of that nature into data/ folder for easier management.~~ not currently planned
9
-
* [ ] Secrets should be in a global folder
10
-
* Central Key management is the big idea
11
-
* Easier to maintain a single folder for secrets
12
-
* Also means secrets can be shared between machines if needed
13
-
* TODO: Get backups of all keys for restoration later if needed
5
+
- [ ] Move to deploy-rs and start using it for deployments.
6
+
- https://sourcegraph.com/github.com/kradalby/dotfiles/-/blob/flake.nix?L180%3A7=
7
+
- https://sourcegraph.com/search?q=context%3Aglobal+lang%3ANix+file%3Aflake.nix+colmena&patternType=standard&sm=1&groupBy=repo
8
+
- [ ] De-duplicate code throughout the tree(ongoing)
9
+
- [ ] Move metadata and any other things of that nature into data/ folder for easier management.
10
+
- [ ] Secrets should be in a global folder
11
+
- Easier to maintain a single folder for secrets
12
+
- Also means secrets can be shared between machines if needed
13
+
- TODO: Get backups of all keys for restoration later if needed
17
-
* [ ] Add Attic and use as an internal binary cache
18
-
* [ ] https://colmena.cli.rs/unstable/introduction.html
19
-
* [ ] Switch Authentik from Docker to Authentik-nix
20
-
* https://github.com/nix-community/authentik-nix
21
-
* [ ] Move all Docker containers to using native versions of databases, redis, etc.
22
-
* Ensures higher performance and reduces the number of running containers.
23
-
* https://github.com/felschr/nixos-config/blob/main/services/immich.nix for an example of how to do it
24
-
* Look at removing other unused services
25
-
* [x] Add Forgejo Actions runner
26
-
* Gives me a way to run actions
27
-
* [x] Tailscale ACL GitOps
28
-
* ~~Automatic updates of machines on push?~~
29
-
* [ ] Add Prosody XMPP Server
30
-
* [ ] XEP-0215 - Need Coturn TURN+STUN server
31
-
* Move DNS Records to a Git repo
32
-
* Auto-update by pushing a BIND file via the ClouDNS API
33
-
* Should be easy to move to a provider like DNS.Kitchen(from Neatnik)
34
-
* Simple Python script that runs from a forgejo action
35
-
* [ ] Deploy [Garage](https://garagehq.deuxfleurs.fr/) for S3 storage
36
-
* Can use for Forgejo storage as well as for Attic.
37
-
* Also for [Authentik](https://docs.goauthentik.io/docs/installation/storage-s3)
17
+
- [ ] Add Attic and use as an internal binary cache
18
+
- [ ] https://docs.attic.rs/
19
+
- [ ] Switch Authentik from Docker to Authentik-nix
20
+
- https://github.com/nix-community/authentik-nix
21
+
- [ ] Move all Docker containers to using native versions of databases, redis, etc.
22
+
- Ensures higher performance and reduces the number of running containers.
23
+
- https://github.com/felschr/nixos-config/blob/main/services/immich.nix for an example of how to do it
24
+
- Look at removing other unused services
25
+
- [ ] Add Prosody XMPP Server
26
+
- [ ] XEP-0215 - Need Coturn TURN+STUN server
27
+
- [x] Add Forgejo Actions runner
28
+
- Gives me a way to run actions
29
+
- [x] Tailscale ACL GitOps
30
+
- Automatic updates of machines on push?
42
-
* Nothing currently!
34
+
- Nothing currently!
38
+
- [ ] Make DN42 configuration better
42
+
- Move DNS Records to a Git repo
43
+
- Auto-update by pushing a BIND file via the ClouDNS API
44
+
- Should be easy to move to a provider like DNS.Kitchen(from Neatnik)
45
+
- Simple Python script that runs from a forgejo action
49
-
* Already partially set up,
50
+
- Already partially set up,
pyrox.dev