| Age | Commit message (Collapse) | Author |
|---|
|
Since the build script uses commit dates to infer authoring dates, a
shallow clone makes all posts appear to have been published at the time
of the most recent commit.
|
|
|
|
Don't know how I managed to not catch this in c7a5082.
|
|
|
|
|
|
|
|
|
|
This patch makes it so common configuration is now located in shared/
and each host basically just becomes a bunch of import statements.
The exception here is host-specific configuration like the `*.linus.onl`
that live inside `hosts/ahmed/`.
Specifically I have:
- moved common configuration `shared/{nixos,home-manager,nix-darwin}`.
- moved `hosts/common.nix` to `shared/nixos/common-{nix,shell}-settings.nix`.
- split `hosts/muhammed/{dev-utils,neovim}` into per-language
configuration.
This patch was done in preparation for the arrival of a new host, which
will need to share a lot of configuration with Muhammed.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
This is a bit of an experiment. With this approach, I should be able to
remotely and asynchronously update this host.
|
|
|
|
|
|
After attempting to use this configuration on another device, it turns
out that the persistent data directories were being created with the
wrong permissions.
|
|
|
|
I thought this restriction was already being enforced since I set
systemd.services."${domain}-source".after = ["network-online.target"]
but that apparently wasn't enough. I had to also ensure the timer, which
triggered the service was ordered after "network-online.target".
|
|
|
|
|
|
CGit farms out the handling of the HTTP requests sent by the Git CLI to
another CGI script. This script was failing because of "dubious
ownership". This is a security check run by Git to ensure malicious
repositories on network drives don't get arbitrary code execution. The
problem is: the CGI script was running as root, as that is what the
fcgiwrap systemd service was configured for, but the repository is owned
by the 'git' user.
Since I trust the repositories, I had to patch Git to ignore this mark.
Actually getting the NixOS CGit module to use the patched version of Git
proved rather difficult...
In the future I should probably
a) Make sure fcgiwrap isn't running as root since it directly interacts
with all sorts of untrusted user input.
b) Remove this ugly hack. There's a reason for the security check after
all. Just because it matters _less_ in this case doesn't mean it's
wise to ignore it completely.
|
|
|
|
The white background is pretty eye-soaring at night. This patch fixes
this issue by using a CSS query parameter to set darker styles when dark
mode is enabled.
See: https://css-tricks.com/dark-modes-with-css/
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
It now takes an alternative domain, which was added to it's services.
|
|
|
|
This patch moves in the reorganizational work done on the reorg branch,
mainly:
* Move host-specific modules into hosts/<host>/<module>
* Break up HM config
See the reorg branch for the individual commits.
|
|
This reverts commit a66aa6ad9d18af2983746dcf73ecdf1bc862a5dc.
It is no longer winter break.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
My home computer has changed, but since it has almost exactly the same
assignments as before I decided to keep the hostname the same.
I guess I'll save "fathima" for my next computer...
|
|
|
|
|
