kiara/Fediversity
1
0
Fork 0
forked from Fediversity/Fediversity
Code Pull requests Activity
806 commits 107 branches 0 tags 49 MiB
Commit graph

25 commits

Author SHA1 Message Date
Kiara Grouwstra
60093212d7
Revert "Reapply "log to file"" 
This reverts commit 1983508fb1.
 2025-04-12 14:36:21 +02:00
Kiara Grouwstra
1983508fb1
Reapply "log to file" 
This reverts commit b0942bd174.
 2025-04-12 14:10:55 +02:00
Kiara Grouwstra
a41405775e
get ssh socket in prod 2025-04-12 12:31:36 +02:00
Kiara Grouwstra
b0942bd174
Revert "log to file" 
This reverts commit 1a8d940a90.
 2025-04-12 11:36:18 +02:00
Kiara Grouwstra
553753218e
pass vars separately 2025-04-12 11:33:59 +02:00
Kiara Grouwstra
1a8d940a90
log to file 2025-04-12 09:56:00 +02:00
Kiara Grouwstra
551e860b5b
use root user as in #301 - given #297 seems to actually deploy! 2025-04-09 17:04:53 +02:00
Kiara Grouwstra
c1aa71e319
properly pass repo dir for prod, be it with hard-coded TF init 2025-04-09 17:03:43 +02:00
Kiara Grouwstra
3eb6d93216
tf 2025-04-09 17:00:20 +02:00
Kiara Grouwstra
c69f1f52e0 allow accessing test vms from fedi201, closes #286 (#297) 
Reviewed-on: Fediversity/Fediversity#297
Co-authored-by: Kiara Grouwstra <kiara@procolix.eu>
Co-committed-by: Kiara Grouwstra <kiara@procolix.eu>
 2025-04-09 16:58:50 +02:00
Kiara Grouwstra
a5c310ad03 refactor variables (#269) 
Reviewed-on: Fediversity/Fediversity#269
Reviewed-by: Valentin Gagarin <valentin.gagarin@tweag.io>
Co-authored-by: Kiara Grouwstra <kiara@procolix.eu>
Co-committed-by: Kiara Grouwstra <kiara@procolix.eu>
 2025-03-24 10:04:43 +01:00
Kiara Grouwstra
f8ac63853c source htmx by nix (#268) 
Reviewed-on: Fediversity/Fediversity#268
Reviewed-by: Valentin Gagarin <valentin.gagarin@tweag.io>
Co-authored-by: Kiara Grouwstra <kiara@procolix.eu>
Co-committed-by: Kiara Grouwstra <kiara@procolix.eu>
 2025-03-24 08:41:16 +01:00
Valentin Gagarin
de33e888c7 fix typo 2025-03-20 13:11:18 +01:00
Valentin Gagarin
658fa7ff60 add TODO, reformat 2025-03-20 13:09:46 +01:00
Kiara Grouwstra
1caf95dde1
fix CI 2025-03-20 12:56:25 +01:00
Kiara Grouwstra
e13f24eba0
panel service: set NIX_BIN 2025-03-20 11:14:11 +01:00
Valentin Gagarin
3364d6c972 fix: NixOS deployment code 
- simplify the configuration module

  the `package` attribute makes little sense to be user-configurable,
  since it will always need to be the derivation defined in this very
  repository. for debugging one may as well change the original code itself.

- unbreak deployment

  setting `CREDENTIALS_DIRECTORY` disabled the systemd mechanism set up
  in the configuration module.

- remove unneeded configuration for deployment

- unbreak integration tests

  before that missed waiting for the service to create some
  state before running the application-level tests.
 2025-03-19 09:48:41 +01:00
Valentin Gagarin
8f0bcc35f0 fix: run manage in service directory 
for everything else it will error on CHDIR, even if $PWD has the right owner and permissions.
 2025-03-18 09:52:14 +01:00
Valentin Gagarin
438f7d280a add django-pydantic-field 2025-03-05 09:00:18 +01:00
Valentin Gagarin
cba66d1b8b allow adding extra Python packages 2025-03-05 08:57:55 +01:00
Kiara Grouwstra
f828afd5d5
minimum setup i got working for deployment 2025-02-27 09:07:13 +01:00
Valentin Gagarin
92563d387a test login/logout redirection (#163) 
this concludes Fediversity/Fediversity#72 with a test covering most of the user story.

test in the devshell:
```
manage test panel
```

test in full isolation:
```
nix-build -A tests
```

Reviewed-on: Fediversity/Fediversity#163
Reviewed-by: kiara Grouwstra <kiara@procolix.eu>
 2025-02-19 23:07:51 +01:00
Valentin Gagarin
65782c65ba add debug toolbar 2025-02-18 18:25:37 +01:00
kevin
ed4912800f Add page showing account info 
Co-authored-by: lois <lois@procolix.eu>
Co-authored-by: Kiara Grouwstra <kiara.grouwstra@gmail.com>
 2025-02-18 15:44:15 +01:00
Valentin Gagarin
7c33e8aaf3 scaffold Django web service 
This setup is greatly inspired by the one used for [0], although with
notable modifications, such as:
- a SASS preprocessor and CSS compressor
- more streamlined NixOS integration tests
- cleaned up service configuration
- a few notes on how to do things better in the future

[0]: https://github.com/Nix-Security-WG/nix-security-tracker/

Apart from cloning the Nix setup, there were additional steps:
- Create an empty `src` directory, since the package requires it
- In the development shell, run `django-admin startproject panel src`

Note that while you can already do

```bash
manage migrate
manage runserver
```

the NixOS integration tests will fail, since `settings.py` needs
careful massaging to expose knobs that can be turned from our systemd
wrapper. The required changes are introduced in the next commit to make
them observable.

Noteworthy related work:

- https://github.com/sephii/django.nix

  Rather mature setup with a clean interface, uses Caddy as reverse proxy.

- https://git.dgnum.eu/mdebray/djangonix

  A work-in-progress attempt to capture more moving parts through the
  module system, in particular secrets.

- https://github.com/DavHau/django-nixos

  Out of date and somewhat simplistic, but serves as a reasonable
  example for what can be done

I chose the variant I'm intimately familiar with in order to be able to
pass on knowledge or help with maintenance. But for the future
I strongly recommend picking the good bits from the other
implementations that control complexity in static configuration parts
through Nix expressions.
 2025-02-13 00:26:28 +01:00