kiara/Fediversity
1
0
Fork 0
forked from Fediversity/Fediversity
Code Pull requests Activity
772 commits 107 branches 0 tags 49 MiB
Commit graph

11 commits

Author SHA1 Message Date
Kiara Grouwstra
dd5a6335b1
proxmox 
pass in description

fix syntax

configure proxmox provider

typo

add doc comment in existing modules

add comment

allow insecure proxmox connection for use in dev

wip proxmox progress

use service configurations moved to machine-independent location

wire settings directly without option block terraform

adjust cwd

try tf on null input

update .envrc.sample with sample proxmox credentials
 2025-05-11 19:22:49 +02:00
Kiara Grouwstra
c69f1f52e0 allow accessing test vms from fedi201, closes #286 (#297) 
Reviewed-on: Fediversity/Fediversity#297
Co-authored-by: Kiara Grouwstra <kiara@procolix.eu>
Co-committed-by: Kiara Grouwstra <kiara@procolix.eu>
 2025-04-09 16:58:50 +02:00
Kiara Grouwstra
a5c310ad03 refactor variables (#269) 
Reviewed-on: Fediversity/Fediversity#269
Reviewed-by: Valentin Gagarin <valentin.gagarin@tweag.io>
Co-authored-by: Kiara Grouwstra <kiara@procolix.eu>
Co-committed-by: Kiara Grouwstra <kiara@procolix.eu>
 2025-03-24 10:04:43 +01:00
Valentin Gagarin
de33e888c7 fix typo 2025-03-20 13:11:18 +01:00
Valentin Gagarin
658fa7ff60 add TODO, reformat 2025-03-20 13:09:46 +01:00
Kiara Grouwstra
1caf95dde1
fix CI 2025-03-20 12:56:25 +01:00
Kiara Grouwstra
e13f24eba0
panel service: set NIX_BIN 2025-03-20 11:14:11 +01:00
Valentin Gagarin
3364d6c972 fix: NixOS deployment code 
- simplify the configuration module

  the `package` attribute makes little sense to be user-configurable,
  since it will always need to be the derivation defined in this very
  repository. for debugging one may as well change the original code itself.

- unbreak deployment

  setting `CREDENTIALS_DIRECTORY` disabled the systemd mechanism set up
  in the configuration module.

- remove unneeded configuration for deployment

- unbreak integration tests

  before that missed waiting for the service to create some
  state before running the application-level tests.
 2025-03-19 09:48:41 +01:00
Valentin Gagarin
8f0bcc35f0 fix: run manage in service directory 
for everything else it will error on CHDIR, even if $PWD has the right owner and permissions.
 2025-03-18 09:52:14 +01:00
Kiara Grouwstra
f828afd5d5
minimum setup i got working for deployment 2025-02-27 09:07:13 +01:00
Valentin Gagarin
7c33e8aaf3 scaffold Django web service 
This setup is greatly inspired by the one used for [0], although with
notable modifications, such as:
- a SASS preprocessor and CSS compressor
- more streamlined NixOS integration tests
- cleaned up service configuration
- a few notes on how to do things better in the future

[0]: https://github.com/Nix-Security-WG/nix-security-tracker/

Apart from cloning the Nix setup, there were additional steps:
- Create an empty `src` directory, since the package requires it
- In the development shell, run `django-admin startproject panel src`

Note that while you can already do

```bash
manage migrate
manage runserver
```

the NixOS integration tests will fail, since `settings.py` needs
careful massaging to expose knobs that can be turned from our systemd
wrapper. The required changes are introduced in the next commit to make
them observable.

Noteworthy related work:

- https://github.com/sephii/django.nix

  Rather mature setup with a clean interface, uses Caddy as reverse proxy.

- https://git.dgnum.eu/mdebray/djangonix

  A work-in-progress attempt to capture more moving parts through the
  module system, in particular secrets.

- https://github.com/DavHau/django-nixos

  Out of date and somewhat simplistic, but serves as a reasonable
  example for what can be done

I chose the variant I'm intimately familiar with in order to be able to
pass on knowledge or help with maintenance. But for the future
I strongly recommend picking the good bits from the other
implementations that control complexity in static configuration parts
through Nix expressions.
 2025-02-13 00:26:28 +01:00