- Break systemd ordering deadlock: nginx.after mkForce removes DNS-challenge ACME services (philippeterson, webdav) from nginx's After list, which was creating a cycle through nginx-config-reload back to HTTP-webroot ACME services that need nginx Before them. - Fix arion services not finding podman socket: arion NixOS module sets backend=podman-socket but doesn't inject DOCKER_HOST; add explicit DOCKER_HOST=unix:///run/podman/podman.sock for all three arion projects. - Fix gitea-runner startup race: add After/Wants on arion-forgejo so the runner doesn't try to register before Forgejo is up. - Fix riverside image reference: pinned digest was stale after a re-push; switch to :latest. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| .github/workflows | ||
| arion | ||
| arion-riverside | ||
| arion-vnc | ||
| cloned_repos | ||
| invoke-ddns | ||
| keys | ||
| pdxdestiny | ||
| pullomatic | ||
| secrets | ||
| system | ||
| vnc-desktop | ||
| .gitignore | ||
| apply.sh | ||
| CLAUDE.md | ||
| clean.sh | ||
| disk-config.nix | ||
| firewall.nix | ||
| flake.lock | ||
| flake.nix | ||
| format.sh | ||
| globals.json | ||
| hetzner.nix | ||
| linux.nix | ||
| nfsn_ddns-0.2.0-py3-none-any.whl | ||
| nginx.nix | ||
| podman.nix | ||
| README.md | ||
| README_VNC.md | ||
| refresh.sh | ||
How to install:
nix --extra-experimental-features flakes --extra-experimental-features nix-command run --debug github:numtide/nixos-anywhere --verbose -- --flake .#nixos root@yourhost.com
You will need to maually make these:
/root/.ssh/id_rsa
/root/.ssh/id_rsa.pub
/root/.ssh/id_rsa.pem