Add ntfy

2024-10-02 21:13:55 +02:00 · 2024-10-02 21:13:55 +02:00 · 20a8e60e84
commit 20a8e60e84
parent 57a46ae5ba
7 changed files with 32 additions and 4 deletions
--- a/common/etc/ssh/sshd_config
+++ b/common/etc/ssh/sshd_config
@ -9,5 +9,4 @@ PubkeyAcceptedKeyTypes sk-ssh-ed25519@openssh.com,ssh-ed25519
 Ciphers chacha20-poly1305@openssh.com
 AllowUsers root
 Subsystem sftp internal-sftp
-ClientAliveInterval 60
 Include /usr/etc/ssh/sshd_config.d/40-ssh-key-dir.conf
--- a/container-config/nginx-home/push
+++ b/container-config/nginx-home/push
@ -0,0 +1,14 @@
+server {
+  server_name push.strypsteen.com;
+  listen 443 ssl;
+  listen [::]:443 ssl;
+  include snippets/headers.conf;
+  location / {
+    set $upstream home.server.home.arpa;
+    proxy_pass http://$upstream:8003;
+    include snippets/proxy.conf;
+    proxy_http_version 1.1;
+    proxy_set_header Connection upgrade;
+    proxy_set_header Upgrade $http_upgrade;
+  }
+}
--- a/containers/code-server/Containerfile
+++ b/containers/code-server/Containerfile
@ -1,6 +1,6 @@
 FROM quay.io/fedora/fedora-toolbox:41
 RUN dnf up -y
-RUN dnf install -y bash-color-prompt clang gcc hyperfine java-devel libvirt llvm mtools nodejs-npm openssl-devel parted poetry postgresql-server python3-ipykernel python3-pip qemu-system-x86-core rustup systemd-container vim-enhanced
+RUN dnf install -y bash-color-prompt clang clang-tools-extra gcc hyperfine java-devel libvirt llvm mtools nodejs-npm openssl-devel parted poetry postgresql-server python3-ipykernel python3-pip qemu-system-x86-core rustup systemd-container vim-enhanced
 RUN dnf install -y https://github.com/coder/code-server/releases/download/v4.93.1/code-server-4.93.1-amd64.rpm
 RUN mkdir /etc/systemd/system/user@.service.d
 RUN mkdir /var/lib/systemd/linger
--- a/home/etc/containers/systemd/ntfy.container
+++ b/home/etc/containers/systemd/ntfy.container
@ -0,0 +1,15 @@
+[Container]
+Image=docker.io/binwiederhier/ntfy
+Network=nginx.network
+Exec=serve
+Volume=ntfy.volume:/var/lib/ntfy:U,Z
+Environment=NTFY_AUTH_DEFAULT_ACCESS=write-only
+Environment=NTFY_AUTH_FILE=/var/lib/ntfy/auth.db
+Environment=NTFY_BASE_URL=https://push.strypsteen.com
+Environment=NTFY_BEHIND_PROXY=true
+Environment=NTFY_CACHE_FILE=/var/lib/ntfy/cache.db
+Environment=NTFY_ENABLE_LOGIN=true
+PublishPort=10.0.1.2:8003:80
+AutoUpdate=registry
+[Install]
+WantedBy=multi-user.target
--- a/home/etc/containers/systemd/ntfy.volume
+++ b/home/etc/containers/systemd/ntfy.volume
--- a/infra/etc/containers/systemd/loki.container
+++ b/infra/etc/containers/systemd/loki.container
@ -1,7 +1,7 @@
 [Container]
 Image=docker.io/grafana/loki
 Network=nginx.network
-Exec=-config.file=/etc/loki/local-config.yaml -log.level=warn -reporting.enabled=false
+Exec=-config.file=/etc/loki/local-config.yaml -log.level=warn -reporting.enabled=false -querier.split-queries-by-interval=24h
 Volume=loki.volume:/loki:U,Z
 AutoUpdate=registry
 [Install]
--- a/k8s/talos.yaml
+++ b/k8s/talos.yaml
@ -1,6 +1,6 @@
 machine:
  install:
-    image: factory.talos.dev/installer-secureboot/ce4c980550dd2ab1b17bbf2b08801c7eb59418eafe8f279833297925d67c7515:v1.7.6
+    image: factory.talos.dev/installer-secureboot/ce4c980550dd2ab1b17bbf2b08801c7eb59418eafe8f279833297925d67c7515:v1.8.0
  systemDiskEncryption:
    state:
      provider: luks2