| 19 May 2024 |
|  kuruczgy joined the room. | 15:39:51 |
| kuruczgy | Hi! Are the nix expressions for the lix infra available somewhere? (In particular I would be interested in Gerrit, e.g. how to set it up with OIDC. The gerrit nixos module seems quite basic and not very helpful.) | 15:45:37 |
 mei 🌒& | iirc lix-project/web-services is privated until they can clean up some secrets from the history(?0 | 15:47:24 |
| mei 🌒& | * iirc lix-project/web-services is privated until they can clean up some secrets from the history(?) | 15:47:25 |
 raitobezarius | yeah there's also an opsec dimension to it, we would need to sit down and review all the code | 15:49:35 |
| raitobezarius | In reply to @kuruczgy:matrix.org
Hi! Are the nix expressions for the lix infra available somewhere? (In particular I would be interested in Gerrit, e.g. how to set it up with OIDC. The gerrit nixos module seems quite basic and not very helpful.) if you are looking for gerrit and oidc, i recommend to look at TVL repos | 15:49:48 |
| raitobezarius | https://cs.tvl.fyi/ | 15:49:50 |
| raitobezarius | in particular: https://cs.tvl.fyi/depot/-/tree/ops | 15:49:59 |
| mei 🌒& | In reply to @raitobezarius:matrix.org
yeah there's also an opsec dimension to it, we would need to sit down and review all the code yeah, sometimes i think about that for my stuff.. it's open and i steal code from other nix users with cs.github. but there's also that, | 15:50:46 |
| mei 🌒& | it's nice to share.. but it's also nice to not get pwned :P | 15:50:56 |
| raitobezarius | my personal biggest problem so far are things like email accounts for example | 15:51:07 |
| raitobezarius | so i usually end up having a split in my monorepo between public and private | 15:51:25 |
| raitobezarius | in the ideal world, i'd like to keep the monorepo and expose the public "part" of the monorepo | 15:51:35 |
| raitobezarius | * in the ideal world, i'd like to keep the monorepo (private) and expose the public "part" of the monorepo via josh or mgt | 15:51:42 |
| mei 🌒& | "us@ckie.dev" = {
hashedPasswordFile = config.cookie.secrets.mailserver-pw-us-hash.dest;
aliases = [ "postmaster@ckie.dev" "work-sbr@ckie.dev" "mei@ckie.dev" ]
++ (util.process (fileContents ../../../secrets/email-salt)
cfg.aliases)
++ import ../../../secrets/more-mailserver-aliases.nix;
quota = "5G";
};
| 15:51:54 |
| kuruczgy | In reply to @ckie:ckie.dev
yeah, sometimes i think about that for my stuff.. it's open and i steal code from other nix users with cs.github. but there's also that, Yeah it's a tricky question, I also keep my configs private for security reasons, but feel bad sometimes that others can't benefit from it | 15:53:48 |
| kuruczgy | In reply to @raitobezarius:matrix.org
in particular: https://cs.tvl.fyi/depot/-/tree/ops I will take a look, thanks! | 15:53:56 |
| raitobezarius | In reply to @ckie:ckie.dev
"us@ckie.dev" = {
hashedPasswordFile = config.cookie.secrets.mailserver-pw-us-hash.dest;
aliases = [ "postmaster@ckie.dev" "work-sbr@ckie.dev" "mei@ckie.dev" ]
++ (util.process (fileContents ../../../secrets/email-salt)
cfg.aliases)
++ import ../../../secrets/more-mailserver-aliases.nix;
quota = "5G";
};
Right | 15:57:49 |
| mei 🌒& | yeah the boundary makes it messier i think | 15:58:11 |
| mei 🌒& | ../../../../../../../../../../../../../../ | 15:58:26 |
 @sigmasquadron:matrix.org | In reply to @ckie:ckie.dev
../../../../../../../../../../../../../../ unironically the contents of most of my imports declarations. | 17:19:59 |
 @sammy:cherrykitten.dev | and i thought the ones where i have two or three levels of .. were bad | 17:46:09 |
 aidalgol | It's leaning toothpicks all over again! D: | 18:42:05 |
 @jade_:matrix.org | In reply to @kuruczgy:matrix.org
Hi! Are the nix expressions for the lix infra available somewhere? (In particular I would be interested in Gerrit, e.g. how to set it up with OIDC. The gerrit nixos module seems quite basic and not very helpful.) i would be willing to get you the data out of there that you care about, you want gerrit configs yeah? | 20:32:49 |
| kuruczgy | In reply to @jade_:matrix.org
i would be willing to get you the data out of there that you care about, you want gerrit configs yeah? Yeah, though the stuff in the TVL repo is already immensely helpful, it would be useful to have multiple references. | 20:34:40 |
| kuruczgy | (I am actually amazed to discover that they are building gerrit from source, based on the discussion previously in this room I was under the impression that nobody has done that in nix yet) | 20:35:28 |
| @jade_:matrix.org | 2 | 20:38:15 |
| @jade_:matrix.org | kuruczgy: https://gist.github.com/lf-/ffc3e0d434649f09ae8c98d602227a22 | 20:38:22 |
| raitobezarius | In reply to @kuruczgy:matrix.org
(I am actually amazed to discover that they are building gerrit from source, based on the discussion previously in this room I was under the impression that nobody has done that in nix yet) no lukegb did it hence why i said we need to get taught how to do it | 20:43:07 |
| @jade_:matrix.org | i am wondering if the build is just in a fod | 20:43:47 |
