summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2025-06-17uid1000-home-environment: consolidate packages in the dedicated fieldMarek Paśnikowski
2025-06-17id1000: change layout of module importsMarek Paśnikowski
2025-06-17systems: update sudoers-file to use the definition in sovereign repositoryMarek Paśnikowski
2025-06-17systems: eliminate dead code related to izumiMarek Paśnikowski
2025-06-16systems: fix the EFI partition mount pointMarek Paśnikowski
2025-06-14ayase: remove unused import of module (suweren services)Marek Paśnikowski
2025-06-07ayase: use the name/home-environment variable for home servicesMarek Paśnikowski
2025-06-07ayase: trim services listMarek Paśnikowski
2025-06-02aisaka: point the schron subdomain to the test directoryMarek Paśnikowski
2025-06-02aisaka: certify the schron subdomainMarek Paśnikowski
2025-06-01aisaka: update dns serial numberMarek Paśnikowski
2025-06-01aisaka: set up the schron subdomainMarek Paśnikowski
2025-05-29aisaka: use a Let’s Encrypt certificate for the test subdomainMarek Paśnikowski
The prototype of the client certificate authentication is suboptimal. The use of a private certificate authority for server authentication causes unnecessary security warnings when loading the subdomain with an unauthenticated browser. Any browser in its default configuration has no right to understand the private certificate authority used for the client and server certificates. It is possible to mix Let’s Encrypt certificates with a private certificate authority to implement the authentication. None of the previously found client authentication guides mentioned that server authentication can use an authority chain different to client authentication. This change takes advantage of this separation of concerns by using a Let’s Encrypt certificate for the test subdomain server, while keeping the private certificate for client authentication.
2025-05-17aisaka: expose nonguix repositoryMarek Paśnikowski
2025-05-13aisaka: limit the publicly visible repositories to only Guix channelsMarek Paśnikowski
2025-05-12Revert "aisaka: uninstall cgit and simplify gitolite"Marek Paśnikowski
This reverts commit ba64ebfe587f05c734f24ace507d22629d350cd8.
2025-05-12aisaka: redefine operating-system*Marek Paśnikowski
2025-05-12aisaka: fix gitolite-service-type importMarek Paśnikowski
2025-05-12aisaka: uninstall cgit and simplify gitoliteMarek Paśnikowski
2025-05-11aisaka: iterate client authenticationMarek Paśnikowski
2025-05-11aisaka: add proxy_set_headers for test.marekpasnikowski.plMarek Paśnikowski
2025-05-11aisaka: configure NGINX client authentication according to DataCadamiaMarek Paśnikowski
2025-05-03aisaka: configure client certificate check on test subdomainMarek Paśnikowski
2025-05-03mcdowell: install openssh serviceMarek Paśnikowski
2025-04-03systems: delete ayase-old.scm fileMarek Paśnikowski
This file is completely useless. It was created as a backup during migration of system declaration files, and never used.
2025-03-15systems: use the nonguix definition of initrdMarek Paśnikowski
The indirect bindings force the Sovereign channel to unnecessarily depend on Nonguix.
2025-03-15systems: use the nonguix definition of kernel directlyMarek Paśnikowski
The indirect bindings force the Sovereign channel to unnecessarily depend on Nonguix.
2025-03-14import systems to deployment channelMarek Paśnikowski
2025-03-13id1000: rename user/home-environment to name/home-environmentMarek Paśnikowski
2025-03-13id1000: define user/home-environmentMarek Paśnikowski
2025-03-13degrade the uid1000-home-environment function to a procedureMarek Paśnikowski
2025-03-13id1000: degrade the %suweren-home-services function to a procedureMarek Paśnikowski
2025-03-09id1000: prefix the (guix records) moduleMarek Paśnikowski
2025-03-09id1000: prefix the (suweren home) moduleMarek Paśnikowski
2025-03-09id1000: prefix the (gnu services) moduleMarek Paśnikowski
2025-03-09id1000: prefix the (gnu packages version-control) moduleMarek Paśnikowski
2025-03-09id1000: prefix the (gnu packages disk) moduleMarek Paśnikowski
2025-03-09id1000: prefix the (gnu home services shells) moduleMarek Paśnikowski
2025-03-09id1000: prefix the (gnu home services) moduleMarek Paśnikowski
2025-03-09uid1000-home-environment: rename services* to l-servicesMarek Paśnikowski
2025-03-09id1000: prefix the (gnu home) moduleMarek Paśnikowski
2025-03-09id1000: uninstall EmacsMarek Paśnikowski
2025-03-09uid1000-home-environment: rearrange whitespaceMarek Paśnikowski
2025-03-03ayase: disable virtualization servicesMarek Paśnikowski
2025-01-10id1000: disable tab-completionMarek Paśnikowski
Tab-completion was too unpredictable for reliable use. Tab-completion in Bash is a feature that enables users to complete commands, file paths, and other arguments by pressing the Tab key. When a user types part of a command or file name and presses Tab, Bash attempts to auto-complete the input based on available options in the current directory or the system's command list. If the input is unique, Bash completes it automatically. If there are multiple possibilities, pressing Tab twice lists all matching options. In practice, the lack of explicit indication of a unique completion led to spamming of the tab key, countering supposed efficiency gains and breaking focus.
2024-11-20feat(systems): retire mcdowell systemMarek Paśnikowski
2024-11-20feat(systems): retire akashi systemMarek Paśnikowski
2024-11-20refactor(akashi): stop using %suweren-servicesMarek Paśnikowski
2024-11-20feat(akashi): include %sovereign-servicesMarek Paśnikowski
2024-11-20fix(akashi): restore the ability to build the systemMarek Paśnikowski
generated by cgit v1.2.3 (git 2.49.0) at 2025-07-03 01:24:57 +0000