| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2025-05-29 | aisaka: use a Let’s Encrypt certificate for the test subdomain | Marek Paśnikowski | |
| The prototype of the client certificate authentication is suboptimal. The use of a private certificate authority for server authentication causes unnecessary security warnings when loading the subdomain with an unauthenticated browser. Any browser in its default configuration has no right to understand the private certificate authority used for the client and server certificates. It is possible to mix Let’s Encrypt certificates with a private certificate authority to implement the authentication. None of the previously found client authentication guides mentioned that server authentication can use an authority chain different to client authentication. This change takes advantage of this separation of concerns by using a Let’s Encrypt certificate for the test subdomain server, while keeping the private certificate for client authentication. | |||
| 2025-05-17 | aisaka: expose nonguix repository | Marek Paśnikowski | |
| 2025-05-13 | aisaka: limit the publicly visible repositories to only Guix channels | Marek Paśnikowski | |
| 2025-05-12 | Revert "aisaka: uninstall cgit and simplify gitolite" | Marek Paśnikowski | |
| This reverts commit ba64ebfe587f05c734f24ace507d22629d350cd8. | |||
| 2025-05-12 | aisaka: redefine operating-system* | Marek Paśnikowski | |
| 2025-05-12 | aisaka: fix gitolite-service-type import | Marek Paśnikowski | |
| 2025-05-12 | aisaka: uninstall cgit and simplify gitolite | Marek Paśnikowski | |
| 2025-05-11 | aisaka: iterate client authentication | Marek Paśnikowski | |
| 2025-05-11 | aisaka: add proxy_set_headers for test.marekpasnikowski.pl | Marek Paśnikowski | |
| 2025-05-11 | aisaka: configure NGINX client authentication according to DataCadamia | Marek Paśnikowski | |
| 2025-05-03 | aisaka: configure client certificate check on test subdomain | Marek Paśnikowski | |
| 2025-03-15 | systems: use the nonguix definition of initrd | Marek Paśnikowski | |
| The indirect bindings force the Sovereign channel to unnecessarily depend on Nonguix. | |||
| 2025-03-15 | systems: use the nonguix definition of kernel directly | Marek Paśnikowski | |
| The indirect bindings force the Sovereign channel to unnecessarily depend on Nonguix. | |||
| 2025-03-14 | import systems to deployment channel | Marek Paśnikowski | |
 |
index : deployment.git | |
| [no description] | Gitolite user |
| summaryrefslogtreecommitdiff |