| Age | Commit message (Collapse) | Author | 
|---|
|  | * guix/forge/nginx.scm, doc/snippets/acme-restart-nginx-sudoers.scm:
New files.
* doc/forge.skb (Services)[forge nginx service]: Document the
forge-nginx service. | 
|  | * guix/forge/acme.scm: Import shadow from (gnu packages admin),
nss-certs from (gnu packages certs), (gnu services), (gnu services
mcron), (gnu system shadow), (guix diagnostics), (guix i18n), (guix
profiles), (guix records), (srfi srfi-1) and (ice-9 match).
(%letsencrypt-production-url, %letsencrypt-staging-url): New
variables.
(<acme-configuration>, <acme-rsa-key>, <acme-ecdsa-key>,
<acme-certificate>): New record types.
(acme-http-01-webroot-authorization-hook,
acme-http-01-webroot-cleanup-hook): New public functions.
(acme-key-length, uacme-hook, acme-activation, acme-renew,
acme-helper, acme-helper-sudo-wrapper, acme-special-files,
acme-cron-job, raise-to-top): New functions.
(%acme-accounts, acme-service-type): New variables.
* doc/forge.skb (Services)[ACME service]: New section. | 
|  | * guix/forge/acme.scm: New file. | 
|  | * guix/forge/socket.scm (<forge-host-socket>): New record type.
* doc/forge.skb (Reference): Document <forge-host-socket>. | 
|  | * guix/forge/gunicorn.scm (socket->gunicorn-bind): Squeeze adjacent
strings "]" and ":" into one. | 
|  | * guix/forge/gunicorn.scm (gunicorn-shepherd-services): Mention app
name in documentation field. | 
|  | * guix/forge/klaus.scm (klaus-gunicorn-app): Change default socket to
/var/run/gunicorn/klaus/socket. | 
|  | * guix/forge/gunicorn.scm (<gunicorn-app>): Add this-gunicorn-app
self-reference.
[sockets]: Make field thunked. Set default to Unix socket. | 
|  | * guix/forge/klaus.scm: Import (forge socket).
(klaus-gunicorn-app): Make sockets a keyword argument with a singleton
list of Unix sockets as the default. | 
|  | * guix/forge/klaus.scm: Import (forge gunicorn) and (gnu system
file-systems).
(klaus-gunicorn-app): New public function.
* doc/forge.skb (Introduction): Advertise klaus support.
(Reference): Document klaus-gunicorn-app. | 
|  | * guix/forge/gunicorn.scm: New file.
* doc/forge.skb (Reference): Document <gunicorn-configuration> and
<gunicorn-app>. | 
|  | * guix/forge/klaus.scm: Import python-pytest from (gnu packages
check); python-flask and python-werkzeug from (gnu packages
python-web); python-dulwich, python-humanize and python-pygments
from (gnu packages python-xyz).
(python-klaus): New variable. | 
|  | * guix/forge/klaus.scm: Import git-minimal from (gnu packages
version-control), (guix gexp) and (guix utils).
(git-without-safe-directory-check): New variable. | 
|  | * guix/forge/klaus.scm: New file. | 
|  | * guix/forge/forge.scm (guix-channel-job-gexp): Add #:verbose?
argument. | 
|  | * guix/forge/forge.scm: Import (guix profiles).
(guix-channel-job-gexp): Set TLS certificate paths. | 
|  | This reference was accidentally committed in the previous commit.
* guix/forge/forge.scm: Do not import (forge web). | 
|  | * guix/forge/forge.scm: Import guile-bytestructures from (gnu packages
guile), guix from (gnu packages package-management), (guix channels),
guile-git from (forge guile-git), (forge tissue) and (forge web).
(guix-channel-job-gexp): New public function. | 
|  | * guix/forge/guile-git.scm: New file.
* guix/forge/tissue.scm: Import guile-git from (forge
guile-git), (guix git-download) and (guix packages). Import tissue
with a guix: prefix.
(tissue): New public variable. | 
|  | * guix/forge/webhook.scm (webhook): Make public. | 
|  | * guix/forge/tissue.scm: Do not import (gnu packages autotools), (gnu
packages compression), (gnu packages gettext), (gnu packages
guile), (gnu packages guile-xyz), (gnu packages skribilo), (guix
build-system gnu), (guix download), (guix git-download), (guix
licenses) and (guix packages).
(skribilo-latest, guile-xapian-latest, tissue): Delete variables. | 
|  | Prior to this, when an IP socket was used, we would be running
forge-unix-socket-path on it and thus erroring out.
* guix/forge/tissue.scm (tissue-activation): Do not embed the socket
directory creation G-expression unless the socket is a Unix socket. | 
|  | There is no string-contains? function. Ironically string-contains? is
indeed the better name since it is a predicate.
* guix/forge/socket.scm (ipv4-address?, ipv6-address?): Replace
string-contains? with string-contains. | 
|  | * guix/forge/tissue.scm: Import lzip from (gnu packages
compression). Import (guix download).
(tissue): Update to 0.1.0.
[source]: Use url-fetch.
[native-inputs]: Add lzip. | 
|  | * guix/forge/tissue.scm (guile-xapian-latest): New variable.
(tissue)[inputs]: Replace guile-xapian-latest with guile-xapian. | 
|  | * guix/forge/forge.scm (forge-service-type): Refactor lambda functions
into ...
(forge-ci-jobs, forge-ci-job-groups, forge-ci-jobs-and-groups,
forge-cron-jobs, forge-webhooks): ... new functions. | 
|  | * guix/forge/webhook.scm (webhook-shepherd-service): Replace lambda
function with define function. | 
|  | * guix/forge/webhook.scm (%webhook-accounts): New variable.
(webhook-activation): chown log directory to webhook user and group.
(webhook-shepherd-service): Run as webhook user and group.
(webhook-service-type): Extend account-service-type. | 
|  | * guix/forge/webhook.scm: Import (gnu build linux-container), (gnu
system file-systems) and (guix least-authority).
(webhook-shepherd-service): Deprecate
make-forkexec-constructor/container in favor of
least-authority-wrapper. | 
|  | * doc/forge.skb (Reference)[<webhook-configuration>]: Replace ip and
port fields with the socket field.
* guix/forge/webhook.scm: Import (forge socket).
(<webhook-configuration>): Replace ip and port fields with the socket
field.
(webhook-shepherd-service): Reference the socket field instead of the
ip and port fields. | 
|  | * guix/forge/tissue.scm: Import (gnu build linux-container), (gnu
system file-systems) and (guix least-authority).
(tissue-shepherd-service): Deprecate
make-forkexec-constructor/container in favor of
least-authority-wrapper. | 
|  | This reverts commit f6beefdeacb8f1e67844142d73fc3e2de38db254. The
ownership of the state directory is set on a per-host basis. The state
directory is not owned completely by the tissue user. | 
|  | * guix/forge/tissue.scm (tissue-activation): Set ownership of state
directory recursively. | 
|  | tissue has made a breaking change renaming the run-web subcommand to
the web subcommand.
* guix/forge/tissue.scm (tissue-shepherd-service): Invoke `tissue web'
instead of `tissue run-web'. | 
|  | * guix/forge/tissue.scm (tissue): Update to 0.1.0-1.6d6285d. | 
|  | The skribilo gemtext reader, originally developed on the fork at
git.systemreboot.net, has been merged upstream. So, we should prefer
the upstream version.
* guix/forge/tissue.scm (skribilo-latest)[source]: Use skribilo from
upstream git repository, not the fork at git.systemreboot.net. | 
|  | * guix/forge/tissue.scm: New file. | 
|  | <forge-*-socket> will be a universal type to specify IP addresses,
ports and Unix sockets across all guix-forge services.
* guix/forge/socket.scm: New file.
* doc/forge.skb (Reference): Document <forge-ip-socket> and
<forge-unix-socket>. | 
|  | * guix/forge/utils.scm (profile-with-packages,
environment-with-packages): Delete functions.
(with-packages): Implement in terms of with-manifest. | 
|  | * guix/forge/utils.scm: Import (guix modules).
(with-manifest): New function. | 
|  | * guix/forge/forge.scm (ci-jobs-trigger-gexp): Import (ice-9
match). Do not try to trigger CI jobs when there are none to be
triggered.
(forge-service-type): Do not set up cron jobs and webhooks when there
are no CI jobs to be triggered. | 
|  | * guix/forge/laminar.scm (<forge-laminar-job>)[trigger?]: New field.
* guix/forge/forge.scm (ci-jobs-trigger-gexp): Only trigger jobs for
which trigger? is #t.
* doc/forge.skb (Reference)[<forge-laminar-job>]: Document trigger?. | 
|  | * guix/forge/laminar.scm (forge-laminar-activation): Suffix .run and
.after in script names. | 
|  | * guix/forge/webhook.scm (hooks-json-gexp): Suffix -webhook in script
name. | 
|  | * guix/forge/forge.scm (forge-service-type): Suffix -cron-job in
script name. | 
|  | * guix/forge/forge.scm (forge-activation): Suffix -post-receive-hook
in script name. | 
|  | * guix/forge/forge.scm: Import only laminar from (gnu packages ci). | 
|  | * guix/forge/forge.scm (forge-activation): Change ownership of parent
directory of website directory, instead of changing the ownership of
the website directory itself.
* doc/forge.skb (Reference)[<forge-project>]: Document it. | 
|  | HEAD~1..HEAD fails on shallow cloned repos.
* guix/forge/build/git.scm (download-git-to-store): Use `--max-count
1' instead of HEAD~1..HEAD to show only the first commit. | 
|  | * guix/forge/forge.scm (derivation-job-gexp): Accept #:deep-clone?
argument and pass on to latest-git-checkout.
* guix/forge/build/git.scm (download-git-to-store): Accept
#:deep-clone? argument, and deep clone the git repository if it is
#t. Explicitly specify the first commit to `git log' so that only the
first commit message is displayed. |