Add SD image pipeline, documentation overhaul, and fix module issues

- Add automatic SD image builds for Raspberry Pi via Forgejo Actions - Enable binfmt emulation on cryodev-main for aarch64 cross-builds - Add sd-image.nix module to cryodev-pi configuration - Create comprehensive docs/ structure with installation guides - Split installation docs into: first-install (server), reinstall, new-client (Pi) - Add lib/utils.nix and apps/rebuild from synix - Fix headplane module for new upstream API (tale/headplane) - Fix various module issues (mailserver stateVersion, option conflicts) - Add placeholder secrets.yaml files for both hosts - Remove old INSTRUCTIONS.md (content moved to docs/)
2026-03-11 08:41:58 +01:00 · 2026-03-11 08:41:58 +01:00 · 5ba78886d2
commit 5ba78886d2
parent a5261d8ff0
44 changed files with 3570 additions and 609 deletions
--- a/modules/nixos/headscale/default.nix
+++ b/modules/nixos/headscale/default.nix
@ -65,24 +65,26 @@ in
      address = mkDefault (if cfg.reverseProxy.enable then "127.0.0.1" else "0.0.0.0");
      port = mkDefault 8077;
      settings = {
-        policy.path = "/etc/${acl}";
-        database.type = "sqlite"; # postgres is highly discouraged as it is only supported for legacy reasons
-        server_url = mkUrl {
+        policy.path = mkDefault "/etc/${acl}";
+        database.type = mkDefault "sqlite"; # postgres is highly discouraged as it is only supported for legacy reasons
+        server_url = mkDefault (mkUrl {
          inherit fqdn;
          ssl = with cfg.reverseProxy; enable && forceSSL;
-        };
-        derp.server.enable = cfg.reverseProxy.forceSSL;
+        });
+        derp.server.enable = mkDefault cfg.reverseProxy.forceSSL;
        dns = {
          magic_dns = mkDefault true;
          base_domain = mkDefault "tail";
-          search_domains = [ cfg.settings.dns.base_domain ];
+          search_domains = mkDefault [ cfg.settings.dns.base_domain ];
          override_local_dns = mkDefault true;
-          nameservers.global = optionals cfg.settings.dns.override_local_dns [
-            "1.1.1.1"
-            "1.0.0.1"
-            "2606:4700:4700::1111"
-            "2606:4700:4700::1001"
-          ];
+          nameservers.global = mkDefault (
+            optionals cfg.settings.dns.override_local_dns [
+              "1.1.1.1"
+              "1.0.0.1"
+              "2606:4700:4700::1111"
+              "2606:4700:4700::1001"
+            ]
+          );
        };
      };
    };