data.coop
/
ansible
8
3
Fork 7
Code Issues 44 Pull Requests 7 Projects 1 Releases Wiki Activity
532 Commits 9 Branches 0 Tags 2.1 MiB
Commit Graph

435 Commits

Author SHA1 Message Date
Sam A. 863cd56001
Upgrade HedgeDoc and Postfix 2023-04-06 19:10:47 +02:00
Sam A. f7afe5ba00
Fix spacing 2023-03-29 18:27:24 +02:00
Sam A. f9049451e9
Raise message rate limit for Mailu 2023-03-29 18:11:10 +02:00
Sam A. b5d980510d
FIDO bug in Passit should be fixed now 2023-03-26 18:35:30 +02:00
Sam A. b1f1db5b30
Simplify Docker service names for Restic 
This simplifies containernames such as "restic_backup_restic-backup_1"
to "restic_backup_1".
 2023-03-09 17:50:13 +01:00
Sam A. 9cc70decab
Upgrade Restic 2023-03-09 17:43:25 +01:00
Sam A. 04799e4a8f
Fix mode for Restic SSH directory 2023-03-07 21:54:02 +01:00
Reynir Björnsson 77e4d90589 Fix email setup 
Since whenever gomail doesn't like credentials when they're not going to
be used:

    Failed to send a testing email to 'reynir@reynir.dk': gomail: could not send email 1: SMTP server does not support AUTH, but credentials provided
 2023-03-07 15:40:58 +01:00
Sam A. 5cae83c557 Merge pull request 'Remove Pinafore' (#148) from removal/pinafore into main 
Reviewed-on: #148
 2023-03-07 11:16:32 +00:00
Reynir Björnsson ef5ef78ccb Merge remote-tracking branch 'data.coop/vhs.data.coop' 2023-03-06 20:43:12 +01:00
Sam A. 9d4c7be801
Add known_hosts to Restic's SSH folder 2023-03-06 13:38:52 +01:00
Reynir Björnsson 32f25aeb8f Add vhs.data.coop website 2023-03-06 11:50:59 +01:00
Sam A. 2d11a664b4
Fix Vagrant logic 2023-03-05 23:10:53 +01:00
Sam A. 9a4912f9b5 User Fedder's TrueNAS for Restic backups (#153) 
Thanks Fedder!

Co-authored-by: Sam Al-Sapti <sam@sapti.me>
Reviewed-on: #153
 2023-03-05 22:01:53 +00:00
Sam A. 2d85dec774 Merge pull request 'Add fedi.dk website' (#155) from reynir/ansible:add-fedi.dk-website into main 
Reviewed-on: #155
 2023-02-20 18:22:07 +00:00
Reynir Björnsson 82aa6f67aa Add fedi.dk website 2023-02-18 21:09:49 +01:00
Sam A. 31b2bcd35e
Rallly follows SemVer, so pinning to major version 2023-02-11 21:08:16 +01:00
Sam A. b7307c3e8e
Upgrade Rallly, it uses version numbers now 2023-02-11 20:34:07 +01:00
Sam A. b3c2f36a9d
Upgrade Watchtower 2023-02-11 20:31:16 +01:00
Sam A. be450fc8b8
Merge branch 'main' into removal/pinafore 2023-01-22 19:28:08 +01:00
Sam A. 593dddd00e
Upgrade Passit database and temporarily pin Passit due to WebAuthn bug 2023-01-22 02:00:53 +01:00
Sam A. 16aec98808
HedgeDoc image version :1 doesn't exist, but Alpine doesn't have vulnerabilities 2023-01-21 21:49:27 +01:00
Sam A. a5d59b9336
Fix variable 2023-01-21 21:37:37 +01:00
Sam A. 388e0526ca
Set RUN_ON_STARTUP=false for Restic 2023-01-21 21:33:39 +01:00
Sam A. 7ca168ae03
Merge branch 'main' into watchtower 2023-01-21 17:33:45 +01:00
Sam A. f81fab3d11
Quote numbers 2023-01-14 17:31:08 +01:00
Sam A. 9733794292
Revert "Make quotations consistent" 
This reverts commit 231af48a40.
 2023-01-14 17:24:53 +01:00
Sam A. 2f1c1887ba
Revert "Make quotations consistent" 
This reverts commit a10b07fa2c.
 2023-01-14 17:21:34 +01:00
Sam A. 34f95f31e4
Remove Pinafore 2023-01-14 17:14:31 +01:00
Sam A. a246dbf497
Merge branch 'main' into unify_more_configurations 2023-01-07 18:21:25 +01:00
Sam A. 58f3df7ed0
Merge branch 'main' into watchtower 2023-01-06 14:53:59 +01:00
Sam A. 1bbf1edf57
Upgrade Rallly 2023-01-06 14:49:23 +01:00
Sam A. 035c683f67 Merge pull request 'Bump matrix client_max_body_size to 1GB' (#140) from matrix-client-max-body-size into main 
Reviewed-on: #140
 2023-01-06 13:22:58 +00:00
Sam A. 99e2d04829
Set up DKIM for Postfix 2023-01-05 17:02:44 +01:00
Víðir Valberg Guðmundsson 5b2f460cad Bump gitea til 1.18.0. 2023-01-02 22:19:39 +01:00
Sam A. 5bcba6fa59 QoL changes for *Vim users (#144) 
Co-authored-by: Sam Al-Sapti <sam@sapti.me>
Reviewed-on: #144
 2022-12-29 21:13:31 +00:00
Sam A. a10b07fa2c
Make quotations consistent 2022-12-28 16:46:52 +01:00
Sam A. 231af48a40
Make quotations consistent 2022-12-28 16:23:23 +01:00
Sam A. d6ce46e2f2
Collect even more version numbers in docker/defaults/main.yml 2022-12-28 16:19:07 +01:00
Sam A. ad9a42f223
Add Nextcloud to allowed sender domains 2022-12-27 21:50:12 +01:00
Sam A. 44eb59fb86
Merge branch 'main' into watchtower 2022-12-27 19:48:32 +01:00
Sam A. 2485c25dc1
Add mailqueue directory to Mailu 2022-12-27 18:32:27 +01:00
Sam A. 35d0844bd7
Upgrade Mailu to 1.9 2022-12-27 18:20:30 +01:00
Sam A. a3d5c70c06
Upgrade Gitea to 1.7.4 2022-12-26 18:19:34 +01:00
Sam A. 7d889b4f02
Upgrade Postfix to v3.5.1 and use Alpine-based image 
Alpine is already the default, but it's better to explicitly specify it.
 2022-12-26 17:52:09 +01:00
Sam A. 9c559e3322
Revert task name 2022-12-22 19:13:29 +01:00
Sam A. a1ac25b56d
Don't install python bindings for docker-compose twice 2022-12-22 18:25:03 +01:00
Sam A. f1737bb9c8
Allow sso.data.coop to send emails 2022-12-20 22:46:40 +01:00
Reynir Björnsson 7851fe3522 Bump max upload size 2022-12-17 21:43:18 +01:00
Reynir Björnsson 3fb8ecb72f Bump matrix client_max_body_size to 1GB 2022-12-17 21:27:01 +01:00
Sam A. 8fc0a97d23
Remove new-new.data.coop from Ansible 2022-12-14 18:46:03 +01:00
Sam A. 64ec448fc0
Remove new-new.data.coop container 2022-12-14 18:43:49 +01:00
Sam A. b1c9113cb7
Fix git URL 2022-12-13 16:32:33 +01:00
Sam A. 76df6320a4
Upgrade Pinafore to v2.5.0 2022-12-13 16:30:43 +01:00
reynir 99f9615ef2 Use http git.data.coop endpoints for websites (#139) 
Gitea is notoriously strict with its http smart git implementation. This required a few fixes in upstream ocaml-git. They are now released, and we don't have to use github or ssh-keys.

Co-authored-by: Reynir Björnsson <reynir@reynir.dk>
Reviewed-on: #139
Co-authored-by: reynir <data.coop@reynir.dk>
Co-committed-by: reynir <data.coop@reynir.dk>
 2022-12-13 15:24:32 +00:00
Sam A. 3b8c475bb1
Fix vhost-www 2022-12-07 22:04:31 +01:00
Sam A. 019b646caa
Rename 2022_slides_website due to error 2022-12-07 21:57:36 +01:00
Sam A. cf756ee881
Fix file source 2022-12-07 21:51:51 +01:00
Sam A. 000216d74d
Add vhost config for www.data.coop and move vhost-root copying task to data.coop.yml 2022-12-07 21:49:36 +01:00
Sam A. cd03e98f10
Add missing services to defaults/main.yml 2022-12-07 21:37:54 +01:00
Sam A. bbd6b6f8da
Upgrade Rallly 2022-12-06 18:18:41 +01:00
Sam A. 2c9c501562
Remove label from Pinafore 2022-12-06 18:06:31 +01:00
Sam A. 0dcc0a6d75
Merge branch 'main' into watchtower 2022-12-06 18:05:15 +01:00
reynir 51c8acc119 Add pinafore (#135) 
I don't find any official docker images, so I set up a fork of the repo and build it with drone:

https://git.data.coop/data.coop/pinafore

Co-authored-by: Reynir Björnsson <reynir@reynir.dk>
Reviewed-on: #135
Co-authored-by: reynir <data.coop@reynir.dk>
Co-committed-by: reynir <data.coop@reynir.dk>
 2022-12-05 15:37:18 +00:00
Víðir Valberg Guðmundsson 73bf2d41ba Restart all mastodon containers instead of recreating them. 2022-12-04 22:55:00 +01:00
Sam A. c4f3911400 Always recreate Mastodon containers (#134) 
Fixes #133.

Co-authored-by: Sam Al-Sapti <sam@sapti.me>
Reviewed-on: #134
Co-authored-by: Sam A. <samsapti@noreply@git.data.coop>
Co-committed-by: Sam A. <samsapti@noreply@git.data.coop>
 2022-12-04 21:45:32 +00:00
Víðir Valberg Guðmundsson 759ea93dd3 Mastodon: Split sidekiq queues into different containers. Tune postgresql. Set threads and concurrency on web and streaming. 2022-12-02 23:35:36 +01:00
Sam A. 59dae865c5
Add missing file to codimd 2022-11-27 16:34:20 +01:00
reynir e45eb02208 Don't hardcode domains (#129) 
Co-authored-by: Reynir Björnsson <reynir@reynir.dk>
Reviewed-on: #129
Co-authored-by: reynir <data.coop@reynir.dk>
Co-committed-by: reynir <data.coop@reynir.dk>
 2022-11-27 14:01:55 +00:00
Sam A. a1e8203d55
Don't hardcode domains 2022-11-26 23:15:09 +01:00
Sam A. ab1f170790
Opt out of Mailu statistics, and don't hardcode domains 2022-11-26 23:01:12 +01:00
Sam A. f3fd5c7c74
Shorten Jinja2 filter in postfix.yml 2022-11-26 22:48:15 +01:00
Sam A. e983499f9b
Use value_name='service' in setup services task 2022-11-26 22:13:51 +01:00
Sam A. bb920407f3
Add depends_on conditions to Mastodon 2022-11-26 17:18:31 +01:00
Sam A. 1356aa54c8
Merge branch 'main' into watchtower 2022-11-26 16:49:53 +01:00
Sam A. 7962a75481
Remove thelounge.js 2022-11-26 16:38:32 +01:00
valberg d15e7e562f Collect versions and service information in docker/defaults/main.yml (#125) 2022-11-26 08:15:18 +00:00
Sam A. e328c558cf
Rename Rallly's env_file to env_file.j2 2022-11-25 23:57:35 +01:00
Sam A. 44b5f91eef
Merge branch 'main' into watchtower 2022-11-25 22:12:47 +01:00
Sam A. fa603b07d9
Upgrade HedgeDoc to 1.9.6 2022-11-25 22:04:38 +01:00
Sam A. 439a538c14
Lint 2022-11-25 21:41:37 +01:00
Sam A. 814a268965
Don't enable Restic Backup in Vagrant 2022-11-25 21:37:14 +01:00
Sam A. 5a63e8e1a8 Vagrant-based testing environment (#111) 
Co-authored-by: Sam A. <samsapti@noreply@git.data.coop>
Co-committed-by: Sam A. <samsapti@noreply@git.data.coop>
 2022-11-25 13:07:09 +00:00
Víðir Valberg Guðmundsson 124d8660db Moved membersystem image. 2022-11-25 00:16:10 +01:00
Sam A. 74dfcfb5e8
Keycloak: avoid very long lines :( 2022-11-23 21:09:05 +01:00
Sam A. 221ddd987f
Upgrade Postfix to 3.5.1 and use Alpine-based image 2022-11-23 21:05:01 +01:00
Sam A. 687bff35e9
Pin netdata to v1 2022-11-23 21:00:48 +01:00
Sam A. 9261cb1952
Pin Keycoak to 20.0 (minor version) 2022-11-23 20:34:43 +01:00
Sam A. 1f61909605
Pin HedgeDoc to major version 1 
From https://docs.hedgedoc.org/setup/getting-started/#upgrading-hedgedoc

> HedgeDoc follows [Semantic Versioning](https://semver.org/).
> This means that minor and patch releases should not introduce
> user-facing backwards-incompatible changes.
 2022-11-23 20:16:36 +01:00
Sam A. d9de1efc9a
Pin Gitea to 1.17 instead of 1.17.3 
Gitea's "minor" version change seems to be the one that occasionally
introduces breaking changes, so let's not update that automatically.
Only keep the patch-releases automatically updated.
 2022-11-23 20:02:30 +01:00
Sam A. 2fa5bf4982
Merge branch 'main' into watchtower 2022-11-23 19:51:58 +01:00
Víðir Valberg Guðmundsson 78b15ddcc4 Pin restic backup. 2022-11-22 23:13:01 +01:00
Víðir Valberg Guðmundsson d6766e601a Upgrade portainer to 2.16.2. 2022-11-22 22:52:23 +01:00
Víðir Valberg Guðmundsson cbc209c381 Set keycloak path to the old path. 2022-11-22 22:52:08 +01:00
Víðir Valberg Guðmundsson f040880c26 Pin rallly. 2022-11-22 22:47:22 +01:00
Víðir Valberg Guðmundsson 394e158c51 Make sure to always restart membersystem if it goes down. 2022-11-22 22:39:34 +01:00
Víðir Valberg Guðmundsson 14d97ee7a6 Upgrade keycloak to 20.0.1 2022-11-22 22:38:05 +01:00
Sam A. fc7ca37b07
Make TCP the default allowed firewall protocol 
Custom protocol can still be specified by adding `proto: "proto"` to a
loop item.
 2022-11-22 21:40:21 +01:00
Sam A. 71cc3e2241
Fix firewall ports format 2022-11-22 21:22:23 +01:00
Sam A. d53c6d41dc Merge pull request 'Firewall (UFW)' (#107) from samsapti/ansible:main into main 
Reviewed-on: #107
 2022-11-22 20:05:00 +00:00
Sam A. 9852a42470
Upgrade Element to 1.11.8 2022-11-22 18:59:34 +01:00
Sam A. efbdcc9a5a
Add missing postfix network to Nextcloud container 2022-11-22 17:45:13 +01:00
Sam A. e0c0163aae
Add cron container to Nextcloud 2022-11-22 17:40:55 +01:00
Sam A. fe4b3ede81
Add Redis memcache to Nextcloud 2022-11-22 17:15:59 +01:00
Sam A. 8180a736f7
Use Alpine-based nginx-proxy Docker image 2022-11-22 16:53:34 +01:00
reynir 728cffc453 Expose mastodon streaming api (#124) 
Co-authored-by: Reynir Björnsson <reynir@reynir.dk>
Co-authored-by: Víðir Valberg Guðmundsson <valberg@orn.li>
Reviewed-on: #124
Co-authored-by: reynir <data.coop@reynir.dk>
Co-committed-by: reynir <data.coop@reynir.dk>
 2022-11-22 13:38:46 +00:00
Víðir Valberg Guðmundsson 31a73f48fb Upgrade and pin nginx-proxy and acme-companion. 2022-11-22 14:37:31 +01:00
Víðir Valberg Guðmundsson d467084fb7 Bump mastodon sidekiq threads to 32. 2022-11-22 09:36:36 +01:00
Sam A. 20b977eacb
Upgrade Nextcloud to version 25 2022-11-21 23:42:20 +01:00
Sam A. e917636d05
Upgrade Nextcloud to 24 2022-11-21 23:37:07 +01:00
Sam A. 1ebfab5abf
Upgrade one major version at a time, 23 now 2022-11-21 23:31:22 +01:00
Sam A. 12effe5673
Upgrade Nextcloud to 25.x.x 2022-11-21 21:34:07 +01:00
Sam A. c9ab9f0c66
Watchtower doesn't need external_services network 2022-11-19 18:20:10 +01:00
Sam A. e5dcfea003
Pin Watchtower version 2022-11-19 18:19:43 +01:00
Sam A. 27b918b46b
Remove labels 2022-11-18 21:07:12 +01:00
Sam A. 5d26e1cdea
Fix mount point for Watchtower 
The auth file created by the registry login task doesn't need to be
stored in a non-default path.
 2022-11-18 20:58:22 +01:00
Sam A. a4a06d8a58
Upgrade Watchtower and disable filter by enable label 2022-11-18 18:59:00 +01:00
Víðir Valberg Guðmundsson 2c9dce8600 Upgrade gitea to 1.17.3. 2022-11-17 20:50:38 +01:00
Víðir Valberg Guðmundsson 4bc69b49bb Upgrade mastodon to 4.0.2 2022-11-17 20:40:59 +01:00
reynir bcbe0a8285 Set up vhost for both {riot,element}.data.coop (#121) 
A fix for #115.

Co-authored-by: Reynir Björnsson <reynir@reynir.dk>
Reviewed-on: #121
Co-authored-by: reynir <data.coop@reynir.dk>
Co-committed-by: reynir <data.coop@reynir.dk>
 2022-11-16 19:13:45 +00:00
Reynir Björnsson 5a54eb6b1e Flatten the list 2022-11-16 16:24:22 +01:00
Reynir Björnsson c802777867 Add root keys for all users 
And not just the last user.
 2022-11-16 16:10:10 +01:00
Reynir Björnsson a03263b1f5 riot/element: expose port 8080 
nginx-proxy uses this information to determine if the (in nginx
parlance) server is up.
 2022-11-16 13:45:58 +01:00
Sam A. 58dbf9ff22
Allow only TCP traffic on specified ports 2022-11-15 20:42:18 +01:00
Sam A. ba44677cf3
Avoid conflicts with built-in function name keys 2022-11-15 20:28:34 +01:00
Sam A. fc0c0c5036
Always update password and overwrite keys 2022-11-15 19:57:17 +01:00
Sam A. 5f718e1027
Add firewall setup with UFW 2022-11-12 19:41:55 +01:00
Reynir Björnsson 536441d24b Fix 2022.slides, and use git.data.coop repo 
The ocaml-git fix has been released, and don't call the container
new-new.data.coop_website D:
 2022-11-12 19:30:38 +01:00
Sam A. bf60417904
Fix FIDO2 authentication in Passit 2022-11-12 19:21:58 +01:00
Víðir Valberg Guðmundsson 0e7cc20bce Update portainer to use the ee version. 2022-11-10 21:15:42 +01:00
Sam A. cc2fab6ad7
Ports and domain fixes 2022-11-10 19:32:39 +01:00
Víðir Valberg Guðmundsson a81862fd8b Small fixes for rallly. 2022-11-09 20:58:32 +01:00
Víðir Valberg Guðmundsson e85b119bfe Small fixes to get rallly working. 2022-11-09 20:41:41 +01:00
Víðir Valberg Guðmundsson dcb2e8be05 Upgrade mastodon to 3.5.3. 2022-11-09 20:29:31 +01:00
Sam A. dc51b62872
Capitalization fix 2022-11-09 20:18:08 +01:00
Sam A. dd6b29bccd
Add secrets and env file for Rally 2022-11-09 20:18:07 +01:00
Sam A. f71d534afe
Add Rallly 2022-11-09 20:17:58 +01:00
Víðir Valberg Guðmundsson b043b95353 Point backup at decibytes server. 2022-11-08 20:45:03 +01:00
Jesper Hess 74883a564d
Add handler to restart nginx container when adding nextcloud VHost config 2022-09-02 12:23:19 +02:00
Reynir Björnsson f0979ec654 nextcloud: Raise upload limit to 1GB 2022-08-31 20:10:42 +02:00
Víðir Valberg Guðmundsson 73adef15f9 Fixing watchtower and membersystem. 2022-08-09 19:47:40 +02:00
Víðir Valberg Guðmundsson 9f3a6c67ff Use latest tag for membersystem docker image. 2022-08-09 14:46:48 +02:00
Víðir Valberg Guðmundsson e68145bc5e Add membersystem to ansible. 2022-08-09 13:54:12 +02:00
Reynir Björnsson 326393aadb Add 2022 slides 2022-08-07 13:28:38 +02:00
Víðir Valberg Guðmundsson a6420830e4 Remove thelounge. 2022-07-23 15:48:49 +02:00
Víðir Valberg Guðmundsson e806ffc3ad Remove fider and tt-rss. 2022-07-23 15:46:30 +02:00
Víðir Valberg Guðmundsson 7b60ae1c28 Switch from ouroboros to watchtower. Close #82. 2022-07-23 15:42:51 +02:00
reynir 09b05bf657 Add new-new.data.coop using unipi! (#99) 
This exposes the contents of the git repository at https://git.data.coop/halfd/new-website using the MirageOS unikernel [unipi](https://github.com/roburio/unipi).

Co-authored-by: Reynir Björnsson <reynir@reynir.dk>
Reviewed-on: #99
 2022-07-23 12:46:26 +00:00
Reynir Björnsson 442bb4ad58 Add apt preferences file for dell repo 
Deny all packages from dell repo that exist elsewhere

Fixes #95
 2022-07-22 20:41:34 +02:00
Jesper Hess a8287a712b Add restart policy to OpenLDAP containers 2022-07-22 18:02:41 +00:00