Commit graph

273 commits

Author SHA1 Message Date
Sam A. 6e383d6afa
Simplify SSH configuration
Now that the Vagrantfile supplies SSH port information to Ansible, we no
longer need to figure it out in Ansible. Also, since gather_facts (which
requires an SSH connection) is set to true in playbook.yml, one needs to
supply --extra-vars "ansible_port=22" on the commandline when
provisioning for the first time on real hardware, because the port is
hardcoded in the inventory file.
2022-11-17 22:15:26 +01:00
Víðir Valberg Guðmundsson 9a5d780f2b Keep ansible "clean" and do ssh port magic in Vagrantfile. 2022-11-17 08:53:45 +01:00
Sam A. 57ca1e9233
Create separate role for SSH and Vagrant
- Added a separate role that first configures SSH, and after that
  gathers the ansible_virtualization_role fact, due to gathering facts
  requiring an SSH connection
- Renamed ssl_certs_enabled to letsencrypt_enabled and moved that
  and the vagrant variable to the be supplied directly to the last two
  roles in playbook.yml
- Added tags base_only and setup_services to the new role
  ssh_and_vagrant so that it will always be run before anything else
  when using deploy.sh
2022-11-16 20:31:44 +01:00
Víðir Valberg Guðmundsson 253a21432e Add ssl_certs_enabled variable and use it to avoid ssl certs when running on vagrant 2022-11-15 22:06:53 +00:00
Sam A. a6cb0a8e65 Remove state: latest 2022-11-15 22:06:53 +00:00
Sam A. c676d69fc0 Naming changes 2022-11-15 22:06:53 +00:00
Sam A. c74cc4413a Simplify config and rename some files 2022-11-15 22:06:53 +00:00
Sam A. 50fa65d55e Don't use local config for Docker registry login
It doesn't work when deploying in Vagrant :(
2022-11-15 22:06:53 +00:00
Sam A. eeecfca7ef Vagrant: Use same Ubuntu version as in production 2022-11-15 22:06:53 +00:00
Sam A. 1744cf7585 Fix SSH port logic again 2022-11-15 22:06:53 +00:00
Sam A. b310e191f8 Some Vagrant fixes
Only install Dell OpenManage if not running in a VM, and fix SSH port
logic.
2022-11-15 22:06:53 +00:00
Sam A. b56690a33e Make Ansible setup testable in Vagrant
Added logic to change the sshd port if not already configured,
configued Vagrantfile to work properly and fixed a couple of deploy
errors.
2022-11-15 22:06:53 +00:00
Sam A. 52ead4fee5
Remove volume_root_folder from vars.yml
It is defined later in the docker role already.
2022-11-15 20:52:38 +01:00
Sam A. ba44677cf3
Avoid conflicts with built-in function name keys 2022-11-15 20:28:34 +01:00
Sam A. fc0c0c5036
Always update password and overwrite keys 2022-11-15 19:57:17 +01:00
valberg 5b2e2c0f60 Merge pull request 'Lock account 'graffen'' (#102) from lock-graffen into main
Reviewed-on: #102
2022-11-13 12:28:38 +00:00
Sam A. 42e1900715
Delete unused secrets 2022-11-12 23:06:45 +01:00
Reynir Björnsson 536441d24b Fix 2022.slides, and use git.data.coop repo
The ocaml-git fix has been released, and don't call the container
new-new.data.coop_website D:
2022-11-12 19:30:38 +01:00
Sam A. bf60417904
Fix FIDO2 authentication in Passit 2022-11-12 19:21:58 +01:00
Víðir Valberg Guðmundsson aecb929dbb Add a way to only run the base role. 2022-11-11 22:16:22 +01:00
valberg f905696264 Add admin user (#108)
Welcome aboard!
2022-11-11 18:05:10 +00:00
Sam A. d4f8fbcebe
Add Sam as admin user 2022-11-11 18:33:18 +01:00
Víðir Valberg Guðmundsson 0e7cc20bce Update portainer to use the ee version. 2022-11-10 21:15:42 +01:00
valberg 57f05d7d81 Merge pull request 'Security hardening: Don't expose unnecessary ports to the public' (#106) from samsapti/ansible:main into main
Reviewed-on: #106
2022-11-10 19:19:00 +00:00
Sam A. cc2fab6ad7
Ports and domain fixes 2022-11-10 19:32:39 +01:00
Víðir Valberg Guðmundsson a81862fd8b Small fixes for rallly. 2022-11-09 20:58:32 +01:00
Víðir Valberg Guðmundsson e85b119bfe Small fixes to get rallly working. 2022-11-09 20:41:41 +01:00
Víðir Valberg Guðmundsson dcb2e8be05 Upgrade mastodon to 3.5.3. 2022-11-09 20:29:31 +01:00
valberg f0ca964c5b Merge pull request 'Add Rallly' (#103) from samsapti/ansible:main into main
Reviewed-on: #103
2022-11-09 19:28:57 +00:00
Sam A. dc51b62872
Capitalization fix 2022-11-09 20:18:08 +01:00
Sam A. dd6b29bccd
Add secrets and env file for Rally 2022-11-09 20:18:07 +01:00
Sam A. f71d534afe
Add Rallly 2022-11-09 20:17:58 +01:00
Víðir Valberg Guðmundsson b043b95353 Point backup at decibytes server. 2022-11-08 20:45:03 +01:00
Reynir Björnsson 8f9196ce60 Lock account 'graffen'
:'(
2022-11-05 15:08:35 +01:00
Jesper Hess 74883a564d
Add handler to restart nginx container when adding nextcloud VHost config 2022-09-02 12:23:19 +02:00
Reynir Björnsson f0979ec654 nextcloud: Raise upload limit to 1GB 2022-08-31 20:10:42 +02:00
Víðir Valberg Guðmundsson 73adef15f9 Fixing watchtower and membersystem. 2022-08-09 19:47:40 +02:00
Víðir Valberg Guðmundsson 9f3a6c67ff Use latest tag for membersystem docker image. 2022-08-09 14:46:48 +02:00
Víðir Valberg Guðmundsson e68145bc5e Add membersystem to ansible. 2022-08-09 13:54:12 +02:00
Reynir Björnsson 326393aadb Add 2022 slides 2022-08-07 13:28:38 +02:00
Víðir Valberg Guðmundsson a6420830e4 Remove thelounge. 2022-07-23 15:48:49 +02:00
Víðir Valberg Guðmundsson e806ffc3ad Remove fider and tt-rss. 2022-07-23 15:46:30 +02:00
Víðir Valberg Guðmundsson 7b60ae1c28 Switch from ouroboros to watchtower. Close #82. 2022-07-23 15:42:51 +02:00
Víðir Valberg Guðmundsson 371237b9f8 Include mastodon in services list. Set letsencrypt_email to admin@data.coop. 2022-07-23 15:13:14 +02:00
reynir 09b05bf657 Add new-new.data.coop using unipi! (#99)
This exposes the contents of the git repository at https://git.data.coop/halfd/new-website using the MirageOS unikernel [unipi](https://github.com/roburio/unipi).

Co-authored-by: Reynir Björnsson <reynir@reynir.dk>
Reviewed-on: #99
2022-07-23 12:46:26 +00:00
Reynir Björnsson 442bb4ad58 Add apt preferences file for dell repo
Deny all packages from dell repo that exist elsewhere

Fixes #95
2022-07-22 20:41:34 +02:00
Jesper Hess a8287a712b Add restart policy to OpenLDAP containers 2022-07-22 18:02:41 +00:00
Jesper Hess ed9c742aed Bump Synapse version -> 1.63.1 and Element -> 1.11.0 2022-07-22 18:02:06 +00:00
Jesper Hess b07cf84dd3
Matrix: Workaround for incorrect db locale
Related to: #92
2022-07-22 15:14:01 +02:00
Jesper Hess 997779d627 Add Dell apt signing key 2022-07-22 12:37:39 +00:00