Commit graph

261 commits

Author SHA1 Message Date
Sam A. e917636d05
Upgrade Nextcloud to 24 2022-11-21 23:37:07 +01:00
Sam A. 1ebfab5abf
Upgrade one major version at a time, 23 now 2022-11-21 23:31:22 +01:00
Sam A. 12effe5673
Upgrade Nextcloud to 25.x.x 2022-11-21 21:34:07 +01:00
Sam A. c9ab9f0c66
Watchtower doesn't need external_services network 2022-11-19 18:20:10 +01:00
Sam A. e5dcfea003
Pin Watchtower version 2022-11-19 18:19:43 +01:00
Sam A. 27b918b46b
Remove labels 2022-11-18 21:07:12 +01:00
Sam A. 5d26e1cdea
Fix mount point for Watchtower
The auth file created by the registry login task doesn't need to be
stored in a non-default path.
2022-11-18 20:58:22 +01:00
Sam A. a4a06d8a58
Upgrade Watchtower and disable filter by enable label 2022-11-18 18:59:00 +01:00
Víðir Valberg Guðmundsson 2c9dce8600 Upgrade gitea to 1.17.3. 2022-11-17 20:50:38 +01:00
Víðir Valberg Guðmundsson 4bc69b49bb Upgrade mastodon to 4.0.2 2022-11-17 20:40:59 +01:00
reynir bcbe0a8285 Set up vhost for both {riot,element}.data.coop (#121)
A fix for #115.

Co-authored-by: Reynir Björnsson <reynir@reynir.dk>
Reviewed-on: data.coop/ansible#121
Co-authored-by: reynir <data.coop@reynir.dk>
Co-committed-by: reynir <data.coop@reynir.dk>
2022-11-16 19:13:45 +00:00
Reynir Björnsson a03263b1f5 riot/element: expose port 8080
nginx-proxy uses this information to determine if the (in nginx
parlance) server is up.
2022-11-16 13:45:58 +01:00
Reynir Björnsson 536441d24b Fix 2022.slides, and use git.data.coop repo
The ocaml-git fix has been released, and don't call the container
new-new.data.coop_website D:
2022-11-12 19:30:38 +01:00
Sam A. bf60417904
Fix FIDO2 authentication in Passit 2022-11-12 19:21:58 +01:00
Víðir Valberg Guðmundsson 0e7cc20bce Update portainer to use the ee version. 2022-11-10 21:15:42 +01:00
Sam A. cc2fab6ad7
Ports and domain fixes 2022-11-10 19:32:39 +01:00
Víðir Valberg Guðmundsson e85b119bfe Small fixes to get rallly working. 2022-11-09 20:41:41 +01:00
Víðir Valberg Guðmundsson dcb2e8be05 Upgrade mastodon to 3.5.3. 2022-11-09 20:29:31 +01:00
Sam A. dc51b62872
Capitalization fix 2022-11-09 20:18:08 +01:00
Sam A. dd6b29bccd
Add secrets and env file for Rally 2022-11-09 20:18:07 +01:00
Sam A. f71d534afe
Add Rallly 2022-11-09 20:17:58 +01:00
Víðir Valberg Guðmundsson b043b95353 Point backup at decibytes server. 2022-11-08 20:45:03 +01:00
Jesper Hess 74883a564d
Add handler to restart nginx container when adding nextcloud VHost config 2022-09-02 12:23:19 +02:00
Reynir Björnsson f0979ec654 nextcloud: Raise upload limit to 1GB 2022-08-31 20:10:42 +02:00
Víðir Valberg Guðmundsson 73adef15f9 Fixing watchtower and membersystem. 2022-08-09 19:47:40 +02:00
Víðir Valberg Guðmundsson 9f3a6c67ff Use latest tag for membersystem docker image. 2022-08-09 14:46:48 +02:00
Víðir Valberg Guðmundsson e68145bc5e Add membersystem to ansible. 2022-08-09 13:54:12 +02:00
Reynir Björnsson 326393aadb Add 2022 slides 2022-08-07 13:28:38 +02:00
Víðir Valberg Guðmundsson a6420830e4 Remove thelounge. 2022-07-23 15:48:49 +02:00
Víðir Valberg Guðmundsson e806ffc3ad Remove fider and tt-rss. 2022-07-23 15:46:30 +02:00
Víðir Valberg Guðmundsson 7b60ae1c28 Switch from ouroboros to watchtower. Close #82. 2022-07-23 15:42:51 +02:00
reynir 09b05bf657 Add new-new.data.coop using unipi! (#99)
This exposes the contents of the git repository at https://git.data.coop/halfd/new-website using the MirageOS unikernel [unipi](https://github.com/roburio/unipi).

Co-authored-by: Reynir Björnsson <reynir@reynir.dk>
Reviewed-on: data.coop/ansible#99
2022-07-23 12:46:26 +00:00
Jesper Hess a8287a712b Add restart policy to OpenLDAP containers 2022-07-22 18:02:41 +00:00
Jesper Hess ed9c742aed Bump Synapse version -> 1.63.1 and Element -> 1.11.0 2022-07-22 18:02:06 +00:00
Sam A. 2e3cd4c8b0
Update Docker image for nginx-proxy LE companion 2022-06-23 22:14:30 +02:00
Víðir Valberg Guðmundsson 1417c9dbf6 Upgrade gitea from 1.15.7 to 1.16.8. 2022-05-24 19:45:49 +02:00
valberg 40afe51998 Merge pull request 'gitea: require email confirmation on registration' (#74) from gitea-require-email-confirmation into master
Reviewed-on: data.coop/ansible#74
2022-05-08 19:19:13 +00:00
Víðir Valberg Guðmundsson 29971520d5 Rename smtp hostname to smtp.data.coop. 2022-05-08 13:58:21 +02:00
Víðir Valberg Guðmundsson e74753cab4 Mastodon! 2022-05-07 22:53:18 +02:00
Reynir Björnsson 0aeb0fef96 gitea: require email confirmation on registration 2022-04-07 14:35:21 +01:00
Reynir Björnsson 54a38114d6 gitea: Enable notify emails 2022-01-28 13:13:12 +00:00
benjaoming 17d4513b97 Add security and password policy customization
I need someone with a functional Docker setup to help test this :)

Tip from a new user that we are requiring stupid password stuff

https://www.bbc.com/news/technology-40875534
2022-01-24 09:53:59 +00:00
Reynir Björnsson 36534604c1 Add dummy user and pass
It seems perhaps it is required by gitea before it will enable email
2022-01-24 09:39:03 +00:00
Reynir Björnsson d73cc9e28f Gitea mail typo: smpt_port -> smtp_host 2022-01-24 09:25:44 +00:00
Reynir Björnsson 554024f2b2 Gitea mail: add crucial configuration 2022-01-24 09:19:54 +00:00
Reynir Björnsson ac455beac0 Add quotes
Non-string value found for env option. Ambiguous env options must be wrapped in quotes to avoid them being interpreted. Key: GITEA__mailer__ENABLED
2022-01-24 09:07:49 +00:00
valberg 1680ab0fc9 gitea-enhancements (#70) 2022-01-23 19:01:32 +00:00
valberg 499bd20ad1 Merge pull request 'Refactor allowed_sender_domains and allow more domains' (#69) from reynir/ansible:postfix-allowed_sender_domains into master
Reviewed-on: data.coop/ansible#69
2022-01-23 16:38:30 +00:00
Reynir Björnsson e3156c7c01 Gitea: setup mailer, raise LOGIN_REMEMBER_DAYS 2022-01-20 13:48:04 +00:00
Reynir Björnsson 6e57f1d0c2 Refactor allowed_sender_domains and allow more
A new object 'postfix' is created with a list of allowed_sender_domains.
Any services that expect to send mail this way should add its sender
domain to that list.
2022-01-20 13:36:48 +00:00
Jesper Hess 04b3fb4baa
Upgrade gitea -> v1.15.7 2021-12-14 16:24:02 +01:00
Reynir Björnsson 68c82a785b Upgrade synapse to v1.47.1 2021-11-23 13:12:15 +01:00
Jesper Hess 682e205c0b Bump OpenLDAP to 1.5.0 and phpLDAPAdmin to 0.9.0 2021-10-11 18:53:22 +02:00
Jesper Hess e64c858df8 Bump portainer version to 2.9.1 2021-10-11 18:52:39 +02:00
Jesper Hess c0bd431d3c Change default sender domain to @services.data.coop so as not to cause issues with our @data.coop emails 2021-10-10 18:03:09 +02:00
Jesper Hess a5a2d38b0c Bump Synapse to v1.44.0 and Element to v1.9.0 2021-10-10 15:25:54 +02:00
Jesper Hess c34d9fcb90 Add Hedgedoc
- Add Hedgedoc as a replacement for CodiMD.
- Integrate it with the new SSO system
2021-10-09 22:42:35 +02:00
Jesper Hess 270b7aa0e1 Merge branch 'master' into keycloak 2021-10-09 12:19:45 +00:00
Jesper Hess b6c2db6434
Switch NextCloud to docker_compose in Ansible + upgrade to v22 2021-10-09 14:13:18 +02:00
Jesper Hess 2af5165349
Upgrade portainer to 2.9.0 2021-10-07 20:59:38 +02:00
Jesper Hess ca6c3a96a1
Comment out the KEYCLOAK_USER and KEYCLOAK_PASSWORD since they mess up things after first run 2021-10-07 20:58:31 +02:00
Jesper Hess e6ee76ddde Merge branch 'master' into keycloak 2021-10-07 11:31:07 +00:00
Jesper Hess 2c8482a5ab Merge branch 'master' into element.v1.8.4 2021-10-07 11:26:42 +00:00
Jesper Hess 3999db2eff
Add keycloak service 2021-10-07 13:20:30 +02:00
Reynir Björnsson 43f39c981d Bump element to v1.8.4
See https://matrix.org/blog/2021/09/13/vulnerability-disclosure-key-sharing
2021-09-14 15:30:08 +02:00
Jesper Hess b39df6003b
Disable Matrix registrations and move Matrix secrets to Ansible vault.
Fixes #46
2021-07-03 09:12:18 +02:00
Jesper Hess 0ef4f972ed
Update Element -> 1.7.29 & Synapse -> 1.34.0 2021-05-28 06:23:46 +02:00
Víðir Valberg Guðmundsson 9e5c18f839 Rename docker_service tasks to docker_compose. 2021-02-01 21:06:23 +01:00
Víðir Valberg Guðmundsson 068502773e Fix matrix_riot service. 2021-02-01 20:51:28 +01:00
Jesper Hess a692e7d2cb
Migrate Passit to docker_service & set correct volume folder path 2021-01-28 14:01:19 +01:00
Víðir Valberg Guðmundsson cec959a47e Upgrade portainer to 2.0.1. 2021-01-26 21:59:26 +01:00
Jesper Hess 9ae295896f
Use docker_service ansible command 2021-01-26 20:40:22 +01:00
Jesper Hess 3fe7d162aa
Use correct volume folder 2021-01-26 20:01:05 +01:00
Jesper Hess 86de1fd24e
Initial work on restic container for backup 2021-01-26 19:57:06 +01:00
Jesper Hess f5293c016d
Change YAML to use lists instead of comma-separated strings for domains because it looks nicer 2020-12-17 08:43:24 +01:00
Jesper Hess bb5c77e602
Fix typo 2020-11-27 10:48:02 +01:00
Jesper Hess 21e2b743ef Merge pull request 'Bump Matrix max upload size to a whopping 50 MB' (#45) from matrix-max-upload-size into master
Reviewed-on: data.coop/ansible#45

All good, thanks!
2020-11-27 09:37:58 +00:00
Reynir Björnsson 8d88016efd Matrix: up nginx client_max_body_size to 50MB
Then it's consistent with max_upload_size (sort of - modulo overhead in
http)
2020-11-27 10:36:51 +01:00
Jesper Hess 2ac2d8b8da
Change ouroboros interval to 10min to hopefully fly under the new docker hub rate limit. 2020-11-23 08:25:35 +01:00
Reynir Björnsson 9a0fe69789 Add cryptoaarhus website 2020-09-11 18:44:15 +02:00
Jesper Hess 3e098546ef
Update gitea to v 1.12.3 2020-08-31 18:24:47 +02:00
Jesper Hess e7d69cd6df Merge pull request 'Gitea network werent autocreated' (#40) from rluch/ansible:rluch/fix-initially-missing-gitea-network into master 2020-08-31 05:50:05 +00:00
Jesper Hess 99cb94c94a
Update Riot and Synapse to latest 2020-08-15 17:21:12 +02:00
Jesper Hess ad243a5777
Fix problem with new.data.coop overwriting the old site 2020-06-10 20:15:13 +02:00
Vidir Valberg Gudmundsson 4cf48f13c0 Add new data.coop website. Fix postfix container for newest ansible. Comment out tt-rss. 2020-05-29 23:36:07 +02:00
Jesper Hess 5a5bb50e09
Upgrade synapse and riot to latest 2020-05-08 15:43:58 +02:00
Rasmus Lundsgaard Christiansen d49b943fd2 Gitea network werent autocreated 2020-04-12 16:34:52 +02:00
Jesper Hess 09617dd35a
Move postfix network config to postfix.yml file instead of base services.yml file 2020-03-04 18:05:48 +01:00
Jesper Hess f2a6aab2fe
Drone is working now 2020-03-01 13:47:09 +01:00
Jesper Hess e0f01bb78e
Upgrade Drone initial steps 2020-03-01 08:03:05 +01:00
Vidir Valberg Gudmundsson d51edc2922 Upgrade gitea. 2020-02-27 09:44:33 +01:00
Vidir Valberg Gudmundsson 47d7abe631 Upgrade synapse and riot. 2020-02-26 20:55:21 +01:00
Vidir Valberg Gudmundsson 6e94ac766b Upgrade portainer. 2020-02-26 20:27:05 +01:00
Jesper Hess 1adc11e9c4 Add ulovliglogning.dk website to the stack 2020-01-13 19:24:54 +01:00
Jesper Hess edfd530afe
Upgrade Synapse to v1.7.1 and Riot v1.5.6 2019-12-19 11:18:41 +01:00
Reynir Björnsson 6331805793 Add smtps port 2019-11-19 11:10:05 +01:00
Jesper Hess 3f2c7b1547
Upgrade Synapse to v1.5.1 and Riot to v1.5.3 2019-11-11 09:56:02 +01:00
Jesper Hess 71664653b0
Upgrade to Synapse 1.0.0 and Riot-Web 1.2.1 2019-06-12 14:33:35 +02:00
Jesper Hess 57cf5103c5
Upgrade to Matrix 0.99.5 and Riot 1.2.0 2019-05-30 19:59:37 +02:00
Jesper Hess 5566be7da9
Make netdata update via ouroboros 2019-05-30 18:53:26 +02:00
Jesper Hess 70632c26c2
Add tt-rss service 2019-04-25 12:05:28 +02:00
Jesper Hess fb67e038a8
Upgrade riot to 1.0.7 2019-04-10 18:01:58 +02:00
Jesper Hess 999f266af5
Update synapse to v0.99.3 2019-04-10 17:53:46 +02:00
Jesper Hess ba28b1eb0c
Add SYNAPSE_CACHE_FACTOR env var 2019-03-30 09:35:04 +01:00
Jesper Hess 1f69fdc3b4
Rewrite matrix/riot to use docker_service 2019-03-15 19:34:27 +01:00
Víðir Valberg Guðmundsson ada37f206a Adding networks to mailu database container. 2019-03-15 18:19:21 +01:00
Víðir Valberg Guðmundsson 8b10f40edd Add portainer. 2019-03-15 12:38:36 +01:00
Jesper Hess 59319938b8
Upgrade riot to 1.0.3 2019-03-13 06:37:22 +01:00
Jesper Hess be65327ea9
Pin specific version of matrix 2019-03-11 17:34:34 +01:00
Jesper Hess fff9f1e9da
Extract matrix config to file, make sure everything still works as before 2019-03-07 21:28:54 +01:00
Jesper Hess fb0efacf40
Add volume folder for matrix 2019-03-07 13:23:10 +01:00
Jesper Hess 8b5e8a276b
Reduce log level to hopefully lighten the load 2019-03-05 20:00:20 +01:00
Jesper Hess 05eb677c3f
Add quotes in a couple of places 2019-03-05 15:17:53 +01:00
Víðir Valberg Guðmundsson a43c52e71e Fix stuff to get mailu to work. 2019-03-05 15:10:24 +01:00
Víðir Valberg Guðmundsson 6ffdac0c25 Fix mailu version variable. 2019-03-05 13:19:41 +01:00
Víðir Valberg Guðmundsson 8a0a2bf0a0 Merge branch 'master' into service/mailu 2019-03-05 13:10:24 +01:00
Víðir Valberg Guðmundsson ae78c942d7 Use ansible_service to run mailu containers with docker compose. 2019-03-05 13:07:57 +01:00
Jesper Hess 0f398cef3f
Upgrade riot to 1.0.1 2019-03-05 10:59:32 +01:00
Jesper Hess 0c5ed48600
Upgrade CodiMD 2019-03-05 10:06:10 +01:00
Jesper Hess ae2873e4d9
vhost config file for matrix domain 2019-03-05 09:06:19 +01:00
Jesper Hess 4db622313d
Publish port for nginx to forward connections to 2019-03-05 09:04:47 +01:00
Jesper Hess fef1951d57
Add necessary nginx configs to get matrix federation to work 2019-03-05 08:37:16 +01:00
Jesper Hess 1f8b1827ff
Rearrange matrix+riot ansible script, move volumes to host mounts. 2019-03-05 08:36:30 +01:00
Jesper Hess 55c8e77254
Move openldap to volume mounts 2019-03-04 18:21:14 +01:00
Jesper Hess 2f413b3e99
Switch out watchtower with Ouroboros 2019-03-04 16:28:51 +01:00
Jesper Hess 9ff11808ce
Add watchtower to manage auto-update of containers 2019-03-03 15:45:35 +01:00
Jesper Hess 0c1e94323c
Add drone CI/CD pipeline 2019-03-03 15:17:08 +01:00
Jesper Hess 787f47d45e
Set restart policy on containers that were missing it 2019-03-03 07:38:00 +01:00
Víðir Valberg Guðmundsson f5bc79e636 Add network. 2019-03-02 23:25:07 +01:00
Víðir Valberg Guðmundsson f734e7608b Merge branch 'master' into service/mailu 2019-03-02 23:10:36 +01:00
Víðir Valberg Guðmundsson d25555d107 Initial mailu setup 2019-03-02 23:05:00 +01:00
Jesper Hess 1cd9b67b4e
Configure gitea container as per old server 2019-03-02 21:30:54 +01:00
Jesper Hess 454fc751d2
Add VIRTUAL_PORT to gitea 2019-03-02 21:16:00 +01:00
Jesper Hess e30f05d3e4
Clean up gitea docker 2019-03-02 21:15:59 +01:00
Jesper Hess ea8804d31c
Add cryptohagen.dk website 2019-03-02 19:51:32 +01:00
Jesper Hess e118b30873
Deploy https://data.coop as a container 2019-03-02 19:24:42 +01:00
Jesper Hess 1400b18930
Set up authentication for local registry + log in 2019-03-02 19:15:37 +01:00
Jesper Hess 3b596c5701
Add docker registry container 2019-03-02 18:29:15 +01:00
Jesper Hess 92baab22a9
Rename of server in netdata 2019-02-28 20:51:30 +01:00
Jesper Hess eb36b822b3
Add netdata as docker container 2019-02-28 08:38:23 +01:00
Jesper Hess df913b2622
Fix missing quotes in ENV variables 2019-02-28 08:22:38 +01:00
Víðir Valberg Guðmundsson 14e72b2a5c Pinning riot container. 2019-02-16 00:38:44 +01:00
Víðir Valberg Guðmundsson 3a2ac5cb6b Getting codimd to work. 2019-02-14 22:52:55 +01:00
Jesper Hess dcf8fe8087
Add codimd service. LDAP isn't working just yet 2019-02-13 21:17:48 +01:00
Víðir Valberg Guðmundsson fce600d56c Moving nginx volumes to bind volumes. 2019-02-13 10:36:04 +01:00
Víðir Valberg Guðmundsson 3def4b490b Some small fixes to privatebin. 2019-02-13 10:35:45 +01:00
Jesper Hess c7fe698bc2 Merge branch 'privatebin' of data.coop/ansible into master
Resolves #8
2019-02-13 09:10:39 +00:00
Jesper Hess 26792454f4
Finalise privatebin service setup 2019-02-13 10:05:00 +01:00
Víðir Valberg Guðmundsson 79149a4cba Adding some missing matrix stuff. Trying to get federation to work. 2019-02-13 09:49:22 +01:00
Jesper Hess 7a1e2c4b02
Fix typo 2019-02-13 08:54:05 +01:00