Commit graph

65 commits

Author SHA1 Message Date
4a7a6d912e ⬆️ pottwal: Bump static-web-server to v2.12.0
Link: https://github.com/joseluisq/static-web-server/releases/tag/v2.12.0
2022-10-06 20:48:37 +02:00
7e206a8e52 👌 pottwal: Pin down tag for static-web-server container
Suggested-by: Stefan Haun <tux@netz39.de>
2022-10-06 20:48:37 +02:00
e483d0f19c 👌 pottwal: Check prosody data dir exists
Suggested-by: Stefan Haun <tux@netz39.de>
2022-10-06 20:48:37 +02:00
2dc0730efc 🔧 pottwal: Add alternative cert name for XMPP MUC
The config file /etc/dehydrated/domains.txt on the old host had this
line before:

        jabber.n39.eu conference.jabber.n39.eu

Link: https://github.com/24367dfa/ansible-role-dehydrated
2022-10-06 20:46:24 +02:00
75b5197069 🚨 pottwal: Fix indentation
yamllint complained.
2022-10-06 20:46:24 +02:00
8c97012a8a 🔨 pottwal: Use variable for xmpp domain name 2022-10-06 20:46:24 +02:00
fdc923263f 🍻 pottwal: jabber/prosody: Add deploy cert hook
Hook works outside of ansible in personal prosody instance. Hope I
understood the template correctly, docs of dehydrated role are quite
sparse on that.

The dehydrated cert path variable is only available since recent change
c4af7754b2 (" Use variables to configure dehydrated
locations").

Link: https://prosody.im/doc/certificates
2022-10-06 20:46:24 +02:00
e9ca246090 :web: pottwal: Prepare reverse proxy for prosody XMPP/Jabber server
The container can serve HTTP for yet unknown reasons, but that port is
not yet exposed.  Do NOT confuse this with the old static website
jabber.n39.eu which was decoupled from prosody and plain HTML only.

The reverse proxy is used to make the static website available, and to
let dehydrated renew the certs.  The certs are used for https to the
static website _and_ for the XMPP server itself!
2022-10-06 20:46:24 +02:00
caf1e0e123 🐳 pottwal: Add container hosting static website for XMPP 2022-10-06 20:46:24 +02:00
bd89c96fbb 🐳 pottwal: Add prosody docker container
The service should be moved away from helium.n39.eu into a container.
2022-10-06 20:46:24 +02:00
d874aab674 Add uritools-api to dehydrated 2022-09-15 18:09:16 +02:00
69cce57024 Switch to new CleanURI (uritools) implementation 2022-09-15 18:09:16 +02:00
feaf052f65 🚚 Move entities validation service from pottwal to krypton
This is a service handling member data, so it moves to krypton.
2022-09-06 20:31:27 +02:00
cc43557511 🔧 Block external access to docker containers
This needs to go through ingress now!
2022-09-06 17:55:58 +02:00
76c5cdb3e1 Add roles for ingress and cert management 2022-09-06 17:55:58 +02:00
f16cfe0a55 ⬆️ Bump clean_uri (uritools) to 0.4.1
Security update of a dependency by GitHub Dependabot
2022-09-02 13:24:33 +02:00
0da60fd545 Remove openhab 2022-08-27 18:27:35 +02:00
2c9870cd28 Call DD24 dyndns role on pottwal 2022-08-04 17:03:09 +02:00
13ffacdea2 Bump clean_uri to 0.4.0
This fixes the problem that the Reichelt Canonizer did not regognize
its own URIs.
2022-07-13 21:54:58 +02:00
529efb16a5 Set version 0.3.1 for mrtux/clean_uri 2022-07-10 22:46:22 +02:00
a943116c99 pottwal: Remove trailing whitespace
yamllint and ansible-lint were not happy.

Fixes: f62af6b4e7 ("add hedgedoc config")
2022-07-08 07:20:57 +02:00
142fd23720 Move LDAP from pottwal to krypton 2022-07-05 20:37:07 +02:00
2f78ff74f6 pottwal: ldap dehydrated Config auskommentiert 2022-07-05 17:00:09 +02:00
a070cd48b8 pottwal - add ldap docker similar to pingtech setup 2022-07-04 22:42:07 +02:00
d30eb2df9c Add openldap container on pottwal 2022-07-04 18:43:32 +02:00
4f78fa9656 Introduce a data_dir variable for pottwal
We've had too many confusions about the actual data directory and
unfortunately there are also inconsistencies. So use the data_dir
variable to mask host specific settings.
2022-06-29 00:15:43 +02:00
3d1c2b2252 Add HTTPS to URLs 2022-06-28 21:53:56 +02:00
fce7bd6f2a Quote environment variables
Ansible gets unhappy if there are values that could be interpreted by YAML
(e.g. boolean values or numbers), so quote everything as a principle.
2022-06-28 21:53:56 +02:00
af0ddb5ba1 Fix data directory 2022-06-28 21:53:56 +02:00
235cc19b9b Merge pull request 'add hedgedoc config' (!38) from dkdent/netz39-infra-ansible:hedgedoc into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/38
2022-06-28 14:01:07 +00:00
f62af6b4e7 add hedgedoc config 2022-06-27 23:43:38 +02:00
ad2225744f Move mosquitto from pottwal to radon 2022-06-25 18:15:52 +02:00
53c1b936ff Bump gitea to 1.16.8 2022-06-20 01:54:01 +02:00
24cf3d2dbf Bump gitea to 1.16.5 2022-04-15 14:49:11 +02:00
65bfb358dd pottwal: Strip trailing whitespace 2022-01-30 18:25:35 +01:00
be09ef57f6 pottwal: Fix indentation
Please yamllint.

Fixes: 3aced1fe46 ("Install gitea via ansible")
2022-01-30 18:25:35 +01:00
b1b3382728 Revert "Fix YAML format issues"
This reverts commit babeef8226.

Instead of fixing the indentation of the recently introduced gitea
stuff, the indentation of the old stuff was changed.
2022-01-30 18:25:35 +01:00
b6a05b8c8c Downgrade Openhab to 2.5.11
Openhab 3.1 does not work for us. The chosen version has been
detemined by analysing the (scarce) log entries. It seems that
migration beyond this point breaks the configuration and leads
to an incomplete setup.
2022-01-30 18:12:49 +01:00
85f2d98704 Allow external access to gitea port
Until we have a local reverse proxy, ports must be made available
to external access
2022-01-27 21:58:32 +01:00
6f4ede5c5f Fix gitea data dir 2022-01-27 21:58:22 +01:00
babeef8226 Fix YAML format issues 2022-01-27 21:53:34 +01:00
d50247690a Bump gitea to 1.15.10 2022-01-21 20:01:57 +01:00
4af65ede5a Add a note about gitea port 2222 2022-01-11 23:09:36 +01:00
3aced1fe46 Install gitea via ansible 2022-01-09 16:09:13 +01:00
300e1066dd openhab to 3.1.0 2021-07-28 20:46:33 +02:00
3306b751c6 add shlink config 2021-04-22 14:46:30 +02:00
526ff3485c fixing the typos, one at a time 2021-04-21 22:23:47 +00:00
0213268407 move vallidation service to svc subdomain 2021-04-21 22:23:47 +00:00
3c33244cd9 add version to docker image 2021-04-21 22:23:47 +00:00
f2a535a4f4 fix typo 2021-04-21 22:23:47 +00:00