JensWH/netz39-infra-ansible
1
0
Fork 0
forked from Netz39_Admin/netz39-infra-ansible
Code Pull requests Activity
685 commits 10 branches 0 tags 1.5 MiB
Commit graph

45 commits

Author SHA1 Message Date
David Kilias
66ebb7a09b 🧑‍💻 add ansible tag to redmine jobs 2023-09-20 22:04:08 +02:00
David Kilias
90161d24e3 fix renovate regex 2023-08-18 21:25:01 +02:00
David Kilias
3a6efe1f02 add handler to restart cron service after on cronjob change 2023-08-09 20:33:25 +02:00
David Kilias
8e1b6445cb fix: use correct cronscript location 2023-08-09 20:33:25 +02:00
David Kilias
f66e03e51d add renovate to cron on pottwal 2023-08-09 20:33:25 +02:00
David Kilias
74e0b9112d chore: cleanup docker image vars to enable renovate matching 2023-07-28 21:52:44 +02:00
David Kilias
95c56b7d1d fix: pottwal docker containers need additional 2023-07-26 22:07:45 +02:00
David Kilias
aaa09a24cd git: add ansible vault pass to gitignore 2023-07-25 23:26:23 +02:00
David Kilias
0972c1ce96 chore: rework/refactor pottwal vars 2023-07-25 19:59:34 +02:00
Stefan Haun
ed29dc7221 Create spaceapi.n39.eu site on pottwal 2023-07-02 16:31:38 +02:00
Stefan Haun
090fa3eb22 🔧 Pin the Grafana verion 
Pin the grafana version to avoid issues with incompatibilities in
dependend tools, such as grafana-kiosk.
 2023-04-12 23:35:58 +02:00
Stefan Haun
4ec9865eeb 🚚 Rename git host_port variable for gitea to forgejo 2023-04-03 13:53:55 +02:00
Stefan Haun
3b31b3427a 🚚 Rename git container to forgejo 
The gitea container must be deleted manually!
 2023-04-03 13:53:52 +02:00
Stefan Haun
7e515c40e2 🚚 Change git data dir from gitea to forgejo 
This change includes a manual directory rename on the server
 2023-04-03 13:53:48 +02:00
Stefan Haun
d345576eb5 🔧 Rename the git mgmt name to remove "gitea" 2023-03-30 11:37:25 +02:00
Stefan Haun
6cda14525d 🎨 Switch from gitea to forgejo 2023-03-30 11:37:09 +02:00
Stefan Haun
ea3aa9f6cc ⬆️ Update gitea to 1.19.0 
Preparation for a switch to Forgejo
 2023-03-29 16:37:47 +02:00
David Kilias
b978a22eba add config for homebox container 
add TZ env to homebox container
 2023-03-20 19:32:41 +01:00
Stefan Haun
f0a68bbaec ⬆️ Upgrade gitea to 1.18.3 
Changes to the configuration have been done manually.
 2023-02-20 20:54:56 +01:00
Alexander Dahl
4b74ca0d0f 🔨 Move influxdb org to variable 
We will need that for deploying telegraf docker metrics container soon.
 2023-01-10 06:19:52 +01:00
Alexander Dahl
0e0e93d880 🚑 pottwal: Change group of prosody certs dir 
prosody runs as unpriviledged user inside of its docker container with
this uid/gid:

    root@676f7272aaa6:/etc/prosody# id prosody
    uid=101(prosody) gid=102(prosody) groups=102(prosody),101(ssl-cert)

The certs dir has 0750 permissions and thus the process can not access
it and finds no certs, leading to stream errors for s2s and c2s
connections.  We can not use group name, because the same group has a
different gid on the host.  Numerical is fine (even if ansible needs
this as a string, `chown` seems to know how to handle this).

References: !119
Signed-off-by: Alexander Dahl <alex@netz39.de>
 2023-01-02 17:58:56 +01:00
Alexander Dahl
d79566f613 🔧 pottwal: Mount prosody config read-only 
The prosody process only needs to write in the certs subdirectory.
 2022-12-22 11:19:33 +01:00
Alexander Dahl
88e14f7ca6 👌 pottwal: Move prosody config to /etc 
Configuration is not data.

Suggested-by: Stefan Haun <tux@netz39.de>
 2022-12-22 11:19:33 +01:00
Alexander Dahl
1de850826f 👌 pottwal: Add handler for prosody restart 
The XMPP server should be restarted after the config has changed.

Suggested-by: Stefan Haun <tux@netz39.de>
 2022-12-22 11:19:33 +01:00
Alexander Dahl
bd8500bf3a 🔧 prosody: Rework configuration for prosody v0.11 
The previous configuration was copied over from helium.n39.eu for
prosody v0.9 and did only work more or less by accident.  The new
configuration was done based on the upstream example configuration.

Some modules we used for 0.9 were replaced, some are not necessary
anymore, some modules are new for 0.11.  The list was reviewed carefully
on a test host, and proved to work for several months there.

The VirtualHost 'localhost' is kept, but moved from a separate
configuration file to the main configuration, because it's only one line
and it's part of the example config anyways.
 2022-12-22 11:19:33 +01:00
Alexander Dahl
fa811dd787 👌 prosody: Use plain file instead of template 
No need to run the template engine, if no replacements are done.

Suggested-by: David Kilias <dkdent@netz39.de>
 2022-12-22 11:19:33 +01:00
Alexander Dahl
923dfb49df 🍱 prosody: Import existing configuration files 
No changes reported by ansible to what's currently deployed.
 2022-12-22 11:19:16 +01:00
Alexander Dahl
ae7b65cc5f 🔧 Move docker_setup role application to group playbook 
To install docker on a host you have to put it into that group in
inventory now, instead of adding the role to each host playbook.  Idea
is to extend the group docker_host playbook by more docker related
things as for example metrics and monitoring.
 2022-12-21 19:00:22 +01:00
Alexander Dahl
844325f81d ⬆️ static-web-server: Bump and change update strategy 
With the new release we change to docker image tags without patch level.
Project promises to adhere to semantic versioning, so patch level bumps
should contain compatible bugfixes only.

Link: https://github.com/static-web-server/static-web-server/blob/master/CHANGELOG.md
Link: https://github.com/static-web-server/static-web-server/releases/tag/v2.14.0
 2022-11-23 15:41:41 +01:00
Stefan Haun
28efc2bd4b 🐛 Fix missing grafana container settings 
especially restarting the container, e.g. after a Docker update
 2022-11-22 21:32:07 +01:00
Alexander Dahl
d37b6cea82 🚨 Fix "trailing spaces" warnings 
yamllint complained:

host-pottwal.yml
  415:1     error    trailing spaces  (trailing-spaces)
 2022-11-18 08:50:54 +01:00
Alexander Dahl
4a263e3a0d 🚨 Fix "too many blank lines" warnings 
yamllint warned:

host-pottwal.yml
  98:1      error    too many blank lines (3 > 2)  (empty-lines)

host-tau.yml
  173:1     error    too many blank lines (1 > 0)  (empty-lines)
 2022-11-18 08:44:43 +01:00
Stefan Haun
039e64040c 🔧 Mount configuration for influxdb from data dir 2022-11-17 00:14:30 +01:00
Stefan Haun
5b327382fc 🔧 Move influx data to subdirectory 2022-11-16 19:21:58 +01:00
Stefan Haun
612d666b2e 🔧 Add volume for grafana configuration 
We need to make custom configurations for grafana.
 2022-11-12 16:24:05 +01:00
dkdent
0ebeff9225 Merge pull request 'feat: add playbook for grafana configuration' (!110) from feat/configure-grafana into master 
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/110
Reviewed-by: Stefan Haun <tux@netz39.de>
 2022-11-12 15:48:50 +01:00
David Kilias
4e4cd46102 feat: add playbook for grafana configuration 2022-11-12 15:31:51 +01:00
Stefan Haun
538dd6c470 🐛 Set ProxyPreserveHost On for grafana 
https://community.grafana.com/t/origin-not-allowed-messages-after-upgrade-to-8-3-6/60550
 2022-11-12 13:32:25 +01:00
David Kilias
3f76e19c4d fixup! feat: add grafana container to pottwal 2022-11-11 20:25:22 +01:00
David Kilias
cbf8cce0d3 add https ingress for grafana 2022-11-11 14:52:37 +01:00
David Kilias
85c0c6af4e feat: add grafana container to pottwal 2022-11-10 23:47:29 +01:00
Stefan Haun
83d1a64689 🔧 Change env to yaml dict for jabber-static-website 2022-11-10 13:05:18 +01:00
Stefan Haun
5adb80503d 🔧 Change env to yaml dict for gitea 2022-11-10 13:05:18 +01:00
Stefan Haun
6796e2f273 🔧 Add timezone information to docker containers 
Docker does not take the tzdata from host systems, so the
timezone needs to be set individually.

Otherwise dates without explicit timezone information or Z will
be generated or interpreted in the wrong timezone
(such as dokuwiki signatures)
 2022-11-10 13:05:18 +01:00
Stefan Haun
f11ddd9778 🚚 Rename host playbooks to host-* 2022-11-04 22:34:37 +01:00
Renamed from pottwal.yml (Browse further)