Commit graph

700 commits

Author SHA1 Message Date
38ff34fb57 fix: rename role apache-letsencrypt to resolve linter warnings 2022-10-24 22:22:35 +02:00
69cf188426 fix: suppress false positive ansible lint warning 503 2022-10-24 22:22:35 +02:00
18e317a534 fix: resolve yaml lint warning 206
Variables should have spaces before and after: {{ var_name }}
2022-10-24 22:22:34 +02:00
tux
e199778041 Merge pull request '🐛 Fix certificate setup for krypton' (!94) from fix-krypton-certs into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/94
Reviewed-by: dkdent <dkdent@netz39.de>
2022-10-24 20:22:03 +00:00
f6b33076e0 🐛 Fix ldap cert directories 2022-10-24 21:14:40 +02:00
fa16ebc4ae 🐛 Remove faulty dehydrated_certs_dir variable 2022-10-24 21:14:04 +02:00
tux
37f1906ca1 Merge pull request 'feat: 🎉 add uptime-kuma container to pottwal' (!88) from dkdent/netz39-infra-ansible:add-uptime-kuma into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/88
Reviewed-by: Alexander Dahl <alex@netz39.de>
Reviewed-by: tux <tux@netz39.de>
2022-10-24 18:32:57 +00:00
tux
7f98efe556 Merge pull request 'feat: add nicer rendering to ansible config' (!92) from pretty-ansible-output into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/92
Reviewed-by: tux <tux@netz39.de>
2022-10-24 16:33:41 +00:00
2df5c3eed3 feat: add nicer rendering to ansible config 2022-10-24 16:33:16 +00:00
tux
c49860bef8 Merge pull request 'Add WebUI for the BrotherQL label printer' (!43) from brotherql into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/43
Reviewed-by: dkdent <dkdent@netz39.de>
2022-10-23 22:29:35 +00:00
4fe8b8bb78 fix indentation in pottwal playbook 2022-10-21 14:35:25 +02:00
5b47cd83f1 feat: add uptime.n39.eu to holmium 2022-10-21 14:35:01 +02:00
813689cca0 🔧 Add ingress entry for brotherql-web.n39.eu 2022-10-20 23:50:12 +02:00
c9c9fe7329 Add Web UI for the BrotherQL label printer 2022-10-20 23:50:12 +02:00
ecf615fa19 feat: 🎉 add uptime-kuma container to pottwal 2022-10-20 23:48:03 +02:00
57a8a7e6ad 🔧 Add IP of BrotherQL label printer to inventory 2022-10-20 23:36:57 +02:00
d60af83a9b Merge pull request '🐛 Fix interface binding for Prosody static site' (!91) from fix-jabber-static-html into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/91
Reviewed-by: Alexander Dahl <alex@netz39.de>
2022-10-20 21:22:48 +00:00
9f3f6353bd 🐛 Fix interface binding for Prosody static site 2022-10-20 23:15:39 +02:00
tux
60ba85f42c Merge pull request 'add-influx-db' (!89) from add-influx-db into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/89
Reviewed-by: tux <tux@netz39.de>
2022-10-20 21:11:10 +00:00
f30e482dd6 Add influx.n39.eu to dehydrated 2022-10-20 22:52:15 +02:00
3881a35bb5 feat: add influxdb docker config to pottwal 2022-10-20 22:46:54 +02:00
41c04b5ac4 feat: add ingress for influxDB 2022-10-20 22:46:54 +02:00
tux
457c795efb Merge pull request 'Move Redmine to pottwal' (!90) from redmine into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/90
Reviewed-by: dkdent <dkdent@netz39.de>
2022-10-20 20:40:28 +00:00
208245c4c5 Add redmine setup to pottwal
This setup comes from the Antiblau server and mimics the situation there.
2022-10-20 22:34:11 +02:00
e924da8c3b Add redmine.n39.eu to ingress config 2022-10-20 22:30:41 +02:00
416d776e97 Add redmine DB password to inventory 2022-10-20 22:30:41 +02:00
tux
70d2d63057 Merge pull request 'pottwal: Add prosody docker container' (!25) from alex/netz39-infra-ansible:prosody into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/25
Reviewed-by: tux <tux@netz39.de>
2022-10-20 20:25:38 +00:00
236f45dfec 🐛 Fix variable name
Suggested-by: Stefan Haun <tux@netz39.de>
2022-10-20 21:57:33 +02:00
7b3920a456 ⬆️ pottwal: Bump static-web-server to v2.13.1
Link: https://github.com/joseluisq/static-web-server/releases/tag/v2.13.1
2022-10-17 09:01:41 +02:00
7467649f1e ⬆️ pottwal: Bump static-web-server to v2.13.0
Link: https://github.com/joseluisq/static-web-server/releases/tag/v2.13.0
2022-10-13 07:57:48 +02:00
4a7a6d912e ⬆️ pottwal: Bump static-web-server to v2.12.0
Link: https://github.com/joseluisq/static-web-server/releases/tag/v2.12.0
2022-10-06 20:48:37 +02:00
7e206a8e52 👌 pottwal: Pin down tag for static-web-server container
Suggested-by: Stefan Haun <tux@netz39.de>
2022-10-06 20:48:37 +02:00
e483d0f19c 👌 pottwal: Check prosody data dir exists
Suggested-by: Stefan Haun <tux@netz39.de>
2022-10-06 20:48:37 +02:00
3537e91e35 🔧 holmium: Move https ingress for XMPP server
The http(s) stuff for jabber.n39.eu was a static page before.  We point
that to a static-webserver container on pottwal next to the xmpp server
container for now.
2022-10-06 20:48:26 +02:00
2dc0730efc 🔧 pottwal: Add alternative cert name for XMPP MUC
The config file /etc/dehydrated/domains.txt on the old host had this
line before:

        jabber.n39.eu conference.jabber.n39.eu

Link: https://github.com/24367dfa/ansible-role-dehydrated
2022-10-06 20:46:24 +02:00
75b5197069 🚨 pottwal: Fix indentation
yamllint complained.
2022-10-06 20:46:24 +02:00
8c97012a8a 🔨 pottwal: Use variable for xmpp domain name 2022-10-06 20:46:24 +02:00
fdc923263f 🍻 pottwal: jabber/prosody: Add deploy cert hook
Hook works outside of ansible in personal prosody instance. Hope I
understood the template correctly, docs of dehydrated role are quite
sparse on that.

The dehydrated cert path variable is only available since recent change
c4af7754b2 (" Use variables to configure dehydrated
locations").

Link: https://prosody.im/doc/certificates
2022-10-06 20:46:24 +02:00
e9ca246090 :web: pottwal: Prepare reverse proxy for prosody XMPP/Jabber server
The container can serve HTTP for yet unknown reasons, but that port is
not yet exposed.  Do NOT confuse this with the old static website
jabber.n39.eu which was decoupled from prosody and plain HTML only.

The reverse proxy is used to make the static website available, and to
let dehydrated renew the certs.  The certs are used for https to the
static website _and_ for the XMPP server itself!
2022-10-06 20:46:24 +02:00
caf1e0e123 🐳 pottwal: Add container hosting static website for XMPP 2022-10-06 20:46:24 +02:00
bd89c96fbb 🐳 pottwal: Add prosody docker container
The service should be moved away from helium.n39.eu into a container.
2022-10-06 20:46:24 +02:00
tux
081ee4dc61 Merge pull request '⬆️ fix dependency for unattended-upgrades' (!84) from dkdent/netz39-infra-ansible:fix-unattended-upgrade into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/84
Reviewed-by: tux <tux@netz39.de>
2022-10-05 18:36:39 +00:00
tux
c3934319fc Merge pull request 'Fix http(s) ingress for Jabber/XMPP server' (!86) from alex/netz39-infra-ansible:holmium into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/86
Reviewed-by: tux <tux@netz39.de>
2022-10-05 18:00:21 +00:00
c0f7994ce4 🔧 holmium: Fix host for jabber server
jabber.n39.eu including dehydrated runs on helium, always has.

Fixes: 734fbd1d75 ("Call nginx-https-ingress role for holmium")
2022-10-04 08:12:37 +02:00
2c32d746f6 🚨 holmium: Fix indentation
yamllint complained:

  9:3       error    wrong indentation: expected 4 but found 2  (indentation)
  12:7      error    wrong indentation: expected 8 but found 6  (indentation)
  14:9      error    wrong indentation: expected 10 but found 8  (indentation)
  19:9      error    wrong indentation: expected 10 but found 8  (indentation)
  23:9      error    wrong indentation: expected 10 but found 8  (indentation)
  32:9      error    wrong indentation: expected 10 but found 8  (indentation)
2022-10-04 08:08:11 +02:00
2efd892bc1 ✏️ adress issues from PR discussion
- fix typo in role name
- make origin patterns for unattended upgrades less release specific
2022-09-30 22:24:41 +02:00
fa7f16f814 ⬆️ fix dependency for unattended-upgrades
- resolves https://redmine.n39.eu/issues/722
- role https://github.com/jnv/ansible-role-unattended-upgrades is deprecated
- replacement is https://github.com/hifis-net/ansible-role-unattended-upgrades
2022-09-30 22:24:41 +02:00
tux
0f11db3f64 Merge pull request 'Add missing restart-policy entries for Radon docker containers' (!85) from docker-restart-policy into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/85
Reviewed-by: dkdent <dkdent@netz39.de>
2022-09-30 20:22:36 +00:00
6a03e55c16 Add missing restart-policy entries for Radon docker containers 2022-09-30 21:52:25 +02:00
tux
1b952f5386 Merge pull request 'Update to new CleanURI (uritools) version' (!83) from cleanuri into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/83
Reviewed-by: Alexander Dahl <alex@netz39.de>
2022-09-15 20:20:29 +00:00