Commit graph

39 commits

Author SHA1 Message Date
95c56b7d1d fix: pottwal docker containers need additional 2023-07-26 22:07:45 +02:00
aaa09a24cd git: add ansible vault pass to gitignore 2023-07-25 23:26:23 +02:00
0972c1ce96 chore: rework/refactor pottwal vars 2023-07-25 19:59:34 +02:00
ed29dc7221 Create spaceapi.n39.eu site on pottwal 2023-07-02 16:31:38 +02:00
090fa3eb22 🔧 Pin the Grafana verion
Pin the grafana version to avoid issues with incompatibilities in
dependend tools, such as grafana-kiosk.
2023-04-12 23:35:58 +02:00
4ec9865eeb 🚚 Rename git host_port variable for gitea to forgejo 2023-04-03 13:53:55 +02:00
3b31b3427a 🚚 Rename git container to forgejo
The gitea container must be deleted manually!
2023-04-03 13:53:52 +02:00
7e515c40e2 🚚 Change git data dir from gitea to forgejo
This change includes a manual directory rename on the server
2023-04-03 13:53:48 +02:00
d345576eb5 🔧 Rename the git mgmt name to remove "gitea" 2023-03-30 11:37:25 +02:00
6cda14525d 🎨 Switch from gitea to forgejo 2023-03-30 11:37:09 +02:00
ea3aa9f6cc ⬆️ Update gitea to 1.19.0
Preparation for a switch to Forgejo
2023-03-29 16:37:47 +02:00
b978a22eba add config for homebox container
add TZ env to homebox container
2023-03-20 19:32:41 +01:00
f0a68bbaec ⬆️ Upgrade gitea to 1.18.3
Changes to the configuration have been done manually.
2023-02-20 20:54:56 +01:00
4b74ca0d0f 🔨 Move influxdb org to variable
We will need that for deploying telegraf docker metrics container soon.
2023-01-10 06:19:52 +01:00
0e0e93d880 🚑 pottwal: Change group of prosody certs dir
prosody runs as unpriviledged user inside of its docker container with
this uid/gid:

    root@676f7272aaa6:/etc/prosody# id prosody
    uid=101(prosody) gid=102(prosody) groups=102(prosody),101(ssl-cert)

The certs dir has 0750 permissions and thus the process can not access
it and finds no certs, leading to stream errors for s2s and c2s
connections.  We can not use group name, because the same group has a
different gid on the host.  Numerical is fine (even if ansible needs
this as a string, `chown` seems to know how to handle this).

References: !119
Signed-off-by: Alexander Dahl <alex@netz39.de>
2023-01-02 17:58:56 +01:00
d79566f613 🔧 pottwal: Mount prosody config read-only
The prosody process only needs to write in the certs subdirectory.
2022-12-22 11:19:33 +01:00
88e14f7ca6 👌 pottwal: Move prosody config to /etc
Configuration is not data.

Suggested-by: Stefan Haun <tux@netz39.de>
2022-12-22 11:19:33 +01:00
1de850826f 👌 pottwal: Add handler for prosody restart
The XMPP server should be restarted after the config has changed.

Suggested-by: Stefan Haun <tux@netz39.de>
2022-12-22 11:19:33 +01:00
bd8500bf3a 🔧 prosody: Rework configuration for prosody v0.11
The previous configuration was copied over from helium.n39.eu for
prosody v0.9 and did only work more or less by accident.  The new
configuration was done based on the upstream example configuration.

Some modules we used for 0.9 were replaced, some are not necessary
anymore, some modules are new for 0.11.  The list was reviewed carefully
on a test host, and proved to work for several months there.

The VirtualHost 'localhost' is kept, but moved from a separate
configuration file to the main configuration, because it's only one line
and it's part of the example config anyways.
2022-12-22 11:19:33 +01:00
fa811dd787 👌 prosody: Use plain file instead of template
No need to run the template engine, if no replacements are done.

Suggested-by: David Kilias <dkdent@netz39.de>
2022-12-22 11:19:33 +01:00
923dfb49df 🍱 prosody: Import existing configuration files
No changes reported by ansible to what's currently deployed.
2022-12-22 11:19:16 +01:00
ae7b65cc5f 🔧 Move docker_setup role application to group playbook
To install docker on a host you have to put it into that group in
inventory now, instead of adding the role to each host playbook.  Idea
is to extend the group docker_host playbook by more docker related
things as for example metrics and monitoring.
2022-12-21 19:00:22 +01:00
844325f81d ⬆️ static-web-server: Bump and change update strategy
With the new release we change to docker image tags without patch level.
Project promises to adhere to semantic versioning, so patch level bumps
should contain compatible bugfixes only.

Link: https://github.com/static-web-server/static-web-server/blob/master/CHANGELOG.md
Link: https://github.com/static-web-server/static-web-server/releases/tag/v2.14.0
2022-11-23 15:41:41 +01:00
28efc2bd4b 🐛 Fix missing grafana container settings
especially restarting the container, e.g. after a Docker update
2022-11-22 21:32:07 +01:00
d37b6cea82 🚨 Fix "trailing spaces" warnings
yamllint complained:

host-pottwal.yml
  415:1     error    trailing spaces  (trailing-spaces)
2022-11-18 08:50:54 +01:00
4a263e3a0d 🚨 Fix "too many blank lines" warnings
yamllint warned:

host-pottwal.yml
  98:1      error    too many blank lines (3 > 2)  (empty-lines)

host-tau.yml
  173:1     error    too many blank lines (1 > 0)  (empty-lines)
2022-11-18 08:44:43 +01:00
039e64040c 🔧 Mount configuration for influxdb from data dir 2022-11-17 00:14:30 +01:00
5b327382fc 🔧 Move influx data to subdirectory 2022-11-16 19:21:58 +01:00
612d666b2e 🔧 Add volume for grafana configuration
We need to make custom configurations for grafana.
2022-11-12 16:24:05 +01:00
0ebeff9225 Merge pull request 'feat: add playbook for grafana configuration' (!110) from feat/configure-grafana into master
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/110
Reviewed-by: Stefan Haun <tux@netz39.de>
2022-11-12 15:48:50 +01:00
4e4cd46102 feat: add playbook for grafana configuration 2022-11-12 15:31:51 +01:00
538dd6c470 🐛 Set ProxyPreserveHost On for grafana
https://community.grafana.com/t/origin-not-allowed-messages-after-upgrade-to-8-3-6/60550
2022-11-12 13:32:25 +01:00
3f76e19c4d fixup! feat: add grafana container to pottwal 2022-11-11 20:25:22 +01:00
cbf8cce0d3 add https ingress for grafana 2022-11-11 14:52:37 +01:00
85c0c6af4e feat: add grafana container to pottwal 2022-11-10 23:47:29 +01:00
83d1a64689 🔧 Change env to yaml dict for jabber-static-website 2022-11-10 13:05:18 +01:00
5adb80503d 🔧 Change env to yaml dict for gitea 2022-11-10 13:05:18 +01:00
6796e2f273 🔧 Add timezone information to docker containers
Docker does not take the tzdata from host systems, so the
timezone needs to be set individually.

Otherwise dates without explicit timezone information or Z will
be generated or interpreted in the wrong timezone
(such as dokuwiki signatures)
2022-11-10 13:05:18 +01:00
f11ddd9778 🚚 Rename host playbooks to host-* 2022-11-04 22:34:37 +01:00
Renamed from pottwal.yml (Browse further)