aa54dcffdc
set access mode to 0000 to disable writes in mount point
2023-11-04 17:16:02 +01:00
2138870520
nfs server wird nicht im k3s laufen, labeling entfernt
2023-11-04 17:16:02 +01:00
aff06a396f
add more ansible tasks to rolE
2023-11-04 17:16:02 +01:00
760f2d7137
initial plan for storage host role
2023-11-04 17:16:02 +01:00
b70bf5222e
⬆️ Apply security releases for cleanuri components
...
Security releases are available due to a vulnerability in the json library:
* https://github.com/penguineer/cleanURI-apigateway/releases/tag/v0.3.1
* https://github.com/penguineer/cleanURI-canonizer/releases/tag/v0.3.1
2023-10-16 12:00:05 +02:00
13a5285f89
⬆️ Update cleanuri-webui to 0.2.0
...
https://github.com/penguineer/cleanURI-webui/releases/tag/v0.2.0
2023-02-24 16:39:28 +01:00
04c68cd410
🐢 Show some appreciation
...
See http://www.gnuterrypratchett.com/
2022-11-22 18:49:39 +01:00
059b8a0bea
👌 Expand arguments for readability
2022-11-22 18:35:22 +01:00
03dbd132eb
🔊 Send DD24 cron errors to syslog
2022-11-22 18:34:54 +01:00
29ead08db8
🔇 Disable curl transfer logs for DD24 call
2022-11-22 18:34:25 +01:00
ad9dfbffd8
✨ Add option to set ProxyPreserveHost
...
https://httpd.apache.org/docs/current/en/mod/mod_proxy.html#proxypreservehost
2022-11-12 13:32:25 +01:00
0b83ee25cd
🔧 Add timezone info to cleanuri containers
2022-11-10 17:54:45 +01:00
c620de7d0d
fix file permissions for setup_http_site_proxy
2022-10-28 21:19:48 +02:00
bbf01577fd
fix: fix missing file permissions for role setup_http_site_proxy
2022-10-28 21:19:44 +02:00
7555a13bf8
fix: fix missing file permissions for role docker_setup
2022-10-28 21:18:17 +02:00
e071790c1e
🔥 Remove obsolete role dehydrated-cron
...
We replaced this with penguineer.dehydrated_cron.
2022-10-25 16:54:14 +02:00
60ff54ce74
fix: rename role setup-http-site-proxy to resolve ansible lint warning 106
2022-10-24 22:22:36 +02:00
1d0c703c42
fix: rename role nginx-https-ingres to resolve ansible lint warning 106
2022-10-24 22:22:35 +02:00
3d22d93ba1
fix: rename role dd24-dyndns-cron to resolve ansible lint warning 106
2022-10-24 22:22:35 +02:00
38ff34fb57
fix: rename role apache-letsencrypt to resolve linter warnings
2022-10-24 22:22:35 +02:00
69cf188426
fix: suppress false positive ansible lint warning 503
2022-10-24 22:22:35 +02:00
24929a36bc
✨ Add a role to set up cleanuri (uritools)
2022-09-15 18:09:16 +02:00
b9488e19db
🐛 Fix proxy site template
...
These are errors from a bodged PR (my bad) that has been merged too early.
2022-09-14 23:25:41 +02:00
182feeca58
🔥 Remove role setup-http-dehydrated
...
This feature is now provided by setup-http-site-proxy
2022-09-08 15:45:39 +02:00
e3020b6d71
✨ Enable setup-http-site-proxy with missing proxy target
...
If no proxy port is defined, only the dehydrated HTTP endpoint is created
and the HTTPS endpoint returns 404.
2022-09-08 15:43:54 +02:00
c4af7754b2
✨ Use variables to configure dehydrated locations
...
These variables match https://github.com/24367dfa/ansible-role-dehydrated
2022-09-08 15:41:36 +02:00
4da338f0ad
🐛 Fix template in setup-http-dehydrated when IPv6 is missing
2022-09-06 21:02:48 +02:00
965538141d
✨ Allow to define a host for local access
...
If a host is defined as local, HTTPS traffic will not be forwared.
The LetsEncrypt proxy is still available.
2022-09-06 19:39:51 +02:00
6653129652
🔨 Refactor host statements to objects
2022-09-06 19:39:51 +02:00
0d3907d332
Merge pull request ' ✨ Add a role to allow letsencrypt access in Apache2' ( !72 ) from apache-letsencrypt into master
...
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/72
Reviewed-by: dkdent <dkdent@netz39.de>
2022-09-06 15:54:30 +00:00
f9197221c8
🔧 Setup Apache proxy pass for sites with invalid URIs
...
This is a setup according to https://www.rabbitmq.com/management.html#proxy
which solves a problem with RabbitMQ encoding vhost names in a non-standard
way.
As this setting does not hurt other sites, we can introduce it into the
general template.
2022-09-06 15:35:50 +02:00
1fe6526898
✨ Add a role to allow letsencrypt access in Apache2
2022-09-06 14:31:52 +02:00
68619b80b5
Add role to setup nginx with HTTPS forward capabilities
2022-08-27 20:32:56 +02:00
6762a7b644
Merge pull request ' 🐛 Fix Apache templates for missing IPv6' ( !62 ) from fix-apache-ipv6 into master
...
Reviewed-on: https://gitea.n39.eu/Netz39_Admin/netz39-infra-ansible/pulls/62
Reviewed-by: dkdent <dkdent@netz39.de>
2022-08-05 08:26:59 +00:00
a410ce5b8f
🐛 Fix template for missing IPv6 on apache-docker-proxy
2022-08-04 17:32:23 +02:00
31fc12dfb2
🐛 Fix template for missing IPv6 on apache-docker-forward
2022-08-04 17:32:06 +02:00
20942f8f4b
Add role dd24-dyndns-cron
...
Setup cron job to call curl for DynDNS update
2022-08-04 17:03:09 +02:00
b75205f96c
Use template to replace Docker apt list entry
2022-07-16 17:03:43 +02:00
af6092576c
Add a template for the docker apt list
...
This template is necessary because the apt_repository role cannot
determine if an entry should be replaced.
2022-07-16 17:03:43 +02:00
9bd5d8e71e
Make cert availability check more robust
2022-07-04 23:26:49 +02:00
48a4119420
Add rewrite rules for websockets
2022-07-04 23:26:49 +02:00
45206f4413
Add proxy headers
2022-07-04 23:26:49 +02:00
21b6fe0335
Enable proxy modules in Apache2
2022-07-04 23:26:49 +02:00
87fe645d8a
Add mod headers to apache
2022-07-04 16:17:57 +02:00
9584d5a1c7
Allow to set backend_host for http proxy
2022-07-01 16:17:24 +02:00
702f670965
Fix setup-http-site-forward: set correct port for IPv6 SSL vhost
2021-11-23 14:42:04 +01:00
b9ca9f851f
Fix dependency of dehydrated-cron
...
Role has a different name now
2021-03-11 21:28:25 +00:00
f8f5981a8d
Use certs dir from dehydrated role
2021-03-11 22:24:35 +01:00
9fe4d808c2
Use well-known dir from dehydrated role
2021-03-11 22:22:14 +01:00
08577a2636
Add a role that sets up an Apache site for Dehydrated validation
2021-03-11 22:22:14 +01:00
