51065764da
slapd: ensure certificate directory exists
2021-08-16 21:34:02 +02:00
cdfd65e83f
add ldap3 vhost to aeron
2021-08-16 17:32:03 +02:00
9a70e83037
common: add gnupg2
...
used to run apt-key via ansible
2021-08-16 17:17:16 +02:00
43cf634b96
docker: use ansible_distribution_release
2021-08-16 17:14:55 +02:00
6dceeeb9a4
gitea: bump to version 1.14.6
2021-08-06 23:02:03 +02:00
f19e8af40f
common: don't show diff for large zsh config files
2021-08-02 12:05:53 +02:00
1f967c2925
move installation of apt-transport-https to common
2021-08-02 12:04:14 +02:00
2eb5440c3c
common: install chrony (instead of ntp)
2021-08-02 09:24:13 +02:00
0d288bf6e1
common: remove now unused files
2021-08-01 11:31:41 +02:00
865c58bd4c
dns_*: initialize sqlite database
2021-07-31 09:11:31 +02:00
1b0db12005
common: enable serial console on KVM VMs
2021-07-31 00:12:22 +02:00
36b75e1c6a
dns_intern: fix role for non-clustered setups
2021-07-30 23:44:00 +02:00
0dd467e564
dns_intern: fix typo
2021-07-30 23:32:47 +02:00
26bdefaa10
dhcpd: make compatible with bullseye
2021-07-30 23:31:54 +02:00
de1a36efb1
dhcpd: dns_intern: add dhcp ranged for auweg
2021-07-30 23:31:04 +02:00
ead1afc293
common: don't force old-style interface names
...
old style interface names are not really useful anymore
but for now we don't want to force new-style names either
2021-07-30 23:08:24 +02:00
869a84dc3d
common: don't install unneeded ldap.conf anymore
2021-07-30 23:06:53 +02:00
7ac10f0e7d
new host: aeron
2021-07-30 23:05:53 +02:00
5e9360bd48
new VM host at auweg: weizen
2021-07-30 22:42:49 +02:00
2f6ae888b5
fileserver: minor improvements
2021-07-29 12:38:06 +02:00
3be8cce6d8
workadventure: new role for workadventure
2021-07-22 16:51:57 +02:00
41a94d7142
gitea: bump to version 1.14.5
2021-07-19 09:49:48 +02:00
e03d7ab821
common: drop FreeBSD support
2021-07-14 17:41:24 +02:00
f0c55693a8
new host: epona (running netbox)
2021-07-14 17:38:28 +02:00
241c706625
gitea: bump to version 1.14.4
2021-07-09 10:16:55 +02:00
1b9b5badd3
dns_intern: update VPN related DNS records
2021-07-06 08:18:12 +02:00
7a4ec7aae1
matrix: disable reverse proxy access log
2021-06-30 12:50:21 +02:00
09043f39ca
dhcpd: dns_intern: new device ap06
2021-06-30 12:48:11 +02:00
cbee52e0bc
gitea: bump to version 1.14.3
2021-06-19 15:25:15 +02:00
f96090ca5d
fileserver: add basic samba config
2021-06-15 21:57:58 +02:00
046fe91aef
fileserver: fix typo
2021-06-09 20:57:05 +02:00
1b34fd4944
drone_runner: pull container on deployment
2021-06-09 20:03:53 +02:00
d2c46eae8c
docker: use python3-docker (for ansible)
2021-06-09 15:52:30 +02:00
b2442be2d8
fileserver: new wip role for bowle (now on Debian)
2021-06-07 13:05:34 +02:00
7b1f998af2
use auto discovered python instead of legacy
2021-06-03 15:14:55 +02:00
3e1cdb6bf5
matrix: rebase homeserver.yaml.j2 on upstream 1.34.0
2021-05-20 18:36:05 +02:00
e8dcf169e2
dhcpd, dns_intern: provide dynamic dns entries
...
clients in the 172.23.3.0/24 subnet are now provided with dynamic dns
entries in the users.binary.kitchen domain - forward entries only
2021-05-16 18:35:29 +02:00
e0a5d012ee
icinga: create host entries for all hosts known to ansible
2021-05-14 13:32:45 +02:00
1aebd59435
hackmd: rename vars to hedgedoc and bump version to 1.8.2
2021-05-14 12:20:09 +02:00
66ee1f011e
hackmd: bump to version 1.8.1
2021-05-11 17:04:32 +02:00
be3c4f3cf7
gitea: bump to version 1.14.2
2021-05-10 20:50:57 +02:00
0c1e89c24e
dns_intern: add forgotten host bob
2021-05-08 13:58:49 +02:00
f18c07e9fa
icinga: rename config template
2021-05-08 13:57:13 +02:00
a5620befbe
gitea: bump to version 1.14.1
2021-05-07 10:23:51 +02:00
c93b864f03
icinga: first attept at monitoring with icinga
2021-05-06 20:39:40 +02:00
19242491f5
gitea: bump to version 1.14.0
2021-04-12 13:01:57 +02:00
1a5f7b7e3f
gitea: bump to version 1.13.6
2021-03-24 20:11:03 +01:00
ae725e673c
gitea: bump to version 1.13.5
2021-03-22 15:58:27 +01:00
8a27fe96b1
matrix: adjust vhost settings for 1.29
2021-03-14 12:16:55 +01:00
b03c92eba0
gitea: bump to version 1.13.4
2021-03-07 17:32:32 +01:00
90cbfdb435
hackmd: upgrade to HedgeDoc 1.7.2
2021-02-11 12:35:29 +01:00
dae9ba85e4
gitea: bump to version 1.13.2
2021-02-11 12:24:43 +01:00
57709979eb
mail: fix escaping in /etc/default/postsrsd
2021-02-10 19:04:15 +01:00
a7373f86f3
matrix: rebase homeserver.yml against upstream
2021-02-10 09:51:42 +01:00
4cc75159d2
gitea: bump to version 1.13.1
2020-12-28 19:58:21 +01:00
ac892a93cb
hackmd: upgrade to HedgeDoc 1.7.1
2020-12-28 17:53:02 +01:00
15fbe6c29c
web_mc: fix typo
2020-12-24 13:05:44 +01:00
39e5ad9e20
web_mc: webserver for minecraft map
2020-12-24 12:38:42 +01:00
2514396745
member_sw: add gcc
2020-12-02 19:40:06 +01:00
b1589a0ec1
gitea: bump to version 1.13.0
2020-12-02 19:37:50 +01:00
df78e0119f
uau: remove DL-Limit
...
This setting also affects interactive downloads
2020-11-24 20:00:11 +01:00
30652ebe5d
gitea: bump to version 1.12.6
2020-11-16 16:11:39 +01:00
777d56712e
web_plk: also get a cert for www.
2020-11-15 22:31:34 +01:00
39d252a2bc
web_plk: do a few steps manually for now
2020-11-15 22:30:07 +01:00
23c80e75ba
nextcloud: use correct php version
2020-11-15 20:42:48 +01:00
ada1a968ff
nextcloud: update php dependencies
2020-11-15 20:37:46 +01:00
8edc26cc74
uau: make reboot configurable
2020-11-15 16:12:44 +01:00
25ef1394f4
partdb: remove role
2020-11-14 11:36:01 +01:00
dfe0804a3d
librenms: comment out broken mysql_user statement
...
The used mysql_user statement seems to be broken. Since the service is
currently running the statement is commented out in order to still be
able to run this role.
2020-11-14 10:59:32 +01:00
6249d9d62f
uau: reboot if needed (e.g. on kernel update)
...
Manually rebooting is tedious and nothing bad happend over the last few
years. Also important VMs are still on manual update.
2020-11-14 10:44:55 +01:00
8ef5789f4a
nextcloud: use list instead of with_items
2020-11-13 21:35:15 +01:00
4e87db5364
dns_extern: use list instead of with_items
2020-11-13 21:34:36 +01:00
770dbc4779
dns_inten: use list instead of with_items
2020-11-13 21:34:04 +01:00
e592ebbf4b
dns_extern: rename from dns-extern
2020-11-13 21:31:44 +01:00
47bea1eb41
dns_intern: rename from dns-intern
2020-11-13 21:31:11 +01:00
3db745797a
partdb: use list instead of with_items
2020-11-13 21:29:56 +01:00
0ea7576e80
hackmd: use list instead of with_items
2020-11-13 18:29:32 +01:00
a5bef39ba4
member_sw: use list instead of with_items
2020-11-13 18:28:53 +01:00
421785c336
coturn: use simple statement instead of with_items
2020-11-13 18:27:52 +01:00
d8ab59accc
web: use list instead of with_items
2020-11-13 18:26:10 +01:00
28c9d8ad3a
prosody: use list instead of with_items
2020-11-13 18:25:34 +01:00
64a557ab85
matirx: use list instead of with_items
2020-11-13 18:25:01 +01:00
b3b5129cc4
mail: use list instead of with_items
2020-11-13 18:24:23 +01:00
cf52cc9932
librenms: use list instead of with_items
2020-11-13 18:23:17 +01:00
6b4dbb9177
drone_runner: rename from drone-runner
2020-11-13 18:20:55 +01:00
989db7f961
bk_dss: rename from bk-dss
2020-11-13 18:19:36 +01:00
7de38a4602
common: use list instead of with_items
2020-11-13 17:39:47 +01:00
364d9428d8
web_plk: new role (on technetium.binary-kitchen.net)
2020-11-13 17:32:43 +01:00
5492048623
jitsi: complete setup
2020-11-12 21:01:18 +01:00
f36e4f491d
member-sw: rename to member_sw
2020-10-12 20:22:27 +02:00
fd3dd75be2
ldap-pam: rename to ldap_pam
2020-10-12 20:20:09 +02:00
ebef95fd2e
root-keys: rename to root_keys
2020-10-06 10:08:29 +02:00
0e4a13aa37
uau: change apt to new syntax
2020-10-05 08:38:50 +02:00
6f2267ce56
gitea: change apt to new syntax
2020-10-05 08:38:36 +02:00
16a66b5731
drone: change apt to new syntax
2020-10-05 08:38:25 +02:00
b519f6de07
gitea: update to version 1.12.5
2020-10-05 08:33:42 +02:00
38bd0328b7
bk-dss: change apt to new syntax
2020-10-05 08:31:16 +02:00
c4101bc585
Nice URLs for dokuwiki
2020-09-12 19:01:28 +02:00
78dc0938bf
Better caching for static dokuwiki images
2020-09-12 18:59:35 +02:00
500a89161d
matrix: rebase config against 1.19.1
2020-09-04 08:42:48 +02:00
e720608d00
gitea: update to version 1.12.4
2020-09-04 08:12:15 +02:00
76e9e6cac5
new host: molybdenum (Telefonzelle)
2020-07-31 21:38:33 +02:00
d2454e27fc
gitea: update to version 1.12.3
2020-07-29 07:35:10 +02:00
6a9c4aedae
gitea: implement fetching binary
2020-06-23 16:32:00 +02:00
22372c931d
Update role acertmgr add var acertmgr_version
...
Defining variable acertmgr_version from role defaults, allows version
string to be overridden. Role defaults are set in connection: local scope.
This also shortens long line to make this role linter compliant
2020-06-22 13:27:26 +02:00
a42b34b3ec
nginx: don't use "== True"
2020-06-20 17:22:23 +02:00
47cccdd42a
cleanup: use systemd module for daemon-reloaed
2020-06-20 14:51:13 +02:00
40e8445679
matrix: increase file size limit
2020-06-20 00:20:48 +02:00
fe10cde96b
acertmgr: ansible style fix
2020-06-20 00:20:19 +02:00
080c3fb495
drone-runner: fix another syntax error
2020-06-20 00:10:46 +02:00
d0d3fe230a
drone-runner: set password, fix syntax error
2020-06-20 00:07:46 +02:00
84de43d428
gitea: disable gravatar, less log spam, persistent sessions
2020-06-19 23:42:22 +02:00
d612d1ac28
nginx: enable gzip for proxied responses
2020-06-19 23:41:50 +02:00
a065fd4bc8
drone: install runner onto bob
2020-06-19 23:41:16 +02:00
fe5bdab253
drone: move onto gitea server and adjust for gitea
2020-06-19 23:39:58 +02:00
c2b529345e
nginx: hide version
2020-06-18 22:39:30 +02:00
488fb29275
gitea: migrate from gogs
2020-06-18 22:34:30 +02:00
7a58869a2f
fix path of acertmgr handler
2020-06-07 15:16:49 +02:00
86bf87405a
new host for drone.io
...
fix path of acertmgr handler
2020-06-07 15:16:25 +02:00
9bb3111efc
matrix: rebase config against 1.14.0
2020-05-30 14:47:22 +02:00
8e5ccda050
prometheus: basic proxmox monitoring
2020-05-25 16:15:29 +02:00
5a2b3559db
jitsi: new role (on host zirconium.binary-kitchen.net)
2020-05-20 09:57:18 +02:00
dcadf88ada
mail: cleanup
2020-05-20 08:37:09 +02:00
3f920c731d
mail: don't apply logrotate settings
2020-05-20 08:36:25 +02:00
d96e3f20ec
mail: fix sieve path name and permissions
2020-05-20 08:35:44 +02:00
5067e5371e
mail: move vault mapping to group_vars
2020-05-20 08:34:22 +02:00
0790c0b737
acertmgr: cleanup
2020-05-18 19:49:59 +02:00
fb215fdd82
mail: make mail_trusted an array
2020-05-18 19:10:32 +02:00
9d6ed20d9f
librenms: update dependencies
2020-05-11 17:42:07 +02:00
35fda6124a
dns-intern: openvpn -> wireguard
2020-05-11 16:16:07 +02:00
088ee7c6bf
matrix: increase max size to 10M
2020-04-09 21:38:29 +02:00
11bd9019d9
matrix: update config and set max_body_size
2020-03-29 11:48:38 +02:00
453537697d
coturn: new role for a TURN server to be used with matrix
2020-03-16 20:18:59 +01:00
a04c216abe
acertmgr: Use latest package from github instead of git checkout
2020-02-17 20:44:21 +01:00
Kishi85
fd04a750a5
Add excludes to logrotate.d config and update to correct paths
2020-02-04 18:35:09 +01:00
Kishi85
4a11950728
Update logrotate configs to preserve last 7 days
2020-02-03 19:37:43 +01:00
786ecd554f
slapd: use root password from vault
2020-02-03 19:08:09 +01:00
3e27ad3bde
dhcpd: use new secret omapi key
2020-02-03 18:38:01 +01:00
f184ca15fe
common: limit syslog retention to 7 days
2020-02-02 20:57:28 +01:00
d97524798b
bk-dss: use ldap_uri instead of ldap_host
2020-01-31 19:55:15 +01:00
66d6af74f0
matrix: reduce logging
2020-01-30 16:31:04 +01:00
1029f41bdc
dhcp: replace ap05 mac addr
2020-01-27 20:35:45 +01:00
611a14fffb
common: set journald retention time to 7days
2020-01-27 20:35:23 +01:00
8a25f21a87
matrix: rebase homeserver.yaml against 1.9.0
2020-01-27 15:28:49 +01:00
9ff516e089
matrix: set proper collation/ctype for DB
2020-01-22 13:12:21 +01:00
84189d95a1
matrix: default name to username
2020-01-20 20:49:00 +01:00
6b82d3d92b
new host: sodium (matrix) and new role matrix
2020-01-20 15:56:29 +01:00
7950c96da2
grafana: new role
2020-01-08 12:08:06 +01:00
f23d71aa6a
new host: strontium (Rocket.Chat)
2020-01-08 12:03:28 +01:00
871add3b0e
dns/dhcp: add ap05 for testing
2019-11-30 22:12:25 +01:00
3ab962ba4d
web: add binary.kitchen to vhost config
2019-11-30 22:11:40 +01:00
ef9e4352d3
slapd: add openssh public key schema
2019-11-28 22:40:51 +01:00
7acbf3d066
web: add more domains to certificates
2019-11-15 16:31:07 +01:00
a4e32cb79b
bk-dss: update to 0.8.4
2019-11-07 22:32:54 +01:00
909c9ebca6
new host: fusilli
2019-10-31 19:43:26 +01:00
91d95b190c
dns-intern: use future-proof pdns config
2019-10-14 18:34:43 +02:00
986392237c
uau: install more updates
2019-10-14 08:15:37 +02:00
b2f56c709b
common: install ipmitool on Proxmox hosts
2019-10-09 21:08:48 +02:00
a86081d6d7
acertmgr: update to version 1.0.0
2019-10-01 08:05:32 +02:00
25fca48dc8
new alias: 3dprinter
2019-09-30 18:50:41 +02:00
411243aeef
new host: noodlehub
2019-09-30 18:44:44 +02:00
133838e586
radius: fix symlinks that break with debian buster
2019-09-23 18:47:23 +02:00
a3675c0cc8
hackmd: new upstream URL and version 1.5.0
2019-09-18 13:08:08 +02:00
fbe1ac33c3
mail: cleanup
2019-09-17 13:29:59 +02:00
e0cbf2b760
common: remove snmpd
2019-09-17 10:16:05 +02:00
939b9ccb4c
partdb: update to debian buster / PHP 7.3
2019-09-17 08:51:03 +02:00
e31abbb8bb
web: switch to PHP 7.3
2019-09-12 13:34:05 +02:00
772df6c630
common: also clear motd on Proxmox hosts
2019-09-12 13:22:19 +02:00
bd06590301
nginx: enable TLSv1.3 (relevant VMs have buster)
2019-09-12 13:09:52 +02:00
fb81c5ce02
common: remove snmp, add acpid (on VMs)
2019-09-12 12:00:59 +02:00
ef7177f0ec
common: set vm.swappiness on Proxmox hosts
2019-09-10 19:14:55 +02:00
3d1a681850
librenms: debian buster
2019-09-09 19:33:47 +02:00
a6a973c034
prosody: make it work with buster
2019-09-09 19:09:44 +02:00
8a2ade46cb
Remove host apfelkuchen
2019-09-07 20:45:11 +02:00
c763264ccd
hackmd: update and fix uploads folder link creation
2019-09-06 16:17:34 +02:00
4c7d472f2f
remove racktables and partially remove snmpd
2019-09-03 13:13:03 +02:00
Kishi85
6945b4918c
mail: Enable subject privacy for the history module
2019-09-03 11:50:08 +02:00
6e593d0feb
gogs: switch to debian buster
2019-08-30 11:20:40 +02:00
Kishi85
6ce23ca253
mail: disable rspamd actions for mail from localhost
2019-07-24 10:11:38 +02:00
Kishi85
83afecfd72
mail: use srs only for forwards and MDA, not for incoming mails
2019-07-24 09:38:01 +02:00
Kishi85
5faf9de93e
mail: fix redis config
2019-07-23 17:23:14 +02:00
Kishi85
5df4457b0e
mail: add postsrsd to stop breaking forwards for SPF domains
2019-07-23 16:06:16 +02:00
43f1633a22
cleanup roles
2019-07-23 12:00:59 +02:00
Kishi85
2153438ec5
mail: allow any sender from our internal networks
2019-07-23 11:29:34 +02:00
85c2a90431
bk-dss: enable admin menu for zaesa
2019-07-22 13:18:46 +02:00
Kishi85
884bbbfbae
mail: use rspamd with automatic learning using sieve + managesieve
2019-07-16 09:37:50 +02:00
4b1952a6e0
uau: minimize diff to default config
2019-07-10 18:43:08 +02:00
5ead59ce14
acertmgr: update to version 0.9.8
2019-07-09 12:39:31 +02:00
f1dec82592
prometheus: only support Debian buster
2019-07-09 12:38:32 +02:00
909e767b36
dhcp/dns: add new hosts and IP ranges
2019-06-27 10:09:39 +02:00
2a417cdee2
acertmgr: update to version 0.9.7
2019-06-18 15:13:05 +02:00
f8daa11de1
nextcloud: first step towards handling php from ansible again
2019-05-20 21:35:58 +02:00
477441585d
owncloud: rename to nextcloud
2019-05-20 20:55:50 +02:00
7f689e1a82
owncloud: rename to nextcloud
2019-05-20 20:55:05 +02:00
06dcb1b082
mail: fix SSL CA settings
2019-05-20 20:09:07 +02:00
4ee7c6ad16
acertmgr: migrate from legacy paths
2019-05-20 19:49:08 +02:00
17f25f2c32
acertmgr: migrate from legacy paths
2019-05-20 19:38:32 +02:00
b6f0b9417d
bk-dss: update to version 0.8.3
2019-05-17 08:29:40 +02:00
8a33cdc4ad
slapd: fix ACLs
2019-05-17 08:25:14 +02:00
b4f95eefc8
bk-dss: fix typo
2019-05-16 15:52:49 +02:00