Commit graph

1183 commits

Author SHA1 Message Date
Sophie Schiller
bd3c92aac9 bundles/ntfy fix various typos 2022-10-19 17:23:57 +02:00
Sophie Schiller
014c7e5be8 bundles/ntfy add more nginx options 2022-10-19 16:33:36 +02:00
Sophie Schiller
6e23f84a39 bundles/ntfy various fixes 2022-10-19 15:38:10 +02:00
Sophie Schiller
a8cf858d44 bundles/ntfy: first draft 2022-10-19 15:24:39 +02:00
2095696131
bundles/mautrix-telegram: disable backfilling 2022-10-16 21:29:53 +02:00
8c77e5824a
bundles/grafana: disable metrics 2022-10-02 11:00:06 +02:00
988d7e08a0
bundles/travelynx: use carton instead of cpanm 2022-09-22 06:03:51 +02:00
edaa22dab6
bundles/infobeamer-cms: fix nginx config 2022-09-11 11:38:13 +02:00
038f19ea5e
bundles/unbound: use systemd-timers 2022-09-11 11:32:26 +02:00
d9be69d3a9
bundles/systemd-timers: don't auto-reset alerts 2022-09-11 11:26:57 +02:00
f004591e98
bundles/letsencrypt: use systemd-timers 2022-09-11 11:26:24 +02:00
944c66354b
bundles/mx-puppet-discord: github is archived, gitlab is the new hotness 2022-09-10 18:10:14 +02:00
2fd94c2a4b
bundles/hedgedoc: fix nginx config 2022-08-29 19:24:33 +02:00
aa5c7ff8b4
block access to the go /debug/pprof/ endpoint 2022-08-19 07:26:01 +02:00
84917649dd
bundles/arch-with-gui: have pytz available in i3pystatus 2022-08-14 12:47:52 +02:00
6b641890c3
bundles/grafana: replace the useless builtin of telegraf with something more useful 2022-08-07 10:16:07 +02:00
a1ce8bf91a
bundles/sudo: purge directory after package installation 2022-07-25 10:08:26 +02:00
5539957eb6
bundles/molly-guard: empty directories after package has been installed 2022-07-25 10:07:54 +02:00
86cc900d74
rx300: update gitea to 1.16.9 2022-07-17 10:30:05 +02:00
2a938d19f1
bundles/gitea: disable registration by default 2022-07-12 20:28:59 +02:00
dd5a97eced
bundles: add dependency to systemd-networkd 2022-07-10 13:32:11 +02:00
1d58955ced
bundles/zfs: increase timeout for ZFS OLD SNAPSHOTS check
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-06-05 09:30:44 +02:00
51c9506a19
move pacman/no_extract to bundle metadata defaults 2022-05-16 10:52:14 +02:00
9730a2be13
bundles/wireguard: fix permissions for wireguard netdev files 2022-05-16 10:48:26 +02:00
8cc116c0c4
bundles/zfs: respect pacman/linux-lts option 2022-04-30 12:30:32 +02:00
7fffdbab32
bundles/voc-tracker-worker: improve bundle 2022-04-27 05:40:20 +02:00
a38b66a7c5
bundles/nfs-client: minor fixes 2022-04-27 05:39:34 +02:00
74b3a513f6
bundles/pacman: make NoExtract user-configurable
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-04-22 15:47:47 +02:00
8145fb22e8
add bundle:voc-tracker-worker 2022-04-22 15:43:34 +02:00
fc2a69fc2c
rx300: update netbox to 3.2.1 2022-04-15 06:37:09 +02:00
Sophie Schiller
5979d8a1f9 hedgedoc: use global yarn in systemd unit
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-04-11 00:34:56 +02:00
ca69969dad
bundles/backup-server: disable ZFS OLD SNAPSHOTS check
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-04-06 18:13:23 +02:00
4390256abc
bundles/zfs: add metadata option to disable ZFS OLD SNAPSHOTS check 2022-04-06 18:13:01 +02:00
5640556ad9
bundles/zfs: run scrub for each pool separately 2022-04-03 09:48:28 +02:00
4823653214
bundles/systemd-networkd: remove usage of systemd-resolved
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
Something in the combination of arch+zfs+netctl+resolved+ipv6 leads to
hanging dns, which in turn leads to hanging everything.
2022-04-03 09:01:10 +02:00
891823376f
bundles: add missing dependency to yarn
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-04-03 08:38:20 +02:00
a340071ad8
bundles/oidentd: provide our own systemd unit file
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-04-03 08:32:07 +02:00
ddd29bef3b
bundles: install yarn globally instead of in each individual bundle 2022-04-03 08:16:35 +02:00
4ecf7ccb46
bundles/matrix-media-repo: download prebuilt executable instead of building ourselves 2022-04-03 08:05:46 +02:00
d8f8f1377f
bundles/arch-with-gui: install sipcalc and inkscape
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-30 18:28:46 +02:00
ac48462043
bundles/icinga2: icingaweb2 roles.ini needs another option
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-30 17:29:27 +02:00
7b9686977d
bundles/backup-client: do backups between 00:00 and 02:59
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-30 17:23:10 +02:00
7c49ac59f5
more packages, please
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-24 18:14:50 +01:00
2f8306a14a
bundles/pacman: fix archzfs-kernels repo name
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-23 21:04:12 +01:00
950c88aab2
bundles/pacman: install archzfs repo and archzfs-kernels repo if node has bundle:zfs
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-23 19:19:21 +01:00
489c2386de
voc.infobeamer-cms: prepare for divoc
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-20 12:35:26 +01:00
3e7e355dd6
rx300: update mautrix-whatsapp to 0.3.0 2022-03-19 07:02:54 +01:00
c983c50d21
bundles/icinga2: fix timeperiods 2022-03-19 07:02:48 +01:00
206cdfe128
bundles/systemd: fix dependencies
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-13 15:19:01 +01:00
7604fef734
bundles/icinga2: use ip addresses for monitoring instead of hostnames
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-13 15:15:47 +01:00
5179edb458
bundles/wireguard: fix forwarding firewall rules 2022-03-13 15:15:08 +01:00
c0ebd25ffc
bundles/systemd: systemd-timesyncd gets started automatically 2022-03-13 15:14:40 +01:00
212ba72b30
bundles/nftables: workaround does not work for debian buster 2022-03-13 14:13:59 +01:00
aa3ce32a7c
bundles/systemd: systemd-timesyncd package requires debian bullseye 2022-03-13 14:12:05 +01:00
c71d827691
bundles/icinga2: add some missing config 2022-03-13 14:07:28 +01:00
690c0b7050
bundles/nftables: restart on failure 2022-03-13 14:07:08 +01:00
a9d4cc73c1
bundles/systemd: ensure we have systemd-timesyncd installed and running 2022-03-13 14:06:40 +01:00
28b235514a
bundles/zfs: fix compatibility to older zfs versions
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-13 12:58:07 +01:00
8397739634
bundles/backup-server: fix bug in retaining
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-13 09:24:45 +01:00
008940d75f
bundles/users: add journalctl bash alias 2022-03-13 09:21:10 +01:00
cd1a33ccbb
bundles/zfs: refactor zfs-auto-snapshot
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-13 09:18:14 +01:00
dab6065b89
bundles/vmhost: svc_systemd:virtlogd gets triggered by socket, too
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-13 08:42:51 +01:00
65efdc2e2c
bundles/pacman: disable pam_faillock 2022-03-13 08:42:48 +01:00
a4fb9a15b5
bundles/backup-server: increase timeout for monitoring checks 2022-03-13 08:42:44 +01:00
f56703df2e
bundles/dovecot: filter X-Spam-Status, not X-Spam-Flag
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
The latter is YES even if the overall score is very low because of
IP allowlisting.
2022-03-12 10:24:06 +01:00
759a711dc5
bundles/rspamd: remove from_name from dmarc reporting config
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-12 10:08:04 +01:00
6a9da7efa5
bundles/arch-with-gui: add workaround for broken bw test
All checks were successful
kunsi/bundlewrap/pipeline/head This commit looks good
2022-03-12 09:03:45 +01:00
72cf616114
bundles/zfs: use zfs-import-scan instead of zfs-import-cache
Last night, rx300 rebooted. After a reboot, the disks were detected
in another order (but still, all were detected!), so the cachefile did
no longer match, leading to breaking the import.

Running `zpool import` manually worked, because that will ignore the
cachefile. So, why do we depend on the cache file on boot up? The added
reliability of zfs-import-scan beats the speed of zfs-import-cache in
any way.
2022-03-12 09:03:42 +01:00
42a66751e1
bundles/vmhost: don't try to start libvirtd on every apply 2022-03-12 09:03:38 +01:00
4a03a9f89c
bundles/icinga2: fix directory permissions for /etc/icingaweb2 2022-03-12 09:03:35 +01:00
d7b47d2560
bundles/jenkins: jenkins.war has moved 2022-03-12 09:03:32 +01:00
403b67ee48
bundles/vmhost: install pkg_pacman:edk2-ovmf 2022-03-12 09:03:28 +01:00
757f1cb3cd
bundles/vmhost: prepare for arch linux
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-11 13:58:38 +01:00
93351340d0
move thermald package back to fkusei-locutus
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-10 21:09:26 +01:00
15ae3b7a0b
move some configuration from nodes to bundle:arch-with-gui
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-10 21:00:45 +01:00
e181be3fc6
bundles/wireguard: better dependency management 2022-03-10 21:00:42 +01:00
64448af027
add node fkusei-locutus
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-09 13:07:55 +01:00
0082d3e014
bundles/zfs: ensure some targets are started on arch linux 2022-03-09 13:05:57 +01:00
c7e5002f17
bundles/wireguard: support arch linux and other netmasks than /31 2022-03-09 13:05:01 +01:00
05a2e501ce
bundles/bird: support arch linux 2022-03-09 13:04:34 +01:00
c023c144c3
bundles/arch-with-gui: install firefox 2022-03-09 13:03:56 +01:00
f969b05468
bundles/arch-with-gui: i3pystatus requires python-virtualenv 2022-03-09 13:02:35 +01:00
b351703953
bundles/c3voc-addons: implement addidional_update_commands
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-06 12:57:48 +01:00
a693e90aa3
bundles/nodejs: auto-upgrade npm
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-06 12:50:04 +01:00
50ea6a92a5
bundles/apt: introduce additional_update_commands for updating other stuff 2022-03-06 12:49:46 +01:00
56bafd73be
bundles/nginx: refine fastcgi config
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-05 18:55:51 +01:00
ca861a78fb
bundles/grafana: do not auto-refresh dashboards
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-05 13:49:17 +01:00
8ed4aa3751
bundles/pacman: don't extract systemd-homed pam module
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-05 13:45:28 +01:00
14e7fff081
bundles/grafana: improve config 2022-03-05 13:45:16 +01:00
65ba43525f
bundles/icinga2: introduce new notification period 'daytime' 2022-03-05 08:29:10 +01:00
98cd2df8ff
bundles/nginx: add certificate name to icinga check
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-02 07:19:15 +01:00
be3dd6662e
kunsi-p14s: more packages
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-02 07:12:38 +01:00
0ba3df7385
bundles/zfs: unmount backup-snapshots recursively
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-03-01 06:32:23 +01:00
931d566736
bundles/backup-server: fix stupid in check_backup_for_node
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-02-28 21:09:04 +01:00
e909144544
bw/bundles/postgresql: do not auto-detect postgresql version from debian version
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-02-27 12:51:53 +01:00
e1f7c691c3
bundles/nfs-server: fix trailing whitespace
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-02-20 19:45:40 +01:00
83fb1a5e11
bundles/nfs-client: decrease timeout, set some default mount options
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-02-20 19:44:05 +01:00
dcb563b31e
bundles/systemd-networkd: remove BindCarrier
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-02-20 12:36:21 +01:00
88891b44be
bundles/nfs-server: ensure nfs runs on managed ports, fix firewall rules
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-02-20 08:24:38 +01:00
6267b4c33d
bundles/nfs-server: fix package name
Some checks failed
kunsi/bundlewrap/pipeline/head There was a failure building this commit
2022-02-19 20:09:53 +01:00