Commit graph

691 commits

Author SHA1 Message Date
4213b60052
bundles/lldp: introduce, add to all nodes at home 2020-11-13 16:28:43 +01:00
b9b0a9c5ca
bundles/vmhost: install correct packages 2020-11-13 14:47:40 +01:00
df63f8c732
bundles/nginx: make sure /var/www exists 2020-11-13 13:35:02 +01:00
e91ac7e457
bundles/backup-client: fix detection of rsync errors
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-13 13:34:21 +01:00
d31910368c
icinga2: install packages and dependencies 2020-11-13 13:19:26 +01:00
6bac83def2
bundles/rspamd: fix automatic generation of dkim key
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-13 13:11:26 +01:00
cff0870e63
bundles/rspamd: refine auto-generation of dkim signing keys 2020-11-13 13:09:37 +01:00
56f1b1a6c6
bundles/rspamd: first draft for automatically-rotating dkim keys 2020-11-13 13:09:34 +01:00
f04dac11e5
Merge branch 'kunsi-icinga2' into main
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-13 13:03:16 +01:00
741f3b0032
bundles/backup-client: fix cronjob 2020-11-13 12:57:50 +01:00
0749fc75c5
bundles: add backup paths 2020-11-13 12:37:26 +01:00
f71653e3ce
bundles/backup-{client,server}: introduce 2020-11-13 12:36:52 +01:00
30ee0c8bdf
bundles/mx-puppet-discord: restart service after building new version 2020-11-13 09:26:34 +01:00
e5c12f0628
bundles/nginx: create webroot directories after bundle:zfs is done 2020-11-12 22:59:46 +01:00
2274e7aa37
bundles/nfs-server: introduce
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-12 19:59:02 +01:00
f2a0f0b46a
bundles/systemd-networkd: support bond and bridge interfaces 2020-11-12 19:38:10 +01:00
633ccb97fd
bundles/zfs: rename zed -> zfs-zed 2020-11-12 19:36:28 +01:00
d01d89d432
bundles/apt: support debian 11 2020-11-12 18:40:19 +01:00
e395a42160
bundles/apt: no need to have apt-daily.timer running
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-12 15:10:59 +01:00
087f4bb74d
groups/{gce,home}: send mail via mx0.kunbox.net
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-11 13:31:01 +01:00
11701a67c8
dns: deploy MTA-STS
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-11 11:41:06 +01:00
d47c39185b
bundles/php: no need to restart php if just installing the base packages
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-11 08:37:29 +01:00
652fb72ccc
bundles/postfix: fix metadata reactor for letsencrypt 2020-11-11 08:35:36 +01:00
9dd7589f12
bundles/postfix: add submission_header_cleanup file 2020-11-10 20:34:27 +01:00
8180769120
bundles/postfix: add postmaster alias 2020-11-10 20:32:39 +01:00
f9bd2d695d
bundles/postfix: add SPAM BLOCKLISt for every non-private IP attached to the server
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 14:28:12 +01:00
aad1a742b7
bundles/icinga2: add ipv6-capable check_rbl script 2020-11-10 14:26:07 +01:00
f30aa48eca
bundles/icinga2: add sshmon private key
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 13:43:46 +01:00
a176a1aa65
bundles/icinga2: introduce, install checks, install sources.list, create postgres database
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 13:37:27 +01:00
a9c00409b4
bundles/mautrix-telegram: fix item dependency error
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 13:26:03 +01:00
6cd02dc563
bundles: move non-login users to items.py
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-11-10 13:24:07 +01:00
cca4fec761
bundles/users: get default user data from users.json 2020-11-10 13:12:36 +01:00
c090a9c2c2
bundles/users: move root user to metadata 2020-11-10 12:50:08 +01:00
3fbe32518a
bundles/postgresql: rename users -> roles
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 12:37:58 +01:00
d087cea869
bundles/gitea: add monitoring 2020-11-10 11:32:59 +01:00
985f47ca99
bundles/miniflux: add monitoring 2020-11-10 11:28:40 +01:00
8cb997133a
bundles/nginx: add monitoring
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 10:57:04 +01:00
65a8efc97f
bundles/zfs: fix monitoring metadata
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-10 10:35:01 +01:00
f80896fa3b
bundles/postfix: add monitoring 2020-11-10 10:21:37 +01:00
420cea15d2
bundles/apt: add monitoring for unattended upgrades 2020-11-10 09:50:20 +01:00
6ca0d863b1
bundles/sudo: use sudoers.d
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 20:39:35 +01:00
c7362df6c4
bundles/sshmon: import from work repository 2020-11-09 20:31:06 +01:00
eaf268aea9
libs/tools: change resolve_identifier() to return ipv4 and ipv6 separately
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 18:46:37 +01:00
67386d9efa
bundles/cron: provide some environment, also manage /etc/crontab
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 18:24:01 +01:00
a58c5877bf
bundles/gce-workaround: uninstall gce-disk-expand, too
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 16:48:28 +01:00
4921e0b74f
bundles/systemd-networkd: use correct syntax for resolv.conf 2020-11-09 16:47:56 +01:00
6f87a1d240
bundles/systemd-networkd: also deploy resolv.conf 2020-11-09 16:38:59 +01:00
394424951f
bundles/systemd-networkd: fix naming of GatewayOnlink 2020-11-09 16:38:35 +01:00
78047da04a
bundles/postgresql: only install packages after we have a zfs dataset 2020-11-09 16:37:00 +01:00
5bd642236c
bundles/postfix: only call newaliases if we already have postfix installed 2020-11-09 16:36:26 +01:00
607da9d39b
bundles/powerdns: user resolve_identifier() for node-dns-entries 2020-11-09 15:37:48 +01:00
91fd33cfa0
bundles/systemd-networkd: better dhcp support 2020-11-09 14:58:09 +01:00
5e7c7671e0
bundles/systemd-networkd: proper config 2020-11-09 14:48:19 +01:00
fbb4e2f7a5
systemd-networkd: first draft 2020-11-09 14:08:32 +01:00
c3c510c609
bundles/mautrix-telegram: disable parallel file transfers for now 2020-11-09 13:17:38 +01:00
af97226512
nodes/htz.ex42-1048908: update mautrix-telegram to 0.9.2-rc2
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 12:16:06 +01:00
06e30cf23c
bundles/mautrix-telegram: also upgrade pip when upgrading bridge 2020-11-09 12:15:37 +01:00
90e3bb7fb2
bundles/mautrix-telegram: no need to provide our own alembic.ini 2020-11-09 12:12:04 +01:00
c0986eb956
bundles/mautrix-telegram: fix database migration
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 12:09:17 +01:00
614b920890
bundles/mautrix-telegram: pin version until database migration is fixed
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 11:27:34 +01:00
3ff5d8a7dd
bundles/postfix: add alias database
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-09 10:52:24 +01:00
64cffad6a7
bundles/rspamd: silence clamav cronjob 2020-11-08 15:03:26 +01:00
0eca42d188
bundles/dovecot: fix home directory for virtual mailboxes
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-08 13:00:44 +01:00
b4b988e5f2
bundles/postfix: disable TLS1.0 and 1.1, disable weak ciphers
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-08 12:24:37 +01:00
f85349f0c5
bundles/postfixadmin: fix apt packages
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-08 11:53:51 +01:00
15428b03be
bundles/rspamd: introduce, add to htz.ex42-1048908
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-11-08 10:43:51 +01:00
a236444fe5
bundles/dovecot: make sure to reload dovecot after letsencrypt 2020-11-08 10:42:08 +01:00
b00b2aa245
bundles/dovecot: autoexpunge Junk folder
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-11-07 22:46:15 +01:00
7080b0d89e
bundles/rspamd: create dummy bundle 2020-11-07 22:32:08 +01:00
18b573a9c6
bundles/dovecot: introduce 2020-11-07 22:31:47 +01:00
f42dda5961
bundles/postfixadmin: introduce 2020-11-07 22:31:29 +01:00
5550d2cc56
bundles/postfix: introduce 2020-11-07 22:31:18 +01:00
88afba9ce9
bundles/mx-puppet-discord: add RestartSec= to systemd unit file 2020-11-07 09:40:22 +01:00
7ab121e7e5
bundles/mautrix-telegram: install bridge from git repository 2020-11-07 09:39:57 +01:00
d7f578742b
bundles/mx-puppet-discord: put bridge repo into subdirectory
this avoids recreating config and registration on every update, which in turn
avoids restarting synapse
2020-11-07 09:08:10 +01:00
c481fc1327
nodes/htz.ex42-1048908: add php
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-11-07 09:06:11 +01:00
f8bc4b2ad9
bundles/php: introduce 2020-10-31 13:00:38 +01:00
e2d8923dee
bundles/nginx: use metadata reactor to determine index files 2020-10-31 10:41:48 +01:00
f1f7086aab
bundles/postgresql: make sure we have postgres_role before adding postgres_db 2020-10-31 10:30:48 +01:00
67c5c23194
bundles/nginx: support non-domain vhost names 2020-10-31 10:30:07 +01:00
113221a9b2
bundles/nginx: make sure we have dhparam.pem 2020-10-31 10:18:40 +01:00
9cc5c07466
bundles/letsencrypt: do not try to do authorizations without a webserver 2020-10-31 10:11:58 +01:00
76fe68a3d1
bundles/zfs: fix dependencies, auto-load zfs module if not loaded 2020-10-31 10:11:15 +01:00
8eeaabf615
bundles/nginx: use http 308 for https redirect
All checks were successful
bundlewrap/pipeline/head This commit looks good
basically "go away. nothing's here. use https forever."
2020-10-30 15:24:24 +01:00
50372572f4
bundles/zfs: improvements 2020-10-25 16:41:18 +01:00
3077d74318
bundles/users: alias s='sudo -i' 2020-10-25 13:21:04 +01:00
351d779f20
bundles/users: add metadata entry for bash aliases 2020-10-25 13:19:46 +01:00
2a992773f3
bundles/users: fish shell is gone everywhere 2020-10-25 13:17:26 +01:00
831545d8b1
introduce node.metadata['hostname'] to other bundles, update nodefiles to reflect changes
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-25 11:14:46 +01:00
b70f9c9c9d
bundles/powerdns: make sure every dns server is able to resolve every other dns server 2020-10-25 10:58:11 +01:00
a33d8e4201
bundles/powerdns: decrease RETRY time 2020-10-25 10:57:26 +01:00
29f488c082
bundles/powerdns: put ip addresses of secondary nameservers into allow-axfer-ips
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-10-25 10:56:55 +01:00
152bb56fdd
bundles/powerdns: remove superslave setting
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
debian currently does ship an older version, in which this
setting is enabled by default.
2020-10-25 10:55:17 +01:00
7a3e3ad68f
bundles/powerdns: we don't need the node names of primary nameservers 2020-10-25 10:53:55 +01:00
43bd6b4774
bundles/powerdns: only enable webserver and api on primary nameservers 2020-10-25 10:52:51 +01:00
78c553faf9
bundles/nodejs: update to 14.x
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-24 17:20:50 +02:00
a0702416a0
bundles/radicale: introduce
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-23 15:22:35 +02:00
d76f69ab49
bundles/apt: more output for upgrade-and-reboot
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-23 06:26:19 +02:00
2bc659af5f
bundles/users: add some bash aliases
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-23 06:06:59 +02:00
6398e668e1
bundles/apt: use DEBIAN_FRONTEND=noninteractive everywhere in upgrade-and-reboot
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-23 04:33:01 +02:00
07dcb813f3
bundles/raspberrypi: add options for camera and gpu_mem
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-18 19:51:52 +02:00
48cc865892
bundles/nginx: make sure webroot directory exists
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-18 18:55:00 +02:00
5c31cdccdd
bundles/kodi: fix path
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-18 16:53:19 +02:00
4271c92d70
bundles/gitea: fix chmod
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-18 16:18:12 +02:00
e32ad2eb19
formatting
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-18 15:51:45 +02:00
ececab44b4
bundles/miniflux: introduce 2020-10-18 15:49:32 +02:00
366374b4e5
bundles/apt: handle unattended-upgrades ourselves 2020-10-18 15:33:41 +02:00
kunsi
5635571f97 Merge pull request 'PowerDNS instead of bind9' (#2) from kunsi-feature-powerdns-instead-of-bind into main
All checks were successful
bundlewrap/pipeline/head This commit looks good
Reviewed-on: https://git.kunsmann.eu/kunsi/bundlewrap/pulls/2
2020-10-17 11:12:35 +00:00
ae7c3220e0
bundles/powerdns: fix NS records in zonefile header
Some checks are pending
bundlewrap/pipeline/head Build queued...
2020-10-17 13:04:28 +02:00
4d6b867bb3
bundles/powerdns: add metadata reactor for automatic node-dns-generation
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-17 12:57:35 +02:00
793220c0ec
bundles/powerdns: auto-generate zonefile header based on dns server nodes 2020-10-17 12:57:07 +02:00
51e6d0534e
bundles/powerdns: fix Faults
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-17 10:50:21 +02:00
ca1646d394
bundles/powerdns: add support for zone transfers
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-10-16 23:02:47 +02:00
31cc74951b
bundles/powerdns: only reload pdns on zone changes, don't restart
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-10-16 20:40:05 +02:00
7c1c0f5e80
bundles/powerdns: increase default TTL to 1 day 2020-10-16 20:16:34 +02:00
0a115d2372
EOL bundles/bind 2020-10-16 20:12:47 +02:00
155c93f739
bundles/powerdns: fix schema import for pgsql 2020-10-16 20:10:55 +02:00
9bba18d13e
bundles/powerdnsadmin: introduce 2020-10-16 20:10:34 +02:00
0533e4087a
bundles/postgresql: install dev packages
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-16 19:24:40 +02:00
d442ab399e
bundles/powerdns: support pgsql 2020-10-16 19:24:12 +02:00
2c1a825b7d
bundles/apt: make sure we have python3-dev 2020-10-16 19:14:15 +02:00
8acc0a7bb1
bundles/apt: make sure we have build-essential and git 2020-10-16 19:12:26 +02:00
a553e736d1
bundles/powerdns: fix dependencies 2020-10-16 17:59:46 +02:00
df852e8ef9
bundles/powerdns: more config, add bind backend
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-16 17:44:31 +02:00
fa67bd13f4
bundles/powerdns: minimal pdns.conf
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-16 13:19:44 +02:00
d029af554c
bundles/travelynx: make sure to restart worker service, too
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-16 13:03:52 +02:00
c5c0c923d1
home.kodi-wohnzimmer: switch to debian-multimedia repository to have kodi 18
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-15 19:34:22 +02:00
a08f483ac5
bundles/powerdns: introduce
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-13 19:06:22 +02:00
591d3fb947
bundles/nfs-client: fix installation of automount units
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-10 17:25:39 +02:00
6a8768fb2f
bundles/nfs-client: introduce 2020-10-10 16:37:33 +02:00
Sophie Schiller
3170e75bbe update kodi to unstable 2020-10-09 18:12:56 +02:00
a955a7b84d
bundles/raspberrypi: do not set empty default for config.txt 2020-10-09 17:46:36 +02:00
c953d138ee
bundles/kodi: fix dependencies for alsa 2020-10-09 17:46:07 +02:00
5e8489a74c
bundles/kodi: add missing dependencies 2020-10-03 18:36:48 +02:00
c2bcd1f0d9
bundles/apt: add raspbian to supported OSes 2020-10-03 18:36:29 +02:00
2387b196b2
bundles/kodi: use alsa instead of pulseaudio
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-03 17:00:13 +02:00
018bdd1d00
bundles/kodi: also install addon repository
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-10-03 15:54:03 +02:00
9b8c5450ec
bundles/raspberrypi: make sure dphys-swapfile is uninstalled 2020-10-03 15:10:28 +02:00
60cfe90a1d
bundles/raspberrypi: force maximum cpu frequency 2020-10-03 13:52:34 +02:00
32fd2f7a7b
bundles/kodi: introduce 2020-10-03 13:36:12 +02:00
fc44a9cd69
bundles/raspberrypi: enable audio, force hdmi mode 2020-10-03 13:35:44 +02:00
675f8beea9
bundles/raspberrypi: improvements 2020-09-27 17:18:05 +02:00
c2c9913514
allow setting hostname in metadata 2020-09-27 16:46:54 +02:00
5d1e71e83e
bundles/raspberrypi: introduce 2020-09-27 16:46:26 +02:00
0784b85fbb
bundles/mx-puppet-discord: create registration.yaml using bw
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-26 15:34:12 +02:00
bf7e982fdb
bundles/bind: change zonefile header
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-26 15:20:37 +02:00
4b41a00ac4
bundles/matrix-synapse: don't remove conf.d directory
We're taking care of that by deploying a override.conf instead
2020-09-26 15:20:08 +02:00
a67353e24f
Merge branch 'pending-new-bw-release' into main 2020-09-26 15:18:29 +02:00
c8adfcabf1
bundles/octoprint: add octoprint to dialout group 2020-09-26 15:16:09 +02:00
91c4846129
bundles/mjpg-streamer: introduce
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-22 19:59:36 +02:00
176a41e2f3
bundles/octoprint: add octoprint to gpio group
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-22 19:16:38 +02:00
d02538368a
bundles/octoprint: add systemd-wrapper script
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-22 18:52:11 +02:00
7ea85247e0
bundles/nginx: proxy is a dict now, add some more configuration options
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-22 18:39:38 +02:00
d1672a9a45
bundles/octoprint: restart octoprint after changing unit file
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-22 18:11:42 +02:00
eee9b00f10
bundles/systemd: fix daemon-reload command 2020-09-22 18:11:09 +02:00
44a6e8292a
bundles/bind: add node-dns-auto-generator 2020-09-20 18:56:53 +02:00
151d8e92c3
bundles/nginx: do not set X-Forwarded-Proto if https is disabled, do not use http2 without ssl 2020-09-20 15:46:39 +02:00
84a78f5fec
bundles/octoprint: allow 'sudo /usr/bin/vcgencmd' 2020-09-20 15:12:18 +02:00
577c3c7c49
bundles/sudo: change metadata key to 'sudo_commands' 2020-09-20 15:11:52 +02:00
04c632953d
bundles/octoprint: introduce 2020-09-20 15:05:17 +02:00
d6799088c4
bundles/nginx: add metadata option to disable https 2020-09-20 14:36:43 +02:00
bb0b6f2079
shuffle some ports around
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-20 13:16:08 +02:00
3242d97cfa
bundles/mautrix-telegram: use pkg_pip 2020-09-20 10:30:13 +02:00
eede422e9a
shuffle some ports around 2020-09-20 10:29:19 +02:00
d1bbb5a855
bundles/travelynx: restart service when changing imprint
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-12 17:08:18 +02:00
dd082d45e9
bundles/matrix-synapse: set suppress_key_server_warning if using matrix.org as trusted key server
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-12 13:22:16 +02:00
6adc4a675f
bundles/mautrix-telegram: reload systemd when changing service file
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-12 13:03:15 +02:00
2361466c84
bundles/mautrix-telegram: handle registration.yaml ourselves
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-12 12:59:34 +02:00
f6ecaf3c29
bundles/mautrix-telegram: also deploy alembic.ini, make sure alembic ini gets called if alembic scripts dir does not exist
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-12 12:09:20 +02:00
cf2920f284
bundles/mautrix-telegram: introduce 2020-09-06 12:15:37 +02:00
180802a669
bundles/apt: make sure we do have pip3 and virtualenv 2020-09-06 12:04:56 +02:00
1744596296
bundles/matrix-synapse: deploy override.conf to make sure synapse doesn't try to load config from there
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-09-05 20:06:35 +02:00
a443272e02
bundles/gitea: make sure to restart gitea after downloading binary 2020-09-04 21:06:13 +02:00
e35f41c6dc
bundles/letsencrypt: change cronjob times
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-30 21:26:33 +02:00
27d6c1880a
bundles/influxdb: introduce
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-30 12:07:06 +02:00
ccd4a09183
bundles/apt: allow variables {os} and {os_release} in sources.list entries 2020-08-30 12:06:19 +02:00
77051c0a0e
bundles/nginx: clean up unmanaged nginx vhosts 2020-08-30 11:36:48 +02:00
626355178a
bundles/apt: make sure popularity-contest is uninstalled 2020-08-30 11:14:31 +02:00
f22b30e4fa
bundles/cron: purge unwanted data from /etc/cron.d 2020-08-30 11:14:10 +02:00
c8ae22da8a
I HATE GOOGLE (v3)
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-30 10:44:13 +02:00
b24253a64b
bundles/nginx: determine worker processes by cpu count by default 2020-08-30 10:32:29 +02:00
049b77e702
bundles/postgresql: use zfs if possible
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-29 21:30:12 +02:00
4934eb46fb
bundles/zfs: import bundle from work repository 2020-08-29 21:10:59 +02:00
b690ae25b0
bundles/apt: use node.os and node.os_version to determine settings 2020-08-29 21:10:22 +02:00
007a617785
bundles/users: rework 2020-08-29 19:21:35 +02:00
0de62a0afa
bundles/postgresql: add apt packages, create root user
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-21 16:21:46 +02:00
b4122bf3f9
travelynx: add imprint
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-21 15:06:04 +02:00
4a81c05f6d
I HATE GOOGLE (v2)
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-21 14:41:34 +02:00
0d8332ec7e
bundles/gitea: auto-configure nginx vhost
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-20 15:49:11 +02:00
1fb5787807
htz.ex42-1048908: can haz gitea?
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-20 15:34:27 +02:00
55d6257243
bundles/users: only remove ssh key if we're managing configs 2020-08-20 15:34:05 +02:00
21343f6213
get rid of cloud-init
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-20 11:07:18 +02:00
ad620396f5
bundles/apt: rework gpg key handling 2020-08-20 10:59:45 +02:00
54371cf289
I HATE GOOGLE
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-20 10:01:34 +02:00
4974494ee0
bundles/travelynx: make version configurable via metadata
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-20 09:44:01 +02:00
b7f377816f
htz.ex42-1048908: fix travelynx static files
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-19 22:01:54 +02:00
15dbc4307f
bundles/travelynx: use worker service instead of cronjob
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-19 21:53:19 +02:00
8547948ce6
bundles/nginx: also set host header for proxy connections 2020-08-19 21:43:37 +02:00
15eda05074
bundles/travelynx: hard-code displayed version
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-19 20:09:21 +02:00
71b604c5af
bundles/travelynx: use github mirror
All checks were successful
bundlewrap/pipeline/head This commit looks good
git.finalrewind.org seems slow sometimes, which breaks our CI pipeline
2020-08-19 19:06:59 +02:00
277c259e05
bundles/travelynx: hard-code displayed version
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-08-19 18:52:20 +02:00
9f4f19cdc5
bundles/travelynx: make sure config changes are reflected in production 2020-08-19 18:51:27 +02:00
5797d790aa
bundles/travelynx: add cron 2020-08-19 18:48:05 +02:00
0dd2a4b985
htz.ex42-1048908: can haz travelynx?
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-08-19 18:43:32 +02:00
20f3f566ac
bundles/mx-puppet-discord: fix postgres database 2020-08-19 18:39:07 +02:00
0ebcf9762e
add gce workaround
All checks were successful
bundlewrap/pipeline/head This commit looks good
those daemons keep messing with our settings, get rid of them
2020-08-18 15:51:24 +02:00
11468cd1e7
bundles/apt: more default packages 2020-08-18 15:46:42 +02:00
7d911ce835
bundles/matrix-synapse: remove conf.d, fix server name
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-08-18 15:34:20 +02:00
5e2fea8497
update to bw4 2020-08-18 15:31:52 +02:00
d7862918a6
bundles/nginx: set default X-Frame-Options to SAMEORIGIN
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-18 15:07:43 +02:00
17828a29f8
bundles/nginx: fix hsts header
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-08-14 08:23:41 +02:00
7986f6ee7d
bundles/letsencrypt: remove ocsp stapling
All checks were successful
bundlewrap/pipeline/head This commit looks good
This causes problems with weechat and dovecot. Those certificates
are short-lived, so not having OCSP stapling is probably fine.
2020-07-26 18:48:37 +02:00
f7eb0cc150
bundles/{letsencrypt,nginx}: fix ocsp stapling
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-07-19 12:10:19 +02:00
de632a7725
htz.ex42-1048908: add missing domains
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-07-19 11:26:12 +02:00
94c2c644a6
bundles/nginx: support PHP 7.3 2020-07-19 11:09:53 +02:00
0743283763
bundles/letsencrypt: use sorted() in domains.txt 2020-07-19 10:59:19 +02:00
31a1a88d13
bundles/nginx: use DEFAULTS for letsencrypt 2020-07-19 10:58:54 +02:00
950897324c
bundles/mx-puppet-discord: add dependency on chown 2020-07-05 16:59:30 +02:00
f47c9ea0a0
htz-cloud: keep cloud-init
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-06-08 10:12:48 +02:00
2e92f9851a
bundles/apt: auto reboot after upgrade if needed 2020-06-08 10:08:16 +02:00
507e28bc24
bundles/apt: remove cloud-init if found on node 2020-06-06 10:26:05 +02:00
9d9e33977a
bundles/bind: add
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-06-05 17:50:45 +02:00
d1236d6e25
bundles/nginx: add stub_status
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-06-01 13:35:54 +02:00
5f804ca3be
bundles/letsencrypt: add metadata to reload certificates and services
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-06-01 12:33:25 +02:00
2a6547dfb7
bundles/cron: add 2020-06-01 11:54:28 +02:00
85b3adf671
add proxy feature to nginx 2020-06-01 11:31:13 +02:00
3523edbcb4
bundles/nginx: ensure we're doing letsencrypt, since we're enforcing ssl 2020-06-01 11:17:52 +02:00
54467af6f5
bundles/jenkins-ci: fix metaproc name 2020-06-01 11:14:04 +02:00
943a7c1566
nodes/htz.ex42-1048908: move postgres roles and databases to bundles
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-06-01 11:09:40 +02:00
36c8b90c4b
bundles/nginx: switch to TLS 1.2 and 1.3 only
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-06-01 11:01:00 +02:00
871341dd4b
bundles/riot-web: add nginx metadata
Some checks failed
bundlewrap/pipeline/head There was a failure building this commit
2020-06-01 10:53:19 +02:00
c4330f866b
bundles/nginx: add deployment of vhost configs 2020-06-01 10:52:52 +02:00
dc9e8dc679
add letsencrypt bundle 2020-06-01 10:26:37 +02:00
d136e90a3d
bundles/apt: no need to do minimal steps when doing unattended-upgrade
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-05-29 20:06:33 +02:00
6d9e62e653
bundles/apt: fix typo 2020-05-29 19:58:21 +02:00
86d88a4355
fix apt unattended-upgrades 2020-05-23 17:01:30 +02:00
bd48c45553
bundles/users: edit tmux.conf 2020-05-23 11:36:03 +02:00
7a04c7182e
bundles/users: fix typo
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-05-16 10:32:44 +02:00
4e72b41971
bundles/mx-puppet-discord: config tweaks
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-05-16 10:06:40 +02:00
dddb387e58
display login name in tmux status bar
All checks were successful
bundlewrap/pipeline/head This commit looks good
2020-05-09 15:36:32 +02:00
34703b6eba
add bundle jenkins-ci 2020-05-09 13:14:49 +02:00
3765189450
bundles/voc-loudness-monitor: remove sloop 2020-05-09 11:35:40 +02:00
7b3d3567de
bundles/voc-loudness-monitor: use h264 instead 2020-05-09 10:23:50 +02:00
fa50f8b248
bundles/seafile: fix mode of /opt/seafile 2020-04-13 09:59:02 +02:00
f701110654
bundles/users: fix deletion of unneded home directories 2020-04-13 09:57:33 +02:00
004422c060
bundles/seafile: initial commit
seafile installation itself is not managed
2020-04-13 09:53:10 +02:00
ffb962b108
bundles/nginx: add nginx config 2020-04-13 09:52:26 +02:00
411d22d404
bundles/users: add vim 2020-04-11 12:26:02 +02:00
2990216a8b
bundles/users: add fish_variables 2020-04-11 12:06:57 +02:00
4c79fdf997
bundles/voc-loudness-monitor: add s23 and s89 2020-04-11 11:29:04 +02:00
f1a693d0d6
bundles: only install apt packages via apt bundle to avoid double defining packages 2020-04-11 11:25:24 +02:00
8a26def21c
add matrix-synapse bundle 2020-04-05 11:38:31 +02:00
29eeffbdc3
bundles/mx-puppet-discord: restart bridge if config or registration changed 2020-04-04 18:33:05 +02:00
78bae4f77b
bundles/postgresql: fix database creation 2020-04-04 18:28:38 +02:00
1dfa5c457c
bundles/mx-puppet-discord: specify path to registration file in systemd unit 2020-04-04 18:28:15 +02:00
081fafc64e
bundles/mx-puppet-discord: add systemd unit file 2020-04-04 18:21:40 +02:00
629c38230c
bundles/users: add option to change home directory mode 2020-04-04 18:15:08 +02:00
a8a3bcdb83
bundles/mx-puppet-discord: remove registration.yaml before generating new one 2020-04-04 18:10:37 +02:00
5910d825c0
bundles/mx-puppet-discord: set default listen-addr to IPv4 2020-04-04 18:07:27 +02:00
4c5a88f734
add bundle for mx-puppet-discord 2020-04-04 18:01:58 +02:00
1856f4749c
bundles/users: add option to not automatically deploy configs 2020-04-04 17:54:26 +02:00
4da792f522
bundles/postgresql: add bundle 2020-04-04 17:53:59 +02:00
234604cd0c
bundles/sudo: add secure_path to sudoers file 2020-04-04 16:53:25 +02:00
f3dc5c8325
bundles/nodejs: move to own bundle 2020-04-04 16:31:50 +02:00
a1e05108c1
bundles/apt: change origins to sites 2020-04-04 11:21:30 +02:00
0750610ccc
bundles/users: fix user-specific tmux config 2020-03-28 13:32:39 +01:00
719d41a557
bundles/users: add readme 2020-03-28 13:12:45 +01:00
0b51c9dae4
bundles/users: deploy standard tmux config to /etc/tmux.conf instead of ~/.tmux.conf 2020-03-28 13:03:35 +01:00
eddb8ca70a
bundles/users: add option for custom tmux/bash/fish configs 2020-03-28 12:56:45 +01:00
810c2cfcf8
bundles/users: also deploy tmux config 2020-03-28 12:40:37 +01:00
d7ca23d57e
bundles/apt: autoclean unused packages 2020-03-28 12:36:40 +01:00
32bdcae23f
bundles/hostname: add node name to hosts file 2020-03-28 09:47:43 +00:00
841b49cd18
bundles/users: also deploy shell config 2020-03-27 13:33:37 +00:00
6656a0864f
bundles/{systemd,hostname}: add hostname control 2020-03-27 12:46:10 +00:00
067b498bf2
bundles/sudo: add bundle 2020-03-27 11:52:17 +00:00
9a956e832a
bundles/voc-loudness-monitor: no need to start the loudness units on every run 2020-03-27 11:50:50 +00:00
7406ed7522
bundles/apt: fix additional origins for unattended-users 2020-03-27 11:30:11 +00:00
a3c0e6a08e
bundles/users: regular users don't need a password 2020-03-27 11:28:44 +00:00
8e681e4c39
bundles/voc-loudness-monitor: sources need ffmpeg installed 2020-03-21 11:42:33 +00:00
e351c508f2
bundles/systemd: add daemon-reload action 2020-03-21 11:31:56 +00:00
8abfe74c2b
bundles/voc-loudness-monitor: inital commit of sources units 2020-03-21 11:31:27 +00:00
9556e423bd
bundles/nginx: initial commit 2020-03-14 09:56:19 +00:00
b4808d54e9
bundles/riot-web: add metadata to write config.json 2020-03-14 09:38:12 +00:00
589965b58b
bundles/apt: fix unattended-upgrades 2020-03-14 09:37:31 +00:00
d0ba89a1f3
default shell is bash, not fish
... sadly :(
2020-02-29 14:47:41 +00:00
a27fd619a2
add riot-web bundle 2020-02-29 14:42:54 +00:00
ad7b164533
add apt bundle 2020-02-29 14:42:29 +00:00
e5539d508b
bundles/users: remove authorized_keys if not set by bundle 2020-02-29 13:09:14 +00:00
a47bdcfb39
fixup groups 2020-02-29 12:38:27 +00:00
ebf7f7ada9
add users bundle 2020-02-29 12:30:21 +00:00
3934414140
initial version of vmhost bundle 2020-02-29 12:30:06 +00:00