Felix Stupp
|
67f1e0919e
|
git_auto_update: Allowed asume group equals owner
|
5 years ago |
Felix Stupp
|
0944fd798f
|
common: Added configuration of apt sources
|
5 years ago |
Felix Stupp
|
b6c860548e
|
server/nextcloud: Changed dependencies back to real one
Undo of 9216931b33
|
5 years ago |
Felix Stupp
|
edb298ebaa
|
server/nextcloud: Combined vars nextcloud_system_user and system_user
|
5 years ago |
Felix Stupp
|
16d91d83bd
|
common: Added aptitude to list of common packages
|
5 years ago |
Felix Stupp
|
b4897778b6
|
server/spotme: Added source of credentials for git repo
|
5 years ago |
Felix Stupp
|
243b804fa4
|
dns/master: Added CAA Entry for letsencrypt.org
|
5 years ago |
Felix Stupp
|
02ff70e699
|
common: Added downloading and processing ssh host keys
|
5 years ago |
Felix Stupp
|
6b36435d8d
|
server/nextcloud: Added libmagickcore to dependencies
|
5 years ago |
Felix Stupp
|
6742f9789d
|
mysql/database: Allowed duplications
|
5 years ago |
Felix Stupp
|
4a09419de4
|
mysql/application: Removed duplicated locking of user root
|
5 years ago |
Felix Stupp
|
ef666274ba
|
mysql/application: Combined removing test user for all hosts
|
5 years ago |
Felix Stupp
|
6381fe6d83
|
server/nextcloud: Increased memory for php up to 1G
|
5 years ago |
Felix Stupp
|
029fba1983
|
nginx/php-pool: Added support for custom memory_limit
|
5 years ago |
Felix Stupp
|
a0000e3c7f
|
nginx/php*: Fixed handler names for controlling php-fpm service
|
5 years ago |
Felix Stupp
|
3a5881a721
|
common: Fixed handler "restart ssh"
|
5 years ago |
Felix Stupp
|
ce90f3dadf
|
nginx/php-fpm: Fixed getting php-fpm for newer versions of Debian
|
5 years ago |
Felix Stupp
|
6509b01d71
|
acme: Added ToDo for "Create custom user ..."
|
5 years ago |
Felix Stupp
|
bae56869f6
|
acme/certificate: Enabled OCSP must-stable for certificates
|
5 years ago |
Felix Stupp
|
9ba13c5d73
|
nginx/application: Enabled OCSP Stapling
|
5 years ago |
Felix Stupp
|
22f14189c2
|
nginx/application: Enabled TLSv1.3 and reworked ciphers
|
5 years ago |
Felix Stupp
|
ce1f2fb132
|
nginx/application: Increased time for HSTS
|
5 years ago |
Felix Stupp
|
5bed7d067a
|
nginx/application: Added localhost as resolver for nginx
|
5 years ago |
Felix Stupp
|
d9eb74649f
|
nginx/application: Fixed missing notify for templates
|
5 years ago |
Felix Stupp
|
13736ece66
|
server/nextcloud: Fixed cron job running as the correct user
|
5 years ago |
Felix Stupp
|
69ec4ef59c
|
server/nextcloud: Fixed name for cron job
For allowing different nextcloud instances work simultaneously
|
5 years ago |
Felix Stupp
|
52c8e89ff4
|
server/nextcloud: Change version to newest release
|
5 years ago |
Felix Stupp
|
1f9f70bc1c
|
server/nextcloud: Enabled nextcloud app social
|
5 years ago |
Felix Stupp
|
b381bdbd9e
|
server/nextcloud: Disabled php module mcrypt
Already preinstalled in base packages
|
5 years ago |
Felix Stupp
|
4b7bb44141
|
server/nextcloud: Allow duplicates for role
|
5 years ago |
Felix Stupp
|
4bb347344c
|
server/nextcloud: Moved user directory for nextcloud
|
5 years ago |
Felix Stupp
|
9216931b33
|
server/nextcloud: Moved roles into tasks for creating user before
|
5 years ago |
Felix Stupp
|
826cc1d0b7
|
common: Added creating of backup files directory
|
5 years ago |
Felix Stupp
|
1602022134
|
mysql: Added auto backuping databases
|
5 years ago |
Felix Stupp
|
53643f6c99
|
server/nextcloud: Added support for auto backuping data directory
|
5 years ago |
Felix Stupp
|
f77d57eba8
|
server/gitea: Added auto backup support for repositories
|
5 years ago |
Felix Stupp
|
39e7f60aba
|
common: Fixed syntax in backup_databases.sh script
|
5 years ago |
Felix Stupp
|
c02b88bf2e
|
common: Added support for files backups
|
5 years ago |
Felix Stupp
|
f61da86598
|
server/nextcloud: Reordered background job and update task
|
5 years ago |
Felix Stupp
|
c2b060df9e
|
common: Added support for backup databases
|
5 years ago |
Felix Stupp
|
fcba624ac5
|
common: Fixed typo in task name for packages
|
5 years ago |
Felix Stupp
|
d3f2e8d4b5
|
Added role wireguard/special_client
|
5 years ago |
Felix Stupp
|
96ae42477f
|
Added role wireguard/application
|
5 years ago |
Felix Stupp
|
93f1207bf9
|
Added role server/spotme
|
5 years ago |
Felix Stupp
|
93f30e6919
|
Added role server/nextcloud
|
5 years ago |
Felix Stupp
|
0bec0a9630
|
Added role nginx/server
|
5 years ago |
Felix Stupp
|
3f19422c0c
|
Added role nginx/php-pool
|
5 years ago |
Felix Stupp
|
692b9bf74b
|
Added role nginx/php-fpm
For php-fpm setup
|
5 years ago |
Felix Stupp
|
30f2210481
|
git_auto_update: Renamed variable name to repo_name
|
5 years ago |
Felix Stupp
|
e04596e4ab
|
common: Added dirmngr to packages
|
5 years ago |
Felix Stupp
|
0df56b9ddc
|
common: Added helper scripts support and gpg_import_url_key
|
5 years ago |
Felix Stupp
|
0e8234fa08
|
common: Fixed ufw setting default deny for incoming traffic
|
5 years ago |
Felix Stupp
|
9cdc7ccd91
|
common: Generate locale for german
|
5 years ago |
Felix Stupp
|
83c2dde55c
|
server/gitea: Added usage of handlers
|
5 years ago |
Felix Stupp
|
c10bb0160d
|
Added role misc/handlers
As handlers collection for general, preinstalled applications
|
5 years ago |
Felix Stupp
|
262cba5952
|
server/gitea: Removed note about change required
|
5 years ago |
Felix Stupp
|
3327a9e4b4
|
server/gitea: Used derivation of pass/name by database role
|
5 years ago |
Felix Stupp
|
c9206ff499
|
mysql/database: Added derivation of password and database name
|
5 years ago |
Felix Stupp
|
df88e582a7
|
dns/master: Added dnssec support
- Generation of keys
- Signing zone after each change
|
5 years ago |
Felix Stupp
|
69026d8d27
|
dns/master: Moved zone files into directory per zone
|
5 years ago |
Felix Stupp
|
93891c25a5
|
dns/application: Added config for bind9
- Enabled dnssec by default
|
5 years ago |
Felix Stupp
|
befbff3c7e
|
dns/master: Added prefix for paths to vars in default
|
5 years ago |
Felix Stupp
|
f85d1a4477
|
roles/nginx/forward: nginx configuration "redirect" -> "return"
|
6 years ago |
Felix Stupp
|
d938fdfb39
|
roles/nginx/forward: Fixed name of configuration template
|
6 years ago |
Felix Stupp
|
3fbead1377
|
Added roles/server/static
|
6 years ago |
Felix Stupp
|
f20776e1bd
|
Added roles/git_auto_update
|
6 years ago |
Felix Stupp
|
2b63f1a248
|
Added roles/dns/{application,master,slave}
|
6 years ago |
Felix Stupp
|
b804ae005e
|
roles/server/gitea: Fixed creating dump on first download
|
6 years ago |
Felix Stupp
|
1965972379
|
roles/server/gitea: Changed gpg keyserver pool to europe only
Because latency is lower
|
6 years ago |
Felix Stupp
|
e0464d5ddb
|
roles/server/gitea: Reworked gitea / service configuration
|
6 years ago |
Felix Stupp
|
a3d6116caa
|
roles/server/gitea: Fixed cron configuration
|
6 years ago |
Felix Stupp
|
e7bdb5f26b
|
roles/server/gitea: Run update script as root
|
6 years ago |
Felix Stupp
|
f0f8a4a5c3
|
roles/server/gitea: Reordered configuration
|
6 years ago |
Felix Stupp
|
542bf0809c
|
roles/server/gitea: Defined default variable backend_socket
|
6 years ago |
Felix Stupp
|
65d8840abb
|
roles/server/gitea: Reworked owner, group and mode settings for directories
|
6 years ago |
Felix Stupp
|
2bce35c643
|
roles/server/gitea: Defined shell for user git
|
6 years ago |
Felix Stupp
|
286aac3470
|
roles/server/gitea: Reworked usage of nginx/proxy
|
6 years ago |
Felix Stupp
|
7d8be15582
|
roles/nginx/proxy: Reworked proxy to adapt to upstreams
|
6 years ago |
Felix Stupp
|
bdf96b6eeb
|
roles/nginx/static added
|
6 years ago |
Felix Stupp
|
309d23ba8a
|
roles/nginx: Reworked upstreams
|
6 years ago |
Felix Stupp
|
6c310a8f3d
|
roles/nginx/application: Set allow_duplicates to false
|
6 years ago |
Felix Stupp
|
6b376cacfa
|
roles/nginx/application: Added snippets acme and root
|
6 years ago |
Felix Stupp
|
da676ebc32
|
roles/nginx/application: Included upstreams directory
|
6 years ago |
Felix Stupp
|
7e56f8ada5
|
roles/nginx/application: Fixed global forwarding to https
|
6 years ago |
Felix Stupp
|
097ff3d743
|
roles/nginx/application: Fixed nginx variable configuration
|
6 years ago |
Felix Stupp
|
5676165f1c
|
roles/nginx/application: Fixed configuration for global logs
|
6 years ago |
Felix Stupp
|
d80261fe53
|
roles/nginx/application: Added validation for nginx.conf
|
6 years ago |
Felix Stupp
|
007c7ed2a4
|
roles/nginx/application: Fixed task names containing item keyword
|
6 years ago |
Felix Stupp
|
fad2b9bc7c
|
Removed forwarding of domain variable causing loop of resolving
|
6 years ago |
Felix Stupp
|
8c55df251a
|
mysql/database: Renamed database parameters
|
6 years ago |
Felix Stupp
|
4225f14774
|
roles/mysql/application: Removed unnecessary quotes
|
6 years ago |
Felix Stupp
|
021cd2cb57
|
roles/mysql: Fixed handling of handlers
|
6 years ago |
Felix Stupp
|
3894d27b25
|
roles/mysql/application: Fixed generating credentials
|
6 years ago |
Felix Stupp
|
401d9bbb16
|
roles/hostname: Fixed setting hostname in /etc/hostname: Added newline
|
6 years ago |
Felix Stupp
|
f2c6d0d249
|
roles/common: Create directory for all auto update scripts
|
6 years ago |
Felix Stupp
|
60b6d4778e
|
roles/common: Store ssh public key of root locally
|
6 years ago |
Felix Stupp
|
c49e9cc9b9
|
roles/common: Create ssh key for root user by default
|
6 years ago |
Felix Stupp
|
014c5d7c92
|
roles/common: Removed credentials feature
|
6 years ago |
Felix Stupp
|
ae8482c883
|
roles/server/gitea: Removed old file update_gitea.sh
Replaced by template update_gitea.sh
|
6 years ago |
Felix Stupp
|
b0c25e6cb3
|
roles/server/gitea: Moved update script path to global location
|
6 years ago |
Felix Stupp
|
a408ba3e86
|
roles/server/gitea: Fixed creating credentials
|
6 years ago |
Felix Stupp
|
ec446f4986
|
roles/server/gitea: Adapted location of user directory
|
6 years ago |
Felix Stupp
|
9321e75b4b
|
roles/server/gitea: Fixed default name of service
|
6 years ago |
Felix Stupp
|
d3a6337a24
|
Removed role close_credentials
|
6 years ago |
Felix Stupp
|
1dd31a451f
|
acme_certificate: Defined changed_when for calling acme.sh
|
6 years ago |
Felix Stupp
|
226bc9c873
|
Reconfigured nginx / acme validation handling
|
6 years ago |
Felix Stupp
|
308c6a95d4
|
Configured allow_duplicates for several roles
|
6 years ago |
Felix Stupp
|
f502ba4574
|
Added role nginx/proxy
Also added needed dependencies
|
6 years ago |
Felix Stupp
|
7122bcf9e3
|
nginx/application: Enabled acme verification for all over http
|
6 years ago |
Felix Stupp
|
facee1a61d
|
nginx/application: Extracted acme snippets from global
|
6 years ago |
Felix Stupp
|
d08159eb24
|
nginx/application: Removed duplicated ssl configuration
|
6 years ago |
Felix Stupp
|
b49a832759
|
nginx/application: Added rules for firewall
|
6 years ago |
Felix Stupp
|
2186137327
|
nginx/application: Used vars in nginx.conf
|
6 years ago |
Felix Stupp
|
7a84ae4fdc
|
nginx/application: Fixed uploading and including snippets
|
6 years ago |
Felix Stupp
|
ec59a31dea
|
roles/nginx/forward: Changed var name "destination" to "dest"
|
6 years ago |
Felix Stupp
|
c5a170bf2e
|
roles/bootstrap: Added sudo to required packages
|
6 years ago |
Felix Stupp
|
63ca530071
|
roles/common: Added dnsutils to common packages
|
6 years ago |
Felix Stupp
|
6a6e2f6602
|
Moved dependency of certificate validation directory to nginx role
|
6 years ago |
Felix Stupp
|
01fafa5ca1
|
nginx: Reworked global ssl and https configuration
|
6 years ago |
Felix Stupp
|
c2bd392675
|
Added role nginx/forward
|
6 years ago |
Felix Stupp
|
08ebc2f5cb
|
Added role nginx/application
|
6 years ago |
Felix Stupp
|
b380249c0c
|
Added role nginx/all_mail_proxy
|
6 years ago |
Felix Stupp
|
88afbf7106
|
Added role nginx/mail_proxy
|
6 years ago |
Felix Stupp
|
fad1abc638
|
Added role server/gitea
|
6 years ago |
Felix Stupp
|
80dc14fd96
|
Added roles for mysql
|
6 years ago |
Felix Stupp
|
3910b1bac6
|
Added role hostname
|
6 years ago |
Felix Stupp
|
596c03fe22
|
Added role bootstrap
|
6 years ago |
Felix Stupp
|
04b571f59c
|
Added role account
|
6 years ago |
Felix Stupp
|
d3494ed1b9
|
Added role common
|
6 years ago |
Felix Stupp
|
4862b9dd69
|
Added roles for automatic certificate issue with acme.sh
|
6 years ago |