 Felix Stupp
|
49f119c6e8
|
server/node: Used external handler for daemon_reload
|
5 years ago |
|
Felix Stupp
|
fd08d83275
|
Restricted permissions for service files
|
5 years ago |
|
Felix Stupp
|
98386df525
|
Added role server/firefox-sync
|
5 years ago |
|
Felix Stupp
|
8abcc88a13
|
server/nextcloud: Allow access for nginx for seeing php files
|
5 years ago |
|
Felix Stupp
|
ec6202bd61
|
server/gitea: Added doc for var domain on nginx/proxy
|
5 years ago |
|
Felix Stupp
|
133d82e0bb
|
nginx/proxy: Added doc for var upstream_name
|
5 years ago |
|
Felix Stupp
|
b6e70b881a
|
acme: Fixed using correct home and config-home directories
|
5 years ago |
|
Felix Stupp
|
5ea380e812
|
common: Fix auto backup database script
Encryption failed
|
5 years ago |
|
Felix Stupp
|
2f8ef5dc34
|
Extracted global var for systemd configuration directory
|
5 years ago |
|
Felix Stupp
|
bcfd4cb010
|
Fixed missing mode setting for others
To disallow access from others than user and group
|
5 years ago |
|
Felix Stupp
|
5afcd6b738
|
misc/system_user: Allowed configuring user directory parameters
|
5 years ago |
|
Felix Stupp
|
0ea1dac688
|
account: Documentated input variables
- username
- password
|
5 years ago |
|
Felix Stupp
|
d9b4510200
|
account: Added variable for user directory
|
5 years ago |
|
Felix Stupp
|
c56ed16851
|
account: Added configuration for home directory
For disabling other read rights on home directory
|
5 years ago |
|
Felix Stupp
|
ad87ad2e7d
|
server/gitea: Removed dumping before update
Global backup service should be enough
|
5 years ago |
|
Felix Stupp
|
bef682140b
|
acme/certificate: Removed invalid command argument
|
5 years ago |
|
Felix Stupp
|
a3fde6aa3c
|
acme: Moved certificate handling to custom system user
Avoided using root for acme.sh
Modified also role nginx/application
|
5 years ago |
|
Felix Stupp
|
9e20b807f1
|
acme/application: Removed getting if acme is installed
As it should be installed or otherwise the playbook failed
|
5 years ago |
|
Felix Stupp
|
002ecc28b0
|
nginx/php-pool: Removed not needed system user configuration
|
5 years ago |
|
Felix Stupp
|
5486d06226
|
nginx/php-fpm: Fixed removing default php-fpm pool
|
5 years ago |
|
Felix Stupp
|
964099cfdb
|
nginx/php-fpm: Added configuration for php opcache
|
5 years ago |
|
Felix Stupp
|
c25df42253
|
common: Reworked ssh configuration generation
|
5 years ago |
|
Felix Stupp
|
1a5a7b0611
|
server/nextcloud: Added app previewgenerator
With its own cron job at 3
|
5 years ago |
|
Felix Stupp
|
380a5dbf2e
|
server/nextcloud: Added apps Deck, Dicomviewer and suspicious_login
|
5 years ago |
|
Felix Stupp
|
1e5dd61270
|
wireguard/application: Extracted role misc/deb_unstable
|
5 years ago |
|
Felix Stupp
|
0dab3bdad2
|
Added role node/server
|
5 years ago |
|
Felix Stupp
|
a74f532394
|
Added role node/application
|
5 years ago |
|
Felix Stupp
|
852dbdb143
|
php-pool: Added domain to required variables (doc-only)
|
5 years ago |
|
Felix Stupp
|
9595db481f
|
Added role misc/system_user
|
5 years ago |
|
Felix Stupp
|
b229a5c3bf
|
git_auto_update: Added reset command before checkout
|
5 years ago |
|
Felix Stupp
|
d570f3cdb3
|
git_auto_update: Allow reload_command failing during playbook execution
|
5 years ago |
|
Felix Stupp
|
67f1e0919e
|
git_auto_update: Allowed asume group equals owner
|
5 years ago |
|
Felix Stupp
|
0944fd798f
|
common: Added configuration of apt sources
|
5 years ago |
|
Felix Stupp
|
b6c860548e
|
server/nextcloud: Changed dependencies back to real one
Undo of 9216931b33
|
5 years ago |
|
Felix Stupp
|
edb298ebaa
|
server/nextcloud: Combined vars nextcloud_system_user and system_user
|
5 years ago |
|
Felix Stupp
|
16d91d83bd
|
common: Added aptitude to list of common packages
|
5 years ago |
|
Felix Stupp
|
b4897778b6
|
server/spotme: Added source of credentials for git repo
|
5 years ago |
|
Felix Stupp
|
243b804fa4
|
dns/master: Added CAA Entry for letsencrypt.org
|
5 years ago |
|
Felix Stupp
|
02ff70e699
|
common: Added downloading and processing ssh host keys
|
5 years ago |
|
Felix Stupp
|
6b36435d8d
|
server/nextcloud: Added libmagickcore to dependencies
|
5 years ago |
|
Felix Stupp
|
6742f9789d
|
mysql/database: Allowed duplications
|
5 years ago |
|
Felix Stupp
|
4a09419de4
|
mysql/application: Removed duplicated locking of user root
|
5 years ago |
|
Felix Stupp
|
ef666274ba
|
mysql/application: Combined removing test user for all hosts
|
5 years ago |
|
Felix Stupp
|
6381fe6d83
|
server/nextcloud: Increased memory for php up to 1G
|
5 years ago |
|
Felix Stupp
|
029fba1983
|
nginx/php-pool: Added support for custom memory_limit
|
5 years ago |
|
Felix Stupp
|
a0000e3c7f
|
nginx/php*: Fixed handler names for controlling php-fpm service
|
5 years ago |
|
Felix Stupp
|
3a5881a721
|
common: Fixed handler "restart ssh"
|
5 years ago |
|
Felix Stupp
|
ce90f3dadf
|
nginx/php-fpm: Fixed getting php-fpm for newer versions of Debian
|
5 years ago |
|
Felix Stupp
|
6509b01d71
|
acme: Added ToDo for "Create custom user ..."
|
5 years ago |
|
Felix Stupp
|
bae56869f6
|
acme/certificate: Enabled OCSP must-stable for certificates
|
5 years ago |
|
Felix Stupp
|
9ba13c5d73
|
nginx/application: Enabled OCSP Stapling
|
5 years ago |
|
Felix Stupp
|
22f14189c2
|
nginx/application: Enabled TLSv1.3 and reworked ciphers
|
5 years ago |
|
Felix Stupp
|
ce1f2fb132
|
nginx/application: Increased time for HSTS
|
5 years ago |
|
Felix Stupp
|
5bed7d067a
|
nginx/application: Added localhost as resolver for nginx
|
5 years ago |
|
Felix Stupp
|
d9eb74649f
|
nginx/application: Fixed missing notify for templates
|
5 years ago |
|
Felix Stupp
|
13736ece66
|
server/nextcloud: Fixed cron job running as the correct user
|
5 years ago |
|
Felix Stupp
|
69ec4ef59c
|
server/nextcloud: Fixed name for cron job
For allowing different nextcloud instances work simultaneously
|
5 years ago |
|
Felix Stupp
|
52c8e89ff4
|
server/nextcloud: Change version to newest release
|
5 years ago |
|
Felix Stupp
|
1f9f70bc1c
|
server/nextcloud: Enabled nextcloud app social
|
5 years ago |
|
Felix Stupp
|
b381bdbd9e
|
server/nextcloud: Disabled php module mcrypt
Already preinstalled in base packages
|
5 years ago |
|
Felix Stupp
|
4b7bb44141
|
server/nextcloud: Allow duplicates for role
|
5 years ago |
|
Felix Stupp
|
4bb347344c
|
server/nextcloud: Moved user directory for nextcloud
|
5 years ago |
|
Felix Stupp
|
9216931b33
|
server/nextcloud: Moved roles into tasks for creating user before
|
5 years ago |
|
Felix Stupp
|
826cc1d0b7
|
common: Added creating of backup files directory
|
5 years ago |
|
Felix Stupp
|
1602022134
|
mysql: Added auto backuping databases
|
5 years ago |
|
Felix Stupp
|
53643f6c99
|
server/nextcloud: Added support for auto backuping data directory
|
5 years ago |
|
Felix Stupp
|
f77d57eba8
|
server/gitea: Added auto backup support for repositories
|
5 years ago |
|
Felix Stupp
|
39e7f60aba
|
common: Fixed syntax in backup_databases.sh script
|
5 years ago |
|
Felix Stupp
|
c02b88bf2e
|
common: Added support for files backups
|
5 years ago |
|
Felix Stupp
|
f61da86598
|
server/nextcloud: Reordered background job and update task
|
5 years ago |
|
Felix Stupp
|
c2b060df9e
|
common: Added support for backup databases
|
5 years ago |
|
Felix Stupp
|
fcba624ac5
|
common: Fixed typo in task name for packages
|
5 years ago |
|
Felix Stupp
|
d3f2e8d4b5
|
Added role wireguard/special_client
|
5 years ago |
|
Felix Stupp
|
96ae42477f
|
Added role wireguard/application
|
5 years ago |
|
Felix Stupp
|
93f1207bf9
|
Added role server/spotme
|
5 years ago |
|
Felix Stupp
|
93f30e6919
|
Added role server/nextcloud
|
5 years ago |
|
Felix Stupp
|
0bec0a9630
|
Added role nginx/server
|
5 years ago |
|
Felix Stupp
|
3f19422c0c
|
Added role nginx/php-pool
|
5 years ago |
|
Felix Stupp
|
692b9bf74b
|
Added role nginx/php-fpm
For php-fpm setup
|
5 years ago |
|
Felix Stupp
|
30f2210481
|
git_auto_update: Renamed variable name to repo_name
|
5 years ago |
|
Felix Stupp
|
e04596e4ab
|
common: Added dirmngr to packages
|
5 years ago |
|
Felix Stupp
|
0df56b9ddc
|
common: Added helper scripts support and gpg_import_url_key
|
5 years ago |
|
Felix Stupp
|
0e8234fa08
|
common: Fixed ufw setting default deny for incoming traffic
|
5 years ago |
|
Felix Stupp
|
9cdc7ccd91
|
common: Generate locale for german
|
5 years ago |
|
Felix Stupp
|
83c2dde55c
|
server/gitea: Added usage of handlers
|
5 years ago |
|
Felix Stupp
|
c10bb0160d
|
Added role misc/handlers
As handlers collection for general, preinstalled applications
|
5 years ago |
|
Felix Stupp
|
262cba5952
|
server/gitea: Removed note about change required
|
5 years ago |
|
Felix Stupp
|
3327a9e4b4
|
server/gitea: Used derivation of pass/name by database role
|
5 years ago |
|
Felix Stupp
|
c9206ff499
|
mysql/database: Added derivation of password and database name
|
5 years ago |
|
Felix Stupp
|
df88e582a7
|
dns/master: Added dnssec support
- Generation of keys
- Signing zone after each change
|
5 years ago |
|
Felix Stupp
|
69026d8d27
|
dns/master: Moved zone files into directory per zone
|
5 years ago |
|
Felix Stupp
|
93891c25a5
|
dns/application: Added config for bind9
- Enabled dnssec by default
|
5 years ago |
|
Felix Stupp
|
befbff3c7e
|
dns/master: Added prefix for paths to vars in default
|
5 years ago |
|
Felix Stupp
|
f85d1a4477
|
roles/nginx/forward: nginx configuration "redirect" -> "return"
|
6 years ago |
|
Felix Stupp
|
d938fdfb39
|
roles/nginx/forward: Fixed name of configuration template
|
6 years ago |
|
Felix Stupp
|
3fbead1377
|
Added roles/server/static
|
6 years ago |
|
Felix Stupp
|
f20776e1bd
|
Added roles/git_auto_update
|
6 years ago |
|
Felix Stupp
|
2b63f1a248
|
Added roles/dns/{application,master,slave}
|
6 years ago |
|
Felix Stupp
|
b804ae005e
|
roles/server/gitea: Fixed creating dump on first download
|
6 years ago |
|
Felix Stupp
|
1965972379
|
roles/server/gitea: Changed gpg keyserver pool to europe only
Because latency is lower
|
6 years ago |