Felix Stupp
|
1cea46b161
|
Added role kiosk/website
|
4 years ago |
Felix Stupp
|
71bf56e60f
|
server/nextcloud: Changed approach for config to import prepared JSON
|
4 years ago |
Felix Stupp
|
10541b5ecc
|
server/nextcloud: Added tag nextcloud_apps
|
4 years ago |
Felix Stupp
|
0a6484d1ea
|
server/nextcloud: Add new dependencies for Nextcloud
|
4 years ago |
Felix Stupp
|
ad9dbb8e61
|
Update nextcloud server configuration to be more strict
|
4 years ago |
Felix Stupp
|
3f2392332d
|
Added role kiosk/boot
|
4 years ago |
Felix Stupp
|
1748d00f8c
|
Fixup for dns/application: Add nsupdate.makefile for indempotent updates
|
4 years ago |
Felix Stupp
|
da381ce264
|
account: Transfered from oh-my-zsh to antigen
|
4 years ago |
Felix Stupp
|
03c485e736
|
Configured sshd service name in global var
|
4 years ago |
Felix Stupp
|
0939f14b21
|
wireguard/application: Key generation command rewritten to shell module
|
4 years ago |
Felix Stupp
|
e8e735776f
|
wireguard: Install from backports instead of unstable
|
4 years ago |
Felix Stupp
|
f323f9dd7c
|
nginx/php-fpm: Moved sockets to non-temporary directory
/var/run was cleared after reboot, required re-executing Ansible to run
PHP services.
|
4 years ago |
Felix Stupp
|
13f3aceb00
|
dns/entries: Make "setting entries" be indempotent using makefile
|
4 years ago |
Felix Stupp
|
9c1e1e6ecd
|
Added role misc/overlay_mount
|
4 years ago |
Felix Stupp
|
bd4d97d835
|
dns/entries: Block uploading dns entries in check mode
Must explicit block because otherwise Ansible tries to lookup the local
file, which may not be created in check mode
|
4 years ago |
Felix Stupp
|
427541311a
|
account: Added validate for sudoers insults config
|
4 years ago |
Felix Stupp
|
dfe801631c
|
account: Fixed mode for sudo insults config
|
4 years ago |
Felix Stupp
|
6b40c8d8aa
|
nfs/export: Use systemd_escape_mount instead of custom regex_replace
|
4 years ago |
Felix Stupp
|
e93c11f0d7
|
Added shellcheck for script validations
|
4 years ago |
Felix Stupp
|
34614b7d6a
|
server/linx: update: Changed installed version detection to use zero-lines
|
4 years ago |
Felix Stupp
|
7d2f8d32d0
|
server/linx: update: Combined two comment sections
|
4 years ago |
Felix Stupp
|
69172f0145
|
server/gitea: update: Improved shell configuration to detect errors
|
4 years ago |
Felix Stupp
|
90a2a41d7c
|
server/gitea: update.sh: Improved usage of quotation markers
|
4 years ago |
Felix Stupp
|
f8cd2a6f60
|
misc/ssh_tg_notify: Used [[ instead of [ for if expression
|
4 years ago |
Felix Stupp
|
3bc9c9360d
|
common: backup_autoremove: Improved script quality
|
4 years ago |
Felix Stupp
|
6c7f35075b
|
git_auto_update: Added check if no update is required
|
4 years ago |
Felix Stupp
|
092526315c
|
git_auto_update: Added check for if no release tag can't be found
|
4 years ago |
Felix Stupp
|
f88b36fd1e
|
git_auto_update: Added and used error function
|
4 years ago |
Felix Stupp
|
15d80c8d43
|
git_auto_update: Changed message for failed reload_command
|
4 years ago |
Felix Stupp
|
a7a5bf00e8
|
git_auto_update: update.sh: Set git reset to be quiet
|
4 years ago |
Felix Stupp
|
376de41b51
|
git_auto_update: Allow changing remote url
|
4 years ago |
Felix Stupp
|
6c1beee210
|
git_auto_update: update.sh: Moved set command to beginning
|
4 years ago |
Felix Stupp
|
44b5fdcbb0
|
git_auto_update: Added support for submodules
|
4 years ago |
Felix Stupp
|
58dfab8529
|
nginx: Tagged tasks using certificate information
|
4 years ago |
Felix Stupp
|
75e0dc0d1a
|
misc/system_user: Added tag always to task exporting variables
|
4 years ago |
Felix Stupp
|
15a6cb1ff9
|
acme/certificate: Renamed tag for certificate tasks
|
4 years ago |
Felix Stupp
|
482200821e
|
acme/certificate: Defined must-staple optional for certificate
|
4 years ago |
Felix Stupp
|
c66dbe42c4
|
acme/certificate: Use certificate_name for task name
|
4 years ago |
Felix Stupp
|
6ecf4426e2
|
Added role misc/deb_backports
|
4 years ago |
Felix Stupp
|
7638b6f86c
|
nginx/php-pool: Added configuration for allow_overwrite_include
|
4 years ago |
Felix Stupp
|
3ab19950c4
|
nginx/php-pool: Fixed memory_limit default to avoid overwrite by roles before
|
4 years ago |
Felix Stupp
|
ef53197925
|
misc/system_user: Configured allow_duplicates to true
|
4 years ago |
Felix Stupp
|
8443555583
|
nginx/application: Changed port numbers to string
To avoid conversion warning of ansible
|
4 years ago |
Felix Stupp
|
8dd14a365d
|
misc/backup_files: Replaced old usages of domain with backup_name
|
5 years ago |
Felix Stupp
|
9462e70ea1
|
server/spotme: Moved service envs to extra file
Otherwise all users would be able to extract data using systemctl show
|
5 years ago |
Felix Stupp
|
07004c3717
|
server/tt-rss: Moved service envs in extra file
Otherwise all users would be able to extract data using systemctl show
|
5 years ago |
Felix Stupp
|
9e04a7b39b
|
server/node: Moved private envs to extra file
Otherwise all users would be able to extract data using systemctl show
|
5 years ago |
Felix Stupp
|
62758cac7c
|
mysql: Extracted mysql_socket_path into global var
|
5 years ago |
Felix Stupp
|
f91ef20682
|
server/gitea: Fixed quoting of vars for update script
|
5 years ago |
Felix Stupp
|
58749bcc43
|
acme/certificate: Fixed quoting of nginx_service_name
|
5 years ago |
Felix Stupp
|
a9c8fd9af3
|
Moved var nginx_installation_directory to global vars
|
5 years ago |
Felix Stupp
|
b1a93849a1
|
Moved var nginx_system_user to global vars
|
5 years ago |
Felix Stupp
|
34b867994c
|
nginx/proxy: Moved directives var to defaults
Overwrites directives in default of following roles
|
5 years ago |
Felix Stupp
|
be218e813e
|
node/application: Removed not neccessary register and when construct
|
5 years ago |
Felix Stupp
|
4f9cf49f6c
|
dns/handlers merged into dns/application
|
5 years ago |
Felix Stupp
|
f46e51115e
|
acme: Changed underlying package from acme.sh to certbot
|
5 years ago |
Felix Stupp
|
0f57d44bb1
|
acme/certificate: Renamed certificate_location to fullchain_location
|
5 years ago |
Felix Stupp
|
55451f321a
|
acme,nginx: Reversed dependency to match real dependency
|
5 years ago |
Felix Stupp
|
9ad4ada018
|
acme,nginx: Renamed var for validation root to acme prefix
|
5 years ago |
Felix Stupp
|
d48d4885d7
|
Extracted admin_mail into global var
|
5 years ago |
Felix Stupp
|
6dcea566d6
|
acme/certificate: Removed invalid --ecc parameter
|
5 years ago |
Felix Stupp
|
0e49941e1a
|
acme/certificate: Fixed quoting for acme.sh commands
|
5 years ago |
Felix Stupp
|
98b7f4744e
|
Extracted service_name of nginx to global var
|
5 years ago |
Felix Stupp
|
9fa36a210f
|
acme/certificate: Changed default reload command to "reload nginx"
|
5 years ago |
Felix Stupp
|
45645de557
|
Moved conversion from domain to username into filter with shorts table
|
5 years ago |
Felix Stupp
|
00ef0cd61a
|
server/gitea: Changed default database_user to system_user
To be equal to other server roles
|
5 years ago |
Felix Stupp
|
67308818f5
|
server/minecraft: Changed dns entries format to new one
|
5 years ago |
Felix Stupp
|
829d67f0b8
|
nginx/static: Moved directives into var
|
5 years ago |
Felix Stupp
|
08d3382528
|
nginx/static: Fix indention for location
|
5 years ago |
Felix Stupp
|
b0cc2b8ca1
|
dns/master: Make backups of dynamic zone data
|
5 years ago |
Felix Stupp
|
ae42f963a2
|
dns: Transfered master zones from makefile approach to dynamic updates approach
|
5 years ago |
Felix Stupp
|
0232319ccd
|
dns/master: Configured dnssec-policy for automatic KASP
|
5 years ago |
Felix Stupp
|
ae995dec67
|
dns/entries: Prefixed entries name with "server:"
|
5 years ago |
Felix Stupp
|
3d274d9996
|
dns/application: Fixed indent
|
5 years ago |
Felix Stupp
|
93b5ba9e4b
|
misc/backup_files: Fixed conversion of timing data to str
|
5 years ago |
Felix Stupp
|
ddc1da5c3c
|
misc/backup_files: Use backup_name for name of tasks
|
5 years ago |
Felix Stupp
|
d1e14a9de9
|
misc/backup_files: Added & used variable for backup_target
Ensures usage of backup_name insted of domain
|
5 years ago |
Felix Stupp
|
b6d9b1deb5
|
dns/entries: Fixed reference to var dns_zone_domain
|
5 years ago |
Felix Stupp
|
360172f8db
|
dns/master: Moved default tts var to global var
|
5 years ago |
Felix Stupp
|
72ee42d539
|
dns/master: Allow configure default ttl
|
5 years ago |
Felix Stupp
|
3008672ded
|
dns/master: Added section comments to zone.conf
|
5 years ago |
Felix Stupp
|
a41f4c1c3f
|
dns/master: Adapted generate-keys to inline-signing (only gen KSK)
|
5 years ago |
Felix Stupp
|
be6303576a
|
dns/application: Added configuration for session-key
|
5 years ago |
Felix Stupp
|
49d53d0213
|
dns/application: Removed obsolete dnssec directives
|
5 years ago |
Felix Stupp
|
0e96fcbe34
|
dns/application: Fixed defining role dependencies
|
5 years ago |
Felix Stupp
|
99e58d4224
|
common: Added helper nsupdate_keygen
|
5 years ago |
Felix Stupp
|
0b7e2cb923
|
dns/application: Changed vars in makefile to support further dest files
|
5 years ago |
Felix Stupp
|
1ceb1999ff
|
common: Changed include_tasks to import_tasks
To enable static instead of dynamic imports
|
5 years ago |
Felix Stupp
|
36da702163
|
nginx/application: Disable log for HTTPs forwarding
|
5 years ago |
Felix Stupp
|
d8405a223b
|
server/nextcloud: Added hint for source of var redis_socket_path
|
5 years ago |
Felix Stupp
|
d8421b49bb
|
server/gitea: Renamed var gitea_user_directory to user_directory
|
5 years ago |
Felix Stupp
|
fe0a677b13
|
git_auto_update: Used long parameters
|
5 years ago |
Felix Stupp
|
e30121cae2
|
git_auto_update: Improved comparism with GPG fingerprint
Configured grep to compare againg fixed strings, not regexp
|
5 years ago |
Felix Stupp
|
f2b6e41645
|
git_auto_update: Fixed default reload_command to "true"
An empty default value would result in an error thrown.
|
5 years ago |
Felix Stupp
|
818515cc05
|
server/gitea: Reworked logging configuration to contain (only) required information
|
5 years ago |
Felix Stupp
|
49dd6e4da1
|
server/gitea/app.ini: Removed not required log settings
|
5 years ago |
Felix Stupp
|
072ace6438
|
server/gitea: Configured fail2ban protection
|
5 years ago |
Felix Stupp
|
d81f883e50
|
server/gitea: Disable colorizing logs for fail2ban
|
5 years ago |
Felix Stupp
|
d630988291
|
Added role fail2ban/rule
|
5 years ago |
Felix Stupp
|
2eaf8034f7
|
server/gitea: Reconfigured log to be minimal and adapted to systemd
|
5 years ago |