crans
/
ansible
mirror of http://gitlab.adm.crans.org/nounous/ansible.git
19
0
Fork 0
Code Issues Projects Releases Wiki Activity
1,246 Commits
12 Branches
0 Tags
7.9 MiB
Commit Graph

1246 Commits (66deecd26f5b9b99cedc45a5ffc062a0d7cb0ce7)

Author SHA1 Message Date
Yohann D'ANELLO 66deecd26f
[moinmoin] Don't speak too loudly, wget. Take example on curl 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-06 10:09:12 +01:00
Yohann D'ANELLO 1ba1a65ff2
[moinmoin] Nice to meet you /usr/bin/wget 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-06 09:54:24 +01:00
_shirenn 0feb891f39 [hosts] codichotomie deserves some love 2021-03-05 21:26:56 +01:00
Yohann D'ANELLO f9cc32b71b
[Jitsi] Put configuration in group vars 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 18:08:27 +01:00
Yohann D'ANELLO b34b1aac4f
[Jitsi] Remove dependencies that not in the good role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 18:03:29 +01:00
Yohann D'ANELLO 3deae233b1
[Jitsi] Add Jitsi role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 16:12:43 +01:00
Yohann D'ANELLO d9486290c2
[jitsi] Prepare Jitsi role 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 11:45:59 +01:00
Yohann D'ANELLO 91d777ffba
[certbot] Generate wildcard certificates by default 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 11:45:17 +01:00
Yohann D'ANELLO 1e0f84a6e5
[certbot] Remove obsolete DNS lookup 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 11:37:04 +01:00
Yohann D'ANELLO 870cdd163b
[certbot] No change when certificates are already renewed 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 11:36:29 +01:00
Yohann D'ANELLO 6054b7a545
[nginx] P-Real-IP -> X-Real-IP 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 10:56:01 +01:00
Yohann D'ANELLO 9f97936635
[reverseproxy] stream.crans.org is not reverse-proxyfied 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-04 10:53:48 +01:00
_benjamin 6957939ffc [anope] Deploy Anope on irc 2021-03-02 11:44:08 +00:00
Yohann D'ANELLO 1e651977e3
[ldap_lookup] Fix role search 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-02 09:10:36 +01:00
Yohann D'ANELLO ed05043465
[re2o-lookup] Update configuration to query passwords from pass 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-02 09:00:03 +01:00
Yohann D'ANELLO 13c97d3e07 [scripts] Ansible is buggy, git has no change if the commit hash did not change 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 5aeefd730e [root] Sputnik is using deb.debian.org 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 80b42fcb62 [network_interfaces] boeing has no interface on srv 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 13b0367d46 [prometheus-nginx] Change exposed port for a non-standard port 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 08f359cc9c [crans_scripts] Gitlab is talking HTTPS 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 15fc32ee53 [root] vm-setup -> vm_setup.yml 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
_shirenn f5e7405188 [root] split root play and deploy root password 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 0c3e56fc2c [ldap] ldap_server is slapd 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 4f8cf7f901 [prometheus] Add missing webhook for alertmanager 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 514fd78eed [root] borgbackups -> borgbackup 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 0a794d590c [prometheus] Restart nginx before prometheus-nginx-exporter 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO b171d58e4c [borg] Don't bin borgbackup from bullseye if we are already under bullseye 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 5324bd240d [network_interfaces] Query IPs and gateways in LDAP 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO d85650a586 [network_interfaces] Add missing interfaces for fluxx and re2o 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 5a9cdf955e [root] network_interfaces -> network-interfaces 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 80b62b5d25 [root] Include nullmailer playbook 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 9936bfd95b [root] Include ssh_known_hosts role in root playbook 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
ynerant 02faa09e61 [ntp-client] Install systemd-timesyncd on Bullseye 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
ynerant 61cf1eb892 [prometheus] Install prometheus-node-exporter-collectors on bullseye 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
ynerant 99ed3ad57a [root] Don't deploy crans_scripts in the root playbook 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-03-01 16:20:04 +00:00
Yohann D'ANELLO 44a59d11c9 Add configuration to query become password from password store 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-28 16:08:27 +00:00
Yohann D'ANELLO 39441c81f5 Load environment variables from configuration file 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-28 16:08:27 +00:00
Yohann D'ANELLO cb8f5b1537 Load vault passwords from local password store, then cache them 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-28 16:08:27 +00:00
_benjamin 6026f8d84e [inspircd] Deploy InspIRCd on irc 2021-02-28 09:10:21 +01:00
_benjamin 83e2460b65 [home] Use full path for zfs 2021-02-26 17:00:13 +01:00
_benjamin a40404314f [ssh_known_hosts] Add hostname to ssh_known_hosts 2021-02-25 14:50:57 +01:00
_shirenn 5661bb4bf6 [dhcp] Restart isc-dhcp-server only if it is already running 2021-02-23 23:28:20 +01:00
Yohann D'ANELLO 2844df31b2
[gitlab] Fix irker configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:35:17 +01:00
Yohann D'ANELLO c2eb610edf
[gitlab] vault_ => vault. 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:34:30 +01:00
Yohann D'ANELLO 23371f7cb1
[gitlab] Rename git to gitlab 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:30:29 +01:00
Yohann D'ANELLO 98eaeaa53b
[gitlab] Install irker from Debian Sid to add IRC webhooks 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:58 +01:00
Yohann D'ANELLO 85afe1fd32
[gitlab] Fix reverse proxy configuration 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:58 +01:00
Yohann D'ANELLO e6c4b70efd
(gitlab] Configure nginx reverse-proxy to manage multiple certificates 
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
 2021-02-22 23:29:57 +01:00
ynerant 7eae75a470
[gitlab] Enable local nginx server, don't server HTTPS port 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-02-22 23:29:57 +01:00
ynerant 5786663cfb
[gitlab] Disable grafana server 
Signed-off-by: ynerant <ynerant@crans.org>
 2021-02-22 23:29:57 +01:00