 _shirenn
|
cb673818f8
|
[dovecot] Updating the configuration and listening on the adm for the auth
|
2021-07-24 11:53:31 +02:00 |
|
_shirenn
|
fe4eab31da
|
[autoconfig] Deploy config-v1.1.xml
|
2021-07-23 12:19:24 +02:00 |
|
_shirenn
|
bf6d10d568
|
[bird] specify source address
|
2021-07-19 16:51:54 +02:00 |
 Yohann D'ANELLO
|
55da06ba5d
|
[zamok] Add PAM rule to use namespaces
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-11 10:06:25 +00:00 |
|
Yohann D'ANELLO
|
93077999f6
|
[sssd] Manage pamd rules
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-11 10:06:25 +00:00 |
|
Yohann D'ANELLO
|
42f28d726a
|
[sssd] Fix nscd diff
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-11 10:06:25 +00:00 |
|
Yohann D'ANELLO
|
e652e52733
|
[sssd] Fix NSLCD template
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-11 10:06:25 +00:00 |
|
Yohann D'ANELLO
|
21f064dd39
|
[sssd] Ensure nslcd is installed to get hosts
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-11 10:06:25 +00:00 |
|
Yohann D'ANELLO
|
98722e9afc
|
[keepalived] Override StopPost in systemd unit of keepalived
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-11 01:17:01 +02:00 |
|
Yohann D'ANELLO
|
f1d4872593
|
[keepalived] Install keepalived from buster-backports to avoid segfaults
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-11 01:03:22 +02:00 |
|
_shirenn
|
b5b61c9108
|
[bird] dont persist routes
|
2021-07-10 23:58:45 +02:00 |
|
_shirenn
|
24243c9acb
|
[keepalived] routeur-daniel should burn in hell
|
2021-07-10 20:41:22 +02:00 |
|
_shirenn
|
cdc7648f04
|
[bird] Changing role syntax to permit mutliple bgp clients
|
2021-07-10 20:41:22 +02:00 |
|
Yohann D'ANELLO
|
bb86beb241
|
[mirror] Proxmox 7 (bullseye) got released
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-07 19:33:03 +02:00 |
|
Yohann D'ANELLO
|
acfea4453d
|
[sssd] Use socket activation
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-26 08:44:32 +02:00 |
|
Yohann D'ANELLO
|
816f192016
|
[sssd] Disable NSCD cache as recommended
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-26 08:22:19 +02:00 |
|
Yohann D'ANELLO
|
70d335e1b8
|
[wireguard] Refactor role
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-26 01:04:37 +02:00 |
|
_shirenn
|
fa8c430a53
|
[inspircd] PEPCRANS + prevent diffs
|
2021-06-25 14:52:06 +02:00 |
|
_shirenn
|
dafaafc187
|
[nfs-common] burn rpcbind to the ground
|
2021-06-25 12:19:02 +02:00 |
|
_shirenn
|
aae5408d62
|
[roles] delete unused roles
|
2021-06-25 12:19:02 +02:00 |
|
Yohann D'ANELLO
|
7ff3532bba
|
[grafana] Re-enable Grafana, fix logo deployment
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-25 12:05:20 +02:00 |
|
_shirenn
|
62a00a877e
|
[ethercalc] PEPCRANSED
|
2021-06-25 11:29:14 +02:00 |
|
_shirenn
|
0fedc8cf42
|
[cameron] deploys backup and home service scripts
|
2021-06-25 11:18:42 +02:00 |
|
_shirenn
|
23768ec2bc
|
[ntp] allow multiple whitelists
|
2021-06-25 10:40:05 +02:00 |
|
Yohann D'ANELLO
|
59234d6de8
|
[django_cas] Configure mail server
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-25 01:08:54 +02:00 |
|
Yohann D'ANELLO
|
16b9b39083
|
[wireguard] Pinning Wireguard from Debian unstable is now useless
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-25 00:42:49 +02:00 |
|
Yohann D'ANELLO
|
6f35dc15b2
|
[tv] People watch Youtube
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-25 00:13:23 +02:00 |
|
Yohann D'ANELLO
|
f6b2ff4804
|
[ntp_server] Update adm restriction for Cachan
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-24 21:51:52 +02:00 |
|
Yohann D'ANELLO
|
df90d4ca40
|
[mirror] USe relative paths for symlinks
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-24 18:05:06 +02:00 |
|
Yohann D'ANELLO
|
a1802145a4
|
[horde] Install php-fpm to prepare upgrades, not php7.3-fpm
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-24 16:52:23 +02:00 |
|
Yohann D'ANELLO
|
faa6031c25
|
[moinmoin_gendoc] No dash in wiki pages
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-24 15:33:27 +02:00 |
|
Yohann D'ANELLO
|
43e211e0bb
|
[galène] Deploy custom static files
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 17:09:09 +02:00 |
|
Yohann D'ANELLO
|
2f2886a1ec
|
[galène] Update Galène setup
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 16:57:54 +02:00 |
|
Yohann D'ANELLO
|
60b6c319c3
|
[freeradius] Fix mirror configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 16:51:05 +02:00 |
|
Yohann D'ANELLO
|
55c46352f9
|
[re2o] Select optional apps
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 15:26:05 +02:00 |
|
Yohann D'ANELLO
|
16cf470df5
|
[re2o] Fix Re2o configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 15:20:38 +02:00 |
|
Yohann D'ANELLO
|
8fbe34e82b
|
[moinmoin] Remove some superusers, whitelist PC Kfet
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 13:58:29 +02:00 |
|
Yohann D'ANELLO
|
213f618848
|
[prometheus] Update configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 13:58:28 +02:00 |
|
Yohann D'ANELLO
|
239a95c1de
|
Add cachan group to factorize configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 13:58:28 +02:00 |
|
Yohann D'ANELLO
|
1c23ef255d
|
[apt] Use custom Proxmox mirror
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 13:58:28 +02:00 |
|
Yohann D'ANELLO
|
e079121cc7
|
[apt] Fix apt sources template
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 13:58:28 +02:00 |
|
Yohann D'ANELLO
|
c1144ccff3
|
[mailman3] Typo in git URL
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 21:22:59 +02:00 |
|
Yohann D'ANELLO
|
8eb813ce0e
|
[mailman3] Adapt OpenDKIM configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 21:18:56 +02:00 |
|
Yohann D'ANELLO
|
771b112d83
|
[mailman3] Clone custom modules on adm
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 20:58:34 +02:00 |
|
Yohann D'ANELLO
|
de0517426f
|
[mailman3] IPython is pretty
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 20:57:06 +02:00 |
|
Yohann D'ANELLO
|
9f75189f9c
|
[mailman3] nounou@lists.crans.org is the default from email
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 20:55:33 +02:00 |
|
Yohann D'ANELLO
|
21d3555f1d
|
[mailman3] Recent versions of Postfix use milter_protocol = 6
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 20:33:44 +02:00 |
|
Yohann D'ANELLO
|
495646d113
|
[mailman3] Fix block to customize moderation messages
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 20:32:12 +02:00 |
|
Yohann D'ANELLO
|
1f7a86d4a7
|
[mailman3] Patch sources to add moderation links in emails
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 16:37:18 +02:00 |
|
Yohann D'ANELLO
|
7d4f4bf9ec
|
[opendkim] Add localhost in trusted hosts
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 16:37:18 +02:00 |
|
ynerant
|
4339fb9673
|
[irker] Latest version of irker with Python 3 and TLSv1.3 is now available on Bullseye
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 12:47:52 +00:00 |
|
Yohann D'ANELLO
|
bdf84760ab
|
[sssd] Support multiple LDAP uris for resilience
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 13:24:14 +02:00 |
|
_shirenn
|
df8baa6651
|
[sssd] Optional enumerate
|
2021-06-21 12:11:16 +02:00 |
|
_shirenn
|
b444ba646f
|
[sssd] Double ldap auth
|
2021-06-21 12:04:17 +02:00 |
 Alexandre Iooss
|
fb674723b5
|
[prometheus] Antispam for templier
|
2021-06-21 11:28:40 +02:00 |
|
Yohann D'ANELLO
|
3d0f7a5f5f
|
[docker] Add firewall between Docker containers and adm network
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 11:24:56 +02:00 |
|
_shirenn
|
b8e0653b3f
|
[prometheus-node-exporter] create override directory
|
2021-06-21 10:53:57 +02:00 |
|
_shirenn
|
0ffca01fc3
|
[apt] #
|
2021-06-21 10:53:57 +02:00 |
|
_shirenn
|
d0ff9cc204
|
[apt] MàJ
|
2021-06-21 10:53:55 +02:00 |
|
_shirenn
|
37ea941a8d
|
[keepalived] https://www.youtube.com/watch?v=fNFzfwLM72c please dont die
|
2021-06-21 10:53:12 +02:00 |
|
_shirenn
|
2299dbd8f4
|
[service] make cron optional
|
2021-06-21 10:53:12 +02:00 |
|
Alexandre Iooss
|
ad81276ac9
|
Use quotes to escape YAML dicts
|
2021-06-21 10:53:12 +02:00 |
|
Alexandre Iooss
|
0b4c77eb0c
|
Update prometheus alert rules with upstream
|
2021-06-21 10:53:12 +02:00 |
|
_shirenn
|
f76aaa84f4
|
[vsftpd] deployed on ptf and eclat
|
2021-06-21 10:53:11 +02:00 |
|
_shirenn
|
6fa8f17d0c
|
[nfs-mount] generic systemd nfs mount service
|
2021-06-21 10:53:11 +02:00 |
|
_shirenn
|
b8b81f2ce4
|
[prometheus-node-exporter] wait for network-online.target before starting the unit
|
2021-06-21 10:53:11 +02:00 |
|
_shirenn
|
b56d260a35
|
[prometheus] reordering
|
2021-06-21 10:53:10 +02:00 |
|
_shirenn
|
397ce6dd11
|
[logs]
|
2021-06-21 10:53:10 +02:00 |
|
_shirenn
|
833f4a3afb
|
[postgres]
|
2021-06-21 10:53:10 +02:00 |
|
_shirenn
|
4a4526506d
|
[vsftpd]
|
2021-06-21 10:53:10 +02:00 |
|
_shirenn
|
0c3e15852d
|
[rsyncd]
|
2021-06-21 10:53:10 +02:00 |
|
_shirenn
|
3fa8c60c6d
|
[mirror_backend]
|
2021-06-21 10:53:10 +02:00 |
|
Yohann D'ANELLO
|
4b70700526
|
[mtail] More configuration to select what should be monitored
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 10:53:10 +02:00 |
|
Yohann D'ANELLO
|
f0698dddcd
|
[re2o-ldap-replica] Add some comments
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 10:53:09 +02:00 |
|
Yohann D'ANELLO
|
3e4aac76d6
|
[re2o-replica-ldap] Move files to /var/lib/slapd
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 10:53:09 +02:00 |
|
Yohann D'ANELLO
|
741a13b402
|
[re2o-ldap-replica] Support LDAPS
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 10:53:09 +02:00 |
|
Yohann D'ANELLO
|
05c641fa7e
|
[re2o-ldap-replica] Deploy a re2o-ldap-replica
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 10:53:09 +02:00 |
|
_shirenn
|
24fdf21bb4
|
[logall-cachan] flemme de pepcrans
|
2021-06-21 10:53:09 +02:00 |
|
_shirenn
|
9e5d931b06
|
[rsyslog-client] PEPCRANS + cachan
|
2021-06-21 10:53:09 +02:00 |
|
_shirenn
|
2095ae8f19
|
[rsyslog_server] pep-cransified + gulp
|
2021-06-21 10:53:09 +02:00 |
|
_shirenn
|
44f7e0285c
|
[prefix_delegation] adds a service for prefix_delegation on routeur-gulp
|
2021-06-21 10:53:08 +02:00 |
|
_shirenn
|
f7347e41d2
|
[monitoring] PEPCRANS + monitoring of cachan infra
|
2021-06-21 10:53:08 +02:00 |
|
_shirenn
|
3d528a1891
|
[borg] Migration of zephir and omnomnom
|
2021-06-21 10:53:08 +02:00 |
|
_shirenn
|
1837a8a90d
|
[crans-scripts] move the scripts to /usr/local/src/scripts
|
2021-06-21 10:53:08 +02:00 |
|
_shirenn
|
60c9f7579b
|
[re2o] install correct version of boostrap3
|
2021-06-21 10:53:08 +02:00 |
|
_shirenn
|
0e396ce23b
|
[radius] update
|
2021-06-21 10:53:07 +02:00 |
|
_shirenn
|
03a0dbfdca
|
[bird] PEPED
|
2021-06-21 10:53:07 +02:00 |
|
_shirenn
|
b8e57e9627
|
[service] create a generic role for services and apply it to dhcp
|
2021-06-21 10:53:07 +02:00 |
|
_shirenn
|
821330bf99
|
[radvd] pep-crans
|
2021-06-21 10:53:07 +02:00 |
|
_shirenn
|
9190313690
|
[postgresql] dont restart postgres, only reload it
|
2021-06-21 10:53:07 +02:00 |
|
_shirenn
|
57b72e53cc
|
[re2o] updating variables
|
2021-06-21 10:53:07 +02:00 |
|
_shirenn
|
5096de1a6a
|
[psql] Refactoring
|
2021-06-21 10:53:06 +02:00 |
|
Yohann D'ANELLO
|
f41ee5cf3d
|
[re2o] Add python3-netaddr as re2o dependency
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 08:52:01 +00:00 |
|
Yohann D'ANELLO
|
3a9eb75545
|
[re2o] Pin django-bootstrap3 version
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 08:52:01 +00:00 |
|
Yohann D'ANELLO
|
7ea444f02e
|
[re2o-front] Use generic nginx role
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 08:52:01 +00:00 |
|
Yohann D'ANELLO
|
154b9069e6
|
[galene] Move configuration directory in /var/lib/galene
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 08:49:52 +00:00 |
|
Yohann D'ANELLO
|
ceb8dc644c
|
[galene] Fix systemd unit
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 08:49:52 +00:00 |
|
Yohann D'ANELLO
|
6420fe0afa
|
[galene] Put configuration into /etc/galene
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 08:49:52 +00:00 |
|
Yohann D'ANELLO
|
dd2d39297e
|
[galene] Deploy Galène
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 08:49:52 +00:00 |
|
Yohann D'ANELLO
|
1e97a98491
|
[apt] Debian Security changed its naming convention since Bullseye
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 08:48:42 +00:00 |
|
Yohann D'ANELLO
|
86b8424972
|
[Ninjabot] NinjaBot requires dateutil
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-07 15:05:19 +02:00 |
|
_shirenn
|
2eb57a975d
|
moved nounou homes
|
2021-05-12 18:49:11 +02:00 |
|
_shirenn
|
eacbef7917
|
nounou → _nounou
|
2021-05-12 16:14:29 +02:00 |
|
_shirenn
|
385650b951
|
[re2o-firewall] goodbye
|
2021-05-12 16:10:07 +02:00 |
|
_shirenn
|
404ed06542
|
[re2o-home] goodbye
|
2021-05-12 16:06:18 +02:00 |
|
_shirenn
|
a6aa20ca64
|
[re2o-dns] goodbye
|
2021-05-12 16:04:31 +02:00 |
 _benjamin
|
bd041c8dc7
|
[home] Use new home script
|
2021-04-29 14:38:56 +02:00 |
|
_benjamin
|
7a2394e1e0
|
[inspircd] Refresh certificate every month
|
2021-04-23 15:36:34 +00:00 |
|
Yohann D'ANELLO
|
4178285249
|
[opendkim] Fix trusted hosts
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
1785d7f095
|
[mailman] Setup DKIM configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
c3cd94f6e6
|
[opendkim] Pepcransification
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
abbfd96a37
|
[mailman] Mailman is relayed
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
6c038c10b4
|
[mailman] Symlink mailman-web is included in latest version
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
e9f1cf265b
|
[mailman] Install dedicated modules instead of sourcing them from /usr/scripts
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
77d292713f
|
[mailman] Use multiple domains for mailman-web
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
b085b774ad
|
[mailman] variable postfix.mailman is now useless
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
07ab008447
|
[mailman3] Run django-admin commands as www-data
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
ae4aa2b9e2
|
[mailman3] Mailman 3 is translated under Bullseye
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
ef172cbf49
|
[Mailman3] Collect static files
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
5c939e45e3
|
[mailman3] IPython is pretty
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
95d6086863
|
[mailman3] Automatically apply migrations and compress static files
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
ee31feffe9
|
[mailman3] Add mailman-web shortcut for Django interaction
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
79ae6fa60a
|
[mailman3] Update postfix configuration of Redisdead
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
20efa747fc
|
[mailman3] Don't deploy postgresql with mailman3
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
f2a7114ecf
|
[mailman3] Install django-allauth-cas from PIP
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
90a6c623ed
|
[mailman3] Use nginx role
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
b74d5e0bf1
|
[mailman3] Drop mailman2 configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
23a02adf11
|
[mailman3] Pepcransification
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
ynerant
|
c6ae645459
|
[mailman3] Réparation a posteriori du chemin du certificat
Signed-off-by: ynerant <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
32492e0e7e
|
[mailman] Install sassc in order to compile css files
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
4b76b1a7bf
|
[mailman] Use pepcransification of certbot
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
ad4f625992
|
[mailman] Setup database host
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
368bdfe5ed
|
[mailman3] Apply permissions to the folder /var/lib/mailman3
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
b847a41846
|
[logos] Use custom role to deploy logos
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-24 15:26:28 +00:00 |
|
Yohann D'ANELLO
|
62655644b6
|
[etherpad] Automatically install ep_delete_after_delay module if necessary
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-23 10:19:24 +00:00 |
|
Yohann D'ANELLO
|
3d44998c5a
|
[etherpad] PEPCRANSIFICATION
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-23 10:19:24 +00:00 |
|
Yohann D'ANELLO
|
5b52a5eeab
|
[etherpad] Deploy a second instance
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-23 10:19:24 +00:00 |
|
Yohann D'ANELLO
|
ca2d38042a
|
[moinmoin] Only permit subscriptions from ENS, don't allow public navigation
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-15 09:53:06 +00:00 |
|
Yohann D'ANELLO
|
7cff2ba05b
|
[prometheus-nginx] Ensure that nginx is installed, e.g. in root playbook
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-15 10:50:29 +01:00 |
|
Yohann D'ANELLO
|
0c363aabf3
|
[moinmoin] Cr@ns -> Crans
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-12 11:30:16 +01:00 |
|
Yohann D'ANELLO
|
43a1b5bb58
|
[moinmoin] Fix subnets for ENS and Aurore
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-12 11:26:13 +01:00 |
|
Yohann D'ANELLO
|
f75c12fb63
|
[moinmoin] Fix sitemap path
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-08 09:40:15 +01:00 |
|
Yohann D'ANELLO
|
acd1be606e
|
[moinmoin] Install missing python2 dependencies
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-06 10:18:06 +01:00 |
|
Yohann D'ANELLO
|
56b7635d99
|
[moinmoin] Missing import
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-06 10:15:30 +01:00 |
|
Yohann D'ANELLO
|
e76beab84f
|
[moinmoin] Hi, it's me!
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-06 10:12:58 +01:00 |
|
Yohann D'ANELLO
|
66deecd26f
|
[moinmoin] Don't speak too loudly, wget. Take example on curl
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-06 10:09:12 +01:00 |
|
Yohann D'ANELLO
|
1ba1a65ff2
|
[moinmoin] Nice to meet you /usr/bin/wget
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-06 09:54:24 +01:00 |
|
Yohann D'ANELLO
|
f9cc32b71b
|
[Jitsi] Put configuration in group vars
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-04 18:08:27 +01:00 |
|
Yohann D'ANELLO
|
b34b1aac4f
|
[Jitsi] Remove dependencies that not in the good role
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-04 18:03:29 +01:00 |
|
Yohann D'ANELLO
|
3deae233b1
|
[Jitsi] Add Jitsi role
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-04 16:12:43 +01:00 |
|
Yohann D'ANELLO
|
1e0f84a6e5
|
[certbot] Remove obsolete DNS lookup
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-04 11:37:04 +01:00 |
|
Yohann D'ANELLO
|
870cdd163b
|
[certbot] No change when certificates are already renewed
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-04 11:36:29 +01:00 |
|
Yohann D'ANELLO
|
6054b7a545
|
[nginx] P-Real-IP -> X-Real-IP
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-04 10:56:01 +01:00 |
|
_benjamin
|
6957939ffc
|
[anope] Deploy Anope on irc
|
2021-03-02 11:44:08 +00:00 |
|
Yohann D'ANELLO
|
13c97d3e07
|
[scripts] Ansible is buggy, git has no change if the commit hash did not change
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-01 16:20:04 +00:00 |
|
Yohann D'ANELLO
|
5aeefd730e
|
[root] Sputnik is using deb.debian.org
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-01 16:20:04 +00:00 |
|
Yohann D'ANELLO
|
13b0367d46
|
[prometheus-nginx] Change exposed port for a non-standard port
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-01 16:20:04 +00:00 |
|
_shirenn
|
f5e7405188
|
[root] split root play and deploy root password
|
2021-03-01 16:20:04 +00:00 |
|
Yohann D'ANELLO
|
0c3e56fc2c
|
[ldap] ldap_server is slapd
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-01 16:20:04 +00:00 |
|
Yohann D'ANELLO
|
4f8cf7f901
|
[prometheus] Add missing webhook for alertmanager
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-01 16:20:04 +00:00 |
|
Yohann D'ANELLO
|
0a794d590c
|
[prometheus] Restart nginx before prometheus-nginx-exporter
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-01 16:20:04 +00:00 |
|
Yohann D'ANELLO
|
b171d58e4c
|
[borg] Don't bin borgbackup from bullseye if we are already under bullseye
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-01 16:20:04 +00:00 |
|
ynerant
|
02faa09e61
|
[ntp-client] Install systemd-timesyncd on Bullseye
Signed-off-by: ynerant <ynerant@crans.org>
|
2021-03-01 16:20:04 +00:00 |
|
ynerant
|
61cf1eb892
|
[prometheus] Install prometheus-node-exporter-collectors on bullseye
Signed-off-by: ynerant <ynerant@crans.org>
|
2021-03-01 16:20:04 +00:00 |
|
_benjamin
|
6026f8d84e
|
[inspircd] Deploy InspIRCd on irc
|
2021-02-28 09:10:21 +01:00 |
|
_benjamin
|
83e2460b65
|
[home] Use full path for zfs
|
2021-02-26 17:00:13 +01:00 |
|
_benjamin
|
a40404314f
|
[ssh_known_hosts] Add hostname to ssh_known_hosts
|
2021-02-25 14:50:57 +01:00 |
|
_shirenn
|
5661bb4bf6
|
[dhcp] Restart isc-dhcp-server only if it is already running
|
2021-02-23 23:28:20 +01:00 |
|
Yohann D'ANELLO
|
2844df31b2
|
[gitlab] Fix irker configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:35:17 +01:00 |
|
Yohann D'ANELLO
|
98eaeaa53b
|
[gitlab] Install irker from Debian Sid to add IRC webhooks
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:29:58 +01:00 |
|
ynerant
|
7eae75a470
|
[gitlab] Enable local nginx server, don't server HTTPS port
Signed-off-by: ynerant <ynerant@crans.org>
|
2021-02-22 23:29:57 +01:00 |
|
ynerant
|
5786663cfb
|
[gitlab] Disable grafana server
Signed-off-by: ynerant <ynerant@crans.org>
|
2021-02-22 23:29:57 +01:00 |
|
ynerant
|
a8e90e1ea9
|
[gitlab] Update gitlab default configuration
Signed-off-by: ynerant <ynerant@crans.org>
|
2021-02-22 23:29:57 +01:00 |
|
ynerant
|
065fe78435
|
[gitlab] Import Gitlab GPG public key
Signed-off-by: ynerant <ynerant@crans.org>
|
2021-02-22 23:29:57 +01:00 |
|
_shirenn
|
b152c48ed3
|
[gitlab] smtp server and https push
|
2021-02-22 23:29:56 +01:00 |
|
Yohann D'ANELLO
|
46f1627c02
|
[gitlab] Fix gitlab configuration file path
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:29:56 +01:00 |
|
Yohann D'ANELLO
|
73a6b5afb4
|
[gitlab] Install gitlab
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:29:56 +01:00 |
|
Yohann D'ANELLO
|
f07bb8b749
|
[Gitlab] Reconfigure Gitlab after deploying its configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:29:56 +01:00 |
|
Yohann D'ANELLO
|
ae30c0593a
|
display_name -> email_display_name
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:29:55 +01:00 |
|
ynerant
|
63d4164ba0
|
Cransible Gitlab configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:29:55 +01:00 |
|
Yohann D'ANELLO
|
6d35dcd7e8
|
[nginx/mailman] Fix configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
f83b34191a
|
[nginx/statping] Drop old statping configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
978c265c03
|
[nginx/statping] Extract nginx configuration from statping and gitea
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
6b8fb0916f
|
[nginx/moinmoin] Extract nginx configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
d6f15d4210
|
[nginx/cas] Factorize nginx configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
82119c746e
|
[nginx] Define proper set_realip_from
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
8d8c212f49
|
[nginx/roundcube] Factorize configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
4c115a8b34
|
[thelounge] Don't load ldap configuration if it is disabled
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
201dbd6ee0
|
[thelounge] Download debian package
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
44cf074a39
|
[nginx] Add feature to add additional params to a nginx server
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
19beb34227
|
[nginx/certbot] Remove obsolete files
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
de58138a22
|
[nginx] Multiple certficates are compatible with reverse-proxy
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
72238d79ed
|
[nginx] Add feature to manage multiple certificates, for example for crans.org and for adm.crans.org
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
96d5f945e3
|
[nginx] Update configuration for default servers
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
9d5a080fc5
|
[thelounge] Support zamok configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
af33ff7d56
|
[thelounge] Temporary not download automatically the thelounge packet
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
2360b992c4
|
Restart the lounge at the end of the playbook
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
334b4ace02
|
[thelounge] Uncomment the download of the Debian package, but for now the package must be manually downloaded because of redirection issues
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
3f4a66eb7c
|
[thelounge] Copy ldap configuration for zamok
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
f039121e21
|
[thelounge] Download the Debian package and install it, and deploy
configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |