 Yohann D'ANELLO
|
af0fe7d282
|
Don't hardcode gulp IP
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-01 19:16:22 +02:00 |
|
Yohann D'ANELLO
|
9e5ff5e71e
|
[rsyslog] Wrong IP address
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-07-01 15:12:49 +02:00 |
|
Yohann D'ANELLO
|
70d335e1b8
|
[wireguard] Refactor role
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-26 01:04:37 +02:00 |
|
Yohann D'ANELLO
|
7ff3532bba
|
[grafana] Re-enable Grafana, fix logo deployment
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-25 12:05:20 +02:00 |
 _shirenn
|
62a00a877e
|
[ethercalc] PEPCRANSED
|
2021-06-25 11:29:14 +02:00 |
|
_shirenn
|
23768ec2bc
|
[ntp] allow multiple whitelists
|
2021-06-25 10:40:05 +02:00 |
|
Yohann D'ANELLO
|
59234d6de8
|
[django_cas] Configure mail server
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-25 01:08:54 +02:00 |
|
Yohann D'ANELLO
|
198eee1287
|
[roundcube] Roundcube plugin filters
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-24 23:56:48 +02:00 |
|
Yohann D'ANELLO
|
e9ce85086c
|
[roundcube] Clone custom plugins by adm
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-24 23:28:03 +02:00 |
|
Yohann D'ANELLO
|
e6b77a65e2
|
[prometheus] Define Prometheus Nginx exporter address globally to make easier the separation saclay/cachan
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-24 23:12:43 +02:00 |
|
Yohann D'ANELLO
|
f6b2ff4804
|
[ntp_server] Update adm restriction for Cachan
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-24 21:51:52 +02:00 |
|
Yohann D'ANELLO
|
20ba82fa4e
|
[nfs_mount] Fix configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-24 21:39:42 +02:00 |
|
Yohann D'ANELLO
|
fa460b06a4
|
[mirror] OpenStack is not Openstack
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-24 17:36:55 +02:00 |
|
Yohann D'ANELLO
|
7e23337032
|
[horde] Fix IPv6
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-24 17:09:50 +02:00 |
|
Yohann D'ANELLO
|
55c46352f9
|
[re2o] Select optional apps
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 15:26:05 +02:00 |
|
Yohann D'ANELLO
|
16cf470df5
|
[re2o] Fix Re2o configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 15:20:38 +02:00 |
|
Yohann D'ANELLO
|
57165293db
|
[Galène] Update Nginx configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 14:33:52 +02:00 |
|
Yohann D'ANELLO
|
489d189725
|
Fix mirrors
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 13:58:28 +02:00 |
|
Yohann D'ANELLO
|
a602075c17
|
[ntp] Add NTP server on eclat
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 13:58:28 +02:00 |
|
Yohann D'ANELLO
|
c7bf246b2b
|
[network_interfaces] Add zamok-tmtc, put MTU of san to 9000
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 13:58:28 +02:00 |
|
Yohann D'ANELLO
|
239a95c1de
|
Add cachan group to factorize configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 13:58:28 +02:00 |
|
Yohann D'ANELLO
|
1c23ef255d
|
[apt] Use custom Proxmox mirror
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 13:58:28 +02:00 |
|
Yohann D'ANELLO
|
87af08abf1
|
[reverseproxy] ftps -> ptf, mirrors -> charybde
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 11:56:38 +00:00 |
|
Yohann D'ANELLO
|
bf1b944fa5
|
[reverseproxy] Reorder entries
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 11:56:38 +00:00 |
|
Yohann D'ANELLO
|
0cdd43facb
|
[nginx] Fix subnets for real_ip_from
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 11:56:38 +00:00 |
|
Yohann D'ANELLO
|
06498604ac
|
[reverseproxy] ftps.crans.org points to charybde
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 11:56:38 +00:00 |
|
Yohann D'ANELLO
|
0cffdd1c4c
|
[reverseproxy] Add missing servers
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-22 11:56:38 +00:00 |
|
Yohann D'ANELLO
|
8eb813ce0e
|
[mailman3] Adapt OpenDKIM configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 21:18:56 +02:00 |
|
Yohann D'ANELLO
|
9f75189f9c
|
[mailman3] nounou@lists.crans.org is the default from email
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 20:55:33 +02:00 |
|
Yohann D'ANELLO
|
7d4f4bf9ec
|
[opendkim] Add localhost in trusted hosts
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 16:37:18 +02:00 |
|
_shirenn
|
5c76d526d2
|
[borgmatic] Don't backup this
|
2021-06-21 12:29:24 +00:00 |
|
Yohann D'ANELLO
|
bdf84760ab
|
[sssd] Support multiple LDAP uris for resilience
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 13:24:14 +02:00 |
|
_shirenn
|
df8baa6651
|
[sssd] Optional enumerate
|
2021-06-21 12:11:16 +02:00 |
|
_shirenn
|
b444ba646f
|
[sssd] Double ldap auth
|
2021-06-21 12:04:17 +02:00 |
|
Yohann D'ANELLO
|
3d0f7a5f5f
|
[docker] Add firewall between Docker containers and adm network
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 11:24:56 +02:00 |
|
_shirenn
|
f053558e07
|
[hosts] charybde reste à chanca
|
2021-06-21 10:53:57 +02:00 |
|
_shirenn
|
d0ff9cc204
|
[apt] MàJ
|
2021-06-21 10:53:55 +02:00 |
|
_shirenn
|
37ea941a8d
|
[keepalived] https://www.youtube.com/watch?v=fNFzfwLM72c please dont die
|
2021-06-21 10:53:12 +02:00 |
|
_shirenn
|
2299dbd8f4
|
[service] make cron optional
|
2021-06-21 10:53:12 +02:00 |
|
Yohann D'ANELLO
|
305c61b2fe
|
Add ArchLinux mirror
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 10:53:12 +02:00 |
|
_shirenn
|
6fa8f17d0c
|
[nfs-mount] generic systemd nfs mount service
|
2021-06-21 10:53:11 +02:00 |
|
_shirenn
|
6491256620
|
[ptf] nginx installation
|
2021-06-21 10:53:11 +02:00 |
|
_shirenn
|
833f4a3afb
|
[postgres]
|
2021-06-21 10:53:10 +02:00 |
|
_shirenn
|
4a4526506d
|
[vsftpd]
|
2021-06-21 10:53:10 +02:00 |
|
_shirenn
|
0c3e15852d
|
[rsyncd]
|
2021-06-21 10:53:10 +02:00 |
|
_shirenn
|
3fa8c60c6d
|
[mirror_backend]
|
2021-06-21 10:53:10 +02:00 |
|
Yohann D'ANELLO
|
4b70700526
|
[mtail] More configuration to select what should be monitored
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 10:53:10 +02:00 |
|
Yohann D'ANELLO
|
610bcfbe23
|
[re2o-ldap] Deploy re2o-ldap-replica on re2o-dev, use terenez as main server
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 10:53:09 +02:00 |
|
Yohann D'ANELLO
|
741a13b402
|
[re2o-ldap-replica] Support LDAPS
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 10:53:09 +02:00 |
|
Yohann D'ANELLO
|
05c641fa7e
|
[re2o-ldap-replica] Deploy a re2o-ldap-replica
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 10:53:09 +02:00 |
|
_shirenn
|
b14fd01ce0
|
migration routage
|
2021-06-21 10:53:09 +02:00 |
|
_shirenn
|
9e5d931b06
|
[rsyslog-client] PEPCRANS + cachan
|
2021-06-21 10:53:09 +02:00 |
|
_shirenn
|
f7347e41d2
|
[monitoring] PEPCRANS + monitoring of cachan infra
|
2021-06-21 10:53:08 +02:00 |
|
_shirenn
|
3d528a1891
|
[borg] Migration of zephir and omnomnom
|
2021-06-21 10:53:08 +02:00 |
|
_shirenn
|
1837a8a90d
|
[crans-scripts] move the scripts to /usr/local/src/scripts
|
2021-06-21 10:53:08 +02:00 |
|
_shirenn
|
fccda8d486
|
[routeurs] playbook to deploy routing
|
2021-06-21 10:53:08 +02:00 |
|
_shirenn
|
0e396ce23b
|
[radius] update
|
2021-06-21 10:53:07 +02:00 |
|
_shirenn
|
03a0dbfdca
|
[bird] PEPED
|
2021-06-21 10:53:07 +02:00 |
|
_shirenn
|
b8e57e9627
|
[service] create a generic role for services and apply it to dhcp
|
2021-06-21 10:53:07 +02:00 |
|
_shirenn
|
821330bf99
|
[radvd] pep-crans
|
2021-06-21 10:53:07 +02:00 |
|
_shirenn
|
57b72e53cc
|
[re2o] updating variables
|
2021-06-21 10:53:07 +02:00 |
|
_shirenn
|
5096de1a6a
|
[psql] Refactoring
|
2021-06-21 10:53:06 +02:00 |
|
Yohann D'ANELLO
|
7ea444f02e
|
[re2o-front] Use generic nginx role
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 08:52:01 +00:00 |
|
Yohann D'ANELLO
|
76a4bbf0fc
|
[galene] Clean nginx configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-21 08:49:52 +00:00 |
|
Yohann D'ANELLO
|
99107cd832
|
Update Ansible header since template_path changed its semantic
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-06-08 16:54:49 +02:00 |
|
_shirenn
|
2eb57a975d
|
moved nounou homes
|
2021-05-12 18:49:11 +02:00 |
|
Yohann D'ANELLO
|
ac691ed19e
|
[mailman3] drop lists2.crans.org
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
bd43cff36d
|
[mailman3] Use lists.crans.org as web entrypoint
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
1785d7f095
|
[mailman] Setup DKIM configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
c3cd94f6e6
|
[opendkim] Pepcransification
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
84cb6585d2
|
[mailman] Mailman has a public IP
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
77d292713f
|
[mailman] Use multiple domains for mailman-web
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
e242818ae9
|
[mailman/certbot] Certbot is already generating a wildcard certificate
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
d8f6d333f3
|
[mailman3] Update 401 error for mailman
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
81ded3ea46
|
[mailman3] Mailman is reverse-proxyfied
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
8a0bb4401d
|
[mailman3] Missing nginx parameter
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
90a6c623ed
|
[mailman3] Use nginx role
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
b74d5e0bf1
|
[mailman3] Drop mailman2 configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
23a02adf11
|
[mailman3] Pepcransification
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-04-12 14:38:03 +00:00 |
|
Yohann D'ANELLO
|
a8b4842689
|
[moinmoin] Fix wiki URL prefix
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-30 21:49:01 +02:00 |
|
Yohann D'ANELLO
|
9fd8496767
|
[logos] Deploy logos on the wiki
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-24 15:26:28 +00:00 |
|
Yohann D'ANELLO
|
84b8f88278
|
[logos] Add logos for Belenios and Jitsi
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-24 15:26:28 +00:00 |
|
Yohann D'ANELLO
|
3d44998c5a
|
[etherpad] PEPCRANSIFICATION
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-23 10:19:24 +00:00 |
|
Yohann D'ANELLO
|
38ee51b2b7
|
[Etherpad] Add reverse-proxy configuration for tmpad
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-23 10:19:24 +00:00 |
|
Yohann D'ANELLO
|
f9cc32b71b
|
[Jitsi] Put configuration in group vars
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-04 18:08:27 +01:00 |
|
Yohann D'ANELLO
|
3deae233b1
|
[Jitsi] Add Jitsi role
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-04 16:12:43 +01:00 |
|
Yohann D'ANELLO
|
91d777ffba
|
[certbot] Generate wildcard certificates by default
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-04 11:45:17 +01:00 |
|
Yohann D'ANELLO
|
9f97936635
|
[reverseproxy] stream.crans.org is not reverse-proxyfied
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-04 10:53:48 +01:00 |
|
Yohann D'ANELLO
|
5aeefd730e
|
[root] Sputnik is using deb.debian.org
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-01 16:20:04 +00:00 |
|
Yohann D'ANELLO
|
08f359cc9c
|
[crans_scripts] Gitlab is talking HTTPS
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-01 16:20:04 +00:00 |
|
_shirenn
|
f5e7405188
|
[root] split root play and deploy root password
|
2021-03-01 16:20:04 +00:00 |
|
Yohann D'ANELLO
|
5324bd240d
|
[network_interfaces] Query IPs and gateways in LDAP
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-03-01 16:20:04 +00:00 |
|
Yohann D'ANELLO
|
cb8f5b1537
|
Load vault passwords from local password store, then cache them
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-28 16:08:27 +00:00 |
|
_shirenn
|
5661bb4bf6
|
[dhcp] Restart isc-dhcp-server only if it is already running
|
2021-02-23 23:28:20 +01:00 |
|
Yohann D'ANELLO
|
c2eb610edf
|
[gitlab] vault_ => vault.
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:34:30 +01:00 |
|
Yohann D'ANELLO
|
23371f7cb1
|
[gitlab] Rename git to gitlab
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:30:29 +01:00 |
|
Yohann D'ANELLO
|
98eaeaa53b
|
[gitlab] Install irker from Debian Sid to add IRC webhooks
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:29:58 +01:00 |
|
Yohann D'ANELLO
|
e6c4b70efd
|
(gitlab] Configure nginx reverse-proxy to manage multiple certificates
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:29:57 +01:00 |
|
_shirenn
|
b152c48ed3
|
[gitlab] smtp server and https push
|
2021-02-22 23:29:56 +01:00 |
|
Yohann D'ANELLO
|
d383ca4b8b
|
[gitlab/nginx] Add nginx configuration for Gitlab
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:29:56 +01:00 |
|
Yohann D'ANELLO
|
6fb4783152
|
[gitlab] Gitlab is talking to re2o-ldap, not thot
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:29:56 +01:00 |
|
ynerant
|
63d4164ba0
|
Cransible Gitlab configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 23:29:55 +01:00 |
|
Yohann D'ANELLO
|
6d35dcd7e8
|
[nginx/mailman] Fix configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
28a6fd4be6
|
[thelounge] Rename thelounge ldap password
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
661682c550
|
[nginx/moinmoin] Fix moinmoin configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
6b8fb0916f
|
[nginx/moinmoin] Extract nginx configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
d6f15d4210
|
[nginx/cas] Factorize nginx configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
82119c746e
|
[nginx] Define proper set_realip_from
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
3b79c0177c
|
[nginx] Don't deploy SSL configuration if we don't need one
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
8d8c212f49
|
[nginx/roundcube] Factorize configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
2c9b89a74d
|
[thelounge] Rename irc to thelounge
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
1ec1aeca90
|
[thelounge] vault_ldap_thelounge_password -> vault.ldap_thelounge_password
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
44cf074a39
|
[nginx] Add feature to add additional params to a nginx server
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
de58138a22
|
[nginx] Multiple certficates are compatible with reverse-proxy
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
72238d79ed
|
[nginx] Add feature to manage multiple certificates, for example for crans.org and for adm.crans.org
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
9d5a080fc5
|
[thelounge] Support zamok configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
3f4a66eb7c
|
[thelounge] Copy ldap configuration for zamok
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
f039121e21
|
[thelounge] Download the Debian package and install it, and deploy
configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
c3d58d9ca9
|
[nginx] Fix default configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
2b8e0dbbff
|
[nginx] Fix nginx template, this is now usable
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
ynerant
|
a9897ec3c0
|
[nginx] Load global and local nginx configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
dafa3685ce
|
[nginx] Copy 401 error page if we use credentials
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
0eaee6c78f
|
[nginx] Copy robots.txt
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
3fceaeb836
|
[nginx] allow setting credentials to a nginx server
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
6c8be2638c
|
Add default global nginx configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
ynerant
|
244e1c284b
|
Cransible mailman nginx configuration
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 22:26:31 +00:00 |
|
Yohann D'ANELLO
|
408c857f81
|
[zamok_apache] Pepcransification
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 14:07:35 +01:00 |
|
Yohann D'ANELLO
|
ae163d6bc9
|
[nullmailer] Define allmailfrom to always send mails as root
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-02-22 12:31:30 +01:00 |
|
ynerant
|
359b6a4553
|
[belenios] Deploy belenios
Signed-off-by: ynerant <ynerant@crans.org>
|
2021-02-22 12:31:30 +01:00 |
|
_shirenn
|
6e6dd56e4d
|
[borg] lets filter-out shit and backup cameron
|
2021-02-22 12:13:23 +01:00 |
|
_shirenn
|
59bc91dc9d
|
[vault] Changing cranspasswords to pass crans
|
2021-02-22 12:01:03 +01:00 |
|
_shirenn
|
262696970f
|
[network-interfaces] PEPCRANSED
|
2021-02-22 11:51:44 +01:00 |
|
_shirenn
|
a82d770043
|
[slapd] Filter ipv4s responsibly
|
2021-02-22 09:45:13 +01:00 |
|
_shirenn
|
02df5674b1
|
[slapd] soyouz, query and regex
|
2021-02-22 01:30:02 +01:00 |
|
ynerant
|
009e7b42cb
|
[certbot] Generate multiple certificates (useful for adm)
Signed-off-by: ynerant <ynerant@crans.org>
|
2021-02-16 15:35:07 +01:00 |
|
_shirenn
|
d03eed8abe
|
[re2o-services] PEPCRANSIFIED
|
2021-02-11 09:57:10 +01:00 |
|
_shirenn
|
f5cf25c9b7
|
[dhcp] dont clone git from /tmp
|
2021-02-11 09:57:10 +01:00 |
 _benjamin
|
ff864b50a1
|
Better header
Updates according to file rather than repository
|
2021-02-10 19:18:04 +01:00 |
|
_shirenn
|
acd8e3da2a
|
[nullmailer] PEPCRANSED BRO
|
2021-02-10 11:30:07 +01:00 |
|
_shirenn
|
7cd62269a3
|
pepcrans :)
|
2021-02-08 15:02:14 +01:00 |
|
_benjamin
|
bc486b5570
|
Merge branch 'linx' into 'newinfra'
[linx] Add linx server, role and playbook
See merge request nounous/ansible!206
|
2021-02-08 13:37:42 +00:00 |
|
_benjamin
|
1d5310127e
|
[linx] Add linx server, role and playbook
|
2021-02-08 14:37:05 +01:00 |
pa
|
d7660e8333
|
[cas] CRANSIBLEISED bro
|
2021-02-07 18:16:43 +01:00 |
|
_shirenn
|
33e43c8815
|
[framadate] Moving to version 1.1.11
|
2021-02-06 11:30:00 +01:00 |
|
_shirenn
|
dfb995e958
|
[ldap] Petit nettoyage
|
2021-02-03 16:17:38 +01:00 |
|
_shirenn
|
29222acf56
|
[crans_scripts] PEPCRANSIFICATION
|
2021-01-17 21:39:18 +01:00 |
|
_shirenn
|
1eba54f3ec
|
[ntp-client] On continue à PEPCRANSIFIER
|
2021-01-17 20:59:45 +01:00 |
|
pa
|
28fa6e0a94
|
[keepalived] Rafraichissement de la conf
|
2021-01-17 20:13:30 +01:00 |
 Alexandre Iooss
|
a23e82e0f1
|
Add grafana to reverse proxy
|
2021-01-05 15:07:23 +01:00 |
|
_benjamin
|
b2077f1337
|
[dhcp.yml] fix group_vars
|
2021-01-04 20:38:47 +01:00 |
|
Yohann D'ANELLO
|
4e1d440a52
|
[reverseproxy] Wrong IP for Re2o
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-01-02 20:01:35 +01:00 |
|
Yohann D'ANELLO
|
fc815ca5c3
|
Re2o joined newinfra
Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
|
2021-01-02 19:25:11 +01:00 |
|
Alexandre Iooss
|
585d947b6f
|
Migrate CAS to new infra
|
2021-01-02 09:34:22 +01:00 |
|
Alexandre Iooss
|
cde1c46127
|
Rename codimd to hedgedoc
|
2021-01-01 11:59:26 +01:00 |
|
_benjamin
|
b4582c09b3
|
[server] Add contrib to debian components
|
2021-01-01 11:31:29 +01:00 |
|
Alexandre Iooss
|
f2fc976bcc
|
Reverse zamok and owncloud
|
2020-12-28 21:59:23 +01:00 |
|
Alexandre Iooss
|
f8994e5b59
|
Reverse theloundge
|
2020-12-28 19:16:25 +01:00 |
|
Alexandre Iooss
|
f3c31c072a
|
Fix certbot
|
2020-12-28 19:15:23 +01:00 |
 _pollion
|
559935d983
|
Merge branch 'owl' into 'newinfra'
Owl
See merge request nounous/ansible!127
|
2020-12-28 17:22:46 +01:00 |
|
_pollion
|
0c8247d4a2
|
[dovecot] Fix ldap queries.
|
2020-12-27 19:59:52 +01:00 |
|
Michaël Paulon
|
4251074bc0
|
dovecot is now in ansible
|
2020-12-27 13:04:57 -05:00 |
|
Alexandre Iooss
|
cb7952bd2d
|
Add srv_nat on codimd and reverse proxy
|
2020-12-23 12:18:22 +01:00 |
|
_pollion
|
d2a6501b9e
|
Merge branch 'newinfra' into 'borgbackup'
# Conflicts:
# group_vars/crans_server/vars.yml
# plays/backup.yml
|
2020-12-06 02:25:53 +01:00 |
|
_pollion
|
c269d0c280
|
[borg] New options
|
2020-12-06 00:04:04 +01:00 |
|
_pollion
|
acafd5b7c8
|
[Borgbackup] Pull borg from bullseye and deploy configuration.
|
2020-12-02 19:42:21 +01:00 |
|
Alexandre Iooss
|
1e567358eb
|
Add ubuntu support
|
2020-11-30 18:26:15 +01:00 |
|
Alexandre Iooss
|
2a60dd846d
|
Redirect via hodaur
|
2020-11-29 22:11:43 +01:00 |
|
_benjamin
|
3edf1238f2
|
Merge branch 'newinfra' into 'roundcube'
# Conflicts:
# group_vars/reverseproxy.yml
# hosts
# plays/network-interfaces.yml
|
2020-11-29 11:30:00 +01:00 |
|
_pollion
|
bc80702bea
|
Horde, welcome to new infra
|
2020-11-29 00:25:13 +01:00 |
|
_benjamin
|
da68de7d83
|
[hosts] roundcube
|
2020-11-28 17:48:41 +01:00 |
|
_pollion
|
40fbcd076f
|
Define mirror.adm.crans.org if unknown
|
2020-11-28 15:54:41 +01:00 |
|
_pollion
|
d45fff9176
|
[Certbot] Praise new infra
|
2020-10-12 18:34:46 +02:00 |
|
_pollion
|
04f844c9e8
|
[reverseproxy] Uncommitted stuff about belenios
|
2020-09-22 23:11:23 +02:00 |
|
_pollion
|
1034d31682
|
Pads and PrivateBin on new infra
|
2020-09-22 23:04:19 +02:00 |
|
_pollion
|
c888c56093
|
ethercalc on new infra
|
2020-09-22 22:48:50 +02:00 |
|
_benjamin
|
f21c7a3d08
|
[reverseproxy] Reverso proxy phabricator
|
2020-09-21 17:24:43 +02:00 |
|
_benjamin
|
6fdc9c7979
|
[reverseproxy] Reverso proxy wiki
|
2020-09-21 16:50:41 +02:00 |
|
Alexandre Iooss
|
2aedbe0a16
|
Configure CAS
|
2020-09-19 10:32:09 +02:00 |
|
Alexandre Iooss
|
206f0ced7d
|
Generalize logo
|
2020-09-07 11:14:36 +02:00 |
|
Alexandre Iooss
|
dc53d4c411
|
Clone plugins and add logo
|
2020-09-07 11:10:17 +02:00 |
|
_shirenn
|
239b8ec406
|
[roundcube][unsafe] coucou erdnaxe[m] il faut que tu proprifies la conf nginx et que tu ajoutes ce qui est en prod :)
|
2020-09-05 10:41:27 +02:00 |
|
Alexandre Iooss
|
a21d78ffac
|
Reverse proxy stream.crans.org
|
2020-08-26 16:45:42 +02:00 |
|
_shirenn
|
b84fcbf9ce
|
[stream] \o fluxx.crans.org
|
2020-08-26 15:44:22 +02:00 |
|
_benjamin
|
212433f736
|
[keepalived] Add IPv6
|
2020-08-20 18:24:29 +02:00 |
|
_benjamin
|
0afa1c67d8
|
[openssh] Do not apply openssh on virtualizers
|
2020-08-19 14:19:22 +02:00 |
|
_benjamin
|
9ee665828d
|
Merge branch 'dhcp' into 'newinfra'
[dhcp][keepalived] Enables dhcp on adh and infra
See merge request nounous/ansible!57
|
2020-08-19 13:29:04 +02:00 |
|
_shirenn
|
1f16dc88b6
|
[reverseproxy] variables and dirty things
|
2020-08-18 19:09:19 +02:00 |
|
_shirenn
|
54efaddadb
|
[reverseproxy] installs certbot
|
2020-08-18 17:57:27 +02:00 |
|
_shirenn
|
9a01dd59fd
|
[reverse_proxy] Adds hodaur and clean role
|
2020-08-18 17:13:44 +02:00 |
|
_benjamin
|
2a191b0622
|
[dhcp][keepalived] Enables dhcp on adh and infra
|
2020-08-16 17:03:28 +02:00 |
|
_shirenn
|
f662362822
|
[keepalived] radius
|
2020-08-11 23:33:02 +02:00 |
|
_pollion
|
a7d67b1f87
|
Role freeradius
|
2020-08-11 04:04:41 +02:00 |
|
_pollion
|
44a6022885
|
Configure freeradius
|
2020-08-11 02:31:42 +02:00 |
|
_pollion
|
aacd9e1e31
|
Install re2o on new infra
|
2020-08-10 02:25:54 +02:00 |
|
_pollion
|
84fc337722
|
[postgresql] Configure psql database
|
2020-08-09 19:39:53 +02:00 |
|
_benjamin
|
3587d0ab2d
|
Pollion you're drunk
|
2020-08-08 14:56:55 +02:00 |
|
_shirenn
|
dfa8f6059b
|
[keepalived] Crans configuration
|
2020-08-07 17:31:02 +02:00 |
|
_shirenn
|
dc17f75f90
|
Merge Pollion cherry pick
|
2020-08-07 12:59:56 +02:00 |
|
_shirenn
|
56acc3b293
|
[ldap][slapd] Variable merge
|
2020-08-07 12:42:42 +02:00 |
|
_shirenn
|
2c72c8c6c9
|
[proxmox] tout pleins de nouveaux copains
|
2020-08-07 12:42:42 +02:00 |