1417 Commits

Author	SHA1	Message	Date
Renovate	97da6edc13	Update dependency ansible-lint to v24	2024-02-21 21:47:29 +00:00
Renovate	d66708b10b	Update dependency artis3n.tailscale to v4.4.2	2024-02-21 21:43:33 +00:00
Renovate	7d64518840	Update matrixdotorg/synapse Docker tag to v1.101.0	2024-02-21 21:43:15 +00:00
Renovate	26bcf09fea	Update lscr.io/linuxserver/nextcloud Docker tag to v28.0.2	2024-02-21 21:42:50 +00:00
Jake Howard	808e72553b	Add the basics of some edge caching	2024-02-21 21:42:16 +00:00
Renovate	b513c88774	Update vaultwarden/server Docker tag to v1.30.3	2024-02-19 14:13:02 +00:00
Renovate	7741fbc163	Update vabene1111/recipes Docker tag to v1.5.13	2024-02-19 14:07:32 +00:00
Renovate	45cf930d14	Update lscr.io/linuxserver/mastodon Docker tag to v4.2.7	2024-02-17 08:00:21 +00:00
Jake Howard	58c48261e7	Consolidate vikunja container	2024-02-12 14:12:17 +00:00
Jake Howard	91a247868b	Add routes from forrest to tailscale network	2024-02-07 22:12:08 +00:00
Jake Howard	df43be6f9b	Set `private_ip` for some other machines	2024-02-07 19:27:48 +00:00
Jake Howard	b6eca40ae0	Allow tailscale IP in more places	2024-02-07 18:21:16 +00:00
Renovate	6c1c245c23	Update matrixdotorg/synapse Docker tag to v1.100.0	2024-02-02 13:38:12 +00:00
Renovate	379d4a26fa	Update vabene1111/recipes Docker tag to v1.5.12	2024-02-02 13:38:00 +00:00
Renovate	f1a2694f1a	Update lscr.io/linuxserver/mastodon Docker tag to v4.2.5	2024-02-02 13:37:05 +00:00
Jake Howard	02847355a7	Install tailscale ... Install, not configure	2024-02-01 19:41:47 +00:00
Jake Howard	29cac09b48	Remove explicit port for headscale	2024-02-01 18:32:53 +00:00
Jake Howard	dba0262801	Remove website tmpfs ... The server's disk is probably fast enough, and container restarts will nuke that storage anyway	2024-02-01 18:15:51 +00:00
Jake Howard	0c6528f9ca	Restrict access to headscale OIDC and API	2024-01-31 21:40:43 +00:00
Jake Howard	dfa8328e7b	Move gateway logs to separate file	2024-01-31 21:06:19 +00:00
Jake Howard	53c758a781	Monitor headscale with prometheus	2024-01-27 17:40:02 +00:00
Jake Howard	b51677b795	Back up headscale config	2024-01-27 15:04:53 +00:00
Jake Howard	2ceeaf091d	Deploy headscale	2024-01-27 14:18:37 +00:00
Jake Howard	06784563a7	Don't resolve ipv6 ... Something about this setup doesn't like it, so I'll disable v6 for now	2024-01-26 21:43:04 +00:00
Renovate	4f6f4143ce	Update matrixdotorg/synapse Docker tag to v1.99.0	2024-01-22 09:15:38 +00:00
Renovate	5292785cd9	Update wallabag/wallabag Docker tag to v2.6.8	2024-01-22 09:11:27 +00:00
Renovate	d297674fb5	Update vabene1111/recipes Docker tag to v1.5.11	2024-01-22 08:42:36 +00:00
Jake Howard	88f0828153	Use primary Quad9 servers ... DNSSEC and malware blocking is probably useful, just in case	2024-01-21 23:19:49 +00:00
Jake Howard	cfc3de61b4	Add fallback quad9 address ... This aids availability, along with a healthcheck	2024-01-21 23:05:25 +00:00
Jake Howard	c6bae0f797	Do simple `endsWith` matching for docker view ... This saves the need for a regex	2024-01-14 22:27:02 +00:00
Jake Howard	4c5936b2aa	Disable Grafana analytics	2024-01-14 15:30:12 +00:00
Jake Howard	9d685d85aa	Update website deployment to unify containers	2024-01-14 14:22:19 +00:00
Jake Howard	ac166c3874	Start resolved to support mDNS	2024-01-10 13:28:45 +00:00
Jake Howard	06b9197c5b	Sync terraform state to `restic` ... This allows it to be backed up easily	2024-01-09 19:56:06 +00:00
Jake Howard	4a69df1d6c	Ignore ansible-lint for nebula install block ... I'm smarter than it is	2024-01-08 21:49:38 +00:00
Jake Howard	f33d19e156	Move AdGuardHome configuration to Terraform ... https://git.theorangeone.net/systems/adguardhome	2024-01-08 21:45:28 +00:00
Jake Howard	ed59458f39	Add backups to tang	2024-01-08 19:20:55 +00:00
Jake Howard	616d20e23b	Tweak some AGH settings	2024-01-08 19:01:46 +00:00
Jake Howard	383a57d1f2	Use DoH endpoint fot quad9 ... Seems latency is much lower	2024-01-08 18:21:03 +00:00
Jake Howard	c8211d4756	Use Debian repo version of nginx ... It's older, and doesn't have `stream` compiled in, but the repo one can't link to any of the installed modules, which is a non-starter.	2024-01-04 14:17:36 +00:00
Jake Howard	57ad143268	Set password for homeassistant SMB mount ... It had an IP restriction, but still	2024-01-03 21:23:49 +00:00
Jake Howard	16e9952b2f	Replace custom restic logs with runitor	2024-01-03 21:09:07 +00:00
Jake Howard	f5154d1683	Use CoreDNS to do recursive CNAME aliasing for AGH	2024-01-02 17:48:47 +00:00
Jake Howard	3ed7074af6	Rename coredns role	2024-01-02 17:02:34 +00:00
Jake Howard	5581bbc01a	Replace pihole with adguardhome ... AGH is much simpler to install and manage, and does DoH natively.	2024-01-01 15:48:14 +00:00
Jake Howard	56bfe544e4	nginx HTTPS redirect on ipv6	2023-12-31 22:49:11 +00:00
Renovate	83543fe081	Update lscr.io/linuxserver/nextcloud Docker tag to v28.0.1	2023-12-28 21:39:28 +00:00
Jake Howard	0e0d0c9b82	`walker` doesn't have a `traefik` anymore	2023-12-26 22:31:12 +00:00
Jake Howard	026d8db13e	Be root when generating dhparams ... This is needed to write to the destination	2023-12-24 19:44:30 +00:00
Jake Howard	593a945c5c	Install nginx from package manager if available	2023-12-24 19:44:30 +00:00
Jake Howard	bd15946f3b	Update Nebula	2023-12-24 19:44:30 +00:00
Jake Howard	f4b96afcfa	Deploy ntfy	2023-12-23 16:40:53 +00:00
Jake Howard	c0c7f393e3	Only pin to minor versions of gitea	2023-12-21 16:43:18 +00:00
Jake Howard	5fd952be4c	Only pin to minor version of Authentik	2023-12-21 16:42:02 +00:00
Jake Howard	1e798ac5ce	Don't require role variables to be prefixed	2023-12-21 16:38:24 +00:00
Jake Howard	39899cd1e0	Use certbot to issue certificates	2023-12-21 16:38:07 +00:00
Jake Howard	8e1a203df2	Add helper map for better websocket support	2023-12-21 16:38:07 +00:00
Jake Howard	a3baf8be1e	Use nginx as reverse proxy on walker, removing traefik ... SSL coming soon	2023-12-21 16:38:07 +00:00
Jake Howard	a7eb372899	Fix HTTPS redirect hostname	2023-12-21 14:58:19 +00:00
Jake Howard	80a770f399	Add include files before main nginx config	2023-12-21 14:58:04 +00:00
Jake Howard	ef432642dd	Unify nginx module tasks	2023-12-20 22:35:11 +00:00
Jake Howard	b32a63bd72	Add helpful includes ... Along with ensuring there are dhparams	2023-12-20 22:29:42 +00:00
Jake Howard	2336e4dd5b	Add brotli	2023-12-17 18:12:33 +00:00
Jake Howard	46eda36515	Fully block Server header	2023-12-16 21:57:19 +00:00
Jake Howard	cfb498d7c6	Only add HTTPS redirect when it's needed	2023-12-16 18:13:49 +00:00
Jake Howard	48efcf4d91	Use mainline nginx release on Arch	2023-12-16 18:03:01 +00:00
Jake Howard	930cf87084	gzip as much as makes sense	2023-12-16 17:58:15 +00:00
Jake Howard	92052a3d0a	Unify nginx configuration ... This creates a simple base configuration skeleton, that other configuration can be easily loaded into.	2023-12-16 17:47:04 +00:00
Jake Howard	943c141d59	Ensure ingress proxy doesn't terminate connections ... This mostly works around a weird issues with Jellyfin	2023-12-14 22:08:02 +00:00
Jake Howard	2ff2128330	Set pihole temp unit	2023-12-14 22:04:14 +00:00
Jake Howard	b33e19e152	Remove unnecessary extra variable definitions ... The world could do with a bit less YAML!	2023-12-14 22:03:23 +00:00
Jake Howard	7ad5d6e51e	Deploy coredns as a proxy to Docker's internal DNS	2023-12-14 21:04:26 +00:00
Jake Howard	7381c1f10a	Update nextcloud version in config.php	2023-12-13 17:48:46 +00:00
Renovate	18fd0631e1	Update lscr.io/linuxserver/nextcloud Docker tag to v28	2023-12-13 17:38:40 +00:00
Renovate	05eee3f4de	Update gitea/gitea Docker tag to v1.21.2	2023-12-13 17:37:11 +00:00
Renovate	e0f7b47961	Update lscr.io/linuxserver/mastodon Docker tag to v4.2.3	2023-12-05 18:00:28 +00:00
Jake Howard	c0df505f70	Disable browser updates for nextcloud	2023-12-04 09:39:14 +00:00
Jake Howard	aecd7c0a18	Upgrade nextcloud version in config	2023-12-04 09:38:43 +00:00
Renovate	b9c5c7ce01	Update lscr.io/linuxserver/nextcloud Docker tag to v27.1.4	2023-12-04 09:35:32 +00:00
Jake Howard	e815fcb2be	Pin all redis versions to 7 ... Keeps them all in sync	2023-12-04 09:22:51 +00:00
Renovate	ad7bd24fec	Update dependency ansible-lint to v6.22.1	2023-12-04 09:10:46 +00:00
Renovate	85352014ab	Update matrixdotorg/synapse Docker tag to v1.97.0	2023-12-04 09:09:07 +00:00
Renovate	01eb469ac8	Update vabene1111/recipes Docker tag to v1.5.10	2023-12-03 14:00:28 +00:00
Jake Howard	461ec71b12	Update gitea branding path	2023-11-27 19:19:58 +00:00
Renovate	2fe093668d	Update ghcr.io/goauthentik/server Docker tag to v2023.10.4	2023-11-27 08:37:21 +00:00
Renovate	58c14c7f94	Update vaultwarden/server Docker tag to v1.30.1	2023-11-27 08:35:50 +00:00
Renovate	d0a994198c	Update gitea/gitea Docker tag to v1.21.1	2023-11-26 18:00:27 +00:00
Renovate	5e8918221f	Update gitea/gitea Docker tag to v1.21.0	2023-11-19 18:04:14 +00:00
Renovate	0d970d276d	Update matrixdotorg/synapse Docker tag to v1.96.1	2023-11-19 17:59:53 +00:00
Jake Howard	8666933bfb	Revert "Use OIDC to log in to tt-rss" ... OIDC breaks any kind of API integration, which is very annoying This reverts commit 66ddef96e2.	2023-11-18 21:57:16 +00:00
Jake Howard	3df1e1d46b	Update Nextcloud version in config.php	2023-11-13 18:22:42 +00:00
Renovate	e3da2710a7	Update lscr.io/linuxserver/nextcloud Docker tag to v27.1.3	2023-11-13 18:22:06 +00:00
Renovate	19febd9c35	Update matrixdotorg/synapse Docker tag to v1.95.1	2023-11-13 18:19:38 +00:00
Renovate	f0c0b6d4b4	Update vaultwarden/server Docker tag to v1.30.0	2023-11-13 18:17:52 +00:00
Renovate	d76ff190b3	Update dependency yamllint to v1.33.0	2023-11-13 18:15:52 +00:00
Renovate	a4958e619a	Update ghcr.io/goauthentik/server Docker tag to v2023.10.3	2023-11-13 18:15:28 +00:00
Jake Howard	e4b2318c82	Monitor authentik	2023-11-12 21:25:02 +00:00
Jake Howard	dfef31cbfa	Deploy minio ... My own S3, for various things	2023-11-12 21:23:54 +00:00
Jake Howard	38840402b9	Disable repo units I don't use by default	2023-11-12 18:28:01 +00:00
Jake Howard	5f31a39804	Ensure Nextcloud can talk to local servers ... Needed for Authentik	2023-11-08 19:51:16 +00:00