25cd394f08
Correctly set private ip for ingress
/ terraform (push) Successful in 40s
/ ansible (push) Successful in 1m30s
2024-09-09 16:55:23 +01:00
cdaa626068
Only expose socket proxy on internal networks
/ terraform (push) Successful in 37s
/ ansible (push) Successful in 1m32s
2024-09-09 12:18:09 +01:00
66036cd301
Stop using DIND for CI
...
Seems to not play nicely with LXC, and given it runs in its own container already, it's probably fine.
2024-09-09 12:07:47 +01:00
5706a97b4d
Set correct IP for casey on tailscale network
/ ansible (push) Successful in 1m39s
/ terraform (push) Successful in 38s
2024-09-09 09:54:04 +01:00
e57f1ea13b
Set private IP for casey to fix headscale
2024-09-09 09:44:46 +01:00
aaf049a9c3
Set private ip for walker for docker proxy
/ terraform (push) Successful in 1m36s
/ ansible (push) Successful in 1m27s
2024-09-01 21:35:03 +01:00
01c236e4e9
Remove Nebula
...
/ terraform (push) Successful in 54s
/ ansible (push) Successful in 3m34s
I'm basically all in on Tailscale now
2024-09-01 20:21:29 +01:00
ceaf419c04
Move matrix to public domain
/ terraform (push) Successful in 1m21s
/ ansible (push) Successful in 2m36s
2024-09-01 16:45:40 +01:00
a0710b003d
Update forgejo app name
/ terraform (push) Successful in 34s
/ ansible (push) Successful in 1m20s
2024-08-25 17:26:46 +01:00
47efe411da
Disable headscale OIDC
...
/ terraform (push) Successful in 39s
/ ansible (push) Successful in 1m32s
For now, I'm fine using the terminal. Might bring this back later, hence only commented out.
2024-08-25 16:48:21 +01:00
58a0060a25
Update lscr.io/linuxserver/mastodon Docker tag to v4.2.12
2024-08-25 16:48:21 +01:00
d0d61053ea
Remove commento configuration
2024-08-25 16:48:21 +01:00
ca1d7015a7
Migrate from gitea to forgejo
...
It's not just the colour scheme, honest!
Some things still need renaming, but at least the application has moved.
2024-08-25 16:48:21 +01:00
621e65b920
Update vaultwarden/server Docker tag to v1.32.0
/ terraform (push) Successful in 1m3s
/ ansible (push) Successful in 1m55s
2024-08-11 22:00:22 +01:00
905f327ec5
Update Nextcloud to 29.0.4
/ terraform (push) Successful in 37s
/ ansible (push) Successful in 1m21s
2024-07-30 19:53:17 +01:00
eb0ba4ec2e
Update registry.gitlab.com/comentario/comentario Docker tag to v3.9.0
/ terraform (push) Successful in 57s
/ ansible (push) Successful in 1m40s
2024-07-26 12:00:20 +01:00
0faff7a549
Update vaultwarden/server Docker tag to v1.31.0
/ terraform (push) Successful in 38s
/ ansible (push) Successful in 1m23s
2024-07-15 18:12:59 +01:00
3a29c327b7
Remove version key from compose files
/ terraform (push) Successful in 1m0s
/ ansible (push) Successful in 1m47s
2024-07-15 18:08:14 +01:00
3d281fffc2
Use modern versions of docker-compose on Debian
...
/ terraform (push) Successful in 36s
/ ansible (push) Successful in 1m25s
Install the plugin and use switch, rather than downloading an arbitrary binary. This way, it keeps getting updated.
2024-07-14 23:16:36 +01:00
393a947cb7
Remove f2b gateway bouncer
...
/ terraform (push) Successful in 36s
/ ansible (push) Successful in 1m22s
To be replaced by something more sensible
2024-07-14 22:27:58 +01:00
6d3180a332
Ensure coredns proxy restarts on boot
/ terraform (push) Successful in 59s
/ ansible (push) Successful in 1m46s
2024-07-10 20:16:45 +01:00
545959d19c
Update nextcloud version in config
/ terraform (push) Successful in 48s
/ ansible (push) Successful in 2m4s
2024-07-07 16:11:11 +01:00
fa8a55cc02
Update lscr.io/linuxserver/nextcloud Docker tag to v29.0.3
/ terraform (push) Successful in 3m10s
/ ansible (push) Has been cancelled
2024-07-07 16:07:19 +01:00
7b5cdfafc7
Reduce sidekiq concurrency
/ terraform (push) Has been cancelled
/ ansible (push) Has been cancelled
2024-07-07 16:06:14 +01:00
fdb927cce7
Use default number of threads for mastodon
2024-07-07 16:03:25 +01:00
34011ea0a0
Remove trusted proxy IP from mastodon
...
It doesn't like it, and it's probably wrong anyway
2024-07-07 16:01:07 +01:00
f717c1be78
Decommission dokku
...
I don't use it, still. I have a better plan for doing this in future anyway...
2024-07-07 15:56:29 +01:00
2e438137d6
Update lscr.io/linuxserver/mastodon Docker tag to v4.2.10
/ terraform (push) Successful in 42s
/ ansible (push) Successful in 1m52s
2024-07-04 18:00:18 +01:00
608c57a421
Disable body size checks for slides
/ ansible (push) Successful in 1m43s
/ terraform (push) Successful in 46s
2024-07-01 20:09:53 +01:00
195c711d26
Update ghcr.io/goauthentik/server Docker tag to v2024.6
/ ansible (push) Successful in 1m48s
/ terraform (push) Successful in 40s
2024-07-01 19:52:34 +01:00
b75e5c00c5
Pin comentario
/ terraform (push) Successful in 47s
/ ansible (push) Successful in 2m2s
2024-06-26 18:18:28 +01:00
483833a678
Remove Plausible domain hack
/ terraform (push) Successful in 1m22s
/ ansible (push) Successful in 2m37s
2024-06-25 08:36:55 +01:00
6dd4e57591
Update Plausible to 2.1
/ terraform (push) Successful in 59s
/ ansible (push) Successful in 1m40s
2024-06-24 19:54:40 +01:00
659cccd15a
Configure secrets for comentario
/ terraform (push) Successful in 1m45s
/ ansible (push) Successful in 2m37s
2024-06-23 18:31:07 +01:00
81782c5157
Deploy comentario
/ terraform (push) Successful in 1m12s
/ ansible (push) Successful in 2m48s
2024-06-22 21:20:54 +01:00
a20ceab810
Remove remark42
...
Replacing with comentario
2024-06-22 18:22:31 +01:00
6c2b96e151
Update nextcloud version in config.php
/ terraform (push) Successful in 2m16s
/ ansible (push) Successful in 3m52s
2024-06-17 09:35:51 +01:00
f8e6ed0fa9
Update lscr.io/linuxserver/nextcloud Docker tag to v29.0.2
/ terraform (push) Successful in 2m20s
/ ansible (push) Successful in 3m1s
2024-06-06 20:00:24 +01:00
e0fb972946
Update dependency ansible-lint to v24.5.0
/ terraform (push) Successful in 39s
/ ansible (push) Successful in 1m48s
2024-06-02 22:40:38 +01:00
986fe1097d
Update lscr.io/linuxserver/mastodon Docker tag to v4.2.9
/ terraform (push) Successful in 1m44s
/ ansible (push) Successful in 2m51s
2024-05-30 18:00:19 +01:00
c1b8c5fcc7
Change default gitea theme
/ terraform (push) Successful in 41s
/ ansible (push) Successful in 1m55s
2024-05-28 12:14:50 +01:00
15561a9741
Update gitea/gitea Docker tag to v1.22
/ terraform (push) Successful in 1m15s
/ ansible (push) Successful in 2m46s
2024-05-27 10:00:20 +01:00
253f2678fa
Update nextcloud to v29
/ terraform (push) Successful in 42s
/ ansible (push) Successful in 2m3s
2024-05-09 18:08:04 +01:00
23aa6dcfcb
Pin synapse to latest
...
YOLO!
2024-05-09 17:46:18 +01:00
04bc698b44
Update ghcr.io/goauthentik/server Docker tag to v2024.4
/ terraform (push) Successful in 1m37s
/ ansible (push) Successful in 3m10s
2024-05-09 14:05:12 +01:00
ccc24c74e4
Update dependency geerlingguy.ntp to v2.5.0
/ terraform (push) Successful in 1m31s
/ ansible (push) Successful in 3m1s
2024-05-07 13:45:06 +01:00
ccf2089312
Update dependency artis3n.tailscale to v4.5.0
/ ansible (push) Has been cancelled
/ terraform (push) Has been cancelled
2024-05-07 13:44:56 +01:00
e50a8b032b
Increase website workers
/ terraform (push) Successful in 1m28s
/ ansible (push) Successful in 2m51s
2024-05-05 21:13:00 +01:00
9fee5c01ef
Create new walker
on Hetzner
/ terraform (push) Successful in 1m30s
/ ansible (push) Successful in 2m48s
2024-05-04 13:20:15 +01:00
ac36a6b323
Ensure nginx is in place before certbot tries to issue certs
2024-05-04 12:52:33 +01:00
f90ae0b1b4
Use port 53053 for coredns docker proxy
...
Otherwise it causes annoying issues with systemd-resolved and mdns
2024-05-04 12:19:00 +01:00
c93c7b5c16
Use external DNS for uptime-kuma
...
/ terraform (push) Failing after 38s
/ ansible (push) Successful in 2m17s
Keep the AGH logs cleaner
2024-04-29 18:42:17 +01:00
2a799d6b03
Scrape Uptime Kuma with prometheus
/ terraform (push) Failing after 1m43s
/ ansible (push) Successful in 2m29s
2024-04-29 14:28:58 +01:00
afa926c767
Remove blackbox monitoring
...
Uptime-Kuma is great
2024-04-29 14:12:21 +01:00
5481554e15
Only install compose on debian
...
/ ansible (push) Successful in 2m11s
/ terraform (push) Failing after 11m55s
The rest will get it through the system package manager
2024-04-27 17:42:24 +01:00
6c8cab3ce7
Update louislam/uptime-kuma Docker tag to v1.23.13
/ terraform (push) Successful in 36s
/ ansible (push) Successful in 2m21s
2024-04-25 10:00:20 +01:00
b0d950584d
Update lscr.io/linuxserver/nextcloud Docker tag to v29
/ terraform (push) Successful in 40s
/ ansible (push) Successful in 2m6s
2024-04-24 16:00:25 +01:00
670ad78d44
Add wireguard config for glinet router
/ terraform (push) Successful in 44s
/ ansible (push) Successful in 1m34s
2024-04-23 22:19:57 +01:00
8929a22ce5
Use LSIO docker socket proxy
/ terraform (push) Successful in 53s
/ ansible (push) Successful in 1m31s
2024-04-23 19:52:48 +01:00
ee96e6ab08
Rename forrest role to prometheus
...
/ ansible (push) Failing after 1m35s
/ terraform (push) Failing after 12m54s
Makes organising much simpler
2024-04-21 19:47:02 +01:00
ffbba254fb
Remove redundant quotes
2024-04-21 18:11:57 +01:00
c472411801
Deploy uptime-kuma
2024-04-21 18:11:39 +01:00
7564911da3
Add IPv6 to blackbox
...
/ terraform (push) Failing after 3s
/ ansible (push) Failing after 2s
This is needed to monitor private services
2024-04-20 18:12:38 +01:00
7ff44ee238
Add IPv6 to proxmox internal network
2024-04-20 18:00:08 +01:00
7c8d224c4a
Add headscale ACLs
...
/ ansible (push) Failing after 39s
/ terraform (push) Failing after 46s
Tags are managed entirely server side, so there's no priv esc issues.
This lets my devices do what they want, and server style devices can't do anything.
2024-04-20 15:46:21 +01:00
7bc0ebeb26
Update traefik Docker tag to v2.11
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 17:43:05 +01:00
33f9c544fd
Remove /tt-rss/ path from URL
/ terraform (push) Failing after 3s
/ ansible (push) Failing after 2s
2024-04-15 17:33:36 +01:00
b6583cc823
Update Nextcloud version in config
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 15:28:16 +01:00
9c02017fed
Unpin tandoor
2024-04-15 15:28:16 +01:00
91ec56717f
Update dependency artis3n.tailscale to v4.4.4
/ terraform (push) Failing after 16s
/ ansible (push) Failing after 13s
2024-04-15 15:07:14 +01:00
3318656730
Update dependency geerlingguy.ntp to v2.4.0
/ ansible (push) Failing after 24s
/ terraform (push) Failing after 31s
2024-04-15 15:06:23 +01:00
9d98d88089
Update lscr.io/linuxserver/nextcloud Docker tag to v28.0.4
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 15:02:53 +01:00
67af033fcd
Update dependency dokku_bot.ansible_dokku to v2024
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 14:36:50 +01:00
5330fdc56f
Update ghcr.io/goauthentik/server Docker tag to v2024
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 14:11:11 +01:00
2e0b562f5d
Update matrixdotorg/synapse Docker tag to v1.104.0
/ terraform (push) Failing after 2s
/ ansible (push) Failing after 2s
2024-04-15 13:58:20 +01:00
989a804bad
Update wallabag/wallabag Docker tag to v2.6.9
/ terraform (push) Failing after 51s
/ ansible (push) Failing after 46s
2024-04-03 12:00:18 +01:00
8424b3211b
Allow ingress
to serve as tailscale exit node
/ terraform (push) Successful in 38s
/ ansible (push) Successful in 1m46s
2024-03-28 23:30:24 +00:00
5157940f20
Stop exposing homeassistant
/ terraform (push) Successful in 58s
/ ansible (push) Successful in 1m52s
2024-03-23 11:54:26 +00:00
eb6fe3a23b
Allow forrest to access internal services
...
/ terraform (push) Successful in 36s
/ ansible (push) Successful in 1m36s
This is mostly for monitoring
2024-03-22 18:13:25 +00:00
b2656bdf43
Make vaultwarden VPN only
...
/ terraform (push) Successful in 33s
/ ansible (push) Successful in 1m36s
The first service to go dark...
2024-03-21 23:20:27 +00:00
0295507d0b
Increase frequency of snapshots
/ terraform (push) Failing after 34s
/ ansible (push) Successful in 1m34s
2024-03-19 21:31:27 +00:00
f88d224168
Allow only exposing services over Tailscale
...
/ terraform (push) Failing after 41s
/ ansible (push) Successful in 1m41s
This works using public DNS, so doesn't need Tailscale's magic DNS to override my local.
2024-03-07 22:30:10 +00:00
451a114262
Add IPv6 support for internal DNS overrides
...
CoreDNS 1.11.2 finally shipped!
2024-03-07 20:02:39 +00:00
119b3212a9
Remove robots.txt for gitea
/ terraform (push) Successful in 27s
/ ansible (push) Successful in 1m30s
2024-03-04 08:38:16 +00:00
5aae711cb8
Update vaultwarden/server Docker tag to v1.30.5
/ terraform (push) Successful in 46s
/ ansible (push) Successful in 1m45s
2024-03-04 08:33:59 +00:00
f552332598
Update lscr.io/linuxserver/mastodon Docker tag to v4.2.8
/ ansible (push) Has been cancelled
/ terraform (push) Has been cancelled
2024-03-04 08:33:51 +00:00
82451784a8
Deploy slides hosting
/ terraform (push) Successful in 50s
/ ansible (push) Successful in 1m49s
2024-03-03 21:39:22 +00:00
000f3d3348
Add HSTS to all nginx requests
2024-03-03 21:37:07 +00:00
0dcc3f7c30
Use regular version of nginx on Arch
...
/ terraform (push) Successful in 30s
/ ansible (push) Successful in 1m30s
`nginx-mainline` requires modules be recompiled each time, and isn't handled automatically. It's still a very new and maintained release.
2024-02-29 19:46:32 +00:00
8a1e21c79d
Ensure headscale sees the correct IP
/ terraform (push) Successful in 49s
/ ansible (push) Successful in 1m48s
2024-02-29 17:41:29 +00:00
998d798797
Set maintenance window for nextcloud
/ terraform (push) Successful in 26s
/ ansible (push) Successful in 1m37s
2024-02-21 21:57:03 +00:00
11a93dac55
Update nextcloud version in config
2024-02-21 21:52:58 +00:00
97da6edc13
Update dependency ansible-lint to v24
/ terraform (push) Successful in 27s
/ ansible (push) Successful in 1m36s
2024-02-21 21:47:29 +00:00
d66708b10b
Update dependency artis3n.tailscale to v4.4.2
/ terraform (push) Successful in 24s
/ ansible (push) Successful in 1m34s
2024-02-21 21:43:33 +00:00
7d64518840
Update matrixdotorg/synapse Docker tag to v1.101.0
/ ansible (push) Has been cancelled
/ terraform (push) Has been cancelled
2024-02-21 21:43:15 +00:00
26bcf09fea
Update lscr.io/linuxserver/nextcloud Docker tag to v28.0.2
/ terraform (push) Has been cancelled
/ ansible (push) Has been cancelled
2024-02-21 21:42:50 +00:00
808e72553b
Add the basics of some edge caching
/ ansible (push) Has been cancelled
/ terraform (push) Has been cancelled
2024-02-21 21:42:16 +00:00
b513c88774
Update vaultwarden/server Docker tag to v1.30.3
/ ansible (push) Successful in 1m33s
/ terraform (push) Successful in 27s
2024-02-19 14:13:02 +00:00
7741fbc163
Update vabene1111/recipes Docker tag to v1.5.13
/ terraform (push) Successful in 25s
/ ansible (push) Successful in 1m34s
2024-02-19 14:07:32 +00:00
45cf930d14
Update lscr.io/linuxserver/mastodon Docker tag to v4.2.7
/ terraform (push) Successful in 49s
/ ansible (push) Successful in 1m54s
2024-02-17 08:00:21 +00:00