Commit graph

1332 commits

Author SHA1 Message Date
f0c0b6d4b4 Update vaultwarden/server Docker tag to v1.30.0
All checks were successful
/ terraform (push) Successful in 28s
/ ansible (push) Successful in 1m41s
2023-11-13 18:17:52 +00:00
a4958e619a Update ghcr.io/goauthentik/server Docker tag to v2023.10.3
All checks were successful
/ terraform (push) Successful in 28s
/ ansible (push) Successful in 1m45s
2023-11-13 18:15:28 +00:00
e4b2318c82
Monitor authentik
All checks were successful
/ terraform (push) Successful in 37s
/ ansible (push) Successful in 1m42s
2023-11-12 21:25:02 +00:00
dfef31cbfa
Deploy minio
My own S3, for various things
2023-11-12 21:23:54 +00:00
38840402b9
Disable repo units I don't use by default
All checks were successful
/ terraform (push) Successful in 31s
/ ansible (push) Successful in 1m41s
2023-11-12 18:28:01 +00:00
5f31a39804
Ensure Nextcloud can talk to local servers
All checks were successful
/ terraform (push) Successful in 30s
/ ansible (push) Successful in 1m40s
Needed for Authentik
2023-11-08 19:51:16 +00:00
66ddef96e2
Use OIDC to log in to tt-rss 2023-11-08 19:46:16 +00:00
935b099c4f
Decommission upload
All checks were successful
/ terraform (push) Successful in 30s
/ ansible (push) Successful in 1m38s
It was never really used for anything, and I want to replace it with something better eventually
2023-11-07 21:17:21 +00:00
dbbfe55975
Deploy authentik
_again_.
2023-11-07 21:17:21 +00:00
48dbaeed99
Deploy remark42
All checks were successful
/ terraform (push) Successful in 29s
/ ansible (push) Successful in 1m43s
To soon replace Commento
2023-11-06 21:29:28 +00:00
5fb605231d
Allow pings to ingress
All checks were successful
/ terraform (push) Successful in 33s
/ ansible (push) Successful in 1m50s
This makes testing connections much simpler
2023-11-05 21:48:25 +00:00
dd1558bafa
Set sensible permissions on nftables config 2023-11-05 21:43:16 +00:00
b0347fc037
Remove redundant quotes 2023-11-05 21:43:02 +00:00
f1ac40f432
Reduce pihole cache size
Some checks failed
/ terraform (push) Successful in 1m9s
/ ansible (push) Failing after 2m11s
This is still a lot of records, and pihole complains with values any larger
2023-11-05 13:22:05 +00:00
850278ab19
Allow nebula through firewall
Some checks failed
/ terraform (push) Successful in 1m6s
/ ansible (push) Failing after 2m8s
2023-11-03 18:06:36 +00:00
b1284877a3
Update blackbox configuration for not following redirects
Some checks failed
/ terraform (push) Successful in 30s
/ ansible (push) Failing after 1m23s
2023-11-01 22:14:35 +00:00
6b4285a264
Let alertmanager run as its own user
It's already not-root, and can't access the filesystem anyway
2023-11-01 22:13:37 +00:00
3ed786336e
Remove wireguard_53
Some checks failed
/ terraform (push) Successful in 34s
/ ansible (push) Failing after 1m25s
I never used it - no reason to maintain it
2023-10-26 21:50:22 +01:00
9f83efa53b
Use nftables for firewall on ingress
See ya never, iptables!
2023-10-26 21:34:06 +01:00
54e2205e48
Don't bother renaming speedtest metrics
Some checks failed
/ terraform (push) Successful in 32s
/ ansible (push) Failing after 1m20s
2023-10-23 22:09:25 +01:00
c29dfb5ad2
Add hostname label for blackbox
Some checks failed
/ terraform (push) Successful in 37s
/ ansible (push) Failing after 1m22s
2023-10-23 21:06:43 +01:00
2bd22cb2f6 Update lscr.io/linuxserver/nextcloud Docker tag to v27.1.2
All checks were successful
/ terraform (push) Successful in 35s
/ ansible (push) Successful in 1m51s
2023-10-15 21:36:02 +01:00
a1d92ef080 Update lscr.io/linuxserver/mastodon Docker tag to v4.2.1
All checks were successful
/ ansible (push) Successful in 2m4s
/ terraform (push) Successful in 34s
2023-10-15 21:35:23 +01:00
70ad33189c Update gitea/gitea Docker tag to v1.20.5
All checks were successful
/ ansible (push) Successful in 2m13s
/ terraform (push) Successful in 28s
2023-10-15 21:34:29 +01:00
92914303ad Update matrixdotorg/synapse Docker tag to v1.94.0
All checks were successful
/ terraform (push) Successful in 46s
/ ansible (push) Successful in 2m21s
2023-10-15 21:33:22 +01:00
a1a61f1069 Update wallabag/wallabag Docker tag to v2.6.7
All checks were successful
/ terraform (push) Successful in 30s
/ ansible (push) Successful in 2m6s
2023-10-15 21:32:01 +01:00
4950082c28
Remove deprecated gitea config settings
All checks were successful
/ terraform (push) Successful in 1m13s
/ ansible (push) Successful in 2m20s
2023-10-15 21:27:23 +01:00
ad867f9654
Add JWT secret for gitea
This appeared in my config - it's probably important
2023-10-15 18:55:24 +01:00
ad3b5bc42d
Move repo archive to "files" subvolume
It's better suited for this kind of file storage
2023-10-15 18:53:30 +01:00
37b8c48a77
Remove legacy short domains
All checks were successful
/ terraform (push) Successful in 1m24s
/ ansible (push) Successful in 2m47s
I never used them, and the certificate renewal didn't work anyway.
2023-10-02 09:37:05 +01:00
54c88d4253
Fix lint issues
All checks were successful
/ terraform (push) Successful in 42s
/ ansible (push) Successful in 1m56s
2023-10-01 17:10:37 +01:00
5770ab4a59
Sync dokku data to tank
This is much easier than mounting the files themselves
2023-10-01 17:06:09 +01:00
a54a91ea44
Deploy a dokku 2023-10-01 16:34:01 +01:00
b02be4e77a
Add email to Vikunja
Some checks failed
/ terraform (push) Successful in 1m26s
/ ansible (push) Failing after 2m48s
2023-10-01 14:08:25 +01:00
12c46e50b5
Decommission grimes
All checks were successful
/ terraform (push) Successful in 41s
/ ansible (push) Successful in 2m10s
Dokku will return, soon...
2023-09-29 21:42:05 +01:00
90c9164306 Update renovate/renovate Docker tag to v37
All checks were successful
/ terraform (push) Successful in 42s
/ ansible (push) Successful in 1m56s
2023-09-27 16:00:37 +01:00
a1285612f1
Increase pihole cache
Some checks failed
/ terraform (push) Failing after 2m46s
/ ansible (push) Successful in 3m45s
2023-09-24 13:45:40 +01:00
1801a21e5d
Update nextcloud config to 27.1.1
All checks were successful
/ terraform (push) Successful in 50s
/ ansible (push) Successful in 2m7s
2023-09-23 21:51:15 +01:00
60d6be41ab Update lscr.io/linuxserver/nextcloud Docker tag to v27.1.1
All checks were successful
/ terraform (push) Successful in 52s
/ ansible (push) Successful in 2m8s
2023-09-23 21:42:32 +01:00
5c247013fb Update lscr.io/linuxserver/mastodon Docker tag to v4.2.0
All checks were successful
/ terraform (push) Successful in 55s
/ ansible (push) Successful in 2m9s
2023-09-23 21:40:04 +01:00
ea33feb643 Update matrixdotorg/synapse Docker tag to v1.92.3
All checks were successful
/ terraform (push) Successful in 1m35s
/ ansible (push) Successful in 2m44s
2023-09-23 13:57:28 +01:00
7de73287fd
Move spotify proxy alongside website
All checks were successful
/ ansible (push) Successful in 2m25s
/ terraform (push) Successful in 1m3s
That's all it's really used for right now.
2023-09-21 14:20:54 +01:00
27da7a7494
Fix occ command
All checks were successful
/ terraform (push) Successful in 57s
/ ansible (push) Successful in 2m16s
2023-09-18 19:21:42 +01:00
0789abaa0b
Update nextcloud config version 2023-09-18 18:49:04 +01:00
c2989aad5c Update lscr.io/linuxserver/nextcloud Docker tag to v27.1.0
All checks were successful
/ terraform (push) Successful in 1m2s
/ ansible (push) Successful in 2m8s
2023-09-18 18:35:09 +01:00
61088d18f6 Update matrixdotorg/synapse Docker tag to v1.92.2
All checks were successful
/ terraform (push) Successful in 1m49s
/ ansible (push) Successful in 3m7s
2023-09-15 16:00:30 +01:00
5419e173d5 Update matrixdotorg/synapse Docker tag to v1.91.2
All checks were successful
/ terraform (push) Successful in 47s
/ ansible (push) Successful in 2m19s
2023-09-10 21:02:18 +01:00
d9a50cce64 Update lscr.io/linuxserver/mastodon Docker tag to v4.1.7
All checks were successful
/ terraform (push) Successful in 47s
/ ansible (push) Successful in 2m29s
2023-09-10 21:01:50 +01:00
2303f7b247 Update wallabag/wallabag Docker tag to v2.6.6
All checks were successful
/ terraform (push) Successful in 56s
/ ansible (push) Successful in 2m46s
2023-09-10 21:00:55 +01:00
3deda7bde7 Update gitea/gitea Docker tag to v1.20.4
All checks were successful
/ terraform (push) Successful in 1m27s
/ ansible (push) Successful in 3m28s
2023-09-08 10:00:33 +01:00
e56ffa576f
Deploy vikunja
All checks were successful
/ terraform (push) Successful in 1m2s
/ ansible (push) Successful in 2m32s
2023-09-07 20:18:32 +01:00
d16feb2f89
Override DNS for vaultwarden
All checks were successful
/ terraform (push) Successful in 46s
/ ansible (push) Successful in 2m13s
Make sure it finds icons for local applications
2023-09-07 18:04:03 +01:00
bdf48295a6 Update matrixdotorg/synapse Docker tag to v1.91.0
All checks were successful
/ terraform (push) Successful in 50s
/ ansible (push) Successful in 2m20s
2023-09-03 21:17:27 +01:00
9644a09021 Update vabene1111/recipes Docker tag to v1.5.6
All checks were successful
/ terraform (push) Successful in 46s
/ ansible (push) Successful in 2m11s
2023-09-03 21:09:24 +01:00
d120274b00 Update vaultwarden/server Docker tag to v1.29.2
All checks were successful
/ terraform (push) Successful in 1m29s
/ ansible (push) Successful in 2m56s
2023-09-03 21:06:33 +01:00
5a0df92a6a
Disable ip_forward
All checks were successful
/ terraform (push) Successful in 1m4s
/ ansible (push) Successful in 2m20s
I don't need P2P comms for this, so disable this for extra security.

I should add a proper firewall at some point...
2023-09-01 19:52:36 +01:00
ccadc7fbfa
Migrate wallabag to postgres
All checks were successful
/ terraform (push) Successful in 1m20s
/ ansible (push) Successful in 2m36s
2023-08-28 19:10:37 +01:00
2b75b526ac
Update nextcloud version in config 2023-08-28 17:53:29 +01:00
16be8dd87c
Disable registration on wallabag
The documented default is wrong
2023-08-28 17:51:58 +01:00
33b7921067
Update lscr.io/linuxserver/nextcloud Docker tag to v27.0.2 2023-08-28 17:15:41 +01:00
8208845738 Update vabene1111/recipes Docker tag to v1.5.5
All checks were successful
/ terraform (push) Successful in 1m5s
/ ansible (push) Successful in 2m41s
2023-08-28 16:53:56 +01:00
444fa61436 Update wallabag/wallabag Docker tag to v2.6.5
All checks were successful
/ ansible (push) Successful in 2m53s
/ terraform (push) Successful in 3m1s
2023-08-28 10:00:28 +01:00
283bb3f11f Update gitea/gitea Docker tag to v1.20.3
All checks were successful
/ terraform (push) Successful in 42s
/ ansible (push) Successful in 1m58s
2023-08-20 22:00:28 +01:00
266601d6f5
Vaguely harden vaultwarden config
All checks were successful
/ terraform (push) Successful in 45s
/ ansible (push) Successful in 2m8s
2023-08-16 22:03:22 +01:00
1b24578fe6 Update plausible/analytics Docker tag to v2
All checks were successful
/ terraform (push) Successful in 41s
/ ansible (push) Successful in 1m50s
2023-08-05 16:25:55 +01:00
82281c6307
Decommission BG
All checks were successful
/ ansible (push) Successful in 1m52s
/ terraform (push) Successful in 46s
2023-08-01 21:49:20 +01:00
ce53032819
Fix nextcloud config dir
Some checks failed
/ terraform (push) Failing after 5s
/ ansible (push) Failing after 5s
2023-08-01 21:19:35 +01:00
b499882ca7
Update Nextcloud to 27.0.1 2023-08-01 21:18:50 +01:00
6d8d65a136 Update gitea/gitea Docker tag to v1.20.2
Some checks failed
/ terraform (push) Failing after 5s
/ ansible (push) Failing after 5s
2023-08-01 14:36:12 +01:00
e5a246d24a Update vaultwarden/server Docker tag to v1.29.1
Some checks failed
/ terraform (push) Failing after 5s
/ ansible (push) Failing after 5s
2023-08-01 14:34:54 +01:00
65f54326f3 Update wallabag/wallabag Docker tag to v2.6.2
Some checks failed
/ terraform (push) Failing after 5s
/ ansible (push) Failing after 4s
2023-08-01 14:32:46 +01:00
426c8f4e40 Update matrixdotorg/synapse Docker tag to v1.89.0
Some checks failed
/ terraform (push) Failing after 5s
/ ansible (push) Failing after 5s
2023-08-01 14:32:02 +01:00
463f5228e4 Update lscr.io/linuxserver/mastodon Docker tag to v4.1.6
Some checks failed
/ terraform (push) Failing after 5s
/ ansible (push) Failing after 6s
2023-08-01 14:30:07 +01:00
dfa6ffdcd2
Update Gitea token for renovate
Some checks failed
/ terraform (push) Failing after 5s
/ ansible (push) Failing after 5s
It seems in a recent update, the token stopped working, possibly due to a permissions issue.
2023-08-01 14:17:16 +01:00
6224b8f675
Remove aurto
All checks were successful
/ terraform (push) Successful in 47s
/ ansible (push) Successful in 2m0s
I never used it, and trust chaotic-aur enough for AUR things
2023-07-30 19:09:34 +01:00
f5faad1b2d
Upgrade Gitea to 1.20.1
All checks were successful
/ terraform (push) Successful in 1m22s
/ ansible (push) Successful in 2m25s
2023-07-22 14:30:49 +01:00
a1d8764a90
Expose tt-rss plugins to nginx container
All checks were successful
/ terraform (push) Successful in 46s
/ ansible (push) Successful in 2m2s
2023-07-21 12:57:01 +01:00
5aff824389
Remove feediron plugin
All checks were successful
/ terraform (push) Successful in 1m21s
/ ansible (push) Successful in 2m40s
It causes lots of issues for GitHub feeds
2023-07-21 09:13:24 +01:00
4de69e3955
Rotate Gandi API key
All checks were successful
/ terraform (push) Successful in 41s
/ ansible (push) Successful in 1m53s
Had to regenerate it to debug an issue
2023-07-17 15:03:04 +01:00
0e9e63d8b7
Use correct gandi API 2023-07-17 15:03:04 +01:00
9e7ccb81ec
Fix external storage for gitea packages 2023-07-17 14:26:12 +01:00
2e7d60d87d
Use gandi as cert resolver for 0rng.one 2023-07-17 14:26:12 +01:00
d91ad7c517
Update gitea to 1.20.0
All checks were successful
/ terraform (push) Successful in 1m27s
/ ansible (push) Successful in 2m49s
2023-07-17 09:30:33 +01:00
a406e72ab2
Update Vaultwarden to 1.29.0
All checks were successful
/ terraform (push) Successful in 41s
/ ansible (push) Successful in 1m54s
2023-07-10 13:41:56 +01:00
56c1f8563f
Fix renovate base directory
All checks were successful
/ terraform (push) Successful in 1m41s
/ ansible (push) Successful in 2m23s
2023-07-10 08:33:30 +01:00
1acc8b3fd6
Mount entire config dir into Nextcloud
All checks were successful
/ terraform (push) Successful in 40s
/ ansible (push) Successful in 1m50s
Seems newer LSIO containers try and copy a config over the top, which doesn't play well with it being a Docker mount
2023-07-09 16:17:55 +01:00
cb2ed2dd62 Update renovate/renovate Docker tag to v36
All checks were successful
/ terraform (push) Successful in 40s
/ ansible (push) Successful in 1m50s
2023-07-09 12:57:05 +01:00
f037a393e4 Update vabene1111/recipes Docker tag to v1.5.4
All checks were successful
/ terraform (push) Successful in 41s
/ ansible (push) Successful in 2m5s
2023-07-09 12:56:45 +01:00
29f7c55b6b Update lscr.io/linuxserver/mastodon Docker tag to v4.1.4
All checks were successful
/ terraform (push) Successful in 1m25s
/ ansible (push) Successful in 2m37s
2023-07-07 22:00:36 +01:00
56b846f38c
Prune mastodon accounts and orphan media
All checks were successful
/ terraform (push) Successful in 40s
/ ansible (push) Successful in 1m49s
2023-07-04 21:19:35 +01:00
b7d90cee98 Update matrixdotorg/synapse Docker tag to v1.87.0
All checks were successful
/ terraform (push) Successful in 43s
/ ansible (push) Successful in 1m51s
2023-07-04 21:18:11 +01:00
6d83becaaf Update wallabag/wallabag Docker tag to v2.6.1
All checks were successful
/ terraform (push) Successful in 40s
/ ansible (push) Successful in 1m43s
2023-07-04 21:10:41 +01:00
f04e61543c Update vabene1111/recipes Docker tag to v1.5.3
All checks were successful
/ terraform (push) Successful in 38s
/ ansible (push) Successful in 1m55s
2023-07-04 21:10:10 +01:00
c558a8d86d Update gitea/gitea Docker tag to v1.19.4
All checks were successful
/ ansible (push) Successful in 1m55s
/ terraform (push) Successful in 38s
2023-07-04 20:00:29 +01:00
1f6460f610 Update vabene1111/recipes Docker tag to v1.5.2
All checks were successful
/ terraform (push) Successful in 54s
/ ansible (push) Successful in 2m0s
2023-06-26 09:43:32 +01:00
7619e826f4
Remove deprecated traefik hub config
All checks were successful
/ terraform (push) Successful in 1m27s
/ ansible (push) Successful in 2m31s
2023-06-26 09:27:16 +01:00
da55e3fb5f
Fix references to home dir
All checks were successful
/ terraform (push) Successful in 47s
/ ansible (push) Successful in 1m46s
2023-06-17 16:00:30 +01:00
677c70618f
Update Nextcloud to 27 2023-06-17 16:00:17 +01:00
4d3aa3d67c Update matrixdotorg/synapse Docker tag to v1.85.2
All checks were successful
/ terraform (push) Successful in 1m22s
/ ansible (push) Successful in 2m14s
2023-06-17 15:42:23 +01:00
b07d424d87
Move remaining DBs to SSD
All checks were successful
/ ansible (push) Successful in 1m43s
/ terraform (push) Successful in 42s
2023-06-15 21:18:50 +01:00
2af9f8529d
Fix new ansible-lint errors
All checks were successful
/ terraform (push) Successful in 46s
/ ansible (push) Successful in 1m53s
Quite a few changes here, hopefully they work!
2023-06-15 15:16:19 +01:00
aa8ceec290
Remove duplicate depends_on keys
Some checks failed
/ terraform (push) Successful in 48s
/ ansible (push) Failing after 2m13s
2023-06-15 14:20:52 +01:00
5ccaaefdc7
Move more projects over to new "speed" SSD
Some checks failed
/ terraform (push) Successful in 49s
/ ansible (push) Failing after 1m28s
2023-06-15 13:55:36 +01:00
2998958ddd
Provision a new SSD for DBs
Some checks failed
/ terraform (push) Successful in 1m16s
/ ansible (push) Failing after 1m57s
This makes the data easier to back up and splits it out from the main boot pool
2023-06-15 09:09:48 +01:00
2fa7f7212f
Move synapse DB/Redis to SSD
Some checks failed
/ terraform (push) Successful in 44s
/ ansible (push) Failing after 1m26s
Wow, Postgres really does love an SSD!
2023-06-07 21:35:07 +01:00
c042775f8b
Update Nextcloud
Some checks failed
/ terraform (push) Successful in 54s
/ ansible (push) Failing after 2m3s
2023-05-31 11:55:40 +01:00
90b2707785
Merge remote-tracking branch 'origin/renovate/lscr.io-linuxserver-nextcloud-26.x' 2023-05-31 11:41:36 +01:00
467ff1eb9c Update vabene1111/recipes Docker tag to v1.4.12
All checks were successful
/ terraform (push) Successful in 53s
/ ansible (push) Successful in 2m3s
2023-05-28 22:23:42 +01:00
c85b6148b3 Update matrixdotorg/synapse Docker tag to v1.84.1
All checks were successful
/ terraform (push) Successful in 1m0s
/ ansible (push) Successful in 1m45s
2023-05-28 22:21:05 +01:00
727ef81740 Update lscr.io/linuxserver/nextcloud Docker tag to v26.0.2
All checks were successful
/ terraform (push) Successful in 55s
/ ansible (push) Successful in 2m11s
2023-05-25 22:00:29 +01:00
6c800fbc01
Move some DBs to main SSD
All checks were successful
/ terraform (push) Successful in 53s
/ ansible (push) Successful in 1m47s
This should improve performance. More apps to come!
2023-05-25 20:58:51 +01:00
a0f7d48502 Update matrixdotorg/synapse Docker tag to v1.83.0
All checks were successful
/ terraform (push) Successful in 51s
/ ansible (push) Successful in 1m46s
2023-05-20 11:17:54 +01:00
f22240d23c Update vabene1111/recipes Docker tag to v1.4.10
All checks were successful
/ terraform (push) Successful in 1m27s
/ ansible (push) Successful in 2m40s
2023-05-18 14:00:29 +01:00
f577a5e296
Add aurto server for AUR caching
All checks were successful
/ terraform (push) Successful in 1m12s
/ ansible (push) Successful in 2m1s
2023-05-14 15:33:07 +01:00
84ce67ef38
Move renovate storage to bulk storage 2023-05-13 15:16:12 +01:00
2fbb968297
Move gitea runner cache to bulk 2023-05-13 12:28:30 +01:00
5e0c2abace Update gitea/gitea Docker tag to v1.19.3
All checks were successful
/ terraform (push) Successful in 35s
/ ansible (push) Successful in 1m36s
2023-05-03 22:00:31 +01:00
2d1ec6577a
Update clickhouse config root element
All checks were successful
/ ansible (push) Successful in 2m2s
/ terraform (push) Successful in 1m14s
https://github.com/plausible/hosting/pull/65
2023-05-02 14:12:58 +01:00
d160d8f6b3
Run nextcloud update to 26.0.1
All checks were successful
/ terraform (push) Successful in 40s
/ ansible (push) Successful in 1m37s
2023-04-28 20:27:13 +01:00
831aa5ab04 Update matrixdotorg/synapse Docker tag to v1.82.0
All checks were successful
/ ansible (push) Successful in 1m31s
/ terraform (push) Successful in 39s
2023-04-28 20:09:39 +01:00
dcaae56c25 Update lscr.io/linuxserver/nextcloud Docker tag to v26.0.1
All checks were successful
/ terraform (push) Successful in 41s
/ ansible (push) Successful in 1m33s
2023-04-28 20:09:27 +01:00
972c790e7a Update vabene1111/recipes Docker tag to v1.4.9
All checks were successful
/ terraform (push) Successful in 38s
/ ansible (push) Successful in 1m43s
2023-04-28 19:59:37 +01:00
f6988af87c
Only store packages in backblaze
All checks were successful
/ terraform (push) Successful in 44s
/ ansible (push) Successful in 1m45s
Everything else is pretty small. And storing action logs there seems to break
2023-04-28 15:56:40 +01:00
621e521d4e Update gitea/gitea Docker tag to v1.19.2
Some checks failed
/ terraform (pull_request) Failing after 13m6s
/ ansible (pull_request) Failing after 13m57s
/ ansible (push) Successful in 1m31s
/ terraform (push) Failing after 14m34s
2023-04-28 08:00:26 +01:00
25863241da
Add backblaze storage for gitea
All checks were successful
/ terraform (push) Successful in 28s
/ ansible (push) Successful in 1m32s
Skip LFS, as repo data is easier to store on-disk
2023-04-27 21:12:57 +01:00
ddd6af21cf
Allow Traefik to use DNS-01 challenge to Gandi
All checks were successful
/ ansible (push) Successful in 2m55s
/ terraform (push) Successful in 33s
2023-04-23 20:26:37 +01:00
f14b16ec26
Monitor YOURLS 2023-04-23 20:24:55 +01:00
1fbb1ec668 Update gitea/gitea Docker tag to v1.19.1
All checks were successful
terraform
ansible
2023-04-13 08:00:30 +01:00
4cfebbc987 Update lscr.io/linuxserver/mastodon Docker tag to v4.1.2
All checks were successful
terraform
ansible
2023-04-10 13:36:26 +01:00
6c01cb2cf9 Update vaultwarden/server Docker tag to v1.28.1
All checks were successful
terraform
ansible
2023-04-10 13:36:01 +01:00
2c9ab7fd29 Update traefik Docker tag to v2.10
All checks were successful
terraform
ansible
2023-04-09 17:02:00 +01:00
f64fe53983
Add email config for gitea
All checks were successful
terraform
ansible
2023-04-07 17:32:00 +01:00
19c32996c2
Listen to X-Forwarded-* headers from everyone 2023-04-07 17:20:59 +01:00
f82078c4ae
Allow concurrent builds
All checks were successful
terraform
ansible
2023-04-07 16:20:00 +01:00
547e6dcbb1
Add Plausible to Gitea
Some checks failed
ansible
terraform
https://theorangeone.net/posts/plausible-gitea/
2023-04-07 11:29:12 +01:00
ae544a3a6b
Update URL for custom gitea branding 2023-04-07 11:28:52 +01:00
fcf0a373c3
Monitor gitea
Some checks failed
terraform
ansible
2023-04-06 20:31:57 +01:00
5a2311bd8a
Point renovate to gitea
All checks were successful
ansible
terraform
2023-03-30 23:12:17 +01:00
d52f0bc8b2
Remove gitlab configuration 2023-03-30 22:56:35 +01:00
4c443d67d1
Move website to gitlab.com
This means I can shut down my GitLab, without having to rewrite the CI quite yet
2023-03-30 22:43:14 +01:00
a78c4680c4
Move notes to GitLab
All checks were successful
ansible
terraform
2023-03-29 22:36:03 +01:00
72267db739
Update gitea actions default to GitHub
If I need my own, I'll define them
2023-03-29 22:35:50 +01:00
79bf1ea8f8
Update nextcloud to 26 2023-03-28 20:21:59 +01:00
e792aa1332 Merge branch 'renovate/vaultwarden-server-1.x' into 'master'
Update vaultwarden/server Docker tag to v1.28.0

See merge request sys/infrastructure!125
2023-03-28 19:59:28 +01:00
882f2707aa Update matrixdotorg/synapse Docker tag to v1.80.0 2023-03-28 14:00:53 +01:00
67f11e8134
Only log warning and above in gitea 2023-03-27 20:52:12 +01:00
3f4d48bdcc Update vaultwarden/server Docker tag to v1.28.0 2023-03-26 22:00:51 +01:00
0c9a2aab0a
Add custom branding to gitea 2023-03-26 20:52:54 +01:00
c0fd7ea3ac
Allow imports from local IPs
Namely from other git servers on my network
2023-03-26 14:47:30 +01:00
a6a6fd9e76
Deploy gitea's runner
Unofficial container, because there isn't an official one
2023-03-26 00:01:55 +00:00
23c2f7bcec
Scale down mastodon a bit more
Fewer web and sidekiq threads
2023-03-25 14:21:44 +00:00
d6bc1f3bf9
Run the media cleanup script as a user with access to the docker socket
Woops!
2023-03-25 13:37:45 +00:00
07ff8820e9
Enable gitea actions 2023-03-21 13:36:34 +00:00
64a0bd58b0 Update gitea/gitea Docker tag to v1.19.0 2023-03-20 10:01:32 +00:00
d1a7b9e9e0 Merge branch 'renovate/matrixdotorg-synapse-1.x' into 'master'
Update matrixdotorg/synapse Docker tag to v1.79.0

See merge request sys/infrastructure!117
2023-03-19 17:27:45 +00:00
7879e3f380 Merge branch 'renovate/vabene1111-recipes-1.x' into 'master'
Update vabene1111/recipes Docker tag to v1.4.8

See merge request sys/infrastructure!118
2023-03-19 17:27:01 +00:00
4f91976c72 Update lscr.io/linuxserver/mastodon Docker tag to v4.1.1 2023-03-17 08:00:47 +00:00
3634be6a31 Update vabene1111/recipes Docker tag to v1.4.8 2023-03-15 08:00:49 +00:00
577da22dab Update matrixdotorg/synapse Docker tag to v1.79.0 2023-03-14 18:00:45 +00:00
7db08defcb Update renovate/renovate Docker tag to v35 2023-03-10 14:02:08 +00:00
dd3930c12e Update matrixdotorg/synapse Docker tag to v1.78.0 2023-02-28 18:00:48 +00:00
2f3958b3e6
Reduce speedtest interval
I don't need it to run that often
2023-02-28 08:40:26 +00:00
d76ad472bc
Make sure git commands are run as the correct user 2023-02-23 21:50:34 +00:00
49c77c611c
Update nextcloud config file version, too 2023-02-23 21:43:28 +00:00
7882a5b035 Merge branch 'renovate/lscr.io-linuxserver-nextcloud-25.x' into 'master'
Update lscr.io/linuxserver/nextcloud Docker tag to v25.0.4

See merge request sys/infrastructure!112
2023-02-23 21:37:55 +00:00
92012a42e1
Remove authentik
It's a bigger application than I need, and I wasn't actually using it for anything anyway
2023-02-23 19:50:44 +00:00
316e7de07a Update lscr.io/linuxserver/nextcloud Docker tag to v25.0.4 2023-02-23 18:01:07 +00:00
b0cf6c2680 Merge branch 'renovate/gitea-gitea-1.x' into 'master'
Update gitea/gitea Docker tag to v1.18.5

See merge request sys/infrastructure!111
2023-02-23 17:52:01 +00:00
1764b66d2f
Update website hosting for it being fronted by nginx 2023-02-22 10:41:49 +00:00
9d57206263 Update gitea/gitea Docker tag to v1.18.5 2023-02-21 20:01:39 +00:00
030481b287 Merge branch 'renovate/matrixdotorg-synapse-1.x' into 'master'
Update matrixdotorg/synapse Docker tag to v1.77.0

See merge request sys/infrastructure!108
2023-02-20 08:34:30 +00:00
ba684d1002 Update gitea/gitea Docker tag to v1.18.4 2023-02-20 08:01:35 +00:00
11eb833f44
Add some prometheus alerts 2023-02-19 18:31:52 +00:00
4332989e6f Update matrixdotorg/synapse Docker tag to v1.77.0 2023-02-14 14:02:16 +00:00
ac86cfaab0 Merge branch 'renovate/matrixdotorg-synapse-1.x' into 'master'
Update matrixdotorg/synapse Docker tag to v1.76.0

See merge request sys/infrastructure!103
2023-02-13 08:48:54 +00:00
bfb7e41549 Merge branch 'renovate/wallabag-wallabag-2.x' into 'master'
Update wallabag/wallabag Docker tag to v2.5.4

See merge request sys/infrastructure!104
2023-02-13 08:47:24 +00:00
67568cf3b1 Merge branch 'renovate/vabene1111-recipes-1.x' into 'master'
Update vabene1111/recipes Docker tag to v1.4.7

See merge request sys/infrastructure!105
2023-02-13 08:46:35 +00:00
64c1f7b90e Update vabene1111/recipes Docker tag to v1.4.7 2023-02-12 22:01:39 +00:00
1655cd1e17 Update lscr.io/linuxserver/mastodon Docker tag to v4.1.0 2023-02-11 08:02:19 +00:00
af2d9e9e45 Update wallabag/wallabag Docker tag to v2.5.4 2023-02-07 22:01:41 +00:00
f2f9e194c5
Install node-exporter on pi-hole 2023-01-31 23:10:31 +00:00
e4fba8208e
Add speedtest exporter 2023-01-31 21:45:59 +00:00
d68175705c Update matrixdotorg/synapse Docker tag to v1.76.0 2023-01-31 18:02:16 +00:00
051b5b0e19
Add ICMP checks 2023-01-31 14:29:27 +00:00
ddc91059b5
Replace telegraf with prometheus exporters
Still missing SMART and ping, but those can come later.

Swapped as the polling model for prometheus doesn't play especially well with telegraf, and leads to gaps in data
2023-01-31 09:11:09 +00:00
0322291557
Use better DNS servers from quad9
Mostly using more
2023-01-30 20:15:44 +00:00
5017b3ad78
Add mastodon cleanup script 2023-01-29 19:46:47 +00:00
f063b09540
Enable gitea federation 2023-01-29 17:45:39 +00:00
360a250b4a Merge branch 'renovate/ghcr.io-goauthentik-server-2023.x' into 'master'
Update ghcr.io/goauthentik/server Docker tag to v2023.1.2

See merge request sys/infrastructure!100
2023-01-28 22:03:15 +00:00
c0b179c312 Merge branch 'renovate/gitea-gitea-1.x' into 'master'
Update gitea/gitea Docker tag to v1.18.3

See merge request sys/infrastructure!102
2023-01-28 22:02:58 +00:00
4fd3945c47
Add robots.txt for gitea 2023-01-28 15:32:34 +00:00
848c0f03e1 Update gitea/gitea Docker tag to v1.18.3 2023-01-27 18:01:57 +00:00
a443d56a1c
Add a gitea deployment
Yep, it's that time of year _again_
2023-01-27 17:28:45 +00:00
5e9c5f7683
Version pihole settings 2023-01-24 20:15:21 +00:00
66c900f76e Update ghcr.io/goauthentik/server Docker tag to v2023.1.2 2023-01-23 16:01:09 +00:00
7edf6899f3
Update nextcloud to 25.0.3 2023-01-19 22:43:09 +00:00
37af66e944 Merge branch 'renovate/matrixdotorg-synapse-1.x' into 'master'
Update matrixdotorg/synapse Docker tag to v1.75.0

See merge request sys/infrastructure!98
2023-01-19 22:28:59 +00:00
81d2194d5a Update ghcr.io/goauthentik/server Docker tag to v2023 2023-01-18 16:01:52 +00:00
23eccb6d73 Update matrixdotorg/synapse Docker tag to v1.75.0 2023-01-17 14:02:10 +00:00
ad50176ee9
Add internal alias to pihole 2023-01-08 18:36:03 +00:00
e8ac8b304e Merge branch 'renovate/matrixdotorg-synapse-1.x' into 'master'
Update matrixdotorg/synapse Docker tag to v1.74.0

See merge request sys/infrastructure!94
2023-01-06 09:00:01 +00:00
bd929f28e5 Update ghcr.io/goauthentik/server Docker tag to v2022.12.2 2023-01-05 10:01:45 +00:00
905f0f2b08 Update vaultwarden/server Docker tag to v1.27.0 2022-12-24 18:01:58 +00:00
49372f7c8e Update matrixdotorg/synapse Docker tag to v1.74.0 2022-12-20 18:02:55 +00:00
6d5570b0f2
Update YOURLS' mariadb to 10.10 2022-12-13 09:14:06 +00:00
b6705788e6
Update nextcloud's mariadb to 10.6
This is the latest it supports
2022-12-13 09:14:06 +00:00
167b8bd140
Keep GitLab backups for 2 weeks 2022-12-13 09:14:06 +00:00
7c168fd28c
Update plausible to 1.5
Update Clickhouse at the same time
2022-12-13 09:14:06 +00:00
6fc6366c33
Update nextcloud to 25.0.2 2022-12-13 09:14:06 +00:00
6c2c87e43e Merge branch 'renovate/ghcr.io-goauthentik-server-2022.x' into 'master'
Update ghcr.io/goauthentik/server Docker tag to v2022.11.3

See merge request sys/infrastructure!77
2022-12-13 08:55:08 +00:00
55764ada6c Merge branch 'renovate/matrixdotorg-synapse-1.x' into 'master'
Update matrixdotorg/synapse Docker tag to v1.73.0

See merge request sys/infrastructure!79
2022-12-13 08:54:50 +00:00
e86ed81102
Decommission decker server
It's been replaced by prometheus running internally, and uptimerobot checking.
2022-12-09 19:04:54 +00:00
f1c9e10d9a
Use IPv4 on blackbox
The docker networks they're running on are v4 only at the moment, so the DNS resolution passes by the connection fails.
2022-12-06 20:46:43 +00:00
2fb21223aa Update matrixdotorg/synapse Docker tag to v1.73.0 2022-12-06 14:01:43 +00:00
bb4361e25f
Use a blackbox with custom DNS rather than proxy
This makes timing information more relevant and should improve reliability
2022-12-06 10:04:23 +00:00
772cf7536a
Run prometheus stack as docker user 2022-12-05 21:17:23 +00:00
53c969f2b8
Make prometheus config files read only 2022-12-05 21:12:55 +00:00
3e5b00d176
Add alertmanager 2022-12-05 21:10:41 +00:00
60514d191a
Exclude python stats for HA 2022-12-05 20:36:57 +00:00
ed7faf4678
Scrape healthchecks.io with prometheus and use it for outbound monitoring of prometheus scrapes 2022-12-05 14:41:48 +00:00
8e3b381b8d
Remove unused prometheus network 2022-12-04 22:12:55 +00:00
75862dbaf9
Setup blackbox for some HTTP monitoring 2022-12-04 22:11:49 +00:00
9d4eceab29 Update ghcr.io/goauthentik/server Docker tag to v2022.11.3 2022-12-03 14:02:05 +00:00
e89f13b8a9
Add collabora 2022-12-02 22:37:42 +00:00
ebfe057658
Add support for public dashboards in Grafana 2022-12-01 13:48:36 +00:00
41a853db55
Define tmpfs for website /tmp
This is needed for imagemagick to function correctly without consuming all disk space on the system
2022-11-30 14:08:10 +00:00
d5c08bd493 Update redis Docker tag to v7 2022-11-21 16:02:19 +00:00
8f78f24ea8
Unpin redis minor version on website 2022-11-21 15:21:33 +00:00
8076c62198 Merge branch 'renovate/vabene1111-recipes-1.x' into 'master'
Update vabene1111/recipes Docker tag to v1.4.5

See merge request sys/infrastructure!90
2022-11-21 14:51:06 +00:00
c388e6bbe1
Add more nginx processes for mastodon 2022-11-20 23:21:09 +00:00
406d9dbf09
Reduce mastodon streaming threads and run 1 thread per core 2022-11-20 23:00:58 +00:00
9b69b419a7
Reduce sidekiq threads on GitLab 2022-11-20 23:00:33 +00:00
a51854f48c
Shuffle around cron jobs to run earlier at night 2022-11-20 22:52:00 +00:00
3ec359ed0e
Deploy me a mastodon 2022-11-18 09:12:28 +00:00
88e3eee059
Prune containers more regularly 2022-11-17 20:37:24 +00:00
a1a153977e
Only keep 2 package versions
3 is the default
2022-11-17 20:36:58 +00:00
c91b1ba871
Allow website to handle traffic to second domain 2022-11-16 14:56:17 +00:00
330e7e9305
Clear pacman cache 2022-11-14 09:04:53 +00:00
a8b8c88f27 Update vabene1111/recipes Docker tag to v1.4.5 2022-11-09 14:01:00 +00:00
77e83fec6d
Fix synapse-admin URL
It no longer supports being run on a subdirectory with the stock container
2022-11-07 13:57:14 +00:00
b513858893
Update nextcloud to 25.0.1 2022-11-07 09:03:40 +00:00
2bbd1c681b
Allow proxying to any ports
On the assumption they're HTTP, it's probably fine to route to anything. We're not trying to act as a firewall
2022-11-06 22:16:48 +00:00
b9283ec445
Set port for HTTP proxies 2022-11-06 21:55:05 +00:00
041f791b60
Add squid as a forwarding proxy so containers are exposed through a VPN
Implementation isn't perfect, but as `qbittorrent` already had an outbound VPN connection, it makes sense to just reuse it.
2022-11-06 18:26:09 +00:00
fc577f21b8
Update Traefik to 2.9 2022-11-01 20:50:30 +00:00
4c8d5ffe44
Remove all references to traefik pages 2022-11-01 20:30:16 +00:00
d81ed290d7
Put the new website live 2022-10-30 12:04:15 +00:00
08afdd951e
Add hosting for new website
Top sneaky
2022-10-29 18:09:30 +01:00
8dd1f6cddf
Add nextcloud email config 2022-10-26 14:23:08 +01:00
0d24bd7e0c
Use correct location for nextcloud config file 2022-10-26 14:10:26 +01:00