systems/infrastructure
1
Fork 0
Code Issues 1 Pull Requests 13 Actions Activity
525 Commits 14 Branches 0 Tags 2.8 MiB
361a78e8e0
Commit Graph

461 Commits

Author SHA1 Message Date
Jake Howard
dd12b795b5
Remove pihole 
Internal VPN server is working just perfectly instead
 2020-06-24 18:46:13 +01:00
Jake Howard
7d61282d19
Set depends_on where needed 2020-06-24 18:35:20 +01:00
Jake Howard
7a3643f3c2
Persist mirror caches outside container 2020-06-24 18:21:14 +01:00
Jake Howard
c771e425fb
Replace ansible with system installed version 
Similar to a572868b8f
 2020-06-24 17:14:25 +01:00
Jake Howard
df54decc99
Mirror dotfiles repo 2020-06-24 16:47:31 +01:00
Jake Howard
82a3c85263
Install git-mirror container 
This also moves the canonical home of this repo to my gitea instance!
 2020-06-24 16:27:13 +01:00
Jake Howard
5f9b337c7a
Update gitea 2020-06-24 14:26:12 +01:00
Jake Howard
2ab8928985
Update nextcloud base 2020-06-24 14:26:05 +01:00
Jake Howard
319c96512e
Change default theme to original 
Black and green looks odd
 2020-06-22 21:03:08 +01:00
Jake Howard
913ee4759f
Quote value to silence errors 2020-06-18 21:18:47 +01:00
Jake Howard
9ba9593127
Remove debug log level for deluge 2020-06-18 20:50:04 +01:00
Jake Howard
f878866f10
Update yamllint 2020-06-18 20:49:12 +01:00
Jake Howard
9f59b30f1e
Update synapse 2020-06-18 20:34:23 +01:00
Jake Howard
7f62ed43d4
Update gitea to 1.12 2020-06-18 20:33:09 +01:00
Jake Howard
c09b46aac0
Stop moving into ansible/ before running things 
Makes life easier
 2020-06-15 13:21:52 +01:00
Jake Howard
4d13e3c78f
Move requirements files into ansible dir 2020-06-15 13:11:44 +01:00
Jake Howard
624d1b5425
Set HSTS header for nextcloud 2020-06-13 21:14:23 +01:00
Jake Howard
ca188ab1b4
Rename middleware 
It's not actually applying a HSTS header
 2020-06-13 21:09:48 +01:00
Jake Howard
d7b6abaf58
Update to nextcloud 19 2020-06-13 21:06:33 +01:00
Jake Howard
a22f555878
Unpin the versions of things I don't care about too much 
If they update and break, it's not the end of the world, however unlikely it may be
 2020-06-13 19:38:42 +01:00
Jake Howard
a3d19eba94
Update synapse 2020-06-13 19:27:53 +01:00
Jake Howard
cfee50159a
Remove netdata from grimes 
`htop` works just fine for that machine
 2020-06-11 19:30:48 +01:00
Jake Howard
3969b23cd0
Keep using fancy index 
Repairs breaking change from 0f036dd6d7
 2020-06-11 19:24:53 +01:00
Jake Howard
e1ae11e388
Update quassel base 2020-06-10 13:54:18 +01:00
Jake Howard
26aba92483
DIal back emby update 
Apparently that was a pre-release
 2020-06-10 13:53:47 +01:00
Jake Howard
e54ec1312c
Replace onlyoffice with collabora 2020-06-07 21:09:02 +01:00
Jake Howard
0724ae9238
Update redis 2020-06-07 15:09:20 +01:00
Jake Howard
61a50435c9
Update emby 2020-06-05 19:11:49 +01:00
Jake Howard
fa41b09d83
Update deluge base 2020-06-05 17:36:09 +01:00
Jake Howard
15720fded8
Update quassel base 2020-06-05 17:35:56 +01:00
Jake Howard
1f9ea561df
Update calibre 2020-06-05 17:35:37 +01:00
Jake Howard
0a13b8e34d
Update nextcloud base 2020-05-31 13:30:37 +01:00
Jake Howard
d41d1b0d6c
Update gitea 2020-05-31 13:26:47 +01:00
Jake Howard
605ae4f8b8
Make sure media is owned correctly 2020-05-30 15:35:55 +01:00
Jake Howard
e5d77f23fd
Update deluge base 2020-05-29 15:37:49 +01:00
Jake Howard
249045e4cd
Update synapse 2020-05-29 15:37:39 +01:00
Jake Howard
cd076b871c
Update duplicati base 2020-05-29 15:36:40 +01:00
Jake Howard
f59c625058
Move nextcloud DB to SSD 
Speeeeeeeeed
 2020-05-28 20:20:33 +01:00
Jake Howard
28cdaefb05
Update nextcloud base 2020-05-27 16:17:32 +01:00
Jake Howard
adc7611242
Only bind duplicati to wireguard interface 2020-05-25 17:38:26 +01:00
Jake Howard
986fc50fde
Set hostname for duplicati so it's picked up correctly in the UI 
This shouldn't have any negative impact. Hopefully...
 2020-05-25 17:32:44 +01:00
Jake Howard
851f750948
Move duplicati to its own role so it can be installed on grimes 2020-05-25 17:25:58 +01:00
Jake Howard
b45d399734
Mount entire host inside duplicati 2020-05-25 17:01:29 +01:00
Jake Howard
7dd31c0556
Allow nextcloud to be reached over internal SSL 
This removes the need for a custom config, and means traefik is proxying HTTP2, which is nice
 2020-05-24 19:21:17 +01:00
Jake Howard
eac381a90a
Decrease resource limit on FaH 
It's getting hot
 2020-05-24 18:37:57 +01:00
Jake Howard
d2269de4ad
Claenup docker util scripts 2020-05-23 18:25:00 +01:00
Jake Howard
ceca641e2f
Remove deprecated options 2020-05-23 11:47:31 +01:00
Jake Howard
c92f924faa
Harden host key 2020-05-23 11:45:53 +01:00
Jake Howard
2fe6cf7c93
Install mobile key 2020-05-23 11:23:45 +01:00
Jake Howard
20d5020f6b
Manually use file lookup so the terminal output looks nicer 2020-05-23 11:18:48 +01:00
Jake Howard
09418cffb0
Provision SSH keys with ansible now 2020-05-23 11:04:50 +01:00
Jake Howard
7e534e52e1
Merge SSH into base role 2020-05-23 10:58:09 +01:00
Jake Howard
991535ca85
Add phone to VPN network 2020-05-23 10:49:18 +01:00
Jake Howard
16881048e2
Update duplicati 2020-05-23 10:35:59 +01:00
Jake Howard
892ac4e950
Update synapse 2020-05-22 22:34:37 +01:00
Jake Howard
cd255f7ca2
Remove docker-rclone-mount 
Seems there's some issues where having this attached which makes the duplicati container delete all its RO mounts.
 2020-05-22 21:09:40 +01:00
Jake Howard
7fbfbbb699
Ansiblize rclone mounts configs 2020-05-22 12:04:43 +01:00
Jake Howard
251d52f1de
Add rclone mounts 2020-05-22 11:47:45 +01:00
Jake Howard
9b9af7e90d
Set nextcloud trusted proxy to docker host IP 2020-05-21 18:11:51 +01:00
Jake Howard
fc7b57eab9
Modify some things and cleanup gitea config 2020-05-21 17:58:38 +01:00
Jake Howard
1c8d80e12d
Revert "Add a redis cache to gitea" 
This reverts commit c0c396f008.

Causes weird stability issues as the process received sig 15 and
restarts, which is strange!
 2020-05-21 12:03:45 +01:00
Jake Howard
6d51b570a1
Revert "Revert "Remove ansible_host definition"" 
This reverts commit 2a39292b85.

Reverted the wrong commit. Derp!
 2020-05-21 12:03:22 +01:00
Jake Howard
2a39292b85
Revert "Remove ansible_host definition" 
This reverts commit e93dbf2ecf.

Causes weird stability issues as the process received sig 15 and
restarts, which is strange!
 2020-05-19 22:06:04 +01:00
Jake Howard
c0c396f008
Add a redis cache to gitea 2020-05-19 21:49:09 +01:00
Jake Howard
e93dbf2ecf
Remove ansible_host definition 
No idea why it was there, too much noise!
 2020-05-18 17:12:21 +01:00
Jake Howard
85e7714f2e
Rename galaxy requirements 2020-05-18 16:46:18 +01:00
Jake Howard
b9e6e8801e
Mount a directory for restore testing 
And for actual restores, should the time come...
 2020-05-18 12:08:10 +01:00
Jake Howard
9850f73a17
Deploy web-rng 
https://github.com/RealOrangeOne/web-rng
 2020-05-17 18:04:44 +01:00
Jake Howard
323a3db478
Auto detect python executable 
Causes weird issues with the compose integration
 2020-05-17 18:03:57 +01:00
Jake Howard
1d56db2109
Ensure python3 is always used 2020-05-16 16:16:23 +01:00
Jake Howard
600bc4bb58
Ensure sysctl change is persisted 
See note in https://wiki.archlinux.org/index.php/Sysctl#Configuration
 2020-05-16 16:15:58 +01:00
Jake Howard
f207b2eedd
Update quassel base 2020-05-14 14:16:19 +01:00
Jake Howard
1a51624f5f
Update nextcloud base 2020-05-14 14:16:11 +01:00
Jake Howard
98f478a1ca
Update pihole to v5 2020-05-14 14:15:36 +01:00
Jake Howard
825b7926af
Update duplicati base 2020-05-14 14:15:28 +01:00
Jake Howard
851c6b167c
Remove yourls 
Mariadb update broke it, but I never use it anyway.
 2020-05-14 13:54:59 +01:00
Jake Howard
6f7f7aae94
Remove TOR proxy 
Wasn't actually using it, proxying through `grimes`
 2020-05-12 20:43:19 +01:00
Jake Howard
112e8ce985
Install some wireguard tools 2020-05-11 11:59:46 +01:00
Jake Howard
93e5ce5bac
Reduce polling interval slightly so things update quicker 2020-05-10 22:20:03 +01:00
Jake Howard
eb65e8808d
Update gitea 2020-05-10 19:38:00 +01:00
Jake Howard
40cf931f14
Update deluge base 2020-05-10 19:37:48 +01:00
Jake Howard
8f32d74095
Update gotify 2020-05-10 19:29:36 +01:00
Jake Howard
2d655a3da0
Remove unnecessary strings 2020-05-10 19:23:41 +01:00
Jake Howard
d693240eb4
Just hardcode to bash 
I'm not resetting my login shell again!
 2020-05-10 19:19:42 +01:00
Jake Howard
f156bd6860
Use which to get path to bash 2020-05-09 21:06:03 +01:00
Jake Howard
59868fc331
Install git on all hosts 2020-05-09 21:03:43 +01:00
Jake Howard
52ae01d29f
Add user to docker group 2020-05-09 20:48:46 +01:00
Jake Howard
59a721b243
Create user 2020-05-09 20:47:41 +01:00
Jake Howard
5289206f14
Remove unnecessary quotes 2020-05-09 20:11:08 +01:00
Jake Howard
1f0e33acc8
Remove fail2ban 
Keeps getting hit by stats. I should fix that at some point
 2020-05-09 20:09:36 +01:00
Jake Howard
f3126e34b9
Update haproxy config for use on arch 2020-05-09 20:08:27 +01:00
Jake Howard
059cb585db
Use OS-agnostic package install for haproxy 2020-05-09 20:08:14 +01:00
Jake Howard
095c8c4562
Use sysctl to enable p2p comms 2020-05-09 20:07:19 +01:00
Jake Howard
f6214f1495
Replace nginx with static server 2020-05-09 17:14:16 +01:00
Jake Howard
bb5e489f8c
Remove the explicit enable of TLS in Traefik 
Much cleaner config!
 2020-05-08 22:16:24 +01:00
Jake Howard
19fc0c0957
Add shorter URLs for upload 2020-05-08 21:45:27 +01:00
Jake Howard
2f523075ae
Add upload server 2020-05-08 21:27:32 +01:00
Jake Howard
2618f38c52
Update nextcloud base 2020-05-06 16:28:19 +01:00
Jake Howard
f511f0d604
Alllow librespeed to be accessed over home network 2020-05-06 16:18:47 +01:00
Jake Howard
56ebe2ad01
Use basic-auth to protect librespeed rather than whitelist 2020-05-06 16:11:29 +01:00
Jake Howard
aad14a4ceb
Update calibre 2020-05-05 22:30:03 +01:00
Jake Howard
5db68b7658
Update quassel base 2020-05-05 22:29:57 +01:00
Jake Howard
54ec7f2332
Add a basic SOCKS proxy 2020-05-05 21:55:14 +01:00
Jake Howard
bc545b742a
Redirect 0rng.one to website 2020-05-01 21:26:48 +01:00
Jake Howard
ae7ee2dd81
Update deluge base 2020-04-30 21:57:10 +01:00
Jake Howard
59e5a13cd0
Update nextcloud base 2020-04-30 21:53:34 +01:00
Jake Howard
0256570f1c
Update traefik 2020-04-30 21:50:18 +01:00
Jake Howard
ceeba55a83
Migrate from emby to jellyfin 2020-04-30 21:45:03 +01:00
Jake Howard
974e0e8467
Enable services 
Not just during reload
 2020-04-28 20:48:15 +01:00
Jake Howard
61136f69af
Update quassel base 2020-04-28 20:45:10 +01:00
Jake Howard
bd8e41a1aa
Update gotify 2020-04-28 20:45:02 +01:00
Jake Howard
68a684c7f6
Set gitea SSH domain to alias 2020-04-28 20:31:29 +01:00
Jake Howard
957d4d7b69
Only use a single domain for YOURLS 2020-04-26 16:33:05 +01:00
Jake Howard
bfce9e1cbf
Host statping outside home 2020-04-26 15:37:28 +01:00
Jake Howard
7c6abc33fe
Host website outside home 2020-04-26 14:26:48 +01:00
Jake Howard
36ed622a26
Make the docker host role block more exhaustive 2020-04-26 14:00:17 +01:00
Jake Howard
92c85904bd
Rename role for intersect docker applications 2020-04-26 13:56:26 +01:00
Jake Howard
05c7690b83
Make grimes a docker host 2020-04-26 13:44:06 +01:00
Jake Howard
50cb5a56fc
OpenSSH is called something different on Arch 2020-04-26 12:16:18 +01:00
Jake Howard
0bd4b5f5fd
Provision a new VPS 2020-04-26 12:15:52 +01:00
Jake Howard
ea45f6833c
Always provision SSH 2020-04-26 12:06:11 +01:00
Jake Howard
051ec43769
wg-quick can't be reloaed 
This might break things!
 2020-04-26 12:05:45 +01:00
Jake Howard
4aa5a7d5a8
Use package so it's OS agnostic 2020-04-26 11:25:01 +01:00
Jake Howard
3e523bd04b
Remove traefik subdomain 2020-04-25 12:15:28 +01:00
Jake Howard
6695e60f8e
Update nextcloud 2020-04-24 22:12:49 +01:00
Jake Howard
6a862f9fb3
Always restart watchtower 2020-04-24 21:38:00 +01:00
Jake Howard
2ddde6c129
Fix task names of new roles 2020-04-23 21:54:04 +01:00
Jake Howard
5585fb0b12
Convert watchtower into its own role 2020-04-23 21:51:01 +01:00
Jake Howard
81ef4ad67a
Rename base role to common 2020-04-23 21:38:16 +01:00
Jake Howard
b11ca7fe21
Convert netdata into its own role 2020-04-23 21:32:18 +01:00
Jake Howard
975ba9a2ed
Remove netdata domain 2020-04-23 21:16:48 +01:00
Jake Howard
89ba23719c
Move traefik into its own role 2020-04-23 20:49:43 +01:00
Jake Howard
9962d9103f
Extract docker cleanup stuff into its own role 2020-04-23 20:17:54 +01:00
Jake Howard
7a296c63a2
Update YOURLS 2020-04-23 17:31:43 +01:00
Jake Howard
eba4b8226f
Update synapse 2020-04-23 17:31:21 +01:00
Jake Howard
221bdf62ef
update quassel base 2020-04-23 17:31:11 +01:00
Jake Howard
7113802df7
Update nextcloud base 2020-04-23 17:31:03 +01:00
Jake Howard
303283f73e
Remove portainer 2020-04-19 21:42:57 +01:00
Jake Howard
d87b91d5aa
Update some LSIO container bases 2020-04-18 22:53:15 +01:00
Jake Howard
ff8beea3c4
Massively increase timeouts to prevent websocket issues 2020-04-17 23:04:20 +01:00
Jake Howard
d2ca5a51be
Revert "Update statping and move to new container" 
This reverts commit 880054eb2d.

Statping 0.90 is buggy AF, see https://github.com/statping/statping/issues/456
 2020-04-17 22:10:40 +01:00
Jake Howard
1da3ca95e7
Stop using unstable repos to install wireguard 
It's in backports now, which is much easier to install from!
 2020-04-17 09:08:10 +01:00
Jake Howard
880054eb2d
Update statping and move to new container 2020-04-15 21:17:01 +01:00
Jake Howard
853dfbf9a1
Update nextcloud base 2020-04-15 18:26:06 +01:00
Jake Howard
be15714cca
Update quassel base 2020-04-13 19:37:16 +01:00
Jake Howard
4f5a99263f
Remove cgit landing pages 
I can use an org to make the URLs in gitea slightly nicer, which will do for now
 2020-04-11 17:37:05 +01:00
Jake Howard
17f5aa921b
Sort items in main.yml 2020-04-11 17:23:28 +01:00
Jake Howard
df017b3ee6
Add a server-side analytics page 2020-04-10 12:33:51 +01:00
Jake Howard
8185ad979d
Update deluge base 2020-04-10 11:35:54 +01:00
Jake Howard
d0c36adba8
Self host my website 🎉 2020-04-10 11:31:01 +01:00
Jake Howard
92d33a0fa7
Update emby 2020-04-09 08:45:09 +01:00
Jake Howard
30e47836fa
Update nextcloud 2020-04-09 08:43:42 +01:00
Jake Howard
c634b87991
Expose MC server 
It's just a local temp config for now, i'll do something proper later
 2020-04-07 18:43:40 +01:00
Jake Howard
9de6c4a515
Update quassel base 2020-04-06 19:44:39 +01:00
Jake Howard
091fd9045b
Update emby base 2020-04-04 22:35:39 +01:00
Jake Howard
0e79f4a7ba
Fuck isolation! 2020-04-04 11:41:41 +01:00
Jake Howard
0ef3901ee6
Update emby 2020-04-04 11:16:57 +01:00
Jake Howard
7b0cc0893d
Add shorter domain for whoami container 2020-04-03 23:59:07 +01:00
Jake Howard
7322adc52a
Remove py3 suffix 
It's all python3
 2020-04-03 11:29:42 +01:00
Jake Howard
94a62ba724
Update synapse 2020-04-03 11:26:56 +01:00
Jake Howard
be068a774a
Add my user to dockeruser group 
Makes debugging things so much easier!
 2020-04-02 09:05:32 +01:00
Jake Howard
f7f417b780
Update gitea 2020-04-01 19:54:25 +01:00
Jake Howard
d91746ebeb
Update nextcloud base 2020-04-01 19:46:00 +01:00
Jake Howard
f32e0bfe59
Only add timeout for core HTTP ports 2020-03-31 19:27:47 +01:00
Jake Howard
335992c9e9
Restore custom middleware implementation. 
This redirect doesn't work correctly, let's revert to our custom one for
now. It does exactly the same thing, anyway
 2020-03-31 14:53:00 +01:00
Jake Howard
079e58e67b
Add some automated postgres backups 2020-03-30 21:40:04 +01:00
Jake Howard
10991def1e
Run the prune without prompt, and hard remove images 2020-03-30 18:23:11 +01:00
Jake Howard
d1e814f097
Prune the system daily rather than weekly 2020-03-30 18:19:24 +01:00
Jake Howard
2f17d2a9ff
Update quassel base 2020-03-30 18:07:22 +01:00
Jake Howard
0e330066ba
Update emby base 2020-03-30 18:07:13 +01:00
Jake Howard
8fe288549f
Update traefik to 2.2.0 
This removes my custom hack for redirecting users to HTTPS
 2020-03-30 17:59:02 +01:00
Jake Howard
7c5968c39a
Update emby 2020-03-28 15:39:42 +00:00
Jake Howard
4199423815
Update deluge base 2020-03-28 11:31:14 +00:00
Jake Howard
ca3ed14973
Add automated DB backups for nextcloud 
Will roll this out to everything else someday too!
 2020-03-27 17:50:47 +00:00
Jake Howard
55eca663a9
Replace f@h container with lsio one 
Also move configuration into web UI, just because it's easier
 2020-03-27 17:23:07 +00:00
Jake Howard
1afc28ec17
Standardize string quotes in yaml 2020-03-25 21:27:15 +00:00
Jake Howard
35bd63d12b
Add pv to handy tools 2020-03-25 20:52:41 +00:00
Jake Howard
65e15c9f6c
Run watchtower more frequently 
This makes autodeployment like tasks much easier
 2020-03-25 20:41:15 +00:00
Jake Howard
fdaf037b96
Update nextcloud base 2020-03-25 16:27:20 +00:00
Jake Howard
5eb7e2feb8
Update nextcloud to 18.0.3 2020-03-25 08:50:03 +00:00
Jake Howard
d15c27d109
Bump quassel base 2020-03-23 20:19:10 +00:00
Jake Howard
3cb2542982
Update synapse 2020-03-23 18:29:24 +00:00
Jake Howard
95c3e46783
Setup shorter yourls domain 2020-03-20 22:29:43 +00:00
Jake Howard
ef083badc1
Use shiney new domain for git hosting 2020-03-20 22:21:02 +00:00
Jake Howard
5938f7fca6
Remove statping from internal DNS 
This *hammers* pihole and massively inflates the metrics. Remove for now until there's a sane way to fix it
 2020-03-19 19:16:04 +00:00
Jake Howard
02293459e1
Localise queries 
Doesn't do anything yet, but it might some day...
 2020-03-19 19:14:45 +00:00
Jake Howard
45ae2be523
Update nextcloud container base 2020-03-18 21:49:20 +00:00
Jake Howard
5f79109195
Convert nextcloud db to postgres 2020-03-18 21:35:17 +00:00
Jake Howard
7eda50239c
Remove reference to become_user: root 
This was the default anyway
 2020-03-17 21:11:02 +00:00
Jake Howard
236757b4c0
Update emby container base 2020-03-17 20:42:09 +00:00
Jake Howard
24686f8cb3
Merge custom dnsmasq config into pihole 2020-03-17 20:29:40 +00:00
Jake Howard
8093bcbcbb
Just use the autogenerated one 
It's _fine_.
 2020-03-17 18:38:47 +00:00
Jake Howard
717391334e
Use a short pihole password so it actually works 2020-03-17 18:10:06 +00:00
Jake Howard
69a6da95b9
Add pihole to internal DNS record 2020-03-16 20:13:07 +00:00
Jake Howard
359efe72b4
Install pihole 
Eventially it'll replace dnsmasq, but not today
 2020-03-16 13:44:24 +00:00
Jake Howard
aa05b675f4
Kinda install ctop 2020-03-15 16:39:40 +00:00
Jake Howard
cdcfcf3c66
Increase fail2ban threshold 2020-03-15 15:02:57 +00:00
Jake Howard
a0dd40847e
Install wallabag 
It's sqlite, for now
 2020-03-15 14:34:28 +00:00
Jake Howard
4210013039
Update deluge base container 2020-03-15 12:07:48 +00:00
Jake Howard
8a5267bc61
Update librespeed 2020-03-15 12:05:17 +00:00