|
46eda36515
|
Fully block Server header
/ terraform (push) Successful in 31s
/ ansible (push) Successful in 1m46s
|
2023-12-16 21:57:19 +00:00 |
|
|
cfb498d7c6
|
Only add HTTPS redirect when it's needed
/ terraform (push) Successful in 1m3s
/ ansible (push) Successful in 2m7s
|
2023-12-16 18:13:49 +00:00 |
|
|
48efcf4d91
|
Use mainline nginx release on Arch
|
2023-12-16 18:03:01 +00:00 |
|
|
930cf87084
|
gzip as much as makes sense
|
2023-12-16 17:58:15 +00:00 |
|
|
92052a3d0a
|
Unify nginx configuration
This creates a simple base configuration skeleton, that other configuration can be easily loaded into.
|
2023-12-16 17:47:04 +00:00 |
|
|
943c141d59
|
Ensure ingress proxy doesn't terminate connections
/ terraform (push) Successful in 1m6s
/ ansible (push) Successful in 2m16s
This mostly works around a weird issues with Jellyfin
|
2023-12-14 22:08:02 +00:00 |
|
|
2ff2128330
|
Set pihole temp unit
|
2023-12-14 22:04:14 +00:00 |
|
|
b33e19e152
|
Remove unnecessary extra variable definitions
The world could do with a bit less YAML!
|
2023-12-14 22:03:23 +00:00 |
|
|
7ad5d6e51e
|
Deploy coredns as a proxy to Docker's internal DNS
|
2023-12-14 21:04:26 +00:00 |
|
|
7381c1f10a
|
Update nextcloud version in config.php
/ terraform (push) Successful in 27s
/ ansible (push) Successful in 1m41s
|
2023-12-13 17:48:46 +00:00 |
|
|
18fd0631e1
|
Update lscr.io/linuxserver/nextcloud Docker tag to v28
/ terraform (push) Successful in 29s
/ ansible (push) Successful in 1m37s
|
2023-12-13 17:38:40 +00:00 |
|
|
05eee3f4de
|
Update gitea/gitea Docker tag to v1.21.2
/ terraform (push) Successful in 31s
/ ansible (push) Has been cancelled
|
2023-12-13 17:37:11 +00:00 |
|
|
e0f7b47961
|
Update lscr.io/linuxserver/mastodon Docker tag to v4.2.3
/ terraform (push) Successful in 1m4s
/ ansible (push) Successful in 2m6s
|
2023-12-05 18:00:28 +00:00 |
|
|
c0df505f70
|
Disable browser updates for nextcloud
/ terraform (push) Successful in 27s
/ ansible (push) Successful in 1m36s
|
2023-12-04 09:39:14 +00:00 |
|
|
aecd7c0a18
|
Upgrade nextcloud version in config
|
2023-12-04 09:38:43 +00:00 |
|
|
b9c5c7ce01
|
Update lscr.io/linuxserver/nextcloud Docker tag to v27.1.4
/ terraform (push) Successful in 26s
/ ansible (push) Successful in 1m34s
|
2023-12-04 09:35:32 +00:00 |
|
|
e815fcb2be
|
Pin all redis versions to 7
/ terraform (push) Successful in 28s
/ ansible (push) Successful in 1m34s
Keeps them all in sync
|
2023-12-04 09:22:51 +00:00 |
|
|
85352014ab
|
Update matrixdotorg/synapse Docker tag to v1.97.0
/ terraform (push) Successful in 27s
/ ansible (push) Has been cancelled
|
2023-12-04 09:09:07 +00:00 |
|
|
01eb469ac8
|
Update vabene1111/recipes Docker tag to v1.5.10
/ terraform (push) Successful in 26s
/ ansible (push) Has been cancelled
|
2023-12-03 14:00:28 +00:00 |
|
|
461ec71b12
|
Update gitea branding path
/ terraform (push) Successful in 32s
/ ansible (push) Successful in 1m46s
|
2023-11-27 19:19:58 +00:00 |
|
|
2fe093668d
|
Update ghcr.io/goauthentik/server Docker tag to v2023.10.4
/ terraform (push) Successful in 26s
/ ansible (push) Successful in 1m36s
|
2023-11-27 08:37:21 +00:00 |
|
|
58c14c7f94
|
Update vaultwarden/server Docker tag to v1.30.1
/ terraform (push) Successful in 26s
/ ansible (push) Successful in 1m36s
|
2023-11-27 08:35:50 +00:00 |
|
|
d0a994198c
|
Update gitea/gitea Docker tag to v1.21.1
/ terraform (push) Successful in 1m4s
/ ansible (push) Successful in 2m7s
|
2023-11-26 18:00:27 +00:00 |
|
|
5e8918221f
|
Update gitea/gitea Docker tag to v1.21.0
/ terraform (push) Successful in 31s
/ ansible (push) Successful in 1m38s
|
2023-11-19 18:04:14 +00:00 |
|
|
0d970d276d
|
Update matrixdotorg/synapse Docker tag to v1.96.1
/ terraform (push) Successful in 31s
/ ansible (push) Successful in 1m37s
|
2023-11-19 17:59:53 +00:00 |
|
|
8666933bfb
|
Revert "Use OIDC to log in to tt-rss"
/ terraform (push) Successful in 1m5s
/ ansible (push) Successful in 2m11s
OIDC breaks any kind of API integration, which is very annoying
This reverts commit 66ddef96e2 .
|
2023-11-18 21:57:16 +00:00 |
|
|
3df1e1d46b
|
Update Nextcloud version in config.php
/ terraform (push) Successful in 24s
/ ansible (push) Successful in 1m41s
|
2023-11-13 18:22:42 +00:00 |
|
|
e3da2710a7
|
Update lscr.io/linuxserver/nextcloud Docker tag to v27.1.3
/ terraform (push) Successful in 28s
/ ansible (push) Successful in 1m39s
|
2023-11-13 18:22:06 +00:00 |
|
|
19febd9c35
|
Update matrixdotorg/synapse Docker tag to v1.95.1
/ terraform (push) Successful in 29s
/ ansible (push) Successful in 1m41s
|
2023-11-13 18:19:38 +00:00 |
|
|
f0c0b6d4b4
|
Update vaultwarden/server Docker tag to v1.30.0
/ terraform (push) Successful in 28s
/ ansible (push) Successful in 1m41s
|
2023-11-13 18:17:52 +00:00 |
|
|
a4958e619a
|
Update ghcr.io/goauthentik/server Docker tag to v2023.10.3
/ terraform (push) Successful in 28s
/ ansible (push) Successful in 1m45s
|
2023-11-13 18:15:28 +00:00 |
|
|
e4b2318c82
|
Monitor authentik
/ terraform (push) Successful in 37s
/ ansible (push) Successful in 1m42s
|
2023-11-12 21:25:02 +00:00 |
|
|
dfef31cbfa
|
Deploy minio
My own S3, for various things
|
2023-11-12 21:23:54 +00:00 |
|
|
38840402b9
|
Disable repo units I don't use by default
/ terraform (push) Successful in 31s
/ ansible (push) Successful in 1m41s
|
2023-11-12 18:28:01 +00:00 |
|
|
5f31a39804
|
Ensure Nextcloud can talk to local servers
/ terraform (push) Successful in 30s
/ ansible (push) Successful in 1m40s
Needed for Authentik
|
2023-11-08 19:51:16 +00:00 |
|
|
66ddef96e2
|
Use OIDC to log in to tt-rss
|
2023-11-08 19:46:16 +00:00 |
|
|
935b099c4f
|
Decommission upload
/ terraform (push) Successful in 30s
/ ansible (push) Successful in 1m38s
It was never really used for anything, and I want to replace it with something better eventually
|
2023-11-07 21:17:21 +00:00 |
|
|
dbbfe55975
|
Deploy authentik
_again_.
|
2023-11-07 21:17:21 +00:00 |
|
|
48dbaeed99
|
Deploy remark42
/ terraform (push) Successful in 29s
/ ansible (push) Successful in 1m43s
To soon replace Commento
|
2023-11-06 21:29:28 +00:00 |
|
|
5fb605231d
|
Allow pings to ingress
/ terraform (push) Successful in 33s
/ ansible (push) Successful in 1m50s
This makes testing connections much simpler
|
2023-11-05 21:48:25 +00:00 |
|
|
dd1558bafa
|
Set sensible permissions on nftables config
|
2023-11-05 21:43:16 +00:00 |
|
|
b0347fc037
|
Remove redundant quotes
|
2023-11-05 21:43:02 +00:00 |
|
|
f1ac40f432
|
Reduce pihole cache size
/ terraform (push) Successful in 1m9s
/ ansible (push) Failing after 2m11s
This is still a lot of records, and pihole complains with values any larger
|
2023-11-05 13:22:05 +00:00 |
|
|
850278ab19
|
Allow nebula through firewall
/ terraform (push) Successful in 1m6s
/ ansible (push) Failing after 2m8s
|
2023-11-03 18:06:36 +00:00 |
|
|
b1284877a3
|
Update blackbox configuration for not following redirects
/ terraform (push) Successful in 30s
/ ansible (push) Failing after 1m23s
|
2023-11-01 22:14:35 +00:00 |
|
|
6b4285a264
|
Let alertmanager run as its own user
It's already not-root, and can't access the filesystem anyway
|
2023-11-01 22:13:37 +00:00 |
|
|
3ed786336e
|
Remove wireguard_53
/ terraform (push) Successful in 34s
/ ansible (push) Failing after 1m25s
I never used it - no reason to maintain it
|
2023-10-26 21:50:22 +01:00 |
|
|
9f83efa53b
|
Use nftables for firewall on ingress
See ya never, iptables!
|
2023-10-26 21:34:06 +01:00 |
|
|
54e2205e48
|
Don't bother renaming speedtest metrics
/ terraform (push) Successful in 32s
/ ansible (push) Failing after 1m20s
|
2023-10-23 22:09:25 +01:00 |
|
|
c29dfb5ad2
|
Add hostname label for blackbox
/ terraform (push) Successful in 37s
/ ansible (push) Failing after 1m22s
|
2023-10-23 21:06:43 +01:00 |
|
|
2bd22cb2f6
|
Update lscr.io/linuxserver/nextcloud Docker tag to v27.1.2
/ terraform (push) Successful in 35s
/ ansible (push) Successful in 1m51s
|
2023-10-15 21:36:02 +01:00 |
|
|
a1d92ef080
|
Update lscr.io/linuxserver/mastodon Docker tag to v4.2.1
/ ansible (push) Successful in 2m4s
/ terraform (push) Successful in 34s
|
2023-10-15 21:35:23 +01:00 |
|
|
70ad33189c
|
Update gitea/gitea Docker tag to v1.20.5
/ ansible (push) Successful in 2m13s
/ terraform (push) Successful in 28s
|
2023-10-15 21:34:29 +01:00 |
|
|
92914303ad
|
Update matrixdotorg/synapse Docker tag to v1.94.0
/ terraform (push) Successful in 46s
/ ansible (push) Successful in 2m21s
|
2023-10-15 21:33:22 +01:00 |
|
|
a1a61f1069
|
Update wallabag/wallabag Docker tag to v2.6.7
/ terraform (push) Successful in 30s
/ ansible (push) Successful in 2m6s
|
2023-10-15 21:32:01 +01:00 |
|
|
4950082c28
|
Remove deprecated gitea config settings
/ terraform (push) Successful in 1m13s
/ ansible (push) Successful in 2m20s
|
2023-10-15 21:27:23 +01:00 |
|
|
ad867f9654
|
Add JWT secret for gitea
This appeared in my config - it's probably important
|
2023-10-15 18:55:24 +01:00 |
|
|
ad3b5bc42d
|
Move repo archive to "files" subvolume
It's better suited for this kind of file storage
|
2023-10-15 18:53:30 +01:00 |
|
|
37b8c48a77
|
Remove legacy short domains
/ terraform (push) Successful in 1m24s
/ ansible (push) Successful in 2m47s
I never used them, and the certificate renewal didn't work anyway.
|
2023-10-02 09:37:05 +01:00 |
|
|
54c88d4253
|
Fix lint issues
/ terraform (push) Successful in 42s
/ ansible (push) Successful in 1m56s
|
2023-10-01 17:10:37 +01:00 |
|
|
5770ab4a59
|
Sync dokku data to tank
This is much easier than mounting the files themselves
|
2023-10-01 17:06:09 +01:00 |
|
|
a54a91ea44
|
Deploy a dokku
|
2023-10-01 16:34:01 +01:00 |
|
|
b02be4e77a
|
Add email to Vikunja
/ terraform (push) Successful in 1m26s
/ ansible (push) Failing after 2m48s
|
2023-10-01 14:08:25 +01:00 |
|
|
12c46e50b5
|
Decommission grimes
/ terraform (push) Successful in 41s
/ ansible (push) Successful in 2m10s
Dokku will return, soon...
|
2023-09-29 21:42:05 +01:00 |
|
|
90c9164306
|
Update renovate/renovate Docker tag to v37
/ terraform (push) Successful in 42s
/ ansible (push) Successful in 1m56s
|
2023-09-27 16:00:37 +01:00 |
|
|
a1285612f1
|
Increase pihole cache
/ terraform (push) Failing after 2m46s
/ ansible (push) Successful in 3m45s
|
2023-09-24 13:45:40 +01:00 |
|
|
1801a21e5d
|
Update nextcloud config to 27.1.1
/ terraform (push) Successful in 50s
/ ansible (push) Successful in 2m7s
|
2023-09-23 21:51:15 +01:00 |
|
|
60d6be41ab
|
Update lscr.io/linuxserver/nextcloud Docker tag to v27.1.1
/ terraform (push) Successful in 52s
/ ansible (push) Successful in 2m8s
|
2023-09-23 21:42:32 +01:00 |
|
|
5c247013fb
|
Update lscr.io/linuxserver/mastodon Docker tag to v4.2.0
/ terraform (push) Successful in 55s
/ ansible (push) Successful in 2m9s
|
2023-09-23 21:40:04 +01:00 |
|
|
ea33feb643
|
Update matrixdotorg/synapse Docker tag to v1.92.3
/ terraform (push) Successful in 1m35s
/ ansible (push) Successful in 2m44s
|
2023-09-23 13:57:28 +01:00 |
|
|
7de73287fd
|
Move spotify proxy alongside website
/ ansible (push) Successful in 2m25s
/ terraform (push) Successful in 1m3s
That's all it's really used for right now.
|
2023-09-21 14:20:54 +01:00 |
|
|
27da7a7494
|
Fix occ command
/ terraform (push) Successful in 57s
/ ansible (push) Successful in 2m16s
|
2023-09-18 19:21:42 +01:00 |
|
|
0789abaa0b
|
Update nextcloud config version
|
2023-09-18 18:49:04 +01:00 |
|
|
c2989aad5c
|
Update lscr.io/linuxserver/nextcloud Docker tag to v27.1.0
/ terraform (push) Successful in 1m2s
/ ansible (push) Successful in 2m8s
|
2023-09-18 18:35:09 +01:00 |
|
|
61088d18f6
|
Update matrixdotorg/synapse Docker tag to v1.92.2
/ terraform (push) Successful in 1m49s
/ ansible (push) Successful in 3m7s
|
2023-09-15 16:00:30 +01:00 |
|
|
5419e173d5
|
Update matrixdotorg/synapse Docker tag to v1.91.2
/ terraform (push) Successful in 47s
/ ansible (push) Successful in 2m19s
|
2023-09-10 21:02:18 +01:00 |
|
|
d9a50cce64
|
Update lscr.io/linuxserver/mastodon Docker tag to v4.1.7
/ terraform (push) Successful in 47s
/ ansible (push) Successful in 2m29s
|
2023-09-10 21:01:50 +01:00 |
|
|
2303f7b247
|
Update wallabag/wallabag Docker tag to v2.6.6
/ terraform (push) Successful in 56s
/ ansible (push) Successful in 2m46s
|
2023-09-10 21:00:55 +01:00 |
|
|
3deda7bde7
|
Update gitea/gitea Docker tag to v1.20.4
/ terraform (push) Successful in 1m27s
/ ansible (push) Successful in 3m28s
|
2023-09-08 10:00:33 +01:00 |
|
|
e56ffa576f
|
Deploy vikunja
/ terraform (push) Successful in 1m2s
/ ansible (push) Successful in 2m32s
|
2023-09-07 20:18:32 +01:00 |
|
|
d16feb2f89
|
Override DNS for vaultwarden
/ terraform (push) Successful in 46s
/ ansible (push) Successful in 2m13s
Make sure it finds icons for local applications
|
2023-09-07 18:04:03 +01:00 |
|
|
bdf48295a6
|
Update matrixdotorg/synapse Docker tag to v1.91.0
/ terraform (push) Successful in 50s
/ ansible (push) Successful in 2m20s
|
2023-09-03 21:17:27 +01:00 |
|
|
9644a09021
|
Update vabene1111/recipes Docker tag to v1.5.6
/ terraform (push) Successful in 46s
/ ansible (push) Successful in 2m11s
|
2023-09-03 21:09:24 +01:00 |
|
|
d120274b00
|
Update vaultwarden/server Docker tag to v1.29.2
/ terraform (push) Successful in 1m29s
/ ansible (push) Successful in 2m56s
|
2023-09-03 21:06:33 +01:00 |
|
|
5a0df92a6a
|
Disable ip_forward
/ terraform (push) Successful in 1m4s
/ ansible (push) Successful in 2m20s
I don't need P2P comms for this, so disable this for extra security.
I should add a proper firewall at some point...
|
2023-09-01 19:52:36 +01:00 |
|
|
ccadc7fbfa
|
Migrate wallabag to postgres
/ terraform (push) Successful in 1m20s
/ ansible (push) Successful in 2m36s
|
2023-08-28 19:10:37 +01:00 |
|
|
2b75b526ac
|
Update nextcloud version in config
|
2023-08-28 17:53:29 +01:00 |
|
|
16be8dd87c
|
Disable registration on wallabag
The documented default is wrong
|
2023-08-28 17:51:58 +01:00 |
|
|
33b7921067
|
Update lscr.io/linuxserver/nextcloud Docker tag to v27.0.2
|
2023-08-28 17:15:41 +01:00 |
|
|
8208845738
|
Update vabene1111/recipes Docker tag to v1.5.5
/ terraform (push) Successful in 1m5s
/ ansible (push) Successful in 2m41s
|
2023-08-28 16:53:56 +01:00 |
|
|
444fa61436
|
Update wallabag/wallabag Docker tag to v2.6.5
/ ansible (push) Successful in 2m53s
/ terraform (push) Successful in 3m1s
|
2023-08-28 10:00:28 +01:00 |
|
|
283bb3f11f
|
Update gitea/gitea Docker tag to v1.20.3
/ terraform (push) Successful in 42s
/ ansible (push) Successful in 1m58s
|
2023-08-20 22:00:28 +01:00 |
|
|
266601d6f5
|
Vaguely harden vaultwarden config
/ terraform (push) Successful in 45s
/ ansible (push) Successful in 2m8s
|
2023-08-16 22:03:22 +01:00 |
|
|
1b24578fe6
|
Update plausible/analytics Docker tag to v2
/ terraform (push) Successful in 41s
/ ansible (push) Successful in 1m50s
|
2023-08-05 16:25:55 +01:00 |
|
|
82281c6307
|
Decommission BG
/ ansible (push) Successful in 1m52s
/ terraform (push) Successful in 46s
|
2023-08-01 21:49:20 +01:00 |
|
|
ce53032819
|
Fix nextcloud config dir
/ terraform (push) Failing after 5s
/ ansible (push) Failing after 5s
|
2023-08-01 21:19:35 +01:00 |
|
|
b499882ca7
|
Update Nextcloud to 27.0.1
|
2023-08-01 21:18:50 +01:00 |
|
|
6d8d65a136
|
Update gitea/gitea Docker tag to v1.20.2
/ terraform (push) Failing after 5s
/ ansible (push) Failing after 5s
|
2023-08-01 14:36:12 +01:00 |
|
|
e5a246d24a
|
Update vaultwarden/server Docker tag to v1.29.1
/ terraform (push) Failing after 5s
/ ansible (push) Failing after 5s
|
2023-08-01 14:34:54 +01:00 |
|
|
65f54326f3
|
Update wallabag/wallabag Docker tag to v2.6.2
/ terraform (push) Failing after 5s
/ ansible (push) Failing after 4s
|
2023-08-01 14:32:46 +01:00 |
|