94b229abd0
Use Tailscale's DERP servers
...
/ terraform (push) Successful in 41s
/ ansible (push) Successful in 1m30s
Close another port, and hopefully get a little more reliability in weird network configurations
2024-09-22 16:21:21 +01:00
d5a7a61171
Remove unnecessary use of become
from some roles
...
/ terraform (push) Successful in 38s
/ ansible (push) Successful in 1m30s
This should make execution much faster
2024-09-09 17:09:03 +01:00
47efe411da
Disable headscale OIDC
...
/ terraform (push) Successful in 39s
/ ansible (push) Successful in 1m32s
For now, I'm fine using the terminal. Might bring this back later, hence only commented out.
2024-08-25 16:48:21 +01:00
ffbba254fb
Remove redundant quotes
2024-04-21 18:11:57 +01:00
7c8d224c4a
Add headscale ACLs
...
/ ansible (push) Failing after 39s
/ terraform (push) Failing after 46s
Tags are managed entirely server side, so there's no priv esc issues.
This lets my devices do what they want, and server style devices can't do anything.
2024-04-20 15:46:21 +01:00
0dcc3f7c30
Use regular version of nginx on Arch
...
/ terraform (push) Successful in 30s
/ ansible (push) Successful in 1m30s
`nginx-mainline` requires modules be recompiled each time, and isn't handled automatically. It's still a very new and maintained release.
2024-02-29 19:46:32 +00:00
8a1e21c79d
Ensure headscale sees the correct IP
/ terraform (push) Successful in 49s
/ ansible (push) Successful in 1m48s
2024-02-29 17:41:29 +00:00
29cac09b48
Remove explicit port for headscale
2024-02-01 18:32:53 +00:00
0c6528f9ca
Restrict access to headscale OIDC and API
/ terraform (push) Successful in 29s
/ ansible (push) Successful in 1m33s
2024-01-31 21:40:43 +00:00
53c758a781
Monitor headscale with prometheus
/ terraform (push) Successful in 29s
/ ansible (push) Successful in 1m38s
2024-01-27 17:40:02 +00:00
2ceeaf091d
Deploy headscale
/ terraform (push) Failing after 11m20s
/ ansible (push) Failing after 11m6s
2024-01-27 14:18:37 +00:00