Commit graph

1356 commits

Author SHA1 Message Date
cd255f7ca2
Remove docker-rclone-mount
Seems there's some issues where having this attached which makes the duplicati container delete all its RO mounts.
2020-05-22 21:09:40 +01:00
7fbfbbb699
Ansiblize rclone mounts configs 2020-05-22 12:04:43 +01:00
251d52f1de
Add rclone mounts 2020-05-22 11:47:45 +01:00
9b9af7e90d
Set nextcloud trusted proxy to docker host IP 2020-05-21 18:11:51 +01:00
fc7b57eab9
Modify some things and cleanup gitea config 2020-05-21 17:58:38 +01:00
1c8d80e12d
Revert "Add a redis cache to gitea"
This reverts commit c0c396f008.

Causes weird stability issues as the process received sig 15 and
restarts, which is strange!
2020-05-21 12:03:45 +01:00
6d51b570a1
Revert "Revert "Remove ansible_host definition""
This reverts commit 2a39292b85.

Reverted the wrong commit. Derp!
2020-05-21 12:03:22 +01:00
2a39292b85
Revert "Remove ansible_host definition"
This reverts commit e93dbf2ecf.

Causes weird stability issues as the process received sig 15 and
restarts, which is strange!
2020-05-19 22:06:04 +01:00
c0c396f008
Add a redis cache to gitea 2020-05-19 21:49:09 +01:00
e93dbf2ecf
Remove ansible_host definition
No idea why it was there, too much noise!
2020-05-18 17:12:21 +01:00
85e7714f2e
Rename galaxy requirements 2020-05-18 16:46:18 +01:00
b9e6e8801e
Mount a directory for restore testing
And for actual restores, should the time come...
2020-05-18 12:08:10 +01:00
9850f73a17
Deploy web-rng
https://github.com/RealOrangeOne/web-rng
2020-05-17 18:04:44 +01:00
323a3db478
Auto detect python executable
Causes weird issues with the compose integration
2020-05-17 18:03:57 +01:00
1d56db2109
Ensure python3 is always used 2020-05-16 16:16:23 +01:00
600bc4bb58
Ensure sysctl change is persisted
See note in https://wiki.archlinux.org/index.php/Sysctl#Configuration
2020-05-16 16:15:58 +01:00
f207b2eedd
Update quassel base 2020-05-14 14:16:19 +01:00
1a51624f5f
Update nextcloud base 2020-05-14 14:16:11 +01:00
98f478a1ca
Update pihole to v5 2020-05-14 14:15:36 +01:00
825b7926af
Update duplicati base 2020-05-14 14:15:28 +01:00
851c6b167c
Remove yourls
Mariadb update broke it, but I never use it anyway.
2020-05-14 13:54:59 +01:00
6f7f7aae94
Remove TOR proxy
Wasn't actually using it, proxying through `grimes`
2020-05-12 20:43:19 +01:00
112e8ce985
Install some wireguard tools 2020-05-11 11:59:46 +01:00
93e5ce5bac
Reduce polling interval slightly so things update quicker 2020-05-10 22:20:03 +01:00
eb65e8808d
Update gitea 2020-05-10 19:38:00 +01:00
40cf931f14
Update deluge base 2020-05-10 19:37:48 +01:00
8f32d74095
Update gotify 2020-05-10 19:29:36 +01:00
2d655a3da0
Remove unnecessary strings 2020-05-10 19:23:41 +01:00
d693240eb4
Just hardcode to bash
I'm not resetting my login shell again!
2020-05-10 19:19:42 +01:00
f156bd6860
Use which to get path to bash 2020-05-09 21:06:03 +01:00
59868fc331
Install git on all hosts 2020-05-09 21:03:43 +01:00
52ae01d29f
Add user to docker group 2020-05-09 20:48:46 +01:00
59a721b243
Create user 2020-05-09 20:47:41 +01:00
5289206f14
Remove unnecessary quotes 2020-05-09 20:11:08 +01:00
1f0e33acc8
Remove fail2ban
Keeps getting hit by stats. I should fix that at some point
2020-05-09 20:09:36 +01:00
f3126e34b9
Update haproxy config for use on arch 2020-05-09 20:08:27 +01:00
059cb585db
Use OS-agnostic package install for haproxy 2020-05-09 20:08:14 +01:00
095c8c4562
Use sysctl to enable p2p comms 2020-05-09 20:07:19 +01:00
f6214f1495
Replace nginx with static server 2020-05-09 17:14:16 +01:00
bb5e489f8c
Remove the explicit enable of TLS in Traefik
Much cleaner config!
2020-05-08 22:16:24 +01:00
19fc0c0957
Add shorter URLs for upload 2020-05-08 21:45:27 +01:00
2f523075ae
Add upload server 2020-05-08 21:27:32 +01:00
2618f38c52
Update nextcloud base 2020-05-06 16:28:19 +01:00
f511f0d604
Alllow librespeed to be accessed over home network 2020-05-06 16:18:47 +01:00
56ebe2ad01
Use basic-auth to protect librespeed rather than whitelist 2020-05-06 16:11:29 +01:00
aad14a4ceb
Update calibre 2020-05-05 22:30:03 +01:00
5db68b7658
Update quassel base 2020-05-05 22:29:57 +01:00
54ec7f2332
Add a basic SOCKS proxy 2020-05-05 21:55:14 +01:00
bc545b742a
Redirect 0rng.one to website 2020-05-01 21:26:48 +01:00
ae7ee2dd81
Update deluge base 2020-04-30 21:57:10 +01:00
59e5a13cd0
Update nextcloud base 2020-04-30 21:53:34 +01:00
0256570f1c
Update traefik 2020-04-30 21:50:18 +01:00
ceeba55a83
Migrate from emby to jellyfin 2020-04-30 21:45:03 +01:00
974e0e8467
Enable services
Not just during reload
2020-04-28 20:48:15 +01:00
61136f69af
Update quassel base 2020-04-28 20:45:10 +01:00
bd8e41a1aa
Update gotify 2020-04-28 20:45:02 +01:00
68a684c7f6
Set gitea SSH domain to alias 2020-04-28 20:31:29 +01:00
957d4d7b69
Only use a single domain for YOURLS 2020-04-26 16:33:05 +01:00
bfce9e1cbf
Host statping outside home 2020-04-26 15:37:28 +01:00
7c6abc33fe
Host website outside home 2020-04-26 14:26:48 +01:00
36ed622a26
Make the docker host role block more exhaustive 2020-04-26 14:00:17 +01:00
92c85904bd
Rename role for intersect docker applications 2020-04-26 13:56:26 +01:00
05c7690b83
Make grimes a docker host 2020-04-26 13:44:06 +01:00
50cb5a56fc
OpenSSH is called something different on Arch 2020-04-26 12:16:18 +01:00
0bd4b5f5fd
Provision a new VPS 2020-04-26 12:15:52 +01:00
ea45f6833c
Always provision SSH 2020-04-26 12:06:11 +01:00
051ec43769
wg-quick can't be reloaed
This might break things!
2020-04-26 12:05:45 +01:00
4aa5a7d5a8
Use package so it's OS agnostic 2020-04-26 11:25:01 +01:00
3e523bd04b
Remove traefik subdomain 2020-04-25 12:15:28 +01:00
6695e60f8e
Update nextcloud 2020-04-24 22:12:49 +01:00
6a862f9fb3
Always restart watchtower 2020-04-24 21:38:00 +01:00
2ddde6c129
Fix task names of new roles 2020-04-23 21:54:04 +01:00
5585fb0b12
Convert watchtower into its own role 2020-04-23 21:51:01 +01:00
81ef4ad67a
Rename base role to common 2020-04-23 21:38:16 +01:00
b11ca7fe21
Convert netdata into its own role 2020-04-23 21:32:18 +01:00
975ba9a2ed
Remove netdata domain 2020-04-23 21:16:48 +01:00
89ba23719c
Move traefik into its own role 2020-04-23 20:49:43 +01:00
9962d9103f
Extract docker cleanup stuff into its own role 2020-04-23 20:17:54 +01:00
7a296c63a2
Update YOURLS 2020-04-23 17:31:43 +01:00
eba4b8226f
Update synapse 2020-04-23 17:31:21 +01:00
221bdf62ef
update quassel base 2020-04-23 17:31:11 +01:00
7113802df7
Update nextcloud base 2020-04-23 17:31:03 +01:00
303283f73e
Remove portainer 2020-04-19 21:42:57 +01:00
d87b91d5aa
Update some LSIO container bases 2020-04-18 22:53:15 +01:00
ff8beea3c4
Massively increase timeouts to prevent websocket issues 2020-04-17 23:04:20 +01:00
d2ca5a51be
Revert "Update statping and move to new container"
This reverts commit 880054eb2d.

Statping 0.90 is buggy AF, see https://github.com/statping/statping/issues/456
2020-04-17 22:10:40 +01:00
1da3ca95e7
Stop using unstable repos to install wireguard
It's in backports now, which is much easier to install from!
2020-04-17 09:08:10 +01:00
880054eb2d
Update statping and move to new container 2020-04-15 21:17:01 +01:00
853dfbf9a1
Update nextcloud base 2020-04-15 18:26:06 +01:00
be15714cca
Update quassel base 2020-04-13 19:37:16 +01:00
4f5a99263f
Remove cgit landing pages
I can use an org to make the URLs in gitea slightly nicer, which will do for now
2020-04-11 17:37:05 +01:00
17f5aa921b
Sort items in main.yml 2020-04-11 17:23:28 +01:00
df017b3ee6
Add a server-side analytics page 2020-04-10 12:33:51 +01:00
8185ad979d
Update deluge base 2020-04-10 11:35:54 +01:00
d0c36adba8
Self host my website 🎉 2020-04-10 11:31:01 +01:00
92d33a0fa7
Update emby 2020-04-09 08:45:09 +01:00
30e47836fa
Update nextcloud 2020-04-09 08:43:42 +01:00
c634b87991
Expose MC server
It's just a local temp config for now, i'll do something proper later
2020-04-07 18:43:40 +01:00
9de6c4a515
Update quassel base 2020-04-06 19:44:39 +01:00
091fd9045b
Update emby base 2020-04-04 22:35:39 +01:00
0e79f4a7ba
Fuck isolation! 2020-04-04 11:41:41 +01:00
0ef3901ee6
Update emby 2020-04-04 11:16:57 +01:00
7b0cc0893d
Add shorter domain for whoami container 2020-04-03 23:59:07 +01:00
7322adc52a
Remove py3 suffix
It's all python3
2020-04-03 11:29:42 +01:00
94a62ba724
Update synapse 2020-04-03 11:26:56 +01:00
be068a774a
Add my user to dockeruser group
Makes debugging things so much easier!
2020-04-02 09:05:32 +01:00
f7f417b780
Update gitea 2020-04-01 19:54:25 +01:00
d91746ebeb
Update nextcloud base 2020-04-01 19:46:00 +01:00
f32e0bfe59
Only add timeout for core HTTP ports 2020-03-31 19:27:47 +01:00
335992c9e9
Restore custom middleware implementation.
This redirect doesn't work correctly, let's revert to our custom one for
now. It does exactly the same thing, anyway
2020-03-31 14:53:00 +01:00
079e58e67b
Add some automated postgres backups 2020-03-30 21:40:04 +01:00
10991def1e
Run the prune without prompt, and hard remove images 2020-03-30 18:23:11 +01:00
d1e814f097
Prune the system daily rather than weekly 2020-03-30 18:19:24 +01:00
2f17d2a9ff
Update quassel base 2020-03-30 18:07:22 +01:00
0e330066ba
Update emby base 2020-03-30 18:07:13 +01:00
8fe288549f
Update traefik to 2.2.0
This removes my custom hack for redirecting users to HTTPS
2020-03-30 17:59:02 +01:00
7c5968c39a
Update emby 2020-03-28 15:39:42 +00:00
4199423815
Update deluge base 2020-03-28 11:31:14 +00:00
ca3ed14973
Add automated DB backups for nextcloud
Will roll this out to everything else someday too!
2020-03-27 17:50:47 +00:00
55eca663a9
Replace f@h container with lsio one
Also move configuration into web UI, just because it's easier
2020-03-27 17:23:07 +00:00
1afc28ec17
Standardize string quotes in yaml 2020-03-25 21:27:15 +00:00
35bd63d12b
Add pv to handy tools 2020-03-25 20:52:41 +00:00
65e15c9f6c
Run watchtower more frequently
This makes autodeployment like tasks much easier
2020-03-25 20:41:15 +00:00
fdaf037b96
Update nextcloud base 2020-03-25 16:27:20 +00:00
5eb7e2feb8
Update nextcloud to 18.0.3 2020-03-25 08:50:03 +00:00
d15c27d109
Bump quassel base 2020-03-23 20:19:10 +00:00
3cb2542982
Update synapse 2020-03-23 18:29:24 +00:00
95c3e46783
Setup shorter yourls domain 2020-03-20 22:29:43 +00:00
ef083badc1
Use shiney new domain for git hosting 2020-03-20 22:21:02 +00:00
5938f7fca6
Remove statping from internal DNS
This *hammers* pihole and massively inflates the metrics. Remove for now until there's a sane way to fix it
2020-03-19 19:16:04 +00:00
02293459e1
Localise queries
Doesn't do anything yet, but it might some day...
2020-03-19 19:14:45 +00:00
45ae2be523
Update nextcloud container base 2020-03-18 21:49:20 +00:00
5f79109195
Convert nextcloud db to postgres 2020-03-18 21:35:17 +00:00
7eda50239c
Remove reference to become_user: root
This was the default anyway
2020-03-17 21:11:02 +00:00
236757b4c0
Update emby container base 2020-03-17 20:42:09 +00:00
24686f8cb3
Merge custom dnsmasq config into pihole 2020-03-17 20:29:40 +00:00
8093bcbcbb
Just use the autogenerated one
It's _fine_.
2020-03-17 18:38:47 +00:00
717391334e
Use a short pihole password so it actually works 2020-03-17 18:10:06 +00:00
69a6da95b9
Add pihole to internal DNS record 2020-03-16 20:13:07 +00:00
359efe72b4
Install pihole
Eventially it'll replace dnsmasq, but not today
2020-03-16 13:44:24 +00:00
aa05b675f4
Kinda install ctop 2020-03-15 16:39:40 +00:00
cdcfcf3c66
Increase fail2ban threshold 2020-03-15 15:02:57 +00:00
a0dd40847e
Install wallabag
It's sqlite, for now
2020-03-15 14:34:28 +00:00
4210013039
Update deluge base container 2020-03-15 12:07:48 +00:00
8a5267bc61
Update librespeed 2020-03-15 12:05:17 +00:00
1f78e2eb2c
Update nextcloud to 18.0.2 2020-03-15 12:00:38 +00:00
b3e307f147
Move config into nextcloud directory 2020-03-15 11:51:23 +00:00
871555532d
Stop passing through the entire config directory
This makes updates so much easier!
2020-03-15 11:45:55 +00:00
708250005a
Install fail2ban 2020-03-13 23:08:26 +00:00
92af315e69
Change haproxy timeouts 2020-03-13 22:26:30 +00:00
1c1bdc3cbd
Update gitea 2020-03-11 21:24:33 +00:00
16acfb1f11
Update nextcloud container base 2020-03-11 21:24:27 +00:00
47c0b65dfe
Add some helper synapse cleanup scripts 2020-03-10 20:08:46 +00:00
16e01c4a10
Update synapse to 1.11.1 2020-03-10 19:03:01 +00:00
31497155ee
Replace lsio mariadb container with official 2020-03-10 13:27:43 +00:00
88af6f6da9
update quassel base 2020-03-10 08:56:40 +00:00
c7bd4fc413
Reduce retention policy 2020-03-09 13:42:00 +00:00
f9bae27e4e
Update gitea 2020-03-08 20:07:28 +00:00
ac70fceca5
Convert all compose files to v2 2020-03-08 18:12:20 +00:00
6f1258232c
Install statping 2020-03-08 16:41:13 +00:00
dd956450dc
Start folding 2020-03-08 15:13:44 +00:00
b8e866058f
Update nextcloud container base 2020-03-06 08:54:16 +00:00
242f6f07c9
Update traefik 2020-03-03 13:15:16 +00:00
bb9408a39e
Update quassel base 2020-03-03 13:10:58 +00:00
000ceea198
Update emby container base 2020-03-03 13:07:59 +00:00
99a2472be8
Update nextcloud container 2020-03-03 13:04:19 +00:00
fa929cbca5
Install ntp from galaxy 2020-03-02 19:45:16 +00:00
85f6f59970
Use ansible galaxy to install docker 2020-03-02 19:37:11 +00:00
20c4e049c6
Provision wireguard keys for too-work 2020-02-28 16:16:31 +00:00
d1100485c0
Update emby container to fix issues with multiple processes running
Or at least, I think this fixed it
2020-02-24 21:52:36 +00:00
238bc2acff
Update calibre 2020-02-24 08:51:03 +00:00
23d41a90b6
Fix *all* the linting errors in synapse config 2020-02-22 21:46:37 +00:00
61b6dc5c7b
Trim newlines in ttrss config 2020-02-22 21:02:54 +00:00
5d804828bb
Cleanup nextcloud config 2020-02-22 20:51:49 +00:00
63aa3a7216
Drive part of ansible context from terraform 2020-02-21 21:51:16 +00:00
45946741d5
Update synapse 2020-02-21 09:25:00 +00:00
2ab3803030
Update gotify 2020-02-21 09:24:55 +00:00
b82381a5fe
Update nextcloud container 2020-02-21 09:20:36 +00:00
f978acdae4
Update deluge 2020-02-21 09:17:58 +00:00
b8ca1a8996
Update quassel 2020-02-18 08:59:09 +00:00
d290f2f68f
Use cgit as a simple frontend to gitea 2020-02-17 21:46:50 +00:00
be3a571d2c
Update mariadb container 2020-02-17 13:03:39 +00:00
88884a0f3a
Update config.php to match what's actually installed 2020-02-17 13:03:18 +00:00
11260d5a08
Upgrade nextcloud container 2020-02-17 12:52:10 +00:00
a95b36169c
Update gitea 2020-02-17 09:39:48 +00:00
c558346f70
Install and configure duplicati 2020-02-14 21:26:15 +00:00
3b30054958
Add helper script to access Nextcloud's occ cli 2020-02-14 09:27:44 +00:00
8325af9f6c
Update gitea to 1.11 2020-02-14 08:58:14 +00:00
0391f032c8
Upgrade quassel and deluge 2020-02-10 09:28:34 +00:00
42c565c368
Setup retention policy
Hopefully this puts a bit more of a handle on DB size
2020-02-10 09:15:19 +00:00
81d2be3b74
Install todoist-github 2020-02-09 15:48:22 +00:00
4c92e2df3b
Add nextcloud config
Damn this needs cleaning up at some point!
2020-02-09 15:21:48 +00:00
c264a707c3
Add synapse config 2020-02-09 14:15:46 +00:00
0da675db1c
Add quassel config 2020-02-09 13:19:45 +00:00
77fe92a7e7
Add torrent (deluge) config 2020-02-09 13:06:10 +00:00
81cccea858
Enable gzip and check for updates 2020-02-09 12:51:39 +00:00
1dbc7ea2c7
Drop some unnecessary comments
Reducing the amount of PHP in my infrastructure repo is a good thing!
2020-02-09 12:48:27 +00:00
ac12da5c02
Add tt-rss 2020-02-09 12:43:38 +00:00
92ff9cf787
Provision VPN config for laptop 2020-02-07 21:09:54 +00:00
253453ba16
Reload wireguard rather than restarting
Hopefully this stops it dropping connections
2020-02-07 21:09:41 +00:00
5027e77534
Have yourls redirect root to admin page
I keep forgetting this is a thing and thinking it's broken
2020-02-07 13:57:03 +00:00
94da91db8e
Install yourls 2020-02-07 13:49:13 +00:00
32d4e108f9
Update librespeed 2020-02-07 09:04:13 +00:00
b66ef84289
Explicitly pin portainer to latest tag 2020-02-07 09:04:06 +00:00
9c6f9dc288
Update gitea 2020-02-07 09:01:06 +00:00
eed3031170
Install gitea 2020-02-07 08:57:48 +00:00
c184936114
Upgrade traefik
This is the first upgrade of a container through this repo, and it worked perfectly! 🎉
2020-02-07 08:40:04 +00:00
e6a659e4cb
Add calibre compose file 2020-02-05 20:37:01 +00:00
e0b8b7961a
Add space in comment 2020-02-02 22:30:48 +00:00
7f1be920d6
Add some docker util scripts 2020-02-02 22:20:17 +00:00
035ff0ac24
Add traefik config 2020-02-02 21:10:29 +00:00
a42c1a4182
Read PUID from variable 2020-02-02 20:28:08 +00:00
8a14b09ce8
Install gotify 2020-02-02 20:22:23 +00:00
9a770df6dc
Fix NTP permissions 2020-02-02 20:19:51 +00:00
1414357ad7
Install librespeed 2020-01-30 13:43:28 +00:00
cdc7209013
Add emby docker compose files 2020-01-30 13:35:10 +00:00
78d860bfcb
Setup a cron job to cleanup docker containers 2020-01-30 13:27:10 +00:00
11e49eb76e
Add whoami 2020-01-30 13:20:31 +00:00
31462f85ee
Validate compose files 2020-01-28 22:17:12 +00:00
a9a27d617b
Add internal dns container 2020-01-28 22:15:14 +00:00
d1e5f63efd
Add portainer compose file 2020-01-28 22:02:02 +00:00
c3959d43c6
Install watchtower
Also move file masks to config so they're consistent
2020-01-28 21:55:53 +00:00
3142ba75c6
Add netdata docker-compose file 2020-01-28 21:50:29 +00:00
01ce422e11
FIx name of task to add docker apt key 2020-01-28 21:49:29 +00:00
9d8e7cbc9c
Setup and install docker 2020-01-28 21:32:29 +00:00
d61cb64c7e
Harden SSH config 2020-01-28 21:04:26 +00:00
0dbeb64710
Add recommend key exchange 2020-01-28 20:56:07 +00:00
14b7b6d2ef
Internalise SSH config and make it generic to all hosts 2020-01-28 20:39:42 +00:00
eb796ce1f9
Set timezone as root 2020-01-28 20:03:20 +00:00
879a5571ca
Add home server 2020-01-28 20:02:35 +00:00
5cb378fae1
Connect to machines over VPN 2020-01-28 19:33:16 +00:00
b8a5a4cb72
Remove password authentication 2020-01-26 18:49:02 +00:00
0d95311176
Add VPN config for bartowski
Hey look, no leaked keys this time!
2020-01-26 18:35:00 +00:00
b4bb3f01f2
Convert haproxy config to use spaces 2020-01-26 18:17:55 +00:00
ac5a9aa0f0
Remove SSL block from haproxy config 2020-01-26 18:15:19 +00:00
03b3bd5ddb
Disable login as root 2020-01-26 18:10:07 +00:00
af936990e2
Add custom DNS server 2020-01-23 20:06:45 +00:00
ec478c3cf5
Fix client config 2020-01-19 17:59:36 +00:00
4de7939902
Re-provision big-mike VPN 2020-01-19 17:59:25 +00:00
7eaf608e3c
Revoke exposed wireguard keys
Derp derp derp
2020-01-19 17:41:34 +00:00
35605ce0a6
Move wireguard clients configuration to home dir
Makes it easier to provision machines
2020-01-19 17:33:14 +00:00
9ba8dab836
Provision wireguard config for work laptop 2020-01-19 17:22:53 +00:00
251fe11113
Output wireguard client config files 2020-01-19 16:43:51 +00:00
f6ffb1ceef
Template haproxy better 2020-01-17 22:56:45 +00:00
78fa36f20a
Move variables to 1 place
Much easier to manage
2020-01-17 22:31:50 +00:00
0d142e455f
Add ansibe confgi file 2020-01-17 20:38:45 +00:00
aaee2b443d
Add base packages 2019-12-09 20:55:47 +00:00
d0d2d6668e
Install NTP 2019-12-08 21:17:30 +00:00
23a472f764
Add wireguard server config 2019-12-08 21:05:20 +00:00
730246e67f
Install wireguard server 2019-12-08 20:16:42 +00:00
7713820e51 Fix typo 2019-12-08 19:27:54 +00:00
58a3683355 Define haproxy config 2019-12-08 16:47:28 +00:00
f8ecd8bf78 Ensure SSH is installed 2019-12-08 16:03:13 +00:00
db68581f19 Simplify hosts file 2019-12-08 15:57:48 +00:00
b0277c2f46 COnfigure SSH bastion 2019-12-08 15:55:19 +00:00
ce54cf1f4c Init ansible workflow 2019-12-08 11:58:43 +00:00