Commit graph

285 commits

Author SHA1 Message Date
Stefan Bethke 7a0935cecf Make sure anacron is installed 2024-08-11 21:08:57 +02:00
Stefan Bethke 343a67e0e7 Add auto-update
* for all hosts, use debops.unattended_upgrades
* for docker compose, install a cron job pulling new images and restarting affected containers
2024-08-11 20:49:21 +02:00
June 09cbe7340f
public-reverse-proxy: add config for design.hamburg.ccc.de 2024-08-11 00:59:47 +02:00
June fe752495ae
id: allow z9 ipv6 range to access admin interface 2024-08-05 23:32:58 +02:00
christian c111c6950a
Remove zigbee2mqtt form z9/hosts.yaml
we migrated the zigbee2mqtt in to our home assistant
2024-07-31 20:01:23 +02:00
June 70a27ec79c
light: use new combined cert and make server reachable over v6
The server being reachable over v6 is needed for the new method of
getting the cert directly via http challenge over v6.
2024-07-30 00:14:09 +02:00
christian a23c152d8e
nextcloud: configure maintenance window start time
See: https://docs.nextcloud.com/server/28/admin_manual/configuration_server/background_jobs_configuration.html#maintenance-window-start
2024-07-29 21:42:48 +02:00
christian 6ad42219c0
Pull nextcloud image from our own image registry 2024-07-29 20:23:17 +02:00
christian f8ac16f65b
Use our Keycloak custom image
We build our custom Keycloak image with our own theme located at https://git.hamburg.ccc.de/CCCHH/oci-images
2024-07-27 01:32:33 +02:00
Stefan Bethke ea713aa162 Allow members of intern to issue invites 2024-07-23 21:23:11 +02:00
Stefan Bethke cbb0842539 Add missing parameters 2024-07-16 09:24:46 +02:00
Stefan Bethke 4f5da885ea Add missing params 2024-07-15 18:52:48 +02:00
Stefan Bethke 94f65f8fe7 Add invite to Keycloak 2024-07-15 12:37:36 +02:00
June a990c96eb1
Upgrade to Keycloak 25 and move to new config options
https://www.keycloak.org/docs/latest/upgrading/index.html#new-hostname-options
https://www.keycloak.org/docs/latest/upgrading/index.html#deprecated-proxy-option
2024-07-15 01:40:07 +02:00
Stefan Bethke ad8d27cd6a Take base wordpress from image 2024-07-04 11:21:46 -04:00
June 1e25ebf1e9
Add reverse proxy config for woodpecker.hamburg.ccc.de 2024-06-22 02:11:14 +02:00
June 647c2fc005
Also ensure NGINX repo and install before apt update for nextcloud_hosts
Do that because the nextcloud role uses NGINX via the nginx role
internally as well, but nextcloud_hosts aren't necessarily in the
nginx_hosts group then.
2024-06-18 01:37:41 +02:00
June 11bbf187c6
Ensure NGINX repo and install before apt update, so that it works
Ensure NGINX repo and install on nginx_hosts before apt update, so that
the latest NGINX key is deployed and apt update won't fail on an invalid
signature on these hosts.
Also only run the gnupg install if gnupg isn't present in the nginx
repo_setup.yaml to make that work.
2024-06-18 01:14:00 +02:00
June fb4aabc772
Add reverse proxy config for hacker.tours and staging.hacker.tours 2024-06-17 22:16:49 +02:00
Stefan Bethke f67483fa46 Add lists.c3lingo.org 2024-06-16 16:39:19 +02:00
June ec400ed7d6
Use new IP for eh22-wiki host 2024-06-13 22:30:29 +02:00
christian abcf25359e
Decommissioning mqtt in ansible 2024-06-12 21:43:46 +02:00
Stefan Bethke 097ddff0a7 Enable expiry 2024-06-04 18:06:58 +02:00
Stefan Bethke 5b5a954547 Adjust networks for successful email submission 2024-05-25 12:36:27 +02:00
Stefan Bethke 7ede6272b7 Workaround for broken Zammad Scheduler database config 2024-05-25 11:03:17 +02:00
Stefan Bethke 2eb18460be Add pad expiry 2024-05-20 13:49:25 +02:00
June 182efd44c3
Add reverse proxy config entrys for EH22 Wiki 2024-05-17 20:43:46 +02:00
christian 6d9f32ec92
Update zigbee2mqtt to latest release (1.37.1) 2024-05-10 23:09:48 +02:00
Stefan Bethke 553bc01df1 add ccchoir 2024-05-10 20:37:47 +02:00
Stefan Bethke 78837e45fe Use Forgejo instead of Gitlab 2024-05-10 19:18:54 +02:00
Stefan Bethke d2538e9f5d Licht für Werkstatt dazu 2024-05-08 21:40:40 +02:00
June 57c957cd4e
Bump Keycloak to version 24 2024-03-08 01:35:45 +01:00
Stefan Bethke e96f25cc4d Add seconf foobazdmx for workshop 2024-02-26 23:07:36 +01:00
Stefan Bethke 0f732833de Grafana-Config für PVE dazu 2024-02-26 22:29:02 +01:00
christian 65159c2bb8
Add reverse proxy config entrys for old easterhegg pages under hamburg.ccc.de 2024-02-24 22:13:27 +01:00
christian 9649574025
Add reverse proxy config entrys for old easterhegg pages 2024-02-20 23:07:01 +01:00
Stefan Bethke e2a0b9e74c grafana: add chaosknoten 2024-01-30 23:23:13 +01:00
Stefan Bethke 2431b455c2 Use prometheus-jitsi-meet-exporter 2024-01-29 21:13:22 +01:00
Stefan Bethke 3184154f7b Add jitsi video bridge stats 2024-01-29 20:31:12 +01:00
Stefan Bethke e0ebe2c720 Add jitsi as target 2024-01-28 07:52:46 +01:00
June a38ae82550
Also add nginx reload cmd on new cert for Z9 VMs with certbot and nginx 2024-01-28 04:17:36 +01:00
June 04d74b5c50
nginx: restart nginx on nginx.conf change
This also fixes the problem mentioned in the README.
2024-01-28 04:11:27 +01:00
June 0fb059e6bf
Add nginx reload command on new cert for all VMs with certbot and nginx 2024-01-28 04:01:06 +01:00
June 95a3901935
certbot: add possibility to specify commands to run on new certs
This makes it possible to e.g. reload nginx when new certificates are
present.
2024-01-28 03:29:39 +01:00
Stefan Bethke e53da90160 Enable standalone nginx/certbox config 2024-01-26 20:46:26 +01:00
Stefan Bethke 842b1bfd99 lists does not go through reverse proxy, so run on port 80 2024-01-26 20:37:41 +01:00
Stefan Bethke 880e77575a Sort list alphabetically 2024-01-26 19:33:46 +01:00
Stefan Bethke 79ac891c30 Add metrics for club OPNsense 2024-01-26 19:28:09 +01:00
Stefan Bethke 0307ad6c9f proxy access to metrics through nginx 2024-01-24 19:36:21 +01:00
Stefan Bethke a68edb81c4 Add Grafana/Prometheus config 2024-01-24 19:12:43 +01:00