Stefan Bethke
343a67e0e7
Add auto-update
...
* for all hosts, use debops.unattended_upgrades
* for docker compose, install a cron job pulling new images and restarting affected containers
2024-08-11 20:49:21 +02:00
June
09cbe7340f
public-reverse-proxy: add config for design.hamburg.ccc.de
2024-08-11 00:59:47 +02:00
June
fe752495ae
id: allow z9 ipv6 range to access admin interface
2024-08-05 23:32:58 +02:00
June
70a27ec79c
light: use new combined cert and make server reachable over v6
...
The server being reachable over v6 is needed for the new method of
getting the cert directly via http challenge over v6.
2024-07-30 00:14:09 +02:00
christian
a23c152d8e
nextcloud: configure maintenance window start time
...
See: https://docs.nextcloud.com/server/28/admin_manual/configuration_server/background_jobs_configuration.html#maintenance-window-start
2024-07-29 21:42:48 +02:00
christian
6ad42219c0
Pull nextcloud image from our own image registry
2024-07-29 20:23:17 +02:00
christian
f8ac16f65b
Use our Keycloak custom image
...
We build our custom Keycloak image with our own theme located at https://git.hamburg.ccc.de/CCCHH/oci-images
2024-07-27 01:32:33 +02:00
Stefan Bethke
ea713aa162
Allow members of intern to issue invites
2024-07-23 21:23:11 +02:00
Stefan Bethke
cbb0842539
Add missing parameters
2024-07-16 09:24:46 +02:00
Stefan Bethke
4f5da885ea
Add missing params
2024-07-15 18:52:48 +02:00
Stefan Bethke
94f65f8fe7
Add invite to Keycloak
2024-07-15 12:37:36 +02:00
June
a990c96eb1
Upgrade to Keycloak 25 and move to new config options
...
https://www.keycloak.org/docs/latest/upgrading/index.html#new-hostname-options
https://www.keycloak.org/docs/latest/upgrading/index.html#deprecated-proxy-option
2024-07-15 01:40:07 +02:00
Stefan Bethke
ad8d27cd6a
Take base wordpress from image
2024-07-04 11:21:46 -04:00
June
1e25ebf1e9
Add reverse proxy config for woodpecker.hamburg.ccc.de
2024-06-22 02:11:14 +02:00
June
647c2fc005
Also ensure NGINX repo and install before apt update for nextcloud_hosts
...
Do that because the nextcloud role uses NGINX via the nginx role
internally as well, but nextcloud_hosts aren't necessarily in the
nginx_hosts group then.
2024-06-18 01:37:41 +02:00
June
11bbf187c6
Ensure NGINX repo and install before apt update, so that it works
...
Ensure NGINX repo and install on nginx_hosts before apt update, so that
the latest NGINX key is deployed and apt update won't fail on an invalid
signature on these hosts.
Also only run the gnupg install if gnupg isn't present in the nginx
repo_setup.yaml to make that work.
2024-06-18 01:14:00 +02:00
June
fb4aabc772
Add reverse proxy config for hacker.tours and staging.hacker.tours
2024-06-17 22:16:49 +02:00
Stefan Bethke
f67483fa46
Add lists.c3lingo.org
2024-06-16 16:39:19 +02:00
June
ec400ed7d6
Use new IP for eh22-wiki host
2024-06-13 22:30:29 +02:00
Stefan Bethke
097ddff0a7
Enable expiry
2024-06-04 18:06:58 +02:00
Stefan Bethke
5b5a954547
Adjust networks for successful email submission
2024-05-25 12:36:27 +02:00
Stefan Bethke
7ede6272b7
Workaround for broken Zammad Scheduler database config
2024-05-25 11:03:17 +02:00
Stefan Bethke
2eb18460be
Add pad expiry
2024-05-20 13:49:25 +02:00
June
182efd44c3
Add reverse proxy config entrys for EH22 Wiki
2024-05-17 20:43:46 +02:00
Stefan Bethke
553bc01df1
add ccchoir
2024-05-10 20:37:47 +02:00
Stefan Bethke
78837e45fe
Use Forgejo instead of Gitlab
2024-05-10 19:18:54 +02:00
Stefan Bethke
d2538e9f5d
Licht für Werkstatt dazu
2024-05-08 21:40:40 +02:00
June
57c957cd4e
Bump Keycloak to version 24
2024-03-08 01:35:45 +01:00
Stefan Bethke
e96f25cc4d
Add seconf foobazdmx for workshop
2024-02-26 23:07:36 +01:00
Stefan Bethke
0f732833de
Grafana-Config für PVE dazu
2024-02-26 22:29:02 +01:00
christian
65159c2bb8
Add reverse proxy config entrys for old easterhegg pages under hamburg.ccc.de
2024-02-24 22:13:27 +01:00
christian
9649574025
Add reverse proxy config entrys for old easterhegg pages
2024-02-20 23:07:01 +01:00
Stefan Bethke
e2a0b9e74c
grafana: add chaosknoten
2024-01-30 23:23:13 +01:00
Stefan Bethke
2431b455c2
Use prometheus-jitsi-meet-exporter
2024-01-29 21:13:22 +01:00
Stefan Bethke
3184154f7b
Add jitsi video bridge stats
2024-01-29 20:31:12 +01:00
Stefan Bethke
e0ebe2c720
Add jitsi as target
2024-01-28 07:52:46 +01:00
June
04d74b5c50
nginx: restart nginx on nginx.conf change
...
This also fixes the problem mentioned in the README.
2024-01-28 04:11:27 +01:00
June
0fb059e6bf
Add nginx reload command on new cert for all VMs with certbot and nginx
2024-01-28 04:01:06 +01:00
June
95a3901935
certbot: add possibility to specify commands to run on new certs
...
This makes it possible to e.g. reload nginx when new certificates are
present.
2024-01-28 03:29:39 +01:00
Stefan Bethke
e53da90160
Enable standalone nginx/certbox config
2024-01-26 20:46:26 +01:00
Stefan Bethke
880e77575a
Sort list alphabetically
2024-01-26 19:33:46 +01:00
Stefan Bethke
79ac891c30
Add metrics for club OPNsense
2024-01-26 19:28:09 +01:00
Stefan Bethke
0307ad6c9f
proxy access to metrics through nginx
2024-01-24 19:36:21 +01:00
Stefan Bethke
a68edb81c4
Add Grafana/Prometheus config
2024-01-24 19:12:43 +01:00
Stefan Bethke
946b35efab
Grafana-Daten auch speichern
2024-01-24 17:22:35 +01:00
Stefan Bethke
ebcde5433c
nginx mit redirect auf wiki
2024-01-23 22:36:15 +01:00
Stefan Bethke
5c4ee01e71
certbot für mumble dazu
2024-01-23 21:24:31 +01:00
June
4363b3d040
Redirect properly from wikis old to new domain
...
Make use of $request_uri redirect to the correct sub-page.
2024-01-22 22:43:52 +01:00
June
81c8bfe16b
Actually keep using $uri for DokuWiki stuff since otherwise it breaks
...
To be investigated if the $uri issue also applies for try_files.
2024-01-22 22:41:12 +01:00
June
6787c7c0d7
Use $request_uri instead of $uri, since $uri allows for injection
...
Thanks NixOS for pointing that out! :3
Also see here for an explanation:
https://reversebrain.github.io/2021/03/29/The-story-of-Nginx-and-uri-variable/
2024-01-22 22:37:10 +01:00