CCCHH/ansible-infra
CCCHH/ansible-infra
4
2
Fork 1
Code Issues 6 Pull requests 5 Wiki Activity Actions
469 commits 13 branches 0 tags 7 MiB
Commit graph

469 commits

This branch
This branch
All branches
Author SHA1 Message Date
June
43fac32424
 		use full image source and set version for all Chaosknoten compose images
Some checks failed
/ Ansible Lint (push) Failing after 52s
Details 
Use a full image source and set and explicit version for all images in
Chaosknoten (docker-)compose files.
With Renovate now set up, it is feasible to explicitly set versions.
 2025-10-21 23:59:56 +02:00
June
282e82728b
 		renovate: match file compose jinja2 templates (.j2) as well
Some checks failed
/ Ansible Lint (push) Failing after 52s
Details
2025-10-21 23:12:34 +02:00
June
f842723e9a
 		remove daily schedule for Renovate (for now?)
Some checks failed
/ Ansible Lint (push) Failing after 50s
Details
2025-10-21 23:03:02 +02:00
June
7de516dc43
 		introduce first Renovate configuration
Some checks failed
/ Ansible Lint (push) Failing after 50s
Details 
Introduce pretty basic first Renovate configuration with a package rule
for grouping all stable non-major dependency updates together.
 2025-10-21 02:37:10 +02:00
June
94e1920388
 		setup ansible-pull for all Chaosknoten hosts
Some checks failed
/ Ansible Lint (push) Failing after 50s
Details 
Additionally setup ansible-pull for: ccchoir, tickets, keycloak, lists,
mumble, pad, public-reverse-proxy, zammad, ntfy
 2025-10-20 21:25:56 +02:00
c6ristian
f3902b43b1
 		update keycloak and nextcloud
Some checks failed
/ Ansible Lint (push) Failing after 59s
Details
2025-10-20 21:11:28 +02:00
June
425d302fa9
 		zammad(host): fix compose by using different elasticsearch image
Some checks failed
/ Ansible Lint (push) Failing after 50s
Details 
Also execute manual update steps as outlined here:
https://github.com/zammad/zammad-docker-compose/releases/tag/v14.0.0

Note that this is updating only a part of the compose file and other
parts still are out-of-date and should be updated (like the Postgres).
 2025-10-20 01:36:00 +02:00
June
b46747d251
 		deploy_ssh_server_config(role): add Debian 13 sshd_config reference
Some checks failed
/ Ansible Lint (push) Failing after 1m33s
Details
2025-10-17 21:27:29 +02:00
June
2aa55770d9
 		renovate(host): update keys adding renovate for group_vars/all.sops.yaml
Some checks failed
/ Ansible Lint (push) Failing after 1m7s
Details
2025-10-17 16:05:04 +02:00
June
8a8fdf5f97
 		renovate(host): set platform to forgejo 2025-10-17 01:26:18 +02:00
June
cad2f036e5
 		renovate(host): replace non-working GitHub token with working one 
Replace the token with one created from a new CCCHH GitHub service
account.
 2025-10-17 01:18:17 +02:00
June
4b1c64b615
 		renovate(host): remove deprecated and no longer working logLevel option
Some checks failed
/ Ansible Lint (push) Failing after 52s
Details 
Remove deprecated and no longer working logLevel config option. Debug
output can be enabled by using the LOG_LEVEL environment variable on
demand.
 2025-10-16 18:08:29 +02:00
June
e76c66d74c
 		renovate(host): set up Renovate using role and exisiting config
Some checks failed
/ Ansible Lint (push) Failing after 56s
Details 
Set up Renovate using role and existing config from current
Forgejo/GitHub Actions-based deployment.
 2025-10-16 17:52:30 +02:00
June
a32998d8da
 		renovate(host): initialize renovate host 2025-10-16 17:44:23 +02:00
June
8388657d33
 		renovate(role): introduce first basic Renovate role 
Sets up Renovate using Docker and systemd service and timer to run
regularly.
Also add accompanying host group and playbook play.
 2025-10-16 17:42:13 +02:00
June
dce4e7c4d4
 		ansible_pull(role): add git as a dependency to ensure is installed
Some checks failed
/ Ansible Lint (push) Failing after 48s
Details
2025-10-16 09:40:34 +02:00
June
f646cc0bf2
 		fix creation rules for eh22-wiki, sunders and wiki hosts
Some checks failed
/ Ansible Lint (push) Failing after 49s
Details 
Also update the keys of the secret files accordingly.
This should then fix ansible-pull on these hosts.
 2025-10-15 10:45:54 +02:00
June
dea66771e0
 		ansible_pull(role): ensure SOPS is installed
Some checks failed
/ Ansible Lint (push) Failing after 49s
Details 
Also add the SOPS community collection as a requirement for this repo.
 2025-10-15 02:33:42 +02:00
June
9afbc71801
 		ansible_pull(role): ensure role and collection dependencies are present 2025-10-15 02:18:07 +02:00
June
1d6d1094bc
 		setup ansible-pull for 7 more hosts
Some checks failed
/ Ansible Lint (push) Failing after 58s
Details 
Setup for: cloud, eh22-wiki, grafana, onlyoffice, pretalx, sunders and
wiki.
 2025-10-15 01:59:29 +02:00
June
eadae7a09b
 		ansible_pull(role): add failure notifications
Some checks failed
/ Ansible Lint (push) Failing after 48s
Details
2025-10-14 22:20:27 +02:00
June
17fd71f079
 		define common msmtp configuration for chaosknoten inventory hosts
Some checks failed
/ Ansible Lint (push) Failing after 48s
Details 
Define common configuration as it is the same for all hosts.
 2025-10-14 01:45:44 +02:00
June
afceb886dc
 		msmtp(role): introduce msmtp role 
Introduce msmtp role for setting up msmtp for mail sending.
Also add accompanying host group and playbook play.
 2025-10-14 01:40:46 +02:00
June
18dda95c46
 		remove max expired key
Some checks failed
/ Ansible Lint (push) Failing after 49s
Details
2025-10-13 22:12:31 +02:00
June
1f394a08dd
 		refactor .sops.yaml to make it less verbose
Some checks failed
/ Ansible Lint (push) Failing after 50s
Details 
Make it less verbose by introducing an anchor for the admin_gpg_keys.
 2025-10-13 20:51:31 +02:00
June
f943e95e2e
 		fix ansible_lint issues
Some checks failed
/ Ansible Lint (push) Failing after 48s
Details 
Use prefix for role variables, have an ending newline at the end of
files and use changed_when for command.
Also exclude *.sops.yaml files from ansible-lint.
 2025-10-13 17:43:00 +02:00
June
9b8e14f3c4
 		remove duplicate ansible_pull_hosts inventory group entry
Some checks failed
/ Ansible Lint (push) Failing after 48s
Details
2025-10-13 17:37:13 +02:00
June
952fbf85c5
 		ansible_pull(role): add ExecStartPost step rebooting the hosts, if nec.
Some checks failed
/ Ansible Lint (pull_request) Failing after 48s
Details
/ Ansible Lint (push) Failing after 49s
Details 
Add ExecStartPost step rebooting the hosts, if necessary.
 2025-10-13 17:23:08 +02:00
June
bd281713f1
 		netbox(host): setup ansible_pull for host
Some checks failed
/ Ansible Lint (push) Failing after 48s
Details
/ Ansible Lint (pull_request) Failing after 48s
Details
2025-10-13 16:59:42 +02:00
June
648489ed09
 		define common ansible_pull configuration for chaosknoten inventory hosts 
Define common configuration as it should be the same for all hosts, just
the ansible_pull__age_private_key needs to be set per host then.
 2025-10-13 16:58:30 +02:00
June
434ddfc955
 		ansible_pull(role): introduce ansible_pull role 
Introduce ansible_pull role for setting up automatic ansible_pull runs.
Also add accompanying host group and playbook play.
 2025-10-13 16:56:18 +02:00
June
8cb6ab3d04
 		reboot(role): intro. reboot role, which handles local conns. gracefully 
Also use this role instead of plain ansible.builtin.reboot.
This is in preparation for using ansible_pull as we don't want to have
ansible.builtin.reboot fail local playbook runs.
 2025-10-13 16:56:18 +02:00
June
1322bcec58
 		reverse proxy configuration for element-admin
Some checks failed
/ Ansible Lint (push) Failing after 47s
Details
2025-10-12 20:20:02 +02:00
June
1eaf85501f
 		reverse proxy configuration for matrix authentication service
Some checks failed
/ Ansible Lint (push) Failing after 46s
Details
2025-10-12 05:28:43 +02:00
June
dec68ab994
 		sunders(host): initialize sunders host
Some checks failed
/ Ansible Lint (push) Failing after 53s
Details
2025-10-11 20:52:26 +02:00
c6ristian
2ae8692603
 		grafana: set 2m for DHCP check
Some checks failed
/ Ansible Lint (push) Failing after 49s
Details 
so that service restart dont create a alert
 2025-09-12 13:21:23 +02:00
c6ristian
1355d4d834
 		grafana: make alerts better for fux
Some checks failed
/ Ansible Lint (push) Failing after 46s
Details
2025-09-09 19:30:53 +02:00
Stefan Bethke
592afdced9 add waybackproxy
Some checks failed
/ Ansible Lint (push) Failing after 50s
Details
2025-09-06 11:39:05 +02:00
Stefan Bethke
13a8dc9b6f Fix name, cleanup
Some checks failed
/ Ansible Lint (push) Failing after 1m7s
Details
2025-08-02 10:05:58 +02:00
Stefan Bethke
9c50708b4e Add second DECT
Some checks failed
/ Ansible Lint (push) Failing after 55s
Details
2025-08-02 09:43:18 +02:00
Stefan Bethke
cbb4beceb6 Add Werkstatt phone
Some checks failed
/ Ansible Lint (push) Has been cancelled
Details
2025-08-02 09:41:48 +02:00
June
9f87fa0225
 		reverse proxy configuration for cryptoparty website and staging env.
Some checks failed
/ Ansible Lint (push) Failing after 50s
Details
2025-07-23 20:56:19 +02:00
c6ristian
72489be8bd
 		updatekeys for junes new key
Some checks failed
/ Ansible Lint (push) Failing after 47s
Details
2025-07-20 20:29:22 +02:00
June
8bc9534ce6
 		set junes new key
Some checks failed
/ Ansible Lint (push) Failing after 1m55s
Details
2025-07-20 20:20:41 +02:00
c6ristian
2e66e5de3b
 		grafana: enable promql-experimental-functions
Some checks failed
/ Ansible Lint (push) Failing after 2m0s
Details
2025-07-20 19:09:59 +02:00
c6ristian
a4c703b185
 		grafana: there are more metrics now
Some checks failed
/ Ansible Lint (push) Failing after 1m51s
Details
2025-07-18 21:23:39 +02:00
c6ristian
9f0c276240
 		grafana: setup sendAlert = false receiver to mute alert
Some checks failed
/ Ansible Lint (push) Failing after 1m57s
Details
2025-07-16 22:55:07 +02:00
Stefan Bethke
c119f91aeb Notrufnummern dazu
Some checks failed
/ Ansible Lint (push) Failing after 1m58s
Details
2025-07-11 19:37:19 +02:00
Stefan Bethke
e628dcbce2 Legacy-Yate mit eigenem Eintrag
Some checks failed
/ Ansible Lint (push) Has been cancelled
Details
2025-07-11 19:37:05 +02:00
c6ristian
d734a1cc6c
 		grafana: accept WAL from remote write
Some checks failed
/ Ansible Lint (push) Failing after 2m2s
Details
2025-07-09 00:27:56 +02:00