Commit graph

62 commits

Author SHA1 Message Date
June 70a27ec79c
light: use new combined cert and make server reachable over v6
The server being reachable over v6 is needed for the new method of
getting the cert directly via http challenge over v6.
2024-07-30 00:14:09 +02:00
christian abcf25359e
Decommissioning mqtt in ansible 2024-06-12 21:43:46 +02:00
christian 6d9f32ec92
Update zigbee2mqtt to latest release (1.37.1) 2024-05-10 23:09:48 +02:00
Stefan Bethke d2538e9f5d Licht für Werkstatt dazu 2024-05-08 21:40:40 +02:00
Stefan Bethke e96f25cc4d Add seconf foobazdmx for workshop 2024-02-26 23:07:36 +01:00
June a38ae82550
Also add nginx reload cmd on new cert for Z9 VMs with certbot and nginx 2024-01-28 04:17:36 +01:00
June a223ebd7ff Remove mailserver-endpoint, because it doesn't seem to exist 2023-11-11 00:24:17 +01:00
June bb95923807 Add a role for deploying infrastructure authorized keys and use it 2023-11-11 00:23:20 +01:00
June 06c4f2a1e3 Remove send-only-mailserver host, since it's not needed anymore 2023-11-09 19:18:41 +01:00
yuri 6a023f5433
Remove esphome host and role since it has been migrated to NixOS 2023-11-04 22:46:01 +01:00
June fdae96fbc1 Migrate to NixOS: Remove Z9 Audio host from this repo 2023-09-25 02:59:41 +02:00
June de97436706 Migrate to NixOS: Remove Z9 Public-Reverse-Proxy host from this repo 2023-09-25 02:48:56 +02:00
June 112f1990b9 Introduce Uptime-Kuma 2023-08-12 01:47:55 +02:00
June d16da59fd7 Migrate Wiki from ThinkCCCluster to Chaosknoten
Also do the redirect for DNS cache stuff like with aes.
2023-08-11 01:59:34 +02:00
June 373b219031 Migrate Engelsystem from ThinkCCCluster to Chaosknoten 2023-08-11 00:39:55 +02:00
June 09e0c710af Migrate Keycloak from ThinkCCCluster onto Chaosknoten
Co-authored-by: Max <max@mlem.cloud>
2023-08-07 23:33:15 +02:00
June 2825c5089f Use new secrets path for z9 vm-secrets 2023-08-04 13:53:22 +02:00
June 3d238d9f63 Move z9-host-specific configs and templates into z9 subdirectories 2023-08-04 13:41:00 +02:00
June 3b3c628492 Ensure NGINX deploy. on public-rev.-prox. hosts before certbot role runs 2023-08-03 04:15:03 +02:00
June 48f9a2f901 Deploy certs for aes.ccchh.net using certbot role
Also clean up NGINX configuration a bit.
2023-08-02 23:40:36 +02:00
June 542211ca25 Deploy certs for esphome.ccchh.net using certbot role 2023-08-02 23:27:40 +02:00
June 6ac4bf8240 Deploy certs for wiki.ccchh.net using certbot role
Also clean up NGINX configurations.
2023-08-02 23:17:31 +02:00
June 6651f4568d Deploy certs for keycloak-admin and id.ccchh.net using certbot role 2023-08-02 23:07:21 +02:00
June 154a7dfa02 Deploy certs for zigbee2mqtt.ccchh.net using new certbot role
Also add certbot role to deploy.yaml playbook and add accompanying
group.
2023-08-02 22:53:37 +02:00
June a7565d5f35 Deploy SSH Server config to public-reverse-proxy and wiki hosts 2023-07-30 07:06:26 +02:00
June 6994cfa123 Use correct ansible_host for mqtt host 2023-07-30 07:01:06 +02:00
June 317c822ab5 Combine playbooks for indiviual hosts into one playbook
This makes a full deployment of all hosts easier and parallelises
execution of roles, which are used for multiple hosts.
You can still easily deploy only a subset of hosts using the -l flag for
ansible-playbook.
2023-07-30 06:57:30 +02:00
June 042ff7c2ec Move keycloak and public-reverse-proxy to new debian_12 group
Do this, since they are on Debian 12.
2023-07-30 05:53:39 +02:00
jtbx efc72f70f6 audiopi: Update role 2023-07-30 01:04:25 +02:00
June 8a2c2769c8 Use new secrets path, bc of noc pass store merge into general store 2023-07-29 23:15:00 +02:00
June a12b38b284 Provide secrets for engelsystem VM from pass 2023-07-29 01:46:30 +02:00
June f695afa981 Provide network_key for zigbee2mqtt from pass 2023-07-29 01:28:44 +02:00
June 51c1b667f4 Provide secrets for keycloak VM from pass 2023-07-29 00:59:01 +02:00
yuri 18990b3b5f
Bump zigbee2mqtt to 1.32.1 2023-07-27 18:26:47 +02:00
yuri 1570b0c04e
Bump esphome to 2023.7.0 2023-07-27 18:22:58 +02:00
jtbx d5285a3fd2 deploy an engelsystem named AES 2023-07-09 01:57:55 +02:00
June 0c62a8f3e0 Add role for deploying SSH config and also add mailserver-endpoint host 2023-06-06 23:37:42 +02:00
Dario e37d84c60d
clean up foobazdmx role
make git repo url and version to check out a variable instead of a
hard-coded value the role, and update host_vars to match.
2023-05-21 15:12:42 +02:00
yuri 0972ce1e24
Remove printserver from inventory 2023-05-10 18:02:10 +02:00
yuri 8d50e73888
Use chaos user as ansible user for VMs 2023-05-10 18:02:10 +02:00
yuri 544abc1c27
Rename automation host to mqtt 2023-05-10 18:02:10 +02:00
June b56ca3899d Add send_only_mailserver role and deploy Send-Only-Mailserver with it
Co-authored-by: yuri <yuri@nekover.se>
2023-05-09 23:01:57 +02:00
yuri 7bb741c8e3
Bump esphome to 2023.4.4 2023-05-09 21:03:03 +02:00
yuri 35ad23a44c
Bump zigbee2mqtt to 1.30.4 2023-05-09 21:02:34 +02:00
yuri 78023f5198
Use cert role to deploy a valid certificate for esphome.ccchh.net 2023-05-09 21:02:32 +02:00
yuri ca3a30360f
Use cert role to deploy a valid certificate for zigbee2mqtt.ccchh.net 2023-05-09 17:24:20 +02:00
yuri 9dc77ad5a5
Only deploy zigbee2mqtt config when it doesn't exist 2023-05-09 14:39:50 +02:00
yuri 1bcb77961b
Use the .yaml file extension for all YAML files 2023-05-08 19:55:08 +02:00
julian 2dc4b6f5fd Add keycloak 2023-05-02 06:12:56 +02:00
julian d4d2e973a1 Get certificate for wiki using cert role 2023-05-01 00:22:05 +02:00