8bc60e42a8
Extend distribution_check role to account for Ansible changes reg. facts
...
Somewhere between ansible [core 2.14.4] and ansible [core 2.15.0] the
logic for the distribution_version Ansible fact got changed. With the
newer Ansible version Debians distribution_version gets reported as 11.7
as opposed to getting reported as 11 with the old Ansible version. To
still allow for useful distribution checks, extend the
distribution_check role by allowing the specification of
distribution_major_versions and distribution_releases as well.
This way you can check for an Ubuntu version by using
distribution_version (which for example resolves to 18.04, while
distribution_major_version would resolve to 18 in that case) and check
for a Debian version by using distribution_major_version (which for
example resolves to 11, while distribution_version would resolve to 11.7
in that case).
2023-07-08 19:58:02 +02:00
0c62a8f3e0
Add role for deploying SSH config and also add mailserver-endpoint host
2023-06-06 23:37:42 +02:00
ebfa591484
Use larger buf. size to fix 502s sometimes occur. when going through PVE
2023-05-26 03:27:56 +02:00
55506a003a
Make Rspamd configs world-readable
2023-05-26 03:27:56 +02:00
e37d84c60d
clean up foobazdmx role
...
make git repo url and version to check out a variable instead of a
hard-coded value the role, and update host_vars to match.
2023-05-21 15:12:42 +02:00
2d5f116ff3
Use access token with Reporter role for foobazdmx
2023-05-21 03:03:02 +02:00
da710bcf8f
Reduce maximum AirPlay volume for Audio Pi
2023-05-21 01:29:25 +02:00
49bfcbc987
Merge branch 'foobazdmx-update' into 'main'
...
Update foobazdmx repository url and release target
See merge request ccchh/thinkcccentre-ansible!2
2023-05-20 21:19:47 +00:00
a6db315138
Update foobazdmx repository url and release target
...
Update foobazdmx repository url in foobazdmx role to main repo.
Change commit to be checked out by ansible to latest commit on main.
2023-05-20 22:58:24 +02:00
0972ce1e24
Remove printserver from inventory
2023-05-10 18:02:10 +02:00
8d50e73888
Use chaos user as ansible user for VMs
2023-05-10 18:02:10 +02:00
544abc1c27
Rename automation host to mqtt
2023-05-10 18:02:10 +02:00
33d1cfca1f
Move become: true into esphome role
...
Move become: true into zigbee2mqtt role
Remove become: true from deploy_public_reverse_proxy playbook
Remove become: true from deploy_dokuwiki playbook
Move become: true from deploy_audio_pi and deploy_light playbooks into roles
Remove become: true from deploy_keycloak playbook
Move become: true from deploy_automation playbook to mosquitto role
2023-05-10 18:02:10 +02:00
b56ca3899d
Add send_only_mailserver
role and deploy Send-Only-Mailserver with it
...
Co-authored-by: yuri <yuri@nekover.se>
2023-05-09 23:01:57 +02:00
f4a79fb4e2
Make it possible to set custom permissions for certificate files
...
This is in preparation for a role using OpenSMTPD.
2023-05-09 22:07:44 +02:00
7bb741c8e3
Bump esphome to 2023.4.4
2023-05-09 21:03:03 +02:00
35ad23a44c
Bump zigbee2mqtt to 1.30.4
2023-05-09 21:02:34 +02:00
78023f5198
Use cert role to deploy a valid certificate for esphome.ccchh.net
2023-05-09 21:02:32 +02:00
ca3a30360f
Use cert role to deploy a valid certificate for zigbee2mqtt.ccchh.net
2023-05-09 17:24:20 +02:00
1cd0700cf5
Fix filename for include_tasks
2023-05-09 17:20:24 +02:00
9dc77ad5a5
Only deploy zigbee2mqtt config when it doesn't exist
2023-05-09 14:39:50 +02:00
048e189828
Fix inventory path
2023-05-09 14:38:15 +02:00
1bcb77961b
Use the .yaml file extension for all YAML files
2023-05-08 19:55:08 +02:00
julian
9d0697f0d0
Use PROXY Protocol for Keycloak
2023-05-05 00:00:48 +02:00
Jannik Beyerstedt
7710bf384d
Keycloak: Fix restart condition
2023-05-04 23:39:51 +02:00
julian
2dc4b6f5fd
Add keycloak
2023-05-02 06:12:56 +02:00
julian
91274de823
Add my docker
and docker_compose
role
...
Do this in preparation for the keycloak deployment.
2023-05-01 01:45:15 +02:00
julian
d4d2e973a1
Get certificate for wiki using cert
role
2023-05-01 00:22:05 +02:00
julian
1a0636307b
Use Certbot naming for certificate files
2023-05-01 00:18:59 +02:00
julian
29cb9f941c
Add authoritative-dns to hosts.yml
2023-04-27 23:58:23 +02:00
julian
aac049efb2
Use BIND 9 server instead of Cloudfl. for DNS-01 challenge via nsupdate
...
Co-authored-by: Jannik Beyerstedt <code@jannikbeyerstedt.de>
2023-04-27 23:38:14 +02:00
julian
4814ea8bda
Use one ACME account key per host
...
This is nicer for us, since this avoids sharing a secret.
Also put certificate directories in `certs` sub-directory for better
organization.
2023-04-25 18:03:59 +02:00
julian
f9c51842fd
Make use of become
in role
2023-04-25 17:13:10 +02:00
julian
6e9d07b6f6
Add some spacing between tasks
2023-04-25 16:59:02 +02:00
julian
f8d89c9742
Use /etc/ansible_certs
instead of /certs
directory
2023-04-25 16:57:34 +02:00
c407f93b0a
Add initial cert role
2023-04-25 13:49:45 +02:00
julian
9670b6494c
Make the wiki publicly accessible and configure nginxs to give it https
2023-04-16 01:41:29 +02:00
Jannik Beyerstedt
d3842f6b87
Add dokuwiki VM
2023-04-16 01:41:15 +02:00
bc37ea1cfa
Remove nginx redirect.conf for light.ccchh.net
2023-04-15 18:37:09 +02:00
79953d3463
Fix esphome task name
2023-04-15 18:22:37 +02:00
julian
65ac14c18b
Use nginx role with custom nginx.conf
support
2023-04-15 18:13:22 +02:00
64f9484b16
Add LICENSE
2023-04-15 14:28:45 +00:00
4ca6dc8609
Bump esphome to 2023.2.3
2023-04-11 20:41:32 +02:00
c25c113004
Bump zigbee2mqtt to 1.30.3
2023-04-11 20:25:44 +02:00
f00ffe2cfe
Merge branch 'mqtt-config' into 'main'
...
chore(mqtt): only import events, export statusses
See merge request ccchh/thinkcccentre-ansible!1
2023-03-12 20:14:03 +00:00
Jan Almeroth
b8f925e217
chore(mqtt): only import events, export statusses
2023-03-12 18:21:50 +01:00
julian
54ea404756
Set ansible_user for light.z9.ccchh.net to root
2023-01-12 23:37:43 +01:00
julian
239b9b9689
Setup https for Light VM for light.ccchh.net
2023-01-12 23:36:57 +01:00
julian
f44e3f28b0
Add Public-Reverse-Proxy
2023-01-08 02:50:23 +01:00
julian
3031cc3ec9
Use new seach domain for hosts FQDN
2023-01-07 18:29:59 +01:00