diff --git a/.ansible-lint b/.ansible-lint
index 6b5f8aa..f68da38 100644
--- a/.ansible-lint
+++ b/.ansible-lint
@@ -4,4 +4,3 @@ skip_list:
exclude_paths:
- .forgejo/
- - "**/*.sops.yaml"
diff --git a/.gitignore b/.gitignore
index 424bd26..e69de29 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1 +0,0 @@
-.ansible/
diff --git a/.sops.yaml b/.sops.yaml
index 637cf45..49bd543 100644
--- a/.sops.yaml
+++ b/.sops.yaml
@@ -1,88 +1,181 @@
keys:
- admins:
- gpg: &admin_gpg_keys
- - &admin_gpg_djerun EF643F59E008414882232C78FFA8331EEB7D6B70
- - &admin_gpg_stb F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - &admin_gpg_jtbx 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - &admin_gpg_yuri 87AB00D45D37C9E9167B5A5A333448678B60E505
- - &admin_gpg_june 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - &admin_gpg_haegar F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - &admin_gpg_dario 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - &admin_gpg_echtnurich 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - &admin_gpg_c6ristian B71138A6A8964A3C3B8899857B4F70C356765BAB
- - &admin_gpg_lilly D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - &admin_gpg_langoor 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- hosts:
- chaosknoten:
- age: &host_chaosknoten_age_keys
- - &host_netbox_ansible_pull_age_key age1ss82zwqkj438re78355p886r89csqrrfmkfp8lrrf8v23nza492qza4ey3
+ - &admin_gpg_djerun EF643F59E008414882232C78FFA8331EEB7D6B70
+ - &admin_gpg_stb F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
+ - &admin_gpg_jtbx 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
+ - &admin_gpg_yuri 87AB00D45D37C9E9167B5A5A333448678B60E505
+ - &admin_gpg_june 91213ABAA73B0B73D3C02B5B4E5F372D17BBE67C
+ - &admin_gpg_haegar F38C9D4228FC6F674E322D9C3326D914EB9B8F55
+ - &admin_gpg_dario 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
+ - &admin_gpg_echtnurich 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
+ - &admin_gpg_max 9DFA033E3DAEBAD7FDD71B056C7AAA54BE05F7BA
+ - &admin_gpg_c6ristian B71138A6A8964A3C3B8899857B4F70C356765BAB
+ - &admin_gpg_lilly D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
+ - &admin_gpg_langoor 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
creation_rules:
- # group vars
- - path_regex: inventories/chaosknoten/group_vars/all.*
+ - path_regex: resources/chaosknoten/cloud/.*
key_groups:
- pgp:
- *admin_gpg_keys
- age:
- *host_chaosknoten_age_keys
- # host vars
- - path_regex: inventories/chaosknoten/host_vars/cloud.*
+ - *admin_gpg_djerun
+ - *admin_gpg_stb
+ - *admin_gpg_jtbx
+ - *admin_gpg_yuri
+ - *admin_gpg_june
+ - *admin_gpg_haegar
+ - *admin_gpg_dario
+ - *admin_gpg_echtnurich
+ - *admin_gpg_max
+ - *admin_gpg_c6ristian
+ - *admin_gpg_lilly
+ - *admin_gpg_langoor
+ - path_regex: resources/chaosknoten/keycloak/.*
key_groups:
- pgp:
- *admin_gpg_keys
- - path_regex: inventories/chaosknoten/host_vars/keycloak.*
+ - *admin_gpg_djerun
+ - *admin_gpg_stb
+ - *admin_gpg_jtbx
+ - *admin_gpg_yuri
+ - *admin_gpg_june
+ - *admin_gpg_haegar
+ - *admin_gpg_dario
+ - *admin_gpg_echtnurich
+ - *admin_gpg_max
+ - *admin_gpg_c6ristian
+ - *admin_gpg_lilly
+ - *admin_gpg_langoor
+ - path_regex: resources/chaosknoten/grafana/.*
key_groups:
- pgp:
- *admin_gpg_keys
- - path_regex: inventories/chaosknoten/host_vars/grafana.*
+ - *admin_gpg_djerun
+ - *admin_gpg_stb
+ - *admin_gpg_jtbx
+ - *admin_gpg_yuri
+ - *admin_gpg_june
+ - *admin_gpg_haegar
+ - *admin_gpg_dario
+ - *admin_gpg_echtnurich
+ - *admin_gpg_max
+ - *admin_gpg_c6ristian
+ - *admin_gpg_lilly
+ - *admin_gpg_langoor
+ - path_regex: resources/chaosknoten/pad/.*
key_groups:
- pgp:
- *admin_gpg_keys
- - path_regex: inventories/chaosknoten/host_vars/pad.*
+ - *admin_gpg_djerun
+ - *admin_gpg_stb
+ - *admin_gpg_jtbx
+ - *admin_gpg_yuri
+ - *admin_gpg_june
+ - *admin_gpg_haegar
+ - *admin_gpg_dario
+ - *admin_gpg_echtnurich
+ - *admin_gpg_max
+ - *admin_gpg_c6ristian
+ - *admin_gpg_lilly
+ - *admin_gpg_langoor
+ - path_regex: resources/chaosknoten/ccchoir/.*
key_groups:
- pgp:
- *admin_gpg_keys
- - path_regex: inventories/chaosknoten/host_vars/ccchoir.*
+ - *admin_gpg_djerun
+ - *admin_gpg_stb
+ - *admin_gpg_jtbx
+ - *admin_gpg_yuri
+ - *admin_gpg_june
+ - *admin_gpg_haegar
+ - *admin_gpg_dario
+ - *admin_gpg_echtnurich
+ - *admin_gpg_max
+ - *admin_gpg_c6ristian
+ - *admin_gpg_lilly
+ - *admin_gpg_langoor
+ - path_regex: resources/chaosknoten/pretalx/.*
key_groups:
- pgp:
- *admin_gpg_keys
- - path_regex: inventories/chaosknoten/host_vars/pretalx.*
+ - *admin_gpg_djerun
+ - *admin_gpg_stb
+ - *admin_gpg_jtbx
+ - *admin_gpg_yuri
+ - *admin_gpg_june
+ - *admin_gpg_haegar
+ - *admin_gpg_dario
+ - *admin_gpg_echtnurich
+ - *admin_gpg_max
+ - *admin_gpg_c6ristian
+ - *admin_gpg_lilly
+ - *admin_gpg_langoor
+ - path_regex: resources/chaosknoten/netbox/.*
key_groups:
- pgp:
- *admin_gpg_keys
- - path_regex: inventories/chaosknoten/host_vars/netbox.*
+ - *admin_gpg_djerun
+ - *admin_gpg_stb
+ - *admin_gpg_jtbx
+ - *admin_gpg_yuri
+ - *admin_gpg_june
+ - *admin_gpg_haegar
+ - *admin_gpg_dario
+ - *admin_gpg_echtnurich
+ - *admin_gpg_max
+ - *admin_gpg_c6ristian
+ - *admin_gpg_lilly
+ - *admin_gpg_langoor
+ - path_regex: resources/chaosknoten/tickets/.*
key_groups:
- pgp:
- *admin_gpg_keys
- age:
- - *host_netbox_ansible_pull_age_key
- - path_regex: inventories/chaosknoten/host_vars/tickets.*
+ - *admin_gpg_djerun
+ - *admin_gpg_stb
+ - *admin_gpg_jtbx
+ - *admin_gpg_yuri
+ - *admin_gpg_june
+ - *admin_gpg_haegar
+ - *admin_gpg_dario
+ - *admin_gpg_echtnurich
+ - *admin_gpg_max
+ - *admin_gpg_c6ristian
+ - *admin_gpg_lilly
+ - *admin_gpg_langoor
+ - path_regex: resources/chaosknoten/onlyoffice/.*
key_groups:
- pgp:
- *admin_gpg_keys
- - path_regex: inventories/chaosknoten/host_vars/onlyoffice.*
+ - *admin_gpg_djerun
+ - *admin_gpg_stb
+ - *admin_gpg_jtbx
+ - *admin_gpg_yuri
+ - *admin_gpg_june
+ - *admin_gpg_haegar
+ - *admin_gpg_dario
+ - *admin_gpg_echtnurich
+ - *admin_gpg_max
+ - *admin_gpg_c6ristian
+ - *admin_gpg_lilly
+ - *admin_gpg_langoor
+ - path_regex: resources/chaosknoten/zammad/.*
key_groups:
- pgp:
- *admin_gpg_keys
- - path_regex: inventories/chaosknoten/host_vars/zammad.*
- key_groups:
- - pgp:
- *admin_gpg_keys
- - path_regex: inventories/chaosknoten/host_vars/ntfy.*
- key_groups:
- - pgp:
- *admin_gpg_keys
- - path_regex: inventories/z9/host_vars/dooris.*
- key_groups:
- - pgp:
- *admin_gpg_keys
- - path_regex: inventories/z9/host_vars/yate.*
- key_groups:
- - pgp:
- *admin_gpg_keys
- # general
+ - *admin_gpg_djerun
+ - *admin_gpg_stb
+ - *admin_gpg_jtbx
+ - *admin_gpg_yuri
+ - *admin_gpg_june
+ - *admin_gpg_haegar
+ - *admin_gpg_dario
+ - *admin_gpg_echtnurich
+ - *admin_gpg_max
+ - *admin_gpg_c6ristian
+ - *admin_gpg_lilly
+ - *admin_gpg_langoor
- key_groups:
- pgp:
- *admin_gpg_keys
+ - *admin_gpg_djerun
+ - *admin_gpg_stb
+ - *admin_gpg_jtbx
+ - *admin_gpg_yuri
+ - *admin_gpg_june
+ - *admin_gpg_haegar
+ - *admin_gpg_dario
+ - *admin_gpg_echtnurich
+ - *admin_gpg_max
+ - *admin_gpg_c6ristian
+ - *admin_gpg_lilly
+ - *admin_gpg_langoor
stores:
yaml:
indent: 2
diff --git a/README.md b/README.md
index 5a3d90c..2ffd636 100644
--- a/README.md
+++ b/README.md
@@ -17,13 +17,12 @@ ansible-galaxy install -r requirements.yml
## Secrets
-Generally try to avoid secrets (e.g. use SSH keys instead of passwords).
+Grundsätzlich sollten Secrets vermieden werden. (Also z.B.: Nutze SSH Keys statt Passwort.)
-Because secrets are nonetheless needed sometimes, we use [SOPS](https://github.com/getsops/sops) to securely store secrets in this repository.
-SOPS encrypts secrets according to "creation rules" which are defined in the `.sops.yaml`.
-Generally all secrets get encrypted for all GPG-keys of all members of the infrastructure team.
-Ansible then has access to the secrets with the help of the [`community.sops.sops` vars plugin](https://docs.ansible.com/ansible/latest/collections/community/sops/docsite/guide.html#working-with-encrypted-variables), which is configured in this repository.
-A local Ansible run then uses the locally available GPG-key to decrypt the secrets.
+Da Secrets aber durchaus doch gebraucht werden, verwenden wir [SOPS](https://github.com/getsops/sops), um Secrets verschlüsselt in diesem Repo zu speichern.
+SOPS verschlüsselt hier die Secrets nach den "creation rules", welche in der `sops.yaml` festgelegt sind.
+Grundsätzlich werden hier alle Secrets für alle GPG-Keys aller Mitglieder des Infra-Teams verschlüsselt.
+Das eigentliche Laden der Secrets durch Ansible geschieht mit Hilfe des `community.sops.sops` lookup Plugins, welches entsprechend den lokalen GPG-Key benutzt, um die Secrets zu entschlüsseln.
For a tutorial on how to set up secrets using SOPS for a new host, see [Setting Up Secrets Using SOPS for a New Host](./docs/setting_up_secrets_using_sops_for_a_new_host.md).
diff --git a/ansible.cfg b/ansible.cfg
index 654da28..fed728f 100644
--- a/ansible.cfg
+++ b/ansible.cfg
@@ -1,4 +1,3 @@
[defaults]
inventory = ./inventories/z9/hosts.yaml
pipelining = True
-vars_plugins_enabled = host_group_vars,community.sops.sops
diff --git a/docs/setting_up_secrets_using_sops_for_a_new_host.md b/docs/setting_up_secrets_using_sops_for_a_new_host.md
index c88315f..e612d09 100644
--- a/docs/setting_up_secrets_using_sops_for_a_new_host.md
+++ b/docs/setting_up_secrets_using_sops_for_a_new_host.md
@@ -1,20 +1,15 @@
# Setting Up Secrets Using SOPS for a New Host
-Because we're using the `community.sops.sops` vars plugin, the SOPS-encrypted secrets get stored in the inventory.
-
-1. Add a new creation rule for the hosts `host_vars` file in the sops config at `.sops.yaml`.
+1. Add a new creation rule for the hosts resources directory.
It should probably hold all admin keys.
You can use existing creation rules as a reference.
-2. Create a SOPS secrets file in the `host_vars` subdirectory of the relevant inventory.
- The name of the file should be in the format `[HOSTNAME].sops.yaml` to get picked up by the vars plugin and to match the previously created creation rule.
+2. Create a file containing the relevant secrets in the hosts resources directory.
This can be accomplished with a command similar to this:
```
- sops inventories/[chaosknoten|z9]/host_vars/[HOSTNAME].secrets.yaml
+ sops resources/[chaosknoten|z9]/HOSTNAME/secrets.yaml
+ ```
+3. In the following an example on how to then use the `community.sops.sops` lookup plugin to use a secret for a host.
+ In this particular instance the lookup plugin gets used to set the `nextcloud__postgres_password` variable in an inventories `host_vars` file to the secret value of the `DB_PASSWORD` YAML key:
+ ```yaml
+ nextcloud__postgres_password: "{{ lookup('community.sops.sops', 'resources/chaosknoten/cloud/secrets.yaml', extract='[\"DB_PASSWORD\"]') }}"
```
-3. With the editor now open, add the secrets you want to store.
- Because we're using the `community.sops.sops` vars plugin, the stored secrets will be exposed as Ansible variables.
- Also note that SOPS only encrypts the values, not the keys.
- When now creating entries, try to adhere to the following variable naming convention:
- - Prefix variable names with `secret__`, if they are intended to be used in a template file or similar. (e.g. `secret__netbox_secret_key: secret_value`)
- - Otherwise, if the variable is directly consumed by a role or similar, directly set the variable. (e.g. `netbox__db_password: secret_value`)
-4. Now that the secrets are stored, they are exposed as variables and can simply be used like any other variable.
diff --git a/inventories/chaosknoten/group_vars/all.sops.yaml b/inventories/chaosknoten/group_vars/all.sops.yaml
deleted file mode 100644
index 4cccea4..0000000
--- a/inventories/chaosknoten/group_vars/all.sops.yaml
+++ /dev/null
@@ -1,210 +0,0 @@
-msmtp__smtp_password: ENC[AES256_GCM,data:xcBVBTb6mfr5Ubyfga9ibKWKhrfrEEaDWD98vIbX8fl8lQ4YTovg8Ax1HTK4UQ6AkJGHq2A0D5B67KUTlp9eLw==,iv:TOp1G1LktRPj/KMCRU5CXBUsgKOqGssUvvk5oY0QnPM=,tag:SVBdDQy+fM0xeEToappP+A==,type:str]
-sops:
- age:
- - recipient: age1ss82zwqkj438re78355p886r89csqrrfmkfp8lrrf8v23nza492qza4ey3
- enc: |
- -----BEGIN AGE ENCRYPTED FILE-----
- YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBsemRxOVROLytjZ0NJazJB
- UnRWTmNvb0JxUnhWMGJTOTl2ZVpyYmxZbUdVCnorcTgyY1pNVzNnVWYwNkFITEZl
- RmxrZUN4V1BRenBISDVBZ0hVelVqU0kKLS0tIDQ4QlFMajNXQzRDVWd2Skl6QkdK
- dEZGZ21qR2ZWT21OYi8rR0svaWJkU2sKND8yz4CSMVjWtGHymzD26Nxlk6leEkCD
- XYpGJSyvhaw6Y/oExjzuXYMDXCr/EQFpM8wpU00YA62rZ34FBsyoUA==
- -----END AGE ENCRYPTED FILE-----
- lastmodified: "2025-10-13T23:45:06Z"
- mac: ENC[AES256_GCM,data:QxH4lnNyCAAEJhzbgCrq7QeLs+OAtYgwQP4oFm93NE4Fbz7/Hz2dvL/2SopOdW7nYVeb1scuG1ra+yvgzuQDhg4lcgt9eBJoBiynM3qiHBs+FtcSJoKs16I/ACAadQwClALb4E0xxwKFJI8ewMZu5BAxi5EhYbgNfnKCIbhvgWo=,iv:LRa2vX0HUBugeEAVeOqXbPsMQrfrCpyzGUGjK6+VaQc=,tag:/sfhJM8V1IYBh94ZS/TDxQ==,type:str]
- pgp:
- - created_at: "2025-10-13T23:43:50Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtAQ/9Hx48AvlY9g+JVcwqC399JS62WOMmswvmqJIStHCVCEJN
- DPAkbabJ6MC9GiN2A65+VNQJ+X9sjbjKt1kjOEujS5xbA4yX2p3GzHBdgQxMEf6p
- mZSZtI37N0J8bCkHU9IPbIl7W3l8cKq1f+2ZCvtozveWelZDCvx1TN1HLrRO0a1Z
- BINbaSwDs+pQ/3Puu/R9G8Wxti8V5ECXMjB1Olf1Npg1QsyHYOTusketRKbCp1vh
- A78U30BUM+asmgg5MaF+9pxuNDnt/kBXf9VjiElU0XOoIoyTZuVSNtJKxcaTim+g
- yj0RisLPuH5TRo9ADks600WLwFshLJ8sUA3f1X/jI7gM77MUr3iTLxTdq2bKMXTs
- BHo0eiXSi5z5d7FZhWa8nlMDnN6hOiOpXCYG6+5yyt9w2iepAon0U4MBvqfEbe1z
- I4q3gYuHyTbTKuwDEQAiULfRQErBHL0jYb9VZmopSyXmdahHJ3weXmVxy6Y2YZat
- pzJyRpCA9368stdKQajI5qGhOPKVI94WLVsOfKPJH7YsZTa2sQgpLMU4wzqhkQMm
- TzZ0aifl+zB5RCkfdA4vtqnC3t1JuA1Mn05f5OIuGa2v8FIxG4uOtCAOTN7MLesk
- bNcxYIwPGukN/OoSyJE6TutAaUOIlsSwWysN8p5elE8jE5Q2f+IMLd0U25JfD3zS
- XgE6eJmQB90gSIRG6C2R26UY2onC5LqLDZ9zhOTiorHrzLXvtbYS90XMLtbzX8ft
- 7zTsME/nRZpnCSZb97nqGsb6tnhnQLnSCwagmVRtJVi3N60TnxAm6ulizbzTLt8=
- =d44L
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T23:43:50Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2ARAAs6qi0w48EL+4D3HVU7XaTpX7CdYTgYiDvUosVTWEcx2c
- pRSTkX2Ai1uIGPd3+zTrindOCJNTgdpAK5PAHPT8nzPJUT8o8xAsFTHfS7sphHVo
- RGx4CNHafMAXn734Rzzl6n+tAoW5Bw1Su19+dmeme0o6qrWU4JB9ZWIaZrtqPRP4
- QDWSO7yGLQ0IHyK81x3nCHS5J6VNUyKn7zEn7Ezw8m+G51MK46oymS+c7B5n2bLN
- MmmC5GKnmGE3AOnyRN+1O60ZRq8FHN8BM8aADZ+dUx8wPlS2tD2K9I6V/0gOSINH
- Yq0FIeh4Fbd3NS2PNZTgLjjiU+OSi4/q3uLTOBOAroPwhZ83I0UhlMfotE6/z++y
- mBo+SL2jBnG53J3iFqeXUfHOpEkrItviFyJp2MR+l6+hM9fzzIp+N1+2HB9oUuAA
- 8Sa9NeY6htVGH/W1T90LK3kwZNTt7REdbaYAgzBrqLemrGLAQSdOotnaohoCXgst
- uf2v7y+8351tPZ2o8cCv7LsuTARGhJWW4Fw2MVfM/hvYq6rBdelfv3GS3hLI5vyW
- f5BWWODgE/+DmT8+Flrg09JEvJJfMtPaNG82WLkPmFCNkZPgup5yyOp7sVHmRhZ1
- Yw6azYPiViDlAPItAUaLMHpcU0CIa0zIZ4ND8wk5IopFiXek330imyhB4qVqOv/S
- XgHcOQmSGWwvTrxs8/JEwaKlRBYDXVDw6NgO+cIoW7uv8raGHdb7cLZ60FfvtFP3
- i8h4hQcaDGoEGsoehOpIjRtOSgyqT96/UN/slauL8eF9Sjh7zrxS8b0McXvDxRk=
- =CEM8
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T23:43:50Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJAQ//fooeHFVDPbuEJ2I8fgbEDpNi+yASN3ERLu3b4SzD1ik0
- byKoqHY6E/+vjC79EPQE31qAapigO8oKz2n09+Qtn2H4oxigJvV9lA0SF+b5OAns
- UtuJIiGrTR/aLBcS2Vg368S13WYYdRxfF9nt+HEbjxb8JnwV9nkXx9GnuWYzCe/C
- 4dTZva32GKfLHthAb4FqFRgiDoDMg5rdKE4T7W0dllSJ5cHXnYSo3U0KkaOP6EMA
- yx9ztKDZUMskiks2xo9pw6bNC8txseuvwIImw1+ep2DzlrR62XpyMeQkfKWaFkEu
- ECJH+FZIsb+STE1GtjCfGGP+Aa2mOIXMmde3BZxZIBk1TY5t6ITs4AvAZKTcb3ZZ
- vHupolz3cEOcK0vJdiUfnFLAOkQWMKQu7ReZQXuAFpq5BJUF24UupD24P9VKjUSR
- 8LkZdD+knQXb5lO6LFybIiLTM+eVBjZ03/RpLF8QRfqKKlRFWawHJ+OJOYHEP9Tu
- HZDrhLrgTNyu+R350xlUoduYf8/H6bQ4IyCQdKvjLIvMlDKQ4iADY4Uc9vcqBQKL
- LadQ6F2EwaRVEL8+NoRbFeLfAKLCK7N5NzHXK4BX95NhEosXP2194vPRZUkFuE9C
- PjceuiG0Ad18X4doCSnRcr4gR8eDoRjar8dNmniVypWeJSwzGbnOc/uD0GPtoC3S
- XgGAP3CciOVyXtqwBqZF/jPyE7UI020gSda9qzCD/SZ8BrZwx1hFpqcjfAP3FHme
- Tjhv+cQnYKuBdjyLpwVKDfv2fq9lWRKAOBTztJ50Vg65imXFJcjZO4zYzpjBmGM=
- =2a4J
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T23:43:50Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1AQ//X92V3Tr6xeWIeF9QUi8xXzyF/jyvXvkRHnfI7YSUsFpW
- 0IOiSUVGM5+/kAKTvBfjyTbSTKiYMDgmtEak8Ya3frVAh+oR8IR2p1dKfh4efCP6
- UTUv5SGUnFS1otb8+/HSN2dI4s46djwNSVEellyRHoQOqotFGZa0V+4G56cNEyvy
- luk/HRoL8nUDy8pPw4Ea4HJ48snKYLHuzwV5rDQffyfp1ORB2ic5yz5Ooi/XyBV4
- rGLrQWzftMuha0WpUScgPdXmrRTYgE5ikSClgc5t/MBBo8Kn7bUiK5gug7/DHtgL
- XtbsMduE+8Ea8YOiu/MYkXX1K00cI7MO8iJCHoI4AcPMXAANmNw1qDtIeNJjrsIJ
- Szj9BoHYulmlKnW2/m+Y5OR/NxrwWoXP2lfTFHbqjkh/SwetybDfOrw91AcT0i/q
- aJ82RYadQiUBwICAykr5/lPdtgfj+H9WoMRXD854/DLBhJaDByLGu7QYyJSGdl8U
- 6RrYQLHlwpzLVApJl708Hu5kLK9hEWNXQnmLTl2KLYIXsrTXamzf+C3KTPpY6d6w
- HZ9GzlVCsqGlFdUAWCfuC1/bY4KJOSqORGoMq5Cl1Rg9nO9YlVMPYgfBvdECclT+
- mYuidzlKpWbkVp8iFas1M7yP3seMTJbG0+TIe90Anp2LCQGhRn2FnOzqogxT2GjS
- XgFHh1DBVxNeNsYdsycTv7DQFilW+cag0aXXIJbB6PG7YLc+A3fi5FlpvA9+5zOA
- g4jeKoltkAOLBs/IwUS9Irep/Qks1aEj8glOtznGWIUwHQIJBSo7pTYgSKHQULM=
- =5YCl
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T23:43:50Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdA2C4sNjhrk1FmX46I8/VI5YDqbWJcyUM+mgsbj0jqVjIw
- 5IIGIzKcXoLQbkDnVi74bGYa37EfpxX3Zo447B+i05iqG6Nn5nvBlUvEt4mtajfZ
- 0l4BFYglNIp9HDZAEzXEbn8v1xF7+f32AQiWVKtb1VJHTN+TWOtf7QMhha72y7Jc
- P3EKJEzADNW/FBXhk911Ezi/vora0CMuAGdj9LUwvjJKgWVc9FgTfs5Q4kp+rkue
- =eXCq
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T23:43:50Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fARAAiG57bEoJewA47OYe2GwraqV7ro2x8lzXAW/XSTDcDzyN
- LIFpNM30gzTbDKX0EyHAMuzgseNHlxb9SkMtginA0NrfbMIwo/vxQCjosUv2i1S0
- 3SxzTsPXaj4yBfRyOvRnKnQfiLkUevNlAQI+rnoJvdVDcpXM769otiQQaMaa8sBG
- +A+D3m74W6WHf2TIdpFZVVnp3sIJ1FFRO5Y1xsyjXSybYTzX8duofaquTN/ZNztB
- VBEtHLJtvVKaLmimo40ae+Frg/R8oi8I2owaO/S6V9n4pU27S9vC1IyuyuazMyTC
- 6d6rWtyA78sg8j1ru6tmuI04z14hx4UTg3sZFjXT7kM9Lv/57ZyU2ncPR7qokehT
- 5mQuTMlk58D+/svJK5aiAQbrP1xDarnCovtFelewOZWCjUF90PC1HuqKLuytr4HR
- YWqXPkENhfAaVDUsAkKnY51OcrsLvntxg67nQmmxL3NmaYaf9mXEwuxnCgF1IMvP
- Uvw9cQbdVkEdNxR8G/eN53898gcTXnFbaFGIZ1NKvPc1yBWai6Lpx+NQoJuyVE6V
- JrT8vzbIHFxEzB/+3zl0/xI59gIPYciswrKpqiMrtR+oAOPxooV196vAYOdJuEZm
- 2xSzBp0C2YdQKJnJUlzM9brD1rPp40GPionJZPiV2oNBYxL0Z1aZFiKw2gNgwz/S
- XgHdzUJ1PJam3o78wjrwl/zB0qwdkvOpSOrubvJFk83z2c6S6I7HWqHDsOUBjU22
- yf8jKG6Qt5d1I35kYckRyCj8/fnly+70UlN+OjSYAkrvsKpECMvjzSC3ZeyuhOU=
- =6R7D
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T23:43:50Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoAQ//Zo1bsLgKMrjB3/3VRXyXTo+plRyd5hYzmKc3ecC7XAYb
- coo+ct73coyF47hsnLUlyVucNRKdBql0V48mPqpWZAGZIVDVSVeX5laWeKmXeCdz
- RiFBTTwBv1jasDQA87rMRPc+XbX5Jb0GCmHLF6RdiCksYIC564BqLwgxCvGCResZ
- mHLek07gJpFiYa1Yvjds6kn3+s9jP6kTwbbCBziz8pmifuasqlYb/ZRZPTgO+yGh
- vuanXnhFiJZQoY7kCpwOEbjZYTtmt0buqyUsY9wWmwyM8T7tIdq0BsOCSGxr7nQP
- KLb0JJ15aQKLeZBQbuLOM6Z4fkcn5mdfsJ/UTackq50OSmUya6cYC3LergvLXf0n
- IiyS/+RUzVJ8qlhRBAMvy1Aifmbb60px32TXSD8T6tyed4KxeAuGblDyNVJm2Rdy
- Li8/VpX9ZnSxf9SQemw7mi7iyIXiCU0Vl/A2/LEIMN4Hb+0AFKEbN1zZRGSC4vFh
- 0JMaiGl4TSTV4NBHRhaKGZvWnWbtR754V6BzgHMdsL5NHo2pgMQ1cwyMPDBAECDw
- K+z0pNuIksZTlb08PHsQX/PXvO20QFR210Kd3ObMtBxcEOdi6Wk8g+udVzBCY1WK
- m10LA3ocg2VupzO7cAfO6/DfjXcs6QGD3gtJ8LRt+CFTLgi4m3M1KIZJF7FlTqPS
- XgEmne9JRZGPY+vblzx2RH8nEfLIsEBnZYMa8eUFC6dYZkK82i8xI9i4lBtyXUBN
- f6oQZ5dz69AvJRkdDu8/iVMHtwRXcGYuvn0v2+qJooHuDoAwujk+VFNtzRDJhkM=
- =sVQm
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T23:43:50Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqARAAgWks85bShgeHgNHxjIjRJ4/ytYdHjxj2haIjNABOHjsE
- 4HD1bxq2XcH492qsHzCjvGJn4x57H/CnUJOp5TacAt/CyR+rgr5ChuA8pecJaUju
- mUenre4zHhu3P8bS8q/Qs9J3WdyVdm0+wE9RTfq2ZoRCFA+d4M7VWg9Dw56UM3i6
- 27Xtkmog5olITjtzWtF/Uuf0dr9sTxSwHVqddUbzoQs/vtCKyUTUEtz46oBXQtC1
- +jKu1Xgj4rbaajEOviQf0DQ6zDkB7ETtuOCDhnQDFG+Yw27mBZ7jAT8l1ykEuMl7
- 897x9RNOOitTYkqKjylEeSMcUUyQrOuLLhuBSnC7/vroZEgNc2Wtj4M7Sq8tVMUm
- psSZ9lYVbKNH8JuAVZj3YHhexPVQLuHcnHgG2tdUZ97PB6+yI5pos36ItjkGtM3+
- 5jMCPLAKgrlpAMc4xZmktkXZV4BkrCvN2E5h7HXnsKjQaCsKsn7rD33LNIx/XB25
- 5vDZjxfGHwQrkuq/xTTwhRO1F/S2OK+JBygHcrcdZKMDhMDTYYxf2bwgW2BdLqxZ
- DoenMkq5fredvkB5qpoJEM3iXcy+49SNsBBTRWQXoWl0tFAfU5+y9ez8qBw9QY2r
- q22UFl3JAR6jEyLpH1pUL3LD3lCop8ZqZdo+7Id4gnNHDbt6njQwSAsSGGDbylXS
- XgGronOVF9eWA0dPz7CW1j55MrgbCXAvIPVSMJ2tgxN00u3TkYc1aHhXe644ZLF7
- guNFppFmxmJXVngfWoQhcXxLRJx/dXukIt5TvRCia9ngpNR6EIhL8y6ROlWHpf4=
- =aYRJ
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T23:43:50Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdAdw3qzfTgQK3KfmJ/Uatv1fbVqQvR4xTHLssc8Sg9N10w
- cDMYAvx9mKVWXwzT7NiZc66a6/juktGAIdbEwXCz2tVAp7rclaiNNUc7G/WXqUMx
- 0l4BWPcWxzXmDmZkZzaFRioScTXg/yE2ncbUuouKq3gKZrNErPCD/RG8MMkve9XI
- iBOtNwicXX7l3TH8m/7eOSa9sLJH8mUafvVGWG5Ri2HvbU/EpctFi9YrrQCR8mgj
- =z8g+
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T23:43:50Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdAKEVSFnlcT9WYIhkmOZkLkvwnJcCl4t70AHVvsDzZJ2Ew
- Zb1JCI2E5xyeUB61GyAdsTPBCF55bXr5SD2UojCw91QcJ5EgRdZM4lyRpbG4lGud
- 0lgBB0VHoP2DKeJI7TltIFsn/5A4vykzGFjM3aK7O4Hs631Mz0qCeEO0hL0psAnw
- 0HcmzOKWKTC00BkZIf4I4CovFte6t29Q8BGR1SlPIlf5rrRRl3UshEHo
- =6vZf
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T23:43:50Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+AQ//QZt4gKKhw1mV9eMCfD2jKSBsanAiAVObv4Qr+D0DyDe2
- lkVaZ9A6l2+jUmcFG7l0FumcsWqbz/GR63m9GbXAQHrIXkT1MtR4LwAK3DWrbuTj
- D2qWYwrKYs/Pu72aqqwacWRQxy80eY7tvtaFjXYNso/VIRRqwqKQWwTIYePce34I
- E/goG0Dr/bVqTNnPMVoeK2N/JL/n4sMR54tEYzkEhveFCO7SyHaGxpr98vJFioF2
- 9z+inw3lKY3B4QsKsQzKSmNfs2QB4mMqJ+TBDKG3VdwaudFROtJ79wO6+ahzDsoj
- 1ct3YbsS8wZUReGxHE6EYHqYg05djr+DjsOvNbX/J5RQK7iFLFfIxx+9ep8/W63C
- JNnnq4UmZuolPEDEJsQgv2NOppC++amAxHpSKl9s2s9jy3JrlNKWLov9WOHsihVn
- ZTs7Os/UKQ3r3cq94Xa3UJ7xNWI2qMwxw/pRD9Yy5IN8ZJjtcbtO6paaNWxJkNV0
- o3n8UM1Sf3ddauj5GG0BdPZR+NA82bSSjpm+Vnsd5QGwNdWa6NOMW4K5HKj56/xB
- 1kjta3TimXnGVGYzt8KTAmkdhChU0LeM3MBvF8/IVuHOyYkf4sN8Mfqoy7YFca4Z
- UVw/rvMYRgy4ORMsIDg/ucDoPsF/oPnionQIXmY5GMVsV0VzYuWVP9Mt48+W8InS
- XgH7xkrrQno8PqHaPc5C11eJFBxw/p92vp4Y0BwBQzcmt6sfO/kLFYO6FdQ9EQIX
- 7ncs9anVdF8Hcy44N+6u0eA1GY5IulkHbsulvW2xek7wT4IqWC6tMwVrWrpq35Q=
- =qx+H
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.10.2
diff --git a/inventories/chaosknoten/group_vars/all.yaml b/inventories/chaosknoten/group_vars/all.yaml
deleted file mode 100644
index 3612ebc..0000000
--- a/inventories/chaosknoten/group_vars/all.yaml
+++ /dev/null
@@ -1,15 +0,0 @@
-# ansible_pull
-# ansible_pull__age_private_key needs to be defined per host (probably HOST.sops.yaml).
-ansible_pull__repo_url: https://git.hamburg.ccc.de/CCCHH/ansible-infra.git
-ansible_pull__inventory: inventories/chaosknoten
-ansible_pull__playbook: playbooks/maintenance.yaml
-ansible_pull__timer_on_calendar: "*-*-* 04:00:00 Europe/Berlin"
-ansible_pull__timer_randomized_delay_sec: 30min
-
-# msmtp
-# msmtp__smtp_password is defined in the all.sops.yaml.
-msmtp__smtp_host: cow.hamburg.ccc.de
-msmtp__smtp_port: 465
-msmtp__smtp_tls_method: smtps
-msmtp__smtp_user: any@hosts.hamburg.ccc.de
-msmtp__smtp_from: "{{ inventory_hostname }}@hosts.hamburg.ccc.de"
diff --git a/inventories/chaosknoten/host_vars/ccchoir.sops.yaml b/inventories/chaosknoten/host_vars/ccchoir.sops.yaml
deleted file mode 100644
index 23cc272..0000000
--- a/inventories/chaosknoten/host_vars/ccchoir.sops.yaml
+++ /dev/null
@@ -1,201 +0,0 @@
-secret__mariadb_root_password: ENC[AES256_GCM,data:bevk9PiMUAP0YBYqpVw9PLEz9ITKVRQ44Q==,iv:Qjr3pOWzcDWUpJAakrn31OCcvcaciJLgS1Zp+YZPWPA=,tag:DB1l6lsy+aHa+U+QLAM3tg==,type:str]
-secret__wordpress_db_password: ENC[AES256_GCM,data:QsvJ6NH4ySsfSsP3pWEx04vxjIph1Wk/jA==,iv:AnocV/jXawXPxQ0dLSw05b38ULQuU/RN2G21/1GpTmo=,tag:QlSCnuaQxCmJ3XO5jjX0zA==,type:str]
-sops:
- lastmodified: "2025-05-04T14:15:03Z"
- mac: ENC[AES256_GCM,data:Za+XnpDu+WTMEUgZ3jnG9/4FOd/emfdiaLSGX+hfkuBSurlqFzVHpXqs4kyl96goOASevkiqCSXwk+DGGNTvSRDCoAH2jMfwUHh5mGHFwXKZFjraVnLidxyOkEg+YJ+tzJ9EHJ7MpQLYlHgGi8Xrc27n3+gpjni6+VhVYiLj4eQ=,iv:fQuTnJbsyNyphHZF6T9UF62jtA2wDrOxlPzW6XwsdNk=,tag:T8P100qKnYhNqr7oJaY6yQ==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:35Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtAQ/+IosfvaYuM7bZdXUtdanSZDkss7wW0McZYkFUZOjeersP
- EFkcPo7fvcpQ40GHL2Q0hbPiSLFnoTIVXxZnYtP32OJaz59CCfGc8pm/UjP/mQ9k
- LqyfsmpSHtQA5as7EYpq5fMsQVDizW+8Ie/xEzbsrrlv83YeEqtcVIhMGcCcJi9R
- ZJB4UtiyPq47Zlo/5Jcaa+xyOJn/Uzqkpz2byKYWacGjsLuuC0Tjp5jAXh/KARcM
- lobUcm747MxXihHUnaFxLVE+8DSM49axILPZ6E5gPMDT3PLRKryxbLyCYQMQkEds
- AQNaXTPAJU3B6WnNP9/dOX2dsspgHvLpQVDCTTjI0jXXrJCcdbOTlG9UyyUZEDbx
- h2JqlecBQ06FSiA0ON+DJy2Xg1LwzcQXpf+nLpZqYi7wab/celcn1EpQXI2C87Hv
- rgWO1tnAAh152QYaX/sBKiC1QbomCViOwA3e8UGBC+WgBNCDWtpFce25kgRFOs6A
- zdiGO5NzJsmdVF3moW6f2v+nSZs31ziQeNDzIY3moJTbwebXZ5EMfK0g51nwAp4a
- fhiTTu7Bb85VJyGzpQcWvkauUOMlYMTFenLXj3jr6QzFGy+OuGcuJyE7MSIK4pdw
- hO69qGidvepjHI+nc+8+VV4t3xau8hsPM+6LFFd+X/ol1YBlcy0Cp2edmJveOX3S
- XgFFVnOdot7zxsYDAYQjRtrSVP6lvingK7cYnMnou/3d1csuj2KnUmg93IX5veRm
- ln56AwW2LE2L1DWBJblXX0FlA4j+s8Vz1mSaTRQAb2fH8miBjFXYhfo6Ts+GPuk=
- =kbe2
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:35Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2ARAAr5dNAp2mqlJHRBMy88OX5mAU9ZL48HaxwtAApGRcqzdP
- JL3MhhUMEsrk44o1ypQBEf1d+F6qqtEpbbdwYkonfIZsLtwQit3f+yhCI/o2GROi
- tP+0Nhj/4SJh1r4c6qcbAO1j1/E6wopK3TIPs81jvao3au1lTNgkw52Yhz/tF9Rs
- Gn2RWFW+ivpb2DJPL4KMw6HJC3CN5b2sP81vdxFxT/Wf+lx0JQWjSSot4wo5bgIC
- xMkwrNbN+agAm5mOv6ra3it9+CzhX/4XnAhSL56Irx6vjy6JudHPre5eUR3ZZ5Vw
- bbIwJBSUCk/rLzdJak2BpjOfqjIw4PcIdFD5aWH6KIE59pPEbJ31eZEqBiRX7rcY
- mH3guxkgvAV2nMpQa1UrMSNZa7Pu9fawEA6GMzqRhy8uL8EnCl63nOE83JVh/fgg
- 31zYRvrMfgbwNcr3bvOB7cCH95iEJV26B+2oBp8r733EPHc6ZA4/j5dvebXTwxwn
- /95D2XvRiOZPu0Et7I7GYOJobfL6tD43T+n4V1oFRqvjJUc99hNw+n3BpGiFR4/L
- qFi8jkasE8i6DgLqU0pHGnVZxEyZkSr/fqFBpOx3vW4U0J6qgjVHZvZq9+ChHWDM
- 2vHB6JQHOAZv7g1arlH+OZErE7GanTVZsiwB3rll4FFhR7HVIFtXknR5ie5qsDPS
- XgEkB65zknz+Ra5mTtvSN59epuPeJLpN6OHSSEfI5wJXfRzxgtVjgEIhF1UhDaEp
- Eai4vv/sD5dX++55/jUEOwKP1AslcrwxdPWQL3Mn0RDdpt1ZlbkdKfofrGuR++M=
- =SxKy
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:35Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJAQ//We4uBivofpNlzGUgviNEKCRaySb7BOyWauQ4ovSB9xBM
- 5k2G/7eC4JdZlmCWztDQAzsOwauzrusIz5ZvCSWuW38ydsOFp1iDQZylx5khDBh7
- gubv8lQcr1I3FC2SX5JOzhVRaVqLjh4/3k3OnpaIGm6KJHjLCd31X6Juas9xVWoH
- IHxhSVaoQK9GWXjESSNf9GDP9yh18GibVlQ02X8V9G7MkDz3ttGW3xXMXrGdkPOu
- uhYlr+GeoAbQ+fcBLk7Cre5my9VyUHhIz+WAxFkxEbab9wqUDUnXuFgcxHOynfoM
- TJa0PdlHeUy2Qh85TI1Fo0SxErHmNgDXQhLulLDSJbiXoUN9TuyAiQW8qnnQk6O7
- KH05ahvrK5vOXeBv/QIddbZ/TbB3tRIEVF+rDaJVZK6VuZwoSvOg7trO14Wjn4+y
- mAH/fBKSbDTO8cFfYVJn0ZubCIsealOGhCCaaS4z2/m1/kzqE50hCtcagESbJQYk
- v7zI1fM81CUUiQVZB8RKmwgQrs1IEk9Y9E2Bve3AuFAJQVx5u6teklgJXtr51Iw9
- 7H+y/t2R2J6Z/mQhZ7QcKdezkrqaWtWJox3ZMjKCjrzePXX394DXuvnz/6QAVue7
- 6ycKBQA7B1EH7GhUfBjtEncqxWmg+Hn+8mIAjDtk9HK5tIDAj+tnpgtdC9w38QjS
- XgHC+3QjA6QxE6k0Wm9Hg9NFUdXNUAJP4Ok8MqT7DdwkVFtXJExxgJUhpCHrRA5t
- ryeh6TU3lpxMsePFo/s9DZ2wJ+xrTKV0oiYL0D2oD9tJ0weF39feQDoDicqwVqY=
- =e4lK
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:35Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1AQ//UNWJ+gFT3vUo3uST5HzxBh2odFv89z39XG6BTjf5zSLs
- uUuwyjzwNniguaHff9vU0s5EXY55D6IA9Q34hNMPDG9TRettwDY+pNkvHF56zx1B
- pZkRKqEW2czwM2CYRufLjkaI8Z4dysMss0itLCgY3ip/fwZ/91qQmZ0UsNw/w8Y4
- C6V4cJD2o9PyaO60iEMB4QTvCRtyJjDe9pArWnGQyR6hbH7b6wI1voWP2IA1TGXZ
- GsWQR4+JGdew1o92NDLmbyOLcw1aUZ1WvtuVAljwHuSwm/Atl2uFVlntTJ6YI57K
- tgKi8afbXBiGG4Y5KjyoViJIkXQsGyqN9NBoRUEfUtf9+iFY0blTIeE+077WKhUY
- Ql83rMMMDy5NyU3H64WfkUMJbDk6FVhVHEsBrib0OhGGCacHgrB45raj69O4ixR8
- PBXEAPbE+8mchMYLsQEG7Zu/qLFiybPKF683WHsHQM3WGiC1YaIv37WmyHLEZEQe
- icJ75ZlsMWWvmF0BT+Fx+JoC80f8kh4EMTqiVFcqXMtvye5XS1/nwdb92k1QGnyw
- HhcmqnkmE/cso9le9Iqjqf9AOVkFN7Ul/P+husp7Kl3CXAsL4jy1yAPi6sOPlgGv
- yBYsOzYs7UAAfbydZV/mafx1/LGd5dt47HvQu3FOlAZ6AQQLqHmndJLLMD1AP6LS
- XgEDk5ll/yQTuHRd+4170gQb6gOORrCVCJW7aDQ8ShU/FdGsMgm23RlLO/85/yo2
- Qp7SqAtnUwZfFvDs+3gHpoGE94Rkp9N2D2eirn+yZ0uk7Ak76JafPNZ9QANQL7w=
- =LrpK
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:35Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdAe+GkmU8o7XoHMyntQtPEbV5zNqUgrcoWvcZ+MFuajQ8w
- 7lyJarLC/f2j/HZ3+lZlULrMjFjXgBf2bNXcOhF1nwO11R8+NfV0xwcpvRVSuo1m
- 0l4Bpti3RneLHjS9OcRdIz/TzcTq53L8JtD6F33f1NnrbE4Sxg6HvLbchuWCaXh2
- FNQ319tjWrfndWkLCFa/UlFhA/kv7H8JcISn48pmFv8WGGzlb0zr9LS3Gh3Rfk/G
- =c3IE
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:35Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fAQ/+JOKaKiQeu7RN+zUvKcsg6N+IIOnPM+5+5KUqum4bYHGX
- gGQK86Q997gUr8jj5RVd7Nx1iX+XZZwl9248Ou+mnGcl3C2lBK0figPftKrZBvAv
- AMdKxBWImfPoyggoLLcRdOQB1CXWohBkvIz5bwF+lBNTweR0FCa+sJXyp5Yhgdnz
- axgHkEP0QWIDK6w5T4ZFxwtuOMmL1T22MRvDllMuv7TMD1vXESOaMlKXbFUXrKC1
- +/+nVLNgwL4RmClGZJqMAyO1rzquui//EW4yiF2k9G/oI+2Ewa7/E3/Ln837rExE
- 520P6BNPD4oUZBOES50IQU2JvZuzWkBOuOAERt43PlpxT7psGEFnGnOyvBxL4BM4
- UVh2FKzo8oTrLsueLLe55VolmjecT3GGnJT5u3aK/MWjxEVrZaFz7aabC5mnVZlC
- EEDOl0RzSNsnhEW/QkPGmlEjkoufORoNFF0Ezsustc3HlymVh4Ar//QBYvQcigQe
- gjSb5gXhMiLVTZF50Z30Bss8uAr3zQVjoSQWMnoatt64/CDztKVN5dZwx7qMG4V0
- m3VDV2WqGotOiI3Uc82COQnRvUw9dTC7qf9/xvsm8I3EBUbMqVELScDA5C6hY4cz
- obzK4t6AbwOR8nFSdIWucbw8FT5/ENoZz+ZiqQCz7fPN7/PzUDJOt6IpgGNFp0bS
- XgF+XHxIfU03AbOwdEU9Tv/NOv/s9AE80fk1BBDNeFJr5ggnnDLq6p73zcJkMLxa
- BzXJrO+VUQ5NJ44mIvZGO7nnOd90pqSevBvpTiu+1W6867nMgdCVPjaC4qQ3L0A=
- =aofb
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:35Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoARAArCEwTYQAguomjEj8jk3byLQvcFbtnGHHVLGPXu+OGmfR
- roh8xGoOTurgb20uGVH0z1aYuROnTkZoBKuxKJvZl6r+2Dkk+HIVwtH/OpLgLNpl
- SF3FyygJInzZ7WjXAEltwCR5Eprp26k2VMDOXPQ4SxtcGEwwvYpZ9svB3tK88gnr
- veWjgsrSwDD2wrz+LNo4vWMal9GcoF8efarx41IapR1201ptvEjWWJL5NE9Ze22i
- 7wnxtVB/H6BP9f9P/yzfjW/KMyEAdkBbbpSWCzO8iVVv20j3Tq/stDb6gXDqC7w5
- ft1zxyxdWk7+eSC/n72zLYF94bO3WwMOr+2ofSs2i/m2yfxdmK7t6cm86D8auY9j
- 1CJn6lQcS8uy/HruWksc66xWUTMaF57DWOHB+qUK8MfEcLSJTfQdrpVHE5S0gD84
- pgJv7DxI/UY5M/GVf71ZdSu78Rkcq6l6cYzEdUqQ0/qk8x9llUZmxQz+KJOlntY3
- RTx8AvHT2Jc98eS0jxpVRzs7TrSjSZJ5ZBzCaE44TbW+YHsdyErvy0M5bOFFnnNo
- 8EopvHpGHKzcIWBPbBO1oWxEmDfTPlPQQAjTeK+y3ugQoqevmyHbBZRFL/22mhRE
- +wboV90XAgzMZUSh878AWvaUoT0g5hY0D7AjYOTkNVBHcTFzjdq8txcbXM8nCQvS
- XgEittw3PSSyvbygsPoogLaWkWJKeBPEFAFW2ZhjNrfXGKAi26PZzTtyM6ZIOKmK
- O4f1wgAET7As+EmU+1tcsRpJf0WCpc9MAZOqqwiQ94eAZikt2ARc9psv01mH/AM=
- =Lza0
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:35Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqAQ/9HdV9WgUpLimmc8bxANWzIWryCRxLRoyj3Mo61VX5bz00
- fHDltJBQDCfPqEL0sTLGXTFhVMEQOnxWX6EE5xiCD7+Ys5uTjbNQrNcG2b12Ja0v
- hPB3IoApcMAwffD8qF05VNOnMqB/yHdcqOHjL0xh/KtkfdcWjqhNqwLtQb+1Dtez
- mRjaC8EwnzDAEdIkDOAIX+hhYcGXXLMNY0fNlWhecztzJCejcCt8YqIaR/IlVNhh
- /nMpL5rWIWf6iR/+/5UHUqaSmFwKkPkvmzXaitIN5h9OuSIMDjnMpsHmU+IOR8HH
- Da82Z1O2hVE0fbVOMM34d3DproEtyFpkU207kqFVGudLX9Ok+r9gEsMJVAOi3+j5
- ysgke1xNAXLSO7tg7sGXpOLYb48/offwTBVrETKjlAr6nWtd0sxLJBGPiXBTofX7
- 15uwtT0zSt1uH3v93O6SeNLdGvxet2dHukgM8+h1SUxOmSpdKGScJhCd3X+mzloh
- JUlr4pBW2XV7ulH2WOv4izZEbRh+PGPvUbebYaCpVfEAxHbqISZUTO+yG2Z+4iMQ
- 2bE0I2ZOxsZt0UK5nFnq9YG4sAjPnroh2mXMRp35EUT0yo16i5h0ZkeWEUyuDfhh
- I0YK9rD7e9ZjA5No1MSjIAKWReR0VrLJSnGqorbjDmNW+D8KlIlXTKKN6/2hZSnS
- XgGQwg0XCTsS6QOHIL1e66zC9pZ0K9osxW5Rpqd76Foq08/xY0oZKpYPnH3caTdC
- j/ghGkzN12Z76L1OSDVWbgwImQgHaX4VsYiMG8NxB/6MzY/aVUAXgOsjm0htvxI=
- =pvas
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:35Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdAARpxP1zmv3LqcHwAQCW9vYNfk4DR8PLZb9TwTA7Vtw4w
- 7UpJLEhacSaDrgEhlNI3kTe0VgBGOX+7xp7JLwg+OGT/3O1nHo/cHLuXAZIBmMFa
- 0l4BLIf4+vmvYQvG3blC3F9aeL8SfZE0sWxA+V0GojQgV84LOxb0UnjUYEQWLXQ9
- eZ/nWgOPwsbcurnW/WtHpsrqrQQ7a24q+w+0kRS2LaJaNtJtT6lPWtl/WL2+AQc5
- =UyYR
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:35Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdA6CEqFJge03j/S1dkej8ji8uiiwYI8e2C3DNzSZ4lZkow
- 6xAbHyeLLU3MYwq0w8WIX3H6oPv53VFo8IF1dyh6LdcpZhrQmwxFgy6A/hs95WRJ
- 0lgB/NhT4QrJb1EOASmKjTbcaUgibCflVZwCjmLC7SH3cKPvNeVhStTm2WGOPHwR
- PWrv7UxFByIgB/itd49BLayex3V7kqYqZevKfbxgycFMA9O9fLHtVrJU
- =A1O+
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:35Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+ARAAxv8X+QbxGoOISPxHZFDJefo61SKQDXKSY8Mm7LlGG6b7
- +6d1hwEUdg6QshLPtLzKWzfnXQrcFFO9ri48/kwro4zlSAok4pXKB21OZwd8fKMu
- rSvroEibSul1wN++sya60sMJI3Ia7lXBEKGygjE+iNZ4oHXKSecpO59fEQvg2hv5
- WrNqn77Y7OSyIUhnaP0WETuhy/iGuXNGyHLCdimcIkhj3fi/rliycLIravBrQ7vy
- lI940fPkuv9iKOvoHah28geVdGIRAe9uHv1D3dygy6aGBZltP7ewuy5TKCoQ65CX
- h5GJqq02ACnOQhKm8vS4c6/7vDxCcZW+OBgb0w2a8bBvzm9OV8ISIxwApJBSW4Rn
- 86xCqKKygcZP35lwGGc7DQFFcZIhtHbSAOz8LLXbcNPxKsgMcWZwASobNgDPlSPW
- BHAr3ytdHcpHXh9oK3rlOzuPcr30LcEhDXY/5OwD3vhG7tvs2RBpxYzQD98p3lPR
- 3Y7AcyvUDY40B5nN6IFr28585M+9GH+IpklIvxE4FOVbTDLYcMD8tZVFMRqjt9DR
- s2JqacCkztxYjTkqgurbIppfv4hNz2JsBKk7RQf0UT+R3Mj/NaO6H0Zxw36+RI9C
- GA51Dcxvrzqt4gZhWwbcF4NCialAjx+ZVX5Gj/llP5He4Z6g6ovEXwVoZtf/yvPS
- XgG7JTpjoLM4pAIRakxhmzQJuxmyE2xU8MZXNL65NW5c0KNtoZGATw2q/9BxCUjl
- ef//IDnCsHgWYuPTmtte30BoxqJiR3wDQKRfl2jqR+pjN4JJeMOwH/t98XDhZvs=
- =Esah
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.9.4
diff --git a/inventories/chaosknoten/host_vars/cloud.sops.yaml b/inventories/chaosknoten/host_vars/cloud.sops.yaml
deleted file mode 100644
index a74d6f7..0000000
--- a/inventories/chaosknoten/host_vars/cloud.sops.yaml
+++ /dev/null
@@ -1,202 +0,0 @@
-nextcloud__admin_password: ENC[AES256_GCM,data:R+6uuaDeQWSgtV1Cp7YWZvF8LYOIhoz1K7WVKerm67NLbLRpD9191DyQH13v7ZQPvIce3JzyrWqoyQigJQIQqA==,iv:chVGvTY1Ge4OwrVbFkU5IMd0aac5HqslddQEdY8F4Es=,tag:slmFXStGVf6eJdPFplqKjg==,type:str]
-nextcloud__postgres_password: ENC[AES256_GCM,data:GIWhmhiDkOC6mQAqNe8aKQ2TpTTYQJ44jn+P1hnpAxstAWLUTJZdxE2DHdjhZ9tV6kyTb/GXANn1UtgFzxczbw==,iv:lhJAZF4mJ09jVa5DxtVTfMe5FqfjpQojrI15kYuXI6o=,tag:LvzpBXbBQtNvEnCDNphUqA==,type:str]
-secret__nextcloud_smtp_password: ENC[AES256_GCM,data:9UI+hMDQqM6Ui02fpdscXj5Q+XfN3t/g1MUX4blqd/egoLBtq8R6YpdK8wf6heqXUck6VVDgDLFnpfQzy0cqzg==,iv:dkTN/pj0YhLqEw6Sp252bKmnA1RaF9wfoDE7naGN8Ao=,tag:1Bg/ZoCITh7S9Ps617DKTg==,type:str]
-sops:
- lastmodified: "2025-05-04T14:15:59Z"
- mac: ENC[AES256_GCM,data:iJcBQZ2Mpa83/bR1BcTPh5PGrsjtyQjtAwr0y/bjOXrpMjoCiE8nHl2vdfZIxGYU+v40nkgYhXS6wCIlBZgO/QgvXwVT3Qm42i4GSx93N+jV8j+iB0a1kPJ/yHAPHD0zvWF6qlNSAeFWPbifLMXHLjijZDud5LxdW2KfJ00JCuA=,iv:BTUVSDYfKJI18GZhiUC/pJ+Gbuzfk3GrJadlOapw5qk=,tag:f15zFqye7O+L1lTp0Z/8jg==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:53Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtAQ/+PY8+7GETf0WcH1rsbXJ/IJWPCVTxGk8c+ivcgBm6hN7X
- ZwE0V+3smhB4kHC+EJ2R3rV3URB1LySrOt8NCVrcH77+GfWIorpcQ2cJpLHpVvd7
- krAyGaG/FpEcLUnLGM/qrfSiStrqaQwAIie+ogl3vls6ZPtDjgdvwclWjCfngesM
- nBZhimzXCF65NIqspw+WsfdPWVCoHdSGPFV0uXy3yOa3mE8QAchElnnwYDtjB6Vh
- YA0aX/MNDjq3vxrLnH//TSZXJobzgu9ecu6AaR4ZYDuuvIyXc0wajzYyH/js7sxC
- 2xjyBrKk+EeojpDH+jcZ+kMTYjJmoxmXUzznQKRW7zYN3pwhTy8bZu57EdKQyabr
- SMddY3+DRPEe9gMqbbbaNUn3XdbWCTHCaolmvp+n1g7+u2oIH/oRa0aIe46l5CJH
- qEYsPdP60XZ4KJZZMfSejnAwkksWnHJu748PF2IqikSHiHW23nrw2wiL475SAbCx
- t3kA9lqUwJHqxc5j8l9mbHF4TlvZV/nEnibQmBqto9IihMCLXwfXfgmRd6eIfJAL
- l0feN4c0xeVtl+ulCJoS/MtDbWK5zPnIg0Jtp/q5FPmEBs0T02tX/Hi/rtwH+70c
- N/wqCi6UI6HYfR4eZlzIrrnebK0EfZZhvglO8tuOzLFCyrrfIHMHFBlKrB1RiajS
- XgHSr48HW2688nsdoaOQ6h1nVAfCSs2dDzvkg6ODfRi8jOsCEYdFOI/4aY+ImKg3
- vBp7LaHOAPsmRHd2mpychyWnzbLakl2qoM2cwZR2hqbQyl68loRtOT+9qtK82vw=
- =S5Ao
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:53Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2ARAAt8BODeKoqbfIwq0XiauI06ez8SR+ycZVyscg8VQKs4Qj
- shCzJkhdA3wS/0JhqF2pAtPHDpkQzrJcZZcetv5h7qfL7QQi13rv+Uz+a5R+Me50
- 2u3HCNQRKF9P9my67gQI32t9Z5UGCE6v6xZHlbETPFXfBq+PJzVi01i9rM5ovfMx
- cWS01rn/2x91BW/q8LQ/LD+B7ygMcUsc3ot70gRQIF4AGhzYjOpWApg+2XhhSBr4
- rBA2fG1SqYWus1k/2iODDF0CtoeqHykVOeSfeO3Xb7qP3Sjc/Qz7HGvabBy+BOPz
- H1kDbQRFCILBYaeV5SrwkAiMZmrcUDJ5UnYQ6ZhzKro+YaS8d4M5psx8+1vbygsl
- xFBGljRKPAR8HkhG8KvLfXs1URQzBu2QgKsjtADsF0avvHKHzZ939pHhYFcPVGmB
- 33vf+rPMJwl2g2pDPfXgqevwNlfm7M8bsy5bT8Ugu33E2hCH4Lun4qnFVkqM5Ea3
- 4yk9WVMXxS5kyUflGhvV1Nz2bw0Oyquw1y++odvRfCEha85ksge0sgQ2FimDR04I
- ZAgyGdX0Q8gW9ufQLjGa7ewivoACsStf4Zo8/n5PpC7Nv7Z87ysLnZWkin46ey+F
- vruU4ewcbKV6JEgxgPgRDBLmzuXhI8qccWOdRz0gECk+/x8MXNKLRqO0XJAhyuDS
- XgGGoT0loFbWp85Pg6j6ahDDmfHEUzrA1hV42bicbE30eKinISX4Gzv6j6wCnEpb
- A3pe+pvnT3V0o8M0dX5CiIXrcIGjurE5+h+2JPreYiM6Rvv5HKi7Uhoq8ICFQ4o=
- =hSIx
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:53Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJAQ/6A+OOQLzV5xTWZMxPir0Ue04LG3mzhmHjVOmEoDA/NIx5
- 7Kc3InKN5a/S8HtjEHih5jFhXr3UPm2uik2PxGJp6FoleJrOEA43Rt80bL4kbS6K
- BhSijFHBlIOxbJTC3AEsrC5okQqAFo18bJVtcljWupUTGnys3e5UXses+8O0bkOz
- hKYH0Tfy+NpqoTMzV+V8O3GUNJ2dGVwdc996IMYwTcWpYchzXp+oAU3ScDmgYIeA
- tc3L60M/zgRnj5IE+cjXwDqwkyaq4izI6dsRrr4ciFzoHlTD7lg9jA56qhDGAebt
- cvj3ZlBnlSOimVG6PoOTZyjm9YGmm9eN+dm8iDVjigpcqo+KtL02MOSi/d9Gd+43
- 7P+hPALvnmvh6wcaSpUwWalUkFWF9iP5+OEpUfzTtm7rMUhqlVk+cUSBMhkbEzer
- wt3bPm+L4mqZaoBnY6jM3DDYgZYZuUg3+nh91II6weTZAvem9gD6AZs2ONQaTHx0
- 0jjvw4veUeahfaM+OPDN5Qx0jG4xJEXp8m9iMgO/djeyXB+jNatfKI8i1UfNZzJj
- 0KUHQtNTa6aeq6dQ/suTGj6jAqqMuBBj4eVrsVIXrgk07ae/1gcNTAjFgYRkKa+U
- qo2MCR82rPwAgdaKBNxubYHOZ5N2eCjXS5B+b0tPppOSYVsH4TSnZdbBFM6aiUHS
- XgEbekTD106zwR23pxF8NshsZQQLEG4voGOjPUxGCkXoQTr5ET3e70a0/WmepdDA
- 2zdqv8uh/d7auM3qFKhKGKQRk0Fl8dWCbzBkQdHhfBQkYce18pps99s9cdR6VaY=
- =JylG
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:53Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1AQ//YsTDRh92ztU8kyua+AcF3D5z4t9d+S3zqxTJQG0Xjjid
- z5VAHo9kUTQdKZ7CV01m+yslTRcHkOiKoUQm86Af2cDBT+YhJm/DxRVV/E/7kzPA
- rORX6uhKeZQQ/nXY6LXvaLIbCNCdC1OWwnd6O4EBOKfWXHziHQCXh4h3RZB748sa
- JylL++9mxSkXwsTrrDuWhMlH6dRDF6wAkU9c7B4QbBFnFBMOZjvCMKcC35yrEIXn
- 8/uU4bBDyj5PDa3JCfObbAZJgG1zdPBza+lcCz12L60b/5vdy1pGQ5Y7LnJlaWF2
- 4hBwKODwK/Ba4fXjNLrUJULexqg8iDT52ab1zEGii07REIiZJOmbBprGN1qW5BoG
- YvZ+rOTE+SG5VwJKHYzPd2n1b+awFcyIb3n2sRtF7TEqthTo+3RwK81I4D444akc
- da5NiS2y5BaH3UoRUpS2Rt2uMqbiyq/Ge7Fm3Gj2t3DcHdYjb8ry6HB4SYppRA5B
- gGE7EwO4g2mf1ee2D9nicPRaMnba+JeU+y74m2MtAGsxyHWRFX2PuRJcMlTRXULm
- nZTAcsr6w1MeMr31tOzOzNIFE+R5HbJ3iccvr1B8NRq//yOAerd8DSVpEQDtCEMZ
- dFad+s2x/AMH56eofe4WCchk+x6v2/xnmeq02XFWwVjSt9UFTKt2NDdeDx6vJDLS
- XgG8IPwF45ZHLsqrRzc/C9VDqv9h+s3oyPc/UsuSQYGZB3qw3qyXxGAzgIMI2ENO
- GHKEDAGYxW0gDW7sFDS9r5I7d3/ulSox6+YPWHtIEIaPnDArKz6ILLG3cAAQjQU=
- =/rbM
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:53Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdAuA368PGHvZRM8X86voY5pG2xxIMfR1RzhruWL0aa5wow
- VCI/bfIVsn+6jusdHZHGgpe97SxszO1sJ0WwNwHr7xm1v6LMGHAYW+VmlokVjGu8
- 0l4B0+KdFfsddFiGkMI1EWxM/9IZuQyo9JanzK4IxLD/VCw6QEihxnyzy8Z39TB0
- XYD3UrsNwBH07dNNiB3CHoZiI7TZZjV/9hTi/4hjh9tMbol58HbIydYe+/gsOEr5
- =fR/o
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:53Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fAQ/+KDS2/uNgGlSIysNLRBWuTkUrF6hN/hOOjQO9Aw+ZnjJj
- vEqG4eMaEB/KObRxA4h+ymYPXJcdybX44uI9/KH0AWqICT4XuekREyZX0rjvFirv
- v2snZF78JsV/oDh8zzQNhgVMtgfMlQSF/+5R9RUFhKsuafe+ht0QmXDicKIjH1nY
- MmrtXIHXsBWJfKj3Eijan1XCFa8FlApNTJsLIueUNd7rMwOht2Ugfldzfpjsr/qI
- lbybq6sTfpszRhYyYXOhD9oxx4hOtiAAlEitiupuoB5YZQV3ulh7UC5o2JOfwEk8
- qiEDiL5qnf/KgHXlnH8sQoM6ePI98VyBQ5uAliObHfYDNSrZO8XMgFezRc/Wqk1Z
- 2cCdk8mnEDra5HO6wZVWxGKpFC23tW5jVQC+Yv2mgDzkXKp6BHWjYuFOh3NJNEOX
- AMS1/K63MmVud0Eqg+VgYwyFV7AbNSIbfR3VITc3YiHewbzE82WPQW3DUaw6XEKV
- ezNI2cHf/m3HUvacTXrKpgKZk/g+6B3t1H3Hw9WhYyZLuyCSZ4kretn1knpf7m6X
- uuIsjegZ7o5bX14kjiQ5l/fSRfJEzrifioEFXCUTF3iShseFUnhLwD0bHZGBD2/2
- OPc9PUcV9OLeIdUZWo4/My8Vt+8Mz/n9kVwI1Q8s/dgoEDBaC4fXKhJVsCcGqmrS
- XgFh+/S/tJTtpJcsqTSE6CdR+r7ir7Rd1EmkqasWwttN1GENo2pjvU2Q7FLQsiR/
- vwUpEehtOwQY91SpUbQ+zr1gQhxxlLuf3ZarWKDGn0XFjSUh1p39dZx3n93s9vw=
- =u++D
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:53Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoARAArTbO3YHUA3a+++vC02evwcpJ5khFMzms4v38qqS3FYBP
- D3LKYpgDdccneirenmL5uXdDqw9A0GF/wqNXHg2dz5zz45fARbJVRJSwPwIwx60W
- U3rUt04Mpks2WWrithsrP9E7pIP4vJ6urvxFR7nkjm4UuCN9Q3QBvGvlrKolnPNw
- GyyOnxh77mkPNVeHdSsVXOFW096FUEWbmZ3VowKIuskb5PHZE18KwsT2fq4Ef6xD
- iEvlPafk2Vwtfjd/n7LfnCQfoCCxIJVAJ5zJbQCQhC3j5eRRE/Y8ncklvmFUusue
- 2dtmQnaqoOgtcJbRP/UKhu+IvAmC+V5Wl9ZZfyD16/jFrY/v6uw9AHM3LP8cx4fk
- 62mxZ9mF7GuGayGVy4tnEha/3+GzWUcANOQx0qy5jtDF7qdA73ElZII2U5XA+eiK
- t3iMRcMeKLETaukRlV4/8x48ebPxZT5jG4W5C2bON8zYZVD1ekJq4bW4ZTG1a3Qz
- VT/C1LAg2VGmESbkTl92kRafxyOuyS8cdNQaR3L8cljRrH2vts6eDqidxVHdkS37
- JLvqKe46UHLjNglZct0sMugoYk+7h5IwgZs1XJhFxbh33V3XghbmHTgx3i9tmIfw
- +S0oGH921n5xwkEguUUPprdMZJHs+D81ouQLmgU3BwkfxSXqk7vMq7YGuxEYR9PS
- XgEn2dMxdCwTOCdtWHySos2pgzMBlp4+N3DD2z96TMNhULawQMucCuhD4xMWEfzg
- 9OOTH31yuFEEKX+WNGiMcfyuKE5J//5lnaSVUePMazdyP34eIKlLuLR6Xfh6BTE=
- =cyds
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:53Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqAQ//Y1DAY406FGCJJUil2U0g/jFYKnKO6itcrZ8VtAW4N/ed
- O346a0Hm9UqEERbI31bkgJjT3AtgcpaUY55mWUJG8UUfHitHOhUflk6gmtUY6CrD
- KI1NpWyWnC2JzPy6f9Hz6RY/MpBCEECySLdIIrkucy9GHA+Wc+Z8AKsAUcqGfhEW
- OD71BH5MbA2JWSWteTnNZPngsRBYS2h8Mdfk86fHP0R2oRk2XppKV9BFSnH7JgFg
- yzSPQkFrnfUcrq1sMZCLZBZSLMoQP1NI6fXMSuF7uMlKEgrSY/ajB+9anjs68/7x
- q0WmxvlK/UFexZH5LumiXWnxtMsKxjNLVkud6Sq1CQy5xAHID7oQj4GP4m0fKcYx
- 5rZbnoOCiTD2QL41G+Yf1gpz6J5o0DspnHIUW7+IGttp7PqjrTfz8HEctWFtaCp3
- 2L1z962594DzZiOKWCzp1bQxZSjId5HA+60OZNAIaRe7/s3dSPNao/H2MUObLBcU
- zu6LekR2YdUrWamT0f+BqyFy44C5Phgiz70oNxqRXoeMOTxyV4IXO3o/G/hzlOMf
- 1+sIvqVJlut2niuckyUwlVRxi9VqLt/E5IIR00nGQS0KSo/U6zpYaof3obTo9+Xt
- ayBvmHHSMNN1W7IqG4VD8WedG8jbzVxMN2DLvK2E50GgwLefrjv1hgh793+1uxDS
- XgH5uOcFGcZYejliXBsGFpL7umCil5EPJM40LAmQovjxAfaYMnV8sqN91z/++G+4
- mqnsX/u6INgQ2f59kage22fbdwg4raJohuV65qi1BnImDmW7FJ7TXcbQMCfM7Hk=
- =Isfy
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:53Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdA/V+CVyLW0oVHmPyCi/rNqxWveQ4J+nhQ8WyMhSaIJGMw
- VQiJjRAhN5pI0TWZ4KN92KThvEFBWgelWWMYSnw+L9tnS96bHw0h591mSUqznR6F
- 0l4BszYkX9VJXkzbq+aPQ9Z2K0JK9sjmj9PwC28r8bXJPGPRF7+e+rzCPUwW7R71
- CS33s11YMkhLB3vFQF4I5t9UCYIHB0Ss1VzhjvQXe5tmPmh7ZFxXQD6vtIkLMjz3
- =Bdmm
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:53Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdAZyOE9ALOzrU7lxSS7IfFvRL8m0WS6wzIEM2vBS5nh2Iw
- vGJeTxv5ApScEZzSGFruuhKeZWmsa53feCDVaNxH5eumwTBeQrDRAXGZMuSI4Lv5
- 0lgBQ81YtDbZAH46HfG0AEGumO9V9hXwKu3XSW7MoqEqYmZwzB6qn2Y9yPQ/RNRv
- yrEFfFJC7Gm0nA42tGPctFJHBnHP1L/a4Sy0g1RZAA2mUiarpsddVEli
- =ey5I
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:53Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+AQ//ef30XL7zPLoHqwl9AHADBWi3cuWJCXzUazSnf5c7UxKO
- B+jlwNWhKfLHJsv8JiFdHJ0szBKxVXTZgIPpNIEhT1NwWqYF3aUoMjWYH1jlmbjv
- xB4OlGQeRUT+TQY6Ht7RZ0SLKlbN1N7MhzN4b9l0ZIdrXYhCYTHghieiHeSA616B
- m+Y2bPil8y7kj3c8qO1fO/hRmUXj8s6rqwN1Umo0JoZmEl5l+/+EOGdAeT8SQMHe
- JqbLHF1gQBPrrtsqy+mB/oY7QHm4axxsQtu26UXBcGFZI1Td8CNvdInAc/d5JBjV
- Xk6SP7vBZaYR3r3x7yPxo9a43IE1w28Uu/KWcas7NwtGA83QoEltdLIJCgm7SyZg
- 8RY6eYbX8vSWXOHqIBfdXtwpMng5c5Da28TpT4kqOXywTpFQ2Ku7034jwBZbwVAQ
- wqvCSdOy/SrMT95wF5R2lv7dGKCvR4DaO5GIuYxHN/7o3Ehm3vmlXhDkFnWdz8DV
- K8cBL+Y5aMYRaIWxuAbXD3y0v+bnMzqOO4XwVfo7yvuZ3wgjuI6sVpczI613c+FD
- nRjizbXpU7hSfDnP0+3I/UcWb9Q7l+zkZGbfB3NcEOzgvhSL84AI9dzMH2GDdoqI
- mcEfU2ljXlotkOqWfRRItDjOuOXHbvy6012kArnlY9QaoqaLNLWLB/QoerIB8h7S
- XgFhIXJuz3zeWvjVZ4dCGx7lZtc1pvzvlWojokR66qU5oHRJ8hSTItof/KrOJdBe
- u0M+fWCy/AN+3fWevbCl2RJuCS6033ZTpGVqShL3Zyd4wMgYVuRcg+s72gP5d9Y=
- =FS4s
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.9.4
diff --git a/inventories/chaosknoten/host_vars/cloud.yaml b/inventories/chaosknoten/host_vars/cloud.yaml
index 0aaf92e..8dd46a2 100644
--- a/inventories/chaosknoten/host_vars/cloud.yaml
+++ b/inventories/chaosknoten/host_vars/cloud.yaml
@@ -1,9 +1,11 @@
-nextcloud__version: 31
-nextcloud__postgres_version: 15.13
+nextcloud__version: 30
+nextcloud__postgres_version: 15.9
nextcloud__fqdn: cloud.hamburg.ccc.de
nextcloud__data_dir: /data/nextcloud
+nextcloud__admin_password: "{{ lookup('community.sops.sops', 'resources/chaosknoten/cloud/secrets.yaml', extract='[\"admin\"]') }}"
nextcloud__extra_configuration: "{{ lookup('ansible.builtin.template', 'resources/chaosknoten/cloud/nextcloud/extra_configuration.config.php.j2') }}"
nextcloud__use_custom_new_user_skeleton: true
nextcloud__custom_new_user_skeleton_directory: "resources/chaosknoten/cloud/nextcloud/new_user_skeleton_directory/"
+nextcloud__postgres_password: "{{ lookup('community.sops.sops', 'resources/chaosknoten/cloud/secrets.yaml', extract='[\"DB_PASSWORD\"]') }}"
nextcloud__proxy_protocol_reverse_proxy_ip: 172.31.17.140
nextcloud__certbot_acme_account_email_address: le-admin@hamburg.ccc.de
diff --git a/inventories/chaosknoten/host_vars/grafana.sops.yaml b/inventories/chaosknoten/host_vars/grafana.sops.yaml
deleted file mode 100644
index f01092c..0000000
--- a/inventories/chaosknoten/host_vars/grafana.sops.yaml
+++ /dev/null
@@ -1,211 +0,0 @@
-secret__grafana_keycloak_secret: ENC[AES256_GCM,data:85OEAwuWnYW4NgObAmYey+2kGRML2iH8FuDlIZsHyOQ=,iv:Akdk7Iopx6nIOAFXqa7ROnH25vhoe4uopzEcHjWKWo8=,tag:Lgm8H9fWA+/PCjp+SHoO7g==,type:str]
-secret__grafana_gf_security_admin_password: ENC[AES256_GCM,data:Ct3YH/5FqUA+a7Z7YlpZ8aMvUM43blRG,iv:ePwTeX+7H9p0isvi6Bu0VG5egIOqTopmIiUhYoGCmR4=,tag:SLy3totIMtbED7XxmblasQ==,type:str]
-secret__prometheus_pve_exporter_pve_password: ENC[AES256_GCM,data:dJanRGfkNwZw7oaxxwpjpbV7m3Zl/MzA91Y54WrLXxHWDRHBX5Fe1soWgysN3uI5s+rtIWWfpCux/rSggFh0gQ==,iv:6gFk3IHxGkWcoeZTpS+iReBR5uMModHp2qLZp7aG4Tk=,tag:V55iwRKmS50E2lNS7lmCoA==,type:str]
-secret__alertmanager_telegram_bot_token: ENC[AES256_GCM,data:DhMeo4UHoYu17aVx2sRtQ2v2MFuwD/vHB0xsOf7QWio35ZAcwzGHab+VOzREbg==,iv:DhrCAfMoUt2Zk8imaVA8xC0UAJhXpyqNNwqP5th5ldA=,tag:BbCDqenw+yT4ADpIgZ5row==,type:str]
-secret__loki_chaos: ENC[AES256_GCM,data:km9l2LYuyvitMQOSinAyUnnF2AePE3fcW1E1k5fF,iv:gu2FB+R3/UIsa8qivpQE6AVaOug7/Q4JO3S7nhubsww=,tag:4JaG9ZHPbyzFIdzCnYN+qQ==,type:str]
-secret__loki_chaos_basic_auth: ENC[AES256_GCM,data:9HS1Jq1LqTmshFKdUDk96Y0apSC3xhSqOAWv3G1E3djDvl3QPA==,iv:oYgoIDqV3lGsHDfivgMRh7HQ0tFZhRO9OZSOuD8Yoxo=,tag:wkFgxC9EFbm/wHIHqELv0w==,type:str]
-secret__metrics_chaos: ENC[AES256_GCM,data:GDLtKMuExpedDFWLew68JMbdaxy1aEep2j4/XkOD,iv:2sbdjEp1GY6rMq0BMw3Sfjyci3Zfm7fFkU8wUFy3IDQ=,tag:yEarnC4wJvFnB8i7tJ30kQ==,type:str]
-secret__metrics_chaos_basic_auth: ENC[AES256_GCM,data:eT39ijCsheJZP3D335EIRdeVR4nSX7APw9e4iQ40NtXz8EEfGg==,iv:+OxDeTOF8PLxSFT5ZKkUwWYZfuBgv5YUJSGWsURL2kk=,tag:0nIroxvAjTG0vB/lwq09LA==,type:str]
-secret__metrics_fux: ENC[AES256_GCM,data:aV6zeZ/XsVlA3QepSfVd/cOr+tqFVhlAxRO9SHx7,iv:fxo0o9amrh5ivPTxRVkvymB3fr5dLFVE7EqIpBlNZBk=,tag:41dm29mrV/jmqj5IkuNAaw==,type:str]
-secret__metrics_fux_basic_auth: ENC[AES256_GCM,data:YL+QLzZyyObzDcz+FcefViMrvdkVSwRhDsBx/AwoDX3RLHCDjg==,iv:GADdMa7FHMM1FnyPp8DUHElpXsJeqD+gN5Slw0R9bgs=,tag:KGCoEud2JLU5s1gurrbywg==,type:str]
-secret__ntfy_token: ENC[AES256_GCM,data:0tuPJVmxHcdDWOMIo0QQXgIEkJo+p9A5emH+kc+U5tw=,iv:NZcfiz3UFw2fMcMf+q1GRp4Fsxpxbptsx9n8wPR54z0=,tag:SJYFtXccCbPrXjECiKUOUA==,type:str]
-secret__alert_manager_email_password: ENC[AES256_GCM,data:AsBzn9KJEoMjcrUWiIhR7I/1jaaFEa+cl3gImOQVKrg=,iv:mtQnZqT0taap3+z/L/nMfUvQF3JlTKIdoljmzVr1R3c=,tag:mZrCB597p8LyB61I7ZvHNA==,type:str]
-sops:
- lastmodified: "2025-06-10T19:17:41Z"
- mac: ENC[AES256_GCM,data:8GGZFGSRXAaLoWUowbxd3RVv7NPMVsbkDttDxC1Aeuwjy6678ddioHTiOWn04noWSPXhVnnpaTHWNW9dT5EcbLHvTl9Vb/ydKq5EnjDi3vAI2hQZ5bJ29rwSIW2YBMwpceqh+2GqDuzebhOKxJ0ZFYsPzbfTGPt8blqOQ1abVR0=,iv:aDbIiH7H72jsBRe0rSDXHMQy6zc1QFrI6ZakJj8zxZ4=,tag:+ARO2ST+1I9gOB/f9V/OjQ==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:54Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtAQ/9EvoGHf93vGDL9jnSyPCy9J3cmSBCSHdb+Al2uCcMRJcy
- acu2RkssYhPC8h7cL0NqV3MdSVEGbyu695yJjSpO8HeM552q9yCB2VItW1DsuzAL
- k5GSoZTLLngQWsoApaVbhUP9/UsLSVTkdnGme7iQcB3zFut3Db4j2RSex0rTN7f+
- JnhZ+77AYxlexvtBEYWvS8COcZ2qYjPW+IUulIjsvEEegrYNOgYRx4SKI1qIkISj
- PRfQLMEMcGJvH2IeRQvpADy5v8KIl6jAakwH+C+XZAp/rnUlwRhJ/J7Eyx2JN0hY
- fVqhpsw4bD/0QgbiVK/dH7pdPgr7BBNnPGG/+2qlSQfxnCVWbuiptZy4yhhLn/mV
- S7+hOfymdl0XFn9bFhwctJd6b9Z2lNEB4VwXfOJwJeTKw7oPJwBhPg8LVfb5yEm4
- /J7IRjqo3THZM2cNMbb+IvhXCD+5rFTO7ichtc1zm3RERygyuk2vh3BGypOqS3Rt
- iUcS0WZz647hohCwiXEbHcb6TW6q7n485rwrPHFae/4dFdX9aNSDENO8hV1P1Lxv
- 0/FpCscH9OBYFXMIPdZvUmKf3FLcLND9iiC1aoh4PJdv7xbjf7TiJKVfG7yVMIbf
- YSbmPllQiCty8vnl9BhycSLWYBd/nKywFFc74yS87Ip5jIf7dUPQ748te/15lijS
- XgGgzs+7ZoAtUhcSmp+L03vKA3Lobh9fbnR72LLAA/FmCAUMKQTq12fPSZozCrPW
- DfAmS5gtxCCchAsNmFs3C8GWUWzOW8N/KuZsmTLyygcXes3C5MeeoTp+OWtnv08=
- =UY1h
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:54Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2AQ/+PD5ybX+ImMBoEYImXYvqRDPE8GlJhX3MOwufMCWGJgX4
- Y2ygtfSZbzeYadVDLz1CXHmjvcpG2T+xZ8rAI6C2S6X+MQefgiFG2al4/QM51qsX
- PIUQa6Q4Nqko1cVPX0TJGTaGwS1Svj2GiJNdpm9Y8lLSj1mfSgHSB2DnGUDtmZsl
- 6y9mUN4cgYjNNnwUClvMApj/JZhZoU3mmCA4NN9emMG09AkK/fO/sygkZ4FyFpeD
- oihvTw/0xPy9RnhZPFS9f0+4beiZszI1+8GRi/fBXDx2YsImeKSUhDEDipe0tYv2
- 24CqIa30LWyYt/hCzIFU9IOyRB/ZvOR7jB2815pk+MNZDcbaMta21HpvAls2InAH
- LS3UF44Xx/8LPAHOkqE6Gmea+nQx5grgQw0sbxBprKtsq4YhZyZ131ID8J/AWyvM
- xFnYzX092zceJfu4bS2TYdYMp9SV+7Uy9WYxKTUbyocgJMYVtCSC/kyBQfccT9Sf
- McyjHaqVnDb5nUgumS6A96av9SMp+R4CcoL7k8u2sc4PzPwk4QD9nP9/Zd+0iGSR
- AsnwJCKrEkEM7tjZgRYqT8jl1Nvkk99iKrq9bwKUaL+y1qTsecLn1egpuR/3qr42
- +PsfcOx1z9Zexp8H7RpcAHbUmq68Y4CRsyPOn/tuXsHKNbQ2dJJ8ifRoAoVpHszS
- XgEbvz2w6VoN+l911n0F5n7dBwsgUn0HNRJY90OwH2OI/tTNgeJEOVbNtfqzc/sy
- fFPaQrgls5wtO1FZ9Gfh1G6XYfATXisvJAmnpC1EtK3h/EdCy9Z3TQJNx1owBsw=
- =H9eT
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:54Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJARAAmldVuSQOWO3rkhOWNuVca1EGr0PKubWDQILdgEw4gAVO
- EXaWLoiGOwEkQ+wzkjaL/w4vjMW0cMagQ+QgMHz33KNE+xPGC82ZqydCJVm0YBrg
- 6sqzCxrOga03QIk+T2gUOSkocQQ5WeLvFXaGNMYSNmTV6fvECg+uyqTE+h/AjeR5
- 1hJOh6WnSC2pw9ph0WUsNAOhMlC27XJ6Vz6pyB0AQmUcp84vCuaG6Lb78sz1gla1
- pA9vJyIl/SPRR3++RTGI3mqWCEbCn0OQoZ3j+mIsjsVpbFE9JKML2MNx6iTikgiw
- uO+kpWXc6j2j+EB09bChwMI1ZJdXgaXsPV6kV1sxj00q6r8mzsnbxjx95UeVKM0p
- 63N1Tfy6R2SAWcMcZvCKbNMwok9NiOPkZdHFuH55iwNw8T+SNvq5lV22nyIcbc3Z
- +hzDB5aYz2FP+ENafkQGXSuLd5UTGy9+ZXehPi3qc50HvXE+PSCN65XFgxWp9QnP
- kumpgtkkjgBe0ESvwKvBDPjmd5OxSj2UOxDZosXBKthw7ugv/uLFrPpjcEgyJhYO
- tTJybMIULftgniQLDUs2F+ld8u5NaTyCA7ZZXay5EZBu55xTJ1bLLz2YXWH71DH2
- spHf2TRGoW5eqPw8KE4Jq359Z0WUvKLfNNY704l0pgTDH1Mw2oqWDUTTe+UrPr7S
- XgFCRUILWbQ53tzU9SRq5uAWEXxb6wBgYMAP+8K/OsOO8ttcmFbqSw9eLDRm9mh1
- /F31OMNqS4ao9kicW/nOLKdNSeJ1AuMHA7kYCWksOuOmW3KO/imBOo3JLMFkHDg=
- =xraW
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:54Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1ARAAo9HPxkonFM2NZ9XcVA6D1T5qnIEwGmC3F5z4qDNuOqs5
- r4cv6iilp1ev3331I61Qp+58/WAElbWBixgiXUOHh8ES77MrFyexp6TxW3LBN3I/
- RfNV//Ptz2hBLpt89mbSoe+BQOJU0utdO+IbgWsUSU+7/l5b7kOpPdNmFME0znc0
- AGms5UblXYwUY1yL5ALFM93/OtJJoJf4vmBRTEhIXciaQipBMk7a6MH1QjZ9hywK
- Oinoo+fmaXHGyaMxMvsnoohNMDluZqQoHgre3+dIyOM0Q1dTBb3zxzSFXJexB/fm
- f/1cTpTg1Hh4aXg7Q8K/hHI6mkZLEjS80BE5Wjwme7nJDpmypN4iwM/GwDjjXGE7
- 9zk1nSrThskw8tdHUhzXjEP9wCj1YFddsAELZXFPwBJJrcxKnO6+NvDe4/npt43l
- vD0BGxBDlDOufKIdQmuId3fxthPdI1QvlvnlGxq2b2F4l9t+ymlvB0hgmmsU3psE
- I8JPZvz8jgx1SSbaOksIePZ5qUTXp/7WRbJrhx2axWj6qAIZhzVCL+5Szuy7TT2j
- ZM2jHWXd3xRs5VAtvlDbY74JjOP0gv+ba85vFlYn2fcms1UFJF4DROLkS0qZYWaX
- 1l3vPRR/O1e/fTEShffHWAY3ld5sxLsa8OkK5Mxsz4Z8VX6tF55R7ri7xOvEPFXS
- XgEK3/eF9JCPunybZ9qWTNtkGOa90SO5YSed3hgIQw8AGF4M0wMHoPMfzfX/e3WF
- PvLce+GC+M4rygcfnQh7BuWYFijE2xLqQM06B8FtbQCit4yjmJnknfwoqp0QewE=
- =qMHJ
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:54Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdADqEQ9hxSntxmo/7fb+J59O3w1NpozEHh9egR67lbHBsw
- 83EGLOW0JW6Cp+k73zoiipeoS2nogHhQxG09yVqgQERDbcu8C6JlgM4adZ4+f/Eb
- 0l4BxTXJpJf+saBXXWUWRaTDQZpi/QkojF2ZgJnaA73RMdufBmGDlvbydebQ3mVe
- N1SOD+6ohNuRb2mT1NS4YzO2MHkYaNZG5L3sjhNhmSFxgd5mCiNQ6YsBElDTxk7B
- =2cmG
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:54Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fARAAppTC3WqFUiZIq1mX7JP7+ddll8G1nFnbduXfBE9eAOJr
- QRobQvwbl2krFAKlmzU1RKTLD8qObkHgzHy8d+Rk2kN00Bqk6hcQZCoeWyEy89nq
- FV7pvd4OAFQacWaTWaHGzBq+Qrpg3X5Ywo+sFrgJ1FpJg/0YkBDcEp9WBQF+z3vW
- hDzQCQCl9TzgTNMV9X5JkvbptxL+0mw4NiSZffGnrFOSGUnikS7bXGPU1atj+xfN
- bwdGsRLwHf92Yo9QbjcM2lws830Caf9uqjLXsK5Xvtp7NuPB+Xmvc0Qx/9aUi2Y9
- l/HgOtXaAgfTF+4DEJh7yn9/BAlDoqt7Hj9PWQlaAygnhEXFZ+1Qiui4qOuTx0k3
- T11faYDyLjgKeBZQvDhi8ZJoICEZn7ysgr6LsBORPSDEoL17Z7s+7hpzEk+3bosA
- fEYppu520zUHDGX0lzktK3yvfRzp/qlhf3aJev4Vgl92vQNKweN2KEgu4EutQc3c
- /EhINqfk/ibF205dSWudapoQvBu9s1ldalTmiIB93WkPi4jxGKQNYaJZgLIhD66K
- 8mmMJ1CCHIo97bFTeltuDaUdP3Js5dKCeiVrTSLuFiX9Jet7ZjCY68kuPqlc461Y
- osCN8xrripV+Vw0fBlg1AYq8G/Kffhlv5tnGT/2VEPGiUi6n8Q2eEAbrXu3sf6LS
- XgFctsUqefLAUU6eDM4epYn2OkyRZhLX4S374g6oMEyL/OCcMSWsH9OeprwpgXGU
- L/egGlhu8ZbmnRcDVAHcp6UulnIDGPVcUQO5jUNACcPIA6K6SMGF1rUz4eJeLj4=
- =EMp9
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:54Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoAQ/9FG+ZeWpP4WULWoCYTH86qEU8m9sp0JKwoKYdc0LRjNpi
- nWr2aiWhhcru6U1yulOF7fVL+M44RbaV6uiPGayWPE1tkZYdIUnzlfKWNOz/ibsQ
- euO9VhBicKl5x7eZaQkvrY9CchfqGPD0PQSbNBLFtPhI+sDWnb12sGfJpVejP1HN
- ILBRcsAkSFP9d0k4Bba9sT/HIBloHOzB3wWGDM0mUiSdXCU8tx3DQXcHHg+jn4Bs
- vCrKvtf9E4ivIPrnKdGeeqDuzvLjS8fvbRKZgHCjfjZaYHD/+ioo/GgVIXxsA4J8
- O/6lau/+MHh4lkEKeWtVaEpXqgrDiOre9YhP9kiegKBtnrGoT5M9Uv12D37VFlww
- eGFpVraCG2nbIeA8tKK9PMdKKF+0rGp2rTVecziq6xEs5DzUyYjU8hwxyQCcKZAz
- D4JLV3On1GS740sCmos6HXjAIzqoXbaOxgR3rc6EUxy3MA2qwhAfoF4iSR/yCYT0
- senokC+5D9bb/DTRGEfZ5G0KVK4WG6iNq0HOuoLafLvesK7ZRxNJ2xUFUqDMcXu/
- o3ooIawICKaeiU6DTrx4apXLgr9uz6Fyq46G3vB/W46iUY6Q7+9g5fJurcgsBnKi
- gHwe6e+TGS0v2T20j1oqkUIHXb7RJBG1hU5aLCdwMxfTKulpEDElb+xclLcol3fS
- XgF/CiUR2MXnX3meLzUQk2TdBo4Flxjd/uQLlZIxkWifGi+BLbVtYSm/Ls8kcsho
- 61BvrEtRQGe9SflOQpkNE1Bkd7wpx/CHnJVL2BveHEXzihAbgCwhM+mJ4oQIGV8=
- =79oA
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:54Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqAQ/+LMa0/m6NvgFCnQfckQw7HT2aTuwq1Rfmn0sbqzre5PA9
- IzY2v96pmutN53TcAdrlAWt1tAx2+OiAxEBbbes9kdiTCf4OUzsZfF1npnxnYztU
- bXBaANw6heAvvPaWJhh/l14ccbVf8S7WT45P1HulRfQQBqKDp3WpwTR0MxGjy88p
- cmYRWa6Zl0dvaEgEZ7Avwhvlbi/HNE2gEvPrFfxEsUrWfIKvGKDATPU8+vtxCmg8
- x/X1k0YMR5pWUwwLQkGxTDkR0jQZTeGxHFb5u4mCRO+X/ofxG8YnLrI3Emw8NMpV
- 4enSDg9cIITQgxnnArC1mSkGhdTabC7EKPfUjWuDUJTvC4HD2GnrRUbOwC+Dhwup
- cU8VdVxOauxe73fne/HqgTgUqiyiRqA8j2VCSyHJs07SSQUS9mfDH4pcXxH26t6q
- 505S7wljxaVJaxysiojcPvJjY98jRT31UibZzK2XgjvzjepjBf+brrkdpotV70on
- 3TNaT0ILhTj62s3RTlF63YIHkb5tRLndaIImwBFMs3Wg5CaOJuf7oKdAPj8QHy0d
- vgWaZcPCmzMPFaq3N23D3xEjJyKYXp0vkDAyNN26auzg1OF4XX/k3ZF+IbXX35R1
- sg9xLGA1PAS1Ug2icnXDR9LGWfKwGB5KBFFtob62ZFxC6vRvM1FQOkYp690ewWXS
- XgFHK1Tm2RQd9cN4OSn/NedFGVpWB8IjTp2015OiAcwkEQzbey9nmB2Pf17/6bT+
- SVNSrvAWfMljmpCj7vxOPgJt44GPCTNgRtEIFuOxGtaYU7KDybOrbbuRIKpnFsc=
- =ylUj
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:54Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdAs4mO7jTUP5LsFO0HMlubU53pFFq3jDR7SnhK32frfXIw
- m39xWAYu686yBAWKFVebPRh79nhbEzrBwBOXt3JasGPQULU6QcMmSd8NiAi2MPFb
- 0l4BySUuU6pOfYtts1VsCYaR4sa6ChJVBywiXO4TSu6wtQ6Hc8SmQKOPNYrytqae
- bGFLBZBnBrGXSEYrkYBpDewta3AU1JL3Q+L2x1OOA+jZfrQxlJ08TQs5B2IDizOB
- =GTv5
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:54Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdAlnwr4TqIpDBMWOtPYJVUcz/JGHSStXyYqM/YbNRd1zkw
- JD9NlCdchX7vKLfo3sgYIh0PhBZ05KuxJQdpKEZi+DmSdDvdE91mKx8kICnMxML4
- 0lgBv1+hkZn0rvxHq28bIKrv6Z6y91ilYos6f0elChyZi9Ah2qhZgoxo6lKr9r3s
- mTdMipim/zck5HDfD4Zc2AJP5OlelhozESXRH9aNti02Sxq+v+4GnyIs
- =oMbe
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:54Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+ARAAv/E5FKelurIm3WmYknhsdVbxiUWHCWyYeDC159yS+o0T
- c+zh44azcmX4gulynZg1LTRiyavc07HdV3cp1+ZbwVmmRnnT1OTNOU+C1RnDfZa9
- s/fCmMzootQlfsBgD21lxmAIzLQGuWVgpSWNZuSHz0W9gNwjNpIbNMu8amS7naMt
- k8LlRAQ56C0U9/SFYBUSL901hmO8Y+nlwWkjAc8KyyZoADfHPjm7TAbHpQLgpKiF
- Ciouyts04WJzdEjIab3a6cBO6dSskDcxarnTyCI1e04wllXRMXwM5xA47IPMRruc
- OK/GxG9YRxiWE5bEJnErdMx+uQapSWc/8f5KmWSUQeeBaXOKz3XMZnnSHyYaV6OU
- oV+UdhWoMMXFYF5CV7mtOWmdmI2WMUMs4sDYwpOgp7LrhI/DA5QVoFz23K318PjR
- 8oj9joUOPcWN0ExvAd4bQvVXLzflF7RSx119ezNR5HAKChJRoiqI8hoT4fcCHxGC
- LZQCWqW5pyi6MKg86TbO8Miy3YUcYzlQ6Uk72zkH3gCf6RLFcdR7YMbt86Kmpx0b
- 49qwRbaaWPOrKmeyHpZTnjRSKadk/pM+/T24Q/843mulr1zLiGU1eWdHFwx4+lAb
- T2I0Rtl1J6Ny5Cms6HSdHYXaHN4dn13oM09EpdF2J481LyfIFAQyuDwNK/aw0x7S
- XgGBZewEDElkJJhI+0OzAWJeV0RrCE1qehlzVwx4matuZTFjiZJFQhYYr/iwamng
- AslyRgMOoDxYhLlGc/7TePi22RXVQOj4KEFZrU7NjEbheBi9wodVNNrB4k4je+E=
- =XTdL
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.10.2
diff --git a/inventories/chaosknoten/host_vars/grafana.yaml b/inventories/chaosknoten/host_vars/grafana.yaml
index 2e3672e..00b877f 100644
--- a/inventories/chaosknoten/host_vars/grafana.yaml
+++ b/inventories/chaosknoten/host_vars/grafana.yaml
@@ -10,20 +10,10 @@ docker_compose__configuration_files:
content: "{{ lookup('ansible.builtin.template', 'resources/chaosknoten/grafana/docker_compose/alertmanager.yaml.j2') }}"
- name: prometheus_alerts.rules.yaml
content: "{{ lookup('ansible.builtin.file', 'resources/chaosknoten/grafana/docker_compose/prometheus_alerts.rules.yaml') }}"
- - name: prometheus_alerts-fux.rules.yaml
- content: "{{ lookup('ansible.builtin.file', 'resources/chaosknoten/grafana/docker_compose/prometheus_alerts-fux.rules.yaml') }}"
- name: alertmanager_alert_templates.tmpl
content: "{{ lookup('ansible.builtin.file', 'resources/chaosknoten/grafana/docker_compose/alertmanager_alert_templates.tmpl') }}"
- name: loki.yaml
content: "{{ lookup('ansible.builtin.file', 'resources/chaosknoten/grafana/docker_compose/loki.yaml') }}"
- - name: ntfy-alertmanager-ccchh-critical
- content: "{{ lookup('ansible.builtin.template', 'resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-ccchh-critical.j2') }}"
- - name: ntfy-alertmanager-ccchh
- content: "{{ lookup('ansible.builtin.template', 'resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-ccchh.j2') }}"
- - name: ntfy-alertmanager-fux-critical
- content: "{{ lookup('ansible.builtin.template', 'resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-fux-critical.j2') }}"
- - name: ntfy-alertmanager-fux
- content: "{{ lookup('ansible.builtin.template', 'resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-fux.j2') }}"
certbot__version_spec: ""
certbot__acme_account_email_address: le-admin@hamburg.ccc.de
@@ -60,7 +50,7 @@ alloy_config: |
url = "https://metrics.hamburg.ccc.de/api/v1/write"
basic_auth {
username = "chaos"
- password = "{{ secret__metrics_chaos }}"
+ password = "{{ lookup('community.sops.sops', 'resources/chaosknoten/grafana/secrets.yaml', extract='['metrics_chaos"]') }}"
}
}
}
@@ -69,7 +59,7 @@ alloy_config: |
url = "https://loki.hamburg.ccc.de/loki/api/v1/push"
basic_auth {
username = "chaos"
- password = "{{ secret__loki_chaos }}"
+ password = "{{ lookup('community.sops.sops', 'resources/chaosknoten/grafana/secrets.yaml', extract='["loki_chaos"]') }}"
}
}
}
@@ -97,28 +87,19 @@ alloy_config: |
source_labels = ["__journal_priority_keyword"]
target_label = "level"
}
- rule {
- source_labels = ["__journal__hostname"]
- target_label = "host"
- regex = "([^:]+)"
- replacement = "${1}.hamburg.ccc.de"
- action = "replace"
- }
}
loki.source.journal "read_journal" {
forward_to = [loki.write.default.receiver]
relabel_rules = loki.relabel.journal.rules
format_as_json = true
- labels = {component = "loki.source.journal", org = "ccchh"}
+ labels = {component = "loki.source.journal", host = "grafana", org = "ccchh"}
}
logging {
level = "info"
}
- prometheus.exporter.unix "local_system" {
- enable_collectors = ["systemd"]
- }
+ prometheus.exporter.unix "local_system" { }
prometheus.relabel "default" {
forward_to = [prometheus.remote_write.default.receiver]
@@ -127,15 +108,12 @@ alloy_config: |
replacement = "ccchh"
}
rule {
- source_labels = ["instance"]
target_label = "host"
- regex = "([^:]+)"
- replacement = "${1}.hamburg.ccc.de"
- action = "replace"
+ replacement = "grafana"
}
}
prometheus.scrape "scrape_metrics" {
- targets = prometheus.exporter.unix.local_system.targets
- forward_to = [prometheus.relabel.default.receiver]
+ targets = prometheus.exporter.unix.local_system.targets
+ forward_to = [prometheus.relabel.default.receiver]
}
diff --git a/inventories/chaosknoten/host_vars/keycloak.sops.yaml b/inventories/chaosknoten/host_vars/keycloak.sops.yaml
deleted file mode 100644
index af4dfce..0000000
--- a/inventories/chaosknoten/host_vars/keycloak.sops.yaml
+++ /dev/null
@@ -1,205 +0,0 @@
-secret__keycloak_admin_password: ENC[AES256_GCM,data:U6vt0UHHgz85sO+X1YucL9CIr00LtTaeyGUFZ4bVFarsg7y6gTtb+fCuYKCgsJmNDP9jek8Ny+A5WPkMkWR/pA==,iv:qq2H9nF6/1pUBhJG8dFmfRdxk9HSaIOoTdu3uu5xJDw=,tag:rpEuf7JSQ0092R1aPOojKw==,type:str]
-secret__keycloak_db_password: ENC[AES256_GCM,data:IDmQUjQh/QB1xdkwPKqv3ZAwdfy/lkSEdAJuF5MSPCNKfuANRmN+4rH570E3/ZApAJpLAkefh3pufiVbNF8Ssw==,iv:W3roegZU2KfeBDBBImQCCa6VqX+nUk2oh6jMhzbGcVM=,tag:0Qzu8gv5ThtAss4xJ4vf4A==,type:str]
-secret__idinvite_token_secret: ENC[AES256_GCM,data:FC9LqUf6wDijaH6JIde9u1Lc4qcqi/XZwQ==,iv:fSgbI4CXMeCKWSyVYyYT+3Af+OdhZ0wsFwNpZf3CA6s=,tag:tGe+xWyBH2VJr3yc3Vh0qw==,type:str]
-secret__idinvite_client_secret: ENC[AES256_GCM,data:ImweU1aPI0G9Lf5+TXvVmZwGhoigSJoHMLCuq6MxxP0=,iv:GSGqpMVHq31U+IYtnHnu9RuMt985y2N1PRvrlWFicg4=,tag:NKuqLcb3xPzna6t2VVuIog==,type:str]
-secret__idinvite_admin_password: ENC[AES256_GCM,data:fVb+vCHzPLvsQ44wWxfAwx5vRpoycJxBLA==,iv:Co53uRh5fG4pEVxnC6uWaXRrCLGH2Celg/XC+idiWSY=,tag:AWUn99jtuJCqXww/2dSS8g==,type:str]
-secret__id_no_reply_smtp: ENC[AES256_GCM,data:Sqc/UkQq/2F78G8LP92YrA==,iv:ObEdXhzHp5aDCWq3r7aUBhOEJ1sJ6lYiYC0pmWmwML8=,tag:1rtneYPlKS+uDzFWev6A4g==,type:str]
-sops:
- lastmodified: "2025-05-04T14:21:10Z"
- mac: ENC[AES256_GCM,data:EgeLza2JhJZmuNase/63KyoVwR33eFRqxHqSSaJDlr8YHQ0Vx6OTGQJTUGzgdQiC5y/AE24Mesbg1iT1+qufeOwv4V9spW3F0Ci3GOBcKrqBZxnnuHNn6tiRe3R0eeu6PLRcat/HSWY4NFz3RvUposC5YaATP78JXgDuJg/wRoM=,iv:FnxDapA+BUfSMVBrTYb9mcSYz5cZ5Qof/PZo44UTXrA=,tag:2FH63YT8Z54G/o/n8s57yA==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:52Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtAQ/9F+8yUqNVGb0IZSig9Vzwgk47vXOGpJ3A30JpHpJGXrpn
- 8dzPP+pCnCBpdfCep7LapfOUBJz0NY6J2QFe7R/R5h8shlirsO041i9gxqyXiIkR
- bqpD5+mGs8hmwiflPK5dVVG5eoDBorGPm98G+M1P0k7mBVwgzaTgjm3OjGeCt1ox
- v60zbnslzbQkX/pnKxKGrN7VKt0rxOv1LrQRFwC3y0ReZxu1c7/MHCkH4fdeD5SA
- xh1GucV/IHiq7XsAbIaD7wuS8GfuJlXblrstKiJJIUOnrwIDH09bAogk+pahYT7h
- zbczVhNjedd2fokX0UYtmpzorkSAgWFX7nSMZTgOtstW+nUNGSxePcif6KwPLwr3
- I9jnBxui/UF56u7+IkfbQ8jlKLf/nw14g8PzhR5OW0mj/dbJGXcOmqvtkd8Nr0I+
- yYLrkjrjbJq2UC8IjzmBT2/zPc8Vs+Y1LKVHCHAji9FiXCEjrQSl9L/svRRxcU/n
- bh5kwRC4k4cJ20B3ALYlUspAOake7oYKEmD+sa9IRi4H47ocU4PASnMWmA0AakRS
- rIn5/RgNaRMkZBQqUgagPkwGf5IqKpa2BrzY3dAGm6NGQrLDYRbO5BjFIOqfXhpE
- BPguAikJb43FX1FLQkgQo6rmDtzrgUVL5zETVvjbHJdPq+KIa5yPQNacaaUzoe/S
- XgHRkq4ZylSE5fA4R/aQkEV6ASkBm9Z0O8ggcbxIdr/sBy2U+fKTA1ixnVGjh08s
- OafN9s42/Ex4XN2dnQVQRrI49PU6okWEX8Lhc49fi0g6pJGAxyDiD5wafvVJNG8=
- =mSqm
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:52Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2AQ//fWg3KSKdi5HPiBed+BuYyyYYMNMnzlQdUSye4XgSUBZG
- bsjAMgUrBZ6hICfjKxcKMwF7BTYVv8GwOTvqQ/rNJ/URAwRsiOZ0M9LuP/zoOzW/
- 8asV7p145qfRoS6jf+O8a3iD1bwGWwrbd93MR3yFONRfTDF+YksMwK5yBOYruodg
- G3NTeKcYVgd3TA22wXer2U81VUdvxnyWYL+5/vczuCnGC1hBGf2Q9DfKtC0KAwxB
- DBKuYG4Gzx7yjN81tEk4AoAegN2nptUyKEYzGQrSfINtru0EurGqxCeCBS8MU5Kd
- hstcGcTZdtSjBMojCrq1pqhJYgzTEgbcbdPZf5hiczJU7rYnz6SfzmGrIcgJuS0+
- d/F1Ig7Yux6Wkf0UthMTw1eu1WDQc9DnozzAfhDBU1+V5P6sDmgQVmTJguk6qAry
- ii2fTIDuWRtfcsehFMi7SA5SdzXqupCkrbfmmpSXjSGUjZoHAsHySnCecayDMNhI
- +p9Me2xBOxaPPqWIu8tNHMkBaJKCAi1b241lN02K47y7HFk/zkatvs4173Ww+zQS
- rzgsKjDu0dQ/Rpn2nAHZ8O7Z8gw9vnpc4oWR6bbIXj4AU507nSnRnnzTC8IdCK6Z
- W+eHT4/cZ2bvCluaP9Rj0MkBBj4mThAbOVqNNVMijQG7Wt5N7+X9bcrs2mLLO8PS
- XgE9sqigZVvVh6KCDxFgTzSh6aHH6hjBF3D/ThjJnNmYYF58Q7LgsLyQtcr40g3u
- nb7BYVggETiQ3x7P/ZOfhrtuAoh67lfOI3T5wDt9+WcdcpXuD6+iuPspAiXoeGc=
- =Wrky
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:52Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJARAAmqWDD5gRqXIdYmUS3Nv2PQJf6g7gN+P7AFay2YQmDrxE
- K3Lef6fbA/wuHieq374guin/BhGvr47OC+yZh/R2UC3V1+tNfIe99uFr/T/fOyNz
- /FQSORhkoghhR75iggh4T2F3KvlopFOQLqW1Zb3Qwf7e9xwsCvl0MVhOtJyeA4yC
- KU6ros1fvDkrLo6N7DWdKGP9GpZwk2twWKAnnnm+gbZMFAKMOBavcJeoYe+hcVSg
- vs7SO0aU0YtHZ/O+js0DpIv07WznogCUm3GRS7RpOfV7jswsZYIVQD5vOcPPn56z
- 2oiPUnJsdM6RwxjXM7mbpxb6ttAqNP9pnbD4QcTTZTWDb/ylJVu9TDrg+dtTrGW2
- eqajsRXogpvS3wcDMVityT81NxvBHzhY4ymIKiCPaD7ANk4TFi6fDv7Qc7S8Z9eh
- qOWHFSsj2LSzsZZ6FF65kg+kAIpzClkSHjL8rNETQ+UKySNKvNjivOfCm7cgDwfX
- Ezeggm+kHTDaFnWjOnk53uoPhCEY3X7J+95lZHQabLMDumXUzabVXBZaTPGGZytk
- dr7oyHTPWUa4qOOEnBlwnee0pEAw620bJbkzOQsUPfT5KCRq4vxLWniIy4M1g0/E
- NA2JmvOIF1QgbEwLVkSLsGmoUoP+WbFgdKmSKkRIiKEEyUuEhlkG/1eQu9W6cE3S
- XgF83WWU8iR4wvXUz0CeGytv6MoF2r03BQE1lU6WpTFN4+7d6Xy+lZhRcoLIQfpb
- 6qNuHPwA5hWyRiV/j7Mard1pcfVEllZj2qd0JsSK5otTKN9xTQN2J9jDZKfJXtQ=
- =szy1
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:52Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1AQ/9GRDvEs6I4NwkGon7+N4kbi3l4qFxkRCrqN/EWANwI9EY
- af6kNt3Px2+30Y8UsnZjHFmW4S2u6YrpEANuD8pWszLbSuvCY5JINBdFmfu9T/n0
- LS22NK7hsMyW20Unj1Yl2DKQyTBvLsB/m129bx/RwuxLv8Zv+WGHUu/amF68+/Tb
- SuLLYfjsDYeyLVOVJVOPAcrXBQykf2dCgQwhBFpgmPkZzX5SPwfGEYY+Lm4f+aiD
- kobyhGmKCSYY4N2UzSNRvJpoiROjVfgm1ujtRctbw+8VdwKzIwiaA+ex1a/oxEcn
- PQPq1lzM/CpPCFxk4niNG9fG+NhFsSfxbo5K5squcLiYUsev5a3dhXUHt8OEFTzB
- Q/hlhw9V/aTzy7ILxEHndSKznjauknnshG14mvzv2CdJBFURE8KFL111meijDk2y
- M0b2pTO2ggu1GgZsY09mRZCYn4L+HTMq9eKT3LenqL6G/vgWrsnTZbZXuTmvNmWh
- jTkq5tCtUodwKY/vB6JCdk8HL4lzVsLExCViBeqZifUyrDAfaijJ5asNnyg+kRw7
- owm0H+LikhWiucQiI3wDFDaGCXLAfZC4k/Wpc5wOC4T0tCmHbv0yAwvoG48SG1eV
- M3VnbemkFwfjTYnOoRU0+JCvwWTqR8ICRWuEnMu/4aRkMGTli7qbJ8hodbzaZT/S
- XgHSasMVkmmD2DDOumcPj7FamYRyRMqEjKsvDki/EeHUvpOgyMhVQ/pRLl0v2fsg
- uIjAzSJgUsaGkSM9s18AArSDRUX+ueByp0p7jyOQeqY67p9ELRt4REk5M89DLks=
- =Ngwt
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:52Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdAtDsOQOeWE70hZw+0Du7uqAF+OHFLHDLZAuZrmr5ggSIw
- p8mUVqd5eqS69gKLgJQ80vPYD1laU8MAhdS8DzAqTsER/EKZtSMX4ANiruNve278
- 0l4ByfC7bS5/1DLWqYTQ0M3bsw7X5H1qR0hFJm14XjjgbBuObzz1V7IOO97ZAPZZ
- XT27F+lSE8pX99AkkjPtgYq0refbw6A/BIQXH6f8fPqgZh/OYAAIj6ynQf59pGgu
- =HKjV
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:52Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fAQ/+JLkWIztQmdTjmgpuXU+hJe6IEMzJXjdhGJWBGX1t/MKt
- oi2/Tk2HmEXdemtNdKpiphFHZfsfeqnQb0gzJUucTFPDScw+3D31xUX1ygczmxiM
- M/WyNsyUJFsQ/J5RnDyJvYvFXqEAboF/frk25c8gBoe5HLmfhi5YWje8n0oG1nZ/
- x2mAhuYYen7r5AT03ZaS7Ke2WPcKzfhs5uXx1gc1jm7SnTR+MKrf9S3pzH3rapPw
- UoJNHW6nkg0FOOOg7aczJbt17r3luup5pYzu2RoBlx18JzS6uCnen3yEjwuqKW+N
- jEDaMpD1HyPKYD7Af2yfUDtyGcB9TOdrLKbERoPU4ytL6megzopeIGdpP9cnY3Ak
- HF/94x4If/Q/zxbXZJGoFmbC0xzEwNdtD/sqw+oLTaApYYp0gJigkSbhj/5xzDZf
- duRIzkLvfbzrDRf7Y10OJuKblRmF9dDwn13SxpGA+/zgS+817wkkCKs58sNx5DPh
- zVjfnlMiKkzPRGQt43lbOUYbP5eD6nLqO3+P1YPE7TH60umkFYv6X35Z7nnHv+lm
- oseNCseb4xV8a9+QOwaTvlbQ3OblCYDyEm5RDmqc6fiMy1L1kq3DYDEsCToFAGWF
- JJ27BsfU9NTcUo4+rruIkb1NSHpkhbl2EYCzneKdKcQVLzrimwtWTrDtvahfT3nS
- XgFxSYX3q73DESUyay/AXzpOmebLXNPSLcB8ay0+yDcELs4E/JXQwCPn24egh9oj
- 3pmTa5DWMBFF6/hWEWjjPFYkQmBdIO/SsBPvrYjJVUJQzmbmsjOf6mKCQyr83+Y=
- =cA2w
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:52Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoAQ/6A0DvwSv1bLOcctpoPdHFtYADLNWtXMbFKakmaUuSoAxX
- 1Fr4BLOPJ9QvUoHoEfEDhtL6CJ1p5BLB0Isrnm9gvoNM0PfOlHSl7nbFZ1nngZL1
- y5c7hnI9GY2ZzBT638pba+G7CUPSalfyFG/OZRCeSf4Rdek52uNMiI99XKqPTefN
- Pm0hVsNY0DN5iyRUDka8eswRCQ4pwxZuxrGRPuNAnPMnZkj668H5wqgi76YceISl
- 53HMD+MQmYtdePupcFhqOvCd8sumpD3xkhzrcpqqyRVSQM48Z9kBVsqdljZN5G9Z
- 7VxabSfyZTG7igliAqvSJUk0Eei6OXjrqRMKT4JTHRVMteeI0pmmNPLiWm7YaSOP
- ZfsSNHfX/JR6PuAR936HazDJuS8xZWS3vT6uSksQmvkO6NzMhsUTv55z24ZQUO4X
- PBBo8jbjgu0ty0HdPVnvhGNtqSzDhgNqSBM4j7HerdRz1w/yUvwN37UKlz4tbnON
- oQr++nnK+M+u0JKrx+GUobbu7cGsqVsWGq4ZgkOrYYn/bTJvUUEvVgae5bGUdKnz
- CMOgJIn6PrsWN7SvcBUl9A02P8NrVRIur2sd/8rrWnan1k112HCnjMNtFhENIfX5
- vSeC8H+CSP7oUL5yWP2nymo4E9bCD6aVDG502umtAdsjmOJdTwWOE+pa6XMXs+3S
- XgHEGvwU3oommS9JvbLirC1ght4tyoTsEKR87aljqt8YxDdx3uzln/0zGmQOV5Wl
- RlUj6IvdcpOg4EEIV5j9lk1LThud5LzLOf7y5YMDWa6weokxPFyalBNBFCw8kmM=
- =LLyl
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:52Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqAQ//TIT5XZeSOpfXWv+C+9n/GnVRFI80u1AsaUb7u1ykzXeD
- 9Ca6o5g+MDXP1KfuaS0783vpN+DgxGbKl+yPTJ9y0gfTYXu+gppyNVJD5mGBMpMq
- BS6ueX64mQ3wVcpoM/TjRZhQ8ZfUkAh5QPBoGMpQZwqVMgurojt1Xb6VmdVHmaUj
- qJis6dzoO6vLwbBfjqmCyHN734UboWNZhmhq3Fz8G4U+3hoaLdhVZfj2hJQRQ7kl
- HVul5ZT1dmYP9ZzSCU9Tmz/ucjJsAO27vtXGCpBRLz8XYj5+ZEw2fDhzuHESGumj
- hZFgC/nJl8t4h7U4EHgysVOCVPWKFda/sfbNsArrAqBGq86Gens/UbS9upU1maVz
- qits/r0srrfI5kdK91gXgaYWOgjlfgZ0sahEHAofKlpcZ/eNCtPRZ6U9IBFJ+PFW
- fz0cceMw0JbuAR9ArxcR2ylTJOtMRAGKHvNFwxShaYegcMktI0KtMqZYO9yvms8x
- lmKwkB5swaAQhaIMm4/9XwQWE/talLTqFs0DePwUHekhgNZDSbyi/C8DP6BLnelj
- 1kSDa4HT8P0oXQ0Wom+1zIq8rZOs4418fri2X4YrexeKWDEc/rnXNoNacoL/NxKU
- 3hOrhfYz0hgQraC8+v64pe/W3P4sySKXPh0pm759PQtyBMP+FbsLg5BBaLGeYCXS
- XgG5u2M/sOoH2/2QkZjbzR29hZxTzOXEcLeJOPyhakNXQejrahM29QQWgtrA2768
- 5wFXbVKi82VJ8xeuCcU8PllgOY3Yyb2qehBM2cBFMcsmYk8D7iEzyc2GUtVqgK0=
- =GI1c
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:52Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdAjxxja4+aqH9LtBaFsqIC7xU/AWLx11pQeAfKeFtg/1cw
- BcwQZcjlmEPpO3KVvQJ9pF+SDB4mj7+MlzZZe332CRSDIRS+JruUB1fY3kzw2wrh
- 0l4BRIjIuU6eveaH5r3EoAieCO8Fie/v90HBnhqj5EHk9sb9RIrsQtcB1j0ISWx+
- N2vhfLt41VjDf0EA77XPWWA73ULadGjtaf5fY2T/CYdpZn+dXlp1LJ0rJsM8Yd/P
- =p8Kw
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:52Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdAUUdcZJnQn1EcfuAqp9BafmuUbOSq+Ppj51XcQnw/NB8w
- XajucpNlzRvDLqnOh0XyaHU2Tqe5DWMD7db0xzd9uax/PElp6u7yvgESdV3ZQCJy
- 0lgBtwU0dvgD901znlFhmNFwDjS5ViWqtDgDhJ2gRZD5ICJyiClB8T8DZgln5lun
- ETJp5OM+J38e7lGI1xWPDDzsI20/Ee2ELDytHlg4bPqdInkNoZ+vkQGl
- =F0pd
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:52Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+ARAAuWO/F0/utrDSBlt/zIz5EeQ+AD/t2LNIJXDemlwQBYW8
- 6c098Sb8rgi4wY07ZVdxCukv5ApcGqf1o++akMHyfd1z756HVjPTVmBGPPP1yPFF
- 6iPKkNwfDJVD3oHLqq3rczwYQbVUR1ri+CibuHfhdvMXI05MqL7VUNlhbt9R6IqY
- vZk+3X0ikllZf8AuSfWXXzRkuAkpg2fWF//trWkaKlZbl6reVZuHTGIWgtjk+VEP
- t1tV+0tYdP73dG/2u6/8EJQ+iZ3LrRJn+/1ALEOD6eFhHZS7Dzgz/I14qxyX/5Fn
- imxH3gV3BaNxPMUFw0D6V3jzfJB00wcuXQkm72Ef2mtemjhZudiOd5U2buIgtb/h
- wqySS1XNxT1IWikOdz3OVpmGW0kD82ResYO31qh43xsO35ZjCSzLjbkzXqeqImsn
- Qj2+xtbtc4Tu5u1r7CSeZzGdk0ZrneUuztSu2dBnEFukYmmHq78sj84GBBbpvkNG
- TWLnFB+VQO4o1EaNR5GrIlBo3zBMaftJj8EEGcoAuIgjc/b6iWrOlL5aQcEteqKP
- GPCEmtZN5ET9tW8qg6G8ue6W4+KVmG6V4WYh7ftN/YhqO35dXeviRLKst0Z0Rh5r
- 7UqaY4NYS7CmCDi09+b19C2X9R/Y8Z6dEex6gSzG4Ze2+NgpvdS0zPhNb1FTJJPS
- XgFc77guJSHqZ40hrh6NLafevW74kzGJSsyMm7U98gyVzt3daRK0Kb6OkAfDDnbE
- kVTVeunEDWDxLQUFldVZwjzruIGi7nkqQMDh1RfGqdN6XIBbL0kAdJBfwIfqv2I=
- =U36g
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.9.4
diff --git a/inventories/chaosknoten/host_vars/netbox.sops.yaml b/inventories/chaosknoten/host_vars/netbox.sops.yaml
deleted file mode 100644
index a9b5362..0000000
--- a/inventories/chaosknoten/host_vars/netbox.sops.yaml
+++ /dev/null
@@ -1,213 +0,0 @@
-netbox__db_password: ENC[AES256_GCM,data:4k0wmOe1c5AE298Juw5HMm5dttTKB1WsVxha4MwaIILpyIbJO0CfmzjYflfBTFPPGgVeuYdCobzchzqkP+8eAQ==,iv:25Cj2BLGJK9tMDr42AqV1IzJc5zG2dk1YH5vC0b1T3M=,tag:knyB+nALZwME8y7CAQ4BCg==,type:str]
-secret__netbox_secret_key: ENC[AES256_GCM,data:zPzoFK5Sx7gJ31/Apwex9ffFU/GY+HxIfwrItCW68MM4kVvS33e+LY4cI0vbPYEUF10=,iv:SjpKxyxSAVo+p9vvE/YAQFCzAEudcZ1lwnJ6scxeQD4=,tag:oA+lBep610IfelGwdTohvw==,type:str]
-secret__netbox_social_auth_keycloak_secret: ENC[AES256_GCM,data:HP753hmQ7ssbYSQRH0zcRC0vRN5bKptvMXo9jjzcuk4=,iv:GQUoojXLAJxqdB92kKLhavDaka0Rkkg2uocBLshdvTk=,tag:LVnL/JHMsAd5UmmpnUv7og==,type:str]
-ansible_pull__age_private_key: ENC[AES256_GCM,data:KgD61z3hYRPSoCXmJgOMmHFqXtqoKHRPUT/+ayEImPsbpk+6B1hVscQbmsKJFWNsyQlCAV2MqYlIrP68pP9ckfURIaN8g5n9X+Y=,iv:eTjmF0e4/5NSnORZVtZKTaL4r1RBg1ZbHZueOrnMVlY=,tag:v1ndJchirNLPvg8mWA1otA==,type:str]
-sops:
- age:
- - recipient: age1ss82zwqkj438re78355p886r89csqrrfmkfp8lrrf8v23nza492qza4ey3
- enc: |
- -----BEGIN AGE ENCRYPTED FILE-----
- YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBIZUUrOW9jUXZDUE5oUk1o
- ZWxNdkVwZDJVVlEwSGUvaFJxdlFEUFpIODNnCkxtaHhHby9CUGVzMC9LUjZySlUv
- RjdveHNHWmFvelcvbmlCQUlyQWZ1QkkKLS0tIC9NbEE0L0lWcDJzR0o3UUgzR0JS
- eGthSkl1OWwwTjFiVFlCUnNkTDRYMUUKYfdYzrGyBzlm86EUHyN14cgIPgomgzG2
- Zt8nCvmd7/0wxHJ1WhrDWkQvx2ZXC6BeD9oShCVe5RcHqbFQumn5+g==
- -----END AGE ENCRYPTED FILE-----
- lastmodified: "2025-07-21T18:08:40Z"
- mac: ENC[AES256_GCM,data:SvTSvRYd7ljYpQb72yRkQ+fDrDWRMQzFwTrI4RuLglBCzKNxu1g2JFAVFUSNRybWASCYhg0FqtHoC31HRHbs24g43fRFrXrvBB3sCwQ503y7A78/UfX55Bz3VBqYVJfh9w/Fm23Tak0ki1CQoAl53lz88eUHjCJjeyKtY81/PnI=,iv:y4C3RMWPsnTTgkscvfqVEzcgAg6L0QaKinzcBFLOfSg=,tag:kIcvmJXSNhpQDUHy+ZpPyQ==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtAQ//RZgO+bBNMO0ZfNf4hzPSoZrjGEWaw6eg7/60QSltdMYt
- pQuuecBYba1YsCWKOWQd95vFBGfZ04EBaEJuJhBKrwxxGl5Vurr2LJeTpfqpAR36
- rXwELGqVHr0HXyBwPzOPOzM21NlXnNMPrboVJR9+DryT0Jw1BbLXqs8PwO/vWH+G
- p8cqRvAnPglQXV70tQHCZSN6rDV0pLZiKnW1PPE8goSVkwInuAsZE5Nw1+fX4HBF
- 1j2gFxS9t8vFaz1nFTIZpI7ixvAvUiKtnTwforiNEuF3X7lAkyyHtmbxAYFB1OVB
- ieC7X8OCZFYYSjMPxerHGiyiJ7GPO6rTMrcqOixeB5m4x+z63w9Ev3aLuWxcPKFX
- tPNZ5t4lBO881KsPIm34cxKzUa11NKD+c4PQyMwXvZ55XeUq7SdO6wKTdGyCdjq8
- s7WegSpieAVtdlLrJIv9FENE4aFuBhQDXKaZtA8+WTC+DhcQZeras+WApcWa/ugU
- iUsHE446qlHs+yn5t5ygAGNX7u0j/kZggRnF87BKBsPVTmaClcC/tQM2su5W8Xuh
- ohlFAlgwdlPP2A4RBZXOAdAH3HJMHqxL3ZZvop6QAf6mRv5aioMdFttFFJY4V/SP
- cgCxsXcsz8JZtNU1GB0MqeMY7NQnWkxVafJMF6Qg750Gdd7TpjLfm+7PMSOpwdDS
- XgGxU8tDEkaZWE6IeUEwbXrGwdHQYutZuQpDmuld9kepTNbSdo36SYEgp8QGv1tK
- cN7UxJhSNj72pyBvXU8apmjurajdGLCs5TM9qpCPcZJIRku14CCEedM9bNXCkQA=
- =KfmX
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2AQ/9F6hLD/F/9/gSWxWqQm7yxPrQBFNkfs8Z5IsUE9YyJy7x
- 1Qqn2WjvjdMvzQRoNI9eqX5lXFOArXprIcV5i+DYNo/pkXXKHrEQgHtMamBsyTho
- 2jSYC7RKns9P6pT3PJsSn11K/uzhmtAO4zrHJXvo83g5I3KPA7VmTIqAMUywebvB
- et8jrRlxSj0eITZzCLGF8GcI2GQozLxsxbnBkMtzaEBAU5id1URlPL0ozJd4bcj0
- bKfKeT9ufcfq+9BEK+Y1n3amUK/ioSWrOzvLBVOba2MXC5VM1/u11DXjX3fymssM
- IpEBdsFsQk5YwbyfdTw10LM/LavS7SqwM0/b1UzRgifDs5EZUEVHsK3uUgrNErcv
- XGrSQUfq0zwvmGIOHANBwBDZ6tZx1AuOzpWQXTDME683F2HcauqDM1X4Rbp9QBZ8
- sFyJflTxbuJrR1OKE7Ro9SzsVhOj6Jdh5LnPJoUY209/Kspm2+6DKq4Y+y1Ibaq4
- VMviDt4WRF4yykjP3HvzW1hFpjbjjQpoevZHxWlD0VIssq/lX5YlPSrz8NmCeTPQ
- UUi3zQrmbyp3bS9yX4rHKMxxfkqFrzLplQbyVmZ+Q2phCTT1UcR/pdaZhAu1QVOR
- ueZNMba6YIi5mQhAklL7PfZmBTbmV1lsHbI1ZpHzqLxDRcWCirnOGf2PUj33JXTS
- XgGO0fiU6lVXiTXCvwaX2WV0aP6expw3cKQDVK4RSc3ngtrT6j44mxM+odkjY4bx
- /YZyNmaQcWIWod/p1sQTZ64ZtN2cOYn+jEwYSUjOgixMBSrAwym+JozjFhrs3WI=
- =5XOk
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJAQ//SucuDD2gHz2PWvMZ8dT2Iid8442i99ZF8Ud3Us4z207z
- BpZmo7bLiqqUs9OvMKszSijPpIRavpPcrpy2utuTLl0MiTITBkwRm7a/d1p6GBiz
- jDoqMuXpYtWlcELBUNlJncjd9FG2r9q7nOf8cQNkMJnKklkqr8Bb7vpkiHI5OihC
- DiOIdA3nz+0wapjoxxyM8Pdr6AUzUEuU9kz4Q3TYlDtbRo7HRViUj4V6bADQJsbn
- 71qzQ2C6eqmEHrkj6B1MTjjqf7XXYBx8vbdopoB+tqYc4EqJ2Hzd6fUbyNo1Cnpi
- ndXds30JayJkRy3h/qw+so9Zmoqq8vS7X5ZAVD0lHT0UDVTLMwA7JVlzOZ1UOQo2
- hW80AhwJIXkC5EMG/uF9HWlLTxM73CbGrFC5gk1YNKto5/waZ72QbsHAUqagCcPe
- Z9BwlCISDz72QANuLGkpcoznBRMw52Xa+R+uoPDv9f+UjOZyQxMkH+uaxutKnfuO
- HpYRf0FGSqpDs1Bz+G6obPZ2vQhkjK3C24BivJvVm5fyLv6GYZtQZr2JpgkjU7h5
- lzDXJ1wB7UueY8YjqB04FWSfaWW4S31PpWGdBIEN57sHbhlsxj3DpOZimjyjvJ8Y
- uavqVNJpaZWAQQAJkL9SF3rFBGdawuslPc7RsjRQ5sWxm1+HJiuAsAnLCsiFcjbS
- XgH6bvd6helroHo/RLMsgtilpkWmJUfMC7uoiHplkwY1GQdV0MwCuGTpiccE+FVt
- xwPrZyfeY2LITjRZa0oo6un+42ZNvVeJauEOR8VFv+G4R3gT32KuYbUtU2sUCho=
- =X11W
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1AQ//foFjUY/5G1Pxh1JnzfChYC1QsJYNWNWz6kANfXFcxQ8i
- nMFfPBePJoxD9g+A5y0Q5r5ypTmhNIzSdJAeRFGl2I9Vv4eDLnzjnCn2NxMZbS7h
- CcNx5bZeX679gi88I4xb2jdlAGr0UyirVvgCX6LkmbOuMXfftuPIqxJQFg3CKz/h
- Msoeex2XDNyW4pwf3/mbhLyd4f7kVBNYQTMKlTiz9OSUVnmuwXOVidNGB+PI6zvB
- IdGjZSZCu6NtTzFsx5lqCkRs9LQtSW3QZYqlMVt+hq8cd3DRKpzGO51ZNr+pgyga
- vtLiO5Rj3198FB/qC1+vn/fromqryBU7EJ/Bu8a3n0aJgIRHWg2JkkoUtFwDtg39
- JIN8r0/KOj7VwkgoiBPCMhQGumgOPIkvlQEcRWlpw4lQGxee2rHCy384zWNvOugY
- Y9UsoqHAUFBbfxJt8xwSwJ5EtXk8lNNHARMM4I0pCLTHQbmXILRk0VJ4Ycdi0LGH
- 8QBywXUIOvloeqKe091stfmfv9BY95Aap3ByG+KMy0sfcOpp6ECXGNfV6T4txl/v
- /HyUjdrOH5vN9zOBe0/Y2+Bu8lS95CGx6SuArK4Kn9We48gdVKJlPxJwHzwRwz4E
- jMBcepDLmhNyJAlLS3lLEkh2kPjXdXjWzgYNi3RIDZ7wCgqPq34WzrHwjXvR0VPS
- XgFiHx3g8CiWQLSXCmcOUgpQq3AzCipXNhGcv843GRvkK2MORk2wVMgKsIVXUpw3
- rVU3we7VrmgSxq+NvbHoNxWCdBCQQ+do/3gtBaeTuT55O2Sq9F8ilwPC+dj5+IU=
- =ld+h
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdAMPFQYlbeRj/MpVx7JfDp75l/NOiUN71OspQ7YL9iey0w
- CqwiSo+D/xRQamcxSHX6CK3fPTj2sneLztFo0i8RlQ1ElMm9BL4UpWXh3Y8X+6np
- 0l4B/NWek19NSsnockklHuZcrwRzbnutW3xtDKuLUUSMCuZ9mKD/RRe2lHyqcGdG
- TNRW2buI+jpGQNXDu5KbPicJP5LfSqMofWk5mRkmhpDy+va/0UAGnnaCulAQ8eNy
- =0rax
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fARAAnDRIiGY9lMbRJNEvz1hRl7KdwtWn/FEei8Qh2OK5UAnh
- 499nEOYjJI/fmWYhF589nR/YiZjTUaXHcYoJ6NgxHdxi6abwWypyNp2qcrYmL2jn
- NnZgZEZdV4nr7TMnNnxF7e9Yz5um4FSjZz5jbXuQm2/wJirEzHmd6ImiN49+fbLE
- CrwVxi04IrjAahggVHmcWtnavXvLjmUVd7d4s58TlUms3q9KFj6+xSFOjAOYFZy3
- Pkk/tGPV39aKQNZgx30KID2yGcyQT3r1KahQt6nG8dHaRNihnFlgP95goXG1j4JH
- NbrWv0siKdrYZ70xBCMrRBWGStFDIsGAnts7r0dMK21yrNsSpHaZW/blLUmKN/Zm
- MwiD4GFQUH7ierhpCt66xWyDeCZ8hzZ02Pu05EXStwi2RFtCXFC50m2zvkP3IKuP
- 9B9kJu2zpP8UfOkHMwdf2xsZQdqY73qXuyDewRt7Pe0gwlHjknpQiO64dvuSkX42
- ZQJA5stvYsM0t6lmvO8oRsvztOeOWjET3aHDGDjN6/CwmpBwd4qT8xZsW/QZYPAo
- uZl3rHJGi8ury+RSgRKk27safwgaRak8B1YBEJqgDxx5i2Zh1tYKSnMtWdomKmFM
- qFXCHqQcqDbFWCpDtpFRxBUKd2evcBVtZ36zPPpJPk10i6KH8OrQlpw9akstylTS
- XgFEk3dzaxW+wnvpF+swu//RNNiWxi3oxLFERyHF44nb2MOWN92nfmkh88sLPUVm
- 9OVrBfzvxDDECSLvHzAcB/Cyi17VHCP0PHJ1qMuqpSNeMifZNPS0m/21l0HO4d4=
- =UBLi
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoAQ//d5tVcTB+gGOQ/XoghkTLtrK/jcze4yPGsPlQC3IBbvqc
- CXDjIAnMj1vASB6znJXn0M9WmdUA4HmNl13vhJS0JF5X2pjhhsn8UIO36L2uLDAD
- o3FgNoDRJYe7ubhMPVZbBbCDwasRgnR0LzD8efYD0anBE3kpReHPVf5yP82mJjKs
- SG2c+QRI3ZOwFPHVGzRnqszqpb90uIhQAwy8Ta7MK08Jao9KVQbSe0YMam0s4GGZ
- 8F87rn1LV/oLW/uDP0DP4TSdDOP/ZnujM/iQcb0WNmOywrUxlySVGrtzTBwX65Iq
- Czz1HbfUPUU58xwmf7TTfEUahdIeSseMrrR/hTIWneP0mlF2YpOtS8OhI4/xqpL7
- D3sCRpCBgSl8dCJLQD3GyP7DTHI1Hm1TZIjwTIKf++IvMFKS2mYmVnVHevW1xO/T
- s03VRDIs2qsUqmF8hp60linbKKtZ9+dIYPa8q9SZn36ogoX3kQ0G69TGnpGMCTfC
- Xbq6nT2PemYUx4ASvUCR0TeAUApGFJOZkexx8pxd11puXlCOBteq4C9kZioC8ACK
- BRZrCJ2Zdw4yqW1tY+2Qbru4RGk1F0MRAyAy1U2v/tM1uLrNnDW7rOSzJOTvM23t
- KQSb+TCQ2/WCve8EkHYMW5M/UbAee6aZzUs40KHHwiiFiCdoPOIbk8zv5qBBHFDS
- XgHmk0spm/mTYFGyIVAszDgX5m8vfj4eFFtUnil2aJ4qBurQ1e3anp+k+okoDFzf
- 9txYitRzrfYV3HA9XRp2MpvxLCi73RoNp3ssyIldnJix/OmFFZLy28o3e1b2XOg=
- =K5wp
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqAQ//bgJFcgiF3gfShw4zUmTQoiUQsTnidPchdNkgU2bSeTBr
- 8VWX26kJGkYDUoPMwRK5jPQgehDeuJQMXqkkDVC4NbLVBsHzQX+cjHvm8uZAqqq0
- aXNrEqmiVNdpMxiETLCb+Ufu2Vc5oF4YyHWWke+090iMg8zOGhN0720uSYjXrc6w
- GUx/FbaHPaHqG9D0FRImkzz7NacsazHWOiu2MaTX/Gcfnx7QRsgZmusZZblmpvcE
- VuLi52RTgIJ1n3MHspywMqM3PgHi2zZ55kPAHCbgpzv3YIl6rKBN/Gf/5Df7cvVf
- Duh7Sj65SV/1IFXsF2V4fp9nPAfooLIUW4w9oi1F4zQ74vYbZB4r4aQ820pTb9ZO
- Dpct3ogTwk7vqrvXJ+hLkoJ/H1CYO6lnZ/T96y743DtXSZg+GbQf0CJ7ptsmsYnF
- pHWxG0J0wudThtr2/NPYlEkip39pjWXPwi7Pjhp9BQqfY1G57MUV9AncTOc1QUDB
- qFllE4PFS594quaAIlr4hk/+bnDM6peyRc3yDqFUWwY1n/znQSxc7S3VMUEVh5zy
- 0+EuvMLNG8RfUCCyXqi7DLe6EpCXJL2nl50e5oAD+KjKXjcAUPRTGT3tSq4xSctB
- 1hGrkTMO2+e3OoXToRGzGqPWTrjHIZlppIt+LXWKcvyjmvNGpH9XIWaxdKHBJSPS
- XgHTKw1srs4n+gpblT68cedpz7eC7+MsnkEJIAaOf5+4x2d97Ualb2RYmgWmjuCv
- 3TAKmmmU9QrdiPUXEM4OfnucbPX8hDZuq45AFP/wAGLVn482TW7kzGXpJoWzJSs=
- =qxx3
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdAF6ipxbyfHFiQdfLBZS+MG4OqjwSK7DuaoeajSKAG0V0w
- FDR1EWxsLF4XO8yKTjK0J+iQeJTiAaBxACpdB50H1XAsvSSZNSTF0yxa4VT1t4OG
- 0l4BgosZR77tSvEyxwA4JCq+PdLraCh6TEHP5jNCTDfjGRSKMQel0mDxxC3+wk6Y
- 09UP3kq9OLSzy3TJ68/Dzdalt7DLmUDymdw4Ge8RKMLOHWIkCXqjUr7Pj1aRi4+t
- =ItUL
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdAkadkEUquIY01vNygyOa2ScTMkvQ8tNWVrFrWoenNJGMw
- fszAyJblP70NGlNEX0zorSMxGbyMhYyHqTO9qM0+1+Tc6yJ5mqMUgt9kdvKJEGX1
- 0lgB0eihxUD8Jl9lxuD7dEX4i2AUppoTzVB68Y1ibeIzmjABoNuZQ9kpAAQS9UsL
- WF4T78p/mA75XSJPyp8lQNB5+hjWd5OM8bCZ4fG1ld+dtXhZ0C0WvIvB
- =DkSc
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+AQ//XGse9ZddCZYBfTyrIJ5PUZUv/pA58PiRPDDz4P9zUeC8
- nUqNRCAHUJGKEEzHaC+PNmd+bD6uJshZnVVCBn40iwFRmU9j59evzXmr/AtfmshN
- ujzTUVsweyxiCtG+h9fwjshmIXpkyyyF8MmE8b/45FlGjK6Pt33IYjthdl+NL4oF
- +sOGQ1e1K7q57tNXxW3Bww9aXnDiysCmLJhEDsAkHExedHX8bZw989mV3IxHnNDz
- F4hkdNquZczjvlKiXzO7XJmiGYXjCyw9umpQoL5jIyqklZKIu9XW6DMc4FDKkDMJ
- zr5HmYawg2W8NxHJLL81Led0/zSQKC2t6pKcjDcrcAr0qtyzEbrbMhOjkDW0TtbP
- SizD6mLpB7Al3+p9dy7UlzqojD9W0luZooXASb6mlo13rpPhyBVK+Z/Cw6bIJdpJ
- DuzprJSO6Iesgabbkx4PK/dh/Q0qlTH18FNoyGKzqph72HeQXIRB91bbp8WuRYDf
- a2diW/mVSDEfIAG1Of6/zqSJiHqoIk1A7nR7UkrVZhjadDkdqzKIjTiqP/oHnykF
- g9RR/7AGVfGS+m1ggOijl6d2jh7P3qyNBKN3GA3mCwwXWUy8+MVT6iOFaBKPmvH7
- ZxC/B9cwYexm45TV4IdqQhtvAH/CbbYUoDOwAmR8hKjvC3o7Dqf7goRlYGLzDGjS
- XgGZUdpsfDr6XnbPqUQxD8/NQNTUtHnsyypqm6Lz+6mU5NrmUs8YjO6ZlTNyE4Lm
- BGoiEi7tIxEA25rfTmhdTG3R0GZEwhYp/HDjtlXQZK2KjYMOORfkqw7f1vnY2vo=
- =Ypup
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.10.2
diff --git a/inventories/chaosknoten/host_vars/netbox.yaml b/inventories/chaosknoten/host_vars/netbox.yaml
index 4726885..7fcadaf 100644
--- a/inventories/chaosknoten/host_vars/netbox.yaml
+++ b/inventories/chaosknoten/host_vars/netbox.yaml
@@ -1,4 +1,5 @@
netbox__version: "v4.1.7"
+netbox__db_password: "{{ lookup('community.sops.sops', 'resources/chaosknoten/netbox/secrets.yaml', extract='[\"DATABASE_PASSWORD\"]') }}"
netbox__config: "{{ lookup('ansible.builtin.template', 'resources/chaosknoten/netbox/netbox/configuration.py.j2') }}"
netbox__custom_pipeline_oidc_group_and_role_mapping: true
diff --git a/inventories/chaosknoten/host_vars/ntfy.sops.yaml b/inventories/chaosknoten/host_vars/ntfy.sops.yaml
deleted file mode 100644
index 8958585..0000000
--- a/inventories/chaosknoten/host_vars/ntfy.sops.yaml
+++ /dev/null
@@ -1,207 +0,0 @@
-secret__loki_chaos: ENC[AES256_GCM,data:LWFTOyER+m021ogmXYBrcr/2fUe3XuZhs5ho0KbM,iv:808LWnSUAPeclhsIgOyR6SutTvJGOu7mrGaVayo7v8M=,tag:f2WCPyUESfMiGDQ4Km5Dyw==,type:str]
-secret__metrics_chaos: ENC[AES256_GCM,data:lAepzCI4pwkF8KiGYzGnC4dPASdHDn+LfbJTFSvt,iv:EUW+CGeYUqhY4G1kb2bbU16j9iLwABHfRCdn2vac5gY=,tag:IcyscB9lZuZgC04XTxDb5w==,type:str]
-secret__ntfy_web_push_private_key: ENC[AES256_GCM,data:YqNEYa1Ln3NFpNoIuBUN1V/WRzod5HAtYueBJYHOwyM59cCaYhQR1S9aQg==,iv:t8bEs5ZAEe6pqbbOb0mpJdfgruX1P9Jd+sbNurGqkng=,tag:Cdy5HKkvb55V6AeRt+MVHg==,type:str]
-ntfy:
- user:
- admin: ENC[AES256_GCM,data:kwGLrQXBiqKRoHkStGzYiC0fbcGgQHdZrrk9NyZtcZcI4nrKTGx1sxrHOMI=,iv:ACrBFMOP6rkfshOgB+a32TFWH1OKhQaoHcYgwHx+tao=,tag:2QTWmH/vAzIWAjaOHOkrXg==,type:str]
- uwrite: ENC[AES256_GCM,data:Jijz+zCPpzSaIEo0xhicKlMhWSewJNJ9GXJGYuohq1E=,iv:gnjEX3N0txcBIkJm5bOs4JfKVsdi5URgoMAmquCMqKQ=,tag:Fip0hA52NeaMODb9XxjInQ==,type:str]
- uread: ENC[AES256_GCM,data:ZODLyYx15c/rPzKexoLURwA=,iv:WqUrXexY/RBAseUwiLPBVYpA5zqJeYBW8mmcvPvjtyI=,tag:SjB4OaTgIaVKHDe4JjDN3Q==,type:str]
-sops:
- lastmodified: "2025-06-12T17:19:27Z"
- mac: ENC[AES256_GCM,data:mlJuYT16bx9nEFw9IRm/Tf1y0HF1aVzx8BXhf0VKWkrBQCyzx/qbjIBXIXl22wzMrz/KCZ/diNRx0Wdq2J2u3n92NQtziiDZKwK+t/zz68+cCZAgktmO0vYc+BJ5GoJPuSmeMwHkaJqt3zYGQNzOJAYK9DPrK2AIbo+O21FgtvM=,iv:c5AmWi89ZLR00LqG+bKnbW3WfmIYsyz0X9A5r91Rar0=,tag:x3vf2WTu7naRdwQbKfrJCA==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:55Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtAQ/+OtDGnGLt6wALS/6XENEpmsRU1WRqgHfQFFuTTcejZ7IH
- EnN/t7vgI/Rh0f06ty6yZaklEdYhtgRtEBG/yXt5Cn02WgxH6FCUiDrTEgA+Ig0b
- O3xncqMei06ImmFW0kfuP3zAgrGSxmfR5JwLbsKXBdjClG7YSJBfeyn73w7JdQxQ
- mWuQCaDrc84mbQPeKUKnApkEOdUOKnoW54el4bgSc/e/eZqMfiRiAwkpDev6j8Gr
- WDQeHoXBnx9h/GdyD3rxzcoXVqzV02rB4uZS2lXJVRwh3bA1hO9oP5FsTLY4d4yE
- 0FcnbeTKDc/aJ+H48+Wq7KY0Zhs+mb1fhIuA5qjlW3rBcmKD2+X75YYXeCRMX7q/
- Hzc5ZNK35g5IV5WMzpXZaQunFHt36EXP4j+WqC/ZQQx3oSZ/2AQUiMlFcIwnmvVx
- m1c4TCF8EGzxoJBKtLpF/simuEf9XBYJeuZ+IQ5w2/dxb4c21whMAE0PRguzS/wB
- IzMIDv9ra/iVKRH9FikrzBk0b73CHohF2tBvGEH4R9NOaWjCYBC1+f6Wzs77uEs+
- SplLBLlEGne1x5aH8ZMcEElIxvNds38RzpBkEJkR+1TgEr9DLUocFeTKI1yVokAL
- 031NHMY7CYR8M7hJEaw3Q19FuxaKuCZ9KmlUnS4yGhpKpBALqQwPO88RW9I0nTvS
- XgHS1MKkbVRk6OFnke2wb6xyEEzYnOGVi1WclpEXRHPbTp34G8ELSfdcN0DnSUuw
- +2pVOBJZwx0YSYEuVHOEUDyP+TXHGBiv6Vg4HMlXccwekzPHAAoLJ8GAouThtys=
- =il1S
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:55Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2AQ/8CHF7Nw8PguNoqxb4CEuWOVyp0lQ65+LaUP0RO6seZ2ru
- YWcQDiVM94zXAbu4yhzFANnBboXXYEhXkkG6X7VRDuyPwyGC1ScDE495+3PUIo8w
- VPrBf1jpzla2qy6qYWuEbfBt8sjHWLS+Yc4Hw3xyYJeBXlOkPt5JDnMc5jNwGpj/
- 6BUvbNqWfqdPGa4iNeCNaKIntJOVvHAQtK0muu/GsDT058bxpnbLQ1FBcpRI5f4x
- HcibMmiswHcCLbqUei3KgtUXCriMUSP8Vcc3oH53tm+2g5imLDHz2ZDVjRoWHqJS
- Mn3dDLvb+s+WW3heh+6cN52tmw205doljPfAS/8XKak/6PyHlUiTk2BaYeBibURi
- qLt+hCFmlqvO0vMDsABY053m/9zgjP6sAYcum1pd8vxhSi+aZnC3TNJpGPWYLEdu
- nwDA98qag170emAgXQwwi5D2HA/Zay0MMU9Iqj/+FCN24iiJ4pv8fUsY0r5cXL7A
- 6EYN7u1cUwC5tsjF9H9RLo4NV3u+Nbwkvl3NLWH0Osj8WXCUqpG3Bags6eKkAJty
- hiSQGfWVYTu4PKV83+upgvfOTaI8mDY7Rh+iYdSeIxLBG2efNvKD6CAgRnWHZxMB
- 0C+mqmL/R2iZtUS+BftYFHPpStXmlHk4pNLJph70FpdRqo66YyqnRudtSC94XvXS
- XgFISA2DDfSnQdjPK07lvQeVfasYLtNcPyCUNYNftG0EOXo6gyu26JGtdlfr3aMj
- 6I0rSaUBtiDhW2DZuyqD1XApSi5WowoiU1CAeNI0+PgTSeUvoJnxfLSmkieakOw=
- =1sDn
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:55Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJAQ/9HMYrcviZAeuoNHBMEG3vmDe+auJaPZ2I28+CLzEMYrD+
- 0AIQJhkgdB4RdOesH66ymQlqm2IOOod3ukRfQlWHnm+xhuro+vZdBsdpZmZ5Gflz
- tUOOcCrQMC2+ZANwDsZGuwdES0Mv0bUPPWJ0ymA7dx2pMxcw0sZkyBTEgtLPjePG
- /SNkIEByOZQeuTcD1XCQAZwVxpr2X7F8DPUpiN2UI4FIHm6CXgSUIaAumEQ/iRmU
- JeYi+bPHgAGWTIpahRDUb55X14VCVByldaOOjis2xTlwFivscBNPQyGeD18w2XaA
- 68FL0Oz6RLyNxWyO1PSEoHf8bRJaOFWr0GdqriQ/DopFgpRDLA/Zhodg8uXylo+P
- 4j3SjX+B1sPTtDalHeE00PeBPphF6tFqCJem6jJyVfW2XojhA//GJvHA4U5kjC3K
- ZewlCKQFQeMiWe0roLidEom632Nwu4SSPGSoLjVwf7RCgwLEDECZefSa15liRCUL
- YfnG/2qNAovDePwiy3NH4K25iUEbd15Qt6GjlqwTPw0UKLcWFdwN7eYxeANONDYl
- eo3s65NjfxJPxhkENefVSQPGz5OOjR1hQd7bK0d2zdygT0fgYFp1AFGMGVzzE7Vf
- I0ZacKO+2qUwTsiRB3Q89Tj3q/h+1zPBx/5eCsFEmy9EC+o4+zIiw4rVLhFWe+LS
- XgEg5O7VX1jUhh8e1Sf+o+LvL959kG9JWCjkito+RWPk6ZJIMf+q//1SuDHq43ZC
- /NZ9yHUL1wMt+I8vW8aoWiumdMMAlExOWe0bPm5o2E+rFKGlfSrDkTewt9hdMgw=
- =eGdQ
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:55Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1AQ//Xgqm1urvBP6Ox1BH4tjNSXrU477byrpdMOPsUycbZVci
- bugfc/xl1AX2x6BSDuRYMwXNgn09w0i0NlppnU14Nk4zO6Bd6srTOntZ9VCupW6u
- X+CSHP6Q732aW81nQdsYgQ/43ma1sF9Mg/RHucDQhDW9NQyQVNfLyjLXIeM1eNg8
- UFf4RWDkku4AT8oA0vhNN0ICUp5lMY8YASSAF2qUj/6xmARgCW01m6YYi5xuRg+B
- u0KVn+59h/Dk+CpHrldnCdQ0jB9e9wsneaai/mGvQA0XeIKSXa4XPt4ke7/xjBbB
- OX72ElaQ9LjIaRbE8wyO2PR+ojP+Rotdg1upYa9Y+PXlfYq6iaZ9+Ngom8qMVJY8
- xJO/gJd6ofvdZ0eG4GQjAnZ3Tg241V+ZzZQ4ikG2d4ZA077Uut8etUMvc+A3SR03
- PQ68sBlVEwzix16h4igDSmDfrNOI33uFhvwICs1HZeFQU6yDPgfFUYVg5CParqTX
- e19fxExYJq+0GzVUSaFrA5N+k2mrNB3LRzHJhAFyQHm6CjzH2DUQWnGN+4dIjIWa
- L03RhgqtmRh+yU+FY8SDDopsUCbTqAB/ryiPeI6IoQJEHgi3Bjw6aVho6qFg86Zs
- 03qfgqo1HrwOvOXpGQab/I6KJm4Ch0BJLtBbr+UyJQVb1F4s38GpfFvTl4CqTsfS
- XgEc93bvGAb1H3O7sWJA6AgFatVRCO8uYc59P3JtrUprSqVLups8wO2qJN/5kpTY
- 5dbbLLoPhODa5S/KeuSLQE6m67d0wwhaOtB4DYFDstb8rR9OnEKzDqFf0QSYX3w=
- =nSRC
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:55Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdAzV1pxVVB++XYkZXR/VxbDn4KCGv2q0qwfvHq78tQelww
- ejgqEdFSd4lpD9rPPljp0ZRwD0C9ZZeJJaiNKO3PJNtfmYXbGZXng6SgB0sehs3Z
- 0l4BnePG0fCcb6YKlfoXcp4JUc/hlnok5Ftt6H6UapaSnghJvoaqz1x4uHFewTVk
- 4uLT5OGzx23xB+nQR9Zu//1MH8JdCiZ3DAOKyoXa52pMD1kt8T9a+26rdZgpfsXA
- =du9s
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:55Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fAQ/9Go4ytWtrKrWK5daXLBhqAEOinCKekQpjcW5CC2bhTR/r
- TZoJYphkGxHYzAy8DFE2EnM5mPLvLeJHh96+WbcDLB0VPHvQ2tLlOJgyANgGBcuE
- c5gHmHYbdN+TKkku/hCPXCui9S0xYvAEQUOw9tul4oZmy48CEf8f6okXTEiDZHwD
- VqfCAvrN264t4qB+IT7ZzkfcZzvkSVBblRwX3dmNEK+sYT2UdWojWlq1HS2aurd2
- Dp5WRkDu/eVUVv99f2E7aDFTy8wBT3c6O9I1Qr8ROMpwQs2+Urc3mEXc6pHQy0FT
- pSDhKsmjUuCNvbr07HxiYDiKYVXDoVh1koLWNlJy2zHl5SwiJ/vefXULGLcFDtiD
- VSaeok41RVfKCACZd06BtgbVtHBRX0UrYfek2ngNZFUqVv1596du6Q8DjM6+NZgj
- bisLPcPLvaY98mheUgpb/apX+FSnTysxlmJes3d8OHD2trG5tyDqp5uQHjmU1uCN
- jfLxuMlxTd9ogNBIfvwMJ+TfkDAL8MvRRHL9n7MbHgZ7PhAwvtaQgNxyRYPKUHrS
- MloWHrW8bWggW1KhR7e/AQmF/zWELM67rZ+mhATvh63aqGz7+AGD/XfJzXot2ApF
- xwSMrz1096yKau+zPv4i7bXk2xM1bPYL41V0wTk4JkHyPCNZwx9DRu3kDl1pDALS
- XgGl5/wueV/EjAYImOQ/QFT9LcQtPKrzHgWr3YT7sjUdgRxF8UZki/DY4nY/J44x
- pXXG8cgYG/AIWkQULbNYacG5Xe/ipcR4F/s56Xn+jmD9uvqxx5ZDSMUf1EGmSqs=
- =VnID
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:55Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoAQ//aeSxtONmkn37ZD4R85kwupF++d+F5OiRF4z2QvEeWGwS
- kOby+TqYXlDBZj/3/8K/mM0JKxWA8Nz+xXM+2yiqsHmZKJMXtXMo45jC6bJ5Q5a1
- 0mEAD6UPX8ORJkxDoxlzpZ+ghWQUGNwyTSeXFzhSW5ikN1KkFOhT+rZS4CBXvPEf
- YQVA5Yf3QIAuocw10mIiPso8SFWd35b78LdGQv6fUkxHcqwZj9sdNsVIC7UZCZXG
- G3KHV01KmWtgTk/8XjQT7SVWl1O3/48d8DW5KRFopLHyC6j6n2NdF8t+nNaR4d1z
- 1CIfjdnvPrd6F3WuKg94gXqgot6yhxv9hocDte2Mf8IR8SqTlXoXqVW654NClxHN
- vanZwwYY1gakQDoLzubJamC0hd11ilX8UeX1suF0gXy0TGjyT1VSzDfCF70J8I7q
- pj61aXjTt7nQJBVoebvXuW42ZI0NMvQZb7s611Ld3scpTe8Xkxb8bKxDTKpaoY6n
- Gs7UMhn5WHD9pCjkfknsa6C8H+NHY5Srt0JM6Ec/2FlD52ZK5AwQjM6VKZhyqQHh
- tXsZwHi+el3Hv9jayAF9+Qv14iPn5807vdCLR1ErnefsB5hZcM6rPfhI/BqPuJnn
- Rn7OaqzXuHaNi7TVE8RhruSr667AXdoH1dYd4JMsRYH268CPvmP8cmMufEfJ6/TS
- XgGB3+MkHwXhLzPDtobCE/ZqA5b2vIbxeMEUNH09FaJhQLejXc2XkNWlQIm1BO34
- aEmVHOwvOFZEND4cDkJKdoFKHx6W39jWwMJy7SvxCY6OZTGY1zTBHqwLHptZs8Q=
- =tRKC
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:55Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqARAAmgQWepRi9uxL1Bc67Bq12/fvQlk34xnZRgWUnrRNkHeC
- pmE81tXMZT7pUVCG7FRWnEkkdy/nbcR1z3ogv6MKc4M86Hw2CMGQFXGp5QNjHEm1
- uTtQ56tnrou3x714Zy1JaGbzt2og+tCH3JisgZSpGI8hZPqak8bGF35dHylw4iD3
- y77/8VyDAeB5BMqOgtQvhbhUe/k09KoNxG4N86bbuib1mPVe+GkwEaZs4SQAeige
- 9UQNOaogvZhf9QZQAvkB/9AKre8OEWAIFXZQWiuMK0qDm5T0l7QjjehsgXtiNNOq
- FoVn/KPhZ0W7VfWE80jFtCykxzC9tUiDQdeO+AX4KtMbWN72GtMvXLAzC3OZnFAb
- 1DRzcaOQMG9+I36JALTwSvKZfJu54mZlt9fdMIk1AwQ/BAXIKQdxBRGCQFeO18ac
- Nas93tSox0sm0W3MwmyhfqONJgEJpEu/cPqCdi5TDcaOXuyM1Rkd3DR97xieXdrG
- qNOLlm9cICeC3ZF+8TcxWqaSQoO0v08Ky2eL1W3g8z2llFZLsddlnB7iOx/gFRB+
- bbNdwZLvz637SZNlFOxf8F+Oii5wv2Dd5szTJ3WsNcaFiT8sCgiPpOeLbKtE+cG6
- 8ElwNICA9Wz36MK3nNesfI2Qo3X+GW9/NKNQT+tr0EYCOkVj7drPdf/0nWThLbnS
- XgGqDga/2tLpJWVxGlrrBebbd0egZgSQKrEAWIQf/CMqWVga6uEiNxnuR377KuLq
- pyyml1Fg0rLZEcyCOEEtqBuQSUqtetzF5HMPiWQbK8HAVAipn2Wglz37/9uw6eQ=
- =AYMr
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:55Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdA7ygaB17SxzcWIG3zaGElxBpYnlOVvQSH9NBHboF3sXow
- 7oLhRFY8fj4cw3+dSBmspZOVySRUZEtP0ttvTrQjcGny8yKi8rLQXuMu+YbbcwL+
- 0l4BKeJOzNVgtJCLDbkWIion6UwLLjDnxZyDbyyi1fV3CHnJsANaB87Puj49eJUd
- Dw38YkWGApDWqjUJYpABgYHuKeIhEzI1bxdrHdblTYQKtEsDmBaPdyuEyVXIQgLg
- =YgFd
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:55Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdAhbVz0+bmLjF+/I68+hr5U8Mv7PfCXoenoxzIElAoqCAw
- 3FbXM1hOlcDWlvpgB8gXag5qrJk26SlkWO7Zd9kxqSbYX7kFnnrpbkQUqo34cvDN
- 0lgBOF62rdXPHPX8FiTUKMmZRcE+OPgAEx0Ztm1kKJxM4AZsPeYumKFT4oAjuT1t
- taZe+BsC/LcH3bRthWFzY5WpNb04z/7iPsN0DGQmW2Uk3tO/zBtf9o42
- =T8Wd
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:55Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+ARAAmB/8gFVaILor5kyCXkvRgc3ZiFQ18aR6xHcfeWnJHfO/
- I75Havml75ArY3J2c+deEkyDKlJv0d6+u2i/xHOG+OQuy0CPKZyoztFdyXcA6lA7
- WURTkcDMrCZG9izvvxdXZs7blX7ViiSY6XCrBi+J2VePf9S8RG+CIuP3waUN3/Ma
- et02KZkwJGAWeHvwEgV0sX0iJLBROtjpBkC3XuvjY0pP715ci9dOs9mBh8ISR724
- X6luhbwIZ9xXXfdevaiWyNb3+Mv4W9n94A3CqQ06Zq0DFx/2/XQBIt8KRWBuMW1B
- b2356X+HUMEtzzsRN19eklZZ7eF0MPNJCHdmLq/l5KXUBThUiCb1X8zrc0y+Hrdf
- 3roJ0iuVLI0ZTWI6o7YXERFvtg42E+FjL+SPHBzzyPn/9m9uEggiGsn4ya2sZx+U
- OXZVqEuKHzaRfvhH6UzzN6SQPOm1T+zdqcVTX5aCUJzJhrUBXZewa3F1Hj+clOsC
- MGAeDofHr1j2Ww/zpQgq9FGHNa7EeJEQOWAJeH7YYg2oX/6kP1KAZQaF6aX/wtgq
- XN8n1wdlF7GPJYLY5bKpaPxm8Es7B6nhtdzpey/dakfEEGjDWkR4VP7rTwp1AWVf
- c1erNtkb2paFpuVqsu2yWTwEY2D8erCNVTJio32aAip4IqGoB6HfJBiA7Lkb1r/S
- XgGEOrYxOZ9zwdnek61HxklAjfORwOuS/0pzsUrYF5KvqzrYgOdn/Pp4Z2eSDsx7
- iWpzbFMXDcVUwjS6TuL3UCr10Nj7fn6STGxSULv/pYgO2lXAeRxsCO2jfKS63GI=
- =jH2X
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.10.2
diff --git a/inventories/chaosknoten/host_vars/ntfy.yaml b/inventories/chaosknoten/host_vars/ntfy.yaml
deleted file mode 100644
index cab4e76..0000000
--- a/inventories/chaosknoten/host_vars/ntfy.yaml
+++ /dev/null
@@ -1,104 +0,0 @@
-docker_compose__compose_file_content: "{{ lookup('ansible.builtin.template', 'resources/chaosknoten/ntfy/docker_compose/compose.yaml.j2') }}"
-docker_compose__configuration_files:
- - name: server.yml
- content: "{{ lookup('ansible.builtin.template', 'resources/chaosknoten/ntfy/docker_compose/server.yaml.j2') }}"
-
-certbot__version_spec: ""
-certbot__acme_account_email_address: le-admin@hamburg.ccc.de
-certbot__certificate_domains:
- - "ntfy.hamburg.ccc.de"
-certbot__new_cert_commands:
- - "systemctl reload nginx.service"
-
-nginx__version_spec: ""
-nginx__configurations:
- - name: ntfy.hamburg.ccc.de
- content: "{{ lookup('ansible.builtin.file', 'resources/chaosknoten/ntfy/nginx/ntfy.hamburg.ccc.de.conf') }}"
-
-alloy_config: |
- prometheus.remote_write "default" {
- endpoint {
- url = "https://metrics.hamburg.ccc.de/api/v1/write"
- basic_auth {
- username = "chaos"
- password = "{{ secret__metrics_chaos }}"
- }
- }
- }
- loki.write "default" {
- endpoint {
- url = "https://loki.hamburg.ccc.de/loki/api/v1/push"
- basic_auth {
- username = "chaos"
- password = "{{ secret__loki_chaos }}"
- }
- }
- }
-
- loki.relabel "journal" {
- forward_to = []
-
- rule {
- source_labels = ["__journal__systemd_unit"]
- target_label = "systemd_unit"
- }
- rule {
- source_labels = ["__journal__hostname"]
- target_label = "instance"
- }
- rule {
- source_labels = ["__journal__transport"]
- target_label = "systemd_transport"
- }
- rule {
- source_labels = ["__journal_syslog_identifier"]
- target_label = "syslog_identifier"
- }
- rule {
- source_labels = ["__journal_priority_keyword"]
- target_label = "level"
- }
- rule {
- source_labels = ["__journal__hostname"]
- target_label = "host"
- regex = "([^:]+)"
- replacement = "${1}.hamburg.ccc.de"
- action = "replace"
- }
- }
-
- loki.source.journal "read_journal" {
- forward_to = [loki.write.default.receiver]
- relabel_rules = loki.relabel.journal.rules
- format_as_json = true
- labels = {component = "loki.source.journal", org = "ccchh"}
- }
-
- prometheus.exporter.unix "local_system" {
- enable_collectors = ["systemd"]
- }
-
- prometheus.relabel "default" {
- forward_to = [prometheus.remote_write.default.receiver]
- rule {
- target_label = "org"
- replacement = "ccchh"
- }
- rule {
- source_labels = ["instance"]
- target_label = "host"
- regex = "([^:]+)"
- replacement = "${1}.hamburg.ccc.de"
- action = "replace"
- }
- }
-
- prometheus.scrape "unix_metrics" {
- targets = prometheus.exporter.unix.local_system.targets
- forward_to = [prometheus.relabel.default.receiver]
- }
-
- prometheus.scrape "ntfy_metrics" {
- targets = [{"__address__" = "localhost:9586", job = "ntfy", instance = "ntfy", __scrape_interval__ = "120s"}]
- forward_to = [prometheus.relabel.default.receiver]
- }
diff --git a/inventories/chaosknoten/host_vars/onlyoffice.sops.yaml b/inventories/chaosknoten/host_vars/onlyoffice.sops.yaml
deleted file mode 100644
index 2c688db..0000000
--- a/inventories/chaosknoten/host_vars/onlyoffice.sops.yaml
+++ /dev/null
@@ -1,200 +0,0 @@
-secret__onlyoffice_jwt_secret: ENC[AES256_GCM,data:x9eRTm9WrEFGdxDb8JfqLYu97NSBRvhknkEBx/zSEQlSfcah+CVNNM6JcS0Y6d9PARcGv2jGUyakuNN1wYmzYw==,iv:33lWNSnQkljr8S9uj+Eab/fItyKAH4/xAeckdpvzl1k=,tag:Ejxzaz9nkGLT/mqKF35M1w==,type:str]
-sops:
- lastmodified: "2025-05-04T13:57:24Z"
- mac: ENC[AES256_GCM,data:Av9x7PAOBhUoCOCF4al8/4BnpPHmUb1JvCv+PKrBmjPBVxW/sU0w6oYmUNjB4OKxI4615pWpfCsG+kVSEysbXtrRGp2RGqhnSKxS5l21W6Qy+IEkNA/jcA/teUGEOy5Qj1SvgNtWvXEBJgfm9eCQxC+w34JbzoTs2q+6nSxtwmM=,iv:HD3nBwmnOGP6MZdLiYv0hlNcvK5lSxJNaoIkr3Xadkg=,tag:uL01xCeeIbWhsdpyqmUyFg==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtARAAhcYelGfxO4U60gidWjgBoIAc7QK0/pavktBL4gHcq2UG
- 2wcNeMRpcwDTASn3r0GMw80a4xD1QXIjOI9knHypQ1Ie2IxM7p4tOEnj9cOaPb8q
- LVFb1WsmkDqxWL7PMd/Prg7OSctFhfhbKhUnxYMVWGMppZp0+NR+g6LjgCHDLWPc
- 65SbV9nYIOGJ6lZ4RcmC8iQN1vooVI8aunVDSnRGmPeECaO0AQI/idV0wsArbesT
- uZ9oLjPLGsr2edjTx/LwzEgZC86zYMvVYrgVpED5ZQz3Rwdp3Mn7k+5kanwvfaIx
- P+LJOi4RDBJe9W2K4VFaZ4mMn2qGbKiELoDEa6j8f1GYsQ/DeaTOrknXIYchsTuD
- sqa3lHq3pojh6cEId0D7/vRRmlie+2X3waOyV6E0qlnU0odRkCsuoyQizJqwzopT
- kHDb04kkj5I3jtOLs8c4xCazpG0uZTyNokwG0hIXzyoPMDHRKmal7LMFTMwcPw+6
- SYTQKyofM9W9G3t1I9Hlto0+RMlS2F9hxuIP6Pyk1gd78pC5RQlp426ZXbebiXHT
- TmRFZbVsK/im0htBUZPbR3/p6Sg/aaF6xy8I2kj/9Ef9ioxrTV3C33Yi6V38KOge
- NwyX8s2KBSksA6TMaipE2nb15QQ0JFGIsHdlGgzC4U2eVASf9VGNgNvwCTlVVn7S
- XgGTL5+U+WKfVQJZ9v2MVKS6K8dDIC2gJagWgkrbVHNxbLDdAJCF294FveXUGP+Q
- /JdVNL9CN1+ShaM9v65YOqr3ezZBqif/T5PsA9ldn80F9mNTmGEmnAbTIdobP0M=
- =Ui/S
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2AQ/5AZ8jtOFLBIT9kvnDqsoBEBgVZMa1NviPs33IgO3qLydT
- kxjZ9NG4H/3AuFxN0eI7BI8ppHJeSGsx3UuerVRYMVWt59UhpYUlkhFNMyvnsLGp
- LMg5p4XZY3Qrz5Y1zRHw8j/EgtpnH/ZZC2CSMB5Ab7bRMntW13lvEJ/Ku2fr6tTE
- XpZBrKv/ArzdOYY+Ydd5HfWBTBo+HlLiKtBUfegx8QrvODjNnqtVZ+B+nXLv/ZzS
- N+Krs+SBu9S2NNC+83r980wiP36ogZDYzbwmOgJXvH5XyvT1URq1axpEXK7Y1SUF
- cmeiYwJGNIjLogweDALQ1KoerJqhQP9toWt9kvK0a6534wSYJalmw1aav6Crjo9k
- sUzc2rFa6no3pMroSseIi2j/gio7Wnc2hRe4JRk5XYRarKWoLDV/1tdESDIBU2ys
- kM7E9rQPKd7QnYfZXkohaHtNoRPRc2iqtxv5opu+k6YW9/x1o/0a2GSy98eUG8k3
- kmLZXyoFTDrS1/k4lvF0o7Bj4ng9HMD2MKYSwvlapO7IWWdKjjnoht3UNRC+t2zh
- B/fKNUH4E2HjU/aHf6+OQde48pmjj3ZvNdc15TsKZnMXFOeiBgN1XQupkS9dWynv
- vvPiPBgb0fLuz12wwuyJX7HH7oJTF5QpDW5U6wdn+7vYmf0qPAJEHqG3uZuRcvrS
- XgF4toIKkiMrgC4f24NvfK+ZDPUVo+nVKClN7ezokutTiVo9tLuLgWLpPQn7SCpR
- 5SnFt1CN8f0s0y9UrNmxoUf6RVhkay6LP/QB6RVrp8DhxoFTEpHG2Qwg+vPJxVI=
- =0BcU
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJAQ/+MhE8xzGB1GQehGHkz3oosrA6WcrNXzI6ZovZrwmFc3Kg
- Guc4tDF1BN6Jxej9GU2zW6z/28I8vSeNgaKR4hJMAcMCYxNlCVOSa2kVETsFD0gs
- QzMa7gf2Vi05PxBUVlV3NhLaxiMydDJXgSncBb5qI5ye3niPlzjNnWl6dN4LxmGd
- JPaCXdIXXGrZo0gVfdz/ef9IbnGGXyUGDrF1ae1r47BGuXRr0c/ax6hcavzsK0tV
- ctjwaqOEwQJG0uTA3kyGH284BSRYSQuAIuDVG5GbnFTCNCnw4u4ujP5e1odmfNSq
- IOwK25/5/5jtM1Whdu5K5Ti9bhzc2wCwnkzfjzHawwDMkV5YCmz7jDTSAXGbdUK6
- J6ahJ66MaIOp8onFc2UlNuuK5a4O1M302KQLpXAvxFbwGZefG7zPdcURYppPuWD2
- KkTBGxfibM89PArAyp5G025HOubNExZoRQ2eccbo0i+p2hiDpRbGTOraGQPq8h76
- g/q21rYLG/rlkeffU0zh/0hKdOPLWY5GuIHyumFUBll0O1jK8mKi4B1zJrEypcrE
- VTUcw6torSPdA2L9rq6EwQA0+Bi9+nPO8+HycALTlN6RKel6ZcSTuYxQ2lx/TRI+
- tRQNRTrZ8ff6pJxtlaFi7yqfwpdsWLMIAv5qwaFXGs1TaONAH+eDZbq6AL5TwKDS
- XgEOrMHunsWF4pF7gRGkld7KTfE2X2WjwwlLvEmd54JxSwhUC9jgxsIgDIIklsya
- zlsRC5TbXM5FdwQb2Amm1dNvlQxrErSI6Vt2311IzTO09CMnc5TwqXCojGtAyb4=
- =rEj7
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1AQ/+OZwSba6kCCMRQ2I//QiqTmrAkX7at0oSta9WqDHuR0rZ
- 8KYkF2PfQo+hXfweKPQ5wl3225hwdc9rowW3XNZ8QX3oP3t4bXKciY+wxvMI42ZD
- uQHKqhlIsFvC9IhYdIUQaM8xxzCLH6vofjFWKeCTNBhtlR4TAZ9XsMYYqsRwxWJp
- VKskajQFDZnHg/qw18MkgQaC0Xbm0fAGMZa3/9ET0qnc/6yL8H8idnCZIRvrxfLP
- X7rXh+XXJYtv7uRhJLUYiOm76GrBhjFRA0kSnhFGv76dFftIMbt5UsGfBzde4fMC
- oRV2fA6irtv7LdA6hIRK+Wehpet9zkQFeQaXnGmtu5GQWyDGCo1o6PqtQH3+iRUs
- CiVJumE0qP+LGQ7SPUYjq+XCYohMak5DnWxgVZac3SaUeNY7Sl6rz538twxfh0OE
- k+1O3HkANwoow8mBvDig3UdkvSdmz7ilsc0u/8IcZjGieQ18dmuEjIAuyu8e23kx
- hSfQ/P8Ym07NtUmRpB83tM+2MgA6x0NvhVkfcR8MQUTsYLX6cr+llyfu3u9q/OCm
- uVMs6BdufsM60yshNP5umEUucS27UwfI2GqnIKzCUt4PG4YtZZs/zhljDKxq/B6Q
- udZktQE+X7CBRpBO08qAGi0LUk0ywANHXgJaQvAiotWsxNS35SAhmIrg0pU8DwLS
- XgEVbnsVLBPrZ+7g7eleQuCxyZ/hXoRkpC4ZA54R3UOVUuUJqXv5iYTOlz4ktEQm
- VmIBOXS83I0XXdtSwzXJLYZFjRhPElYqcQDHz/JPuMrJcfVJ/5XNgmb4rrNh0I4=
- =43Ft
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdAJcIypJ1e45UuZQhRrxTwOPWBbCBca46PMSe9m/jECmsw
- QbNtYY8BHMiA4xoWh7Mq+IAFSKpBnnC8G03rxWUE11zFAlZoGKhfLC1nlAPHKe1K
- 0l4BsNZr0utkNNSzIZVSEuXj4ZeiXlPH0W1ZN2zqzJM14iM+zcE7zoTji64RWpFP
- gJI0PnPAfTozJRR01kxkS835P83TA20g5qETCShhfZ2pdfk/NCXjbnWzyrPzRQp3
- =6NS2
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fAQ/+OfU/K3KOJETZY+6eok9W5mnSe+CfgY0YNl4U1wV3iWOp
- eN8r8oD+cj2L1c/cjB7/AbnYdakUj15JtOIK/sQHgqgMjrt0/Qn85696DV02vhjH
- LizofnsD/GdZp10Mr9hVqtldsxZ+2hpv/UVv3ijxCLkbBSeB/urhIspRDRLVclJ8
- FfGUFbXhPZvsf2boNMH3IAsXumUf6X0CXZorVPeUfGEtNp/upEmdJ7RVyKoaNbSh
- lDsqcnvez+6AAB8KzkBl3cIcl4RcnniyVjhwCSnrhwj4AFyadhFI367pt85eTnw5
- LzchFBBCu5ptNVaWea9MsSLUT13Mzas4TjzaEyG78oJVbRw7T57HSIJZoNtxVrG0
- hkNTLIvSAC9Hoo2CJYNVmVsmssfxjgmw16DdqMYd/WX4mTt7vfpFD1ESibRnkNGj
- hNqfZbQ+j0rhTFUtg4WvWGx5F6CgB8Ap6q12wibTilgT4iVEzJ7y6TfOAOTDZ6cK
- 8WImS0+5Sc753XlBi5e4Dhz/DtGNKg3kosACN21AsyJvMztPM+5BDfIj9xkdZ6bT
- zmvkYBYJSB0SGkj1DUXdO4tLgA27+X8c+G6pZ8ezSjg33NHR89wlgIeKzMM7Y7Du
- cTLfsfmsJRZ41dC4ShiUW7bD29UtBPt3G5xWAym4GyEbaUc+tdad7zonfANBS+zS
- XgESquN5xawvfQdXdeTvNlyoJdOrj4jnoQBQ4BFDJsFCPmGW1XJM9SYMy+n/oblQ
- 9FND78u1AyQNbYiZR8/XJSQojG3RarERmC95zYfE/v6J9ZePl3IcFrzSFkKMEbM=
- =wYBz
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoAQ//aUjp3+PSRB/eg9NPc4F0rylFKYrN5wNgBPGqMVIZisfs
- 5OsJZv+rp1sLNDoEFF9mShN6sjDgNlESCrC54v05y1YKDoc4v1ByBrmFsOe5SNmH
- 4a21LLAhf8AVUgYjsNEumllcKGSoN+a7qpXsXK8eFZaI0twLT875CTfgECKuUwMQ
- WckrimOCUEtELOnSXcbX20LK3/SeqFCQP8vmYweMco/bSgduSya8X/I2ccLxFdBn
- 3xJVJRfv/U+gHNX1aTS3W7T/hTWrYfdoYS02JcESgs8qwixmdeh9jOSRvyNghzlx
- e9FCeoCCl22/hdeAV6/FAGKZf/c1UdCw9iyQcZfss9jbfMHXwb7oUyrHFZWA7cox
- 4GE96EIWO13nRiNhuwuZtCvpQNObfNmBQTQCexDsCyWbqf7Ugo/rxK1qZy20GQ5T
- kkYXbiUfpw4Dd+tNdWBLuYcwPGzJT9u2UxAIdQ8LMC5q0gPa3BIHOEeQehsFu3/H
- WgL8hF0Nlzy2NtVDNBwWoCpC0bHP4eYHjZvHTSYvdm8fuhsYLczeUqozXPTaPVxy
- qTjVIe+Iub2GtNTIVbLImfz7suraeEu2EMFykSbABk3Ai7Pr+W9AbwYaSCKNgoBl
- UdSZVIVUmK60ir/wX9NFXdasKGcD+9QsNSGEyUrJQlprGa4qK9d+UR3dv/H0RvTS
- XgFjVJcrym9yFcMxJ1CyQkOsGeJV8GlxhRo2/sZ28oqmyNAWjCy0+ctuNAKMYzgs
- HtbCncFw/dkMT3taMWByxWPo4u3mMDkK9IP9ok60w7tf63xQYmYy90R6H/5js64=
- =bM86
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqAQ/9Fd95ys+j2usUMwvOtC5kOxEtEE5oBaQFJ3J3KdFEVhzj
- shBjHlWkMJQmbk9DhXPlcop8qQdp0rqF4RX2KbgH77Aulh6MBTQ6GUGWWW13sWW2
- Cv52adz9Yf6V96Waklgp+WtnyLQjGO46QH4vReCjzE/mjy2MTaVaoDEdN1+x+XUJ
- kze1DkVLjrOh0UYK1WFwmZdDA2ZbObyMCmgZOKMh+C59GKSe+Vzom3ulnmBpoIIk
- 63QdzX4X6C1HlE5l9JOW/09da37hQrCjGvvyq6SByOSsgjAEt7Ib9GTSspVmlcLz
- Zv+xTGiMMFMqmnhuBz/2BTFcSR3CXfa5J/bOHS0DJ53hJF4WSsz/1abOiW5VX8ou
- 4U/d0iCb3mjieJZS8NEYJBJGrvVm508PriRDm7SiC163ar8yuOewQtnbfXZY2hvv
- NnbBmjwHh9nxTVabo9eIoVR5/ZrQ381USPppGCDGtP7KewGsJeyXcOFKFploG0pp
- MrBanO/ad2QTvkAR/GmG/23KR9mxwa7GJEZDMsGo3kBWjgf0EMjf2rHm9ODxdvJP
- av8pCn0k0f0g3muC6Y4tSB+vnZ2teUi3RruYBCvFNFRLhaMmlSgjLVZsmoMJnAiC
- iDHqFWhRbB3ep0T0nyRChsosH4pRCBR/m/rh4JrOndxZrqActMzTd/V3d0UI2mfS
- XgFbi4mkURuALFlf+/bKnJnv51NHbG+EIynn4sFjJ2qVaGKThOdJbxOLqOiMN9z3
- TF9LJrPWahIWud6/M8vX9i7u7KfuaXdfp9taC2tw2DSm5WK9uA7+H0AtuY5Fv1g=
- =BaqN
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdAnCWM69qHNONCr9s8GS6BCXCtOLFpxeCZfzA7jOZVg1Qw
- /nNKYjCP6FbEyy0C1ho30O4zrq48Zto0/qGb3VLn2iXpanlHXN932C+I8rTs6HSW
- 0l4BPdB07w+0s3/y2yLFJQ+s8IeWY4y6WmLubNgdFfZizbp4UvfWfRIs0cMpOaCD
- UQzChZSP7SvM2laiD+025SQ5ryN3p1DxEmn6BURdg207MInBs4UyzZmAxfl7/8yY
- =uZOR
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdAudk8kyoAg1AzLdhTIjIPycUgF8I6yYJWs9ox/kLLLmYw
- gIVZS1m8gNCe18uoYnNYdLCr8s9HXvOj/c9hg+ZwUnd6pqCSn1nQ4Fc8evURoGYS
- 0lgBvVS2bVCTqST0qTrelYtPIfDbKeszGA0kNSVjIgiL8t8mJDg03ZJgm5cw4Lg2
- Zfxyg3699siroPSJ57cPOM3vLYIQQ8JmS832qj+WNRB2s8ggr36fPGXk
- =Lnsx
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:51Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+ARAAzDme1irtt/6nz5sxWuabWgo6EDqf3eI7bDY0Q3Xatb2g
- Pvg/CjB+dLJft56Kte/lnWjVkaaKTK7aIsQ0aI61CvWpmGanPe5U7Z4WTdz86TaZ
- aIuxWvS7io/oUILcKk8u76V9cvunfHPUHDdzvQUvoEeAyOl5r13eUxfHGNSXyGly
- SsFOkCkUaPCEKdZf6F2PXBdMT76jl7z4iiM0Sj4HnDb+Liw29WtJsVbX75TszF5d
- ngDjobt5odFSm3Ea4faZx9ONNHUS73QuDtidBcbA+79tUlHwLICpRZrwI8Ox3prs
- t7TKERP0h+lx0t+a5pqqxSNbkoZlDGsrrONaWeXBocrvYwVs58nMu7qrwJjd2rhn
- AeME5mY2MIez7R6NYlXdLAFmfFczOVHgVX9mtawNPlgZjhmQFgPiqJWWfIvL8d2v
- yAvuSd1SMT3CNYYIQvr7DLc2xqJb3VVrIpG1s8OW9OvtHRA2gFSYssNCmgIFUaxu
- nj7eL6wGsZ3BXLZeSmx/LEV4OhXER2YU3H8zljyk/OJ7a5p7fVa++tQXjdLcBh0l
- ssh52dML5270t1IgoM/vTZHe9OitqFj8cplSt5DZP6M/L1+/lPjSC32/WJ/aW0cf
- FGSHucAYp5Jb9mWIAczLJG04VXGmvgo2qk2UH+VFuHNYX6591oTOpcFXVYRWfTHS
- XgEZaJVKSZqJpmE3zCCUMRBLFF52YWSo4bDEiA/6THtTJkOgQ6GFUxrjolv+QFth
- c6hNvbX8jRISpXfKYiUavDyT8Rj83/5weEB8c2jTxI8mbx+QYSmG/FNh/upDtLc=
- =U5vk
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.9.4
diff --git a/inventories/chaosknoten/host_vars/pad.sops.yaml b/inventories/chaosknoten/host_vars/pad.sops.yaml
deleted file mode 100644
index cb6c88e..0000000
--- a/inventories/chaosknoten/host_vars/pad.sops.yaml
+++ /dev/null
@@ -1,202 +0,0 @@
-secret__hedgedoc_db_password: ENC[AES256_GCM,data:5Pw0orOTzb1xCefwx/n9h9m8gmEY6irE,iv:nZvnPSb6sXjS6k4wNUoo2PCJyOcwjm36gs9l0mxwAeo=,tag:0seJlVi9qTfBiol7mP6DQA==,type:str]
-secret__hedgedoc_kc_secret: ENC[AES256_GCM,data:7RyM9jfKnaaP7kJ1JwucPa/IAwaRc7Hhe9VYIKGEmlc=,iv:RvtaWLsf/X/y8s+DLANcyVgagJqGB7EkvQ2nYm2Xo24=,tag:amdgqknDGeZxUBmXsd1ksw==,type:str]
-secret__pad_smtp_password: ENC[AES256_GCM,data:msnYZYl8vP+OeISI5OOglQsCQ8vxMZ0gig==,iv:oqov/myWJNzUoAn4BSX6hN1fWyab5vud8NmT+z4ECqs=,tag:0T3Xm2zw5k5WmC9Ks03XhA==,type:str]
-sops:
- lastmodified: "2025-05-04T14:02:14Z"
- mac: ENC[AES256_GCM,data:h9E+eIum7jyIx78zJh65c/4QMZRq+stNklGuBGo8afYpicLPG/A9LZz1UeBSxyEoMOV/jHAIuoU5u1wmijcsZSBBjI0LZsBTnGLORWEZCoVTEVCUp9CJHZ8zQEVj4Gt+V/moR+pD4s3YLuywamjquvghwtOMYt1JzsePGcCkHUI=,iv:wxhwDM9hmALuX9Ko4izSQ270X1aaLH5Z1iu93/D/Kls=,tag:j0+XqgV43A6ry6hbHhGj2Q==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:43Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtARAAkolIEsdplQJcA8+qj1QblUlBFtNdBkAN/uR2DsJUeA1K
- u79l9bmOv2/gQNDU5VHNQvbklU4uqjZh3wEfTd4E1ywEjKNzA62njYAg+2/t2tM7
- +0a3I3SsnXI6+BVRiLOqclIZ0/D3h9y5vGrIyBMG4P1kaB7c+5aPR8d2lP58Dxkn
- wJA81U8JaAhjSYstzgSUUfsp9dNCQj6hax4YaHrXVq17ToJIftMa9TgAyUCZCqRW
- 7DAILy+D0J0h9mvZL8++Sl+mkQqF4FpOlN1kphEz5itmOJ3LrGPDa8HalJMaHaJH
- UZ4GPlZY5kAqmMffZPArQD1aMbgRiF9kN1FBfI2Xvkp7PRxuCzj/cxyiyPY2EsVV
- cfSSdBot60WS0GyH8pVPW2Yi1UWNjDEazq9Lrp80q1F4SA9NC56spfDgji3V5EMe
- D25LwSXB4zhgb4S9/iAYgJjz6dXvm9pVi1q1GBo5PrfBeX1cS47H9ULYtVTvYFSd
- CKTZlOvolBrdMwSUMCD2UEa8hO2cxlf/nD/E0PY4CWHVhXwzcxBWXE7MIiNwlnzg
- lJ2uBM05xEVzZq23Gc3wCMLA7042VDMKlq3jp0rrtMoCa4AzcHdmGB3vcR5WeeuW
- uWjgWTOjWdd8P1TDzkvrOOA64RAKI5kyOPehWreCuVefmhQjIUCKJdZ6/0X+48jS
- XgHBHrjRDE2GIJ4KmwmRH6A/npul74ABhFpZz+TioTOLABvGjN+vv/aSaKOf1yVM
- busIpxXSDX57Ku8i3zOMjGq0PNUM687h06ySTRx2GtCK9OxoyNJWpiPlpw6gnNc=
- =P+Ya
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:43Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2AQ//WoxZP4T54kwqz+0Z30UCYfdIYUjuL1g/D7fiuXbMSZHe
- cIY6hNfok4gAhfgarrEImIPo82gfTlDGj1m7TdciEMvPS4wOrcwO9PUMhlYPGePd
- nHZFlWe58p6H8uKY7TSb4oxklWQ6eDvROuTEFK2fjnKeFFatVjbVrbE12D4iXfSY
- L6Qtf+Vadh8GV8BiDWA/eHLLwlK/Z8/6sBXFrp/7iA/aavp2cEYm7YZHWwMXaErB
- UbEa5hzV97l9pYtepukE+PbnY9Z9n6uNOy/0+bdjy8aF2QKFMYwjfpyAlfJyz0qf
- MrdMnsaYWdYTI07q3FRHtrELSoOektTx9Ln+jELDHG0RWsIpVX+k0SBPaMFE8mMZ
- DgiAE+zfQ0qiY/LFuL0Lb9hC/ksdT7RIUbVD1PYyWvi4LriynUv9s+rRNoUNVscr
- JnZEeD/HCtH2GaJK/7TtpZGyobWSFr3Mr1d0GMQX2NmnNqCeRCOeLzKB5jaGx/gw
- OjMq2QrTGW61oa71l15MpWGNTfPNDAGF3KjZ8IBDUfadY1qjb0TzTGrXBx0SB/L+
- cxaMmCTQJ8ixqs2c4eAFJ9VFiLPN7ABYj84zEmeO6MhCTMrNOxEFco/go3+Iow5Z
- XgeyjiUK8MwI8i3OG49sNgtmAPLumris322InYzbSX1OSFVW0gfLadfhE6lXxRLS
- XgFMdQnnNa5fQOpPa7RfrVj/1u6G1kRq4vgvZqJUCEcZmKpXidl1vnYrwOBf/0MD
- xDO7LsKK5UvN3jHNAQJKMZXOBk076LcJPQQ3G9WsmtsZc6+1KsrHev0irXgokNQ=
- =f0+4
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:43Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJARAAuukdEMZwSNDit2YQMbyBCBGGTqQtcHndjKCfRKMMqDTA
- T+ANtxWuL1YB6kXaZpRurCYBKOMlFC7un8/GIDUiJNep4DOcSY8zBYIuPbjSpuQ7
- hCBziiCQhAZMBDB7piHxFTbn03BXFBeTXLR5oz7VPFQ69uJcOCytLYjLz5J483VH
- VvJfMKPhIA1i8teesgPcQlkgOlFWP5NxPAUMyNkOrz6G83snsSa1FYS5X1su5YKo
- vd3EqQVhv1FO+2s0X1S0am5BK0GWZDMOuzHbMVKTbY/Wizz9KhicXtsCDSq493VX
- bXziWQ80rYYOfVOEWHqsgfXWe1OuLzT4JMCp5nx50g7qmKFRw73kMJdyDfijgIjX
- NYqvRI+LD6D/sAXGrMvP/CPW0+HxXWfwja2LI4v1cKeI15qVOGvqkrT0X0J+L/xi
- ef68zqXQ62M9ICOVJzynV508ZZmrYxM1uLLQfgf2oYM5TlJP+uITPgwB9bELGuIa
- h1mGpquxUcbcwmtRKnhJhGmIoEf5t5jyX2wLbdPRGj9S5NzAL7fRGwypgprL5vGR
- 18jJY6x6yzyB30DZnxEJyjnwnq3fvbZOuONt55rIKD9v0m11ogYNSMU+X6TTfURz
- D7XYmqU2gbvP2g+pS6MmwFIjxwV2r30bmWyGtmOosmvBid9hSkXBNEE9jppN5azS
- XgGe4vpkmFNPySNTazuFYHXLFg/wWB8N6ZZIRPXFKtBLmSptJm22YWiiLqpcb/Am
- D0onXEHPu0gOBoYhh+dbz2u5ELqfnay/CVOc3WvqegSJvr85mHKX5sXlZGdHFSg=
- =A3kB
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:43Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1ARAAoN2q5jd5EXQCcZ5m9dS9iuoofusrHNBwx3rxC63AuE+I
- SEhOV7QRTzzzyTmmqb/OFmzKgJiy5epCFkT3nkS4lNAZdiw3qBNTS7L1xC6ireeo
- 1DMquTVOy/DQ11Zj77oKGRX5DWuXCLAq2mkB89pcglKK2vXGQs16eTuR9tRpNwAS
- L8qRBLN1zTJQUTUCyI7+CCBMFkQ3SUFFZG4nfrka08n4O59OubcmkkpYHa262s29
- u5wdgkxI+3GyXvMLku/hLr8kGK76YpvduEM6oMpYC+5k53RMBfekilfWFnyW8cpm
- 9CN6Z/BS+TNFH/xrC5MlsV9PwgDXAltXs2CpolpOx2WtZjspPzIrQWqw0I1unocQ
- GF4Vlu6S1f/sKKe3y7AMPNq/tZ77vakwELc7zpP2GOoJQTR9eSaK91s70BkO/2il
- 0DXc9sT7ecW574NyJ8Qiy9UYHrlmdHZZwtFypZIDRO6bGh8wzhr7mpug6NeQNJpk
- Y4zkpoLEdksJ0BeyeUbVS26HHEHe0tAXK04Q9euG6Rs21qJLEkPbpzx4P4oq6z7s
- Zj3IBPUn0155GwxrmDdA7l+bnet0XYJt3O+NIyKh3tZXZEBqxs6APhSZsyrbMfm2
- dkDGa1aYM9PICHfsu5gYGZSodAiuu1LDe9foZAWnX8Bqv2GdAg28Z7p84b3zO8zS
- XgG7R0YcKoe9Ene1lOe95QSqg1t8Mc4HkNDHd4lH8dVw4KckNKgPYsI8eOB2ilCS
- YhPxRLXhUSbb/D0dsbkvuTvNjuvUPyBWPRRoqcmE0A6An1XMCEuOpKwwyr3T1hk=
- =dGri
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:43Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdAMOYfq13YmUmzXgRSFo+/+vTTrQ6c7NFscvUXvyWeeDQw
- uBjdC2BK1e7ZXtzdLe+8lCMEL873lYUP85JZicE84J9DKD4KJ4JdyhobbAtKC5Q+
- 0l4BYTEO99Dt6fSWPpnh9FAWqM77RTgv/5+polMBNvAEJVgHaOl068BZJj9ZlILa
- ReLmOzff0TA773KOh9JlXHCTf/AtMdPSOIOK4AcfccOe5m3muRVkpTH/goENlvnP
- =Nnkb
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:43Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fARAApvCZ7Y4Eg6jo4I77/gR7o1cBNVk9y7SO8txYXFzzIUX/
- CYooi5WAne2a0PZAXbxwvoSv4hQ4vf59tCYJugu08IRnDWHwlHtQabX7Mg4pGYyC
- gJIl/P7XTb7/4C11wm8KH9BleQcbwVt247h9dAdW9nP29MUY707dqos8Snl+0AcA
- TnVfC4FJced3jbrgkrJrprYfj853xDdFhDQnoRA2ICRf6X7e2jkwwsPRYtyEphIr
- msHBfXtzVbNf+elYU8Elya1YekxUre9fKQDZIYr3Nr7DywEIVSu2oAu+m8M/kn/t
- 5tYAOw0uTQ8ToHFIyWGuiYxVDMtwcEFIXznGT4VFebgAqYWhc1U+rSV0oE3VW/rf
- GS/ehWoN07MwTWNYm4B04ChywR43czkKeutPqnRPO+LiaDFfEv5n6gwgS+aghBCf
- 82Npprkazjun8QkPh4rATOhmp96VPCQKlUIP2N0hYF5Tj30kiKioj9ei/0+K91c/
- +Rg9XUe7zj73qOFGKnu3/c+pWMvX2oTG6RtdkKG5Ah/3xD3PdmTRBA8Zy815cSCF
- IkdBbfCNiiNG0miXlij0o7t5/h1z5yBLr7WuhdM4g+l/ms35oWpV57StWbfZZh6p
- OP+0UFxm1XX7VkZKxZWOAj/paW2X0OBHS9QoPwSVP7k1Z0+5QkrNhwpIBPWpr13S
- XgF5h/yHujI71bqg+qsuaEutUicf72XhC4l7QzC8hngvn3yVwJdVeuMsTzpdf8FX
- pVG5TlVwyEiCCyELV23FgW0XCluX7NQaiRVI7A/p18AbSqkwMt9sYBNZlAVVDRo=
- =2yt1
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:43Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoAQ//Xon6qrBk1OukKuTGzyz0LrNGkJrBLZC5FpQ4KWVVuTGO
- UakD1V4tSliQ01PxjdwVluyCVvMA7Cs4XsrMQPEnJKXcJukl0tK6qNpQtGExU4Yt
- SUslVxSjdfcVa+zJYTSQcNivtJUnd05nX/CeRFkJbqGMLYWVI59GZ6R8gLD2J5iI
- plWnncxDaV9Wcnsos3DEiamA5qlGY4YUUUx+Cf1tPZtStkuueGq1Ir0uGxn101W2
- Rf3yC38bk3N93yNyka2Bm/KvPVE1fPZovpsyc+Y4gh5UzkI2VCBSnjiKgD4ZbFC4
- lLmobWJgKzIQmP1b8xfjsN83fEeX556J23IVV5H7Q9zCvBWCpXu43MtrbkHhZ53d
- oVevbq1lc+J8lMarQNM6UPGXecrlMGCG2wZncD+0SIeLFOJBogTNVxV4hk6f/llt
- f0pX/Kd5zZmEOhE3cBXrlDOHaaEMQVXwn2Hv+zpPvnhNZekH0CK0+Z83rC3Uer1G
- lLUJdzO3lIy58edAQPrwfeodo2eBxyqKRPoggaB30N659qOBiFWy+OCN9gkVhKYV
- sgEVXYdsw0/07OG8shEJz8h8PZIMRzYnxvUMae97UfV02TsyBtB0K0IS9n6uBWZB
- u3v8Gicm/n6fN4CTIinGNvRkTLuNTfHrDkxLuRNgvNyuy+09/7UjzleIwqhC+pPS
- XgGUVQy+K+OiGLkzjhmtvvKwpbngUXlkz4t4yn8Gf9AeZfiT4CMN5pj+A+C6Bwjx
- frjQ7d3eCgo7aOhjD1BU77HIBYELLXHnqBT3MGu5n7FAFFBT1Kfs+lODRszY2p0=
- =ZBB5
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:43Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqAQ/9F4N+HC55MyvYJEADJ7HoFyb1KqqKjq1ZRJkO8DEaA2+m
- x47pNAX1qBHSnR2vDHMtKI6c103MQ56gP8FjPe56yXIFSYipM2Z0vsID2jMjed85
- 7SpZ1hSmcyP8xYxjVQ83uvYKZ1DVNTn72u89FCEpLBSIXvWHoxXFZ9lANaDoyzGa
- jcpFdgVFo65R8offS36lSz19ErpEXzlhiyS0qwCZsT+BXctrybxo3HHgafjrvZqf
- oDwsN65a3skhFkph5kE3/3Y3sF5Q6t5maq3TGpenRtsS613avVkWwqw/X9/nmd1t
- jik7Rkccx507MZvj6TSny9nCIkEGmew/Vbj1JLA38DCkdRIUWjUhWZBE4QtwtqnA
- rGhAt7tr9B/SIeOyQy+TtdICRT398h3GpyrqwlOmheCyunk/ns6rnhvKc06yhs+S
- 5uMkuUhvTi7qUcGHjX3cj6N16BknUrSz5kGoiv3U0JM1gz0oP55iDWCfFw6K9TNZ
- ROObvZzzCcrwF4o0YxhaEJTf4jAH1O01dL7iRBYa8EVEv9DigmIJNSI1ZBZh31Jc
- Oa/D34UIw8TpAAbtNPXY6kovbcADZVbpaXEAa9NDfM94TfLX5tx0l4++W23ZB9GB
- aUGTn78SWlSNBLR83u4aJ/sHvIZ6gmCL3LeT0JfRZ8Ryt0H1mLpunJ4lDXNktuPS
- XgHxdfkx2FJMsiqK8ygfeeJUvSx8AVRDHycLPALyjIvOQW6E1kgpZf3fLGPcwoY2
- +EDYy3fG0wQ7O67pWL+hMxuYr4A1L9O4Xdb3dmFEYntmVEr1w3YNJRecRy5ihPw=
- =to6D
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:43Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdAgJIqr9tgiyPy0TLAOk0htl6gARxNr7ARDXllXNusblAw
- jzCtJ/u4EPAu+ZFPLe2KsdKgEAvhOsx9VH1wG8/bhd1aJd4SjPy2O1db/TuZ/v9c
- 0l4BmAINKLonChboizDJrQICD6axZ0kEVC9zZcvY1dXAgKlmTkDwgjkKmU6dFL9Y
- I7HBtKXGO3DXtc+QsjUpOCGVcst+Or7ME+iBDmz73yfWRTbBPmEUOGoWRFRrPERX
- =Ogqm
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:43Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdA4oOJ4bW4yP7Pk2AMH0CtRRVxqxUmT1571X7DiBhG/2Iw
- AIj8yxWAAIuoLifLPcbFNosVuhMqxAHU/sDoMQOJ6bWixYQnpVJXQmgmCiaF8sbS
- 0lgBwfQtjHG4BQ9gDXZ+9O0vEkmxAebt6C+Y4x+HvzQsXlGGdZRxrsWsiEFubHO7
- qghONWmqTh3mdt83OtD9l1lR5KpDTZG5D7z9Mxxbd+44s+cPORcJX4bd
- =bp0D
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:43Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+AQ//dUnHLEoYSvPewKYvDUZdW0djUpzaq3911lbn/5RJ4YyG
- tM7XhBVmgN9Vw3UArrKk9ZRFt4kwTKC5jLAp1c5HmecRBr+T8IP7z/yg6fO7CNP/
- jLO5l6tct2d9YAvNdzPKVM58B1pv6EgDDYV6kIlNIZ5MsZMcC/p1XfOALPIZl0Qk
- C/o0+QAco/qYv+cBx+8AkaCcAHSngpf0Y+lqpQkRUShIYGuhuCt88QX9sfAiopJc
- oyzNRZqvG2FQT0AXk5xQ1xhLECm5HFVnYiQetCJCieltXqByY8QrWjIKr70N1r0L
- Fmr4pvr/2tLGJoaWNqa/6/RdUSj+SkIUkqB0tZVTUyKquCVaSbVHhwnKNLIeg94n
- ulDPz4GaKj30Y2WmqZ0Z1+7TizsLFR6iO7PlZ1vsuVoswnbB98Y2e1fCsQsw2hSa
- qeP25kdhBA14R0na+4zmXdrmhxjdJ4gGF3iBGyTq5kTVVkfeRZ5mougLzJaATj5l
- 5XSgwDO0seix+0z6eALMcTVrO6mARoXjVCkzCslzjqyVKj2kTGxxl4Xktb4KH7tF
- Rdicrh6SOBMFOZpqZENM8Vl0nNNzbmA9dKmEyCilun2lit9lz9xYZp8esrkLCbh+
- Mz8bEEk8hCsHCCyfZ4Pfg9wscxruTX/p561SDUYFhAUXUVNUfQpdg3crcwHAs8/S
- XgEnr6ig77/vjVN6P1kMUN/XrAE8pbPlFRYX3kxqPB9xKzrNj/SHwjFstjKUcfhY
- wEgrFIMGwP/BsDfXnMvPoTHcl+GnOVGBQ2jGW05NG32IvXqU8gedG6Ajfxa1EzQ=
- =m5ke
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.9.4
diff --git a/inventories/chaosknoten/host_vars/pretalx.sops.yaml b/inventories/chaosknoten/host_vars/pretalx.sops.yaml
deleted file mode 100644
index b0a4262..0000000
--- a/inventories/chaosknoten/host_vars/pretalx.sops.yaml
+++ /dev/null
@@ -1,201 +0,0 @@
-secret__pretalx_db_password: ENC[AES256_GCM,data:T9qw46sR88tcj4NG1oK3AfjreU4N1cIN0w==,iv:g2rr7PbFN9bFDg/w7vZBiuMB4p2j2uu0eQAyiweuQ6Q=,tag:0coJNAbT5W9gxy2fVOhuoA==,type:str]
-secret__pretalx_mail_password: ENC[AES256_GCM,data:HJrrmdDKzity4Fzz+JEj/kvddzHpRbw1Yw==,iv:dW15nSyYjzlFdPkQoZmJ5k+poWyJZ7dW5Lo8IFjtfMc=,tag:AZZObQRDMMoQgnPmqo/+Tw==,type:str]
-sops:
- lastmodified: "2025-05-04T14:05:04Z"
- mac: ENC[AES256_GCM,data:sO7OHejtPDQNt3bfXl+W488vCqaIicE/iZgIw6dClwoHZUHDNlv/V4aubJk89vELCs7JeOYocqZhARrrHERUxLtQMf+YguA2fBYZOVZ37chtfIqYoceq9ygzzzI6/PQlO5oRoe6HkASJK5t9oVWdfWUmBfWWWjBGrsKbUGnlPOg=,iv:p9NZw6HA0oj0PWJYDIjUKzj3DAI4ymI2V7o9knsvjnE=,tag:AbMiE6WQSPkuY2AEIcHAYw==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:49Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtARAAm0F/Zw60hawLrD82SGr4spPY+fDKhyHBwenuFLaQsFme
- ahf4kedykaTlUbTWODAIcL7KkDhG6RzuUr57nVD8V3i+hO3UPW3Bv+rssrABTex/
- PzKhrfK+oFcE/abvzMfMIhjxpC0htWa3twipxmBANsYER08kftbZc+DS/pvWCYjC
- KlzCsaujQyWaWrA/0sUdSe71S0oNSDCUIYQQbuWG+h/FFqCAMJ1yXLbjfeQlwZba
- c8RYvh5Zr+fizHiSJsYDwjKYCNocaSygW5I/mpbpjGK7WhleGrcEkt3Ijvb1K1Dn
- J0ysspmPZmOhV+uuygcEQxCQHL+0oWp82qu7AwcnYrnYe9KoXFTmx5GBXtLDxOYG
- sxc9JQs2gI9cGSaQbVtE4BrNaKuCDFLIAy8RBXC6m126gjG2uIDv626ONx39HCd9
- UBeDXQHRoq8H73pncz0RPb5Q2yKPbnTUw/C3ORbfE4c70oioIvtA6ZRtnGA+bkl9
- x6YR+Vqc08qwe3/qyKEnHZXhY7KEw1L6qK6ox7iLFHmYylNccwZ7Y5qMd0b/QhGz
- 4uIIdJEI6TO6KAloSKrATlcqt/vnS/9DGeI6Ad2fwt0SpzHhW/r90cw7aOL0gGl3
- CCqiKOxj5pjIIvUoD4nVoSkvlzMn97TBlir7GQuKMHlhap415N4WNsuLrE06TOHS
- XgHUs3CX25PSJSuVk2wyblHrMqsNIdfGDQyxSsgS13huBksWsvlbgNixNSzkFzZS
- DDJAksal/P/a7IJWopnR22TonZxPV4bANPtxucBdjiKSmXCfkQuzTjm3QOzW0ek=
- =8BaF
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:49Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2AQ//YjtcACzner31t97RDu0LVzJkLfxyZbpAPNth8ZoIdpN/
- HzH3aM4aid4zYc6pE1P0syuvg1iVirTS1Vmh8rxfdelWxGOjuHuPp2ivDxSbf5Ed
- U0fgCIFFYPKbimP7Er0Mkcd6hv5hHIv2W1IuZXVgXM+8nvdAnKYeH8mUlqn4OLnf
- x6LSxmkKs9qjaliOeg11/wcJZLk1eF4VkjKDIwyxFwI85FnRVUhcZDIOnhp2THuX
- RBm9DgyRmd4kFw0OpdktAmfqG3fRlFzrHz84yYjhZ/BqDRA/GGk8Rd7E6Z4EaAHb
- mz/0CAYxm02Mh2+TM6OgAtJPImZ+GcHHapnPO0WkcfWSihEGi4MULxhV12pSaRYU
- 1hTycZcgVGOjFfahXTnl5ZNh4974vrLcP+8rRkSxZbKNM4P9UXGDgjcM1cTtOIGg
- K9X76gVNMdTRt1y6bHRVcovm62uzyHpy4k1prJq9LLMg0rkuDKimOztjplpNrW/I
- Dc4ntj7XJDXUBLduvagrxGxezOVwGnM+HNvTL/a13YQggPJaQyJaIxhtA4f48GoN
- iHSGS60Je8ycDv49BdwnNmwn/IiwhlyTSD6PJJh0irGsO1H4oho21hdapKdWQmKA
- /drz0nopl7afCAqWn+TTE2DXmaF/BbZmrE6Z9YDrtoxzP7E9PnytiL/Slrit2l3S
- XgGkI2AKwfuabADWIUt+FuqJp+bVeATW4/vT1TpdknjltE+euKF7T3g3gOxuku4/
- s7hGyK9LKIAwNm0j+urUz2BqyFIW76R4dC2RU5hogKZNtwZFiL4CXIr8qBJKjPo=
- =qs6f
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:49Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJAQ/+JG2zH0EB/fiLvKfC5ZpEhyG8u0Ri37TpNUfVejUAnDu7
- gK19ih7g+DgxRyIoIub5B0wQz1GGMEQ0fhx3yJdLXMhqtwjfRdJYcWV0PWGT09Rf
- 5fxcro3KPxyuHgWggsEPEQcrRUBFqHCiNasvsRREIwvk9O0au8WYzD/MW/pMCuJ/
- yHXsbYIYMVEVrRhwsaUhnWoK8pbyYnyKNNKWEf892MOwPpsJLZds/rsqwbTlAHK0
- wRZfSRE9m3IM7LPPih0RwFZv9Acgb6qzXXm5VWpAHpct4C8U0DCZzTF4/jecIRbt
- qHh3ZCWuPtQOjggdh+gWeHyxnNfKeT3f0YS6nwQcNXj2FU0bk0L/aiLua6C1ucqI
- NMwhGD4oTXCc4O9H5nb7UFfZbr5nYXBs4RWfM9yMEx/6osZjG6Cfskb0vxAn5pCh
- tq9zAEnNwBiGgf4toXzg185keD0QR19GwqhJAZfLI4aoX/mTk7siTCE6fqsvnptM
- +FG0hqb4hrhynTIYTiLEkJMvQyqVMkz+g5SUl/ARkk1JLw7lizOwq/8lKuASXvKX
- nHNwhc/9DOBfBkfjdIH8BsHTDtPL00Wfl5ZlKfTaFvWCtmkv0XCkbhZ4qzwAa69H
- QSfxDqjYUCh7O4TUwMZSin2LLpVgivTv9ased109T44eujS2mzLwYxTGlFyNXcnS
- XgH92E4iQj2Kkt2hJcRyZEQsvYLQYDjp4qGzim+CAagzAv4bkjXedGJs8VVcyXkL
- Q9SP78uiF3jQv40HPRv79aXj2oXtcpaqJln0UGGAZrVbonsbxvGaGPE5hFLzuwM=
- =UR6u
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:49Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1AQ/+N0njIeQTZmbbpRUIVcuFQrFS8h0e3Ov6rpI4lhYxGOcs
- cE/BGgVr3TpLI0gOoP5/vuYEPEDG7f8bjvUuJ39D8Ty1MNXbRWxONh/EVUZe3cSF
- fzYEVOcagCo4gX9VEV8EFrEnbmnQYXVxGRsvTxA+T6G4JSlOOjXdf/yQGKG7CsSJ
- sySr/IJPw75C5NWUbFQ2UvSbfG25Lrfx/SI77V6A0Chs2YkcfRjz6oSV/imb2fnC
- zu4NWLNLBCYN/N4XfzDxlzWrDNGV2e2bLa7OZckdofpEmbTlcovOhenJw4xgp3St
- sWnUbrXyXcc15Sa1/EyJAH+l6I2zFXEWeR2tmocF+nBqo5708lzpGke1cyTqqYcG
- qCUfKl6NJqRUyoNhXpiVK1YtEMbIKhynJVjsupkE6IH5UmXRoEEjTn1XPhLh6IEz
- FO9Hylb7uJM+a4WQeE7PpsrwjbR/B9WcYsLsa+byqYg6nIqznwhpzd99afOj11Wo
- TfcL2VWCP5jpJx6kAtuhbDlNBPdEwvUnx15dhFcLpM02HVJNnQd8zOjODa3ICY3j
- qwR5aCdbLXsxw3xsWWMYt5jYtZdVaytGbzGvuEujbeY/yK85tzg18nTxlVNLTJIb
- c2qRAW+SfneubJkXdiMxZYrzD1G/w/ZYljmd7FcPKv6IQBjDqxG93EY9T8GErA3S
- XgHQaMSRFV/8eiewoQxAuGkXQ4kphk1989wnCaUWPpZyAlOgSHuPJXkkps9rFZpc
- wLcocDXREBReUb4B8+d8K0L+A89XzcUt+offd+qB6S5XEG4XQn3TnS3f4Gstwgw=
- =DOdH
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:49Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdABetSMqsBG5cMDIKkpeHIckaUfL5ZkZRYK0bZ72nW/j4w
- mEI3voDWxlSEBbJPpqlgUzETLlr7np6xj0B5DRuqpEDNRQ/n7mQCiDLfo5nQzUt8
- 0l4B0bcur0dxaexJ6Yl1UInHVti2E1zKoRZpneKPhMttt/7qv/lRUdyn1rMV622R
- Z8ZQEc0E3L1+H86704A3dCXf1TbyBpEUfuN1Bs3Dlx4eyPB7oPxacLq5v8FqhJMz
- =eQ2K
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:49Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fAQ/+OxlfT+bq47MU/MhjByVcsCrIG+3uDoTBEjm7LkCXUzS5
- 6uOPpqDeTn9u6bkjKr+mpo12kmhGltOpftyskePOxz5qx/AGi1g32FPJafitK8xb
- NSM5qxaXB47QKT9MA/DlSn/tzZI0YbZCrv/04Y2r8zxFF5lHZF42NEBD5Q2le2+k
- IIC8/f7zYNni1aCPM1k1B9YyJLFgwJmX4CWyEFvdeHeK9NxrFD6z9t1UU0RP1B87
- qbteFxjaYB3KrkdrnDNMyVCVD2dSFzWHpO2uuYoX3RV9fLmvr2gn2jBM5jthkJNI
- wSUJveWe5WJi18mRG+L5ST4kHxK1EGi3S9OHeDgBW9tJsAplDyTngscbY0V3tF2/
- eGM7mm5NuxIO1yQoBhpJRZIMFVOMc3I10vZPN4dUNCRtJ7uxN3BVD0ozhuhRCz82
- c+VueWfqCXWj9s/XvrtQu5douMFGlFaK1itpU6wQiLuIbZR2ax+/xwrsDr9lvmNb
- CxvJdiLZOuO7SFVFyo18wg/OxGMXIXyxFwt4z1UmzV/fPw5SlFJFRH2pRrIYxdFc
- mw6NwFs4WI2h45YqaQDE8bNKIR4xohn+px2TQxEpb3LhuD9R6Ix+3uAaz65yt1P+
- szWbZoMp7rrhU8gWVBlFce9hiuV8mEOfFtcZPhN5LPfDSKwXdLL843Ak11DW4knS
- XgFpKd0vjhx61yjkjjpBzF+j7thXnzohmvcwW/HukW67JV6lpifbktgde0QPA1I8
- zIc7XUmJ5efjDh/F/sm1mr09/ofCXFRSnGPbj8joLKWaoeqfGy27M0fLCYKJLX8=
- =Bmty
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:49Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoAQ//TSyMcl09q3mBXtuzxo5BtABtz1LggXzQXiV2+/C5eetG
- MybvjjqZouHBWPFfzv+PFxbVkuOkmMj/OfFt0MiZPYnt19EOMW1FxpsNkgyJ7Z8I
- lnqtnlVqsO40Brso2FxqP/FgknxTaxMMu5j4pjIaHDSIA2aHZmcEOjPJFdfAZ3qw
- LzxM0PrjTxRvzE6rgMayljCegDsCjgse1Tdg4XtvIV5rKINGkfLiOLggMx9sDje6
- XOsQKTIN6P+ESFWOSFe9TytQgs4NQBGH94w7Nwhce3P/Y2CcUqR/Mo4ns1gvS6QU
- RA7kzIi35AUUy4r0hymGwaPOGdUF86ceXxHw7nPVrvPl1YL4WRWF6xeuz3UREL1q
- dlAJ+REWA1IMw+hEs5/n0kxa9RAl5oAtAGPV1urc3VerBX3MTww1dqEr4UAoggYJ
- UE7k4dDS8FQonXFNwKE7n7Y+5cDIgLXiTmwlgOqDO22irwHefuZg7p+LoQIY5mOB
- bFNf8s8HLTsZvJBMl7/Dlh1CiK4Y1afjtgQu2SiboxPVoiutV0RoLcfhhsE+brw/
- DndNquaDxG0CK6p1OZjN5CE5RhhgfDy11aAgYkfo4WB6Vsl/HFHJf2BC1GFa+MNy
- p2jPEWus2gujvfMa4SriZCTGgO4r2s1OWwiaTZi6X6pk/G4MW8hSaLaI85HAF2nS
- XgHab+EbQU5l+7jBFrB7ClLbHun5v8SkUT1E1ZyN3ET3fAsFeTASlqqq3iCBpOQb
- TeT6qjXi3IpEUSuZBeWVfM2zSbbaz3txcuwQwXotdI0sDyYzxXHyUp5+aPJoieo=
- =y5X8
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:49Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqAQ/+NNp8TawnZK+TXGCg9lzS+VbYFyLYHYqAxdMnvZwQk0kV
- gTh1vLRrtgm1WBSYtZLqAnKKMKyUwRzqMjHjhTiAyEL6pHaiRu9McX7N1cZ6zVr2
- tavNwU5GyflsqPFoxxvjKLDinWv23+LcO75HDAnZ7nQU9cV2M87byb+Yi0kPAorD
- vOv8kvxIfbLFh+TRsj/w+a+N1i/EJ1A3EII0aoq9GDPC/LqMjpFJmywqX3iDU2iB
- mcJcQAlD7TNiIRi+cEVVhY9AIDjB6VnU+ITzKf2ZRlVkYtSoNATzdEhhcnSR1Ddv
- cNoc6GxIN4a8YF5b72FYmDMJNZ0HB+Ttx8Wv1KYTaQZ+9bgmfXMx3ef/bTKxIWov
- NXA5bSDmG0jqOpV7E6f8i0OShrjO1SrdCCGjeQLVyuxzvt7PxBKiga7gU/ekznzC
- p9M7ixNL6jUURGHeU7VJDX5TTMXhaKCr8vkFGW0PAf0Q79WI5kZFZo6L0nxJB5KR
- J9bpCH/9qqmHIq7FmWBSf7URx2Qnq4mNABUkQu5gBCbb3BnA/6Inca6zBp2AddHG
- 4b26JOhxK6itCYxzdY8y9GlxgHbUwXts/e22e3C7HPU7D/7PkGXv+ElSM5/grJaJ
- ZMyCZGZoYk4xSVlT5Ca3ibxd5R0b11jBU98j4Y3Y1eIBvBp4CFRmuGHgTkrQ3KPS
- XgFRZ82TLSMA0AgEYhZx+CBl8C2j7F+LXTcQw7SjZ40CX0Md0Wmj2xQWNM7GxDaF
- UYFWpk+dgmTedZnwgHYwqSuO3GlSE5MaTDs90cqXC9qNib+KOxq9TjQQdulSNCs=
- =6ejM
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:49Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdA59wAmAWKpEi2e/6Daw4V96WPthNmQxIXw+H/+/G3LWQw
- Rr+WSsmwhzN1x58KolnrfRta55rxBzE8tGqs0LxrEiv51PkWmwQc885M5ViqWTbG
- 0l4BVbXKdsaEXjEhn9ccOs9J0WhQe7YdMN+NOwPzRGSV28zD9eDwxs9j1k4v4kX+
- RNgpfp9dgKlck1gYIlTZteiJTkb5fvfQYPZAfQB+L8MawTOtzdKEBUHsC8kWWC5u
- =jO4q
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:49Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdAa1I6oIHWuNa5p6nytd5KF6aXy+80v/F4hYyh9h9MWD8w
- D9mJKnKztFMkvu3e452vT8KhPXWOKbVVpU4BHW3lrNC0yQGaDIwIEpCsPFQ/W3iB
- 0lgBIbmEigpaEP8Edj7xzrs/79Da7Pjl7GtwAB/A+iM+tT3bnr9oG3kYYxhPJSKn
- 3VKDoNh565yMFp/8b5hYPA+HPT6hdjuLxfxRmil2eIegEox4i5dPjaWh
- =bo9+
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:49Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+ARAA1B8GehpJz0AOrWDaHLzXn8hjVMH6UKwUEwBGd6vaz4PO
- EHhkZAqbb4zkCxW/6XLBMf6p1JVf+llvBapB6wZGdqdThWOW/RS2i2sNbON4hAac
- nSVnPdiJdQWlN1QEMAZrbFqOrIoXlxVX+he8amQS2WNYPwRWEBdXuhJOe5S6OhRb
- lOFM+wGtc+PdBB/DxnOt87FhCF3g4jq2FA9HQXgDaFacA/K5DbZ+Azo0rOGsjRKi
- 2CMNAWNwMv1IL+EdqRVajRMPxHg9Krq2VuBric9EtQQhCC6EqyFd6E8LLjp7Mxtz
- cy6vhDscrfOL3Kr90o3zyhAJDuLFcz1KQRgYI+iuq8mZ5MGcr0Lb1qu+7JXtlpdR
- UtjRwXU9wT6ooSa2jv42z7CnPG2cPKkMpkiCvQNDw3hk5vyOdyNCh9C2KBomPDIM
- wtLooHrXgAG31ESMgPZxNvQHN5SQM16xLAj9b0zoIsMdWZNvmFXxtTJtk1GIbgGh
- K9bDUa/A9EdSQjZP3ojvsuGjHeyMNSvk2V/qf6xvj/Ud2HYAgzXqh2kEos6N2T9e
- xjizBkWGN15XAxjqlb7ffgr4tMymS6O3A1h8P1oq7vyU9SXhDH1jjciJWMXFcNv9
- d7W1XMgWwI1o0iYNBzBNnq73ovOeSPasIsbIwXw84Oe5OSTUed0OLVsRhDkx+kbS
- XgE0W8RWzrJywD+o8mEuUACWAxJB48HygYK/cDMM4zuCdF1IoNnmR4yYyffZ7V6w
- 6Kj+SibkwjfCuH50XSyLpLTilkFa43/EW0dn02aI988saNfKHZnTnlRX014t//0=
- =uo14
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.9.4
diff --git a/inventories/chaosknoten/host_vars/tickets.sops.yaml b/inventories/chaosknoten/host_vars/tickets.sops.yaml
deleted file mode 100644
index b7f8564..0000000
--- a/inventories/chaosknoten/host_vars/tickets.sops.yaml
+++ /dev/null
@@ -1,200 +0,0 @@
-secret__pretix_db_password: ENC[AES256_GCM,data:kAOUjT7gw0FDqO+xt8m3wAhOGuZTS6zEIQ==,iv:oPAxDzz4ellT5MxUqw8/iBYyiTMf1b/Lddj5E0iIhWE=,tag:r3OTmcSjNUETEmOzxsMhxQ==,type:str]
-sops:
- lastmodified: "2025-05-04T14:08:33Z"
- mac: ENC[AES256_GCM,data:gyf0gBed5K3sEk0bTBPbNa83QtWtoLx+NVp78KrxxfyiUuPu/5ziWPKHDd7o9TQvXZnQ8isVy2BaTTwR6tK4AG5+SO2ffV0a0/uNx3/jUvh56zQFwA6LTviEnR3vKvKPa1GH1khojaCkyMpYkb2KbMnbrGIt8qqqDcwc1dMVv4s=,iv:7oPpmfeAcWttEaCOiL2WocbhoBaIh0Y33OlCAYjq98w=,tag:KTN+7sxOYEfxGwB3OXvUIQ==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQILAxK/JaB2/SdtAQ/3YbYFufLkMmPxTkW55MUkNx5UzrCufB7vyf5KJAAPAgy/
- Uh9h2LtkBN+LL82amrCn8++Sv2/4eEY/NGEL2F3yrVtTtpag/ORTjxcRFFdNGWVz
- +YpreQ0lNXzMFEvrdg/oN7+9s6QfCUevWpuiWkIPPtROu3aU5VAITrVS09wd2prS
- VI/kYNBZ4FSbgGIfms6hPKZ6tsYveKAAYmLNZLGWuRHkKS/oHpKSlIDpKpMZc5Tz
- GbRYIukF70/jeo1gGqc6Ksh/nMglq8zxj2v0hQ8ye5RFuyfiKBgVd6uTdAOetUyJ
- K4XH7GFFMOEwdei/7ZDh4FtuDqCGguvLuQDomaNIhV+ybWJJfaseBno/p7GwobI6
- 0g9H2RS9GieNilA7yMRkLzqtOy4iwgldSwGbJpL+NzO/d0SpYgbLOYdkRvdaJvyz
- E5u7W2dPe3HOgNsaLy1Hb/EWMMBLHbzvysnhe4ynYMYDkKPmpX8W3zshlZ7pgIbi
- Z/XyKwPJtmwDboFuL65g+tDqn6nvvTjO0X8hAIa9DAjWenIskzQ/HHrMyVEWoQy5
- 4HEW6VAWSosYbewwt4fpnK8SiTZgWrkU0RDi1WH6DGaATamc9eXZmzxvLVtW8D9t
- PGozG0gAlOejuAU8pALoDBETH188Xb9yZEX7Pbj1qXe3t+ZQbS/n49PviIi5VtJe
- AWjRF1ng5WY5sjBoUozg0AOshAbDNkbdpqvvwNXtXp2tLCBvDKYBZ0KdeERrTF0u
- QYpvyVgg6tLPDEtL0AfcW3SpTrEu9hxQMt/grVJy9P9sCNkGCCNj+jZnCoUd5w==
- =9hD0
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2ARAAjMwcq9PqOz7fZ/eIFRE8ZqOTdK7xjQw6y80/M/UezCG8
- P9NbzDyXw1O6sTrTAnDmaBuZA/22w0w3pfwbIZ9eIbIKUYLR/79bJqEwFbNYo/gB
- Z5HrkdbP9ZtKdWt7rY/zt+gv29z9FlXKqS/G9rIpsXTFL+xJfaymhNVjgdKbebzu
- aD1dIC+6ehw8/zSTXJUMGIGlgipDz1ug6NEVAJ5S5hXNSUFenb8pK8tko82+PdFm
- X7E1HjBxWktBTjGMAUFweqdGUYskh1D9iZhYPDiaUWOHcnaml78TaD45x7CY4Vx3
- IdnV/48hRwTwaEh78xT/6RxKMJvWWnPBqUE25GjNSNAN1dUZGSSqmGxcDUM4u+tA
- YxzNJ5NdJhl5BQC+Dxj0wloaVbMCkCsWdkT9Ewn8s0XqxsNWXTD23SZHfKl6iO8Q
- 44YpLo4R4T5XJypuG4hCF3PEuIzL5L4NaPijOMiVrMQLuAbhdUkNWl9i5syjfzfZ
- nm+8Vm6NR6ntp9jm+9tIGjidi0dQcYnQvdg6ph2wivYduOxxQOriJNKVFjHGuvhy
- HjbOFcbsScj0tDO0jQYLUQVBbKSPEzTLqina6LF6E8aH9N+ZCRZ0kBAskH0OC12V
- lj14suIziyl/i0DGO+DDbVeyELPl51V5Cf840ZPnXHTsRf4pRn812i+mX1dKBWDS
- XgGy3G4A/yeXMkvZoge9qRvlK8qGysAZVTHd9PzLDOq8oDlaHfF7D8xZ00PtvUmv
- ZmpVQbUr6Ou50DqwjQ5y2Zsxtzn6ds9k9n664E5efFU7CtuGRU/sB7H9hr2BgS0=
- =QUNG
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJARAA23eiDKMKgFZsxbDfCbXHd70e35HPoJPEQdBlXDaFK719
- tfx4ZnZXC8ZFxXr+hNf9YSAb0GXoIOXBGw3w6OG7t9b6nE0wmM4McBFPmiJP8clY
- YFXWCEBoX/U7wKbOtO1YS9iPQZXvAwU6vjVGzUrNSJJgIYD64nwxaVmKvWitNt25
- dPzqqskE+JBX/MrzuF9qFu6e1bDR25c8Sz040HCdzoLjHePu9JFJ1jL7ayaT/odk
- goe4dY2Ax9cPZKRXAWuzaikLCVMTtchJlyR7BI+SRmEiQlNTYgF+eufVg7djn+kO
- 7BEQ5O9o9FvxNVWUXyvExiLcLSJEEGpfrusXwbUz1GMs9bsAVV8q7tlUvT5IW5Nn
- UOItNitarzVn501WkPFmyN04myRrPY+F20Vs+3CS7IqwiQe/iK8/51dGH22Hwu9S
- ksOSmcjVbBfxG05U0bLJgIr9g7PlG0fhFWjnUO6fQnTAHUljXljSqofcBLK115i/
- fHXc34C2zZ9tbNfeRnCLe448mqlNziH3TLIyQZe+gt4e80J5PZmipgSxHwO8MPiN
- iBxS3r6i0Jh6g7vmbCh+JUT9/G/OvOVpF2RB1q2OoavbDOuAW68ptPG0vU5VMKAr
- t3m8tBX4fL2h7EjWLewa0aIACK9a5s5UYV9mRW8TDntGyCbw11WTTEtAUUwhD3jS
- XgENM90AHk3JOzSvx0a5o5NNZ2zCOishcltheFKhT8hAbXNZ8Jmt98qlmBfqKNSe
- qKLUBH/F2J945CSjlFKA1n2BdXZ0NrPqGd5TsSeBAo2N6H3Uqvn16ZQadTbqsvw=
- =nOJ7
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1AQ//cCTlbsyrbw4RDZq33xVO51ouvfxvY3MSLb16J/orxqGi
- b1Du569Hc9da1AXeAgTzBGt3QERJ/rVEMPIrkRaH1dTlOjlpGHZIxsXyTM4Igo4s
- R4OjiP3nqh9eJNhcLjsA5tXCqvxTAnm00hMEehWIf7vaOQs3XbMQ6mq/e4RRRHBT
- LCGyI1BVb2H+IH3tMPclkn+SqyR2P7sCawS5tdpjxED6l43l2EHrdzb1/XZjXPJH
- R3fBzOoAqlvOy6baEsDSmD3CCfuU0POGe3M19krXE3OT+HgprjzK32wfDkKnLp6P
- rvNH0KWWMV85ZvLEQREASpbtv8xB1+oYiFQxDdD6b1yH/iPXxXD28kxI/8WDe7OZ
- f9pnMS/lQLSXEyQZZEax4d+7ayjBTOTdLcPXVtNY6uT0Ye7vHwwiWxEnCysaFwFk
- p0JglvRBW7SXHb5JhCho4B/uLb3jwIOELe/0fPhurd8Fwk4gH9kOA9dj3EbmYnZE
- bjEinHdig+P0eMO/GkDtPGcDYtscuxh7ObFuzeaIkD1g4ZaWA71cbPurZUQYOFyW
- 0Fp3CjKC2ZCh6nrHolE3L53oaEkydmAGJsbIu7Gtb85HgF/w/173bXzukInBohKR
- uFBL9UvzeuHvmCg1kdYR23QY47SbBogJweFezA795dB/X9zFu+ArEawv43GFnWHS
- XgEasTZX1nCs5IidUgCI8+gtH51qHjuW1hiayOJweFyl8aLwmCe69y8sEeZqOoVd
- BZPKsghNVH2SekJs+aRsuoQwRQJHmExcO6/FOPFiuwxrcramoVCMaexBkuc2ElI=
- =PW0k
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdAsmE/t3OobfHFHvL4bwMjRh/QXeE/NzcMG6iFT8h93h4w
- oEgzFoLiI0VJhSAwzOahL677vdb8q+CZTyIRK8ODCczPCCxgv1h15XrfYT5+0taG
- 0l4BID+1ry9B+PmcDy7p++552+XxRR1sEXjKmy6iprQgODM0/6hvqtal6lUvqNeL
- 4JCLFKMAr0TEiyVn9NoR/WPXOnHaPr4vos9XaS911lphttOde1OEiK4mJrtMhxFg
- =NnpF
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fAQ//c0hi4pLLXCKNkD8ue3lb5BKQ1z8FL96JksjSmPwjWDrC
- MfOgG9NiusE6dkUfS8pe1kV1ZIpuJ9VO6Hqt2eFzYK1gu92+cERNlgLWMYYzvaIG
- s1dwbo9cW4SnrDnplX/NenQ+N+IF/AC2lsj/V1fF3lARXHBi4h0ETzGhFMMybJHr
- BfYG4fvcXQ4gZnEDiN9kNM4Gv1tqCYL2His+Wfo3iuPpIg8xWveadpNYJl61d8Gf
- c85K8s0EvuTUmJydqB0D0HjUFGgcKKhYXNy+jwTtXiX/iMo4I0XEpQ367d70oCnn
- 2dW5OQ43Bt143PQcdXEtpXkwZjX7+azZMSH1InfQ5TQ02Wj5G0EkYKLZ4MInV7bH
- /nPUnpHqZSbYqj1ltoeDZylokk2a8zBwAoICLqDam9YgQGFKhNg6748cYhN6janA
- Z55Cdp7yLy+n8oMW5ZaXrxo6Rj/idJLSQRGFCRzZyMR5t+xbbmUbPLgKIDJ/VpD1
- inpMFCSfdFOwhZst4wWG9AR2foy5j41khYElcoqYr7UDdmFYb5Dkik0yTE4Q45bZ
- ah9eDMas9N2t/fZ7I0OnD4JN4EgayiS0Ga0sngYwhMfoQophTh+3ufzIozNvVBQ7
- rajYeG+cjMAPvE5acHM4WT8qCCG6gIyUOeE5//KE9T/F63lY/pqEzlvz/Lw42WnS
- XgFa9qofeWvl8LmkWPkcGCavL5Z7TSieGab9xnzfOX1knAIZZ9r235Klko7lqHyG
- 5nGadiOZ2v7NFqTeWSBWUDASj70NloMdbq1lcXlh4tJ8vYEbL15sthmA1Ln/5w4=
- =KH6H
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoAQ//fGWqV1GSmhKcyQZqZbkLQl1invlq9v/AZVSoeSrYtKH3
- HoqNl1jd8PqKzda4pD7qu6aGvXzHCuBnRzYh2NZLk6qyV2lzsmrwLY2kYykJyH0b
- UFTni2vMPmHAQ++nBawmK3yqmVVSXlA61gWRL5CgsU0DJRVO0PTb+DLBU9+uoYrn
- yxqDoaa54PQSfhMxhqsRrMY+GF3JyLOi1IYVIePeJ2D4jRyTuST+9lQ9ITKDGx+Z
- xIfu1vPzd/WtnS3O94ZlxfHgcPwnRGa+cvyCwb1TmfF0HeGo755CAZ6Ge4aDM1+V
- /gkv0SRt/gV6SEaxPsFIIcN9KDOoREjtJNvvWg0Y59tAUS0udsAcIaYD9XNoEVTg
- QTmFKfI416Vqiov9M+DNKds45TiQD1g8K7/dJODzNl4h4nUqdpYH7+/lP6BaojNd
- 1mnk4u6Au6uj6Jv/JT/pKsEwaWkZoG7zswpEBeuXfYkp8JfpGDs34P3cpV+4c+8g
- Tu3ERPdzM4GkzFs924AIIWvkh5fww1kWCmHiX2zUKhhm0xr9K87qb1/fwTXtPoCc
- 610HRvc7c11aCU3Vudk/PTQpPeLx+gvqacPTUxgzHpNl3ut3wj/3Ej8eOE1UL2xa
- 3DsMFgg+3XmyQ5LBNE2FECBrVE16n8+eFulMuT0M0ZI8lHW8eKYB03SwWxmFBfLS
- XgHbgnZ26IgjVGPzp0hF8Re8nk5Jcn6dXg3dUIiqJWBCvVaenhlFP8EEW8etF15C
- Z7OeiIkDlH9bQb0HdAZSdYfDuAMEgYW1DZeivnFdtPjc0hV5yvq/vtz2MvNrhqY=
- =kZhk
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqAQ//SfeMwFnW6CKSqFde8R5qc+wNvcrlcVD4rr+AB+9ewmPI
- luCNFCwAg046NfEYGwFP7n4Mv14Wjnv4+en+xmn9Bqjt1skRqthkE/lFjNThaLgU
- 75ZqSYRqcXakDyu5wBXQzn8LUuVIDci0w4a8xW/OI1myfk4gdZdw0Ju4uYUr9jjX
- ROUf0ccnmIkVLJmMwiYYDwnxKMPachmwIb+WqUksS8GrSsctdYbHzD+ElkzkArcg
- cix5M3a/DWS85C2W6yDu57wMEc25zugZqOOt2A1UYbMyOfQE8FPODEZUCth6F85+
- 511lKo1vY7op8lgC0pvUScSiHH5/sYTb2XsCIgQscwbz18PW23fu+FwwhxYCK+n3
- DcdknKw3lHjVKKjkWba3jBXe3ztMYMKs2VIhqymqOXO1O482quXvDkm3r/JdjiMv
- Rrh/xT4RtKlUMjULG/CIuufkSzdG890CRFL2lGMEg9a5Th1N+x7SRbD9cLT99JQu
- Hla3/nDKlCyVeTKP9mwSzQ3BfHFY+2yuxI5p/1ZLjUrWnz/mkiWnFn0ABjsHwNWR
- roOldCiGQt84sa4GfyuLnnA8siBSrL0zpPkpsi7A1Sxq5oNPJIiBxmO71FFESRK2
- MlU2AMccAAEJ4W03tL7DTeqOUMhDQIgYodA4p4P2LGyoIeqn+y8/vRghRMKEkHTS
- XgFrUvjyBLOQPgLPfcqceORp8HeviLnXBOn4vxOyJROQCvS2RR85c8zpWlWJzKU8
- UIvzVWlAHXkB27fu+OYD9Ab0Rfa+5JcWq+9reum8eav/zG3tz4RuxYQZ5lvdw0s=
- =bAYV
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdAMSMUC7luOQYfb/yF30H6IAfWSPcMVcDlCSbMBl1dEk8w
- Lma3+Py9wjoUTf4jyONh8PPJxP7Yo2PywQjCLFGuuMdWX47Y7UhBnWdbtaH/SiU5
- 0l4BVp2HXR6wvKNlPj+Jj3GKfL4+lG4/TLacLHA/fNk+ptKwTJaF/4OIePQkT1To
- j4mWQzjAUlmKDLc0FJlaolrxGhmXGOn+8N1oWen6JYa0dNuvWWZY17eSerDQJPGg
- =OukI
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdAsDSanBfgX/RFnK0ypieGYVXvGSww5Gvr6EsspePrb1sw
- pA7N/F8ExFyhP5iNdMCNx5EI4qGGh7aim5+6MyArP7v+yf91KgCn//LixlI5QAea
- 0lgBcUQyJ2iwJkko6rxUkCnyB3FfQXdgi9dte72sVLVpft9Nw8/TcRqoe9N1fwRI
- rxP76Sd2Fvr1FqfqZozesQvX1XqaW5XWt5fp9UH7ehBF99N4fSdJug+Z
- =AmkT
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+AQ/+PySQtMQUJ1Kir6YYRn/lW+CArNN8dmD0ryceVS8OOITO
- skIUqVkhuKPnKur/O6U1poyo0EFMOnMZjXEK87EZCTnGZL5sSu7VFGiwPf/h3z99
- ljli8/uidyhoYsQY3yAosCKO594PQA3RzHnNVKWsNwIe6Zo2J3qTwm3H+RK1supE
- HOkt4EgvIb2q8UaYD+lZVPGTj+pa0FthIeIixtjauvQJreRiS2b7OsyRL3bpAqc4
- f8Ov5JZP1Ou9V+QFn1buqt2eeUm2SWkwsmC+RD37sAXH2zuUvh5Q5R4iSnc/Ry48
- UJ9+80DBamauQP02vw6a7WccmSku1b0O3lheiiWkzKc1u7RhzVcQEy1SOBJso4xB
- g22Kn1E0RzUus4Eoj2M7MQ3Vzlg+hveNHfJJSIteKvAa7505x+y6sxZ1zNmjQSTx
- D1AqXIpr3oBkW0LO6tIYbjIKUE/2hSNEpuzJDpB+dsqZPS5p5aOc4y0rLbNlb9Ni
- M4w61kcXzxaJxL1pwb/eBetxzQL/3eA8omZR0pwbeqHTxGAGoTGUMDlqK0rq21S+
- hkjpL1VeduGVh+q7+c5yQ9XnS9xRNe7pMm+uKf9Z50OzSFQsQzamm1g5xTX6G4wF
- gyjypWKNiPk75vIw9j4zbDONnzvSYRIAKno88LLh7ycdl9SN2776NKLtcrpA+gjS
- XgGfFZRKkEM4wG5ShafYLGvesYaBWjoM5upFZklVcHtrSZbZ64PJjSSAQyX8d0k3
- JJ2K7fP5VY7TlZqYXujbNQh8410ARlDuoGVL0s9etx0bbbLHLG1r/kCdSnN26w0=
- =+CLr
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.9.4
diff --git a/inventories/chaosknoten/host_vars/zammad.sops.yaml b/inventories/chaosknoten/host_vars/zammad.sops.yaml
deleted file mode 100644
index 712730e..0000000
--- a/inventories/chaosknoten/host_vars/zammad.sops.yaml
+++ /dev/null
@@ -1,200 +0,0 @@
-secret__zammad_db_password: ENC[AES256_GCM,data:ThtJngNvMc817rvbjMjjbnp1tBlXPdAg,iv:GcQHc7p5jFcyxpTcYsUOA8PvD1Qy5HxVZXHcAuL19Uk=,tag:UjVxYkU26/zkBL1eKDfreQ==,type:str]
-sops:
- lastmodified: "2025-05-04T14:11:05Z"
- mac: ENC[AES256_GCM,data:GNOhRrJkLTjovRO2cZgeiRcqB3TE2sWxD220Z8GynoUV4pWS20vOKvaqwxU9seuD5Msxd05JzLRVTCtP4La6HVSgDekoVYKz3SLmdT2Hev+fscmfr0uojRi/5f+eCqGMBEy8Xs2Y7AzIC60iHqX4VBBn6FgkJuTyS50qn1akoGI=,iv:EIjJbb0adELCNBoRsdjsVvN19v4rKCiVmxcCAcnY7QY=,tag:GzqchqorbDN33+SfspGT4g==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtAQ/9G6kv/pu3reUUCTVQyPf+vZSEKl1W3plShn5zV1mexSsf
- g561L3tA/jKc9xdCFvrzkgq0P5dNHLUoT4GbbdCA7CM1274See2QE294tLrZ6Uww
- pkAd2swywKP3bn0j1zYmFxemGaGXPcukSpQ5X4ZhBvDKvM8dgWo6KRUPviQ89kOg
- v/9NWaOfbgGF7ZcZd90JAUBMD6X5xABKVIac6qKcBuvz4nm3KJRboFMxgtG3ja/t
- fz0LTqwGsqBRcRkZgLudnCCS9uWKee53CqWuStgHP7wfqLasqgNY0TacjyBg9WWg
- ZeapLkhv6d0tXsSGAMmiYdXEst2yK/usXbqo88sod40VUJhZG2NUrgWsuU4rijD8
- ukIoZYpie7UyKDf/tfMAvoyI05BS+HXvhgmH1rsUTLsLTe+JnPgC1fmLTLJuvA54
- WgAsrAt1m0FmoPsegcVpaSIBldR9JDMpbE+6OxLfnMthh4b40SEcymodSz5Gb6vl
- tLoYlx3+VJpp3+kK6NLxyP77Z8drpNVYdRMI/4XyQe0RCAvudV8nFCzDTjXPNoG4
- Xtd+xTO3So9xpql3hYm08IVxFa+hua7qgyeINt5W2WmZ+MJiGjX0GTTj8Mq++j+1
- 0EnugIqqaTQ4vrITP02ohUq60lmBr6zbH28hZBUHBgnVEut6nA6wDIVT6VTP7B/S
- XAHAzMdG+Nhw06jFiH+Lh6BRs76+AFt7O2pDWL8TzSiA60gqvXZiWO7rU7oDsCe3
- 2uC05B+ryAH8WIybxPBlB4eLoHJwQzCdxHsKwWYKtpvnSiuZNnkObuDJg0yG
- =b7mo
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2AQ//WL4ttnjERa6PUAoZYyuKnrnFkS6foR3adZhsOynGKVAC
- RP9cryOBrLZ4tWf00Nl+wh/hWswJuBWe81dQ0ZyRq0ao2FJAdm9WukNVKinRShbv
- bgsRdzjS7W/LYpapNvbJKmxQ+2acah/7VbKsh9S6kdymwJTShRcGjhwiJCXPtyDd
- rG3LQ+dguIY3kg2fL9LEtl5Q8xeAtA9RiSAxuu6y9BcUmiz8HJMkaDXFwrleds5L
- OFJ3A+DlIO/MgoHwS8T/pQj3L4d7Tr7SqkSPuWKvrX+Au8uLqRM8tVOK7YJiKP0z
- ZIayOg7ntTm/jCRSkMuX3oZ97Jbpp0VBX6im9Kgzjj4LPJxM8n7K7/wuZxm+akeL
- 7/V+cuySYVfL96hPUINjHe2zrUz6EZ3/oo1EkpWxPd57ksCfTVoy14w1+hF9v0fl
- O3sI8f92BvvIKDQHeI05EFweoWUkty34RrOT1zAUj5ir2F7K6Th4m8jWdA3gWevd
- oZsVOIOyzTyzHAyFL6XlRphrdRW91CpW6rRoSBgMxaCX4Cso6NWocgU7lSD8sIrD
- xTKAPqO9T9qMOKhUKIYnvt9s7FWpDa9xqvdWKX61KUGMfntk7rYEhp3125AW8hBx
- HBuZXgLiplOJZEs969JBL3X6vpcMpLJK9C5qHUAi0jW4OU39ktoO9u6elEO0VYDS
- XAGs8wOfvnkDlnzeN3E1+o5NjRruLKasBa+6KOnQG4/5XEW7b/LD8po4BuuMy0uG
- qLQyWVCDSu0FOYp4GFaGdqN7QZpiUbxnD307xd+MJmlPkP34MRW6Tdx0H9ry
- =xCEm
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJAQ//V5M/XCLawn6KtqJigp5GEr4j8c4FBgYN/7Vx2ExtvHZz
- 635xc/UE9WiMFQAtkiftm5g8cdz44Jx8rIjECsx07Nu2/mNsdzuNJ4JJS1cXSK/3
- o9Iq4wR7iGKAwEk5AazVe5raq/4rlqTvrzXZhiFTHLdKzEpSsvyeWVZb5rJUDgiN
- h76iZ7qlSfIeHPWSlfBT8BhFVI1luUhCJpP+UUPrl88ilrgY8NGTQiiYJZuLneED
- NdvRdzqOePrK41SlLq5QWqZbhracfDbg1WQZkLiJhJfYE05UuKP+YrRYqm9FeZaz
- AvFBB9NKk7zmG2XDjI87IO48vPBge3pujH4Qzh6NYisiPnWWrYUYKuOy1fmVfEjt
- /sM0btfqNfQx5P0yvn0E9UurJbhGsI4+mZsFRMWlgMI1yIxpo4DP+rK7l8YJstbZ
- OpHloRez3bwZdpAzL2tzJgfK+U7DqSaBWSezWKVTD6mUORNpZVhtMJt/mfktFtuJ
- hyLs9KVtCMhFfF0hO/AY8efm6DTJpbCuRAUSw1wPteQvzTxCVf4VE8Fkpm5Ij5bi
- TkWPVhfeLkQcQlRTIAq5K/CKn9ck+5apD2ew1kspPQQXVbF5DGtO2ekPGCVzw2mI
- kzxNH82ajjHOYQNJVe+L69A0yrJvf27BR+dVkvVnTwo25cKzRLKUTUkt3QQyDCfS
- XAFhNN0aRmQNxj1oAViXSp8CEQ/rPifUEdK760ukcwDNEM1y6D1ky3O+yR1TcTFe
- 40BoYos2qbEb8Wl6M7+mOem8O8e0/SvE9ktjSUaUEFAn4GaU5kg61Ek5ISwa
- =0Uat
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1ARAAtZ0xm/ZfBtEbJXB1DyykZmO8+q8+N0ZgKAh8g321nxcM
- Z9f1Dvpnq4RsVsqJkP8hibLnu+B44sKcAMN5j0i39k5LwJ3q/unoJZe0vcf0wbg0
- fid7Z9U+D8TJMenS0o1TfyB0bqRZ+INwZYo/q0lxGCyr84RWPqyGGTzgRZh9N33X
- EsdwaOhUAS9sFmkwciqFvuNW7Oz5zU0K1SQuK29GEtUoq4EyQJ7wWg/e4sxm8jmU
- /yTH+NlyLw8p08YbkrKgVdzgWQ+zzNfkSvadtRs8Xix9XV1GzD7tXIwZIXmWQD+M
- CA8gTTAmu7k3V82kN6BhnVYWFlazd5rHLfQCVXV9dlMWXUepnOoGFGq8Fsd9j3Kr
- 0OTnLZrZO1+2snMoXMUoqgJpCTrxgC5ix1zYpfCqd8WeAWh88ndxbsR3T9xhrVbz
- 3bxpgXa7BgIaL/hA3svTuk+/psJSQK8ZY1z2Ehj2Evg1KEOIz/g3CtIQY2T/8i6E
- GBkra0tVUqAbnxhGI+rSONijQbmyXFv6jHFoRkCt8h0e4CRuXxXyGYnegNA/u6PU
- ifck5iOy7mSbcLxjLvIKT3AgB7HAyhF9NMaTTruNw1gEaLscySRL5UstuT2bjVk4
- xu5PZUWTBMc4uAnFQdlJlUM7gaIHAreO3tt40B4mWT4em574YGuBkWqS1/vfsVLS
- XAFUjgAEUud/yBnM4kGZaEEXVoPTiHXMzzXvqazGXLWdy85yyH8Vc0/G55oIjmka
- gp/ae5/WPFQedYSVPmeOCzZYe76V/LdudID8ShbYqmPPyCZNHEwWSQTRYcl2
- =TSxz
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdAiWvVhgNgXZ1xEKTEvpC0EeSl6RmJ7NPJ2m2/TXwdPxAw
- GTWFhnCOpN9yOhnTx01pYBT+DliA8I1DQkzKWcZZLfAWRoNtZt/bY94XnwffJBG2
- 0lwBj/ewRld8z8+qKZRAwg2B6cJODdzp5UlqhM5B25ocH/YOfOFLOEdwj1mv44O8
- tAMopgKi/krCTrm28ceeYl7Y8+iA0EOP72BoS4IaEb1y6WhZT90rXq43J3JaDw==
- =UNES
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fARAAlJsKlKsKrONfko5V/yrsITbkZOsZQdwjPv2+BpmjRxI0
- UCN0vl0xhyxhKIVJkuL5nXOzmoW1Vux6cZ60OpdUxccvMaQ8+Y8CuY5jSTNKrA9n
- ag232Fm5P50PBbvH9LPtz8DzMaCNG8Xec/QegozAmTeFHdbPvloNpb6kwTYqR5uy
- vNRVnN9uX0LUPdR4gRqsQGD6aFJ1oXVAw5G+j30eD998NOrnBBq0zDarjG2ys2/Q
- EqYRvqW/wUpNozTdhlB4JUcuFBmNhWaEKriPCXDD+NgEJrapdEK8YFr6PsLkzQ22
- zkFxPItkXbuAoG9KPskMYygeChCQKWy4WfMbFK8t8wnywhXf1zl5yvSKubto8wtD
- 9x2LB5R+cW3rHIdd4jWZZuyv/VLbL3SEpVQitMXmz8Jj45yidCiL3xV/t6rNzWzh
- E9/PUYEVGKRZV9mte+hiniVYUMHQniAwomaTa7w1EHTE9sziGPrPTqb0xGADsVmd
- XBiKhyqwatTgnmsFNTw8gr80hI5CJpkMm8cpAKOXTHP5zzgpidfLTWAnGWPOu2cL
- fpTQZ6s6Plxv8341JL8+/FFl7wEeMrMDdDZePkEQXXhmbOlQBbhGCNE5WxZVrU7o
- ZYhQd5Gg/q65cTUJfcpmQZLYKy//MYVNsxEi8Gt3boinvq+opbOt3fGoU5b35S7S
- XAFVTsQgr6i2aPslkIfbZ7jCK8H1/t5CGckcj38ekkKnc+qFo04BHYpdzrLqjM0o
- e16w/tILSlWFz1aGzS88rkhUDjAXJvPVszZziqdoF1Yhui0eeqWX9lwg3AY8
- =VP6H
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoAQ/7B9zToh5Sjx08QIWHvCSU3p9gcs6TEzntEmomSC+f9D2m
- HByLrfkTiizvAnoa2m8x7W3hocFGuWiMO2Out2HTpr/wS36mRuTNmgfWb31avhyt
- dTKBiPJzL04LG6kT2sVMPlfbhJ8pZ0YEJz9Qwr/HTqYVuQNdnARXu9TMU7WTRlSK
- XcyfRU6ioDC4HAidTrq+D9udY9k+UyT/Xx+98azpOpa3bOeHqKmsMEevJ+lBs9BU
- bqWFEKxkSNPHnMMVc2Ii76ng1r8qDVWyLDQ8GL+0XmNeWtLA82D6OdASdiUT+Wia
- mo8ztvkOOQUNXaBPk7pH0vIVBEq1WrmpIbx7uVJF646DD+MUAPpxpQW4agrsWB47
- YnnAOIY6JRNhwSf7/o52fereFT+CIaHCBTk2tsXPznZt5Y4H6UEZJ77xW5clEiCA
- hsY+orVXGkyejpuXb/W3l/hl0vWxhpErDeEF6xa71rGeq4gdNdGVki2zdAWlB3UU
- sMNdBKvZcFWcvVQhKC73OUfsDieGS8CdWGn/BsjZQX8Jtz/9D8sTe+KwvIt88NRM
- muSrfHPEd6BfDmZcqlqWGXg2CoN1/g8pprYiFrKXuuPy4qA1K5ydarh/mFNyjX6p
- btOgsWDy7VdSOq3vv6dVhLaIB7mszVzLfdmkgOr+Hm5pTvHIqZhQznIofvgcoW3S
- XAGKeM5Fjrv6nXEW0Xj4zJ4eC11hDSyXeJ7P7+U5KwT0vixELGVpQv0axRNNaPNR
- jMku1rVHdYRGNNquiL2oJyY/V8jFJtt40rTEvoALy3pbnrEdE8RG7NxVpPes
- =ysNG
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqAQ//Rt/1s0yAosBekTFgIJhDggMHVy+4BSMcX1H6ouv6hYNG
- zEFd668fDcpBAq0hAXalxh8vCpZC9CeYzX5a3qlWvsk7sUHNsQALVZLjwN9HHfm5
- 4owzgHbmGd8BINtoirWa0GgqPOMX50uWZvPYXDAjdawywSYxLTj9CwPLw9LKo8GW
- b5SBuG0Bz4jWZ591r6g/pvC2Q2ozFUqcbvGylo82rAkgH9lEzepG21Vw7sMdEMwB
- 3l0QsAse6Oc9gKgDeqHutoO0vaASvljC6geHBZ39rNHuEjFi3e4OuKFz8RpWRps/
- 3sHwOydT9Ao0cgduUtbzLm/3NHvcH1Hn5zJvNkoEPIhnX0ynJ7GzM5n/A3MW8jRj
- I+PX2dcVHEzIhdTcbjB2Cmx2xYpY/CBp1Z5I+IhqnJ0Zo+nwDPldn5rvnO7hofvt
- C1adexgMKPGB8zkojRxQErkN95IFaiCbDiwcQWC7ZI7OzDGr12S37OTJrZf6Fqyg
- 639k034mFZUR6auDGLqAmzXYmD/VcReepsnl1Eqke7R3w+n7RgBhCAoQjy5mvys+
- Zbe7ooN2vAe8WcdqcCnwwYc1kFNebNQE9L0coLHsZwEZjhYNCPyGI+drGKigezhR
- abp2XoLItTiYqbSy3fD0K4Y0aV6kDwFJQiMedZGbqN4nTJcTY1t7V5GTx8pPfSfS
- XAGY0zsoT7EX3Cnt34J5YSNRt8hyf6YEpeQHDPyM9Qzlp1ppM8lvmkA2KhcJZzBL
- fMBA4S4zs3qi7prrgtNsAF5Smt69XzoyOuo9qofN+776LVWKSyjfQS6ZNe+R
- =nlmA
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdAyO0n+fU1kq4NR2/Zf8SHKx+6zegT/HCgDkpM9DGh/now
- db5MRmmINkcRSBE8583KwaSiInuYSqBaw3UxOv1VRZvHnsVVm2AWRtBaYdpnfRLC
- 0lwB8TVBhkjNuMRtIiLVdd0IzWaXPmNTW+MGHtjfFocnor+MMU0zIFucRMY8L9jt
- eLntMuWw8knwJ7l7kea8So8+bWLlCouxyEWk/+PuLhcWiGBh501yKhkREagRuQ==
- =Kos+
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdA+EeOaqri8YCU5eC4iwE66pHwS5bJa8UGO5CNi4t7JUcw
- 0ZGI75VZydgTRWSaCB1AGyix1oviS5ans6i0KeCtciYTuaFl+jPbnJL9EtnO1OV/
- 0lYB5t6/oT1J+mRr9mocrzaDJOZkv6xy+90QGA+NFF82bKWvQI63hV9bhuC26WKW
- CWEALAdCLDo76JrhcqaGjmZrKDWi2y7Ju6rXk8RT86W03y+eUHloYA==
- =AqlY
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:56Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+AQ//X6diZXCicV3lW5GSRRUG9aR+AmtuZtjDXvqatdVSzYR3
- NeGYYmWwHaPAfQrH2i07c1JeDt3RY/aKo17afSdm3jrnIvfAAFZbPQ6DTA6jvxlJ
- eDKJgExHGR2y84EWerQYgKYwQFROiOExNotRKoDP9WEvVO1fEP9JpkxeliRi5+hH
- 87uGbhEZGpn5QRF3kkBLvS6zx40wQtdXehXp95eD2LAbgUdlfZJsBsCQ7rvOss6l
- CxOceLJPZG2ccPgi9eu6/17+5GyX606/bkzOZefSKlv2ifkIaU900/1Zswn5GU1I
- D8xibc1gM6j7l+Tp8hevUiN+lhv8LWiyCk3ph7b9MrXLjcBpeGRZUq/sj+ffZdDH
- zxon4BAgYSVw3QvUbi8TrbGv8nH6uxWwd1WOeEf5pHpqSlWpIN+TTXgvroivO93n
- bTwkiUH7mmHdZihJUpE18Tp5dipvmKW0t8cz1ahsK4WF/mlIOMTg2xJ7gWMvQO6/
- 8ZpW9lIOzCirYn3L8kG4rtAdaOyk2yhQMBPJGas5udXqn8nfGrHG7wJoR+NgsOxj
- l/FkOfc2jYgrVSYxK5DiotWcxgg6lpV8b0YngJF+7+R6wC+E/h1ux+L3y/wH4lCd
- ioC0iGeJfHdo6C6dmlHNRzgJOKAQfQFATLvcrlIYm3ejrDYYqMwxxmTkHSuZBljS
- XAEaFIbQtogDamtHcrF32E+5GzNeHm5SCNhOZle5KXnHHj1s9+d6YVG8MNLr++N1
- Rjr/RLVjOZOcjzF4eOh3DCqbxaY8YaubH2zAIcBk7H1dhmaVR6tQ1cn8v8u3
- =PYNi
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.9.4
diff --git a/inventories/chaosknoten/hosts.yaml b/inventories/chaosknoten/hosts.yaml
index 6ab1c53..2450ca8 100644
--- a/inventories/chaosknoten/hosts.yaml
+++ b/inventories/chaosknoten/hosts.yaml
@@ -59,14 +59,6 @@ all:
ansible_host: zammad-intern.hamburg.ccc.de
ansible_user: chaos
ansible_ssh_common_args: -J ssh://chaos@public-reverse-proxy.hamburg.ccc.de
- ntfy:
- ansible_host: ntfy-intern.hamburg.ccc.de
- ansible_user: chaos
- ansible_ssh_common_args: -J ssh://chaos@public-reverse-proxy.hamburg.ccc.de
- sunders:
- ansible_host: sunders-intern.hamburg.ccc.de
- ansible_user: chaos
- ansible_ssh_common_args: -J ssh://chaos@public-reverse-proxy.hamburg.ccc.de
hypervisors:
hosts:
chaosknoten:
@@ -87,8 +79,6 @@ base_config_hosts:
tickets:
wiki:
zammad:
- ntfy:
- sunders:
docker_compose_hosts:
hosts:
ccchoir:
@@ -100,7 +90,6 @@ docker_compose_hosts:
pad:
pretalx:
zammad:
- ntfy:
nextcloud_hosts:
hosts:
cloud:
@@ -120,7 +109,6 @@ nginx_hosts:
public-reverse-proxy:
wiki:
zammad:
- ntfy:
public_reverse_proxy_hosts:
hosts:
public-reverse-proxy:
@@ -139,7 +127,6 @@ certbot_hosts:
pretalx:
wiki:
zammad:
- ntfy:
prometheus_node_exporter_hosts:
hosts:
ccchoir:
@@ -167,8 +154,6 @@ infrastructure_authorized_keys_hosts:
public-reverse-proxy:
wiki:
zammad:
- ntfy:
- sunders:
wiki_hosts:
hosts:
eh22-wiki:
@@ -179,12 +164,9 @@ netbox_hosts:
proxmox_vm_template_hosts:
hosts:
chaosknoten:
-alloy_hosts:
- hosts:
- grafana:
- ntfy:
ansible_pull_hosts:
hosts:
netbox:
-msmtp_hosts:
+alloy_hosts:
hosts:
+ grafana:
diff --git a/inventories/z9/host_vars/dooris.sops.yaml b/inventories/z9/host_vars/dooris.sops.yaml
deleted file mode 100644
index a83a288..0000000
--- a/inventories/z9/host_vars/dooris.sops.yaml
+++ /dev/null
@@ -1,201 +0,0 @@
-secret__dooris_client_secret: ENC[AES256_GCM,data:v85gIBNH4s4j36crJ+Pb2lu2cdZpwz0xndHzBKZNGKg=,iv:Rlt6R7JMcHTAAVPiTtFaxqsWD8G5B9Ab3yqItYdFR+E=,tag:dlMHaxTMx3LgOzCsTLUdzw==,type:str]
-secret__dooris_ccujack_password: ENC[AES256_GCM,data:bHeftSA7eC1cSydBRumksRgw2v0=,iv:X/pfsvQPZREifGjHDGx8mVk2TDrlrRVb6MiAr01wI9o=,tag:ti//x7eDbheMG6Hsn2KBlg==,type:str]
-sops:
- lastmodified: "2025-05-29T13:28:08Z"
- mac: ENC[AES256_GCM,data:SkqMlgJBdM+CMLE/um7m8V0ni04Xi3S9GovNsADrws6VbSWTX+50oc6HtWl+Kj2XugLfp2XpVnlzggCiq3fePsdt1af2+ZfSCue1d+dexjo5Q/gvE/olKlmn6aj5qiosUsLgu7v2bCOIb9m9WiEhlQLKx1wGiqVNQDabiLOJV6E=,iv:NUUOcXtbg+xMHqthipKpRAWLTXda8rup4aCbbP8sVEg=,tag:wyh+hrZreOyT7uQQrghb7w==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:58Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtAQ/+P4Y/6oXngawMZSyE8nrizlGEOL+SD1Uc8A0+pqmB5RF8
- RLbDvAMmicGGK3dAj6WaoCEl3F8oP4VvWc6pQC9xaRsaJRH1hstajavI46xv3GCF
- ILhitEd6HbDMrVB7QlzRRUwdpJN9/+PSORRK8PejiH22+vIWnMqiYVM5fjoJD8KO
- rPZjYnu3b+uV0I1gCQmp11+dBk4sizxr0w0bDNGJ3hMzg/DMOqmJUK1atXg9ooBJ
- XwYlVFHj60TS/3so20EG56mYEYyNyds7yY9N1mA1S0SyWoIXtJbEYYriW0y7FOPd
- f8kuLp670IJotOglJThq3BP0ch6LxL1DpV4E4dhsxwq4zbujR4H4e4Fl15kNj3Ca
- vtCo29yd8at4Hmct+sNyFuX/zGYLZXrl0mKnQq1K22Ot6x0tdQI0kSijg0moUpPp
- d/hx6jeSw2TFIhwm2KhnNWOsFSbmREJ0L/rJ2yhunV4UTHfjqq3eKFI30wnC4On7
- qM1u61sEJcULx8Df9yqnRa+PUnltlNuswFBJw5jZ94H2k0CWXAjtfDGO/aVjD7QW
- bGngJdxu8+zNhCEyO1QxQQqjY/dFSxwzRlv/jRpD4ragM6AgWgRehqrVwut9yMjx
- zf/hq4XeQueVntCZ5UqgusT9zcwZU7cGr4Hl+EeMftNyZ7VzIUfRZ7pv/pBSnwrS
- XgHjRqAMR/c+BGmsRUqE7xmwL3YlPCVTXvHg4C2JSruiuYOzeSnKGy2JB4Yq/+wM
- auoFgVhOuuwZCerXiTNc/Rj6KF8MmHtpqu3c/NCY2rYsaN3tl6jvm65YDy6ji+4=
- =4+eJ
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:58Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2AQ//UYavx7nbBECdEhDefYN1Pk1ydInIBa6MWCA7GGNoVX8P
- N/KDvuBwJGSONY9x0/tpoBRYuLdefDIkfnHXAMHCKPDjyTuFHM7WiqJRNUaChnMH
- j73ecjWB8kImCNA+OsDwSYzs06t3BOuYPauH0Vaba1jYN5sKx0SeFdQJRZBTPZkO
- HVR1DVGvSK1jd8d9synPJ8ltvxo6S+JYM7dOHoVI8i0Shzrn+HFg32s7ZDLbIbau
- F7D4BjzTzdDX8FvT0NJO+Yqhk6pdc8586o9bO5wzfTTqsEEwTaXRrImMa3K1pQu6
- 6G/6F946bW70ie0HmNrzt6gUnyCWWM8Oc8gtyNG2+wVyz2Zh5ttCgFkvHF0sIyiS
- AV4JNGVs++RZUmEfxkr4ZfMCQjYToG8RFTQQQ8WUDm/t1OJIEo7lnupLuvWadvwO
- XBatyEfUNqncY3pFUtEcjWYTafZi+FQteBNUv4c4JNRtG3efFhzvxJNXBfqVXIKe
- 7Uke0KkhG+HOIBQvWc/7JGSA8vtmIuGCOD1aDaHfwFxVEYyBnu/m3H4yt4rOaUsd
- 61/XY48drYrEVXyv+4xxV7BG+HaX5boKgI2i+iqZdhdf2Bbbp/PA4woUVQMp4pLP
- 5c8vidwGtZwS1dhOPoUXuYElkMgFUV+kPfQxTwT9RMsB1uYcsL+2e0TcOUQNbM7S
- XgFbt3ySJ32ovWkpu2OqctN1xBtQ3J3FeQhT71Z2mPmnauYUGQwtTPUQVidpJDI5
- KhOwgDYO/ZXxQ6P3faG79gz5cGiKUcbargOISgQrm+gSurxYdg3YCZase8+CwwI=
- =cBUH
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:58Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJARAAqo/EQcO7Bxq5ahIqJJKfUWl1fUYqbXDJKUsr7peoHGQd
- dHex1kkerSC1HTi1Ua9uLdz61nZkC0gLG9jl5Jfa8hBIHpsygMWdFM8TkbR/rZQQ
- 4f+HuiN6ZGmKankMnuSs8nCdqkQFTiMVItBGxGQ3P6cfkZvaxQ0M7U7OVZ1H/rGt
- qkvu6IdcMLfuXnfEyI02bH6nhA5cqcuVdXiA7H+av/AgZxHy6RJCbrAhihNiw5zh
- HWzYD0vt9o4U/5iOpdpE+0gMdj9N41bWsXcDvmhd74HmXdI4mKwb94MB+CTIddaj
- UXTfHeJABVtUSEuq9jnRW5kUKcJl9kZlFbcy0as5tizzQ+g3M9ukglziQU7hm6zJ
- EIPOke5GOu74r5V2wg6Dip55Qe2AQaY7fkQz2m1dDmb2dvakaDzdZ1/KYuIQ1Bd1
- PM70wPsliUsO/UAxvmgtGvEDdZvHBX6C5Ib70DkHB8A0zm43/ZIvB7l3mVPoX6TW
- ZZyH6hTHvF8NcX0XA2sOaP054GGpBzVBqG3I6NndbOeHVq59rN17c6aSNGE58wq5
- G2M4F2nX1fGILxXeGUJVahaib7ZI6DIr8u6BwFGMLr+Td/fUxMD2qdar892NzeCm
- 8gC2v8kwjk0cQp1hv8bn2Vf4TjwR7V5++/qYeXzOd8cQHE55oYZa9GrJ1SLKGAbS
- XgE83PddEBkjuaJLjOloXr1M+rykoPlQ1+UtK5XVW+Kp6EC8JcXRJ35XiZ15ScIj
- nLZpmjD7FbSr4BthLf370LaClX+iQIfPSaDd0DhPx0cbOzsK4vIsNX8BeoIPa24=
- =dRX2
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:58Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1AQ/9HwAW1OlLo2jy47Z+KdRPMMx4EhcYGJKgwxnL0/pzDRod
- TDwSgfas+MsDhx0fx+drC8O+mzw79xGmHQWAEHhZ6EpZlHQRsE3Sn/8nCam0jQ7l
- LeKCyh5MK3n3K0MPzgis2DxR/Y1LOaBnIyL693MCHy5xdB+kIO4kFipWtGlzbUYQ
- /SUUhLXBJv+GzZuEtErgvhViW5cy3xoKoPRzeu6+3tj8rqye2h+GuMl2c171uh5G
- jkGZ8RzYK6R50gwPT7J0yVAEvUbilSNi0W4k+cBg14WRFC8CnMtGngV0PsZxbD3+
- nk0FgTeUq/MAPos6blXzny5xKfQ88/eqX9UVB3VW2X2Gqrrd2WA1zGYwJqxcCqS7
- on+VBjsc+uObCJXTyYH5hyJUtoD0Ed+GxvSoGDiwcmhs+6mvVb3sANTLYCXo4J75
- xN03s4UMlgrzyXNhqL12zlshth6EKD5q4SjQI28fOWgsgOlpcDY+QI8dBMDOPm3H
- mbd09lbvquSdGTEGkCLOGOAg72Ph/jWf65+yYnC7hPCaRxI9K/bfbVU8HQ+rJgsC
- D7ckDKMcTu7uYhFnzEsUqTe0aNS6puuKK+r3XDi+JM3bG7R4AjsYUstj8AD0tOY1
- aEaxnroF18Cr4BrguFjgd8h8waK6DfxAiG53a72v/mNkcXtKOrm7zImpSPEzQG/S
- XgEzCBftKE23Xjg9mzl59muw6+L8JMDUAFWmB7npL5DTqGpz31cpVc6gihlrSiMO
- HXVCUm/pQAJVCdXTqxsjkQmv9hQQhX0wIK7WVxzqAM5R/YzBP/sGgUeGhuSfJkg=
- =AR6z
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:58Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdAG+nf0X9XiYVa6T7YWuwocUM2FKyC5ZzkBepUimI3G3Aw
- LJ0I40vOoEfRoa/q1lEDuizyA4l9RG8EVwi+c6yAT1OuyqI8QcRCwjrzvQoCKTDc
- 0l4BwS5IX4l0/BvSP9F6A98s7HjWwNRInLQNhgOTHgMppnjJIDls9QnKjlnwKReN
- 1DwniCgRWCB4UQrP9O4kla74RItxaqJMAjo5Bjwpyi9UsyHppp+hOMLWamMhqT/J
- =BL/2
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:58Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fARAAodfqlZG5jgwmQrY55giGV+U+UX7xHSzXhBqZXcj+mMwY
- mF656+UizvKgyDQu1IkFJA1Xdqmq59qPwOSDWUpPCxNXUvnWnoQ2klZVLUFcPKd3
- N9851Kd3q7BBcTDqIJvDZaHNnThyc8/x2Z4X6gG0+F6xs2CGsvtgw2CUmlf9y9da
- QYVcEZVl86Th6d0GXXM7VtzVxv7NFb9HhGU7XlvP1sF59d7BqST9pl0CMHfevkAa
- LmTGlr0wLZtOAvbFIHXdI8j5nPSzEJorBlme0q+8fGFOED3tUstvJ2XPgdqKcsGq
- PFZ9hALTTraatZchDhBKusOaEeb/YQ26W/OmU04JVG6CEFjqdsuwee5SubTswYV0
- FNYdivJdVyLiJiRkcWyjOZdbJ845EApPUYap46RHxHDv4p4MionH/v4FsXRrX7KX
- Gcp2LEuv5uhJfYsJ0XmiNXyU55YGsRsNbqM7mIR+gmBOA6Cv6/+HiiYaDAPmvv/3
- ZG/AsHfBgxpVSJ3oTB+sNeiC570kdZRDTtNcwcDeozpQiZGKktcrYQzzltvYhE0o
- /KdtXScTs/wDOIsfFm2SPj02gFFvpn44SEOu++EAFGEapv0cl7y1vprhMXewW7Fw
- H9YW+P/BvjbhI1p8GHY86nBP6UG76uTlb4Dn3GGkTwhTS0ax3iKFJleHGAiskOTS
- XgEhbRzzb33cM1LbxMaOM5ap4YowPuymr5EPqF3ZZ+3FrX8gj0OabzpjBGF+aV8o
- 6o/fFbMSOTUb+++jmejtnvpl7BsyIDHuAjEmPEswLjYr1P4pI3Cdg70MEZCb2H8=
- =FKsS
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:58Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoARAAsGw0iqjlsDVLy20bFGiyXP4urrmxEys6x4+1/d0zEpuj
- mnjkM7MCht4O0i15Qc2OZNFOExwNzAYq1KDeO05MaNW0A8UCi0GmoVTK9RsTy5OA
- poUWQAr1pGJ5mCrrGJRCOBdXqxmEskW5HW/43r7TL9X6EnSRyjJNPWjn0/6IGG9Y
- OWHBnMWevhWr4Vdj/LSQhgm/3TuSSd+cBN94QjtRsNcscTsGgZ6I9FZIBwSu8QMg
- 2R6LZlLpck/Kq6a4k3Yqm3yqh/bCxkHyy4pp0JHmZJs7BMhkmyM+h5riclHN5bjh
- cafMw4HmOm2gNprYmWHBkftd+9iDDfjkL0azNs5EZ5A4QFwsFayqGmr+c2bazifb
- KmNO7XoABubnlhe8LuI6d//hiMJB7iKeKh3NiAeRv3PeCVo3F0DMXkphtF/POMfY
- LiEenCgpuV+S8Yld0hFxxh84abMKyZqasSE7IoU6I++Ti0OsK5ZfEUAdlE2Mx33e
- KC6QPA5/eo3i3gvOb3nh5XBys6lInN5Cm/J0RhuahZH2L5R0UEj09at9XmdNck3u
- TnW8vSf66p3FYDuEyjNOq5WMwA1rVnuHHIx6cjBl0T2COhRFHk130qfAv5Flzyoo
- HkSeUfoM6Rt1Gh7+fLP/BvDG4Jc3PbLVTulAlO7+k300oHrBjXOSkpqO8IM0CATS
- XgEAomlCqti55GbMR+lKgxVDJ4kXeFEUg7CCptesHkux3eDFcxmL7XbgIrlJvh1a
- DYMDeIK/okQhe/W3mMcF68+xm/Yit6I24KODBxagTCe7ArBy9N67Tg2Wzz//Q/k=
- =uZ8i
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:58Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqARAAvL/LzRFhGCXA6G+5aW6fSnR0dPynX5eM5BigDBa8VYAM
- x5hbt4GOblXrRVS80YRC+rppuzc+UemzlX6aZVbgWtgARpAJNAh029ZdSJNwhFfB
- LGyUxvErTkyJZPTHC7hd1B0kdegPr+ZZOvf/oZVYJ8NRlKAIBk+ahmrz+xpjDI/W
- Cy27gShHmNBiuSF0nS50RzE1KBW743ERYmW3qVetWgyQuqHh4h7W1y+YkxgzSDFE
- qgQr4t9g7+saq2zTZVq/TmDRH266mGtjOWFxw/R17gR6WRykU8qqPl42NqsvH/mV
- 0kDZKZ9YTkDJB5C+vr8AbpexHxYzxYcBudgVTnlrB60QCV0x+bWl8xpgtCZ/Gpxm
- 7A52rnA1ZFZi5uj3UQQUA/UyRRLTMdu0w+KkVCxj95OdgG9Ul4D8ex368E1N2JnO
- eu2yF1a5atswxKq08RSFiL9ft82PQuh7ZdjA57byOjknb+21gcjoIGp2VYFqxSko
- bLQ9uw3oMJu+AWYHZUiA71zeigrEz/pW49BRL4KGTq7Ik6nzduiD06/Td0B+4XEo
- xUhsPLnYLlQ5F1IvFPq2FRl3+ZPPR+qdaBR2CCbLoAjSusvAg3z6pQ1D+FkYz2aw
- 64W9lYBDrn9hd9sXbVpoNMV8rqEv/lrREueYdZ6doiQn8WVDcfwbq7t9+Y3lawbS
- XgEmGkxkpyiVRtjDCSFJpRCA8jRdOQH3+DTzb+LPCrKOs+ibKztXXO2wz8nMENMw
- yBBednsNcPNcE/fDXXnRRJSEnsbnROmjnVPWa1VTsaVilGW0dVLCPwtMDpqIQEM=
- =68Sf
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:58Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdAyB6EqNKBRibDLjoNJQa0j+H+b3o9kHcqsSyuFIp9ClUw
- Wq6E+kPd17DtWt2PstpcmYGfnMl3LnnKvpReObUNQeFHgCG/jMLVCQtqdWcu5YG2
- 0l4BYZMZ0h70SKMX8GD5TcqPmiO9nM19beb3EuGHvAnUHoLryQd82DhTPLQPhJ9Z
- o9s7V6B+QH2wlKURcINADZv27EpU1BGQX8hXqdT9vF+JKBuNMv4Y0+svkCB1zJsD
- =UPAZ
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:58Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdAyghr3s7Dt4ZC3zZ5J6JQQb/39WeKOiigIMItG0XMwREw
- oTRbAgrSD/CWSGTgoMJySH2b7yeJ+bD2nvXHgNwvPS0QaJ199pjUZhxzzOIccwok
- 0lgB1/nSHdDSfiO+VzbNdhK+dHgnC77dVbkmjYwfCsDgh0j4I0IiExX6cLixA7n4
- FOvQJmdM5NYOTouAwa0CAIpDC1WkDTZ92jz7HUVuz/OJxQm5RgfDSqdI
- =vhg2
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:58Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+AQ/+Pw+aOaC4FzDEBKFnInfbRJDkJZZcmdmtTYB4L6u71XyO
- bQwqjyneXCKK6/qtFSY3P8dTNbXZ6q5H+pB4LDrk2czW25EOYWSlkxP93BR6lB3e
- gqsTelVjpH8Qs1B6IG6P/5Yf++7hOu1qKo/fxnqjsCYpmqetwyrxImAR0kp4w/pC
- kXtCi9BIpwE++HxvZIYB1oB1+fOWy0Byo8ugjCP+h/LKTjFNDrY8khPRt9uOY6L9
- LAyOFHagyMVxMs+cW2ihObO1ko4f6dIXZvmD99WbkCtK+vBsKX8DWQB7aChbKXFw
- L0QnWn1G1Rvlj7uSCu1LVogdZuB6t0hbLFburPAURCRgHiZroDqdJWYQLiB16MK3
- kV8/oD1/PN2H+kZOmy38Wj0UiaFLTn7Q3ejOlahN+7OOhFxGHFw2QDikrh5+xmZv
- CvHeThQeCDdDy1pErqTZ9nP68y7+LKpQ/gjyxrfPMJdW4n3kIqihk4yfxnQDHM+w
- DwJeRc0tIwV/hdCobWf/hetGw1iguPWQLCc3R4J9INaonj3rXb5yG5HCK+KgqoQa
- RUKUjx6hbCR/bMpgGveG8O2xTPezRlXipXrF8wZSp84+3EydO2018z6EZ5A2fKLI
- F+34M07zg0sVRQhKJ1qryIsmG89NabH68r2JEEayMrHpisBKnBe3Q/n9hvX6ZDLS
- XgFYAgB+TJkdhCZeiwcQ5SSlYpfVlg/a5DJ6MVc+OUfsoRNczCYwqRwpR9mlAJqo
- QS0E4qhIIhM9kAtBECPqy0eUay07PauC0O1Abujq8DQeRdFwnYh04j6GSzeSnbE=
- =f3En
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.10.2
diff --git a/inventories/z9/host_vars/dooris.yaml b/inventories/z9/host_vars/dooris.yaml
deleted file mode 100644
index 5813e3a..0000000
--- a/inventories/z9/host_vars/dooris.yaml
+++ /dev/null
@@ -1,15 +0,0 @@
-docker_compose__compose_file_content: "{{ lookup('ansible.builtin.template', 'resources/z9/dooris/docker_compose/compose.yaml.j2') }}"
-docker_compose__configuration_files: [ ]
-
-certbot__version_spec: ""
-certbot__acme_account_email_address: le-admin@hamburg.ccc.de
-certbot__certificate_domains:
- - "dooris.ccchh.net"
-certbot__new_cert_commands:
- - "systemctl reload nginx.service"
-certbot__http_01_port: 80
-
-nginx__version_spec: ""
-nginx__configurations:
- - name: dooris.ccchh.net
- content: "{{ lookup('ansible.builtin.file', 'resources/z9/dooris/nginx/dooris.ccchh.net.conf') }}"
diff --git a/inventories/z9/host_vars/waybackproxy.yaml b/inventories/z9/host_vars/waybackproxy.yaml
deleted file mode 100644
index 18540ee..0000000
--- a/inventories/z9/host_vars/waybackproxy.yaml
+++ /dev/null
@@ -1,7 +0,0 @@
-docker_compose__compose_file_content: "{{ lookup('ansible.builtin.template', 'resources/z9/waybackproxy/docker_compose/compose.yaml.j2') }}"
-docker_compose__configuration_files: [ ]
-
-nginx__version_spec: ""
-nginx__configurations:
- - name: waybackproxy.ccchh.net
- content: "{{ lookup('ansible.builtin.file', 'resources/z9/waybackproxy/nginx/waybackproxy.ccchh.net.conf') }}"
diff --git a/inventories/z9/host_vars/yate.sops.yaml b/inventories/z9/host_vars/yate.sops.yaml
deleted file mode 100644
index 19853bd..0000000
--- a/inventories/z9/host_vars/yate.sops.yaml
+++ /dev/null
@@ -1,210 +0,0 @@
-#ENC[AES256_GCM,data:Oc2DdKVMymwkIHbS84TeTQY=,iv:UMhNafqQrHaF5iqFSev6D1uqHPFpKQTkOpYV6JncjsU=,tag:mAmBMyGdzER3hkSkV2Fjtw==,type:comment]
-secret__yate__sip_trunk_epvpn: ENC[AES256_GCM,data:BkdNaCooUjsDlCXJ,iv:saO4IGsz1HAinvW5ZGAMA4WEtBbo+UNdfBkr0g29uag=,tag:t8RM0GNYhl1w/RMNO8wKbQ==,type:str]
-secret__yate__sip_trunk_fonial: ENC[AES256_GCM,data:N18C3XZHIi1/IA==,iv:vs9dCYNRp+1ptxRajdUO5ODTOmNREJslF99xnFL92XM=,tag:IUmnlPeRI1WTRYELzZRk/w==,type:str]
-secret__yate__sip_trunk_fux: ENC[AES256_GCM,data:zcVxNjyS3BE2dw==,iv:Prmy8nP1yeFrVI5mQaPJPKHGFCzuZp84f6fH04I9zJM=,tag:X15wqvaaifMU2/kcqLqUZQ==,type:str]
-secret__yate__sip_extension_ewerkstatt: ENC[AES256_GCM,data:qbatVvfXZiUcpVnOJUpzYw==,iv:E/fCmKGrwYvQP1gGvwT0UrL0DZ/PcMwKG+NteiukB5M=,tag:PFmU0DX56+IbSQqMtY5NSQ==,type:str]
-secret__yate__sip_extension_fritzbox_analog1: ENC[AES256_GCM,data:+ayQ6P4P34D5hTNOFv3HVA==,iv:UD71G07Z633mDmvnJVei9SKgHyM+JFXJdtOhyBhvKGY=,tag:0ISsYGQCIMMgToLWA09JwQ==,type:str]
-secret__yate__sip_extension_fritzbox_analog2: ENC[AES256_GCM,data:DbFmTcZ8wW2fqstm09yUWw==,iv:jKUqtSXaGF/QpIwPJ6hKQWZvv9xtZeIQBiPHt2xm+3I=,tag:MkWzODFnWZc8o+pVLR3KJw==,type:str]
-secret__yate__sip_extension_fritzbox_dect1: ENC[AES256_GCM,data:87MFTNA0DXmfhesT/M++ug==,iv:qDM8HWZhG9FADLFNPRJXkadN2jXD6/CfroDShNPzA+o=,tag:Ylf56nCczEdDaOGko5GrBw==,type:str]
-secret__yate__sip_extension_fritzbox_dect2: ENC[AES256_GCM,data:KOUKexyzJqZPj1HKJxFl4Q==,iv:OCChQmSF1s8C/VYuw9D3hHA1CAoCnwC4adyTpWO5Iac=,tag:VFFuYi5Nd49ChU1Ki/nHiA==,type:str]
-secret__yate__sip_extension_flausch: ENC[AES256_GCM,data:eIieA4A/ZmU8e7t20xwmCw==,iv:oDMgZIjQBDcwIVPK4/qIT1HyQKc+vImdr1iPZE1LEn4=,tag:RgS+enGC6DP6dwE8u30a6g==,type:str]
-secret__yate__sip_extension_legacy: ENC[AES256_GCM,data:gC43eKUOAYU9dgNV1JQ+nw==,iv:xN7aad2NPaihlMT4Ym2xanpKU4eX04V0FS4m6XRgZFo=,tag:Oq0yBCSf+CB8Xkx4D4TH5w==,type:str]
-sops:
- lastmodified: "2025-08-02T07:43:00Z"
- mac: ENC[AES256_GCM,data:Irv3y4/QbofyM5BvE4h/T6zNF3A6oTjDssMOcqmGxUOGpqL11Am1DMHBivkUgEYe4ir9N0kvPUmed1XOyDwImrl06E1mGAT6hOlfVSYKtZP0Pwvi4VVeeP6IAYN56zu8k4X8oIxv7AEfS3Fq94sJ52Fd3xDPPCG4aVtUXxxDuwQ=,iv:HdqbgUVR0lIysZnnPkOkW9gDp9G/EOrHDkwmQH6LVKQ=,tag:amVPLxjvx1Qtv+v27SGtGA==,type:str]
- pgp:
- - created_at: "2025-10-13T20:10:57Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxK/JaB2/SdtAQ/8DrVTO2xvkFg6N4Klvaii4KqEgm5h9Vdqb5RZWXIKXBsA
- JyW3EANye3lI3/HKkEztbOTDZ/NuL+4pJR54+KUFq+C768cB+JEZmY9IFOXGN0mX
- 0qPYzAbls1v0yDSwBHDXj5Yc59CT7XK8rYudJOVTZQbsf/xM3wfGh4oXmFBmyCkF
- zcPyA/L28jmAeKrXIIi52V63/3ipCjAzh2RpfrGxISi5F14mANToHAp6KWsin1E7
- rj2wcq3F+UIf0b1iRlkTAwTA4C9Q8TpzZDEjKuO+Kw62m8wa+mgPDLkxbsUmJs5z
- gM1HADpQrb6NtaPgXBTUL38+MPq0Uz6B18YJbSVydJbJ1HXFMpaPJCLE/5V+2+zA
- 92XxhYu+fV7NaL9Lw652r4H8ZErZLvVDfdRkipeIh7+sQvBQUb6AmCSKZUo08CtK
- HBEeuF6CG2h2jlisj4eRDjbB5ognoCT/kAxOYXN4Vwf+ycAKX7sK0odQ81FgOpsT
- psjAkAJLE1l9d95bMSaO5uyMD/uKHbvlHJ/wk8X5AHabSI5Hy5zK3AKkJlgKO/hK
- q50BkVaHHZFThAPRSzzBjRsjAJhuMi5sdNaG0Uu7S95+Y+hoX/2y7ZHmdMYcRY9O
- XaeQcO+EDxF69GKfiK94yjJL2iGjoIX4b6LlCB1pMrgWulSGey2Z9xbZF6CYTVjS
- XAH7OHW6r/Ru3Hat4XTFwDi5Gox7MrAsv3JZTL5r/CD7bRBZ84P7PRHWDFfDxgbJ
- 6tAQRD2whP/3GG4XvVs35SJ5vkk0qEdXlvp14ghPfmphbDMN8JJK/efzyyn+
- =5kn6
- -----END PGP MESSAGE-----
- fp: EF643F59E008414882232C78FFA8331EEB7D6B70
- - created_at: "2025-10-13T20:10:57Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA6EyPtWBEI+2AQ//U1w+VzucTyOBNrttljmFoiF81Oh2180qVNwH+PIJZRsf
- p9SKR5y/l/EOrQHC1KR1ld+M7fMnXxrDKhKhyvfC9I6w+XNWqHqqVNA7RYTWuSCI
- c2AuEyWKWXpchQE2RK7hA5fdd47TmFfXmohSdw0/TJF4LfSG42Lz+Du1b3nyKXqL
- leWXC/IP7gsGBmQwSFrecdoQ7HK60w06xiEJSD6XAY+RhuzGK3mOjw62eiBqb4MI
- Tiptkmw/wCvsayJqIqAssVOJPprPzBl1i4hfr6SNFPS1GiPpaiCjkbQmqY2bu9pD
- Jau8AyRn09UV5VJLmb3lOiWKlyO8VG91Q1R2xqGNp9jQtbrRBr3hVQwsdJC4WGV6
- n3VUKhhJ6AYaZHhcfmf+aYVSD/SfOxTWixAfv5UAVLtNqsVRS0qeCWC+lsd1W+U/
- hXORfrv/tipnnY65leWrePxhdpFoub78pMTpNbipwufZgMPifm54XzEfMTrF/oq3
- rzP8RdHs8+u0gEyn2ovIp1yKOI+b15DTVyt6C5YRLw+JeykcbtMRDDnAKxN2F8j5
- 5iY6Ord2Z2Eg+jBvrG212IroI7yGrXKfRLfCFYM2Lpd82PUx2sV9+xZH4lYJ8flc
- oeA48lUGcoVhEEmWrwl7a5mrdST7HGOdZVBFJIr78Qo1FNMn7V53yGbAbLGv4KjS
- XAEsOsXNdHVCaBWkm+rFJ/HrQ/6FS2l9jN7eO7SyMUZmceDCjgoI8LUSuZJ4qRI+
- DeD34OHX/nlaN+2iUNq2VSJgTNJVWBIlJndusXuzSKI9TTVVzSYYn8Y8sDpb
- =zTis
- -----END PGP MESSAGE-----
- fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
- - created_at: "2025-10-13T20:10:57Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAz5uSgHG2iMJAQ/9FYNXETmqENgmxKuHXohSN+WU0/wblJLwQss+d7AJnu1I
- JpcglLu3K8w/ghd9I3BfrUDHrYyRaGZ8bsTbPM8/lxV51dWbQd17yYGYtxwamgV2
- EY5b32l4w6Kr+QclO5Z/lmNA5Co2WVLkE3tATO24cfuNcH9JS1paVijaAkNXb/8E
- ii56vUYZessPXus8Hbgsy4bF2ot4Y+h4dNHJ0u2l8a0CwZ7pa1TvXqtm8xnt/stJ
- lOtpXFyCXZEGvpNGJkJxEJHVo6WibdEhee+GQhGRsh98eZLPE2G8gmMKXpWJx4n4
- 83mEApQGrL4e+Bnxh9XDLs7FXyMtDEcsw4tps2VEQkPQ2PEOEOZXxJc8OxsV1aGA
- CWqczWK90/tI+ZNu0y5fEs5jkWnc66Zvu/TkoUpgmZ3cWOewfLNYbbZ2k2/kLUX0
- JVnrNQ41KD1FDVuVHin7AfVjsdC4Pk3QOZQuxumtmhbAi2hpaBB+KJOYcpovs9Sc
- 4A6l6ZXVbdgyy6PYqhgEI4A3RnsKoI7Id2t8Urm2kOMAqpqnOa3K+KfsglLyssbW
- jNN9rbtDA3Nj0etGGtChE3sybt/G3kDhm8IGDPGlExS0lXuiN9WNBtzxzwgMchVH
- PqpvYaHYwFZ34rTe7wy5681Ss04cFsKJs3NiUFAbmZn0gaFWqPEIewbo+PMVMDPS
- XAFapF7QhyZwom2515O5m4QqxU63ZIoMRQKBjvsRwyTnJqXXVab81vAhX6iq7cqR
- 2QKxuhNIKAvrLbllJi1a1pmKQxtpRBTzLJjplB+QBGgTQZQMpxQ+sbPL9GCc
- =nbQL
- -----END PGP MESSAGE-----
- fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
- - created_at: "2025-10-13T20:10:57Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAw5vwmoEJHQ1ARAAxHv4uWEGtDZRrwsX9aiNS8NsQC/1ITIoY9walqGsvhpU
- +s4yOo3yGDbjJIrkWDdg7+LAY2Os9acQTxy3589pyDSMUEo/0wKonYfrebBteXiw
- wHyu7hXBTdorb3OMHqQxm2/aettqLDHk7H73Hnd/nrFggxpVlYzpShq3vYXCDEH+
- OhrwNzTtKWv5hrvO5L+RLBcKbJKbtGgLnu1ybrWsDGAf5np0NU0ogMQmHjMADjzq
- jqvaChv/Pa++57NorJILIUAkb4DWI4m6WvtiAbGBxAad7m36s9kzNyLxjU36B04N
- mQNrxF8+F81wuVpGXIEPDX1XxHAiDeQR6a8IOMvy5OhADqoobAFDh+cejzxPt7ml
- lqzugaxMqFGWzesgeExwTCTaORr28jXOcLWo7gzZSBzgYkfe/7HASviWgDL3Y+jH
- j0NL4hIZ87dCjY5A63qa56gWqWrUjn7CmjcROX57+Y8MNHYoSrGKnuVhetkZriRm
- SPvjFox7HGLst7aALxbEyqXj6yQaWXi4moGHImXUA5yWKxTl3ZCC++wq88mBVglm
- U3fX81XaZJXNnG7dtaZPk/om7MHA67zuy/FIXSSxVf7wyK+6cvtWoN2HPzleVXie
- mK7OcFKmzax1ojgRNLmcbHQcdJoA4nK58AnQbZvRJDw7FQ3b9ainTBe2nmrc9FTS
- XAG24SqSunZHTfNPha58wB9Tz8eQ/CmCfodNsClet5Nirj4ZAzm85YC8z4iLw9PN
- DEXqWw/GUs6EYGE0QYuqIUiNMEnowcATsXXrTuSVlX/FudZ7nJBuLG5FqwJ2
- =dCvy
- -----END PGP MESSAGE-----
- fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
- - created_at: "2025-10-13T20:10:57Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DerEtaFuTeewSAQdA/J3hvNw2zIKpSydLiXh7RKFHOCKcacZw0xTohfwHPCEw
- INXjpmaKQTX1rE6qAEPpy7AAXuwrAID73QZFoOkj6j8fUexq6UIF9ov58MKy2bgo
- 0lwBsNGWUkhHBUXXCOs6JfUR4KbVQwLYxWTteFgqDUF7TGvK4sFqjUyhN0MA7LSs
- YNxuobepZ0RFxG+yMO4wZ468A6Re/DlM0hsUIDeC1uoLyhJZy+WipS+YQW6jAg==
- =1evm
- -----END PGP MESSAGE-----
- fp: 057870A2C72CD82566A3EC983695F4FCBCAE4912
- - created_at: "2025-10-13T20:10:57Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMAxjNhCKPP69fAQ//Ts4opuQ2hl82CNDoi0i53p6nXFLJQ2OuozZ0C/8MvqAD
- rR8GeLKBBhCcFgMzvzKeQXr5kbPFOMtTFo5+zAMj7m5Dr/WIlCouVRX0xGVBcRgP
- 5XtWaLJ66+5X4y5ynI9EfcDD6vgOoTOmu0vp9QYrzMuOzMWzLWdjWuClx4Zz7NCa
- dXm3FXJPMl9BIwKlOxDeM7w7LYCbGhj8XivSfMdZFh/855rN9T+PeBPpsalVgw5v
- 3PQiFPXLvAq+Dj+NW8UqVKE5GPfZQj5eFiwMgA4gnuYFxKW8haJebXiOP3dqT9EV
- 2wRYQQXLhRKBt4Pdl6esZGDz1cw/FDW0G5+aEg295tV3VIYptyeVk+PF3ZZx1ymw
- gC46HKXj3MZOhSXBXeHeFGbHoHRFEETHYXgki5zdJvrDh9DUvaXWmx62Luf8u/eV
- ao7wXO8zzXFWNQM1C2/bFRlAj41pqMKESeSPrK+BTFTeaNTt/XNQYxBqllcVICA3
- jgvhrPgZaN0DzRs7+5RrDAe0yAc1Zrs8QC1Y81CikxG03PvBIyFXRAXz2BASN+Af
- yzfwz1BwEd0sQxYKSKToK86JGD51edvYi7z5nETGBrQheJSU3MnqOO/yFdsZrvtb
- HYk77eqHuif6ZzfHylUVHEoS+nyUjgsLeIfMDoQUdLcLAjn44wp0CXRHya5ZsZPS
- XAHD2X1aq0vs7qHG3czvG7tRyFK6+aQ6PCWWCF7IiX4fagPMW2eD1li+uqdu1UPM
- fanXEfibFnnpPMQG4j+W+r9plwUv1fTP295trXNzKcBldNqp1IJX75gz2MzC
- =wsfS
- -----END PGP MESSAGE-----
- fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
- - created_at: "2025-10-13T20:10:57Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA1Hthzn+T1OoARAAtM6V34YykAdgHBatDCQOqclPueg6glMsUXqsWacnl1Ui
- fOYdy5QWC4Slhr+W+x41svrKDAVncxaYrwpBddi+KYjqh5eWY9S6dxhc/8ni8+Sy
- 1TwOB4jPt8U9txPxrRlvenHITXMHfbekjkYT6efK6ougO/Au9hXJOc56dGAoJZOP
- KLUGUxES3r69e1FoE7JlFJ0NDVEzF5Ald8l1DqTQEBSvVTPGWTgig0K2BnFg77ip
- AK/P42eQktooFH6YEeFmgQ4O0ti15xyEkbMJ/5hg46FI5K/GwjpsYgVsVo3gvrpe
- Uw/z0f5Fkm6JJ1YHpycSu6OyK7OmFR3Bft8+57DL0NNadPBlt33oGq4P+r6xSkgZ
- 5NSRW98hY8xhnduEPoe09DazeZXxeOY3kpMpSvsYYifAVLwMIAe3oA0USxn7mA3i
- igHeyWwkdRDU290h31jkGgyULCXeCoQ8uajF+oknGYTDra4Qn0/pF7igdLEZQvlo
- 7Dz+OTiZeECyeIQRuwAv2lQYonCbcTilZEI26RCXOnfIjB4a+nm/6IauovqeEv+4
- LtZQeVTEPhWDBAsTApPZz02WOiok/cYqa20gpBPb4UWLNTFzBRUZHbDsyVuEH3rT
- Vgj/QkuVmB/yCje9cNnYZtMkA3L4iNDcLGAqyLzPtuZwleqP24Minu7tzZgipr3S
- XAEMuzk/qLMCSCs6sSjP/vKK50y77x873GAfM75cZpSSkXXZPcTFgvmno2YbFDzh
- 0/gxocKFefLkXhm4pbrnntAJnnLlnTh7W/tETA22VxbuxUxv2371n6qSwatw
- =twII
- -----END PGP MESSAGE-----
- fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
- - created_at: "2025-10-13T20:10:57Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA46L6MuPqfJqAQ/+IURRSEmFhMSIu8rWrVCjkLH5C62eU+B+p0ve3QMJ8/RV
- 3e85LT7q+VW+qr1EOUL+WSL6//jlhc0s6Un/yKOgxLbMmZayXbUS70+HjZq1pIFL
- uxmVoBYw8vT8dPE4/u6quMTZQZpn2sncrhHaEek/ED+nAE37V6EHI3ubwiQPv0dB
- hPFxm2h7qOJ0/QAyZh3M/kGZYRoZDvBWnMnV0cYKZkj4hWQyq27PjqG8grN7Nbc5
- H8tsF3XoWw0wymKKMKTI2g7/MLI5V3yRKHZNR6kiKc0srSLBSuoGoyElUeFW+MG8
- H1l5Rj7LEmTHXYLGj/zA65Fpw4tWwxM567YkQirdEnh2z/uxdX03aJLkU8qHYiGp
- ekMxaR9/dqIt5TO1oT0zclue6IMd0jrZGJ70dovpUglfIk9/OHxTDJD1Qzf/qCoW
- VefKWhBWhcWzlEHwfwiygilvaCgOVyYwFNeSoF+Y1teVl/qXx48VG3V2y6Z1VOfL
- fncuHkbetyQ2BY2QWSJZNIG4mI+oZbp+YWWXJ4z31l3ng9ujt3eUqZB3KSy3hx+O
- a/3l+4lKzNTYFvSNmVdubr37x5ygy+2nfk3g2ww0UOOwS6yiJqU2ZqA3OuTYwYu+
- iHApavjPMg9WBE4Td8BYFxi4VyaZ91GrrnL7I1ytZIhUpMGPh8m5PYdVtUug17XS
- XAEZ/KriGSAbovs+3DtH22113/oJhqpp25MJl+tTu2HbL00nu10DoLbZXTQixLo8
- XrSN3EwXcJGpn5mgo7qYwVPL151VPdOoFp1g/pfmL5WeLY+avJb4WumMA80v
- =0DR6
- -----END PGP MESSAGE-----
- fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
- - created_at: "2025-10-13T20:10:57Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DQrf1tCqiJxoSAQdA73jpbxIMcc3GEvix/5TNwqMO2CiLgN4BLuaxU8sFPSIw
- /ssO0s5uEpT2V0U5whKQf+CXZRvLZKXJsjcQRXYDi47yAopdg4LNcgv6rPftp/mD
- 0lwB9j89HaTDQ0wIPOiAqG9Pv8CHsKxC1XYvNz2hzIxhreoMh5W2Sr3f/5OHQWGl
- 2Mi+CmcoIihoV6rp/RgePZIf+7i/zeYqGbdP36rTJr+X7y+beWxNKot6xCfHOg==
- =et3H
- -----END PGP MESSAGE-----
- fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
- - created_at: "2025-10-13T20:10:57Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hF4DzAGzViGx4qcSAQdAcwtuk+qh7Bo86gmUU1P96RHBt3TgdhVfZV4aPUO1TGsw
- oIZS+b/Tjynr+npZ392TFoS/JrT/j9A/FK4w8eZ+ICdVwplxGlhfTPlooSdywa6M
- 0lYBY+QLBsmuRD5bb+p4zH/uX4qTO5MYNpGUvZBnLP3CHYMW8WBwFbBeqFJb3sKA
- DOqjQhA0L8G1sI/tGrmyvziNifP8LkpxaBNUKnPScbMjE5F/7KX2Dw==
- =8lLB
- -----END PGP MESSAGE-----
- fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
- - created_at: "2025-10-13T20:10:57Z"
- enc: |-
- -----BEGIN PGP MESSAGE-----
-
- hQIMA2pVdGTIrZI+AQ//QJytSLyuRPBrBrtirYU2ZTPR22S6FgqI8JUhP6dCdkUA
- 8PrZzI2UNJ7mhvXXEq8/nMI2UkZHkr7IwBQuHj0CIqxkxTv3hOK9djGdpD3wtHX6
- 3C7jAEy4LKVUxeDIPv+CFREKNPtxxqbbqtRZHXrxh5+O7+iMS+tQyUb49883DSXc
- spxOq25E3X37gAepqKQHSH0A1txpZtMcd87fE3hMJuKblMU/5hW/IiihqDbUyhEz
- tYZpSMxUu4QgR5fhf7pIq12yLMM9F3Z4WMtFtU3uh27q//dpLiPfrgBJldTU5e34
- FprGNNyKaLgO2XpQl89x4UXdQ7vTtuH6fMbKJV0TzHdwQXEZyL+XJ4OKG784011e
- w0xzuexHpMKrgFekbZ+WwK7otC9QZ5WvPSE6kpIYbh1a6SPESNAEG9BsDNAAYdrd
- FWAj7YeO0PtAZkO05oQfq7k0PlAc9kaeJ89K0MtB94QGBdrRcowERJG1cDiND7HY
- tlAEHZhizSw45cunI8ICDwNfiO0CPeShVcKh4qzbfKvOaDYZj9bzBCMPF+XgI6w8
- THk3ZwvEIaf7gIEQFUnc3C1JGHwYDBrcCl/cUJ18DxvxjyjWDDR2iXT/86A7foVt
- hwmpxuQOSTKujGJtTyIu8n+/lbVbpDo2OLJ28h2TGcXnxD83OigH4cHtpL+7WfbS
- XAHuYliyndjEFBvrpEEBkPyIYo8dH3ip6205hAN/wp7cQ7MNjqppGEYN9nrwHxtH
- o+leEHXmIDdmvbC5iDbplKISDr0EHtCfxFt1N0IpYQhlwygAv7JWEUpBLGNV
- =/LEP
- -----END PGP MESSAGE-----
- fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
- unencrypted_suffix: _unencrypted
- version: 3.10.2
diff --git a/inventories/z9/host_vars/yate.yaml b/inventories/z9/host_vars/yate.yaml
deleted file mode 100644
index d2dc518..0000000
--- a/inventories/z9/host_vars/yate.yaml
+++ /dev/null
@@ -1,9 +0,0 @@
-docker_compose__compose_file_content: "{{ lookup('ansible.builtin.template', 'resources/z9/yate/docker_compose/compose.yaml.j2') }}"
-docker_compose__configuration_files:
- - name: accfile.conf
- content: "{{ lookup('ansible.builtin.template', 'resources/z9/yate/docker_compose/accfile.conf.j2') }}"
- - name: regexroute.conf
- content: "{{ lookup('ansible.builtin.template', 'resources/z9/yate/docker_compose/regexroute.conf.j2') }}"
- - name: regfile.conf
- content: "{{ lookup('ansible.builtin.template', 'resources/z9/yate/docker_compose/regfile.conf.j2') }}"
-docker_compose__restart_cmd: "exec yate sh -c 'kill -1 1'"
diff --git a/inventories/z9/hosts.yaml b/inventories/z9/hosts.yaml
index 9d5bb09..13e2cc9 100644
--- a/inventories/z9/hosts.yaml
+++ b/inventories/z9/hosts.yaml
@@ -1,53 +1,29 @@
all:
hosts:
- authoritative-dns:
- ansible_host: authoritative-dns.z9.ccchh.net
- ansible_user: chaos
- dooris:
- ansible_host: 10.31.208.201
- ansible_user: chaos
light:
ansible_host: light.z9.ccchh.net
ansible_user: chaos
+ authoritative-dns:
+ ansible_host: authoritative-dns.z9.ccchh.net
+ ansible_user: chaos
thinkcccore0:
ansible_host: thinkcccore0.z9.ccchh.net
- waybackproxy:
- ansible_host: waybackproxy.ccchh.net
- ansible_user: chaos
- yate:
- ansible_host: yate.ccchh.net
- ansible_user: chaos
-certbot_hosts:
- hosts:
- dooris:
-docker_compose_hosts:
- hosts:
- dooris:
- waybackproxy:
- yate:
-foobazdmx_hosts:
- hosts:
- light:
hypervisors:
hosts:
thinkcccore0:
-infrastructure_authorized_keys_hosts:
- hosts:
- dooris:
- light:
- authoritative-dns:
- waybackproxy:
- yate:
nginx_hosts:
hosts:
- dooris:
light:
- waybackproxy:
ola_hosts:
hosts:
light:
+foobazdmx_hosts:
+ hosts:
+ light:
+infrastructure_authorized_keys_hosts:
+ hosts:
+ light:
+ authoritative-dns:
proxmox_vm_template_hosts:
hosts:
thinkcccore0:
-ansible_pull_hosts:
- hosts:
diff --git a/playbooks/deploy.yaml b/playbooks/deploy.yaml
index dc3a22d..952aeec 100644
--- a/playbooks/deploy.yaml
+++ b/playbooks/deploy.yaml
@@ -78,15 +78,5 @@
ansible.builtin.include_role:
name: grafana.grafana.alloy
-- name: Ensure ansible_pull deployment on ansible_pull_hosts
- hosts: ansible_pull_hosts
- roles:
- - ansible_pull
-
-- name: Ensure msmtp is setup on msmtp_hosts
- hosts: msmtp_hosts
- roles:
- - msmtp
-
- name: Run ensure_eh22_styleguide_dir Playbook
ansible.builtin.import_playbook: ensure_eh22_styleguide_dir.yaml
diff --git a/resources/chaosknoten/ccchoir/docker_compose/compose.yaml.j2 b/resources/chaosknoten/ccchoir/docker_compose/compose.yaml.j2
index c2108d8..01226e6 100644
--- a/resources/chaosknoten/ccchoir/docker_compose/compose.yaml.j2
+++ b/resources/chaosknoten/ccchoir/docker_compose/compose.yaml.j2
@@ -6,8 +6,8 @@ services:
image: docker.io/library/mariadb:11
environment:
- "MARIADB_DATABASE=wordpress"
- - "MARIADB_ROOT_PASSWORD={{ secret__mariadb_root_password }}"
- - "MARIADB_PASSWORD={{ secret__wordpress_db_password }}"
+ - "MARIADB_ROOT_PASSWORD={{ lookup("community.sops.sops", "resources/chaosknoten/ccchoir/secrets.yaml", extract="['DB_ROOT_PASSWORD']") }}"
+ - "MARIADB_PASSWORD={{ lookup("community.sops.sops", "resources/chaosknoten/ccchoir/secrets.yaml", extract="['DB_PASSWORD']") }}"
- "MARIADB_USER=wordpress"
- "MARIADB_AUTO_UPGRADE=yes"
volumes:
@@ -23,7 +23,7 @@ services:
- "WORDPRESS_DB_NAME=wordpress"
- "WORDPRESS_DB_USER=wordpress"
- "WORDPRESS_TABLE_PREFIX=wp_"
- - "WORDPRESS_DB_PASSWORD={{ secret__wordpress_db_password }}"
+ - "WORDPRESS_DB_PASSWORD={{ lookup("community.sops.sops", "resources/chaosknoten/ccchoir/secrets.yaml", extract="['DB_PASSWORD']") }}"
volumes:
- wordpress:/var/www/html/wp-content
ports:
diff --git a/resources/chaosknoten/ccchoir/secrets.yaml b/resources/chaosknoten/ccchoir/secrets.yaml
new file mode 100644
index 0000000..854f831
--- /dev/null
+++ b/resources/chaosknoten/ccchoir/secrets.yaml
@@ -0,0 +1,237 @@
+DB_ROOT_PASSWORD: ENC[AES256_GCM,data:zfK7WXggayIeROoPhCWiU9V0dNpKDei3vg==,iv:XChG6XtDfdHDycZZmIgUtUrqr0YtiVIt2BRZdo5E50M=,tag:x7UeKZDQVQu9ybJx8Xz4ZA==,type:str]
+DB_PASSWORD: ENC[AES256_GCM,data:7ld13nerRTQXJsI8/0n/3IMmbT2FVhAhRg==,iv:Fs+Vv9fDBYMHaWBvcLAh6dtLt1lTNkR//Xr8E4KFylo=,tag:RyDrZcexek3eO6Justga2w==,type:str]
+sops:
+ kms: []
+ gcp_kms: []
+ azure_kv: []
+ hc_vault: []
+ age: []
+ lastmodified: "2025-05-03T20:48:33Z"
+ mac: ENC[AES256_GCM,data:1R4V8XkoIz+ySSdwj9kBKbi0LhOqZtjuEIgV6heuDDXXJ5gKTQKcgkvtTQCAvSoC4VGdYSwedfm94tOJa6blILJ+WA5i/mIxYkuypnqXct1qeqwl0CIOxRs/7qRqQaQjmBmlp4JBRDW5usy/DSZB6383azgNF/5o+eqbErMm0sM=,iv:bYipcv9OSnFakbfKFzc78x2icJ4ByN4lMRnSwqA73yM=,tag:0TfCZmr482EEey/tkcxg9A==,type:str]
+ pgp:
+ - created_at: "2025-05-03T20:45:39Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxK/JaB2/SdtAQ/+JPuBs9V5yTmx11uwmqRVvtUH1Qxap+cx4X/KTNjUxHtd
+ BPA9PKUeIu7Cj0bjIHizlJT/R7xaVHar6sPCYvviiQ6koHPrI6NlKtgLXvqkjRFb
+ kdCgMeJYDUtdKJ4QYnLWdrSb5MoZ/Q3eb4DtZDV+N88i65cEg1fLHduAr+5y+YWG
+ oxlhPFgFA0YlMntLM55Ug4Hs6zBWYzLcFeUjGH2xJ5KDUyIbo/V00X+DPVSLVoRI
+ TT/ikxTqXsA5DIBtuKZvmbHjqcxMBvgCyO78WCTWMfE0FUz+/iqZSvORWiGHFJOB
+ t4Bw3s1TXGM9aruj6iiOy+SQQHAf84SyYUAQ/MziPRYrKQrMrGaJZ0NtyrdnfmVk
+ rWWVKHgmlGhEYnWYaxEODxLCm3Qo7jS4KWZ+jDNyEMAGDkXSCYzcuJ2Fjs3r1Z2z
+ 11dqXMb+S+wicBUrVkockagGOm2LpS6QS4jxl0ReDlka07V65I8+X2QnV5j/JeLq
+ C+q0wchfACJX/t8z2ckUElBXld126k7RiNCY2vMG5EHLMZAeVchJAB2M6+eYNWlo
+ j0VuBBjJ7ALTog2FRWeLNhhDKowHImEgO5IJYcHrGYXnqrRFDcJ3z8eAUTrWistt
+ UcVS+2qfWCmuv2A02zOAunt7352/CuZTwWz3OxrrGDgxnnYTbsDQNjN6gk/1HdDU
+ aAEJAhAkex9LqxYMmNmfJEFtR1pqPeMwTnUb4HEWD1wW3GnLXGLyRZAs5oLzN8i+
+ GwcPJnSXBchoTSSqbuSXmxEz7OOA7YqXa1ZlnRku4LZx/4unVYd2SX1QhI7eVh0T
+ 02j5wqhnf8Nh
+ =esBT
+ -----END PGP MESSAGE-----
+ fp: EF643F59E008414882232C78FFA8331EEB7D6B70
+ - created_at: "2025-05-03T20:45:39Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA6EyPtWBEI+2AQ//fQv9HgUvIg/GX9SXAzPsap+rEg4hVQstjVh0bX1RK6lQ
+ +IDB9KjaeiXdx/MQUwVlql+35WtH4AaMQ223fRSuZ59TGz3b88nk87o0xZ5KxGvw
+ /MRrWEt8032Hay6Gg39tF/kyNZtJiUHZRw2cjt9Ny0u6d2z/HYDdRewst8Fc4wRz
+ NKWFLHf+im4AYoa9V42TbR0VJbxwMKJ579zB96aipQsuRf+v3gg/cZuJ3s68KQXv
+ hhudNRIFh+vlBcwOyZNRRsVxquGn+x0KJlqjsNH6TPXgiiixwspY76n0zI7fzTU3
+ ukV0nS3FqpwM4V/ioZTXJr9NJ5hxMXa5ogNeD0WF3kp+ukPsfy0wbC5DbRcdg8E8
+ /o+aND1HjXg0SI2jjEJdCyhpR008kzM8J1vYukBMpPaOX+twyfJJrugcyJCU5q5s
+ KlnMHssl7cVrtRXy2exdK1g0J5xIwRAcfQ9fF7UItOtFaqbuoCrmVTT7X3wiZxYN
+ ogVHxA2eOdTzo1APCwdlJMKTRc3RdzYxmfyBVcNj7EGq1ekWataIU2w4t+h1AV+K
+ ikCWl+T60U462I2wGN9W8DnBV3XRvIOxAoU56wiPEP13ejOPLT2jVxcDCz4YbqMB
+ tbZCTMjvUGm0gWINniobhBSSqql685Yl/4ZIkUnpS24BShshz3LcxSqmO7SGR17S
+ XgGQMLUfg9lupxR1LdlqLdw3IBIPtapKcF2VSYYuwL+yRMzRKelisQpIFeocr4Yt
+ 6ep2mu9JoLhWmGsowIhsd1JyKBq2o+V9rO68TD+xWtltpyPA81sbhccowE16EUk=
+ =5jJA
+ -----END PGP MESSAGE-----
+ fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
+ - created_at: "2025-05-03T20:45:39Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAz5uSgHG2iMJAQ//TlEKkG6EDgsc2ZI1BVETcVX+Z7fsGanpRu3U46XvAHF1
+ Xazjl+KQbZDwnC5Xnppd2gn7WgJV8Bs7aHI6219iXZdOJ4GdO4xkYFz1LKVdnF6W
+ QAZWrAWJSrTv6dpN8L5Pm/fikxIxO21Hjy/EumKt5jQqxevu8pwaa+vHN2BdDRKf
+ glOsz+d6pyVvlAgyuewhRXrXwB7A9abMaaNLmWVedV5A9j96oQ2A3nQ2RNsZUIwP
+ kpNhjOQgsjO4qnb/81EeIMPgnKM4SZCmXlGsj6M4pLp7VdaJbrfJ8+XW/Mxi+8mq
+ VLcanBfA0fcPpHF9uXZty74Rg0Gc+zzqSo4VV7yqKJ5DBmlJTojYGfBY28DQe9FE
+ sJxi05paeF+WuSDqxM5uSoVHNya1MyFXk5MgxrUHicny7sjTeUeFQlbonNW1I5PZ
+ rzgVlon++e7CIvlRJyzw2Zt9HX9OYJh0GkqhEowQ2z3GG69ytQtTBv5W5xsn6iRw
+ a9PghfQWnHisIXTnEFRfyTQtUQytEvwU7YOy8bUpQ2VojnEe+MYFavUu6OQPJTuE
+ TMUYl/Q5/8fa1H4m4jObH4SuP2iqb8vzr2cycbytxbfDRzzgDLm9J+cvihSnuKEv
+ e5FpYJ6qGBuUgAf4eXeBhAf7m7lxOvLvpG7F+UlhBHry1D+ZJQqo7lWDsDIsg2/S
+ XgElbZ3RWUpulpfETZXBNjDXl6OBEcFFhwv8NQXAj9M97ord9+nO3zNJbv2OUAP2
+ AZJh5Siuxoz1tYJfoxN04lNjEKvDNKJOmu8No/Nl3pItl2LsbGv/tzdOaBqz7KA=
+ =2tvG
+ -----END PGP MESSAGE-----
+ fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
+ - created_at: "2025-05-03T20:45:39Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAw5vwmoEJHQ1AQ/+LEFVA/4g2+AH67eMQ35Kbv4N+vwxKn3d7b7wWglSYqG/
+ yk8TaoX4axXNojlAKR7u3TPIr5PnNRA/DzzNVZToZ5E3RSFrDyS0ql6LMLOF2kRa
+ IMZnY6l7zMfIjX5SobiBlwHn1b8B+9drHOiQY08OvnB+RePrbT1sGTC7iGjYFcgR
+ RSOHCppZMmywfk7OpmyN1pUiOa75hFeyhUdfl2e0dhW9WeEK8SuQdP0qFgTK9WuI
+ +/udqqAsJtei/gJ1N5QbQtY/bG48AmeS9DdDxQMqNH1p01JLQgdqHNFl4ysADdMb
+ s+sj2JNT9pwZyCi0+8zCdrUeddyr4c78J7nga/O6I/+3R+E+Pu1zg57YJNa2aWsn
+ z0AE4Z/qtjJMViHStD9Ddc/1+CHrnBCLwxEN6MflpRpiFSSJtdxnMZ2zd5Ay/YLO
+ W52nRGlG+szOzPqI8V3M3enXrhsU+zRZKdMuoyI9/uRaJIxyN0HCrQZxJo7P2Rjr
+ savyiQrLVNeufl4x7cALadqwxSKn85JLnWQcPrlzqtmBPTuWt+LUkUiYJEG1Yguk
+ WisoYKfP/vM213afonBUfhAwqwAcf7svytBXGmxFv/W1YZ2eqNgUhM5qvftEb7/k
+ xG51fToNtgBDMJ0s+5AQqBq44wOJmR/WkMcePyzC2wHRgqEw9EMd/gbpjVOkwDTS
+ XgGNIE2nglqnYrCX7dc5shy4rQM0xsDGaY/91dHlp+WAm48O9Q28+i7rLLHa7wkM
+ uM1e0p0DLNRFZkVyJfY4HbVSTozphNw4fIlI/jKgHb6g+o8VTYAW8WMqln6Z0Rw=
+ =wOsy
+ -----END PGP MESSAGE-----
+ fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
+ - created_at: "2025-05-03T20:45:39Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4HMJd/cQYrVAQ//afGJ8tZq7sTHTusi1Effj47UFgMqfE4beFPy955qzHYI
+ 7Be2xMXMIq77ajGxakQAhV7AD6VKLzFlJWkSWcCZZ4hhLT1J/EMSgQlNdplQTunH
+ mGaj9qAJnUh3JXRMaSSfme9ZYEMBX3Tzm8snywnmbNiMHvyyAe21ZU+sntoIcshB
+ Wy1ZVSc1Vgagb9Q3MCoURHpaNfYO/sFLSSGs/Hbftd9Pu+/6mZRunqtl4U8YwQjn
+ TWsceeVLvb3+RcTZA2tsQfMe2TbYm+Tor2lPUvMDEkyApacgOjhTFHCZsRNfdDmE
+ i4HOMETa9J2s4VSUVj88asiEHyZRruisYj5U+gpNPX6xc3M9Bjk20basXmLTmgS7
+ J151/fY5a51vgGvNYlzkKo9J1yn0iGsGNYUBtxidfndjzKbLB+Kqhte51W9TOlhE
+ 5hg9pyvnT6c83RvnEeiyrb86GXXQXiSermrmjid2zbocSm2N/nl22Z0TVIiW7Kx2
+ y6JUdY6r06xawZV84FEi4ZXTQyvPUWCm3J/uQSBi7Q9zkxvEycm9/qLiyyWRH4UJ
+ 0XBfi3uCzSZ3wRgZvXmhNJL4VFzFZDTAseuGH8bLzhvgzVUIFGRXQnD9Le2lfgGY
+ mK2dOeqCW1gJ+lrtuc/UwoeVipxSlDgseT92861JM1g2rTgnElWCrEouqrLXParS
+ XgEUeq2hn25vwGt5tot7P47gXjcUU8w9opLp+pPJHP+L4Q2CTfPq/kMKgVlXAZVw
+ OzWTuP16fX6akp3jmfk/hYXLcH6otG+Wfffh0dnWdECxOZxNsGhoKpeLQ6/zdWY=
+ =20lV
+ -----END PGP MESSAGE-----
+ fp: 91213ABAA73B0B73D3C02B5B4E5F372D17BBE67C
+ - created_at: "2025-05-03T20:45:39Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxjNhCKPP69fARAApaL3AwoqzKVDuP05nEFbz9HtOIflOCWWAxY4PqevkVgf
+ RyhBjohxF0eun2rWVqMoLFKB+iKiQA/y3ttN5t+VzbZEu716GLR6aQbMkBwcTZ2k
+ iMztZzsP/7ssjn6zOVaLMamfChAVUkprXruVUf2zDKJXVsS6EemMmZyzdBlgLGfN
+ 5tcJWShEd2xOorLYCOpcFdtuyzuHj/igh934bmGkRq/5Q9+SX1A/pr60G3Bye4nN
+ ZptAtLDwvA60Jm6XWqZsWw9X5/QTws3q5wlMZZgI+CNlAfoFMZzQ01kLOVBBZ4D3
+ sS2Yicxbc9o4HU4UY7mNqQfxKhKJ+7MWPvSC4ZgsEHPg1HKwJ3zFBpJI9d+Kc4kc
+ N2E7xLfeAYz9coDA+LBSGJy70kYwM87ywfnBvBlHeLyQwW+X03ZQkGRCut2FWERQ
+ Yt/ciSugCPtYvsoZdnrzlV3MoLJH/xUkXmAk8SEXgcosBMwKIyX4AqVXrytIWFy5
+ a6VKAg482xWcQg5QKtqKXTS3qfWEyI78TG4TZo6O3FyCZn+/L5oU5UNSxJcLYyh8
+ xFUVD+9tf8dfprba+HZBB2g9KGBLvoMpEDTpsb6tvrPhV416dyAP0qmAIVLXZ08t
+ n0VHo7mdpfRkMzzeb6ARnBm0jIUkvjHMUhAOjjb77FG6NnRlgk445FmkvGxkLUjS
+ XgEhPKCni8oHCY2ZtvLeKvl/XdlGH0OfDEraSyRDRJ17mg2XYy1muKVfVh4wA09x
+ O67A23mAIXPhQgXWFaml9wv7iEDHPTThJH5mvufd0+AIqfOEa91qboVMZ6ilnUY=
+ =hRXB
+ -----END PGP MESSAGE-----
+ fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
+ - created_at: "2025-05-03T20:45:39Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA1Hthzn+T1OoAQ//Vx3UeZhZhEXV0fyGN4gIguntRwqmqP7sDHwR7Qjd993/
+ iwh9ZoFv1I+/q45oKXyM+kv3DZqcDLchYHDj5N7gvL4/M7uOPpmOTo31aYHqfZLk
+ FPx4ZmwcN+20U18kPUDcBERsn+1NqGdBEW8FqxVMDVbdTYAajsrsfPm3FEU8gNSH
+ CUgUxVYymU8IPOzZKwd+TDwmIcUkPZmw6srM6tpxwz//s+1l21NAOrSwR0fYrE5z
+ iyd8GUu2GYjJIdscCybXxMUV/IJHaa422OGmhWvtKoJLX6e7sK/ev8o0ZDWvhPUd
+ HBtzyCEaygUfax1+QLZAraeJAYbjpAHeuy37UB0jgaUQXFrFkZKOjRMcPcIc9G3z
+ be6zcrEAdF8gQzeoTpzGAboCo5lLBLgQXPG+XMOjcfmpgJnjvHjaTK6wOZgZwJis
+ KxkXq0cX95Il+vBrt/k3rI2dsS2Jtb7k0pd33VApluJrS9BSeQCXdonoD1SrY+Wo
+ eXziX/di18RY0JShc2hjY24e4yXNUs8TsFXuw2c/v+Qk0qNBgF4/qahNZWjMGRZ+
+ D0P5B1sv0Uebq+xzkDv0OqCQqJ4NnozJ70wgQTt42xya8ZkjO2DuQDUkSQ1rTnu1
+ dqS6q5VAG8vfoITaRfvV19YkUCWEg8iWkdEZ7F8iinE9IkoA/Fa2x5LnW48Z3nfS
+ XgHxSgKKGO9N1kg8Fjo8fgc7bE4TrNEr7DzdinfTy0LkM7v5EEydxLOMzUyysWqp
+ gOXUFPXXaFgxfNXRu/0cdHKpDB4Y3vqSPUSTzhnfco9IFt4LAyHTohoRlx7V/1I=
+ =nL5O
+ -----END PGP MESSAGE-----
+ fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
+ - created_at: "2025-05-03T20:45:39Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA46L6MuPqfJqAQ//Qa2Mq5vcOMfLgF3lV6f0RK+IQdFoGIetj0dbIESkl9Q3
+ 2mYnXqn+OIwRg1V0nz4Wpwj3vahpWhSAWIlmBLTxjEM7pP1MinM/ohuiT8/d6PEy
+ NEeut07slQuSeaD2WR9CBI17VNOQgvNKx6eB6zLH5+RlvXcSAR+5+0A2YxvMg2Qq
+ rOMi9eWZPqiRw8j3pFMxl8bBCgQybP355SLIQoL1PTMRBCIeKovaXHICjAvEDfm8
+ xzy2hvzrQDYlSV81wdb6nBh9CGGmhOrRleE7icKqAzcwEHxo/FsHAyJsis6AhgO+
+ aMF+PaHk3WLYg8T6+M40YMe7lML93mXT7Xmbax+igaf7ZASgyj8ZZnao3hr9ZZq2
+ ST3cy+neZkr9vJbp/ZLPunKSxOTa7MzoMvIZFAKWy4nx3d7xagoNd+2BITBJNNlk
+ BYOP39v6LPh1tsMVrUQcC7Mrawq1xpn5C938rfcCHOsYxn9bU7b+aScFVqITh9uF
+ 5qHlfBn4/5vCc0bTc4Y3QyavxaWiP+SE8O8cO6QlqL+AYtZCfqdup2WH1wTOWrnd
+ G6UldxQpcpxyPK/4LGu5DcWWGAbbHa76k9LJZN3YrdSft5J26YLsyRUseGSmZ4/Z
+ fYG9AoqLOH2kKnCoj7kESmiz3lt7DCtvE1nrKUNJZTrcku+nLWjebHDGWjOH5HXS
+ XgH3vcgt2kbkogmgxt24pSLQeNK6SjI4fBiJutlw8VCyrqxDATR8yQlhAIGPLGbw
+ X5h4RgJGvSFMrrr8BPW7L/294eqPm2bbq/MRC2O/9ezO3O4453N01fePapEqqGQ=
+ =FkUA
+ -----END PGP MESSAGE-----
+ fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
+ - created_at: "2025-05-03T20:45:39Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4EEKdYEzV0pAQ/+Og4gwY9vzUgLOPWYGVrcSIRSSgK3LngQLTD+aKDBybLQ
+ 0Q0ln9kpfz09Gq1fkwI8LuoeQ701qlVa+0WMv864tHJR2YmO4S8+IMu7qvX5W3pN
+ CEzgDfZL+ovOMSB71ZK9YHlliqauy8cnrYk/ucwQO1yukDqzutlPeK1CpE/f0wBm
+ A8patwmFGCSPYvmIBe48qsvYKP0JNVIFmhG48TaHQqc95YbhTYXHs9qz4WcFbMEr
+ T31+fv/jBgmIU+nzQcIhNfHJ2sdmMXF6rRt8v3mGQrOUcU5es6E9a3i0dVZFZMc5
+ 9akn2ELqbZgu+wIH+sgpuB/Hw3AA9SBhaeRHKjEK6e2l06OCRF14EdB3WJLC9fFI
+ 0IqEuEK6dM2lkSCsEVTZsz/zj5Gf6kmXLu3mT/PKcui2Op4SIpjtv/CtlxS5kxxx
+ dDJd5aEKYnTjVIXrgUer7KD2Ld7oxWr0TMxGd9dlWHViiBWCIh2jrbwh/MYcXA3n
+ nMj3dUjdpTO7AZe3rBAzkfoMtx5a67HX4lo8WUJKzFgQ2jxvhyw+2mPdjfy1KErT
+ Fa/T/nnfIBAN+i2zLBTQEdCDEdrbSKTZD2/ulKSlEii1wK2ATQHISRzAORUNo60n
+ Dp9cFjITOoKeGdtrgfs+rptQ5mSuNNjJC5kUo86b/0IjJX8wjHKl7dtlkebhej7S
+ XgFcJ5WY/8eeXZpXT1ooY6OggJf7Kso2YYR8oZW7Z55zjyVfXKsJS3ytPNB/KAbd
+ u1G4BybrslSPyXQU9vuX4OSstiqNcqVOhNvMBa4gLnE5k7sumHI8dMbHcW+nBY8=
+ =AwqY
+ -----END PGP MESSAGE-----
+ fp: 9DFA033E3DAEBAD7FDD71B056C7AAA54BE05F7BA
+ - created_at: "2025-05-03T20:45:39Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DQrf1tCqiJxoSAQdAlB/i5V7bWDewYv3RqyZMsZoxmskBKPe9cmvdoKc85zIw
+ 7NnX/YFhUHerQkrdEkilB6i0Hd7aiUQ8R276cLXh9v5EtzeBZiRrfe+2wPc47Q52
+ 0l4ByI0bDgXa+Fw0AgTp/OEGDOXEUaSEafGEBv0YrysD6f/9WnKYTt5QjBF2Spij
+ f0pqADF8QdDW20fPZDOtt/gUezsA0AiV5HiShS7XsheBIDjL7cY15ST25GhXmmnR
+ =qZnD
+ -----END PGP MESSAGE-----
+ fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
+ - created_at: "2025-05-03T20:45:39Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DzAGzViGx4qcSAQdAPbYdliNriasz0tjbTIqqg51QWyNtsXN2PvIlxeMiCiIw
+ GbN1PKHxkcCwJX5K1zn84qRyL4t2ZNYHZo1Eq1XarRN4o9Ss5koJNH6KjnDePlPX
+ 0lgBBqapYcOipdOqSiXdRSvHe3muvvYPV2kH/OEsTySkPcaNPhg6e2lLkshHhVKQ
+ 4PleX0qXAwnZnXlY6QtALs1LZODye517DZKLZ+T/jT+u34kB92pcqtAH
+ =ZsVt
+ -----END PGP MESSAGE-----
+ fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
+ - created_at: "2025-05-03T20:45:39Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA2pVdGTIrZI+ARAAsW0YJG6AeX1hGHUJ/Nx8XgJ+tmdoyrSeSV2x+hoqsNJH
+ UNpByaOak57WuGor60zKTILJc2rDfaPF2ZzCEJJVmtfbAvbdAYfyA6RyHZJkOFsu
+ hacNVLIwYzbaRQhS/7IcmAifJIDJhEcjzkwD6LK7TnEhM13Y4DECk2vykZ1ex7hm
+ TNy8YKoLH614SthQgv+Zbnuqd3CP0Gj4N69+rGVMbJYIBwm5+kgucva3fYfEM3Sj
+ 9nDh+0XAWJ+Cid+ID2/IpDTpj262hlo+yISTsQIHfqdZ2y+HHb5NQexKV9G9eQJ5
+ tdcw6//ttwLO6Aq+N5+DyaIZyge1xUGy64JBsn7ErWqKwbPYrVApFPXgzR3azzDB
+ v93BNLkt7O15xgMQryS+ADjgE/XJxrl+4yevMKn7RJp33zfFmoNQVn2OuDzNiw4X
+ +pxqC8f77sdlsz0sghvdhQVDGEVFx5QOoHihfeGEQ4is47oq2wmZM9uWEH3jFolp
+ cfZS5wTbAOjJjAn4ZcnSuNccKQfdPGKeitNYcCORBpgU8t5JfWIIVHNDTVM581CY
+ jPX+3Azr/K8hUWHxvNZIObObsW1l8VOiBsQExWVZ7jgwgayieDpQcm2JSAfnTcE8
+ 18uhcR04g4i3BBlD98cyM7hBye+KzRpJ5PRCGvlp4V49PQKlGixCHA/1AVEHTbfU
+ aAEJAhApJpmpjyUSzNCpOfterz6jbX+WdFpvWiQwvyQ37R7xRb5JZgNlDQ5T/lFf
+ Pb2b5i0R3ZpGUB7si0PyiTMCqM3Cas734Sy/0Nw0nW7TqjprsTSOhSyTFfKJoFq9
+ tuTBFmrwoASt
+ =MLHr
+ -----END PGP MESSAGE-----
+ fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
+ unencrypted_suffix: _unencrypted
+ version: 3.9.4
diff --git a/resources/chaosknoten/cloud/nextcloud/extra_configuration.config.php.j2 b/resources/chaosknoten/cloud/nextcloud/extra_configuration.config.php.j2
index 8832381..6ed0beb 100644
--- a/resources/chaosknoten/cloud/nextcloud/extra_configuration.config.php.j2
+++ b/resources/chaosknoten/cloud/nextcloud/extra_configuration.config.php.j2
@@ -11,7 +11,7 @@ $CONFIG = array (
'mail_smtpname' => 'no-reply@cloud.hamburg.ccc.de',
'mail_from_address' => 'no-reply',
'mail_domain' => 'cloud.hamburg.ccc.de',
- 'mail_smtppassword' => '{{ secret__nextcloud_smtp_password }}',
+ 'mail_smtppassword' => '{{ lookup("community.sops.sops", "resources/chaosknoten/cloud/secrets.yaml", extract="[\'smtp_password\']") }}',
'mail_smtpdebug' => true,
'maintenance_window_start' => 1,
);
diff --git a/resources/chaosknoten/cloud/secrets.yaml b/resources/chaosknoten/cloud/secrets.yaml
new file mode 100644
index 0000000..53b7522
--- /dev/null
+++ b/resources/chaosknoten/cloud/secrets.yaml
@@ -0,0 +1,238 @@
+admin: ENC[AES256_GCM,data:zIcGTqSicvQXJE6FAk/HLQbIMzAHWdTfLDb0AGEu9bN2+V3Rb8ujjGpiDhIbPtsc/z1Z9i6Mk7I4tQUl7ErF+w==,iv:tRKbXdpLKfT6N+8QNY4N3nennRBtVjUTtC+BCoPOXxE=,tag:vCZZaISD7hFmQnn9FJ8LXQ==,type:str]
+DB_PASSWORD: ENC[AES256_GCM,data:j07CqdB9vEPY/7mSIIxfRLKA1YOSoqgbt3pw2EgwyO1oua3r40NvRLY6VI0CXmcOXOedm7/lX5mwA3cZ15pBhw==,iv:+llV+OR4leYx6KyIRIadhbcypibfYKFFEmlftAl4MlM=,tag:6cd+8/IR16ypE09UDvI9/w==,type:str]
+smtp_password: ENC[AES256_GCM,data:VFhGRV5Jg19UTgm5mzzF1gcw2yyeS28BPuIQZaH2nYbyQGbxcOJ/YIaYbCXufoLOFLgUGJP+lHjZEs4fWuj2SA==,iv:SiUpLXthEF0UlJGCK+Q9cVH1BXnDtN9l8ZY7SeGU9KE=,tag:OmO7BcMH/eGrCOx0z4lQzA==,type:str]
+sops:
+ kms: []
+ gcp_kms: []
+ azure_kv: []
+ hc_vault: []
+ age: []
+ lastmodified: "2025-05-03T19:16:51Z"
+ mac: ENC[AES256_GCM,data:j1QfgIDBR4seyC988SkCODR21AhqtBQaLLD9RV10hnqclgaByeoVJ7zdDUR4G41lhL9tbOKUy4FpOIQQp+kYBztu158cO1DtEU5WNUSV5GlRjuFRgVTCYZwJLq2uDpINMhfiC62MqxEjk4i8MI4szNK1P5rCqBvnz8f5gaUrTtY=,iv:EDtJbXOsXE/Z6DYi6dQXzZSflQUJN+TaqKiAXFXz6Qo=,tag:2Uu57dsB6+vVSZBZwB2lIA==,type:str]
+ pgp:
+ - created_at: "2025-05-03T19:03:55Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxK/JaB2/SdtAQ//TYjfG4qAhFwZwvWrQiIiNc+Qk7WqZ6I9fsvzhnRPMsqd
+ CO2y99ht1mXF0fGs5MuBtcml0OHr9kbfKWmf+1JwNEkzFdYeK6YvppI5fpIVgah6
+ DxUAGQ+cquTtUM3E8XKIsXIVRMkrkJdzVYB5hxwV8qjBUAh5tuXg6Fwizpj4UGuX
+ hF9TMYobvt4EanLDiAvMpo3oe2vjGBpkns3BpXX9oSq5hExlqLivifRHpJvp1j5U
+ fTwrYqYPXY6mM1RBP0nBSyJb8sQlg/7qrOPQb8Y5/ryWs75JA6zVTpd3fe+t8pmV
+ Uncwewh8fujrhPkLdvjSRc0/9uWf8YcohL6Oy4lgGffwPIMyhlAaXi4ym/dtM9td
+ 8Z/sI7LQ3iIIPOAY++MOQvhmtD4AQkNJM9WUcA0n3fHvVVnNhVWHFO6J8FzH6q/u
+ pDWhCK/WH5pTyreI0ngyeSXC3Mwq8yAMbjlhvZktZwmYCKrp3CWgqanZVPKHx4aK
+ wO+JPMkcr86mj6/sWbRq3pqJCMZw5NBPxrdym3n1suthmMUOvnZulQt4RgWLoOrx
+ 6wDVdH3Wv0j1yjuY3QdMZqOKECFhHDRuI162PV+kzGYwrcbzQlmNQgqK2ZhR1B7k
+ wJziWgwynZ36AoPi6Fi+rA5CIPtVSlK6yr/1We4yciFic/RfmAVwWpMkORwOCBPU
+ ZgEJAhBpgdpYmO2MdE3vLc7S1Ft9YhAOCzgGHYcjULa0lrA7K1xpDNkxEzotkiu1
+ +/uFrHU7bS22bcOFD/l6dO1TzA1ViPLo1BZ2xmKToTq8cIzLjDrqo2sYHOqYtaSC
+ Gees+Y4xng==
+ =VeG9
+ -----END PGP MESSAGE-----
+ fp: EF643F59E008414882232C78FFA8331EEB7D6B70
+ - created_at: "2025-05-03T19:03:55Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA6EyPtWBEI+2AQ//e05aLr6OZAOyi1MM/lGZ19QCBztJiaMWVL/BY7r3/d9f
+ m1BTAgUZNgSROHDgkH8uuXqWHIadfIao6gUFKIzLsrwPfuUC+DyNxyE/NQYvv0R2
+ k/IgXAuop1P2+thm13rVmI7G3yjGD2NOkQzp6LlMECfImts0QZqrfEUXd/P+WyCE
+ 2ooCyeDstd+SgjBTHd+o0sGtc084XtpnfX4Qw7KGwuaT+cUkKXbdPqzxug+JpJcc
+ BFK5F0MbrEa/wA1vAfyIDuZw0Zy3fGGO9wASJoc2ChFb/BphOIVsqbM2zNB63XDS
+ ImnwyCpDmyxcBon8lDTlkd941V+YXzSf2cnyV//o7oLjFVQltrvu7pGhUrQ99lAU
+ 0Ayn8jiAtyUenHOH2gsXdfGgg45lGf4Eusn4XaCxwSKoG1BCQZwR/tVnFBeSKkbJ
+ 75tOl7UIs+bkLx5LWB1ozbTrhuOymR4h1BUbx3VL7Th5K+ChHs1w90xJWDP1dmEr
+ +euiIaNY7OPfzNFZpNHJb4SQdtXzeK9fSV8N1c5G+BxBIpAqsVUWkXqVXiVwKjS2
+ BJ99QhpmDFoCy2d3O57mYM09HgWXbekFR0VckL/8RVVpHfdnQcauXEMrpl3AHCfe
+ DK3fDucO/+MUQ+lnyDaoRjJfjsM7PQc16JnzolEeOLMbKit+KAjMC9EfvM8GobHS
+ XAGQHdTiHz1ppYhBZM/RlFG25W09yKA3m2pcYkbjcB4d1fu4lR8s/PhFT+5HVZa+
+ UcnKDr3Kx517Pgg6Snq/7zdMqnIe3q0l/0Fs0oLjL57JoxSTELp6jqORXs7M
+ =vOAi
+ -----END PGP MESSAGE-----
+ fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
+ - created_at: "2025-05-03T19:03:55Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAz5uSgHG2iMJAQ/9GWEYkbX/xjrCqZfmxA+V0LjdDevDXKaII0j9vga28WIU
+ Qg9AeLpvvgQRwJvZXZuCFI9ujmvpFePP4OgLkmh+6hx3dHY3COzT4i4iEH1GbxEy
+ grGXSJaynPB2ONvaZbIt+FwNig0alCiMPQhzLnIS+hmnSYbHFPqKGdqfqryj1xjI
+ JhirzLV/SYIAo4Tqgr/uyq7Ef4JAtydh7TWrqbdNQKeoB5Zu1uU+gVHagsF9mGCV
+ 49x8K8EiyMcgXtYk0UTN4Q0iWArDtnM2x2/b2PJ6H3yw7pmdE+MPzGdtRr4t2zAI
+ dF+h6PdprcHKrQa8moy0KSCm+zcSkL0vxUP8+X3WUTS1VUCsn6l/kk+4rM49izqP
+ dvmQldGSHOdPG+P2dAS68p/Sq9PhsYZEGKub+nREyQI0AW3yVpWVCbWIiwEWnQOP
+ NGKIRGBdY192oNvb/3ul3uNi/qcKFgrP4+ue5KAmJgkObFTss8OGYfEMQ0dncGV4
+ UW9Iw7Xo8e10NPm8PpLySY68pGMpgFrWM/Ns+ifCfEaTVSezXYRLHy5XfBBoQFN8
+ RJ/S0+8P3/HRyH6q/vbFkWrHhb95KwxRLXz5qb2yoy2/5z6+dgSKY51972Zujxjb
+ GklVDqPrcgCLqlApfw2yJwSe60pMbE2CxEFzAmWLfGpuvyOhpWOT5jcG8F2HipnS
+ XAFUK/+WAcOdJhmSRZt5aX33jJ1uJXQoxcbAvxdR+4TZxmbPjSLMnZGs9qfMhtvF
+ EU9WjE3elMQ60mKBEoBFPudSNsfGblS3YT6K8b4Wij/CTb0ROGXH51ZCTa4k
+ =PW2U
+ -----END PGP MESSAGE-----
+ fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
+ - created_at: "2025-05-03T19:03:55Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAw5vwmoEJHQ1AQ//e6SuBK20zjqoSGLhf5JzocXFYD2TxIDyCAOmoK8kM/SR
+ MPaDWdITHXWZS6o32KExCBYUeOIzUZDcgW/BqNZLsyDfFzgtdYY7j5Yy2+/ezakW
+ 1PCY5MoqjZq0x4MMKD3TqQqHHsLLS3lPYeRWgFbFTZVMriixO9GqlM7D0MAmSEL5
+ WbDdR4wzQNhsVuMZlF/1Rq/fQH0UCjJZ43VnlOi/2MSA+RE5pqSA4BE5IPUBgVx8
+ n9b5asY5bG9N9RmpaOveF9AXh6x8QiPC2br14b642Ccj6GVGBgBtIyx60KdSALfH
+ 8twZlau8Z+vAFnGQ09K3fL9AapE1RVRSzu2ndZ8fskAWxzP+N3+oj97JYbaXYvb3
+ IAHfQkB/N2EV1b2bGv3j8O6gMKjJG24QCJgmd8/AIVbWzBOzfF6SK3KC0hI31VmS
+ RrmZBZlYX/cnLGYK40myYAMU93/9R0DyhWSC2N9SVS7Jy6GW1u/aHyd4OdRXtaqi
+ ORhgiQ05gTS1oF3zLB8/7Y/bo1mpTOUPpGQ7mQPaToV/aAI6UYJGhR4EFZBHqz4v
+ dHO6Sq/yDvYSYasmP3a/TysEohkwnKe3/TSnGrMYVdWNX/tAGWqZSUrsWaTDtTT9
+ 2QiTZftGTkRFH7SF5DkrbRMmSz8rQHrR8mtoEMtUbMAX9yRDSCHw9CRcfh49dL/S
+ XAFK9g7uSY/HllvPHu9V6uvQfbKNqoYmpbdw4egKsYXKVsSecL5V2mvvgNABbbA+
+ 7Ma79aZ5KRPtmUONfpkeIjyzhnZXNpSn+nnpZBIMXGbwiaiq5Z8WFBBaaF4i
+ =ZmSP
+ -----END PGP MESSAGE-----
+ fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
+ - created_at: "2025-05-03T19:03:55Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4HMJd/cQYrVARAAr/V8Ox5vGayrWZmtSIpz0yzv8BudAQDZscQGUr/PD6d+
+ TFA5aNPyPgCbVepLLWNkE+4YmmkBlxfAKS1b9wIhI3MvtFIKysTHxjqJde2QAntZ
+ LdC2Nv2O1xVqQ1x22iQkNVoipLwc6OSbwLs1EC7Od6yCX4Mxk9wDjhixXnjeFkb2
+ BTqUsT0toRu6ZtIpjELHMtPCj73pHa2ILIRuWM3H3V3KkUr/InYx3ewCihv4AqC4
+ CmkH9CO1abdskPF298f6dlTG6DCnV9jVO+AuuiiT1yXE9zCrVlX+ACTugL+vpG/k
+ utFq2gSbgIj/vnw1T5yE8RDRrDJGwWGr5lfoXJfhr1owEt7ddRV1mS9EQBzCpvcs
+ YTM9an9nxIv5ffktu7qW8st+qVoqWKANxJZeXkidZxhLGchSgeMtRmnz5tFfVwws
+ Og47L48Z+26aBVOLWy2AIzZHakdbyBY4JoXNAtUQrtRPicx0uUJbSGEXCqjcOFUr
+ kW4f1iYQAuJwazxrEhKhviO2vV8uGDxzyBzFrij0nd+WAJTjQrpvjWaxzs/IToeA
+ nQvMerKx3L9QyQ0FQQFqJuWgcYpjeCFsqija5WxVUlgDk1iDDZudZUbJ0PbeemsV
+ TJ4adxzdhQb6YVRRWVdTDld7ZPyPMULYmjyR8oeaswE1X8JtyuNssO1WlYvz2r3S
+ XAGhFT8CeuR5FJHYmHwptfKFmRahkLQRKzl8HCly0onUIO5dSXtO1sqUy/KCq629
+ b58PjTcdwv9Nc/VyoTbH17NEicwkH+r6j+lztBDPvbJsKnxG2G+en57xZPWQ
+ =iLLW
+ -----END PGP MESSAGE-----
+ fp: 91213ABAA73B0B73D3C02B5B4E5F372D17BBE67C
+ - created_at: "2025-05-03T19:03:55Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxjNhCKPP69fAQ//TiP3FUYVgg4Z2gQ90Oq+lXTvfAytKlPioLCqTJNmj0FS
+ SxQ4WIl1xgOTy5DdorbwnFYlZRwFedcfeQGIJ6c/lz8Od7ab5goH4NP18OZi1tkP
+ 9VdqlZL/7rnAT/OBeygiO95WlrWs7KCvmdIMrB3eQQY9EJP3ZXTbkJyM2vQSuJFC
+ y7noAb7BxApAjcmWW98ua8l5oyKh1O/DBnbsQ2lQwWtvxVW507gp8oqJgnD9xrCR
+ jV5Uc7ZYxaXKNk4WEDvESVb9n5FTwL+yhW4yGLeEracONI0SSI2lcsdSbWkM7GGr
+ 6S51YkObJX7GH4BTPGpy9+A7VOeeKi83XZFgaaiiUA4NcDOg4270znHaF40C8cP4
+ GIMu+WbNjl2ABbudGw7BlYb9dposlEkVY0Ce2ZDAQd3w5toGnkVGi5jIG2xNoFf+
+ yNG4fNo2H6giDLuw3ucauB+qNgS2CWbUeTXIbt6g9PmILY2s6OuBq9m2o6GmAPPQ
+ PRLtiMnFCdivzQCkqRdNDSRAsNR5QI95NFC+258hTEmk2sUk89TqXgFccobX9IYp
+ BMaIVnVtI+iCa3RQgKM0OUUDwnA1W9XVEaQ5zFjjfg0RY8JT1xSgTnTc4OiFODC5
+ rz3C6CKyh6B4SxNjVod6Nb3jNPDT68lfkf9ua+mB+TknuK3Ov16FWmCCsTGNiXHS
+ XAFAZjJvHeHoZ5yjhBVpQJ5bdOOj1kuqtZzKzVWMnLQiXB+XKfxVG+d2kmmCCyeT
+ clK0T7IL5NgJ0b/d0+1w7G++k4xSyy9Cg8jev60HJtny1LDB7AqU78+6mWAo
+ =1sdi
+ -----END PGP MESSAGE-----
+ fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
+ - created_at: "2025-05-03T19:03:55Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA1Hthzn+T1OoAQ//XkFf/JdcWreU54lrAcgJIpA/DPuflYX0bzPTgGish6aE
+ cOdKTppl1o0yOgsxZ/0C7tjWMevM8F8gHqqfDD1YrLerrkDtvCKw+s/UgpqGIS7D
+ SzalYJ3l2Sppmbum2VDqIZvhxF2U6DKB475ZMsNqangCjzcjOf4PBrxSIw51s4uE
+ nFDYWfaAh1VYyRB681+VUHSdCITCIfXXq+8jdJAagrA707Eix+9WM60oqv6jI+d/
+ TCCHufafonXnR728LxdSwBELZF9jb9NGgeG/7DlWxmV1gcqy9o1Rzv9cICtcDxKv
+ t1fORQ6tztNVrSUGRXAiGa3AexJYeNnIaK8q3kzUaNqY68TOu6wyNdOEEpeyynJU
+ dNytPUzZ4e5vhP4SxBsenMhekLcLt98eDGQP/iLRbfDhiBjF4PawqOIeCQbJ6OgF
+ KXJle5gVuhakTaIuTp9QZb8rlWiffv/cOKlqGydUjeM6fq8Zgm6e1vjcbwQNj1mX
+ 8T+KhgyUtaUUQPC1qm3LRom4SIM4mjgzH4SQCI9M0At7X12OjId/o6GsE62DU7C3
+ ZWywYXH3JIGDCmgG0CQEZrh2Mv+1M8Mp1rZkDahj39ls9gp3reXI2W1+bxdgBTqy
+ 4qxZGZNW0XgyaSwTbPR+z85ac/RE+oYKSmbpi8jstdLndIXtL2ipr4G8w9kzGjvS
+ XAEE5Ml/lMJDHAJhMTtZgGoh10j/gS8EexwQobzZqiMeboNpt0r+B4OJSbs0WXJV
+ oq5c/B2PMghcN4cnFIlesJl2AGry7mI8lq6bnhzRZjIN5KH54e2xBCVdhAs4
+ =2EQ3
+ -----END PGP MESSAGE-----
+ fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
+ - created_at: "2025-05-03T19:03:55Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA46L6MuPqfJqAQ//RTa3TiqaH6qkdZDuplbP8l7OsNSmvuk3R/vgiGq0Jp2y
+ V3GT+1DuwpauG2IXDL9b36DiZLKX7+ugHnQ1DuSYsq78m4XCVBeIJkaN+2A9K+gi
+ LwjRAxidQ5wONKqG6L4ZLConW8fnvuyAi2KDK76B7TcH/Ir+QTX9xg2Tm+vJT9Vv
+ o0ZDrNnaY5LMvFFIzN+9wqiBnekw2EHFOYBJTpeqT8zkkvLb3Daoplpr4Uz/fdbR
+ hlPP9JyI8TFB3PpMEF84+2lys2ob4halzGW41A9+9zFiPcz1mzL+ftRKFqU8Sd3x
+ EBbiu/6xVycWnySAMiX0p/A+p+3pzMJ40/OJHC9P/HxdbFFTvpGzL95qHHu1aDTW
+ vlQza3qQTk7konQiPAqZpv2fAteXCZeqhKgm8aowevbzCeGZwNYaN0yQqyROEE7V
+ z702pOsize5aRsGWlxhtzrfpHVlJ/yxbg3J4vv2WAycGYmvH3Z0AJxClML/KmuO3
+ W4umyrMQrmMMOhSByp3EkrPH2SXs6EObRoUwCaA82oJCcvNnEayRBf5KkX+FWqMY
+ ssVECN1VX6sZFYH05ZGZ+RSpzNJrIFZPx+DrbmcUQBgvOBqIsWiaM4dNpCwRVuKo
+ GhwuxdEKipcyPlsp274qwXCoKPGyjZxfcTg37naq0LlU+4VCYNGzuEijegH0e+HS
+ XAFxXl4qoEaPAHYqMADJXOOkYGcnNUET8CwmIzuqLWrE5uHgKoX9cBrCN91jEFxb
+ KH5dT4ysfagFkEWf5sNjBYcuxiYIP3e8BbKk2lG8DvZJgWox7qyvKIo5oKcD
+ =gXdn
+ -----END PGP MESSAGE-----
+ fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
+ - created_at: "2025-05-03T19:03:55Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4EEKdYEzV0pAQ/+LiEI5eSEGrABofjDaIKiROJrC7XKLzVWPJ33mxxVwGsC
+ 5mtjnZNQDHa2RiN775zLKOZmLvrKGCNHnfCHtcax0uaYTNeUVn0Mnq+UxYwTPXUb
+ 1VIX6ivCI5HNd2voqM965riflOBOZbRsDK2dGodl4tMdO4zKwxJ3wDMhVJ3Po0rg
+ UseEnsgXKP1CA+lGoYfNqoL2rstr6CNLcb6dZ9kekX1jm5ZegH7Xsevf3ZbVDDMS
+ C+l4UijpngfsgyZ04cj8DEQuCZy90GQxkJAl5NWqcJ+recZkYlL+B5eLA4eIPt6u
+ cPSdjPnzylT81b/cUsV1NUX8vNU5W/i2Nk4eTy1U5ErsDEmp1q1c3XioHO5h0fbZ
+ k1F10gRjtljnlDyUv4U/5JdLz4h9/B2SvbWZT977RUpNDcLtuL1ePTs0jrOcTJsq
+ tVlbAYJ4iUtMdUhVyftCQUo70Lx5VNufg/TbKTC/TWSSRl0DIdDa9adfedlv7+7o
+ r5nXitAIMcT+2nkPeW9060G9Vr0ht/7tHcMNBrLuXLNzIaQSwl3+cmC9CsTtthdB
+ 0+tcuZJ/w2WZJWX9U6ubJ1vWYdlS8PAEGt0XuiBnYO/CnyT8PrGMtJfDqzt7A1yt
+ jADGGXq9QF96xki2jPo35TommATNAJsFi7d6NjGOKcFhwPiDxiZ7G0V0BiD0WILS
+ XAF0B0GQDPebknXCpeqs3aDSBtg2bvCLiK7l28xs1hWZddt5hCTpzEP3zL4lDrGE
+ 9+SSHG8sJ03iG/zGuo1OsDOPeLwHbdKoY7PJKgVOg+R3+OaWhIzx2cbW2qeV
+ =v5rS
+ -----END PGP MESSAGE-----
+ fp: 9DFA033E3DAEBAD7FDD71B056C7AAA54BE05F7BA
+ - created_at: "2025-05-03T19:03:55Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DQrf1tCqiJxoSAQdAAAWAZzuozJo/9XnH+sEbE8ebyKgBi5ohKDVZOlMtCTQw
+ oeNOyUBour0BEfJTd1MdrUOBOP8aEL/RpNxNXLJnuo/ZW9Cm/sYr5EtxH1OEuZeA
+ 0lwBeaaV1bGtTACOlttrysmmNGWu05AEigvWSjW4X0oerU/3C8B1f/6HNcCeE4FV
+ Xn4MKaTZfqGrS+r3PrtyY5i0odIpMQ9BrlUhld4zZQteiCb0FYIU9p9T3trrtw==
+ =37ry
+ -----END PGP MESSAGE-----
+ fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
+ - created_at: "2025-05-03T19:03:55Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DzAGzViGx4qcSAQdAwqo3P8q8n8cVeO8pN3QiqJCHK0R2cR7F6g4CBoXL+HIw
+ pat6LL4iuoKRlKzGNFhhfcJ8ZGu7b2kXLNzMcN8YU/8Bbw3uym14x6o4M3MOUnpz
+ 0lYBGEn/qi8JfNT9anDVH2NoJGD4sVgThagLjOM/lgXAGupXQeL8N2VH7q7aXBVB
+ amtNYqrr4FKYSTOTOF46BXVwNVQkNxeL6I7FuaRu5/B3MG3xZmHb3Q==
+ =KxpX
+ -----END PGP MESSAGE-----
+ fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
+ - created_at: "2025-05-03T19:03:55Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA2pVdGTIrZI+AQ/+OW6ZL2OKIFgYinYC8LFwR1S01FTlssJSNAmbA1AWS97a
+ eZnf6H7JQMvz1YfLeX4bS57Gip21OCdX+sTVsj9+8bKyBEXI8lqDS+W0QtWhZy7F
+ xHLiEcMuv17w0Yg30UszMNaO3MCtfYrJpOiPQ5jYnfraigr7TmCja7i3ySUak8jh
+ 16RVF4mcDJKaDb4elCqQgAU3BLaQbIBAV9l0NcdkIN5HgwZCCfAVFXI6KfkIQ2/4
+ kow5wg8TO+5OMb3gVE6YO1ntFoV13qkAUvldH2pR8yjnOgZUgMkOpX3JdG95S5y/
+ +ItZQ4B2skUPu8dp4xLHoy5eiFgOiI4lKoFNknB0Mh4f1Wuhn+KHnWnnWuEdYBWe
+ OQxyvGbZTz2axeuN7zonS6GADzd+/jNFiaWYdaQ7htMiaD2cE1zH8MJMJRHTzZmU
+ 0ifH0Y+9+lKsqVwvoRDrd2pQnsjnA+saRAfXqluos2fGCMOVwIXju6rsu4lkUlsD
+ RuFQ6fEq1SyuyeoKMeMtahAJO0NW0DSpxMm2DCrX/HaO4adIegosVznvpqFKUbBX
+ e9jAp9B8xeWbTt8c6TT9U5XW+GXcPx0RG/lxRKjXQRhwd2UrvUW731scODnFLSqu
+ BFgqUByk2iSEoonZAoAS6gjvC9NAMEuLwWvdUejFbAx1ddknNI2YuoRcHrHnWjvU
+ ZgEJAhCkTMPYO7Q0V9nRMne6vajbSvXDfR/GwRLez3qRPoTnMpgZO0hpclqerJ5T
+ Qel10f8aMLupwPp4n+0khXyIZ+XYxTRdeR/zhvklYe0f2XljXndMFlEFA05vJ8ce
+ 2theaH7hmA==
+ =IwH6
+ -----END PGP MESSAGE-----
+ fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
+ unencrypted_suffix: _unencrypted
+ version: 3.9.4
diff --git a/resources/chaosknoten/grafana/docker_compose/alertmanager.yaml.j2 b/resources/chaosknoten/grafana/docker_compose/alertmanager.yaml.j2
index 51aeb63..ad10a96 100644
--- a/resources/chaosknoten/grafana/docker_compose/alertmanager.yaml.j2
+++ b/resources/chaosknoten/grafana/docker_compose/alertmanager.yaml.j2
@@ -3,84 +3,38 @@
# - https://github.com/prometheus/alertmanager/blob/48a99764a1fc9279fc828de83e7a03ae2219abc7/doc/examples/simple.yml
route:
- receiver: 'ccchh-infrastructure-alerts'
- group_by: [ "alertname", "site", "type", "hypervisor" ]
+ group_by: ["alertname", "site", "type", "hypervisor"]
+
group_wait: 30s
group_interval: 5m
- repeat_interval: 6h
- routes:
- - receiver: "null"
- matchers:
- - sendAlert = "false"
- - receiver: ntfy-ccchh-critical
- matchers:
- - org = "ccchh"
- - severity = "critical",
- repeat_interval: 18h
- continue: true
- - receiver: ntfy-ccchh
- matchers:
- - org = "ccchh"
- - severity =~ "info|warning",
- repeat_interval: 36h
- continue: true
- - receiver: ntfy-fux-critical
- matchers:
- - org = "fux"
- - severity = "critical",
- repeat_interval: 18h
- continue: true
- - receiver: email-fux-critical
- matchers:
- - org = "fux"
- - severity = "critical",
- repeat_interval: 36h
- continue: true
- - receiver: ntfy-fux
- matchers:
- - org = "fux"
- - severity =~ "info|warning",
- repeat_interval: 36h
- continue: true
- - receiver: ccchh-infrastructure-alerts
- matchers:
- - org = "ccchh"
- - severity =~ "info|warning|critical"
+ repeat_interval: 3h
+
+ receiver: ccchh-infrastructure-alerts
+
+
+{# Disable these for now, but might be interesting in the future.
+# Inhibition rules allow to mute a set of alerts given that another alert is
+# firing.
+# We use this to mute any warning-level notifications if the same alert is
+# already critical.
+inhibit_rules:
+ - source_matchers: [severity="critical"]
+ target_matchers: [severity="warning"]
+ # Apply inhibition if the alertname is the same.
+ # CAUTION:
+ # If all label names listed in `equal` are missing
+ # from both the source and target alerts,
+ # the inhibition rule will apply!
+ equal: [alertname, cluster, service] #}
templates:
- "/etc/alertmanager/templates/*.tmpl"
receivers:
- - name: "null"
- name: "ccchh-infrastructure-alerts"
telegram_configs:
- send_resolved: true
- bot_token: {{ secret__alertmanager_telegram_bot_token }}
+ bot_token: {{ lookup("community.sops.sops", "resources/chaosknoten/grafana/secrets.yaml", extract="['alertmanager_telegram_bot_token']") }}
chat_id: -1002434372415
parse_mode: HTML
message: {{ "'{{ template \"alert-message.telegram.ccchh\" . }}'" }}
-
- - name: "ntfy-ccchh-critical"
- webhook_configs:
- - url: "http://ntfy-alertmanager-ccchh-critical:8000"
-
- - name: "ntfy-fux-critical"
- webhook_configs:
- - url: "http://ntfy-alertmanager-fux-critical:8001"
-
- - name: "ntfy-ccchh"
- webhook_configs:
- - url: "http://ntfy-alertmanager-ccchh:8010"
-
- - name: "ntfy-fux"
- webhook_configs:
- - url: "http://ntfy-alertmanager-fux:8011"
-
- - name: "email-fux-critical"
- email_configs:
- - send_resolved: true
- to: "stb@lassitu.de,fux@zimdahl.org"
- from: "alert-manager@hamburg.ccc.de"
- smarthost: "cow.hamburg.ccc.de:587"
- auth_username: "alert-manager@hamburg.ccc.de"
- auth_password: {{ secret__alert_manager_email_password }}
diff --git a/resources/chaosknoten/grafana/docker_compose/alertmanager_alert_templates.tmpl b/resources/chaosknoten/grafana/docker_compose/alertmanager_alert_templates.tmpl
index 3e97e6e..4651496 100644
--- a/resources/chaosknoten/grafana/docker_compose/alertmanager_alert_templates.tmpl
+++ b/resources/chaosknoten/grafana/docker_compose/alertmanager_alert_templates.tmpl
@@ -22,7 +22,7 @@ Links & Resources
{{ define "alert-message.telegram.ccchh" }}
{{- if .Alerts.Firing }}
🔥{{ len .Alerts.Firing }} Alert(/s) Firing 🔥
- {{- if le (len .Alerts.Firing) 5 }}
+ {{- if le (len .Alerts.Firing) 6 }}
{{- range .Alerts.Firing }}
{{ template "alert-item.telegram.ccchh.internal" . }}
{{- end }}
@@ -33,7 +33,7 @@ Links & Resources
{{- if .Alerts.Resolved }}
✅{{ len .Alerts.Resolved }} Alert(/s) Resolved ✅
- {{- if le (len .Alerts.Resolved) 5 }}
+ {{- if le (len .Alerts.Resolved) 6 }}
{{- range .Alerts.Resolved }}
{{ template "alert-item.telegram.ccchh.internal" . }}
{{- end }}
diff --git a/resources/chaosknoten/grafana/docker_compose/compose.yaml.j2 b/resources/chaosknoten/grafana/docker_compose/compose.yaml.j2
index 1683b79..f5af854 100644
--- a/resources/chaosknoten/grafana/docker_compose/compose.yaml.j2
+++ b/resources/chaosknoten/grafana/docker_compose/compose.yaml.j2
@@ -7,16 +7,14 @@ services:
command:
- '--config.file=/etc/prometheus/prometheus.yml'
- '--web.enable-remote-write-receiver'
- - '--enable-feature=promql-experimental-functions'
ports:
- 9090:9090
restart: unless-stopped
volumes:
- ./configs/prometheus.yml:/etc/prometheus/prometheus.yml
- ./configs/prometheus_alerts.rules.yaml:/etc/prometheus/rules/alerts.rules.yaml
- - ./configs/prometheus_alerts-fux.rules.yaml:/etc/prometheus/rules/alerts-fux.rules.yaml
- prom_data:/prometheus
-
+
alertmanager:
image: prom/alertmanager
container_name: alertmanager
@@ -38,7 +36,7 @@ services:
restart: unless-stopped
environment:
- GF_SECURITY_ADMIN_USER=admin
- - "GF_SECURITY_ADMIN_PASSWORD={{ secret__grafana_gf_security_admin_password }}"
+ - "GF_SECURITY_ADMIN_PASSWORD={{ lookup("community.sops.sops", "resources/chaosknoten/grafana/secrets.yaml", extract="['GF_SECURITY_ADMIN_PASSWORD']") }}"
volumes:
- ./configs/grafana.ini:/etc/grafana/grafana.ini
- ./configs/grafana-datasource.yml:/etc/grafana/provisioning/datasources/datasource.yml
@@ -52,7 +50,7 @@ services:
restart: unless-stopped
environment:
- PVE_USER=grafana@pve
- - "PVE_PASSWORD={{ secret__prometheus_pve_exporter_pve_password }}"
+ - "PVE_PASSWORD={{ lookup("community.sops.sops", "resources/chaosknoten/grafana/secrets.yaml", extract="['prometheus-exporter']") }}"
- PVE_VERIFY_SSL=false
volumes:
- /dev/null:/etc/prometheus/pve.yml
@@ -68,42 +66,6 @@ services:
- ./configs/loki.yaml:/etc/loki/local-config.yaml
- loki_data:/var/loki
- ntfy-alertmanager-ccchh-critical:
- image: xenrox/ntfy-alertmanager:latest
- container_name: ntfy-alertmanager-ccchh-critical
- volumes:
- - ./configs/ntfy-alertmanager-ccchh-critical:/etc/ntfy-alertmanager/config
- ports:
- - 8000:8000
- restart: unless-stopped
-
- ntfy-alertmanager-fux-critical:
- image: xenrox/ntfy-alertmanager:latest
- container_name: ntfy-alertmanager-fux-critical
- volumes:
- - ./configs/ntfy-alertmanager-fux-critical:/etc/ntfy-alertmanager/config
- ports:
- - 8001:8001
- restart: unless-stopped
-
- ntfy-alertmanager-ccchh:
- image: xenrox/ntfy-alertmanager:latest
- container_name: ntfy-alertmanager-ccchh
- volumes:
- - ./configs/ntfy-alertmanager-ccchh:/etc/ntfy-alertmanager/config
- ports:
- - 8010:8010
- restart: unless-stopped
-
- ntfy-alertmanager-fux:
- image: xenrox/ntfy-alertmanager:latest
- container_name: ntfy-alertmanager-fux
- volumes:
- - ./configs/ntfy-alertmanager-fux:/etc/ntfy-alertmanager/config
- ports:
- - 8011:8011
- restart: unless-stopped
-
volumes:
graf_data: {}
prom_data: {}
diff --git a/resources/chaosknoten/grafana/docker_compose/grafana-datasource.yml b/resources/chaosknoten/grafana/docker_compose/grafana-datasource.yml
index 3cb6995..632ad1c 100644
--- a/resources/chaosknoten/grafana/docker_compose/grafana-datasource.yml
+++ b/resources/chaosknoten/grafana/docker_compose/grafana-datasource.yml
@@ -18,3 +18,4 @@ datasources:
httpHeaderName1: "X-Scope-OrgID"
secureJsonData:
httpHeaderValue1: "chaos"
+
diff --git a/resources/chaosknoten/grafana/docker_compose/grafana.ini.j2 b/resources/chaosknoten/grafana/docker_compose/grafana.ini.j2
index af5b848..96c445d 100644
--- a/resources/chaosknoten/grafana/docker_compose/grafana.ini.j2
+++ b/resources/chaosknoten/grafana/docker_compose/grafana.ini.j2
@@ -11,7 +11,7 @@ auto_login = true
name = id.hamburg.ccc.de
allow_sign_up = true
client_id = grafana
-client_secret = {{ secret__grafana_keycloak_secret }}
+client_secret = {{ lookup("community.sops.sops", "resources/chaosknoten/grafana/secrets.yaml", extract="['KEYCLOAK_SECRET']") }}
scopes = openid email profile offline_access roles
email_attribute_path = email
login_attribute_path = username
diff --git a/resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-ccchh-critical.j2 b/resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-ccchh-critical.j2
deleted file mode 100644
index b4afc90..0000000
--- a/resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-ccchh-critical.j2
+++ /dev/null
@@ -1,48 +0,0 @@
-base-url https://grafana.hamburg.ccc.de/ntfy-alertmanager-ccchh-critical
-http-address :8000
-log-level info
-log-format text
-# When multiple alerts are grouped together by Alertmanager, they can either be sent
-# each on their own (single mode) or be kept together (multi mode)
-# Options: single, multi
-# Default: multi
-alert-mode single
-
-labels {
- order "severity"
-
- severity "critical" {
- priority 4
- tags "rotating_light"
- }
-
- severity "warning" {
- priority 3
- tags "warning"
- }
-
- severity "info" {
- priority 1
- }
-}
-
-resolved {
- tags "white_check_mark,resolved"
- priority 2
-}
-
-ntfy {
- server https://ntfy.hamburg.ccc.de
- topic ccchh-alertmanager-critical
- access-token {{ secret__ntfy_token }}
-}
-
-alertmanager {
- silence-duration 3h
-}
-
-cache {
- type memory
- duration 12h
- cleanup-interval 1h
-}
diff --git a/resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-ccchh.j2 b/resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-ccchh.j2
deleted file mode 100644
index 66fd9ab..0000000
--- a/resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-ccchh.j2
+++ /dev/null
@@ -1,48 +0,0 @@
-base-url https://grafana.hamburg.ccc.de/ntfy-alertmanager-ccchh
-http-address :8010
-log-level info
-log-format text
-# When multiple alerts are grouped together by Alertmanager, they can either be sent
-# each on their own (single mode) or be kept together (multi mode)
-# Options: single, multi
-# Default: multi
-alert-mode single
-
-labels {
- order "severity"
-
- severity "critical" {
- priority 4
- tags "rotating_light"
- }
-
- severity "warning" {
- priority 3
- tags "warning"
- }
-
- severity "info" {
- priority 1
- }
-}
-
-resolved {
- tags "white_check_mark,resolved"
- priority 2
-}
-
-ntfy {
- server https://ntfy.hamburg.ccc.de
- topic ccchh-alertmanager
- access-token {{ secret__ntfy_token }}
-}
-
-alertmanager {
- silence-duration 3h
-}
-
-cache {
- type memory
- duration 12h
- cleanup-interval 1h
-}
diff --git a/resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-fux-critical.j2 b/resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-fux-critical.j2
deleted file mode 100644
index afb6cc8..0000000
--- a/resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-fux-critical.j2
+++ /dev/null
@@ -1,48 +0,0 @@
-base-url https://grafana.hamburg.ccc.de/ntfy-alertmanager-fux-critical
-http-address :8001
-log-level info
-log-format text
-# When multiple alerts are grouped together by Alertmanager, they can either be sent
-# each on their own (single mode) or be kept together (multi mode)
-# Options: single, multi
-# Default: multi
-alert-mode single
-
-labels {
- order "severity"
-
- severity "critical" {
- priority 4
- tags "rotating_light"
- }
-
- severity "warning" {
- priority 3
- tags "warning"
- }
-
- severity "info" {
- priority 1
- }
-}
-
-resolved {
- tags "white_check_mark,resolved"
- priority 2
-}
-
-ntfy {
- server https://ntfy.hamburg.ccc.de
- topic fux-alertmanager-critical
- access-token {{ secret__ntfy_token }}
-}
-
-alertmanager {
- silence-duration 3h
-}
-
-cache {
- type memory
- duration 12h
- cleanup-interval 1h
-}
diff --git a/resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-fux.j2 b/resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-fux.j2
deleted file mode 100644
index 1e506a3..0000000
--- a/resources/chaosknoten/grafana/docker_compose/ntfy-alertmanager-fux.j2
+++ /dev/null
@@ -1,48 +0,0 @@
-base-url https://grafana.hamburg.ccc.de/ntfy-alertmanager-fux
-http-address :8011
-log-level info
-log-format text
-# When multiple alerts are grouped together by Alertmanager, they can either be sent
-# each on their own (single mode) or be kept together (multi mode)
-# Options: single, multi
-# Default: multi
-alert-mode single
-
-labels {
- order "severity"
-
- severity "critical" {
- priority 4
- tags "rotating_light"
- }
-
- severity "warning" {
- priority 3
- tags "warning"
- }
-
- severity "info" {
- priority 1
- }
-}
-
-resolved {
- tags "white_check_mark,resolved"
- priority 2
-}
-
-ntfy {
- server https://ntfy.hamburg.ccc.de
- topic fux-alertmanager
- access-token {{ secret__ntfy_token }}
-}
-
-alertmanager {
- silence-duration 3h
-}
-
-cache {
- type memory
- duration 12h
- cleanup-interval 1h
-}
diff --git a/resources/chaosknoten/grafana/docker_compose/prometheus.yml b/resources/chaosknoten/grafana/docker_compose/prometheus.yml
index fd59034..cf7f594 100644
--- a/resources/chaosknoten/grafana/docker_compose/prometheus.yml
+++ b/resources/chaosknoten/grafana/docker_compose/prometheus.yml
@@ -1,12 +1,12 @@
global:
- scrape_interval: 60s
- scrape_timeout: 15s
- evaluation_interval: 30s
+ scrape_interval: 15s
+ scrape_timeout: 10s
+ evaluation_interval: 15s
alerting:
alertmanagers:
- scheme: http
- timeout: 15s
+ timeout: 10s
static_configs:
- targets:
- "alertmanager:9093"
@@ -22,8 +22,6 @@ scrape_configs:
static_configs:
- targets:
- localhost:9090
- labels:
- org: ccchh
- job_name: alertmanager
honor_timestamps: true
metrics_path: /metrics
@@ -31,8 +29,6 @@ scrape_configs:
static_configs:
- targets:
- alertmanager:9093
- labels:
- org: ccchh
- job_name: mumble
honor_timestamps: true
scrape_interval: 5s
@@ -42,8 +38,6 @@ scrape_configs:
static_configs:
- targets:
- mumble.hamburg.ccc.de:443
- labels:
- org: ccchh
- job_name: opnsense-ccchh
honor_timestamps: true
metrics_path: /metrics
@@ -51,8 +45,6 @@ scrape_configs:
static_configs:
- targets:
- 185.161.129.132:9100
- labels:
- org: ccchh
- job_name: jitsi
honor_timestamps: true
scrape_interval: 5s
@@ -62,14 +54,10 @@ scrape_configs:
static_configs:
- targets:
- jitsi.hamburg.ccc.de:9888 # Jitsi Video Bridge
- labels:
- org: ccchh
- job_name: 'pve'
static_configs:
- targets:
- 212.12.48.126 # chaosknoten
- labels:
- org: ccchh
metrics_path: /pve
params:
module: [ default ]
@@ -86,7 +74,6 @@ scrape_configs:
static_configs:
# Wieske Chaosknoten VMs
- labels:
- org: ccchh
site: wieske
type: virtual_machine
hypervisor: chaosknoten
@@ -111,13 +98,7 @@ scrape_configs:
- zammad-intern.hamburg.ccc.de:9100
- pretalx-intern.hamburg.ccc.de:9100
- labels:
- org: ccchh
site: wieske
type: physical_machine
targets:
- chaosknoten.hamburg.ccc.de:9100
-
-
-storage:
- tsdb:
- out_of_order_time_window: 90m
diff --git a/resources/chaosknoten/grafana/docker_compose/prometheus_alerts-fux.rules.yaml b/resources/chaosknoten/grafana/docker_compose/prometheus_alerts-fux.rules.yaml
deleted file mode 100644
index b1836a3..0000000
--- a/resources/chaosknoten/grafana/docker_compose/prometheus_alerts-fux.rules.yaml
+++ /dev/null
@@ -1,41 +0,0 @@
-groups:
- - name: Fux-Generic
- rules:
- - alert: HostJobFlaky
- expr: group by(instance, job) (changes(up{org="fux"}[24h]) > 7)
- for: 0m
- labels:
- severity: info
- org: fux
- annotations:
- summary: Job {{ $labels.job }} flaky on (instance {{ $labels.instance }})
- description: "The job {{ $labels.job }} on target: {{ $labels.instance }} has been flaky over the last 24 hours."
- - name: Fux-SNMP
- rules:
- - alert: SnmpTargetMissing
- expr: up{job=~".*snmp.*", org="fux"} == 0
- for: 15m
- labels:
- severity: critical
- org: fux
- annotations:
- summary: SNMP target missing (instance {{ $labels.instance }})
- description: "SNMP target: {{ $labels.instance }} has disappeared for more the 15 min."
- - name: Fux-DHCP
- rules:
- - alert: DhcpFuxSharedFailed
- expr: script_success{script="check_dhcp_fux_shared"} == 0
- for: 2m
- labels:
- severity: critical
- annotations:
- summary: DHCP for Fux Shared stoped working
- description: "No DHCP lease for the Fux Shared range was received \n V"
- - alert: DhcpFuxAdminFailed
- expr: script_success{script_success="check_dhcp_fux_admin"} == 0
- for: 2m
- labels:
- severity: critical
- annotations:
- summary: DHCP for Fux Admin stoped working
- description: "No DHCP lease for the Fux Admin range was received"
diff --git a/resources/chaosknoten/grafana/docker_compose/prometheus_alerts.rules.yaml b/resources/chaosknoten/grafana/docker_compose/prometheus_alerts.rules.yaml
index 4a2bc6f..5ec53b8 100644
--- a/resources/chaosknoten/grafana/docker_compose/prometheus_alerts.rules.yaml
+++ b/resources/chaosknoten/grafana/docker_compose/prometheus_alerts.rules.yaml
@@ -196,9 +196,9 @@ groups:
# Same rule using "node_filesystem_free_bytes" will fire when disk fills for non-root users.
- alert: HostDiskWillFillIn24Hours
expr: ((node_filesystem_avail_bytes * 100) / node_filesystem_size_bytes < 10 and ON (instance, device, mountpoint) predict_linear(node_filesystem_avail_bytes{fstype!~"tmpfs"}[1h], 24 * 3600) < 0 and ON (instance, device, mountpoint) node_filesystem_readonly == 0) * on(instance) group_left (nodename) node_uname_info{nodename=~".+"}
- for: 5m
+ for: 2m
labels:
- severity: critical
+ severity: warning
annotations:
summary: Host disk will fill in 24 hours (instance {{ $labels.instance }})
description: "Filesystem is predicted to run out of space within the next 24 hours at current write rate\n VALUE = {{ $value }}"
@@ -212,9 +212,9 @@ groups:
description: "Disk is almost running out of available inodes (< 10% left)\n VALUE = {{ $value }}"
- alert: HostInodesWillFillIn24Hours
expr: (node_filesystem_files_free{fstype!="msdosfs"} / node_filesystem_files{fstype!="msdosfs"} * 100 < 10 and predict_linear(node_filesystem_files_free{fstype!="msdosfs"}[1h], 24 * 3600) < 0 and ON (instance, device, mountpoint) node_filesystem_readonly{fstype!="msdosfs"} == 0) * on(instance) group_left (nodename) node_uname_info{nodename=~".+"}
- for: 5m
+ for: 2m
labels:
- severity: critical
+ severity: warning
annotations:
summary: Host inodes will fill in 24 hours (instance {{ $labels.instance }})
description: "Filesystem is predicted to run out of inodes within the next 24 hours at current write rate\n VALUE = {{ $value }}"
@@ -362,7 +362,7 @@ groups:
expr: (node_systemd_unit_state{state="failed"} == 1) * on(instance) group_left (nodename) node_uname_info{nodename=~".+"}
for: 0m
labels:
- severity: critical
+ severity: warning
annotations:
summary: Host systemd service crashed (instance {{ $labels.instance }})
description: "systemd service crashed\n VALUE = {{ $value }}"
@@ -410,7 +410,7 @@ groups:
summary: Prometheus job missing (instance {{ $labels.instance }})
description: "A Prometheus job has disappeared\n VALUE = {{ $value }}"
- alert: PrometheusTargetMissing
- expr: up{job!~"snmp|noc_room_temp"} == 0
+ expr: up == 0
for: 0m
labels:
severity: critical
@@ -418,7 +418,7 @@ groups:
summary: Prometheus target missing (instance {{ $labels.instance }})
description: "A Prometheus target has disappeared. An exporter might be crashed.\n VALUE = {{ $value }}"
- alert: PrometheusAllTargetsMissing
- expr: sum by (job) (up{job!~"snmp|noc_room_temp"}) == 0
+ expr: sum by (job) (up) == 0
for: 0m
labels:
severity: critical
@@ -438,7 +438,6 @@ groups:
for: 0m
labels:
severity: warning
- org: ccchh
annotations:
summary: Prometheus too many restarts (instance {{ $labels.instance }})
description: "Prometheus has restarted more than twice in the last 15 minutes. It might be crashlooping.\n VALUE = {{ $value }}"
@@ -447,7 +446,6 @@ groups:
for: 0m
labels:
severity: warning
- org: ccchh
annotations:
summary: Prometheus AlertManager job missing (instance {{ $labels.instance }})
description: "A Prometheus AlertManager job has disappeared\n VALUE = {{ $value }}"
@@ -456,7 +454,6 @@ groups:
for: 0m
labels:
severity: warning
- org: ccchh
annotations:
summary: Prometheus AlertManager configuration reload failure (instance {{ $labels.instance }})
description: "AlertManager configuration reload error\n VALUE = {{ $value }}"
@@ -465,7 +462,6 @@ groups:
for: 0m
labels:
severity: warning
- org: ccchh
annotations:
summary: Prometheus AlertManager config not synced (instance {{ $labels.instance }})
description: "Configurations of AlertManager cluster instances are out of sync\n VALUE = {{ $value }}"
@@ -483,7 +479,6 @@ groups:
for: 0m
labels:
severity: critical
- org: ccchh
annotations:
summary: Prometheus not connected to alertmanager (instance {{ $labels.instance }})
description: "Prometheus cannot connect the alertmanager\n VALUE = {{ $value }}"
@@ -492,7 +487,6 @@ groups:
for: 0m
labels:
severity: critical
- org: ccchh
annotations:
summary: Prometheus rule evaluation failures (instance {{ $labels.instance }})
description: "Prometheus encountered {{ $value }} rule evaluation failures, leading to potentially ignored alerts.\n VALUE = {{ $value }}"
@@ -501,7 +495,6 @@ groups:
for: 0m
labels:
severity: critical
- org: ccchh
annotations:
summary: Prometheus template text expansion failures (instance {{ $labels.instance }})
description: "Prometheus encountered {{ $value }} template text expansion failures\n VALUE = {{ $value }}"
@@ -510,7 +503,6 @@ groups:
for: 5m
labels:
severity: warning
- org: ccchh
annotations:
summary: Prometheus rule evaluation slow (instance {{ $labels.instance }})
description: "Prometheus rule evaluation took more time than the scheduled interval. It indicates a slower storage backend access or too complex query.\n VALUE = {{ $value }}"
@@ -527,7 +519,6 @@ groups:
for: 0m
labels:
severity: critical
- org: ccchh
annotations:
summary: Prometheus AlertManager notification failing (instance {{ $labels.instance }})
description: "Alertmanager is failing sending notifications\n VALUE = {{ $value }}"
@@ -536,7 +527,6 @@ groups:
for: 0m
labels:
severity: critical
- org: ccchh
annotations:
summary: Prometheus target empty (instance {{ $labels.instance }})
description: "Prometheus has no target in service discovery\n VALUE = {{ $value }}"
@@ -545,7 +535,6 @@ groups:
for: 5m
labels:
severity: warning
- org: ccchh
annotations:
summary: Prometheus target scraping slow (instance {{ $labels.instance }})
description: "Prometheus is scraping exporters slowly since it exceeded the requested interval time. Your Prometheus server is under-provisioned.\n VALUE = {{ $value }}"
@@ -586,7 +575,6 @@ groups:
for: 0m
labels:
severity: critical
- org: ccchh
annotations:
summary: Prometheus TSDB compactions failed (instance {{ $labels.instance }})
description: "Prometheus encountered {{ $value }} TSDB compactions failures\n VALUE = {{ $value }}"
@@ -595,7 +583,6 @@ groups:
for: 0m
labels:
severity: critical
- org: ccchh
annotations:
summary: Prometheus TSDB head truncations failed (instance {{ $labels.instance }})
description: "Prometheus encountered {{ $value }} TSDB head truncation failures\n VALUE = {{ $value }}"
@@ -604,7 +591,6 @@ groups:
for: 0m
labels:
severity: critical
- org: ccchh
annotations:
summary: Prometheus TSDB reload failures (instance {{ $labels.instance }})
description: "Prometheus encountered {{ $value }} TSDB reload failures\n VALUE = {{ $value }}"
@@ -613,7 +599,6 @@ groups:
for: 0m
labels:
severity: critical
- org: ccchh
annotations:
summary: Prometheus TSDB WAL corruptions (instance {{ $labels.instance }})
description: "Prometheus encountered {{ $value }} TSDB WAL corruptions\n VALUE = {{ $value }}"
@@ -622,16 +607,14 @@ groups:
for: 0m
labels:
severity: critical
- org: ccchh
annotations:
summary: Prometheus TSDB WAL truncations failed (instance {{ $labels.instance }})
description: "Prometheus encountered {{ $value }} TSDB WAL truncation failures\n VALUE = {{ $value }}"
- alert: PrometheusTimeseriesCardinality
- expr: label_replace(count by(__name__) ({__name__=~".+"}), "name", "$1", "__name__", "(.+)") > 20000
+ expr: label_replace(count by(__name__) ({__name__=~".+"}), "name", "$1", "__name__", "(.+)") > 10000
for: 0m
labels:
severity: warning
- org: ccchh
annotations:
summary: Prometheus timeseries cardinality (instance {{ $labels.instance }})
description: "The \"{{ $labels.name }}\" timeseries cardinality is getting very high: {{ $value }}\n VALUE = {{ $value }}"
diff --git a/resources/chaosknoten/grafana/nginx/grafana.hamburg.ccc.de.conf b/resources/chaosknoten/grafana/nginx/grafana.hamburg.ccc.de.conf
index c5b68e1..a3218d1 100644
--- a/resources/chaosknoten/grafana/nginx/grafana.hamburg.ccc.de.conf
+++ b/resources/chaosknoten/grafana/nginx/grafana.hamburg.ccc.de.conf
@@ -2,8 +2,7 @@
# https://ssl-config.mozilla.org/#server=nginx&version=1.17.7&config=intermediate&openssl=1.1.1k&guideline=5.6
server {
# Listen on a custom port for the proxy protocol.
- listen 8443 ssl proxy_protocol;
- http2 on;
+ listen 8443 ssl http2 proxy_protocol;
# Make use of the ngx_http_realip_module to set the $remote_addr and
# $remote_port to the client address and client port, when using proxy
# protocol.
@@ -41,71 +40,4 @@ server {
proxy_pass http://127.0.0.1:3000/;
}
- location /ntfy-alertmanager-ccchh-critical/ {
- deny all;
- allow ::1/128;
- allow 127.0.0.1/32;
- # Wieske
- allow 172.31.17.128/25;
- allow 212.12.51.128/28;
- allow 2a00:14b0:42:100::/56; #Neues v6 gerouted via neuem Router
- allow 2a00:14b0:4200:3000::/64; #Bei Wieske
- allow 2a00:14b0:4200:3380::/64;
- allow 2a00:14b0:f000:23::/64; #CCCHH v6 bei Wieske, geroutet über turing
- # Z9
- allow 2a07:c480:0:100::/56;
- allow 2a07:c481:1::/48;
- proxy_pass http://127.0.0.1:8000/;
- }
-
- location /ntfy-alertmanager-ccchh/ {
- deny all;
- allow ::1/128;
- allow 127.0.0.1/32;
- # Wieske
- allow 172.31.17.128/25;
- allow 212.12.51.128/28;
- allow 2a00:14b0:42:100::/56; #Neues v6 gerouted via neuem Router
- allow 2a00:14b0:4200:3000::/64; #Bei Wieske
- allow 2a00:14b0:4200:3380::/64;
- allow 2a00:14b0:f000:23::/64; #CCCHH v6 bei Wieske, geroutet über turing
- # Z9
- allow 2a07:c480:0:100::/56;
- allow 2a07:c481:1::/48;
- proxy_pass http://127.0.0.1:8010/;
- }
-
- location /ntfy-alertmanager-fux-critical/ {
- deny all;
- allow ::1/128;
- allow 127.0.0.1/32;
- # Wieske
- allow 172.31.17.128/25;
- allow 212.12.51.128/28;
- allow 2a00:14b0:42:100::/56; #Neues v6 gerouted via neuem Router
- allow 2a00:14b0:4200:3000::/64; #Bei Wieske
- allow 2a00:14b0:4200:3380::/64;
- allow 2a00:14b0:f000:23::/64; #CCCHH v6 bei Wieske, geroutet über turing
- # Z9
- allow 2a07:c480:0:100::/56;
- allow 2a07:c481:1::/48;
- proxy_pass http://127.0.0.1:8001/;
- }
-
- location /ntfy-alertmanager-fux/ {
- deny all;
- allow ::1/128;
- allow 127.0.0.1/32;
- # Wieske
- allow 172.31.17.128/25;
- allow 212.12.51.128/28;
- allow 2a00:14b0:42:100::/56; #Neues v6 gerouted via neuem Router
- allow 2a00:14b0:4200:3000::/64; #Bei Wieske
- allow 2a00:14b0:4200:3380::/64;
- allow 2a00:14b0:f000:23::/64; #CCCHH v6 bei Wieske, geroutet über turing
- # Z9
- allow 2a07:c480:0:100::/56;
- allow 2a07:c481:1::/48;
- proxy_pass http://127.0.0.1:8011/;
- }
}
diff --git a/resources/chaosknoten/grafana/nginx/loki.hamburg.ccc.de.conf b/resources/chaosknoten/grafana/nginx/loki.hamburg.ccc.de.conf
index e2bf4a7..31fb2a8 100644
--- a/resources/chaosknoten/grafana/nginx/loki.hamburg.ccc.de.conf
+++ b/resources/chaosknoten/grafana/nginx/loki.hamburg.ccc.de.conf
@@ -6,22 +6,18 @@ server {
allow 212.12.51.128/28;
allow 2a00:14b0:42:100::/56; #Neues v6 gerouted via neuem Router
allow 2a00:14b0:4200:3000::/64; #Bei Wieske
- allow 2a00:14b0:4200:3380::/64;
allow 2a00:14b0:f000:23::/64; #CCCHH v6 bei Wieske, geroutet über turing
# Z9
allow 2a07:c480:0:100::/56;
allow 2a07:c481:1::/48;
-
+
deny all;
- server_name loki.hamburg.ccc.de;
-
listen [::]:50051 ssl;
listen 172.31.17.145:50051 ssl;
-
http2 on;
- client_body_buffer_size 512k;
+ server_name loki.hamburg.ccc.de;
ssl_certificate /etc/letsencrypt/live/loki.hamburg.ccc.de/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/loki.hamburg.ccc.de/privkey.pem;
@@ -49,21 +45,17 @@ server {
allow 212.12.51.128/28;
allow 2a00:14b0:42:100::/56; #Neues v6 gerouted via neuem Router
allow 2a00:14b0:4200:3000::/64; #Bei Wieske
- allow 2a00:14b0:4200:3380::/64;
allow 2a00:14b0:f000:23::/64; #CCCHH v6 bei Wieske, geroutet über turing
# Z9
allow 2a07:c480:0:100::/56;
allow 2a07:c481:1::/48;
deny all;
- server_name loki.hamburg.ccc.de;
-
listen [::]:443 ssl;
listen 172.31.17.145:443 ssl;
-
http2 on;
- client_body_buffer_size 512k;
+ server_name loki.hamburg.ccc.de;
ssl_certificate /etc/letsencrypt/live/loki.hamburg.ccc.de/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/loki.hamburg.ccc.de/privkey.pem;
diff --git a/resources/chaosknoten/grafana/nginx/loki.htpasswd.j2 b/resources/chaosknoten/grafana/nginx/loki.htpasswd.j2
index ed270c2..0b887fa 100644
--- a/resources/chaosknoten/grafana/nginx/loki.htpasswd.j2
+++ b/resources/chaosknoten/grafana/nginx/loki.htpasswd.j2
@@ -1 +1 @@
-chaos:{{ secret__loki_chaos_basic_auth }}
+chaos:{{ lookup("community.sops.sops", "resources/chaosknoten/grafana/secrets.yaml", extract="['loki_chaos_basic_auth']") }}
diff --git a/resources/chaosknoten/grafana/nginx/metrics.hamburg.ccc.de.conf b/resources/chaosknoten/grafana/nginx/metrics.hamburg.ccc.de.conf
index 2c52523..17843c4 100644
--- a/resources/chaosknoten/grafana/nginx/metrics.hamburg.ccc.de.conf
+++ b/resources/chaosknoten/grafana/nginx/metrics.hamburg.ccc.de.conf
@@ -6,7 +6,6 @@ server {
allow 212.12.51.128/28;
allow 2a00:14b0:42:100::/56; #Neues v6 gerouted via neuem Router
allow 2a00:14b0:4200:3000::/64; #Bei Wieske
- allow 2a00:14b0:4200:3380::/64;
allow 2a00:14b0:f000:23::/64; #CCCHH v6 bei Wieske, geroutet über turing
# Z9
allow 2a07:c480:0:100::/56;
@@ -15,13 +14,13 @@ server {
allow 2a07:c481:0:1::/64;
deny all;
- server_name metrics.hamburg.ccc.de;
-
listen [::]:443 ssl;
listen 172.31.17.145:443 ssl;
http2 on;
- client_body_buffer_size 512k;
+ server_name metrics.hamburg.ccc.de;
+
+ client_body_buffer_size 32k;
ssl_certificate /etc/letsencrypt/live/metrics.hamburg.ccc.de/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/metrics.hamburg.ccc.de/privkey.pem;
diff --git a/resources/chaosknoten/grafana/nginx/metrics.htpasswd.j2 b/resources/chaosknoten/grafana/nginx/metrics.htpasswd.j2
index f680572..4a1f150 100644
--- a/resources/chaosknoten/grafana/nginx/metrics.htpasswd.j2
+++ b/resources/chaosknoten/grafana/nginx/metrics.htpasswd.j2
@@ -1,2 +1,2 @@
-chaos:{{ secret__metrics_chaos_basic_auth }}
-fux:{{ secret__metrics_fux_basic_auth }}
+chaos:{{ lookup("community.sops.sops", "resources/chaosknoten/grafana/secrets.yaml", extract="['metrics_chaos_basic_auth']") }}
+fux:{{ lookup("community.sops.sops", "resources/chaosknoten/grafana/secrets.yaml", extract="['metrics_fux_basic_auth']") }}
diff --git a/resources/chaosknoten/grafana/secrets.yaml b/resources/chaosknoten/grafana/secrets.yaml
new file mode 100644
index 0000000..4c8b251
--- /dev/null
+++ b/resources/chaosknoten/grafana/secrets.yaml
@@ -0,0 +1,245 @@
+KEYCLOAK_SECRET: ENC[AES256_GCM,data:NIj8QlKUAQRR2/d261B/Dw0kUBRhK02Yu+exEK6Wa2Q=,iv:yku1vV7OMZM+Nu+p0ARLhBJaONmar/bMLPJ4B5M0ZyE=,tag:J86R36s3oNjPJmDSAU5i0A==,type:str]
+GF_SECURITY_ADMIN_PASSWORD: ENC[AES256_GCM,data:xua/P7Bf/KWaZA8WPz/nZra+L5nGdlnS,iv:QLvhdFqCirvilYk3MLJWThZ1R29HBoMirjxJGQj2UU8=,tag:vOFCPn25/4cAT2p1GLnJ+A==,type:str]
+prometheus-exporter: ENC[AES256_GCM,data:zQfc9NwHSLnJCDjnS+gGTjxXkEUaim2Pusv48QydYe6sErjRrw35bEfZyNlP+SyffPNY1gD90riuuM/QjIUIsw==,iv:TG41lDK0evzMU66A/rhXLCjSysbTpP4NrzEvKGznQzE=,tag:pIGNSG/ZbTFgdgb5YATwqw==,type:str]
+alertmanager_telegram_bot_token: ENC[AES256_GCM,data:MzTEoeTyd6lCw9oFgje6CWnSk9G9LNJ5CE81VxvflAVQgqsDAGT6VFJxDKa2Ew==,iv:VbP3xie4MF80Hq1C3RadRAmmamtHewhKUwT7uHTPtKk=,tag:usAfPWVU/OCz+eEUOezWyg==,type:str]
+loki_chaos: ENC[AES256_GCM,data:kZP2qoY6u1VpVgXejCOksxJwbcCl71Ou7LzRR//n,iv:TPHrRnUemVWkuijsKzI68hnV9j9YuoalBZ0s+2g4LW8=,tag:7XvjRfpWiBptx5ZIOEblEg==,type:str]
+loki_chaos_basic_auth: ENC[AES256_GCM,data:O81XiVhZUFw5MelQYeU2DGmYW5h4kK05ZzqM1l8OVQhMSuX3Xw==,iv:blfCQcFNl70SxdgR7QWKp2kGls2tZlrq1BPmwu81cXM=,tag:ytQVh3yicsPlEHgmCKwqvA==,type:str]
+metrics_chaos: ENC[AES256_GCM,data:B+T5cql7i4vrXzn0pWzExTZcXTGewGDGap17c6so,iv:0QVxT82KKBZ6rV7PbiH+umAA7fWSHfWlN7aMCGbljOg=,tag:joJagfmPa4rePrtm7DWwTw==,type:str]
+metrics_chaos_basic_auth: ENC[AES256_GCM,data:p7B1UsHexLQwI3QDNOHXthhkioahtbtHbhb22yz9zo4aCTp1BQ==,iv:uwvHdzZGifVj/WHFNAvR2uEvYpX1T6joIMVMqzW0Vzk=,tag:6PB0n/Lu529hkOuJtfms4g==,type:str]
+metrics_fux: ENC[AES256_GCM,data:/bpIyeW1zCMOXHSbS7cFllrZbHh+3+QSp/oU79kn,iv:ylcXL3Rq+oATWlspfj25qhRA1HHmjXGYwBaQAcBMeR4=,tag:og8Yqp5ylgvoEpvACLOF7w==,type:str]
+metrics_fux_basic_auth: ENC[AES256_GCM,data:YqIxyr1TPWiwV7R5q/9o4hJliePmU/+OZpKD47SzjpOltdTC7Q==,iv:BVjXxEAfkJHM1JvP78rN/PUeLRUyDMR6zVmsqDhmi2A=,tag:4+LGGeJ3oDuUhA9lNFZ3yQ==,type:str]
+sops:
+ kms: []
+ gcp_kms: []
+ azure_kv: []
+ hc_vault: []
+ age: []
+ lastmodified: "2025-05-03T20:17:48Z"
+ mac: ENC[AES256_GCM,data:h2+Y5NjBoscFdp4rcSSkm0s2UMsDnjr5P9kPXcLgaGa8BG+7uEILZuCl3Tb60CnqmWeXXT6OxJsouMIN6JkoOUieZRkqXe5+6PHZ0HthO99JZtz1cyb5ERhB2Sco5gv7ik+Q8i9qRX+YWh2zIpMq68lmKxJUuc0p++n6DAAHRps=,iv:SQS8szYbDwMTxltfhS9zkHnA0rXOtgcsst1sPEMFxGA=,tag:fLRLTOvkBFbmTlR7o0wBAw==,type:str]
+ pgp:
+ - created_at: "2025-05-03T20:00:01Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxK/JaB2/SdtAQ/+NUs4UDPZQjMo1H936WFcQnvwwvzL6+DHzkh/K2p880VT
+ 7Crk0krfa6raPhWqLAwLxzscnTOd5U5TR50aCK9weRdHwkr8eNcfnFx5GvnRXzun
+ i/IL+/7QErhSRDJTIuZ/dR2/vRqvaxysybDOI7TQkQCuJjOtti6X0oY7wyT2k67z
+ opmt5CKkL7f0GRDWrv6Ej8LOB66EG2L4IvzwCegg2ASHSYVkZUSDKa81DXptdOGT
+ 9c5ekOMBRYK/YSq3N1XLW8bqMg6/4de0es75oqtlTItVzd1muni6DmGnBxL94kM4
+ KnCLrlWE5/zA3MAG6Lgrcypf/7/5VB3fcs+0cEj9/0Is+hlr7gUIoNM7BHy42D8Q
+ Z+Cg4LJIyD5p+no+wPI0EO5ROEJh7FkhxrDrwqvyJy2R6MB9qy7DtR1zze9fuy2N
+ FvWL/nk2gjyLYNc0Q9qt/FBPOJY53e2CwsL6zS42TZScBPC6klQlaQ0BbcrID/Ng
+ YxG+LquoWdOerMTZdm6Npkhw9hh8HMhIb8MRq0k5TrRlm6MXexfZaaMA3WAvbJJP
+ E5T6N+1cvEqaGOpjDG0+OXqaZbGXqLFYTHQnyl7Roq1CITr1yuZzU6vo35cTepeI
+ saBIkHb64QhzBjYNYV8+aUZMEjc4HD2ey4xQRFoJoW7diT4ZamlgbV145CYTBJHU
+ ZgEJAhCWWrfjM8xeLQQu+6h3UYAlDmMwMky7Ri1twkhenm/Ck/M9Jpcp79Jjb1MW
+ TYnVVV9yoN7C/WFuXfYHMd6QwOvH1xX/98vRn+77XxlGfson4dzLC8ydqzKqoqzZ
+ PvIYE0B48g==
+ =s8Mq
+ -----END PGP MESSAGE-----
+ fp: EF643F59E008414882232C78FFA8331EEB7D6B70
+ - created_at: "2025-05-03T20:00:01Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA6EyPtWBEI+2AQ/8ChGGTFU4krb99SLaEVmQ5cFb0GA+YzDuN/+c0vsobq+g
+ LfyU/XiUHpJFdc/bBVzipjLQPPlEw42kd0kswOMb9zTbG6ytJzPGMMqEzIy1ID6y
+ lC/q3DHgjWQtYFndjs13rQxRkbN3xKPP+07VzZGXt2896j/xL3XSm5TXujpqIIJy
+ erS0BsbYFlAT/qdJdFkoqJa7c6j4/kGMMgl6rUpHovIOzBLWE+exnef+eOdzJdS1
+ Kk/3wdzx7mItjQ/eGgs7HnyD/hfPCRzyRnoOEvKLS2MTLL5hhtVEWI6E47HxsdKF
+ z/IHE9JAYtfXB9WlAU1+v6qVRTY2YbKqhJvoMEWUQyjWlPV5zQC4H4fyeYCpEL7/
+ 98UEY2lkCXfkxQNFRy6gTnuVZXfiu9V3ba4rdN13F2RZ2f/051jzo4HASWIHGQGU
+ zxp0T2x/7g9bradsnAiZSAa2iS7T9F5qtKHwxgfQLnhZ7/w33tZxmnGhG3M4O21A
+ wQgm1DZprEK92jMxMkjmY+cPad8Kp9ptuFp9sX5sGwwTaYcCWAkycphKwHuT7HYY
+ K2HvzAKEc1Ga/vLpb5HGVNuB7yntVFWAoN41A+zIhn9z6/qiPZms8oXw948CD8xT
+ RIb8Mkwtx3tQdNozkmT5NMM1NwsnndF5GmbKWgcc0pchQ/CGHqPLaiigWf+4qnTS
+ XAF9EMkanZWyLb3+NyQAZed04fi8GOqpaPRdPCHwxNG+LGdLqtfMYpk9rdkqMtVP
+ Z9oSJ5txuFXFRPhqpQBgQLC/DPOXT3Lz87FWoGjqL4OZEPqsHsFGfBt01PCy
+ =FnWf
+ -----END PGP MESSAGE-----
+ fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
+ - created_at: "2025-05-03T20:00:01Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAz5uSgHG2iMJAQ/+PPlENzEAwKPC+u7UaUgRDnPRoOK21hcS/LVEsO7MqWus
+ b0d7qVT1hoCmsHRI3kQu9B5p9obZ3Ci/gsaocZXNIoXNadTmKlTlEWjXdK84e2SE
+ /kLTfpJMdb7H+h0TjsE/trnzZhUCyBt5mRYNCYmhxRfoLtjyw58YA5aRXsGkaJJ/
+ FbZPiSxIYlCdC/Ptih50ONYtmt5YXkILGF2Zc1bAPVkToB3XvLP110eeTYqDahLk
+ 1iAGCYJ938O53PACbU8wkocxHvYgkPkY7wN5WM6LgUTqHTgmCTrnTm6tnfLi7dMB
+ UxZPrVW84t8afdipC1xsHlZXr+XeUG2ogHs5OLDscZCNE2YLTtacuW7Xain54A5r
+ E8F5FVqmv8o5huyqiff6SFxqqXCPdQSI3aDwBtRJh8MwGzNBKTd/KQQVThNT3PDX
+ km2V9Fq2MoIoKYqJkX/Qy3e8weqY+mBNXFEDlDr3lyRSFT+R5WSXH5WPr3hYcGHW
+ OtRgJTTrlrFfRA8RVlkk5oPg7ZjtQg+Xw4zGC9kxTXk2uEvMxEZke+wtHWUYIHlT
+ mxtWLGjQIh4OPOwqlz9eM+4DiSrru26OUiXZu/KzMXpGyfYqhqPqRKrpfQyVzc2N
+ AYv0deluEZY5FiqaCd+Xn5ywC16SNxDG0uIjsWJlUNzuYVMlVW2F+bQJR2I7tZ/S
+ XAG9XxQXz5+sy089kn9m15woYfvSCvf+GAJl5df5FTnenjZyS/cuC9L71eTtPRpQ
+ EWdwJWVk24uZ7ZXhimnexkTQ+p1HNLCNJ45orLd0kHYYi3aCmQKOINOIFqga
+ =mRPc
+ -----END PGP MESSAGE-----
+ fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
+ - created_at: "2025-05-03T20:00:01Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAw5vwmoEJHQ1AQ/+KFwDbiXnhzYszP8By69MKyfWqmLbLW5V2yNxY1Lb7wVp
+ kzRXZmrRmQ5cTmo8UcPn7+V0EWTv10RvrBc1wEsSNDRhszAvPBdhiGH9QeqI+R1M
+ t7ohFuTKtNEgg1fEJv0mHF2Dl7pg/nDEs2xYhGFLa6gHQH+rNKDEAX2Wr/JlFPIf
+ Zn+uOx2GtkfZHQs3vQ088mhfvMaIrSMozEDnFHKSuc4ZDh7Uo8+tfeSyG6HFa/oT
+ t4k6xt/0MpHEvyEStdlR8lcF69o82DHEBI1IFSR1tu+80X10LT6cptI37H7Jo3vp
+ eLU7I+BDHKX1T/LEF702wabm0H7A3eaE3RLn8LIM3TF7KAW/286TQ6aSA4KHRMpO
+ Y4cGLkLuQsg/HQaeAYLepJS9qOS68xLyHFSUxKK9oLgr77WvTWt8kJC2TwRKTSeA
+ hrBDuPeymU/0ljub96YXBvA27QgeGQxyAII2rBDxlrlvoiLgbEdF9LzzN3/l2oXS
+ +GTOv/odiMshSXZtjZLC1bSjRlhepmXOX/rc6sIBfbFU+4s+sQvQiIrugqo/bZZS
+ cmHT5SbRLlknTLTMibu3iJYVLgyK1148PeFimheS/xYIiMJ8a0zXMAVVJa7Iw7je
+ sj8Jglvj4Jyerx0EHXIBbXaZ0tmIM0colGDt3WyMhZ786Wsaf8Tm2vg4+vXofdzS
+ XAHAUO60LHQdnyFNMMICfhSZBCewnzGsaf4XDtbhoC4MH4KMboRfr3Lj6yPHSxAL
+ htSlOKwHJ1mtKV/j3aXFr2ckSIjBk0O7qe+NhjgWyn/ei2auMzUAYh/gpMKg
+ =cR1r
+ -----END PGP MESSAGE-----
+ fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
+ - created_at: "2025-05-03T20:00:01Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4HMJd/cQYrVAQ/8DJhCD5zkRdM4yyl5uIZV2k7WdA+aTCtGR4+lR6aKKib1
+ jNnzIT4C1tBevolfv1Qm9h0/dTvre9DmhuQzKv0/T83h4NzWVQj+U/0xDuGuydJ2
+ NGKwWP2svKf0pF6LcCfsmCIjfENgjpMvp65wDfQlHYCP1VcyRcKINRTVYHSX8bGH
+ LUkMiW7zy5gnV1PWl9oRsIG/lVGvVB5uKxv6LAPj4wFAEN+fIr2x8uBH1DY2UFyI
+ A3gfuSvKFmcV3c6nfmhQh5ywxIU0oguuwZOs8zK9nx81RmmiJvf8VXusGtZH4Hfq
+ Gx0GbpzoMZBmKxgiOQ+0HwV0UT2upEIYPnKb5sZyaLwmxnKW7FPxTwo6vN8QzJjy
+ Ep61YFv3Sy09RccmGHJsr/FcDdfP4W7S1gIJqO9RgFcC3pJh1CZvoc3+NigsoyeB
+ MjRBQLA8eoO9AEvH5RMtiGyJPl/vPrc2WlVBy3TaRznJIdUo+WuoUvaW+QvWdulW
+ F4XXosgoaeyw+AYSA0nEV0qR3YZXNkJY/+r/mZGfi0SIEccztlq/BPtpMDgzxYjG
+ mj5GvT6Xg4q0F8RRfZLCqQ7yRhFBIsR6+BIJulZj35FELF5oFAvB7fxdZ2gHChWs
+ fg6kTRI4QcTBLLkoWHUCgrpEw2+O2UXQRSZZaiYmhCb3eynShBPGbWPpbXAPKmXS
+ XAGFafpworKosNggfs3piWGs2b7MV83tz5uf7e9QPGs+c43JXICuQS00I8Hgnwzj
+ ybdbM1m9bHvKucH2eWU9Ks9yPreeIbCsQ8MlSX4RyIDcECW9eFl8rtfqC6LF
+ =h99J
+ -----END PGP MESSAGE-----
+ fp: 91213ABAA73B0B73D3C02B5B4E5F372D17BBE67C
+ - created_at: "2025-05-03T20:00:01Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxjNhCKPP69fAQ/9EkRT4O3pmCq11RH/doz7eqabPGWwSY9mpwNZJVjdP4Op
+ +3zzTeNAu7+Yr62g5LhkC/uTu5y4BCFHHuuRdevLtwFJ7H7avACQF3hK/bM5rjN1
+ MsdnkhtNpyvBKV+RaE78Ji3/AuguEBenwLhwadwFWuUItSfmAuaLKTQsotDZFzh/
+ VroiTqtoLV5AxYTluNoWK3+N0TG/z5nMg1Ui5DiWlwJ3Tgg36SxqogF3LKXAqZVJ
+ 5X7TLSivxptgmugZjua93iqyBCyNlktj/dNrqd0/YIg6xsznNcKsN23jQgQw2Ku0
+ BcdO/WgV42hntzEo99iPn67B3S0O82H2MKno7AsQ9fZ9UjznQ712S547656PHYAq
+ gSCSolaI5piDDPLPrp78jm4MTIsnfngaslyPK4WzOIkq0d0kPA8LGwhtuIM4mEgs
+ Wu33Ir9N2yeDAE2MnJ7ySv9fSs1SJenw9jijRywCgy/vDvQaMa2czp/kqflhW43u
+ HcVrW0Tc3FHz8nIkDya0QXrSt1fj3eLREhNinbr+G63uBl5UCLcvh9e3sxtAgSZu
+ XtHi/krLkAS0r0rv29y6ap6adtY0VloBgOxZhTYPu66Pha5werFAeOGdXX/ONdTC
+ ql5KDMMEa218/ORRDLeexmR2PrrLgsDp4NTtiUw3GnYDN2iDO5e9xEBtRiWAgiHS
+ XAFuGmfCQyTR5qXCFT+ZCa6eKL9XoOlSa4cbef4HrHCyLV86BSS2eLQ3/kr09RGw
+ 6AwV0PJAKhtCSk1F4OywOnJJXyrk3uM3hcFKs/+ciwuK4qVi1YdKocuzwbXN
+ =cvH2
+ -----END PGP MESSAGE-----
+ fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
+ - created_at: "2025-05-03T20:00:01Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA1Hthzn+T1OoAQ/+KXpJutmLY2Kkf2DhxAaq+/vuIhlT/pNAb4xbzzhcOvqF
+ Kv6r/y4qj/I7Q3QTbSX9cnvYoRDnnBA6WTAKCs0Q2SWOK//zT3IZ7cl+hHaVcIK1
+ SFcog5hwPOyOe1RJaP4tQzj3Ja8G/UxA0DbtSIAkZ0srDcv1nm8+JXMiw5iJkQ+0
+ AZvmTIwDsGqmWWAN5Q3sl5eJE5qwFqRUrRVc4xCNwYLUYG+8iinFvBI+0Bn2+yNs
+ JnMeFDJaatmSZUv5qVUpYZ8dX3OhPhSYzRbmiDKr3vGsKtl3l2BGE1CUoXQvctDr
+ YKWvl2aI9gP1u6T04yAuZBnaX2UwWq/pMvlVghQOfBvJv2R7ScN8fAn8RM6PYaGz
+ HSAP5Iit+45/i7GtPpBAB0Oqd+6gtfF67ujMWDB73AFRt0uKpLnwQnYbs5m9YJQT
+ Pgq1YWeH3hA0amlseuf8AZjkZJr/IqBhGvYD6zm90nWTbZHMrcKDSlL2D0QwOuas
+ u4SEwpDPzanXyGF2wRAm134ClYljFwLAjoVuk2v8BEtlXNCz7bcRuFVkHLHsFGGF
+ kczStk9y5BUn3Gwl9IvypO0dfsRYBYWdiu/GnZptiFyJ+m64mFb2cUdu+FoiQcyj
+ fgz4eWg6FxPWdwc737IisbFCfo5qdR1tfiusPuiMMFgpuV0rlAkIme9QqtYhZSfS
+ XAGLUKC0wQ3nwlXoV5P4ixjH5wFwkUnUJjnYMA3y+CxWks83LkXW0SqDPTTIuUcs
+ GYaC2uxr60JFJqeGz0PG6Ul4AJX0iXCrzRaA5tLRFH++esQr1SUYuExSOuvl
+ =jQg1
+ -----END PGP MESSAGE-----
+ fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
+ - created_at: "2025-05-03T20:00:01Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA46L6MuPqfJqAQ//fVJ+MdZXrxj9XTS0zIjnms1IjdrvQSe1KDQPAM+4v8Ef
+ d+8oE9uKBOiPvkfLK9X/soM2LVi5knOcjFIVe60/Gy+/RBLGeemga9lJ8YP3O2h5
+ bKlErkYTufXW4V8ieXciAcbK9D4Eh1UOt/MnAMy3YgQwh5x6uNTvHjhNPk5JJt+R
+ gsL8pZ86bbSfyXLnR/j3eO5m/vUfE9j21rHrsB0Krj1McWjCzuvNg5zsmyzs807j
+ ysqyj2XLBiK2T3+86OV0fCjcZ/padeNE8y4nVgpIqTu+nPk+qwsUYRwBdPtNgxmx
+ ApRPiw+6VdOIWasd/OVG8aPnQPgFfOyqfzof1RsTiYmixR6hnGZj0skCCkrcl85k
+ vPZECREW/X70Q4jCJd65Ca2vfHwukVgsqRjkwfIatvE+qOv408NJFIFArwwdWPa8
+ SQmia0U+/ESbQOGY5jvGOLWrYaGwPm/t/LPDaJbEp23DmYtAiK9hGG7IQIpG9+cO
+ l3Edtxki1mE/wAnhQcZC6aSYHPrT2v52kACiV5V4CB3kZR/anqho1Diaj874N/IT
+ g5w/CiFysOAb9RKydWTSPCSPjDJRGtvhjeZAyee7ejl7ArJbsoZ1t4+gDaijIOGF
+ v59+SJ96DccwjWjAHL1M6jxwn69+clcfRNnBTdTJIHqllppa63YYiVxjCp8yflPS
+ XAEbxPZ7/dxDXMmq0StTPn1hxeZgLcipx1NoPLzRSniZp8/WzeG13lOb7RzRZOyo
+ sWU4rT7OZuhvT4dxDsOcnMdfZLp552ipWUXjXfBYQrW/0ct3fGoQfixuepiR
+ =kUQT
+ -----END PGP MESSAGE-----
+ fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
+ - created_at: "2025-05-03T20:00:01Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4EEKdYEzV0pAQ//Rods7PGeRCDf4YLwRBNPQFfz67K8es53RmWZ9oCKiLyA
+ gt9cHF4JeMgKMX20LtF6VUFtJjT1SjkVpw9z6ZDkVMj0BjZ3OPH43mQDkeWxHuwD
+ /CIkvStntx3Yn7vruz/PT8H7Jhfj9oOnaS5pgHCbqmadq/k6qE886DXOXAeq3R7e
+ MO7/3VjsSbdldfJHXVvmsfeJUdwGkXjJUCiKjnpY7ZmQeSqmDjKHOKYlhseowCNl
+ AOK7Nfq6MhyQBlN9FQh0JAkG0cBYW4sR3zvoZCbxMY7siHH8UkLPzltSTFYUW90P
+ YWdyjr1hPJkxUTWvq62EwM8vDuUFKwaJaGAEk91IgqIu0d1d30cR5UxJB0DOoQVb
+ sHUD84+zTrQuEwDixgK3XZYBW78WFM1vUCHNcA942E/hEQkjTz4zaLB8sPh5wAV9
+ RME8CNcqXAecjCtQu1SHWUY0V2jYfeDkxvvfjuscvFpyobwiKb6cFKDshygHYa83
+ 5lwJNmwaLfkZbyN0yOh+sHl/RotpVgP9UcP2/+zLW1wGb+EP91VUe+cxo+nrtNaA
+ xjS8u7yjx5jTdxb5k1vPfaWLAGQwjowhN2z2ht741pYJHp8yGGaQNblyTOm0YAi3
+ 6Qznaog128dupKKfl33aPttfCATcS6EZGSwFogS70GFWXTPKu+I2EleUjgi9AQfS
+ XAF+kDjRMiR1IiKQkcVichkKo09P+2rBD0puo17nE4v1DPeu67f0UgElY/dcmHuD
+ anxTlCt1Lspqf0G1EjypDIlHtVgUjPpsudFOSSd8QqUjHGUMwEW4CXaD2d2B
+ =EZSN
+ -----END PGP MESSAGE-----
+ fp: 9DFA033E3DAEBAD7FDD71B056C7AAA54BE05F7BA
+ - created_at: "2025-05-03T20:00:01Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DQrf1tCqiJxoSAQdAzl/SXf4vnc/vpZMYZVjV9EkRUIs4G+11iAUGFgTMoG8w
+ Xnq/dLi59VpKcXwBp6+NQy+OchDRNfVwxcRDUBpetOwidt1D4K9CDrEt9vFDyCJx
+ 0lwB/fJHu88keeS7s9jD2nNwGeCuZvdlnIvgag82BnGkd5zYPYnjA0lbeUXywuaa
+ R17Y5caW+N4lslwxnp6UDLzQWJGl9HcRwK5kbxRH6HaYkU6CyFL5EOKs7w88dw==
+ =HvK0
+ -----END PGP MESSAGE-----
+ fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
+ - created_at: "2025-05-03T20:00:01Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DzAGzViGx4qcSAQdA4zyupzL6dLotZwQQC/AZ2vklAGwbpaVu9XgH9H4WH3gw
+ SG74mn/Ze5YJYR1dOfEKmk2/mFZD354v38nf1N9NdeTpRT+3NVXy8EYHu7pGNHy+
+ 0lYBT0Bm2ZFxURsAbGtduD7SUR/Z7cbq4ZouG3Q3ZOvOLoIHDcsAohfr45vvqa+l
+ Yf2JvBgpgietM7OP6KBJIrAmfZnMlHKKcMDvvGO87BcOQl6qgjiqkQ==
+ =tZvL
+ -----END PGP MESSAGE-----
+ fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
+ - created_at: "2025-05-03T20:00:01Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA2pVdGTIrZI+AQ//eNA2kWh8DCMa4Eed7zagOMM1MSmCbX11NYtqOWEaN1mL
+ dDSNwONujGgLDJWJIWOvD38iJ13ZOr/R469n+Q0yFlSj5M9ARfXtaXgSB4vNkOWK
+ OpPZZJUo0rC0LA6qLke9ZV9McbaGGgfUrAtDd9CwO95h9LGD/i4GoHiwSbOz9PZr
+ V6jZU0AWr0vVL8jjdRWoZ4U/C0NqngxBPqaZPcmwdRQoP2P2gP+yt5cbULYrk64+
+ R9WL+m0zZaIp+fhZjZBDzgBb0//FxdMA5KyhX5sMn8gkxwjV5+at2roqwFkawnjV
+ lRgVrKWr/wo6L2rnqp2X2VuuU84EnxSw+jOWpc8Q1HNIlwKte1dfp7QigtEjqEI6
+ z120khHBydlyqel5kOwFqr/Mrem87IUjzqAJdxn/UHolEMoLpVXQofqNYIwXUAWd
+ iEuAcGIXXVwtK9GMBhDbM1RbGc1ELvwjllg3Cs2cFzKHhAcFV8wuNufwZqBd8eo7
+ B5kY0DkdJseV81BauaqecRnTPQok8ELXZLQ0+YkDfrTWUu26oPz7kSNXOeYby6m9
+ qkczZg/qiyxi0BnO/QLasUPfG9N83zessGfwPw+t5AsIhHbHSM4JdfzQObHDgSBf
+ QGiso8QjBmcLVnToBIIZriYqM7svtoykY3Zrh58MAl4/Yb/fNNHvB8TyBmP5PCbU
+ ZgEJAhD0xdSQDsPzXxaIeFEiHOey3p9eP78OwwgQxo/RzAHw+4FsT0w8ncQc34M0
+ xaJTV3Fl6rfqCjEghRPT93AhLR8EU8gsPGf24qFImOBtYJoDmixMkjaR+jC+pE1C
+ Icw7BRUf2g==
+ =v352
+ -----END PGP MESSAGE-----
+ fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
+ unencrypted_suffix: _unencrypted
+ version: 3.9.4
diff --git a/resources/chaosknoten/keycloak/docker_compose/compose.yaml.j2 b/resources/chaosknoten/keycloak/docker_compose/compose.yaml.j2
index 227db64..366e94e 100644
--- a/resources/chaosknoten/keycloak/docker_compose/compose.yaml.j2
+++ b/resources/chaosknoten/keycloak/docker_compose/compose.yaml.j2
@@ -22,7 +22,7 @@
services:
keycloak:
- image: git.hamburg.ccc.de/ccchh/oci-images/keycloak:26.2
+ image: git.hamburg.ccc.de/ccchh/oci-images/keycloak:26.1
pull_policy: always
restart: unless-stopped
command: start --optimized
@@ -32,11 +32,11 @@ services:
- keycloak
environment:
KEYCLOAK_ADMIN: admin
- KEYCLOAK_ADMIN_PASSWORD: {{ secret__keycloak_admin_password }}
+ KEYCLOAK_ADMIN_PASSWORD: {{ lookup("community.sops.sops", "resources/chaosknoten/keycloak/secrets.yaml", extract="['KEYCLOAK_ADMIN_PASSWORD']") }}
KC_DB: postgres
KC_DB_URL_HOST: db
KC_DB_USERNAME: keycloak
- KC_DB_PASSWORD: {{ secret__keycloak_db_password }}
+ KC_DB_PASSWORD: {{ lookup("community.sops.sops", "resources/chaosknoten/keycloak/secrets.yaml", extract="['KC_DB_PASSWORD']") }}
KC_HOSTNAME: https://id.hamburg.ccc.de
KC_HOSTNAME_BACKCHANNEL_DYNAMIC: false
KC_HOSTNAME_ADMIN: https://keycloak-admin.hamburg.ccc.de
@@ -46,7 +46,7 @@ services:
- "8080:8080"
db:
- image: postgres:15.13
+ image: postgres:15.12
restart: unless-stopped
networks:
- keycloak
@@ -54,7 +54,7 @@ services:
- "./database:/var/lib/postgresql/data"
environment:
POSTGRES_USER: keycloak
- POSTGRES_PASSWORD: {{ secret__keycloak_db_password }}
+ POSTGRES_PASSWORD: {{ lookup("community.sops.sops", "resources/chaosknoten/keycloak/secrets.yaml", extract="['POSTGRES_PASSWORD']") }}
POSTGRES_DB: keycloak
id-invite-web:
@@ -76,10 +76,10 @@ services:
- "IDINVITE_URL=https://invite.hamburg.ccc.de"
- "IDINVITE_KEYCLOAK_NAME=CCCHH ID"
- "IDINVITE_VALID_HOURS=50"
- - "IDINVITE_SECRET={{ secret__idinvite_token_secret }}"
+ - "IDINVITE_SECRET={{ lookup("community.sops.sops", "resources/chaosknoten/keycloak/secrets.yaml", extract="['IDINVITE_TOKEN_SECRET']") }}"
- "IDINVITE_DISCOVERY_URL=https://id.hamburg.ccc.de/realms/ccchh/.well-known/openid-configuration"
- "IDINVITE_CLIENT_ID=id-invite"
- - "IDINVITE_CLIENT_SECRET={{ secret__idinvite_client_secret }}"
+ - "IDINVITE_CLIENT_SECRET={{ lookup("community.sops.sops", "resources/chaosknoten/keycloak/secrets.yaml", extract="['IDINVITE_CLIENT_SECRET']") }}"
- "MAIL_FROM=no-reply@hamburg.ccc.de"
- "BOTTLE_HOST=0.0.0.0"
@@ -96,7 +96,7 @@ services:
- "MAIL_FROM=no-reply@id.hamburg.ccc.de"
- "SMTP_HOSTNAME=cow.hamburg.ccc.de"
- "SMTP_USERNAME=no-reply@id.hamburg.ccc.de"
- - "SMTP_PASSWORD={{ secret__id_no_reply_smtp }}"
+ - "SMTP_PASSWORD={{ lookup("community.sops.sops", "resources/chaosknoten/keycloak/secrets.yaml", extract="['NO_REPLY_SMTP']") }}"
id-invite-keycloak:
image: git.hamburg.ccc.de/ccchh/id-invite/id-invite:latest
@@ -107,10 +107,10 @@ services:
environment:
- "BOTTLE_HOST=0.0.0.0"
- "IDINVITE_CLIENT_ID=id-invite"
- - "IDINVITE_CLIENT_SECRET={{ secret__idinvite_client_secret }}"
+ - "IDINVITE_CLIENT_SECRET={{ lookup("community.sops.sops", "resources/chaosknoten/keycloak/secrets.yaml", extract="['IDINVITE_CLIENT_SECRET']") }}"
- "KEYCLOAK_API_URL=http://keycloak:8080"
- "KEYCLOAK_API_USERNAME=id-invite"
- - "KEYCLOAK_API_PASSWORD={{ secret__idinvite_admin_password }}"
+ - "KEYCLOAK_API_PASSWORD={{ lookup("community.sops.sops", "resources/chaosknoten/keycloak/secrets.yaml", extract="['IDINVITE_ADMIN_PASSWORD']") }}"
- "KEYCLOAK_API_REALM=ccchh"
- 'KEYCLOAK_GROUPS=["user"]'
diff --git a/resources/chaosknoten/keycloak/secrets.yaml b/resources/chaosknoten/keycloak/secrets.yaml
new file mode 100644
index 0000000..8125ef1
--- /dev/null
+++ b/resources/chaosknoten/keycloak/secrets.yaml
@@ -0,0 +1,242 @@
+KEYCLOAK_ADMIN_PASSWORD: ENC[AES256_GCM,data:ifiyV0ywHLiYIZfgo3LBsDu//d5B2ZKyysnUtXCXR6hGWJxQwM4ly/XglERsRNRwZtzWkndpLfXWxlMheZJoMA==,iv:YEjrBPoeqQayEd4rNSNpD6Yw0jgQsOQyRpDkv8RKiEk=,tag:KHf6eaeGZSuBipAPKBkB8Q==,type:str]
+KC_DB_PASSWORD: ENC[AES256_GCM,data:h4v+6xLolQN2xWEKTZvrucvqFCUtqnDoSaoNfsXnktyXR5/vjjvqshpsyu6xGA9V2V3RX7BGk1nX9eooo4362A==,iv:Gvvz+r/gNEMAD0xJdXzNQpkhmwOY/70NQXYtJX8CkJA=,tag:0cj4qsTlYsZn7bz4NZDp4w==,type:str]
+POSTGRES_PASSWORD: ENC[AES256_GCM,data:ihYTt9hd6RJNtWEtav5Cbzz8m/qUIw8WGTwMcU98f5wkYrMTd5HUjRjiWqcx8OaamiCnL6p8u9BBEerCeqeq2g==,iv:4F/sKKzaRiIN47M1a+gGhGMiexNp5x5l7UtPasbWmCg=,tag:3QsaYllKdkPyjiX37yICUQ==,type:str]
+IDINVITE_TOKEN_SECRET: ENC[AES256_GCM,data:ZtUiwOAUST+QmR6I6ZSJ4GoV5qWvcIwZ7w==,iv:1XMYhMInEA5pn6PajQ1GToS4kCUAH6PGZOAA0AZAQEo=,tag:xBbGgvJZzSaNjJI/QKhUig==,type:str]
+IDINVITE_CLIENT_SECRET: ENC[AES256_GCM,data:/3U7brcOL162xh9vXPW45Me7+yun9oHVCI3LLbbq8cw=,iv:+SyhYlGiFro75N9LuoGff5QLDG84GeczeYWQYJ07Li8=,tag:9QlbjBJgyt/+VbzLLWWJWg==,type:str]
+IDINVITE_ADMIN_PASSWORD: ENC[AES256_GCM,data:xIxVMTN5rNZ9LuxqLMF9veLbpjqdSAHDRg==,iv:FctE+EIvL0c0RjANRDYk+6gZ/igxkEmLJ+Y371gMXOU=,tag:txlgkIVVFeJ6pXFG/+Z2TQ==,type:str]
+NO_REPLY_SMTP: ENC[AES256_GCM,data:2XVjIt0tYZnjMSKP7rj+Gg==,iv:d/OFKnCwElUD05cv1XeQyrCQuhtf1JD2rRe5QI7T1P4=,tag:LQAhTYwIdoR+sCNfVh+08w==,type:str]
+sops:
+ kms: []
+ gcp_kms: []
+ azure_kv: []
+ hc_vault: []
+ age: []
+ lastmodified: "2025-05-03T19:52:12Z"
+ mac: ENC[AES256_GCM,data:t7Tp8G+2lEIyqy9SYo1cWFpXNJO0ekNsYRtlhizHAJ8VUTjJgQbVoArQygc2XQJWgbploJCTDxOOFh9aphV333OUj376ZQZjwg2msIhNSF/wp8gKw6GFIrqNZWLYR3zcvFdiARKJo3T5vIYmPRLVl0GwqVlIvBRuHOSjHmOeFDM=,iv:IXoOVkjWiHTzWTrWy8QH6WfO9bT6aIIrd5KU8pIeZW8=,tag:me7pC6Zu1TNqVlgyEwrhwg==,type:str]
+ pgp:
+ - created_at: "2025-05-03T19:48:44Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxK/JaB2/SdtARAAlsCecsUz8CnpckiAsOZUe9MAFRZiSLeErMmZ6Bh4OzYa
+ PGeYuz4lSVq3RBkd3n7s8At0c96KE5Q9hgqXlBhaZVO5OXZm/pdSo/jykxDOqGgp
+ IGyEwJ9cvH5M7XfZidLMbj54+1BzA9/AW3iFSeQK5bbAi9KYmIzBE5VoVWXXixpG
+ czWV35x/6/rOhCWYZfr5JUM8PSSW8lhwlcA5ytoHAo0sKnbmOracK2apSJ/w4SBu
+ VtkpwzJ33TUdMqgFXkXIoGqHYE2ovH6GUktQzTY2AchVcwkOqoksD+mHnvy3GlY6
+ 7Kw5ymKnOuOSiJXWt7dG9fVLKT+32m5NeiVf8FEx9vvz3hfTsTwXD2uet1BFYHC2
+ rXVDf2reKojL4EulBN/2r/sL54tPn/YfkdQPaQVIo4giq6NZ7wR52I4bLys5jOc1
+ l5wmKQqZcTVcIML0V6qTJcP6DyhspSpysoGOdr4j4rlzSctJPs5HGu5WGywL+fDj
+ 9+KKSYEotGMrOzknwFXCbAER1GFKOVmxyLEgPYxWJa0z0sgsyBU0FtU2j6l057S0
+ VdVYEtzsamVUztxaJmKu4ei2hUBXO+PGYCdQH7ZX+uuBkHWWAVzUSspoe/3ncvt3
+ 2HAX/+dZzGw4HE6pGChPABSI+txjwbeuyi3iPsBrby3GKv4yafSWxKg1RskDxRHU
+ aAEJAhDOhd391/ZDtMkT1Cwhf8H+U/aJDoeezvmHL8BMSIKDKOLhngr79bt0iY1p
+ 5uCIIMKO28SZUAgRPkGZVwTlLEuEgXPOeG+AFzkGUOuBMkPAIAJucXTS1Q1VyUaO
+ YP2rUyEAMxCo
+ =G/5o
+ -----END PGP MESSAGE-----
+ fp: EF643F59E008414882232C78FFA8331EEB7D6B70
+ - created_at: "2025-05-03T19:48:44Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA6EyPtWBEI+2AQ//bMTtv14q8MsLrIkyOW9XQroCFQUAnokoi6sv3d/rgWzF
+ ViQ4WHIsFYZ2HrFd2yPLweE4I4gbuyEEJAw7DvQiNSkME7zO2V2tovX1IXbzu7ua
+ 9sfykiT3vImd4LozPWDHR8FRdF/3HfuTQgYd5Qi7LrAj4UX0zUaMOE0tW4WJw6+J
+ kvgqErRgU5LYHD+l3b+CkR5tGJqsNESRGxbcRfMg/AFdeR3J2dwUV8wNI83WSGRI
+ xRU2SL46HLtx/RZ1Zq1/Q9Aufc+4UqtE+6PK4N2BuerzzXumqjO2vEda5Dc9yfww
+ 7e8l680TQLXtWwZozbIn37XOvDlYaQBO9GeDyZknNNPiIy3jqqZHvfomSRka2QOq
+ 7xitPGCgW54XxZRO39aKFCOryqzHfTPbHRTQvPfM8OYo4JaAmOn4hIWqIKy0pD9d
+ gsZLJ/YyPx4ZONgwcz2Cz2dLB6wC3pEagNKBrvgREmjaxTDEB8IStbL1AasEdJ7j
+ nSxJamZU0MK55IjdU+loPsHIK4U9dGr3MFHxpiLV73APcYprgwRwjmBU7MJ467Zf
+ kZFwmHDCFpZ7u2mWzxL4eE568a9hb1yiI2nNrsy7aGC50TTPPa9ErXOFd6Kbutlu
+ kUzFCZb6xd+SakuL6joTo4Et7DJNZ4nrJZwN/OSuE8ZTiGdH7onUM0UOlMNoBgLS
+ XgEytV1eo08+agpBece03q82iGIZ4fN5t3eYEVqbnr9+i5I45txR5B6lHyz3frfN
+ IpImr3kIDC0NQslUO0P1aBYeTeRc/9TWhPhtZS1wtIlURdFyLjUQIbnqNkRzDME=
+ =RY3P
+ -----END PGP MESSAGE-----
+ fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
+ - created_at: "2025-05-03T19:48:44Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAz5uSgHG2iMJARAAsfjYIn5vhU5mjI/IkfYl5sdVquNI/f3boIA3hMKZdwqu
+ UrzVysIfqZLBACms27s9LPQNpeccQHNWQFdWzmNWtx8bwGQRFWjPgERJ0Uin/M5/
+ 6ICE+a149oe61pE/5ixQ9AvZcMIUF7iXYqUT6yODxgKKnvprbSNNr5kC8RwACHq/
+ KRqpZ3eZR9Trz8teOBCxwh7tJx5PzTPT5QbGeuLKlSd38RHgo8fe21ffVTYtDL7o
+ t+uglJV33H4diQRvciH5hO/mpVRw2EBnmITn5dWSunSx1mfMVrOr/lHsfiyoEEBs
+ 8xmmNd0oaN0M4XYx7PNh7YMGaR0SgDcEVI5KmU9hNwDG70o2RIT7OrI5W2ccJLGS
+ TyYiPWAWgfVfniXA1Ydjkwkd8x6AspBZQMJTsNiaBs5dk47e4txKQshSOpReZHNz
+ Xv7fHBocsSlFZRl0ydB279L3Z4q8aOFKYMIw1N6T+jwhns0zBnMRj705A/z/lXqI
+ 22x5gOY4uFcFUm8/GtWrh7bmN1X5R3fIehP3qposIpeBvrCi4MFoIpcltbiiPkHF
+ ToYUFtO5/QAdhn/RosJRljTA/DFzOnlzuGuvov9XbeuJewtR+ZJmpEeBe+Z6tN5C
+ dCIMrjFYNndHbYHF4ztAu6PT8Hzq1nw4sTFM0Fyur3LIQHd7F9aXI7+oQugczfLS
+ XgE0L0AnLJRABd2Pz1IibBO9Y+la2xaCpqhxw4C2ohdusIGSfcz8aqvC6PYviovA
+ jZ185Bxs2TyPwqPxXve2h0zvqbpaOTmc/0PVoRQEVXkrkL8FfxLxPsJss18hdos=
+ =mqr8
+ -----END PGP MESSAGE-----
+ fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
+ - created_at: "2025-05-03T19:48:44Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAw5vwmoEJHQ1AQ//erl8qaY9wijgSKKu2xGikhQQz7DkYq0lCZ8KrKyakgLA
+ 2vyuFg0+b73/jUd81Xy7j168SRW6GS6Ms/9v6lgGjSt+e51b1nv6G4ob1+KEqu19
+ EbTRNeMmTcFoXVMuXL3C2PWVUAE5Gs4POZai18eegQtm3dgOax5/25FvNZXmsoYh
+ NYr6+vdZw3Au8KZdFov7iMK0/GX/6GR6XJj5Vlv3SMF8GTCxOyeZwmkk0ud6/5Gp
+ amnz327woNAs0oPnoJ6cWO/zlAYb7EkmMfbKG0/9EFErXYkC6Y8N8LrGtOpZXHJG
+ doFot4TOPIJGiDbTL6D4+QnIqVchym7JiGmYUGxdzmEXiwe8AO6sKJOR8kZKU+1G
+ aSHjpq96IvPewBOJA9NghAI9JoCsWXtqYlpTjeiTXciHqB5NZSgU133R/dqZ01r0
+ k4iP1I84hbx6XSdxejySFX9Vscf38WhEfV+KgM7xOJhDTJ8HozQQGj4OpD1WOL0Y
+ rP3y58uLF1I3qy9V1csoJtq/+no+cXx3mohc+iiwXQyhYAJML9pLBbnmWJo+O1Gx
+ hHYbRDmBM2Qn5TYq3fPOPKNFuKr4pLqz4jy4JC338hTamGQNjbNP/BCCQQJOGdRr
+ P2klOkSiZepkLSUSbLVlpZWT/wAqgz2JSxsCENoMUuwPvbK6m2cMs/9A/7JMWZbS
+ XgHCqYLJ30G9mtGc/+dpFk6xzpKg9SHHaos2JV/TuqU3O1KetAB4TUEAwLOj1c0Z
+ Kf0HlK6l1J4ya2RQqiK6Inek9/D2+KKcvmcMD7ZYQlyeNkLIzKkQIztHS73AuUs=
+ =14aT
+ -----END PGP MESSAGE-----
+ fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
+ - created_at: "2025-05-03T19:48:44Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4HMJd/cQYrVARAAnMF45HC4rYs6NFlsOestm2UrYTMRTkaQh3Sg55c3E1wL
+ gaBBuzfgZt8Kwv27d3Prbu8joawbHuFVEtT8n9qW7EYRlkmwX+HptrvBLWHvCGfR
+ L/rqCN+6HUJlA+L2RVpcl3dWcI7g1n2/P0+h+3V8z0AlDIWXO71vzX40EsNt5oKW
+ FHxEw+0bPEHhrFPJzf0HQgp6XBh60T98JZKi5zq/MgbLreLkEswL23XdiR1diFN4
+ 0TCPivcJ78bBpONRvd6mlD2gFc0YDACHCsFPZRL1pq0gxvE1ZNydGkTkjgiKY6B3
+ 3VMjWz2wTgiXqArJR84O6qfjZYX1eP8Qd/+jjvxuUGhax8LRu4J/Ccfqp3uZD3oR
+ N5ITo7kjWGmdrXCATGLhAD9aneWuBlyHNJfwHZxsf7NeL98d2tuYGF/kpBTy/5zu
+ F9MlJyTS3OWkSInWrB7XaRB5slSOCi1JM5GvlEooklVl64t6+yIxQf1UA8LBaMOV
+ vZ4Zngcr1FF3CJ4m3yU/WhL8GSuySSlGlWvgfZNYsmJ20Q2AqGyVID9IKXlFNvWf
+ 04nnxuQUOmdwQ4OifgCMfvzcyt1eo7yXJ7pgMVT2Xmy6bTLZIrPHw33fP/C8cKCd
+ oiUjn962vNI2E96MDlTZxOrQhOOmSQbu4xbqiSSqEZ70xEckmjE0xxR1JwI3rSDS
+ XgGuitcNHdV1u00dPzY49PIQWk8wNjqKdHeZ8a5tAjdmps8ACHhL2dTd4j2pTgff
+ XfvVU4iwMajbU3p3HjiB7chmYQ+U7iC+CiFuAQbjklPwNorqAIcN5zP0pOJ6O+0=
+ =xD2W
+ -----END PGP MESSAGE-----
+ fp: 91213ABAA73B0B73D3C02B5B4E5F372D17BBE67C
+ - created_at: "2025-05-03T19:48:44Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxjNhCKPP69fARAAgaSoB6hSUrpjgo/QOMIQmgjPtF/KtHASST7+/liqcIem
+ iQeT5xwACl898ez2a1elKtgFYUVTOopuc108HyCGmFut2/T9u6uGipOfE8WGROu9
+ 72mx4hq5IGB6mVz3YIucH6NGCpH8lGnQvkeGydpYUUJPzbv9AWewn0IySJVnC1uw
+ UZy4h+mTSFH5Z4XW4JDnPXamfEwKTSHsbM6KHPvql+CLnJgwTOqln3vZeF0YumSk
+ iH1xO7OslluJ77jiZlcCfk1uJ2vMCDJGmp7DziMeyf+wTFckvjDnXG79AtQzQ+HB
+ 3fcymp+DMIJbMocGiwtXgpEv/4TGTrbhpZWE260ddmOlrzCakahjA6AjGubu6oeO
+ m6G8ZTnm0RCNvjmldykW4MZCIbsChZwKAQEOUymiX5JFa0ayZQq1CR1GCGwsU20a
+ odNI3z3hpJCwI2Vo21nlNc9hiUp+zA1fJteBDnCS8j8QuinFi9G6x0dT9P6i2+ED
+ yV7ULKsAemCzwQhhudYondo78E5lABgGxVKI/+2gkwZTIc4VU9/aRNftZLszlc+8
+ nRIs77btYflj9NiK2JCoxr57UpNq19JLs6Otc0vTOjtieG5uDl6RmYOvD9+A731i
+ rAAMbgtGzM/1dNnls4VpVko7b8elm+kywijXwSXUzGYXfFojIYcfrCOxmLgGBKrS
+ XgEyMad9QOGTFJZDtcBghfodvs6xfLSYwwT2tDWgSzW4GRmJfvb6b+AR3+4JZ+OL
+ QQhUFVWM+rVHmAfbnLSfPbLVJFrOPjsTiCOk2onJjiRv8MHWL0QoobZvG/1/zhQ=
+ =87lW
+ -----END PGP MESSAGE-----
+ fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
+ - created_at: "2025-05-03T19:48:44Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA1Hthzn+T1OoAQ/7BqkS+RsQa7o8pEN3v1OHEMgSJvwmoP/yoOuXycv8tAQz
+ VWxrmh4oYlrOc0xHKTotGT5IY9uJi062sVLbnqVwa9EQ96bNM/r0LleBOkO2LsqF
+ t4aXYKV2njzCb63QpjkeguHQtGi0szKWX+cny+AK2CuY3fpG4i/Pbn14fTE1kDlj
+ EZD5eXgPSeAG8lQkQazG9yzXOOGJ72mWn3819T3VAFYs7/cXBPYIwB5BD7EYAbg+
+ dG7ihiMbcz5b94EdkOTqauJKCTjGE3hsjjE7cKRt+BR2fHXkflrRW/ALBJSA2m4u
+ aDvjAPyvg5MIuJljQ0imXsUUY+aga9oWqfRFR9RsBZqXJD193HXzzZg+WrfCvI8L
+ fmnRDzEjJ7LYiFJ0Qs7SEuFmlTAa0bk5FWMtVmCjcTrc2Si8o7+yuhysPTIUKogE
+ QG65iUk7UozuGJapZYI4J46E1586R+LNi3MmKiYwvD06wprRKdJ3vUqTHzaqwqTp
+ S+RbUi55WciSaWs7EQrO042U1mgsyphG5cGpmXT6AvDwNYDrTBbBM1E8QKkZVp9Y
+ lKF5ywatwrpWyaxb7OMB8cWaK1RXjB3eDOSYNTUggCx0l/IMAKSoKuK5Qr3Tlcyb
+ zBENWNuO6WawhJMac7ZlB6s4SpiZxFMKVVBx1BdsNb/OY3L0BZmnZgWDwvggqTnS
+ XgFcVQFmgq+K2CcXsyiMD303sQmW5MHLrLzjUfvH4QRQ7mhDxLqeKQ3HTTB1IeKY
+ u0RE/XKAN68fVSeIBcgaXTNITI8TIyGCpXO+BWv9x3k/f8jwMuZjUUD7ikJbzi4=
+ =EwRO
+ -----END PGP MESSAGE-----
+ fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
+ - created_at: "2025-05-03T19:48:44Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA46L6MuPqfJqAQ//eJiqttBEkbKmuK4eov9Lo5ZyO2gOfnwJMXm/uFjaMzrq
+ VNsjy2PuYZ8TncBTqwDYhTJ4PsMpu7xm9fTBx+JjIhnZHTznQ6lkE/hEfFdeVPtj
+ Pg3cTO9SuK+DDYqxPcDux3ZBAt/VheApCLFQbj9wXQZTRo3rWUzgdeElTRzJUSKr
+ Z7yDahdie3roxRTn/yM20d5DuPmAP/ae9XxY9KnBC+utaBsWX0lv7kZDPaJQ5XBc
+ lZxk/cGn2AAXaWWzDbx5hYvoDQRq1ifaoCE2TMitXwnVtiTvZAxZS7LHtm5rx+gF
+ zVP/ZcoRMEFBS2CPunE3uEnYF0vux9PkvsOmE9Z3BbjpY5juOOlf+R0pcn1Yw6oH
+ Sge6DzcJScZ4p1LCr5/pv8WlE6roIpA/YswYKY96+GSmfHbLi4YvlBxrVYJv7hNP
+ Y2Ce8hcmbiPkiJ83h2RAW9kyX406NipiWy2WJA6hEKNAkS67lhw8gn30/UpkyHNB
+ QBPQSiO+EvHlOE02UhYiRSyYa7sGypkNicEvX18U1VXLei7CN7Wq/Y0sm33Ebnx6
+ jh48vOdwKjc5dVTwBAmX6GtNkpXY/xuNipwtcwJKerP2Neh4nk25tKTjmTXP1e7c
+ 3Ka1Uur8st7UYHspeHSHJjnGgaSMqY7V2WsRzjOV8d32WxzH9NTCm0XgaxXkj5rS
+ XgFzvL4Oi6AwE7pU0OwHCYHCYhgI55jX/gBCp8eOWl/vzbAllXFZkTE+1K7zCghu
+ bmvxhcdGIHO1Hhossy3KD92njLvhGjcjtcCdaZJnDTKmYBzVZZ2ZiHX6vXYl7gs=
+ =inE/
+ -----END PGP MESSAGE-----
+ fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
+ - created_at: "2025-05-03T19:48:44Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4EEKdYEzV0pAQ/+MF6PrPLjAS+QnXkKQMVTSxo95MCPkQmXCPfGpxiEUFP7
+ cFCsynGmqpYvhPLJqxlF2FwC34T/1MGv9ejYECfsFHhTiUqr4u+OGEG+Y3HnOG6E
+ OUHa533f8uUFqhoinC2l6v7Ka0XZUN8U91NRqDlclzAa8bCVSYBr2xtqkpe/idIz
+ lVsnhnTtG0O05voztB2qd2Nhq/Kyavb8w4dunweXVpp5wTuVsvdppPfdK0/2kLp6
+ CO+2MeBgLHeb3cRcqgsVFs1j/iJyCSPDgvZK5hPm7K+gxL/KoBV3SQUM6JibFWt/
+ CxGVHCAdavBmvQUQpcJ/GcXO2z4LfRcsZlGbZY5hfQ8omb7QF5EYCtwtfEOGpPVc
+ ne187Mlq5PgqK7D6rG2EHke5TraIGtkzJxyM50v2EGNrANh787YOfPDWgwgw/OWM
+ 6SpfIS/wIGwvHMAZKPP0Bky5tmSePvk7xVVEq4TY7UBB/ndOCzz/GEyWjs2oifE1
+ o56dqsUgBiX++SrXxHldU8WqN7LHwBi+8HSFa5hi27gIMcGsXp8FSdnZb0u5CA3W
+ hvCswjwv8SHt6g/tpAkEUYair4ZELhJooPy6SemV1DLLyJmJmdObHeiE7pvqkh83
+ GMH7G5iwcHWcOWn08iFsubz6nf8XsJ43M5X0NO4XRF8W3HhIAqDGNmZU3C8RbMLS
+ XgG1DJ71CT8bACyUGxuDBsW9P0JJn3wPlcVzi4i3aSxY9mcPc6io8TzedOf/bElm
+ g9iFKEXxWGk5GgUmVWNGaQIwqNwG/OM3t19Tba+VOdWbVdBN84r7DcXGY52K5Kc=
+ =xcRA
+ -----END PGP MESSAGE-----
+ fp: 9DFA033E3DAEBAD7FDD71B056C7AAA54BE05F7BA
+ - created_at: "2025-05-03T19:48:44Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DQrf1tCqiJxoSAQdAcZM9nigmcaFdRVOWjgBMqN3VF0atnfy5Zw9cowdtnUUw
+ dROW3r6ukUzpSu6AU9H0jYVB0i2p0DSlToK3fR6JcESjoq4AnPFSZ9UwaSTzfnkq
+ 0l4BFK57V9AgtPnYWw2GdwyDCwkWGrraqV9LHFCgvkaY1qkioY12KgpnMjmvBOxn
+ HBWYuiOzE/P5iGgyZA10TKN5NVFY8V/99djYSMA2PgqdJ1VFS/CXVbeuUGWqt0pe
+ =Fdf0
+ -----END PGP MESSAGE-----
+ fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
+ - created_at: "2025-05-03T19:48:44Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DzAGzViGx4qcSAQdA9NXYBmSAcUPEkOo9bl3uya15K/V1euv2kb7hI0nAt3Yw
+ pJ2VN3shYfG6InaiGuE0fSZJ3kgxrjC6lRmoRzmw/Y6T4ijBpUT0YGnBw4Avbxdf
+ 0lgBEeBV6SFy6kQPJAfZ+6jJTc69bMku1RtJcBbM67tubn4IcFlgWd4heijxIW2Z
+ dWwIxaNxUlQ2I4EU3ElZ2Y8j7wUgl6DEdhHcD8Ts20w0VMmjrEgQviLH
+ =M4OW
+ -----END PGP MESSAGE-----
+ fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
+ - created_at: "2025-05-03T19:48:44Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA2pVdGTIrZI+ARAAxyj8/2Ogapa8QAUjDkdnexURS9wnP3JGa4JKvdi07BaF
+ uJOzOdboBhrMwZug4uZsbgBou02jbNIyP2QpxarVcmhtC1eij4JqVsa81OE+hKES
+ fwl752MiQD0QblKwEng+816iazBA1oUdYyqW0OsZXK3xydjfyRSiY1skbmz9iZfM
+ d3pp19xlf/fisDeCCZX/ylLOUn9Rbn7QCdIvVuv6yjwC0tutjDaU8BwFYqgaRXds
+ 6Q4TEQCPBJBEycmXZrXtBQ2mKtLnxUlcXd+G1x7J9UBPrBPe8cn8vi2U4hzBaPf5
+ N/mz/3r1S5WDG48eDShgMkrtyn1nG+mCLvPxgIHbCVNiufmEKeQKAFQkqZEmeFre
+ jb6Rh0F72lABJ0pnpWo+1rRuDJPgTe6IfpWtCmar/YAPHKrjGw5JcXuobYRadQXS
+ FHyTuXXW/20bWoDrGEnFX4nA0eHVTwoBpxiFrRUnjwlTOnJ6ntYKPDVzU59MPY5d
+ i388xEwdtOzv//e6kRhI517RVMoavRQ0ldBlxwRbTM17zetilb0c4CITyyTJ3pBr
+ sUv+XwtLhy7xiq7LlliCUc9QUcXRRFttAJfNyKMDqZ9JbwB5f37GmZIMqiJnd9Tv
+ ur8zPGp3gGLJ20S4/Bj69te95pBP4myweugr7mj+A1lgrrtsReHcJ2D04hwT+aXU
+ aAEJAhDXuvIXoDHr6c1CwUBiRNQfISQmOohiEWG/Arq/ISt6a8NI3pQbKN3f0k3q
+ xygtB3ZTfvS821h8VrqvCcI/tGTWJ3TymaXAR+mGLeW5QPtQP7M13buYh9aoLsa0
+ DK5E8OARtCaR
+ =FH+h
+ -----END PGP MESSAGE-----
+ fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
+ unencrypted_suffix: _unencrypted
+ version: 3.9.4
diff --git a/resources/chaosknoten/netbox/netbox/configuration.py.j2 b/resources/chaosknoten/netbox/netbox/configuration.py.j2
index 7648e7e..287786c 100644
--- a/resources/chaosknoten/netbox/netbox/configuration.py.j2
+++ b/resources/chaosknoten/netbox/netbox/configuration.py.j2
@@ -3,7 +3,7 @@ DATABASE = {
"HOST": "localhost",
"NAME": "netbox",
"USER": "netbox",
- "PASSWORD": "{{ netbox__db_password }}",
+ "PASSWORD": "{{ lookup('community.sops.sops', 'resources/chaosknoten/netbox/secrets.yaml', extract='[\"DATABASE_PASSWORD\"]') }}",
}
REDIS = {
"tasks": {
@@ -23,7 +23,7 @@ REDIS = {
"SSL": False,
},
}
-SECRET_KEY = "{{ secret__netbox_secret_key }}"
+SECRET_KEY = "{{ lookup('community.sops.sops', 'resources/chaosknoten/netbox/secrets.yaml', extract='[\"SECRET_KEY\"]') }}"
SESSION_COOKIE_SECURE = True
# CCCHH ID (Keycloak) integration.
@@ -38,7 +38,7 @@ SOCIAL_AUTH_KEYCLOAK_AUTHORIZATION_URL = (
)
SOCIAL_AUTH_KEYCLOAK_KEY = "netbox"
SOCIAL_AUTH_KEYCLOAK_PUBLIC_KEY = "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi/Shi+b2OyYNGVFPsa6qf9SesEpRl5U5rpwgmt8H7NawMvwpPUYVW9o46QW0ulYcDmysT3BzpP3tagO/SFNoOjZdYe0D9nJ7vEp8KHbzR09KCfkyQIi0wLssKnDotVHL5JeUY+iKk+gjiwF9FSFSHPBqsST7hXVAut9LkOvs2aDod9AzbTH/uYbt4wfUm5l/1Ii8D+K7YcsFGUIqxv4XS/ylKqObqN4M2dac69iIwapoh6reaBQEm66vrOzJ+3yi4DZuPrkShJqi2hddtoyZihyCkF+eJJKEI5LrBf1KZB3Ec2YUrqk93ZGUGs/XY6R87QSfR3hJ82B1wnF+c2pw+QIDAQAB"
-SOCIAL_AUTH_KEYCLOAK_SECRET = "{{ secret__netbox_social_auth_keycloak_secret }}"
+SOCIAL_AUTH_KEYCLOAK_SECRET = "{{ lookup('community.sops.sops', 'resources/chaosknoten/netbox/secrets.yaml', extract='[\"SOCIAL_AUTH_KEYCLOAK_SECRET\"]') }}"
# Use custom OIDC group and role mapping pipeline functions added in via
# netbox__custom_pipeline_oidc_group_and_role_mapping.
# The default pipeline this is based on can be found here:
diff --git a/resources/chaosknoten/netbox/secrets.yaml b/resources/chaosknoten/netbox/secrets.yaml
new file mode 100644
index 0000000..7673b44
--- /dev/null
+++ b/resources/chaosknoten/netbox/secrets.yaml
@@ -0,0 +1,238 @@
+DATABASE_PASSWORD: ENC[AES256_GCM,data:PL+VW8UlAdZbL5CxneydeW7FiDWv0s76rRkdjRT6RfSjN6bHyL7wJfv20cc8QtE/7ACdVFoYe6uXnfygRRUCgQ==,iv:wQP9VzAH0eTDyDPQpYmsKeVThQCzdaHDvcX6eFgjUho=,tag:4jc7Wx4gY5r2XpEHhHSZ6Q==,type:str]
+SECRET_KEY: ENC[AES256_GCM,data:5jtW/ymn/k20bTvdx+fUMJZZBwxclqyZwpRF3+DRJiABZehUYByjwuLe+GXiCaKNjI8=,iv:fz85tWdSaEnmx67NUqoekcVB8meZnMahmeqw5bNRp/4=,tag:veo3Qc3dwGeSj4YTDDL/vg==,type:str]
+SOCIAL_AUTH_KEYCLOAK_SECRET: ENC[AES256_GCM,data:sUEvuYWlx4B/vjYdm8hZym/R3D4BIKVMTZuLZTsnL88=,iv:bbXbHY010ASasJE7oz1q585yg8KRTDcE1rFVk1lzfRs=,tag:7e7PWvwVtng1Azy5C9C3Gg==,type:str]
+sops:
+ kms: []
+ gcp_kms: []
+ azure_kv: []
+ hc_vault: []
+ age: []
+ lastmodified: "2025-05-03T21:07:10Z"
+ mac: ENC[AES256_GCM,data:PKLClihEdwtcTb20/b6ChsiqKDUesOevL5+5IEKi7D+KfCOVP7tNnjwxtsMrAUO8+ng2Vh560640pZLVMeLsO5CS2+5b6NkIJeFYyBQeOxCJ0ykuTI9d+pJ+X2EXVUAXLCpiEAywiJeWHunh3JsLAryObxn/eljDqvE5tPX0Yd4=,iv:X4FMyelmNAf37eozHjx1sO/hi6aqrcWjqGpM7kIoKL8=,tag:pMkCNAsMq0F3RPdOaZDjJw==,type:str]
+ pgp:
+ - created_at: "2025-05-03T21:06:24Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxK/JaB2/SdtAQ//e1l1vASGqewH6svL6zyKdVbar9z/r8lpSSVyWifmYD8P
+ zNTBR/sYUt3OyaoUry9oFl9XyfCKTlypLi+zTWlurMDgjres0gcCmHCTKermU1sU
+ U+dRFyZcRH5+4+GCKEM1Yr5SY5OZEwRwgJBI4vd8m4b3POa9ivsykCiIJVtPvNFf
+ Nd4ngfgIAkL6j4QXypFfDqbsKSrE4luPL7MVuw/FEdvO20PubKTLGyAo2TxLcq0e
+ A9n9S4rY0Ke4meLUrZsb3lq3SnBN9rOvIN3XbcmtmvO6jCmenLArzQaL8cjx2EKy
+ DmqhPqTrkbJgy0utMGvosyaRTGsjvvxk0fU1Olpl7MzhagX2U6nKP5s+Qk7PaBsK
+ TEH5CSrr8YbptDUIbJqao1A0z1hkv6kODITdlxxdK+iXsi6VKcvEzFs2PTDTqPIT
+ lnhlzlZLypdQhx/0/DMKsIOHrvT3BgQgMDj9Vt8cA/UXjnGK6rmX1VyXRC5MyBqE
+ NsytdKl2JUAFUJ1+PVcDefQYgo2ceQK86ZQ0Ol1yf9sOY/GW8fCIRw1TPy30U5sr
+ SOVGtBIj8Hj/Xwx2Sw0DzeBwyPNa2bth26+Sc5nWWXbMnBLaa79dOOVWs9A4kSEw
+ qT84xg5fLH+lgQkuKHZ6YJcXA5V0a8A9fI+9xnLK2totJxtMI34VdHEozTYmrL/U
+ aAEJAhDnZD6rDx2Wm3S2agGmCYVQBRYluLZCGVGPFIWRgooUZh8T+PJmDWKGfVN1
+ nSwyhGJptFrGP0d3nbnJ/ayK1f3HcqGuqG2WbQZAg0dR8oEFUwgHX/72sKK3mGq1
+ Gzq1z7TMgU90
+ =ZDXX
+ -----END PGP MESSAGE-----
+ fp: EF643F59E008414882232C78FFA8331EEB7D6B70
+ - created_at: "2025-05-03T21:06:24Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA6EyPtWBEI+2AQ/+Lv5wak+JKDhr5XCCnc04KBPNFw0sb0NFfdLzwHXayHGY
+ chMo56UeX5UsmOCtlFqcEC+2QpXnvqNKhI+kjMa7ARcvs3ecDL0Z1cvhSn9nMKJK
+ Xi/IxJaGAEEDii/AL00G8M9LBXEg2eRXeuWvoxU1Lt8Id6oSmSgL1BbBPLWPLlQf
+ ddCCAzBajvnZ8tYDIHV3eY1iWKH2MbCqV9eH3hP48l+maR27DaT+z10s2AvtOucE
+ P1n3Q0QsfUrfM9XLldak4fhWq1ykmj1NyHrcLmV3ySdufkJ7amThlPiYl/2g2QNY
+ 0TSs2/R/VvzpveTFGXxcVveS/1KuLNzOTEwSoRnkoAqxbXb2aFV/7H5SWUDQADvB
+ qAHTLlN9lH0fd4adN8Liq7SgWd29pGnHaGCmZBEPExrRnKLv3mjsb4Me9B6xzHiA
+ f6/4cI97mCHiin2T9gxcDBvOnO3rcjWalTlsA24aO+Z0nXorBcJzoWITH4ZsluNj
+ Zau73K3qe2GBPtYsRyHR7nUgxpTAOXeXeO64+DepYCC4czZ2iEmtlf+xWJ3Gy8FU
+ nlU5ysoVVvkAtX6LZCbelecyX853f8F1B5kjkycqERgIKEFAxSo3OJTCzDe/PbCc
+ Pk/Zs+5enAtN8+dD+jTrHLHX9gSOZPdT32/WlOua38ELsfoSCNqsj0HTLuM/ORjS
+ XgEEitd3eb9U1YcGYJ258/x2v+ELhTiEVY1hYqD0j1dabZiNEpd2+BJ8tJY44A1a
+ 0ZOrevMWFLiu6aE5Th+xw1DgXpmrMuxtxSHBJPzs3kZaxWQ0hiTJEGs/RKjzZ8A=
+ =vc52
+ -----END PGP MESSAGE-----
+ fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
+ - created_at: "2025-05-03T21:06:24Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAz5uSgHG2iMJAQ//TPfUT/jQX6rf3QiAyQPq4tHghd4QUx6o3giRAANW4/Qw
+ EKB7/kTwPjfwXbsoLLcFf38kf6Nr7a+NkkgU6BUbRouTW+SFFKTQSVfslQfF2hyu
+ YlN7sQHL51e6s/geuKU9/4X9+wGECLXJ+bEBD8z2O57vvI3nHHx607EnTW7ZU6G4
+ H9QR8CfQvXdOreuxJHuSxReWgivbH+4JIZSQROUqeHbAsbdrtQkpFM2njPvknO8g
+ a8uklHLVyFlbJuCHVeGDSgqKIRg/wGHOBsPUR8BCow16TwfgEzFDE2EkqPkb9h03
+ DfpbMgYycgAp8MVCQfC1vvxG5ysQTbQ5fGTCJ48bMB78j8VxtvkfyczBmG7gw22t
+ gwg+t7eBhOuuVHkBBjuAd2Vzt7x3n+FrPIst3NO7UiGG3Ctf2tnSa69ZqTy3dVhh
+ j4USGTNetXzIdAb5ExiqLir1M1hFq/vSE+yg7q+ktt9afXrFLVgZ98zemDsVqhsj
+ vwsPTGBk+8gavChulmxnUCQgunpaQ8nokHVC/dbhtLM7ZIyV1QLMj40Fsg6J6X93
+ q5DWPX2DPi4zqCWvZCJF18YSWR45XcsOtqkzCJbAdJKs029Y6oP92Nq8k/gRf18g
+ j1EeYHm5nJLySsdTB+aQ2cKmA7eIQ6gadfGs4o/Ge4Sd2RwcX0ch+dzHvB6YK2HS
+ XgFpVWTm/z/XCK0nxo9eMPltPL0jEM0qMpk8flVcqQMVzba0hVq5MCzkQycFsfg/
+ xCzi40J2e/Feh02TPA2picple/C20CcB81Ib3m7CyKCnUf+evEmKr5scwdsdB0s=
+ =laDO
+ -----END PGP MESSAGE-----
+ fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
+ - created_at: "2025-05-03T21:06:24Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAw5vwmoEJHQ1AQ/+N9agBO50stdifyK81Gs/u9haLtSJvt+qVv6uMaP7i/yT
+ /p2KmJ40SdpmN890Wvqgz5SigWeyEnhzoJuymuTwRLzYcZiEl4pQpKF/FFBokO8i
+ 6gDxMgXM75UkDQ0C1xv3US7zw4ePSshSaKC6t0q8gF16WIbVLGM8a9zWutTbbuYD
+ fMVfCLx/n+z1xGw40qGLI0NKvV/jMNRhcXc8bOmyi2A4CkTnBLwyrfOzkMQSC7Fn
+ yS3n4XCe/S1LAHNkN8us9iPlFzwjG3nwBeyS/vnPnF7Cy/1DvysZCmoCMAm+DN9g
+ jYdjO2kd8MxnYpueYzJ8+Hwka5q3yZjBAYXeaY1VIiI4AaQSo9W3qc9BPda/lunW
+ bW5hvVAGZ3NmjkrMSDoyUVjBJFan042jQhZjB0vU52TMv+MWpUbwqEHu+caO7N6e
+ 5M9nyZ39Sauvk3mD/f3OtSgRZRWwQ1dgER34kMmvVCDBDECfwNBfk44jLzzUvkpp
+ oFjz5PaBzdmUW9qKhCGu+2v90C+EHje5yf9N71kgVj3x/MHPooeNzhfy8X9cZ0hf
+ TB/wa6AGwHGGQYZcO4qLWtFJV0XkSJ2tim6qR3q21mBkqtJqnjATiOEcYgDXXN8u
+ pv2B+DxK5fZIZH8X457HFmVzjLqsrLJtuLvVh07Qum2fLhqWbUb3oZM0I/S5333S
+ XgF+YaV/cViGp3a2lGd9Khh0yJmKaDgPX83sEpBmS32kXegvBaHeLSm4CcTwmrFZ
+ q82qJdZzGh9w+/Ah1C7dUp8tv4oiQmtnHQ4a86Ir30BFQdgVmcvDXTWN28k28Ss=
+ =D/lR
+ -----END PGP MESSAGE-----
+ fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
+ - created_at: "2025-05-03T21:06:24Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4HMJd/cQYrVAQ/+JMHWk7uwJBuVpOTjD4YtwRAV/tKYBzBGJ+UqCcG/r9XK
+ VprIs0mXljcjdvbc9udV9tXSXI4JsrBEDpUs2yW3OVVpH6d1lPo05Rj4c8b/PIlU
+ 8KoSvZldR679g9qocUHpCBRRNQEZJ2iZm5ISVJVCti2G8C2zrE1jin+GWlmJ2vjK
+ Nk0CHKb/c0GSBraAyh2JzInd6C4UJFW/ZaAhrbwYUhTo6wpJiEGTIIiV3hwEQ7Ao
+ Y1JVxlqIGdL9kJ0l7haLKqHLFgXQ4iItCsw5hRqeBLLzAN/NwAMQu0lqFe44v13G
+ RfcoO89XMn08QVAHkTT25TzT8viiKtaOS7fZhO3eAJkxWligHhpTosy0dBofqUqY
+ HGJh5dG7Hlm+MWUAWVQBJz8/UhkJ+CQcYWShVXFx8RqCTtxiFpLw/kTt45s7DPv6
+ kzkIFsRHXK302HlaEv8f/UvRuYNFRmrGrFpXOdF9ODCaeaxm5E6A/FeJXW4KonOn
+ /butppRe94MaFf/aYfZL+g3VeHo9eT9HXLcRcekm+oIeWEv5t15oZ+w54aqjYOno
+ 8rIxC4a8eWjWdU9c6LjaHWRa5tEvGP+vlfsV4yH6wGiOK6xPlME+ikYrka5PDSOG
+ xEvcCIG+KrugQZYgfvH/6fUKsPRitDQHQjG6HNTSVfIHnHoqntlbtuvA3ptSnKzS
+ XgH5E6gSyOaJH4asmXKT98HX87iBTa4SmEYuwZqjRKipUPHu7ZBO8rHrCv3VEaM6
+ btDgJG9rePCSwg+WP5TaAhFvw/5QAekmydSz9SKgS3PenzeFa0tei9ylwGAaib4=
+ =Mbmt
+ -----END PGP MESSAGE-----
+ fp: 91213ABAA73B0B73D3C02B5B4E5F372D17BBE67C
+ - created_at: "2025-05-03T21:06:24Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxjNhCKPP69fAQ/8DCABJ4gv/PzVBW51rq41776U4UxAkt0u+VEZNlRsuQRk
+ Zl3osLjxVagOiTL0hjpsqUq+2DPwLmpSGK4Xm+u0lvXViZR5TNe9u7YHZ8oPCmUJ
+ 6hCvMyeX9UwprQBAHh9TqeNu/ZxWaVJjYhDOWQOeRCNbQpav6JmUAw30BsFDpg5z
+ /HhSEPxOxfPsjwFmNJ0/eHFj5PtKuRP4Fq5459EaeqUokHiTNR6+1sWjOYjXydEq
+ /m9XKugXxrjDJ6LrockjFXldZqfgzIUfN5Y+mEo7z0aqg6IupDg4y23p1BSxF4zN
+ 1wb7y2vAhAu3QZXRjF/QIjJXSgTwAsZ0d446sHGdXY+/RppQDU5eH+fmVlh4LZAf
+ BZnV/oFpaXuU7bxyUpyjvZuZpkq8pjtAj4sWfMGSte81KdJ2fIQwjUXJL0/2B+z9
+ phl8ZZ5ceVDgfzSf8RdJC0HFf/2oy6fEMRWG0B/8BONKBZIGtSoEJFrXChadZNlq
+ u9yTNm+HjXPjrq6jKTgxkYd0XLv3KWuzk0RIPKsnHaX2bVpJ7zu6KMna8tAJ5UZ+
+ Y04AJyCrILpGFWUrNYLNDqTxgY0wo3iPq3UJIiL3x2chKVr1kE//HtsqGq2Ebi8h
+ 4O5GyaH+/CO+KI1PX11HrJYBDWcKblbu50/DgJ0ADNtJYvIpv/66MKRfvAhUf43S
+ XgGewkjx2jTiy9u77ywc9mzZNGgvvbAlHH+HjePNm1pNklHqY6AEeufadwuc9A4Q
+ lfj15OcLdrsno1Kx+JXY12X2UHeyY6fpLFaJDqmOCkDULhN5EmQT66eKw+Xuqh0=
+ =YHP1
+ -----END PGP MESSAGE-----
+ fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
+ - created_at: "2025-05-03T21:06:24Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA1Hthzn+T1OoARAAjQyI/TkO4z3Jrbcwl2YBm4OqeM8dVaBrhIwfkkKBodiz
+ uN98KGinIMs78a7SL1/7G5G2/xs9zG6kRJnhEdnsjbtQrg4Z3aifojiOvXItgf7L
+ JeBSh9D63UPiY7PcM1nL/7KDeq0CsA/DDQQKckpG9f55SsXhrwWjyprPlQDE8oqS
+ 4QOJ4I5obLDfN/3MZtjde8t4ReLQ70QQDaHG7jPTiAwJJMkFosulFMrGCnW6sF7p
+ uj+505uFLmsW28lK+qqf8D1qh2RlbO0tTyjNdEl63eUqQ9a6MymVeEY+SpvgEXkg
+ bJyqqCC4iZfO8nATxWlx8lXhcPHFL/B3uuENM7+79z2draaCgvzGE/zIY4ebp+2S
+ fHt9g6t+kxY+W32+tj00nTE+L3k2OOp/lEEXiJXfdf7rrJb7Mc3u80Evlw1d49aX
+ MXWw0nk/yUpwnAD0Tq6zXBO+lst+CIqLGlrxPbWXb+iAovSHrSj2WbmCTH2P4KsA
+ lC1V0rwUddP9rmdIJjbjEChCQcYOAAIGJcPGVuMeTGm5B8fXl0SwnCeSZ36RWl58
+ QybH9ZUobIl0n1OnuiUncB0/bQG5wGLFj7Ett5dWBNW0er5x2eBTlQ+lEEPNVzxc
+ 491jO+YNqWHwL8/wqZzoid5PVRfR9f+bEjIbcFfdd5Oq8Ocq4o/heemMNu9oNzTS
+ XgFicp6aTdkEbaHhi+Jw01DWEIltO2o5mlZcvXRTaZjwKRL4BMmwKxfGJAYUkF4K
+ /OlYm+rWtv/q4qHXsejLx4Wn+pzcZJxQcIlo1c/iup+m/tOmvWhWdWuI1G9+oa0=
+ =J/ki
+ -----END PGP MESSAGE-----
+ fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
+ - created_at: "2025-05-03T21:06:24Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA46L6MuPqfJqAQ//WVexFLcpNsUwSQAq7lN0M3aBVi2+V7kUcPF565ltzjNL
+ Q9QnEM9a8HtUkkxca6IlTFPsigCxeBxEFAvXcUydubo9xplbmDoKXas+6rjF8shF
+ rlvMfqsvrmb2slPdnf+/PsehWld7rHq9YjeHb9Boz1pBK+MrsIUblzEd3dDvXRWZ
+ 7Qn658/pd1s7G8z4o13HhzhEHQlNSRhU7RJqjVLkJvnzLt/l1I135lw40upVQV/+
+ h8UUbkLr8pkhRoEeyGfWuI3Ut0d3/xFgYV//3NyYWewvp7CvKl7ITnKJI0dO0RsQ
+ Ci+Dp540CD292hxHTmeEE6oscOF2/RspDnu8xvQl8JXCrBIYXSJXYAjIpmFTnOXd
+ FddG2PuecH6lQD/U2QZjQwkfhGD86rBw6G9vtVxQY2vKs5/+0liSwMOpueCRwlxE
+ 0uODApzFOHiK25jK0K7in2fYGDWjWK1YgPJX6zgXeIHIgbqjIju5d9XwPcjqOCqO
+ Yqr9JunLWRKjal2FJy0pOkQoJ/uu5czBic7k/fB1De3Rp84Lcf9iR3KNlTnXsHqP
+ XoPbGmtZycvXeovh4Gh8YVPMZir9vRwuAGmZJ6Ot85dqdgHxNhW3n2enrkrlX3c4
+ m+Z2xQn8fFVNWHepuFuZ5w1BoVa3I6G6p7K0AyaaBDXcxGnOrif4WYz0MQ5f8onS
+ XgG1DJaoidGPwCNhPsctxazcjulTONAGoLCquEidMtDSrRxLqxXL/cWjhnYphaXL
+ Khnio5A5Cpm+Jq+Hp4pBdMmRmy5upD3I+Gav13uT5lBf/9P+FHoWT4lzRvSIDZM=
+ =u9KE
+ -----END PGP MESSAGE-----
+ fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
+ - created_at: "2025-05-03T21:06:24Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4EEKdYEzV0pAQ/+NP27FFnjzBNDhobG9wRZ/LxqhtNicRuamag/+Vq50l/X
+ KqRHJgf6B4mpgK26m3OmehBat/HNYi/A0ZReV1GlB2eTen7Fm8YmA0QeNuwSW5TC
+ fjlccV5uAwlwcCrjXFm3fngYA2gR6B1s4qesMmIycXto3KAGytWSSv2Fosj1ciEW
+ xPV/iY0X1A3dBmocBig+WMiLKl/3/J2+0DoibbnJd2BsxgWSVynHwHvVeud9zb7s
+ NpImqGOjIPEbCb/g0JqHoLcY5Wud9GkpBnMPzKDT0hGyAD/uLzsPQYKnxocLV3GS
+ 8gIl2Mczz3DJ7/QpupEm/auP788q9802tvaeZL3J/zVYeUCI9AVjcirmO62lsWMa
+ dPCurVdSrGQtDjiMb0LEEXUJStMR4jg54iNjX3ZibiWwZCmcWSVb3rTdNQ3/ulf8
+ /tl3zcmz231BpuSFEL/FMqmQRyTWnhcxKdjbFQkhn1wj/zDpoWWQrJOEZPznfDaw
+ qmGUJtqH79aW9B/UjBT3o2F+hYTJT0C4M3o/FzWoL5c9N+BV3pkChwcu5Hpzp7w4
+ af6TA32+wOGN+clDCw1GdoY7nwnIuOXdr/RsJwaCEClfxxmv4jtaoeN/jw80ZkhG
+ EbEt6tmK52E5acaJ5+DkdQaCJgEqfuXEbDD3Ff18ogoCRPme97fA9bT6w4EsJL7S
+ XgGoza9GZ/6cY1qxbsDGLfSAsO1MZtF2Tdi6VYCQrmbPpu7xIoLkSpstUErefLPS
+ rlhIzHBJMuevAYE3nj64ZRZn0LJntYqUA6J9wqxjFKcRooeNG/ZzHWdrKoCdqfo=
+ =evpb
+ -----END PGP MESSAGE-----
+ fp: 9DFA033E3DAEBAD7FDD71B056C7AAA54BE05F7BA
+ - created_at: "2025-05-03T21:06:24Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DQrf1tCqiJxoSAQdAEnokPN5Twc4NuFqnxUUsz41bFJAvb6Yo35z0QSONZmUw
+ LrdW9IYb/VzENu2kyBZjus2WzVIPkZuPNTogekkvZEEbYEtgX8zhOzw8KJREWcru
+ 0l4BVwK2WHhmfeLSuFg3C6bB+b25bPzagvpW2sQjkrJUStDneKwOEywgz4J6SGLj
+ F6Lyi085evOtfmt/Bwb4HT4geUKN2iRevWHSXTmnXYbI9eKR3peWzDmt3v1pFccD
+ =1hh1
+ -----END PGP MESSAGE-----
+ fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
+ - created_at: "2025-05-03T21:06:24Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DzAGzViGx4qcSAQdATvO0hpZrB9DlwhBc9i7ewDgHxO7UZnerrmIMAtTcVwIw
+ VNtd22roiR/VPliu2owkEAirTkZ2SQdsWDm0+wfASiY7D9+ZT5D5etBOwqKriIHu
+ 0lgBsoDwILXs93TKTIqjd0klQCoKm3XYSZpSkfg80p0gJqIT02gH+ME1bcXaOdEv
+ wnZyOI8apbwiRj5tx+OfrPenTwn9zBcrN7wm43RHnZNwVRIeeXvJUlj2
+ =eGBC
+ -----END PGP MESSAGE-----
+ fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
+ - created_at: "2025-05-03T21:06:24Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA2pVdGTIrZI+AQ/7BS2IddYDV/BRy+uMqpKDYNVfygxrjNmbQkmhcmXa5s4I
+ b04niRWP4JD0J+bu/B2gxQqPQYJym/fTKnw3PYiPsk6RmCbs0vp4KOL9aMFrtP3V
+ lAWxSOkt63e1MgDtyqmmmbkb9ZJBBsiCbkrSCDn4UQsjhwiTIEqqJyk9maY19+cl
+ XgMfY4IrLHy4LpmvGnYBrhNqEL5btCxYyBXhihf1DVePYEnCJoAxY+U4ToshUzUu
+ 2HttOhoE8GrgN1wqsO0CEZwtS+PeBsI4Byk7TxFDRyNj9R2uUs/2312fVe2PD27Y
+ OrxpuvwbxkBH+RGYPpEHt9LvZOicaVOD9NJ/31kQO/I2MkRXrDan6mWMyl9vpdNF
+ zoVgm4kuqqe818GYKpQoU07fduOKmPK3LsKCPKvfUwHXDPyDJoTtiMhIna5ekTju
+ ceFi744cfQ1v7KJdXqUVEaNX5xfwFkFWonoyQ6Q/7qZjT5LAIIvAtEtDopdTVNdA
+ PIEh+XMxwLeXrBU0b/9dZL/s1Jz6RhAtjM2EsJX5ufpZ00SGwixv4sbVJgXvx2SU
+ oosDHcfVQ0gXwpPIekxQakAqfDJrrASasxA7DrHeU7ORGMBhTCDdVTmDXBOCGok9
+ pWABWZLtn3P2ituPXagrvOJ2LT+BP8t1W7yI3ifoXintcnWJxrAmH4g0DnYsoJbU
+ aAEJAhAw121YavqAps9R2CMrWi6DxP6kFuWfdioUS/wEyEg7oXR5OeF4FcTFqPge
+ 4fT4um0hM4sXT24aNmRpjOmG4PFuXMegTC5YThjM6Qgd2MDzhqe3tXgaChKvMZQg
+ zOWvdN3wjYPb
+ =re5L
+ -----END PGP MESSAGE-----
+ fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
+ unencrypted_suffix: _unencrypted
+ version: 3.9.4
diff --git a/resources/chaosknoten/ntfy/docker_compose/compose.yaml.j2 b/resources/chaosknoten/ntfy/docker_compose/compose.yaml.j2
deleted file mode 100644
index 625e02f..0000000
--- a/resources/chaosknoten/ntfy/docker_compose/compose.yaml.j2
+++ /dev/null
@@ -1,24 +0,0 @@
----
-services:
- ntfy:
- image: binwiederhier/ntfy
- container_name: ntfy
- command:
- - serve
- volumes:
- - ntfy_cache:/var/cache/ntfy
- - ntfy_var:/var/lib/ntfy
- - ./configs/server.yml:/etc/ntfy/server.yml
- ports:
- - 2586:2586
- - 9586:9586
- healthcheck: # optional: remember to adapt the host:port to your environment
- test: ["CMD-SHELL", "wget -q --tries=1 http://localhost:2586/v1/health -O - | grep -Eo '\"healthy\"\\s*:\\s*true' || exit 1"]
- interval: 60s
- timeout: 10s
- retries: 3
- start_period: 40s
- restart: unless-stopped
-volumes:
- ntfy_cache: {}
- ntfy_var: {}
diff --git a/resources/chaosknoten/ntfy/docker_compose/server.yaml.j2 b/resources/chaosknoten/ntfy/docker_compose/server.yaml.j2
deleted file mode 100644
index 0a28f4f..0000000
--- a/resources/chaosknoten/ntfy/docker_compose/server.yaml.j2
+++ /dev/null
@@ -1,21 +0,0 @@
-base-url: "https://ntfy.hamburg.ccc.de"
-default-host: "https://ntfy.hamburg.ccc.de"
-listen-http: ":2586"
-behind-proxy: true
-cache-file: "/var/cache/ntfy/cache.db"
-log-format: json
-
-enable-metrics: true
-metrics-listen-http: ":9586"
-
-auth-default-access: "deny-all"
-auth-file: "/var/lib/ntfy/user.db"
-
-attachment-cache-dir: "/var/cache/ntfy/attachments"
-
-web-push-public-key: "BCx7PqDiVNlOiAHHfSxjbTle_LN4hetwHYi58GJhQxiY33AQ663IaJVro7B28j-1KOqwdzKco3dMMwzBJl9OQ90"
-web-push-private-key: {{ secret__ntfy_web_push_private_key }}
-web-push-file: "/var/cache/ntfy/webpush.db"
-web-push-email-address: "mailto:noc@lists.hamburg.ccc.de"
-
-upstream-base-url: "https://ntfy.sh"
diff --git a/resources/chaosknoten/ntfy/nginx/ntfy.hamburg.ccc.de.conf b/resources/chaosknoten/ntfy/nginx/ntfy.hamburg.ccc.de.conf
deleted file mode 100644
index e7d404d..0000000
--- a/resources/chaosknoten/ntfy/nginx/ntfy.hamburg.ccc.de.conf
+++ /dev/null
@@ -1,47 +0,0 @@
-# partly generated 2022-01-08, Mozilla Guideline v5.6, nginx 1.17.7, OpenSSL 1.1.1k, intermediate configuration
-# https://ssl-config.mozilla.org/#server=nginx&version=1.17.7&config=intermediate&openssl=1.1.1k&guideline=5.6
-server {
- # Listen on a custom port for the proxy protocol.
- listen 8443 ssl proxy_protocol;
- http2 on;
- # Make use of the ngx_http_realip_module to set the $remote_addr and
- # $remote_port to the client address and client port, when using proxy
- # protocol.
- # First set our proxy protocol proxy as trusted.
- set_real_ip_from 172.31.17.140;
- # Then tell the realip_module to get the addreses from the proxy protocol
- # header.
- real_ip_header proxy_protocol;
-
- server_name ntfy.hamburg.ccc.de;
-
- ssl_certificate /etc/letsencrypt/live/ntfy.hamburg.ccc.de/fullchain.pem;
- ssl_certificate_key /etc/letsencrypt/live/ntfy.hamburg.ccc.de/privkey.pem;
- # verify chain of trust of OCSP response using Root CA and Intermediate certs
- ssl_trusted_certificate /etc/letsencrypt/live/ntfy.hamburg.ccc.de/chain.pem;
-
- # HSTS (ngx_http_headers_module is required) (63072000 seconds)
- add_header Strict-Transport-Security "max-age=63072000" always;
-
- proxy_set_header Host $host;
- proxy_set_header X-Forwarded-Host $host;
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
- proxy_set_header X-Forwarded-Port 443;
- # This is https in any case.
- proxy_set_header X-Forwarded-Proto https;
-
- location / {
- proxy_pass http://127.0.0.1:2586;
- proxy_http_version 1.1;
-
- proxy_set_header Upgrade $http_upgrade;
- proxy_set_header Connection "upgrade";
-
- proxy_connect_timeout 3m;
- proxy_send_timeout 3m;
- proxy_read_timeout 3m;
-
- client_max_body_size 0; # Stream request body to backend
- }
-}
diff --git a/resources/chaosknoten/onlyoffice/docker_compose/compose.yaml.j2 b/resources/chaosknoten/onlyoffice/docker_compose/compose.yaml.j2
index 85ce7d2..1228cf9 100644
--- a/resources/chaosknoten/onlyoffice/docker_compose/compose.yaml.j2
+++ b/resources/chaosknoten/onlyoffice/docker_compose/compose.yaml.j2
@@ -14,4 +14,4 @@ services:
ports:
- "8080:80"
environment:
- JWT_SECRET: {{ secret__onlyoffice_jwt_secret }}
+ JWT_SECRET: {{ lookup("community.sops.sops", "resources/chaosknoten/onlyoffice/secrets.yaml", extract="['JWT_SECRET']") }}
diff --git a/resources/chaosknoten/onlyoffice/secrets.yaml b/resources/chaosknoten/onlyoffice/secrets.yaml
new file mode 100644
index 0000000..62ac647
--- /dev/null
+++ b/resources/chaosknoten/onlyoffice/secrets.yaml
@@ -0,0 +1,236 @@
+JWT_SECRET: ENC[AES256_GCM,data:lRoljPoqlfIBbOTn5cBBvQ+g+w9xdwS2lEglfhZxhw/xwNaIBmAvXky3crhAhuLawv4HIC04qQZzMvCRhNzGSQ==,iv:FfcLBPp60u4Wc186EM1mbLMqErVB2ZGjXzBl+mcYQAc=,tag:Mgnt8DdG6sH+aaoBEzwbvg==,type:str]
+sops:
+ kms: []
+ gcp_kms: []
+ azure_kv: []
+ hc_vault: []
+ age: []
+ lastmodified: "2025-05-03T21:20:20Z"
+ mac: ENC[AES256_GCM,data:Pka+RO+h27XQfnSw97nBrKc7qQp4p7oCZuBqtfNxpWqBh2XHIWVSWBgVpBt0bz/7mlKlu6+tGKifIgEoCFf8AQbCrYgYYaDjHTXIkfRf8zB3M+IREYkRBCxDm6cChf3tsPMFhiQMIZJnq9LAudBWSwlZgQrn0Y50DYM7wsph9/c=,iv:jauLcEDlD6hcSfO6jeiXmtbeH5eIyGhlstshyEFZeZs=,tag:8lRYKjJ6F5vtBjjleRCOyA==,type:str]
+ pgp:
+ - created_at: "2025-05-03T21:19:31Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxK/JaB2/SdtAQ//aSuvMP1nG0fReLpbB+LQbzw3vtIaLazb7CQDsx9W0Ko3
+ yltmiGhUM0GvIMNG1NJypvKFP5prl0/HyZvv+pQq3JuVozoe7KTSKWrCJhUnKkw5
+ GSljS+kBEbq2q945FgXPVAv8QTti1CSjRwtTYjGZn269OHKKsEzNoMpoBFvXCbaz
+ IjXy19L/CmhwIHtcmp1WPKhWseWhK5tHKDP/jRqPyFGctcM9lCt6hjRCSzKuCYAV
+ qo1N5TqO3S4CEj1ZM7/ZUgHvg7/nikQrvJKN+/Em6M1cIy7JdNVx/jU7C8A/mFC5
+ 3rFAVqrxRW7YmTizzj3NW5lsxB1DBrth/ajuSuQ9BuCA4XCDEV1b2UnCVPwZxP7y
+ +qMx5Gf26zKkOw4MQdgdhthSoXxbV3r5vA7zmS7N2HjBRsyt4khLy5pj0RXOJQ0d
+ TxEKUB11B6BskHXTy8+Z4q59PQamjsRZwYcxDNo2SoPvgE6nkY/1suT6FH+knYPG
+ QBPHRY34tKT+19w6nD1HSxTZt1Q/HCzugNT10Al5jrhy1VWX3/0tPMHeaW3Ov25S
+ h4/nH2QNEAB/vrAN3rVJjch1UdYrOhJ5dQqWdPqd/+2neDE+NJDvJ1yTciwFcEei
+ VBg0ra3wpVBc4n1vVo+kpKUvqUlbqPLMGMBURjyaOSVQL1GCub3bhMiAH7fjA8rU
+ ZgEJAhB2IaX8XJ5sOcX+KTqux6PK2ZnDezv7BbslDNVVrXjk+dNng7HC4tLf9cdX
+ ykA8nrjQgeDhiWhEGkcqz+3xGq/Y2ys+nqlxGWqG3q8ADD+07qzIztWQbcGxk8Ln
+ 17+XF9a69Q==
+ =GZUf
+ -----END PGP MESSAGE-----
+ fp: EF643F59E008414882232C78FFA8331EEB7D6B70
+ - created_at: "2025-05-03T21:19:31Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA6EyPtWBEI+2ARAAm8ohSKiHBbmHDzMys+E55+q9Jc8+zLmfXQw9QXG4xdFj
+ xKlQQVfW/O+UMNtzx8YNvRzDTiLa5P7e6c9yuJs739Ayt3RDwgs1dekPp3aEeg1j
+ jFF6klWl8wx+Nit3a3t+DkszyDqQP0utmGXPOAtYaePh393Iw/5QSQDFslACUaxk
+ Y7ALtL+0OZPohYAJPUp2NAvB1JWavW9Pik62eSVDIeVClerSp6RVhEtnnxbuQ4qi
+ +lPCwQEeI9Tg//d1gkydenmGn4Eya2C4/GL5vGC5Mp+d6TwVLFMIF+6NV3TbK/Fn
+ B+kxIG9VCkg3VUdL3J7UjDaw4VTLQh1vBxVosuxT5fBFImOOYm9RThd9ontB0gIt
+ djem8l4paubD1Kpk5yJ3wmur9Ze9mbEM89DpIuweHROcFDzEwyeV9cxJqtWQTsfz
+ VCgtbAuRRotXZrOi+N0Hlu5gevrGsXCyahj1gsMeWu4ur3D7L9uDAOyyNfAb+VYM
+ h+yxUjxz5N5CWAAGKWMWWt0fAYlzwZF8EaI0bC5j10m8yHL2U2kN1f53O+OlC4pO
+ ZUIceB+F/mQS+rmynL5KWtwnzo3dVEvxPL182TJoRccZNU3MaZ0H8U9qxKAG65MZ
+ SVusj/b8yqGZD0dWQ/8+kcp3MLIZj+CD3UKG92iGse9GbeC2bOUMiNYUtVby0APS
+ XAErckFw5+VHiVvQIareeIboHFC0Kc7UfsCSvRSYgakSyNGwoHKtKN3I1qjHw0yB
+ e+VaS27d15fnAKg8P2d5PoRsi/+iTlCkQP8CXbKXKhBCBNLpHi7EwWZ48hQ+
+ =kxBp
+ -----END PGP MESSAGE-----
+ fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
+ - created_at: "2025-05-03T21:19:31Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAz5uSgHG2iMJAQ/+IfB2GS0U1XbH7yWFeMWV+wqBmAfT+8qbg7sacLGfoktm
+ co3tQ1Se8djV7QeIRjjtLGMkxmdleiNB2x4fkphcr8gbEPewxuop7sWhf6WbFJPY
+ tbAXucBpIC7nw2jX98XRMzJN5Gz+GsQBvv++EkBmUMCbu8UIRfvmLOGBHOplgGj3
+ sEfujPsbeY1I7sgVmdaeRBCFnqLxPy/FsZ5X7cntTkQKfT5FpXX+GebGiH99Jf4Q
+ z91A0Iy/jHAROeBMm5U/pGdJS6HV4aLEf+TQkXuNmTvCoMJYZcAmE53dP6XohPl/
+ KDN60EUolwHycUtzVzt56yz/fJLXJEJSUQxuP1HyabNb60f+2zT5wWz6duYwig/2
+ Wx/kdSSBajcc4vLrAl6CTiKv/UYJ1/Fs0E/gNck5Cu779m26MVdoDT4DWaAHGdA1
+ riYE6xvlCJc71YAFo0cztn6XHkKiSYCfJVWWVIIrXugBG+LhQivgvTK8muNrQEtv
+ bFpBLQH98iUDm10GMMHcLFh+shwAocpn//u0eFZJ3AMj7UysfYnkgCs1M5lqmJAc
+ GEPRzVZOX7JXw0/CHy13RkkIsShhD/gdhpLnZz9zSzkra65dfzTRPyjCJ3haKsiz
+ ja539RTkULk8LG43V6KT2tgnTJABTcE9mazW4BACrMm1+K+R4rtXNi8HhK4GUTzS
+ XAF3/Q+8a42TE6UV0p9MZzZ6e/zx1XwK7PrQjupcVA1enCvtRPpynYOtf9sd0ybM
+ kLBSKDz1Mlvc+03ICD5fi5BwvvUNS5uJFK9tixJtj4Pbe2OWTqBCW8F7MZt2
+ =4m5L
+ -----END PGP MESSAGE-----
+ fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
+ - created_at: "2025-05-03T21:19:31Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAw5vwmoEJHQ1ARAAlhO6HicbMqEht30n7UZTlwlhV1pGE7M74C9oLCSU+Sph
+ YsJXMqkMPVzbBvZU3txCh8XJqqrkp+Ub3V9Wjz4fvAYhGU9IRck55fsRBpcVFsOs
+ 8vZuS0fzbQREZbGCIJd7CRzmFs4G0/VtTL2b/7lOOxI+sLAReQhHRhzKtzeOwDK1
+ rjxPnhwyKeZxZBRdG6PYagXa6vfrIqw9RfJadVtjaF03z/aIv9d91XcjftjnU36e
+ 0ByzDx9yPNcy5efLCKucgj3QTPmPS/xIEHopJ1OR+wPueBaJvzbcAJEEn3N0yF8y
+ foJkX+ipaZgwIOhj6WTLtYuJiwXUxcLFevBXcdVOCN0YTFwg8CXsuXiC6Si8ngDU
+ WGLzONnsH71V7ecPntRblxIOdHIuAjHXwGNFWXKLSo2TNPssNlcL/T7/oiauXCzk
+ SrsdhO15G4EZF6oXyN3FmyqgoObuZwwVK8O5UgDoeE4Z8YIU/7lTQNAd2V7nPI8L
+ WHuop4gjfZvvql2N8mtVv08chu/dNg0kpzA7iQiV02EG44IuyfGJ1/wR6AXEglnx
+ earG+KWFnXcuuVDhIrFxMvEIK9QieVOUc2tmwx4r+wK/FI7/7oYDOFAs/ijgCKyd
+ IkC89eewIrv70jrrd1cCcHdR//x3f5nLqX5+Mql8rB0WLGhICE4E4AbkJzjlcbXS
+ XAGVOaiXynxCDzk9Tx7dC8FwIayLy9mrmSIP9KK6vKsYjvKGMuxZJUQ/uW3LaTpx
+ 1BE3QLU1HY24Jdztto6e2ff93stjFIVU9ONDHwXW4YJ+Uw4oGCn7w1NDJQgV
+ =2cC7
+ -----END PGP MESSAGE-----
+ fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
+ - created_at: "2025-05-03T21:19:31Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4HMJd/cQYrVAQ/+IQ1yvts/ZJnw4GAn0AkDBNc9YfoJ2hBW9/iyKl+uJTJ8
+ BOgu4tbbITKB1yLff/xeGRR66uMyU6XJ/KlyGXzQIJll8tlonUEjmX6i0Krtk4XS
+ HOKupWmRzdh1PTscB07ARuW+6B29dOdUVgo86uauOz50mnWHCCdC+YRPw1Sygxtk
+ 9jqgx3Go7z8Y+zkgGgOb8MFdh3gnXw2aEaiPgeCcb/c2VTY4SeJf/tBwk98pKtFG
+ 2TU7o5QJCbWp78VRJbKGlc2eKFsWd7HNJcRuW+YvPIwTwnHvcM0mdb5wWVd8g3vk
+ cN3yyFOnOXe7iMS0S/Ab0TVYtB2MsSWewMUfcEavMLG/+mAx18J2GnVq4PQKA2hW
+ ORLMHGqPlsZZfxiwhBXBrWvOvUgHYFxhDmfC0UOQXIybd9AJuNMHFNI6qNnjvf+b
+ zXVrqwrOI+A0y0MbRnIyD/rIC+ADiJfU4HfdOp7CC1+mxo/4Kyr5N6mEBFr+6yUE
+ dZr9J8EV6vzFQ01rg0GTloPF28RCjglEISvaO0kZ1R8bCQ8xfeA9I4LHwr0MOBhH
+ rCpmmpkfNZelC1ecyrI20D1E0fm0+JswfTFETaQCphFeap/ySBy1Yqe0ofMSrmOr
+ 3h8ldEFqQeC5UJWapwo+Gf5WYK3e5EGnL7IiEdObKH+pu3nRAO/8sP88Ic2pSGTS
+ XAFsn3ckkvwaUpY38KOqglKB8ex4Y7MOplkiqIPnN1IpmHfWoQAMUl2kVqZftzAc
+ GrUy0d82MP0b/xAOStVkrh1NClb3ghfWsjL2ZjTLGB7O2floAfpJaNSQzFh9
+ =hVtc
+ -----END PGP MESSAGE-----
+ fp: 91213ABAA73B0B73D3C02B5B4E5F372D17BBE67C
+ - created_at: "2025-05-03T21:19:31Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxjNhCKPP69fAQ//YiQTFaNjAtC4+49X4xx5wTmhasIL1who6Da82i1Y17Hy
+ MhKj8h9ND9fLp2tFM5UscPZCSMfQj6Vl+7Zz02kbcu+CAOcl7BowHBKrTrfahtu5
+ O2lUJiURZZXmjeQNm51yCUNl9Ohh5LkiEto50kAz4P7/TWEY102z2+SaScBYJHb6
+ m8EnmWWCnmwomEFd/Te3F9uLCqcwyWMspDQyZ3jZh8bcI57K7P/QBv9kjKVU9ZbK
+ rHMfKxcbMmDhauxQnrxe+CAY0E+iN7+smRAqa8aDk6Qe8e00agE/PGHyTm25jAWE
+ Mdm50Ybbj8jC6r7udoTk2K+0Jv1N/xcSnwnJ36MWwJztZD8tjEjn/bugsgG8zuj8
+ R8o33AadfYh7yYRAII5m+24pCWU5EVl77vYaD8OvXAxUBjx1tNZSRuOtCH6x0ssL
+ 1TDtscxOX4WPBnyVQ4p7tAkV3AIyj02gA7Ya5MKjJu73KQjn4qI0G0LD149m+9tB
+ kakRXMnqwM9cCQ8VVg3LSk5VYCD0LuZKlBd0OdwuhuSvnd2OMSGTPlSClaCEAQha
+ qPrfHYwOPh0p+HwZLq7gLGNH8X4IrMtv3vthO0ff2OR3ditChama4NWHSYZ30QSf
+ /3jRSzmH8fvtx/EzvK54Bl+7AChlsaPqTiNyAaC6LZ87gGtHqZan74DxJuHb19PS
+ XAHjYPTSestwXzNi+gFBajJEjT/vHekm8RrFrm+hJ/T1XRHZ64Qi1ZNOGs6wPe5U
+ GifWHk/sBFD14C2YDsIOGUtbZzhQgYes7pvTN4ONmCgwutjUC9xKNJo6wI44
+ =/xJ8
+ -----END PGP MESSAGE-----
+ fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
+ - created_at: "2025-05-03T21:19:31Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA1Hthzn+T1OoAQ//Sb401ad18muH2qvpoa8HFMv0hm7YPPISmgiNs7ESb6KD
+ qjLTtKxTa5SwtCbFh4kNVinqP0MCUgWh5spCzf2QO0+GUpjw0kbsUgMqcXrTBS5l
+ 9cj93bGDEOS1unzNtGNSv6RwukLtlTM+W3Q3azi7UAzs147ThVhkKL8b/NdzF0FB
+ GgV7p/8qCqRrBNrPocA7/YS4DVuVxNWZfSgR5kvbDPEJKCraY4gqTb2Fj3D+vvEb
+ aIOJ9uGvtaqWcSt15INamkrQJx1TAarVUV6/2FO5qmgz1StZoTecOXmS5bfTTJce
+ LCwqCw9aKjlHK0hIdLvIWG5JoqGTH2uhLZsznn3L5ywnLB9i/1IVYYKMzk+ENnRJ
+ jlfRNjqDdXKLmoe1Ob3q1fVpxwqrlbvHkhc2nrQ+4Or9lcFOoschZPQ+UiEA3GUD
+ mw5FZQPvmLWhe928MgNJN9PW+upYGILVlryg4Oatzi8bYeji70UpQRJm4kch66dE
+ IvXBoZ7fQSdAlEkcWcqPq/QHZ6BSbpYONaRjVYWtgpRMwh1JH9JdoO6joXqXW5gd
+ BroeA1h/oIP5RX1zQpWieRP1wGR899WCydhYOIq9HyuGFKbz+fwcVJ92om4kBqll
+ kq8aSt0oSzXmZxt+tiA90GREzc9dcrtwTzkqRHpjck+4GMNyl3cHt3Ce8ofu4JvS
+ XAHtcZ0B4SA0QHch0Fyo7vC7MGjZ7aQ+s0hMwL1LhSlChBrISLRkQrqlh8foZyNk
+ tZAcIqnpJbpR4qQGKdGIE4eDmk+AOxgRFiUO/nFS6ZfTEZqDmw3Q+a8TxihW
+ =wRRY
+ -----END PGP MESSAGE-----
+ fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
+ - created_at: "2025-05-03T21:19:31Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA46L6MuPqfJqAQ/8DyYywkYZgeDm8C7Q4Ee3bmYSOd0c/xx95um3o0yndQCs
+ 6KuQsWnx/sX0AeYeMBhed5P7X0IKigF7vxgHhLd+2o/jmG2gBw9qV8LKqWgTahJY
+ +jPsYqQHOLV5o5NBfhv8MyOeBEhOHRRWzZ2VaqO9C8+G8+SqkOogIyKzHYou5KV6
+ sI2cZs+JIFFgwiPZ1S4zgbYSley+XfjgmwV1z85KYuuIw2GrxQWaPIp3ptalAQch
+ N/BrD1MPk2a1QfJnJpAAEXUVhNfDQoMWSxlAT0HliV5idYlQ32uQMYMyJCotNGHA
+ egB+bUp3qEQI+Y+jLB26uszMpKddL598gImTp6UT77Hrt5MxL/8jbhR15XsnMChE
+ CbVovpOHiujAkHEPQt94q6ch8tGvfrCdaGPuAamIQPRVEkorxolXJXv1MYpI+ycp
+ szK/W3Rt91iJS1fSez6j/MhAKCAExhgBcILT7fypog4IbstACLArhYzlB5mry2R4
+ 9JNeCSFExAMW5IVkV3fUdWWKBdqZjZFW/MdfOhYs//AfnVDweJ1V4ZAUcIfkVewd
+ ORmUOfbH6UwvWpywx1fT7s7BZGcJHX4R/5ARZQj6GIadIevBKljlQhR6+WDlIDQH
+ i0W/dFOy2f2mRvamrUBdcbRY/HGqJRbZGEml2AAlZ1IgDIhVWxUy9w+A6c+EHbzS
+ XAFVoUrdKIhmHC7NEQFyD2A+iFDx1EXkpDNL6mpXUaxNDrwCNO47un5pUvnVVK/z
+ W7wBQtDD54iOJIMlgnNl7st+Jp00y88/IWD+KzSVpArU1Cp5ja7nU2MY1wji
+ =/Oy4
+ -----END PGP MESSAGE-----
+ fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
+ - created_at: "2025-05-03T21:19:31Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4EEKdYEzV0pARAAjzsQ0wk8ja7zsgYYZLhidtGRjxkiXTo+Wlb9ZDytFuAZ
+ 3VxBNRZn0IHLFTmY647p3MHcnu8XSbRAWI0n0cuJ0jAkp5k7Fjw+0ZfBy/Kia5wj
+ TbdHA8gdmTL6kIGVmTVZW8TiZJW+5/aPSadrBatZ6Kff4DZSncskqufVZIo4jjCl
+ 3BkgVthj1gmXyJS0EguCnBoGWGJ4xuY8cksq1qugjbmTOxxLbtNUcc1xVUluvwgI
+ AjSIYDO6/CBnkjk9Y74hrCyO4VtmCVpcDHhqf0GFFGzhUIJN6v1iM3f1PmmXbU1q
+ mpw/M4Nidog+aQ9jWCYsonjc4UMMUDf1gOIWyZ5tMdJFo/92KSyY0iUlzyOcE0sx
+ HloKyWss+Fw1A/7YcHFBCkR8VOWbshir46P9Rb+0fKFzsuIRiENmzQ80Nr5NCVFq
+ YeoVxqXmggd0XPZOvqIsD3Y7u3tp+tYgxjhwbYVWX9i3x/dviHsPmc1ZFFHaeXlC
+ 1R+Y3454akuAEucj/Ju+fZgWCipzPN0/5OY0GueJGOmozZEOKgcjx3bJZwipltm1
+ caUyLuruFV8RXXrqY4AJ9Ovx4Qb5irsud+gN5tsDi6F0Anj0N9GaC4q8SwX/xl6c
+ w0DWOyLAn+5gRVKVVg2jX/Z/wUkBjJ5YHTyeVEqPvwtIUzc4vaXYHmgyrejHe2XS
+ XAEoKuA08Zmu592SqUEpcwfn4UkUC+HU+DWtcDwBhMraNFn2bQQmwzMT3GE/dkiT
+ 4FP5Xhm0UTbUbALPPqMEu41uGeUF79LG9EIJssU3r1oSzLRH86PdMYBE4MEl
+ =7gGA
+ -----END PGP MESSAGE-----
+ fp: 9DFA033E3DAEBAD7FDD71B056C7AAA54BE05F7BA
+ - created_at: "2025-05-03T21:19:31Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DQrf1tCqiJxoSAQdAhWNV26+MQYLWmFFUi8AZtNk8bw2CXuNoaRARTjekGB4w
+ FbNvRb4cxWgVTWvhb8A2O5WJdFiOyumxwY7hGgxwiKyU02D8xR93jbQPHKl1hPWz
+ 0lwBRjANXKsKrh0uIeynm8hKEtlfn1sfCgucb2qd+oTab1mgoUd9N1o9Q9T/vHJF
+ iMhkCXnn+uugN8aaiM6jW86qY2Y5elDPICwuF/pvm6bcByfmI6pF3yoY0MRtGw==
+ =bZKM
+ -----END PGP MESSAGE-----
+ fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
+ - created_at: "2025-05-03T21:19:31Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DzAGzViGx4qcSAQdA9aXqXY3Szsy1SRsll8c1df4hXRugtfdvmNwr/j89W0Qw
+ WcvP13rPtg8mFCePBp9yuUo8tT4K9dSplJKOl5l1xZpT1KyhxNO/1OtHhWdK6UsY
+ 0lYB+Njc2aP4nRm0WVAjDkAI2C/fb2vIoC4IHC0SHcvrIKJhkUMaYH4j8fzr77Oi
+ deA9DLhIAAJcSOEdj+duuPeq4j/lPf2amOvjeePnwzM+ZsByWsf5vw==
+ =KKcE
+ -----END PGP MESSAGE-----
+ fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
+ - created_at: "2025-05-03T21:19:31Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA2pVdGTIrZI+ARAAzEzZZIM22D++beNd+noXbsm0dVWPUPZsolGraxxVZK8+
+ 8qXCNMfxsids1yra5iFeHm07U+6SmtL9H/v+qkv2dcKOmjZSB+Af1iskoUv9mT9o
+ ln1lgdzhSyGhGl7yl/jsT0KWS6sIVqREfcZecYz6k8id4YhR8rttKnSX9Ltn1RTT
+ 0ujoATzD60JTtgV5jpVJvQxZG6tm1p+OY9lv/d5PjYD99iQXDMzp/tmaGkZhAQuS
+ sArD7IrHdf8cj5M52IFG+f7cIyYWUFp1xKGQKjPDKqlL2s1B6foT0UQWFFKHAqP0
+ Yliuy2Pedb6JsIWwhoElY/nv7JUjyNgNUZtO80brOxTEhyRjUQJ+7ub/R4vO6Pml
+ mKSivjfAe7mU8jg5y3v3B6AoTu4mPkEYTKqKfR6ruwmA4rSRkuOkJsiOPFojTeEL
+ 856ZljSkq5PigeALCREu6LOtq2+IYNCeDi231nHe+YafseP7GaJkc0XMe96Q3Ndk
+ dB/kJWyuQbZoc/vjjlWPrGifemwwLGHwX57nsfiYVZmeGRtggKioSHYrqjTY55zF
+ c0wjeOy3cgf/lX9IRQx9Ev3nRZD/Dvb0fp43t2PXCZgukVgmsNMe+lF+G0Yxa+uv
+ dS/4CghcDQ7BolVOt6Fh8m4mgNU/ghM6L85An3Qo4FmXwMw0KMxw4BfhiYPgO4jU
+ ZgEJAhCPSY3mTIkX5b/Z9gMAx0pNO4UKkX7GUGq3xOnMWxjoxRDA0hhEddDLdHkY
+ SBAf/3XqrRF9o0gCU2MQon21v/LvHfn+r+3GZJY6vYOcJDnZxNxKytJXY3O6A8ac
+ wgVobOtSYQ==
+ =Q5Ft
+ -----END PGP MESSAGE-----
+ fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
+ unencrypted_suffix: _unencrypted
+ version: 3.9.4
diff --git a/resources/chaosknoten/pad/docker_compose/compose.yaml.j2 b/resources/chaosknoten/pad/docker_compose/compose.yaml.j2
index ca29f1b..9484c29 100644
--- a/resources/chaosknoten/pad/docker_compose/compose.yaml.j2
+++ b/resources/chaosknoten/pad/docker_compose/compose.yaml.j2
@@ -6,7 +6,7 @@ services:
image: docker.io/library/postgres:15-alpine
environment:
- "POSTGRES_USER=hedgedoc"
- - "POSTGRES_PASSWORD={{ secret__hedgedoc_db_password }}"
+ - "POSTGRES_PASSWORD={{ lookup("community.sops.sops", "resources/chaosknoten/pad/secrets.yaml", extract="['DB_PASSWORD']") }}"
- "POSTGRES_DB=hedgedoc"
volumes:
- database:/var/lib/postgresql/data
@@ -16,7 +16,7 @@ services:
#image: quay.io/hedgedoc/hedgedoc:1.9.9
image: quay.io/hedgedoc/hedgedoc:latest
environment:
- - "CMD_DB_URL=postgres://hedgedoc:{{ secret__hedgedoc_db_password }}@database:5432/hedgedoc"
+ - "CMD_DB_URL=postgres://hedgedoc:{{ lookup("community.sops.sops", "resources/chaosknoten/pad/secrets.yaml", extract="['DB_PASSWORD']") }}@database:5432/hedgedoc"
- "CMD_DOMAIN=pad.hamburg.ccc.de"
- "CMD_PROTOCOL_USESSL=true"
- "CMD_HSTS_ENABLE=false"
@@ -35,7 +35,7 @@ services:
- "CMD_OAUTH2_TOKEN_URL=https://id.hamburg.ccc.de/realms/ccchh/protocol/openid-connect/token"
- "CMD_OAUTH2_AUTHORIZATION_URL=https://id.hamburg.ccc.de/realms/ccchh/protocol/openid-connect/auth"
- "CMD_OAUTH2_CLIENT_ID=pad"
- - "CMD_OAUTH2_CLIENT_SECRET={{ secret__hedgedoc_kc_secret }}"
+ - "CMD_OAUTH2_CLIENT_SECRET={{ lookup("community.sops.sops", "resources/chaosknoten/pad/secrets.yaml", extract="['KC_SECRET']") }}"
- "CMD_OAUTH2_PROVIDERNAME=Keycloak"
- "CMD_OAUTH2_SCOPE=openid email profile"
volumes:
@@ -53,11 +53,11 @@ services:
environment:
- "POSTGRES_HOSTNAME=database"
- "POSTGRES_USERNAME=hedgedoc"
- - "POSTGRES_PASSWORD={{ secret__hedgedoc_db_password }}"
+ - "POSTGRES_PASSWORD={{ lookup("community.sops.sops", "resources/chaosknoten/pad/secrets.yaml", extract="['DB_PASSWORD']") }}"
- "SMTP_FROM=pad@hamburg.ccc.de"
- "SMTP_HOSTNAME=cow.hamburg.ccc.de"
- "SMTP_USERNAME=pad@hamburg.ccc.de"
- - "SMTP_PASSWORD={{ secret__pad_smtp_password }}"
+ - "SMTP_PASSWORD={{ lookup("community.sops.sops", "resources/chaosknoten/pad/secrets.yaml", extract="['smtp_password']") }}"
- "URL=https://pad.hamburg.ccc.de"
depends_on:
- database
diff --git a/resources/chaosknoten/pad/secrets.yaml b/resources/chaosknoten/pad/secrets.yaml
new file mode 100644
index 0000000..c04f9b4
--- /dev/null
+++ b/resources/chaosknoten/pad/secrets.yaml
@@ -0,0 +1,238 @@
+DB_PASSWORD: ENC[AES256_GCM,data:jV84d/y0sBF1SeaNB6zj4EvRHiKLks1T,iv:mPv5cuy/D1961ZAoAkp9445x5nov7mMfNJiikiwsNcg=,tag:vxW9JYm6FdCgKc4lTqTZXA==,type:str]
+KC_SECRET: ENC[AES256_GCM,data:S0/V0RYvg0BsnZCZ0itZYirG9dHJTpTzYLzmw03bZzI=,iv:3bDIUZZy65hOnScIVO3opXz/V/0p0UFavu8XfFtNqjM=,tag:0aYfiIOBzUu2eQOb4tjA2A==,type:str]
+smtp_password: ENC[AES256_GCM,data:IfDrD9C/64fya4iOZfzW4V1WFxgtNvW2Ww==,iv:hegTsoGewWm693G7Nt6dVsTEDEUwEWAd9zpiDa8mZJQ=,tag:3Jurd4DmpvIGL3g1VjXZTw==,type:str]
+sops:
+ kms: []
+ gcp_kms: []
+ azure_kv: []
+ hc_vault: []
+ age: []
+ lastmodified: "2025-05-03T20:39:05Z"
+ mac: ENC[AES256_GCM,data:JYRoxtmv+WidExD2CvR/6NGHcjTHHUMMslzZo3dB2tNiM9RiWJt+SW28erGt7rbqNYGfKc4jgQTVBtpqWksS0oF9hARAoBm3P1ggufTo6YhTGOi9j2bzcNlE66R3ak43Z9m9HkUzDsBdBU8cb6n5PTGTge4FUDAmJ4Ab6729JGk=,iv:uNuSWbXHBHYPdDsc4uSP46HS+hgUZReK7f1pLx/bBrM=,tag:IiYUq86/eShw+/E799gBcw==,type:str]
+ pgp:
+ - created_at: "2025-05-03T20:36:54Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxK/JaB2/SdtAQ//eXkOeME8b6j88gPFg9TKzqBlmf94xy5iArfAoul5ytNY
+ nqX81BIbYAvpI+WrHdDVswNivx1zl6tLmowUAzGbO7p3ANveGbF8TKVwTzTrol/8
+ rXuzwzGnBV70UldTgXQIyHpEakonhun5RUenM9siU+W0SVSqUMZ1IIvEcK1aZoxy
+ rmHxRP/5iC1nW/yy6WLUBFvziDE0zpYSJgyZGcIUsUireLmHTOu7xyNm+aIXEJwE
+ 5+RxRDGuBAaKNjJ+hO0BCitGvlbgyGfjjaWOAc8PxrI5/qG51TwghJpzNixb6V/J
+ GWW9jR8K2yAWktVYQ/IDkZcTJST2/n/X6JRRvgGZinYFdIEuutoRtrugPeM6JHF4
+ aFa2uPkL4YCTiteWWn5HeliqWZQEOgKi93AvKrihtcOjIKtpgGlugyhDZnWW5nP6
+ KVkPJRHEdalpvGP4ULX9qeTl/u4D4LBTnkEkAaj6xfqo9KP6cqztaunCDeDW7Czf
+ cWquEFxuMAoZIWLKwvpC/n1VbPUgIuPt5qibdUoTvQONay4aXJJbXdndX5HzvDhP
+ TcJ02DgLdvD9JYQ2NPQyFZNib+MJzrZKoyqvnkPzrFAzBbVy0nDesfanUYjW8Ixj
+ yLHQgoanASwqUmEvY3x0QWSc4KpcV+6AuQCz7eoNbYvVA2oaKS6l+5dQ1pT/WAbU
+ ZgEJAhCX1ElhAmESO6+2UNYB0LXhrxH0W+xOikEuz1/yuDVImtAGN/gOnkTjtm4k
+ LoXvPoCYoRzqAzYoefzHpAuto+pSt1vD3mYJvCEW7hlHblJEYLzVp9UhyNHbYiz3
+ SMnUcl9tRg==
+ =y51+
+ -----END PGP MESSAGE-----
+ fp: EF643F59E008414882232C78FFA8331EEB7D6B70
+ - created_at: "2025-05-03T20:36:54Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA6EyPtWBEI+2AQ/+MkzGc0xUFV4nVEQLCY+/lsW/UOJE2i7gHPVbq00XUBgJ
+ l9kgE56aGuCvz98HiG3E8R5J3BP3cbdXbr1PrWF5wjKsek1pzmTwTWpa5wZ89osN
+ CDn2dhZRW4ksqYvgUrKdx/tVfDR63aYdbvTU0w5pjjCRev5DG5FvfzvrkEZV7TYQ
+ 7nVO3nk2p6x7cCWhimKEDc77YNg6xs41APQQANzPdGByJYY971lGYCgbi13ZZhXe
+ o5NLBHCIWZb1n33wdX8UsafGlht35n8CJeedYa0fQtH7+extw8kPDq4LXB2LGT23
+ x39u8+ZLqaGmQD9c5AhGmZvRxHCkm1SmgrP1jNKpp4qB2wOw0CMJ6fswz5uZYOBd
+ EwptUW7z+RMcwicNnZN7LCI1rMvqRfzoABfg6tCQBr6mcPTKjnhsGh4rKeMXXpz1
+ e05v0VPuk1Y/+T9reZy2ydEmxWU4T6OGYFYCvTCpM1SV4ovicW8Tdn/qrLU9ZEGD
+ jaU1XouAIuzI4v+MFvu6qHCoE4Jg8uiSItoDPpNXaY7MehM+bJmItpViujQIvPRh
+ 4thDnYI+o39NNAzI/RpPGhBvsp4n87GPNbzBu3uk9iZiC++xq5w5ed/bId2+yCEq
+ 5snMq6gwZxnBBFC15enKy7Y74Wy84nywrsCWBwZuFiLNscubBetMggftwJ1Y3+3S
+ XAHq/rWA9IUNaFhOabMUezljD0f0eVuirA0kyIUdg6WBYzQXuN6Zexevi+CwtsCW
+ KQbAlcFilZnXBj+PNpUfkRKlpKeUmfs3qpaiPtPBBHvFfkOXk10QqnrbMmjG
+ =bKDT
+ -----END PGP MESSAGE-----
+ fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
+ - created_at: "2025-05-03T20:36:54Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAz5uSgHG2iMJARAAnZyTwARrT1U4Bi+EmQ9ILbL0auboxjkYTr5btaueFJEv
+ jBK4URpaUHlcnhT83Q6+ap04lqL+8oEJWWis83sQ0vu9PgdyNdLkFHKHnbTweSbK
+ V4rqqXld1xfj8vovluJZYdflADa981Bzenf6BNUUWv25p5Pek6M68j8UN3XVXIHx
+ 2GO6dCj7jRMh7+VMpsyXaXnwtt0JnPy29sKWDRQGjZTRG83DXXJNPWLLD70KS8Ib
+ uBTCbjOEhF5tkXxLo+3YR5LWit8NNqXtCQl7L6AgmQUz6zNzNnoTDph0T+F5FGDe
+ ek6qamKeK5f+GnZoXZqdnfFKEsleToo4r7RcYSif91ohdoQF6Wbal+mrxb6Xh5OQ
+ qsLgXcFiT4l6Y9AYtkjYj7jrl1W9FABpSBxzimkhuMOqR36Ah5SN8tgSUQF3cXoT
+ 9zi5F5kkvjotaGNEDfMiX4pZhM2jgT838JXJKvIyFuyGsPBNLt/ULX2r8zWD+Z0f
+ OL06XRKi6aH8zOKRNXGZPIFO5xbxDuShwWWxiymb0jDLPhH6GWLFvw6VYx00/pT+
+ JDVbeiQR+sn8h4j8TChqlimheqgezcLp/DSEr05nnfmqwlKrPkSwPy8nffMnq456
+ YtQQOyCnnCXRh3syI/kTVrRWlPIspHc2cJSfA2gOtsDFWRLhH40S0ut/3Y++YeDS
+ XAHEDLQk0U5pRJM7SEpcTNOzzgfFaDL9WwE042BGDgxCqwuwTeqRxhs1BmcP+SEI
+ QOT87j9bKOQEFt4cIUnQPjVVJnuJRBqx6g4Q3D2Vcs3SZ2vdCrj3mirIqGeZ
+ =p15o
+ -----END PGP MESSAGE-----
+ fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
+ - created_at: "2025-05-03T20:36:54Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAw5vwmoEJHQ1AQ//Z3mdByBfD+vcDC5F5a4IaxbwQwgBEez8OOMg09SgU/Da
+ yWKdhdFGwxYP3seW2wRTa2Z0f+isbEeK3KQby2uOOcaMUWVJuxteEXqC3BAz8WPx
+ ygrcdgGrgQLxWeR9gOsxmal+TCzMAgMxwBS1G3wN22KQZ8nZ3qHKwVe2W8bNjSgk
+ kw4tHRoeJ3PNArqQZcdyP8QIjfzmLK5Q3KQr1Qdh6lu+Ild7GlX2444BmZL/Ccz5
+ WG0eS9TwqoOX4YrUgrY6ZNHhWe7lWW+0CZlNhiOG4UdjstFkmHOrb+kbsjMPKXac
+ qHOmIN+YnGQ2RYP80n4t27SOot+BuOUmfM3w3raqokqftwZri31RLEWm0aflX5DC
+ X76f6QIgcjk/0PmaevqO2rv5BdsLcoQzqcsGxglIO2owkypdQkzbM4kHZs5mHP3U
+ dzGpzX+nJGswgT4mDB01E0UPretR7ERRBLr+mJxJ4v/tjbNj8pcogTKKGQ90lxd5
+ zDIAYMZtFPcsV4QkSqiodrE3nO4efnWCL9PVfmES+DmHbNalNHaN5Ir/cpC1t8qz
+ XpWMLoObralSAN4lgpT/vR2c0Rkl3LTNqZY3OHuOsMs8R7Lii6GkuiXAGX8jM29D
+ T7ANrajh5wMTYW+fkqgKUPO8m4PuJDoBxQfPLiBsnwYzw9GFeZepzcOX/5i423nS
+ XAEf6cMx5rkkwnkJXzD3KsbbCxFlyNzAiCbv85xrgwHk0qI6bHEq/zBmUKsUMYUZ
+ QnCgIuBHPQWG2HfdTJZU2Npm6R6DQYsDc8S7f7CgFgUOCk6Du8iG10kqiLin
+ =bbHQ
+ -----END PGP MESSAGE-----
+ fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
+ - created_at: "2025-05-03T20:36:54Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4HMJd/cQYrVAQ//Ugz7BgmKUpXYDIgOdebqgR/UIuWY7k1ZtizYh6mZwPxX
+ BhSKDuriMftJ+P1+nKdyD4GryzA8jbHuRl321JHjo0R1VztybJmso5Hd9/TRJilo
+ TPENeH8q2NYH7ULpLNuLDXBDAsiCJ/b53fKnngen2rYJxnMaSxHHYuZ12L2vkZvx
+ W6aH7s9HxGFxo3k3iO13ve/oymoI4oMkheQ41bmmQTv1zZXcuxbFHzSIeaEeZWG8
+ cCEeq0asvoLWdXdXLI9ISfGpuI6a0aBd6zLxfmS0tkQm6ziNC2ZCW96RdMGWgqLD
+ M6mnLp3C+bq1RL1q3RYJRGfTMZ6KvxSAhtegoe7Kd+ZfAvqkRejqV0RwpcLkm3oP
+ eLT0rFToDdlipoyND4pLzzjTgpBKfVdTjSStNqVjx4M0jq/X5bPAvjp8qpBqhPTo
+ DJbKjVJ6QnSMDQiwt+uKuG1nn/4ltYz8aTbDMYedFblzjmxldY5YqqqIVag0iWR+
+ sRLpcWJRh9HRcSyF7hC4XiSWEo5ykjnHsiae7PIzfs7JlGqYzx1+mMjaFIrto333
+ llS1u8rBktBuMpnj89cBKxr+GeHbdm6RCgZ1QFO8ldqDTNA3JfvqaJL1hZhU0Fkr
+ wDqhhzxR0DyrLxMu8CI+pnZkor+xoMi4aS0AsD3RVpvK6Xh/ontefmwDTGqTyevS
+ XAF/Lx9HuXWD4sWWmn0xdR/my8pD26qJZF/Q9Tn6cMTJGT4SzMeUMhV/hFxTMaOD
+ M6qUI+VZRntmO6COwUDzaIIe9Om/c0Zi7ciEiqLRtVYk8P2AVR0RQvMLl1pP
+ =VH8H
+ -----END PGP MESSAGE-----
+ fp: 91213ABAA73B0B73D3C02B5B4E5F372D17BBE67C
+ - created_at: "2025-05-03T20:36:54Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxjNhCKPP69fAQ//UxOCThA92qCY/zZUmiRlPIyKSWb5EgNzil30oaXFtVs0
+ 15ALJPrB0vZj896/pHGF8m92ubmdbikaFYVeZRewLjR3PXzwYfuErbirWJt5v9c5
+ tbedfTCQYv/nYUxCLuU1Cqd+7TzYsNm6ekBHeAsE5p3cVQtVWtJCp0OMIj5KBDx/
+ MuP9+SdjQi0r3rtklqY1gV744uLBMWCHlqlCy/aKlF3+HhEDCrx0Ir8GMh/KxZIU
+ iwsD/gxKBQ9K9H2QVf7XltbBVuaYIv5af0VwFnnmmfE290ba3EKsMcrY5cPQvfWX
+ /oMF0Ox/34EGcAORJ54+IHer7nc4nXKt8IP+jvgrM7aTxxsh/KSCWPqWdE6KAbty
+ 97/L4ziVJoq8lKGW1pl/S1M6/GGfyC1T732kEF0Q3ewcTIpvAZGII4+2ae8cwrG4
+ H9bHbfsMn+gOuXDfNmsaLYNnupLC3h1LGzmvQCDcWMmTvX6uJo0UsPD2TzPkGTVm
+ T+ipF5OTXn9lcRkfBID+psKynLOFAU5aZFnWeD+xMt4KF2uJzO9wREzkIjj0/H/M
+ GljnjX2ZrzyYu/W/xO/p9clefAFPlvxx2JM9FkbqcvlZQus6Av59h7lYCz7B9eeY
+ myDLlajpxcfzYW0Fc7PPION9LAwN7uQqgTOt/z+2CirMVNpH1DKu2EfdPbH3dQHS
+ XAFuIZ3myamt+tfhN8hqzf+ICQGQvMxRuCNH0Hxg16104VnJMX3DvaGo/3m+X2yj
+ T3h/6BlLkxtQ7qOYULHTYh0p7ZOvNu/H+I6lGsthWsHr2AnjP0ZiYrpK0gLi
+ =Zujj
+ -----END PGP MESSAGE-----
+ fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
+ - created_at: "2025-05-03T20:36:54Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA1Hthzn+T1OoAQ//aa4FwDb6leO7mNh9sOLIxtCrhaveW8LFu5deG8vD/2jl
+ iVaGjT7g81UlkMQoTNDUoIWrRYK62h3BTocmhCoVwRqQtG1gM+iL8x9PeAwXMwwg
+ YQcJrudy466elBqo8+iBAqhoVUu+40aW/f7sp9ZtNJciH5NFDZsMrViXtfIMSAeq
+ VC5+WgyfKLRho0kJQ27qtsohUb7DmxosmtDQz/Tl/TjSD7nOGsuFqti7Qu0f7ZVQ
+ KATNif4B5cDyNJEb3DCDlgBgZb7aPsFIeE63vZVywdaRum1+Uva+PvvNS9YhHxb+
+ lIFmCbMm0V5cJ7Ug11J3ObbtkoNf937LViJkF+KeqMuoap7jB9UBMSdc+8GUlHUR
+ hdipoKVpjwDmeMpTOA7xTUsdO+9XCgkY4La9F4ToJE/n5X4xSSpdIZxSsH23VxW0
+ BKuwWqDrTNGFzSWiAM5NLWco7fsCO8nHWTJG6jJIO/A9ZcUCjHaPadvaT0DwhPZT
+ Yj7dd8OBs6zBHO8b8x8a8nfplqcG55tVwHOeGrZe2PUlxruIOwIbT3cJOUE7ZUqT
+ A6InmeYRiL/ZPCpTwld4/8Dc+l+rHxgQI0L6X+uY7K0ioN2TaZkt5VsVhEHoNT5e
+ uEj6I6b3zEvpQ2JiNZI83nUaQXeZZB+RQ4Nu2hmomHzcxEziHxg6Rw5LNMw8x+fS
+ XAE8OHA5iDOYlIKO1aCuO9me1yQjZGK9HoVXbYX6rVcFqavePgczxDNHAtTJmK6e
+ cJGf9OX1sZ1xvJlRxYGsNdTfkQQk/agzSpy6DJn6rhD74beG/QMTB1yfiMYI
+ =dHLm
+ -----END PGP MESSAGE-----
+ fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
+ - created_at: "2025-05-03T20:36:54Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA46L6MuPqfJqAQ//eqfwau6y/7BUV8jJWBc7a+2qqXFRD2EFTYEi6Aaxo0Yg
+ XLV9NLQKOK0jakV0dGnnkM25aSdsuvQcM3Mbj3hHA+9vqJipYVbWTxtn3JR2sOcl
+ FiTtbie6Q0axkcT4aVXdUvsNA03Mm5SSDE176ZXYdoB/EdbTAL5AlhCohkKRArW0
+ V5CNzYj9c7WyNfpMgoyiKSGRcKqdKfYXRjN8a+6VX5tsclnE99NO2YTG9HQ7+9jY
+ 7OJ9+zCnPX0viR6F7bb0M1+wsP0S+5zwIsz8OGw3hfXvxvwoRNNR+Sf47Oy68Uq2
+ aePW5H0eNBlEQ59ec2Z8PEEGHOD6L2qGlmZGQPNlHPgcsPLz0/f1W7+t4xrX7LbL
+ twsXulcdkGQKmi3Vayhsz5xLOAU/kZ1lVOBlHSq/XCbLFcrz8BjSTt/1uNF4Ltu4
+ kXGkxme9Gig7Xp2VeaLcZxnHlfZAVQMOb+orI5obptVZKzMBAMDkh0v0YOt7GHdz
+ pqr6TB458Y598ES5PKrvhLvsrk6hy4ZbJE1txu3Dd5aEwa3ROoWBvdkhtUghfibS
+ byXZ2YeGeeH4OGzt9g/CS7zbrcIQhi2j44Sq5LB2jpgLqf4wvpBnCJjyM9kB2OyW
+ qIxK1J1wNdBkTjAl4okZxByyK4k6KfnVGnsK5OuhxRilm3/8mBolenzmvWxZGujS
+ XAFRolCuiN8U/UToZEgyMGyrSyEDuNwoVAp5G3slBe4SJhC23A6o8wZpziBGs+ot
+ mwoCgUgMeabC8DNMRGFpaUA/5k4zBIjHG61yj8rM57zRKa/F72Ma0UQquH/l
+ =ENwY
+ -----END PGP MESSAGE-----
+ fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
+ - created_at: "2025-05-03T20:36:54Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4EEKdYEzV0pAQ//UVt7q8e23s3x1Sv+84yZtHPgWIupImeKABHkxI51ry9O
+ 80tL7+aC83MEr54BIou5ktHyBqqtoH7lRGD+z7eWX5F/YtECyAn8VFpZR6cVntrx
+ x1BYdRhggCOFD8otG8kWvAiL3Kd/sEISoF+rGIojUGO/qEk4RPfFQdAeSYR5xMBX
+ ne5zq6/SzqRM0KMWKm4fgj+0MiFBs0v5jLGNYflCTOhB4c+Cxeil9IjAiPFv0vhk
+ xZnTdQwc/jkDZgwduM8M8tGglA7iXUGQa/vee6YELRJzpOIHqcIHhg+0lZkrcDPR
+ tmPa+obM+FwTqEXs8TB3VXVzMobgmKHKQ8E/rebzfQXnBZH+I2DX6X7m0aRMJ6SF
+ fclMVbBx5+80dA5PDNSr3ADmo/i0qjrqwftIdf4YjWLrPDt4/sww896j2dOxnDaJ
+ aX0Y/xOR7s56+eWiy2EpPZSLm/GICQa9IS3AA7xEKc0bJXEVopY/7JTmeqXSyavH
+ WetWwyrpIeDLriaCJY87YzVYxv2T4K1kpNb12Cz7GZ0lA89nEU/TIVgoWeiTiefF
+ dReBGhVIG0nJ4EvzsH2MbANJx1ddwn4vU2jpyha/4UmysjA374RFkUtYzFE+E5IV
+ P8g0HAUNOgjmmB2u75buDMJ5A3LXzQHwnQKhSI6b81Pdf0zIbeSvQUZ/Qljwg/rS
+ XAGWI7LoPEKgXze5em41kkGxzZye/pOCpweTShWEUhARq5KOhNJmk58qzAyq3iXz
+ PyUhW3C0aBgheZcgTrSX0i7JdcKp+ucDb2iCXI6HD/4GvUr928FYaGVhl29O
+ =1k09
+ -----END PGP MESSAGE-----
+ fp: 9DFA033E3DAEBAD7FDD71B056C7AAA54BE05F7BA
+ - created_at: "2025-05-03T20:36:54Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DQrf1tCqiJxoSAQdAZw0B9Iy2Rq5eCe0WJsOkTdH0tuHMoAs71F5ChQm/KQMw
+ YIEEXAmMI5Ma+m41DL7glPJ2wPn+jmhSf2B27ZT8tW/EJjeOsrx1wjKre9lSZxRK
+ 0lwBeOY1Btxg51qGU4ZBJFd5yxb6ql2THEmn6fzxk5zah6KI/0Z1bixhTzw5wp7e
+ uHu4gU46OlX6cC9RPXZ1QxwqS5tLHhdWhM0gySP6DI6m3us1mWXxDnUCBBEAdA==
+ =eyF4
+ -----END PGP MESSAGE-----
+ fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
+ - created_at: "2025-05-03T20:36:54Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DzAGzViGx4qcSAQdA1rqOtvRBSNHEq6Rp0hMGnsI00gFg6ybh/Ub2q+XpjF0w
+ zSCooBTjoJnYzeFia8iHGfRcMmJ82GoqKkwCwb9SBQkF1Kh4M6cWjboWhLQMJIEg
+ 0lYB8kp3sNzHdrbV4XVb8payG7mPljnRs6O8LKlOM11ibXSyy4upOY6/p9/Aqkmi
+ u70kq8RHtuBe6HKJTYMtWB4yNkm11+f9jq4qNYBi3vESvyKHKvI3ow==
+ =wIVr
+ -----END PGP MESSAGE-----
+ fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
+ - created_at: "2025-05-03T20:36:54Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA2pVdGTIrZI+ARAAtYkYbe3GejwxxFd/YxX/ioiQyBwNN1IMB998iEponrlY
+ AbX/gYiKl+7NHYfnmU19tUStxa9di2CIjBIhr7adU66Fi6pfcrab1lIUtvqnhZ+m
+ jqz6xxMmlMoot5ml+jJXyNL2IvlHrumgWg/FL08It5mGePuMJ3RcO1W9J7zPqgMi
+ w3YGTbtCBSM2xF3Tmvb8BxqCHsZW5RPZGhB1iwx5UHl8oGsJQII54qsPAqIjFkhJ
+ 8IoAGecePDtihHKZdtqGWspvvM4OkcVTtrfaWp2cQX3SvDY9Szsr8AjSpQxOFWmX
+ T7t+GKFf0Pr/IY4oF/9pXOqxvU97G9xhCpNVj9nGYFSGFmqsfpysnzlnVH8Kaf8Q
+ lhhMcX75VvHgDjqeWtBtZMKSIBf3upw8EnBnOKAh/YCqrcBfU3rQlzWVrl68iOof
+ BhEwER7vYt9WlHjAelAJ5F62jkUiEL7Vs7G2B83djujxQvfaBNN/LU9Ei4hmMY9O
+ iusAcLlt89ieM9l5kRIhqi06eB0+FH4mH9sbZAJH7nxBX4KUk9yQbBZlYPMINJRh
+ C0R2kcTUJf78YxrIg8SvfCVmCu+VWpswWixy9502QnJ5tQfriB9PnTjSlIgQS8Ap
+ Ewtx+tX9/bme0uGsNhxebdtD7YwW/8T4JtpAbNa+DfNpueHZ5zEKIzuPr9YG2r/U
+ ZgEJAhBtkp4BuFmu90jI1XlpWdnDzSjSqi324g9b+WCHQQ3iMSm4ExdpEePJO+zH
+ KGDm2seQqMLfNNgPbkPxZiqKg9CbAOeU5tc7nBoQPyy32gFXFYncR5TVlG/1/mcz
+ GFhe/lc3mA==
+ =SLez
+ -----END PGP MESSAGE-----
+ fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
+ unencrypted_suffix: _unencrypted
+ version: 3.9.4
diff --git a/resources/chaosknoten/pretalx/docker_compose/compose.yaml.j2 b/resources/chaosknoten/pretalx/docker_compose/compose.yaml.j2
index 1eca33b..3707225 100644
--- a/resources/chaosknoten/pretalx/docker_compose/compose.yaml.j2
+++ b/resources/chaosknoten/pretalx/docker_compose/compose.yaml.j2
@@ -6,7 +6,7 @@ services:
image: docker.io/library/postgres:15-alpine
environment:
- "POSTGRES_USER=pretalx"
- - "POSTGRES_PASSWORD={{ secret__pretalx_db_password }}"
+ - "POSTGRES_PASSWORD={{ lookup("community.sops.sops", "resources/chaosknoten/pretalx/secrets.yaml", extract="['DB_PASSWORD']") }}"
- "POSTGRES_DB=pretalx"
volumes:
- database:/var/lib/postgresql/data
@@ -60,7 +60,7 @@ services:
PRETALX_DB_TYPE: postgresql
PRETALX_DB_NAME: pretalx
PRETALX_DB_USER: pretalx
- PRETALX_DB_PASS: "{{ secret__pretalx_db_password }}"
+ PRETALX_DB_PASS: "{{ lookup("community.sops.sops", "resources/chaosknoten/pretalx/secrets.yaml", extract="['DB_PASSWORD']") }}"
PRETALX_DB_HOST: database
PRETALX_MAIL_FROM: "pretalx@hamburg.ccc.de"
PRETALX_MAIL_HOST: "cow-intern.hamburg.ccc.de"
@@ -90,13 +90,13 @@ services:
PRETALX_DB_TYPE: postgresql
PRETALX_DB_NAME: pretalx
PRETALX_DB_USER: pretalx
- PRETALX_DB_PASS: "{{ secret__pretalx_db_password }}"
+ PRETALX_DB_PASS: "{{ lookup("community.sops.sops", "resources/chaosknoten/pretalx/secrets.yaml", extract="['DB_PASSWORD']") }}"
PRETALX_DB_HOST: database
PRETALX_MAIL_FROM: "pretalx@hamburg.ccc.de"
PRETALX_MAIL_HOST: "cow.hamburg.ccc.de"
PRETALX_MAIL_PORT: 587
PRETALX_MAIL_USER: pretalx@hamburg.ccc.de
- PRETALX_MAIL_PASSWORD: "{{ secret__pretalx_mail_password }}"
+ PRETALX_MAIL_PASSWORD: "{{ lookup("community.sops.sops", "resources/chaosknoten/pretalx/secrets.yaml", extract="['PRETALX_MAIL_PASSWORD']") }}"
PRETALX_MAIL_TLS: "true"
PRETALX_CELERY_BACKEND: redis://redis/1
PRETALX_CELERY_BROKER: redis://redis/2
diff --git a/resources/chaosknoten/pretalx/secrets.yaml b/resources/chaosknoten/pretalx/secrets.yaml
new file mode 100644
index 0000000..8a9996b
--- /dev/null
+++ b/resources/chaosknoten/pretalx/secrets.yaml
@@ -0,0 +1,237 @@
+DB_PASSWORD: ENC[AES256_GCM,data:JsoMNWdNAMTbiJWuaD3Voz7gJEUK4f7hrA==,iv:HRDsw/mIcCAMzpr02GUAFKby5w4r6zOPYqUYD8wDi2c=,tag:c6f4YjZxTORcDCkvztahRg==,type:str]
+PRETALX_MAIL_PASSWORD: ENC[AES256_GCM,data:DTwMQu4VRWkr0o+7Tw9PFwpDXTnOj2k7Mg==,iv:c2iwnymiSKm079edPJw/TvUHV2mDWQFbRGBmibBBQtw=,tag:7VpRWhU1E3+m32KG+EDR7A==,type:str]
+sops:
+ kms: []
+ gcp_kms: []
+ azure_kv: []
+ hc_vault: []
+ age: []
+ lastmodified: "2025-05-03T20:58:14Z"
+ mac: ENC[AES256_GCM,data:67W/Ho+P2g04EmcVF78thDkibgeelSRI3WTyJu3mhhpl5EwXFiPcNjLe0ND3XQxWjn4F5+TLP2px8aY36upmXHIPys1ZLYL0jipF6FQI+0C2bFupOKll3/sFWWCp+51f59LDI1fiI4Q8nIMTASkieeL1yZmMHgrAV4JQyXjlCgU=,iv:cA30UqfF6rX1fxXiAx++kZwh8+EEPjB9+BGerCPdTx4=,tag:r5Yw3OFq3Z6KZJb76PwVcw==,type:str]
+ pgp:
+ - created_at: "2025-05-03T20:57:32Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxK/JaB2/SdtAQ//dOAMC1Doyk+FD0WTNYwmViJO53QQy69n6oYJ51+qE+zc
+ 6IHGmh8wAWKnmy5s0v5LJoewMf3XhGg5sIoXuBj5OBICKSRRGozzYNJ1No3py3PE
+ 2ml6FI5SAja8QBQzNoD+D1zP9ba6xYbwfkx2DA1lpBmXpVQsUot4A6P5WQHbH3uy
+ 6wpwTlvYNNm4SWuH7yH5f2NfYVhJqaKaI08N34mYQ/f1OuwjWZGpz8jjt0AH+aGV
+ AcMPEXQjHgq+Kd4EHXSj7YAR41tiPJhYzdpYOQ1XX04JaEVMCG0iYfrfbcFtbiWn
+ YZ3Ro0hpGpND2HJEB+M8NaOf41k9z75KTtGsoJJUIIWoCkdFxeMh7/UbxauVEV7M
+ ussl7Jq3jbwC4zvKzj8T/es5w4nPZ0AGzz6Wd2pmYuy0sdaOczEbVGlLtACTaHB6
+ B/LXVdlRxCQxZ13ZQwMTDvdvz30sl1wFCh1MtVXQGNS4xEn8gufGgcgiN2H/OHRe
+ i5jK7ibeRU2aMPD75RXhSGNtN53FINAxkSa715inHFQVt6fXH39eJNLoyX7dZb+W
+ XsiBwjIhW5qd9rXEqy1W7QIZKA6GYuyPaBgpCaaqsTK+6kXinV4xYqkSghrodSkE
+ oMc394wMmL6CYiPDRr4IhjSjFTxj+5AKkJwnYY+rKFcPD8qyWYI18E9zvgYNsK7U
+ ZgEJAhCf1ciUAngZMQtVrIk2NqkzJlwPdw3OyisZxsWsZcSf9zmIHA6uETAkwHWB
+ IGh6dAB4TcQUjj7eTDVI8kYd3oaKwrQMGhQeBDfOA8Kl5d03+WwjMTozwMnk43oP
+ 915KaE3I7w==
+ =lM8/
+ -----END PGP MESSAGE-----
+ fp: EF643F59E008414882232C78FFA8331EEB7D6B70
+ - created_at: "2025-05-03T20:57:32Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA6EyPtWBEI+2AQ/9E/r31WwmWMkqOIvNHsCPZKYn9WaL0L7a4fbXQ4CdxKj9
+ 0/0aIHz8B0G1BLXavdQnkFSu5BvLeaP858BXtP7R+IghzMuXz77i3tyszXU1MZYT
+ qQ1JQxj0e8LUw0E0FhrsopWWALZ51TruW63JQVyJNVhyRUFrJ3ejGuP3jCJUmNRS
+ NfdWoyHHOGtdXHk9j7Afwg2xn0ZABObCD5Epwlns71xPe/sTDzELRbY2S66yhd1N
+ fmOgw7FrwjrRrtiFarhFY0gUYEaMIZDndOQrjhBbR+G3OFMg4ia+t2xH7A2y7Pj0
+ E1TcWoeZH2Pz3A6C596lmfXO19AsKy1flfMvugl1o33UsOYqSxu45JaFX7BEJBDW
+ wUh9lCkGwB7JM6XjWPcgrtLutOELZFxVrnzrNtJVSq2j6uhEB+Eh3C7c/iaJRn96
+ 0x7yl0Va6X6/5NAtGpXpsJaQtz+TFe7X4hVcOEJX2l1qpPkjRcE1IczJFjyYV8TL
+ beq4qV81AL/RdR+HDQ1nGsmunBV/94UMG07GhTYjNm0QFWM2IhQkgs4oHeBeSqm+
+ uXVpY+SFFoQto9+YHX7NnBkg4kiFy6A9tsYQrqffMPQZBn8V81KQkRnduNTspF/1
+ 6E0ne/E8PXqmSGedCEyPLzLXIxrWC389cjcmF350wF7l9F620IBINIMtqgQMQz/S
+ XAHXATKrETDrw2YDgwLbB9oIptUKob6B/BB5P1uFhdaCarbq43RqYnWcLZxdO5WJ
+ 5d0lbZ82ykBAo9BUswnaY3XvwYPRk+bF79pQ15xljjksiFF0Gg+NzbilNkbS
+ =QV7i
+ -----END PGP MESSAGE-----
+ fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
+ - created_at: "2025-05-03T20:57:32Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAz5uSgHG2iMJAQ/9EF9rxFPcZShqJZn5hyUQ/Y7RO/htHo6jdqFu/DfpBcCZ
+ +pFuyR5Lq2etOvxbB9/HEqAKxbpeRzReu7c7D+WZz6CaS/PWj5TDxt03x6jNQQE2
+ kCiZzTEB+VchmDnC4ifgX6rphvqd7GLjwXjXCUcGjMne9ANJJrEQstdZ7Q/GR6ra
+ Fp8I8hfrB0IpghL0gfVFw1HvKAaprKUOMBXfLqzPbZbYxdKMPC59ShrzgstHgF+x
+ q4uZgu+EOcpncTGvnReFbQjA0DgKyRGhATvAzASvqU3sBRAwm2hugVrcmWEpQRZP
+ QoLUchCLelcIf0eeolq5E2kxWxLTiyiGN7F8CoVfkwWmqyNlGweqUI0+eTPW9XsI
+ hEnpeNmFtZPTiTPxTYAb346m9lcslsJYccbFMZEIBwk3xB0ijDF//4Q+5CIgGHNq
+ Pxw+z/NTvH5zWhotA8/yiP8iAfa2MikUmhDr+stCmUSjnyWsgS6ncWwIP/H4MCEI
+ Lk4rA8mQ/gkS9UDh6g3ftuAYJIgPz7jVpQn5oA21VdwdeFO7YyJCXlhTL/oMeW7r
+ xuV+BTEobFv1wrGVtVEt2cjjbodoINFXhXiwonnXquhoxk/ONrQoB9I43j0+C65U
+ w5LRhMMR0ao3FKHxwI4ih9JZa+3yocbd/7E741WBqvB/DPzd1XRQzP+x+HIEccfS
+ XAF0UX8YPVCbuJs1nVVfyJSHuRQSplhuBvVfsIwJCDFroXYaB1JtkDhVVHCofnJ1
+ MVhWIptfVbmY/C957CLNGHXZgE64cGvAXn1whzzGch/KlB7//DEW1iS1fbUO
+ =fypM
+ -----END PGP MESSAGE-----
+ fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
+ - created_at: "2025-05-03T20:57:32Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAw5vwmoEJHQ1ARAApFA1MoRir94aqTlZF1cZOOdu8za6fOPxvcSICMV5RxFw
+ Mq/9xFVtfGJ9VfYxW/im7HG1r7EjIpmOwXlm4fLGEIpafBrcJrQi0bxlbCB3p6z9
+ xuzCcmF5Tphuuh/LEBBhHnt3crJyGrWTZ2Dy7+wPSPEnN91bl3dGsHr2Kbis8rBa
+ QGiv5l0sqMJUWcZUmHTnvhb+KZU4dQUl+qTLM36X3ChSMFpuAO4w3YwWJ74F1Akz
+ b/6eIt3u87WD2r+ny6DXTNsDVIymGnsxIQLA+YSGhf4mwtl6HOZlBBxFKkxFp4HU
+ 3QA7zPwXY7g50pvlc3KJMNuZRTy0W9mpCnYKjHQzYkaD2JfVIrGmmQ47DEMnz0bs
+ 1pgLCbFE9TO1ur82QNntggSWQtOHr2ZFbF3BuFjIQ+V9rPHdCtGFFarZhwC2t9fu
+ KSE7vyYKO3o7g3BtOmqb6mqJswX1qTSyVOj4aqGSjG88lZq9WJPULe0w9rqhKwjP
+ OTrXm0xLSUk8QWx6V7d6kKiBH+QRJkr6gEdqovzFH1XNwtUnMIkCBudQgJAw432W
+ nOPfgXSifTT2hs/cWHo5ttoRiWOsvuqrCBmCETeE6L7uQoi6bhVVz2TBRVcc0rIR
+ 9AkuLc4mcQ3aby01+cK1ZVRybzTTVSmwGmssr2UwwxlhQUA+r5OjPugg1ynoIk7S
+ XAENR9L83Exjk8DsMKufYwRMMcZSyHzsH5p3ucewe+euYwCf3tB0iZPkHCdSKTST
+ o8lGtavDKNn564tKDeH1miuvas+e6FVLcdljTqZZoS9I1IX0LRnLLQbpFVzS
+ =kJu+
+ -----END PGP MESSAGE-----
+ fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
+ - created_at: "2025-05-03T20:57:32Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4HMJd/cQYrVAQ/+PKl8d6yCqlY2t4TS3MHHvxcPWrXM1+O2MKf78tH2OeiT
+ fBwxUChpNIvVX3aWSPheyFb/1PMJ/U828wPDMbBZrII2J0UXvCqnmuL08m5fT8VC
+ JjlkfnULNrDai/mPyxtpGJXnOm9JEmnUETl4xme8DbaWWg0QF73N4h+dB45olL2D
+ xYyeEZlnk9OX7fy68ADKxc9n7E17MjL6X4PV0BGx/15QhuPnwTFxCpe4F2dZqgAn
+ HtFunsjHwy9vptoGlh0KatCJLdaZaDEhmo5bQtxlpph2QJpstk4pGdLn5SJAUCYQ
+ bvfEeRFJl1yx0fLzYr6vQnqr79aFXVdV51ZDtAv0m2I83b34y4FDBvdoLrSUMGbv
+ ksmk7qxpknGoJqhMdORy+lBMGffG6EdcUaIdHqmLe7GmKrPh6CdNHzaKSPBIlZiA
+ 3YEVSEcDiVNuoQBAgJXUh29MqXIOPJoFw2hO2kwfYebYA/Z7ESisD6oCOiOIUspY
+ Gyn2T7TFHVqFfa30xA9eWYe4GkSVTGsg5/dCVpJxJI1L6dx0kQAIZVZ5vZzwticX
+ 2I+/2hVl2koCMqZJ8Ggx2VDLDUV1UMuolBeHXD4ci+3PcBtjHCVyXGGBls52jjO8
+ ooUEkVWwg9PhQUy0royZ7E6GEfmQHtdvI3tONlcXa9J8OUY8sBT2G1uek5jQFN3S
+ XAEfIAmGnoJPreDGSqVu44YCjImBEwVrDYI+R+WvDbfr9OCaokQAtxTYg4C21OV/
+ xaa6RmNG7Gjp8v60hj14k8Q8whvfBRvYLss5P4VhQAKquuEucblMwf9QYghk
+ =MMok
+ -----END PGP MESSAGE-----
+ fp: 91213ABAA73B0B73D3C02B5B4E5F372D17BBE67C
+ - created_at: "2025-05-03T20:57:32Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxjNhCKPP69fARAAiGtaAJAK6xOYlOoTMt0G9IrTGN7syKHld9x5sfFJxkdE
+ vDMWTmAbUEfteFfyB4YiZVvC+2PPEaXKAy73t5mZDzq53PKIdBUmiGseNZYlKm4P
+ 3KKIX+WdYBXjdqzG4TiQu/TibXoDNEJRxDw7LE0dzfPWtasbLREVRrrW1vaAq6Tx
+ hcs0eAmxpJ0Hmyz9R+sWTAAYaTxHTkbkCyCyqmAZF25lOlsbPFLsXXD/BT00CRB5
+ RM5XwjrG+3AjbY5x3vVrxI6Ni2395C1cFnSew7ZITscC9//d7nTi4Tim3ll/de4j
+ 5IIKykMdzsAchQuYyr+fljoOs0qOAUW18eyOE6Quvh+Hg3gnvEma4HPo5LkM7RBA
+ Uf2ki4FY3OHWJb6KcQL5VKKMzlfp66zEAJoQTWkvMfas5c9injn4ZrEj//BljXmf
+ Es1DtC46ZMpflZ10qj03ND1zYMdJvATk+lRGD8KdRr5aO50orLsyO3irtfc/zMok
+ mhg++vw4cj/5AtlwqntXGpw4gE0/2QKdHS5LPC1ijx0aK6SFXv6jC8B1qNT0fF/m
+ wL6gz2Ty7aqSQzKrxVDFXzhfgYVRz48LzptHpFjTJjQGYxWxoCFMlYoejMTuA7ja
+ FNjvBayX2ZSMgVaqgk+wOeh8uSYfszu6VkH3kFCMqN7WvRbaxkIZUAbEF76Kj6zS
+ XAF2aE/v/i2VD21EhGX9koMJXv4tmCwcvUlbdukF/yJBstunXzTGO+X2ePJ8AkS2
+ x0ZAlzof3Xdm2SbRGlCkFOMWr8u/K1je+MRN2igmZO2NglAwp9bGbSf+sHjA
+ =aXJg
+ -----END PGP MESSAGE-----
+ fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
+ - created_at: "2025-05-03T20:57:32Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA1Hthzn+T1OoARAAjz4TsJjNIvhb0+Jket7pqZTp68OGNaFuN8dc67HoqGLV
+ LBstxz0qkj8kr+UTi+QIagbKVTu/P5qFEJ0V4d12+QMbwR4yRBH4KYJNYzVgjXsb
+ oxkeHxo25/FmHDNz8z0D+CdCAOS4P24qSOKcYnk4vhZ9xI/3BmEH2pZKE6HUgulr
+ ZzqKkJuQyVwpzYgsA12ps7SycPLkAfF4TEBcE8luZlNDq/V8yxwEctpsmNlvvBoX
+ My9SycdGBTOTwbW33hx9lMyZL1b5Z/hlxduBKBmSHtf+o9KAWZpo8Hn7FtC6eFoW
+ j72T6OhkHIwme9p8CMUbg07w4jqtAU4qk0YHBZMJv4LmERnrOmG+24OYEFWX3bfU
+ n08HRy5sp64jH5FYUtcuEkex+jeA2yLxskXVhzhQk9Qrnw3MJtd7wnXK+fz2Dpki
+ 93KINel3Uw8DJJGui/lx1lerCyEU/fqVYtC5xYy0rzl0ZlBK7f9oSl9bxOo5vuHl
+ NT2Wb4r4v1xSewvPIxNeF4cLIC1wa9GkshmA50uOgVPptF/L1xMIwz/e86mBsLlG
+ byQNqbbezfK72cBERgw2tVlLrGXlPAQiGGocKNzIrythRrdzjOgw2Bmb2sfXw4J1
+ vCF5nwN/joRngd0iepxYYKlx+zq8G0wRwd2RXFscDXxkH+ouRxVWFdX89GqcjOPS
+ XAFimzl4DsVpB+abVl/pGaNrQDrYnwbPvbh+qNwKeMO4B+3VDzP0GN6LdNxje5/1
+ kJrmR2KqT6eDWq4R8El90RkZmr3Z6fc/SffCQoUGxGkEapWitJdkK0jV0Df0
+ =nluu
+ -----END PGP MESSAGE-----
+ fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
+ - created_at: "2025-05-03T20:57:32Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA46L6MuPqfJqAQ/9EGmj5h30qhRClaFwStf3b63Couzf8h+7Dk2GUuCJoBq1
+ +WDHDJW8zBSCBHhHlOmB2j4gUfrVHOHgbdEBQoMFatCpBWWVNOO/NwBCZwwL6Dp5
+ dmBA94bW+jOk4is4ecQ10zPBg06GVzpDuefYKH4BS/JJ8ecQ0q8cWO/smzUcpsNd
+ dnN3J1Py5VZOz8CO0SO/WMOoV5NA/yPmc7LL/BiSRtDEfi05r4r4aDLK4mJ/s7Fe
+ /7vllPhC1ZxntQ//1z0cfX33nKEtyTkOh4L+BPnrqGCM83zruAfSV870Ws+iPbHK
+ +S1uCll2ArflkzF0YiaqZd93IH0KTDHUxOPwHjL4J+apBOCmKoyd1nYEl3mVNQhp
+ NArOEwK2ws6xA3eLGjI3pKtsyWKXfgblyyQcSJAZ1YHK3I3YPVcPBFE+zp5puEMS
+ L0g/d/uzUvAG8GyYItAj/xEgaCaslWZrLAroZ4X5XRrZNcNCsO54m0t3xxPKikZm
+ ZUFV79+iG+Wb/Ib2DkPOKmOV6WLa5PGtK4PUUGKcTp0FbWhtVeOZUOmP/LkmrxBr
+ mSfnmKdiOYlyVNpaagI+XlGNSWU+9Im7r3FO/IEv5wmt+k3dpM6dGzaty1Q6ffVB
+ 6OqTZ3KrKgOMj6WIC9K7INvfbGijBeONjvapvg7SjzoXeyGqwS99IJrvdxnnc+DS
+ XAEUUYcXKmS0saM0DumdcOlfTZnzcB+JOiBI6+wbh2xiRy77DCDy+xW4m3tKCCvg
+ vJdEJNsSA4fpzZbjd1a2NhEthJxDuuiKfMmnGOCX9DX+SprzWzjJJiew47s7
+ =Zu7P
+ -----END PGP MESSAGE-----
+ fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
+ - created_at: "2025-05-03T20:57:32Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4EEKdYEzV0pAQ/9GIgxeDdrdDRTroHNgkVYoHLS+jkPXIygUcO5OGsmz/JO
+ kYxdW11QH2xnOz45e6wM2W/6Vf1VPZCeqSKxEUXHQkXnqPnqD3zw+ukO4285gDb8
+ 3reybhsXXR9L161H+7+sUyu0y3n5+wPTK0K5Y1UDxZ9r67cUfwvQu7EY4Fs2s4yG
+ g9d/thE6rR3lUIc7w2XC6veeVAjJrdvx6v04KaT+YQONfEu6GVNnA2vircH7JK6C
+ cqx4J4TGFS+XuSPm/07rtJLT/qD6Qao7JeOJFXhEwdTNu1p2ynmqUA0Pbh/Hdtgk
+ dv4kW6Zx1yoUuqPf5ehQIcFD3IHxlFAC/ZYOyxwfTgYbdfZC5iQSytapFDwjMgYG
+ Z3Mto5fwlhblagGQKZJ0TZZOZDOcJA5vS0IBQPYslZEVhRkAffJ7YHiNdnylCt0S
+ kLNIkq/wGZ6NTffonJRz60ADUw94jtS6pAjceIv3hlnn6MrkdoYAkilv+dS7qSj6
+ fGlIQl0BnHUe5zaDAkQrXeasbTzOhOZTTb1LuKw/8c6CKt8qA/I+1ragD5VtOW90
+ fc+o3Nu33MRirTyvtlltBnlu8u47wYU2dRPZz7rmpX2uBwKBi+qoNcWt806HgynB
+ HWqwrSNYv1y5pCaDQEsVX7vFQY17MN/4h2B9k0/KSlLWntpjo8wJ2yAVLUbOwgbS
+ XAHW8GLQha0t/NaDykltIdEWJijiX6faokYrd/hMf7MYKAU9M1t8C6LVJzM2k9D9
+ eMdKf2b12CPZZfvbA4cVEvU6XoDWTo2RoDhzMQU7QugZ1vUt+lYTx6t7F0Us
+ =Y9rf
+ -----END PGP MESSAGE-----
+ fp: 9DFA033E3DAEBAD7FDD71B056C7AAA54BE05F7BA
+ - created_at: "2025-05-03T20:57:32Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DQrf1tCqiJxoSAQdApm/pMPZEGvqpq62PDegCOFtAHb9gu2NbHanCGEaf7DIw
+ 0u75A6818/eKyi8ALEuydUDBNi2vwGSncUuZEacTlLZkLAW/XDi/wlXSkBv3OGbF
+ 0lwBWvKAZmPmQmU+aHQPH9RLNk0SAl0WdQtCveFzy/UfSkNX/QS93dbhczo6dyQX
+ ZK3lEsekBVR2FQhe7+bC8Ry+Dh04bsjnD4hCPI0lDM4loQoBg3xsw+41GIwOSw==
+ =yugu
+ -----END PGP MESSAGE-----
+ fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
+ - created_at: "2025-05-03T20:57:32Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DzAGzViGx4qcSAQdAaiybhXQcYfg5/0e5Zd5ctB1ncs4PIIdzDVzm3wJceF8w
+ 3rliNGXbcZB8THk5g49nvCHdkDNX98TF05DkaKTYjZmC4er8AqbRwamt/xkInuCR
+ 0lYBQsS9bNcZBar8dVL1OC2cu7F8KyT6rmz67Oxg/ACjo3o6Trq1/KVF38Zmqhov
+ YlaYXB476wDXA6aysvxcae2TKO4GhwNHQokyUJYsjT/0mOXG2hd2RQ==
+ =KJs0
+ -----END PGP MESSAGE-----
+ fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
+ - created_at: "2025-05-03T20:57:32Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA2pVdGTIrZI+ARAAj+B42CzfPhIqhSKoLePF+uJBPZl9HCmETvznhutyfDPs
+ +jZT9QNTCMub3FdWU1joP9T/V0A+o0Q7BYa2O+q5/19F/w/+Yk2XSJNu3RfYSpq/
+ KgLWGSj5Q6zVp0FfVCxoyEtCNy+458mNxn4HvHlPsJwnP+u8MZDd4Weswqx1L9qq
+ KWIiQ/V33P/miFD6pMHyoi5P0ue7mmuIDtH8D0pLhAVHAhM4s+YBF6OTpobYRTjr
+ rm1rNp5Rxu8hjOTpmylCtQJZeud/zLb61fUsAO9svq/Rf1RTGiGwOUv1l0v4mVto
+ Ib60J1dSdr6TBCmUthPlE7NskIS3B2wRL/GfsqZXazlLBsJf6GEWEFcMGi6bS/Sn
+ XSX5PvSp6SI/9UXPBVXlpDfwyvBulilSqRR3HC45XYj7Zqb2HWkEZF1w6+jYCuLw
+ z9uNFR7BX4AzrhEPZ2xYfzMIT4Cd0kQ6oFLfpvFKbLXBNLisqvGhzVBjHQHmK4ou
+ 5NgoTAVvhpuO/LZf88YZ7/u6jwo0r/pPCyyW6I+raJinUGfBmm0KP2Q6xTXRAMkv
+ OMCLEP+Hjm7xG8g+oJ/RsvQkvpQ4MHhx7cDQpqQFSV/5DhEMtANth1Lb4mSYlmPE
+ 2TseTrARXbq256F2clDnldlWnnkakzwyGlAPvJfweJ4o67Sr+e6vX0I7HxKjQ+HU
+ ZgEJAhDJfWWDsTZ2nsH+w4vS+JHZmdoelzKOE1wTioAEb3RZm2wEvw3gI6N/eOfG
+ u6n7GTEbjHZRcvysbtnXS2PRiW8iNMK8pxW7t/Pc0MfOnzaF2bQRoOels2ITqo7I
+ gQS/Rpv9Ag==
+ =6U7r
+ -----END PGP MESSAGE-----
+ fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
+ unencrypted_suffix: _unencrypted
+ version: 3.9.4
diff --git a/resources/chaosknoten/public-reverse-proxy/nginx/acme_challenge.conf b/resources/chaosknoten/public-reverse-proxy/nginx/acme_challenge.conf
index 790ca77..319347b 100644
--- a/resources/chaosknoten/public-reverse-proxy/nginx/acme_challenge.conf
+++ b/resources/chaosknoten/public-reverse-proxy/nginx/acme_challenge.conf
@@ -17,8 +17,6 @@ map $host $upstream_acme_challenge_host {
invite.hamburg.ccc.de 172.31.17.144:31820;
keycloak-admin.hamburg.ccc.de 172.31.17.144:31820;
matrix.hamburg.ccc.de 172.31.17.150:31820;
- mas.hamburg.ccc.de 172.31.17.150:31820;
- element-admin.hamburg.ccc.de 172.31.17.151:31820;
netbox.hamburg.ccc.de 172.31.17.167:31820;
onlyoffice.hamburg.ccc.de 172.31.17.147:31820;
pad.hamburg.ccc.de 172.31.17.141:31820;
@@ -72,11 +70,8 @@ map $host $upstream_acme_challenge_host {
design.hamburg.ccc.de 172.31.17.162:31820;
hydra.hamburg.ccc.de 172.31.17.163:31820;
cfp.eh22.easterhegg.eu 172.31.17.157:31820;
- ntfy.hamburg.ccc.de 172.31.17.149:31820;
- cryptoparty-hamburg.de 172.31.17.151:31820;
- cryptoparty.hamburg.ccc.de 172.31.17.151:31820;
- staging.cryptoparty-hamburg.de 172.31.17.151:31820;
- staging.cryptoparty.hamburg.ccc.de 172.31.17.151:31820;
+ hub.eh22.easterhegg.eu eh22hub-intern.hamburg.ccc.de:31820;
+ hub-usercontent.eh22.easterhegg.eu eh22hub-intern.hamburg.ccc.de:31820;
default "";
}
diff --git a/resources/chaosknoten/public-reverse-proxy/nginx/nginx.conf b/resources/chaosknoten/public-reverse-proxy/nginx/nginx.conf
index 87b5408..e732052 100644
--- a/resources/chaosknoten/public-reverse-proxy/nginx/nginx.conf
+++ b/resources/chaosknoten/public-reverse-proxy/nginx/nginx.conf
@@ -34,8 +34,6 @@ stream {
staging.hackertours.hamburg.ccc.de 172.31.17.151:8443;
netbox.hamburg.ccc.de 172.31.17.167:8443;
matrix.hamburg.ccc.de 172.31.17.150:8443;
- mas.hamburg.ccc.de 172.31.17.150:8443;
- element-admin.hamburg.ccc.de 172.31.17.151:8443;
element.hamburg.ccc.de 172.31.17.151:8443;
branding-resources.hamburg.ccc.de 172.31.17.151:8443;
www.hamburg.ccc.de 172.31.17.151:8443;
@@ -90,11 +88,8 @@ stream {
design.hamburg.ccc.de 172.31.17.162:8443;
hydra.hamburg.ccc.de 172.31.17.163:8443;
cfp.eh22.easterhegg.eu pretalx-intern.hamburg.ccc.de:8443;
- ntfy.hamburg.ccc.de 172.31.17.149:8443;
- cryptoparty-hamburg.de 172.31.17.151:8443;
- cryptoparty.hamburg.ccc.de 172.31.17.151:8443;
- staging.cryptoparty-hamburg.de 172.31.17.151:8443;
- staging.cryptoparty.hamburg.ccc.de 172.31.17.151:8443;
+ hub.eh22.easterhegg.eu eh22hub-intern.hamburg.ccc.de:8443;
+ hub-usercontent.eh22.easterhegg.eu eh22hub-intern.hamburg.ccc.de:8443;
}
server {
diff --git a/resources/chaosknoten/tickets/docker_compose/compose.yaml.j2 b/resources/chaosknoten/tickets/docker_compose/compose.yaml.j2
index d00a454..690526f 100644
--- a/resources/chaosknoten/tickets/docker_compose/compose.yaml.j2
+++ b/resources/chaosknoten/tickets/docker_compose/compose.yaml.j2
@@ -4,7 +4,7 @@ services:
image: docker.io/library/postgres:15-alpine
environment:
- "POSTGRES_USER=pretix"
- - "POSTGRES_PASSWORD={{ secret__pretix_db_password }}"
+ - "POSTGRES_PASSWORD={{ lookup("community.sops.sops", "resources/chaosknoten/tickets/secrets.yaml", extract="['DB_PASSWORD']") }}"
- "POSTGRES_DB=pretix"
volumes:
- database:/var/lib/postgresql/data
diff --git a/resources/chaosknoten/tickets/docker_compose/pretix.cfg.j2 b/resources/chaosknoten/tickets/docker_compose/pretix.cfg.j2
index f1c119f..83cf327 100644
--- a/resources/chaosknoten/tickets/docker_compose/pretix.cfg.j2
+++ b/resources/chaosknoten/tickets/docker_compose/pretix.cfg.j2
@@ -10,7 +10,7 @@ trust_x_forwarded_proto=on
backend=postgresql
name=pretix
user=pretix
-password={{ secret__pretix_db_password }}
+password={{ lookup("community.sops.sops", "resources/chaosknoten/tickets/secrets.yaml", extract="['DB_PASSWORD']") }}
host=database
[mail]
diff --git a/resources/chaosknoten/tickets/secrets.yaml b/resources/chaosknoten/tickets/secrets.yaml
new file mode 100644
index 0000000..cf2c4ce
--- /dev/null
+++ b/resources/chaosknoten/tickets/secrets.yaml
@@ -0,0 +1,236 @@
+DB_PASSWORD: ENC[AES256_GCM,data:2z91TJt2qWl+mZV2fGXgXT5YHwYbhwGH7g==,iv:6SHNeCtGqvsCWRJwA3lzrEbQYLk3W9IYBLfx4l/jkNA=,tag:z+xWip4xGFt6vMSoE9GPug==,type:str]
+sops:
+ kms: []
+ gcp_kms: []
+ azure_kv: []
+ hc_vault: []
+ age: []
+ lastmodified: "2025-05-03T21:13:16Z"
+ mac: ENC[AES256_GCM,data:yIOTN939JOjV0aM+BUHRCnnGAuZIUGFvei5SknC/u8Kgoil+Z+5Mdb5R/VMgtriBSeD9z774W1ioH4D9ZaOgKwkLOFvDx5+Q1+bxj1mMMKV0mWZKttNOd+8GJ8t/Zmiu0hu0BvDMz9maNZVMsDlOPUuOMQ4RbSrkrJByHxyL9FA=,iv:/4hePEMzzTxwRyKVlUOYDgIHb2lDyg6Y0j9StR9qtZU=,tag:Ou7Q/dOmkzA2uuZ+tLsCbQ==,type:str]
+ pgp:
+ - created_at: "2025-05-03T21:12:57Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxK/JaB2/SdtARAAloGIx3GHxBD0iSxnM8/v3kl8HvW1r5WVL9Z5Xtu05m2M
+ 10oGBnZoRMhin+I6FoLPXlC/NoEgqL46lrX/D69H4tDiHE2xtN9vSOrpVE4SB8tc
+ MIPl9q1XjypCfMW7+HZpZg+hA8FEG8potL/3i/gESvIFvXz8MmAw9xZjscuXqZuC
+ oFHqCEIEPqUIt/cU5aIRRSmBgjA3Sw64Xi/PVpJ68HiWdzFHb4PkEL6ji11Ju8rw
+ RUyxlcJZZ1/R+RY9Z3chzC2g+ya3QZNFXuLP/FkORKIErt+R7s2IEl5vmvYsBmbD
+ LAv9RuP21KXzkp34ddZD7qN6+hS7oeC/H37+XYte6UWYs5oP3SyW6aP8EgRukyGj
+ Wj2cnoWfftSGVV6rJWJkM3Z+2EnLJcVeQp7w//eHrzVjpOFQuZjgdz3JLR7hHH/P
+ JQVmqBNHebpBwPrcsUXOdAOQ9jhaaUIDbThzD+WpCUNxX1R0H+6X/y8C+QH4+7NE
+ I3EtdCnXXm1i7S/YsvkJ79o0TcyPWln0zZiVH/9KSu4IDhtqFfzHH33eJY1hQV64
+ SXMtSlOaGvqZjEpHApNlbLzO9gX+yynd8m/fACYUZw1H7WpQjBPX8ZK1MJGupC0V
+ QPz3ZjQv0Za25QCIV1JhnG8sw22NlA31T44qvpTgHQYYrLyiWPSc6GaaP4zRyDPU
+ aAEJAhDjdZQvLBUmStXYPv+iiBsbpBYJ1gSugO30hG29iAsT7ybx6Gz/Kuh3M3f8
+ GqsVD32plCiMv6CYuohykIkIedGrniRj+xoJ6vR9zRU2MJrIaYwLcsk6Pr0sPrff
+ SDsJqxfz54ft
+ =gzr3
+ -----END PGP MESSAGE-----
+ fp: EF643F59E008414882232C78FFA8331EEB7D6B70
+ - created_at: "2025-05-03T21:12:57Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA6EyPtWBEI+2AQ//ZQ0YAZGm2B3rWCtGUjuwpiaJ9oIXJLq8piH67b1Fyzm4
+ pNw6g4F4RWKgI5Alwat2d1XKJA2zuCww3L76oBYtY2qXSdJoz0cYQzuM3KL2goyb
+ cnt2XtRoOfS+akYOxabz3CyigVQM+OfOT8SFN5XK4A/xavgKc6pso2WS/10CvfLs
+ cRH4cOzbOoaB0ZwJ+HKkayK0Y9XtMaDBdbmO8SHa8vzwsI2dTSV1SmR1+vRAUTag
+ xBhp5xoOfP8FP8M/bHre/ArwXku0EqwENEfNyS661iVrD0WQZDc7/Dg2NvwA1erq
+ Jnje1/5DCYhPO7Y8W+jP5OzxK0pZLaDxThEK0zIrCr3QbUJSoA8RkDEe35paWNC5
+ 8F1eTDTunqrEqT02I4GEFN7XhwExWUIMTT6hQ1Gp3uXfwCAlXMCC5uoPE+tucTiH
+ LcKn185KIrH+Q7wssEUu1T/QTWh+Ff2cF5vPP+BLIkn707J/+UVIeipRreBISzLn
+ pGOpuhM+pxFokX5b4oMUHBJ4dOhQ1MclrxL9YZzbQtpEnCmOo6OIrCab3wHBO2Sr
+ Odo1qX137xV8gnPdGkrCTsV5XM/oErj9Dz0yA9pjEXxLlAhHdb4EO+XnnhZgpkbJ
+ tH0VwlD+bczMX9L0pq+wN/aLi1kEBDDl9lAHq1QHddjHc2jNWMAQGrcVgJQRw57S
+ XgHrTCfRh/WhKXpxqiluJLz+ukF5BvJnGTpQXGbJm5SsJgR8jEY5UBmIBuJxRcpc
+ 0j+UsSbKgPwhmEqbGkmOb25PX6nvdO1SCmGp7KUrLgD7kJafjApvUn8exdKzquY=
+ =ygn9
+ -----END PGP MESSAGE-----
+ fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
+ - created_at: "2025-05-03T21:12:57Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAz5uSgHG2iMJARAAiFrzmBlFJ4gNJxIwCAbOY6lg+UccVJT2T7DkeVnA/7KV
+ NRqQTxtiYgMj0HY/5kPq6I8yC0FKUxGx5QsoP4lvUvmiv/kCXl3M3hYq2QrIN0Xz
+ xqxzLTyOENAwwfgvRS3RDNKWX37CM/eoVaozs1+f4+I4dGUhvWfoPIJcgCkORFc7
+ BG0OwEKvyE82vBxer8Z7d5pm34BXL8Ptc89evI75iLw0wDq/JoGOQKYG2G8ko2Oh
+ p7c6VnoDFQ1PJFLm6wvVBjJwDznn8DvSYR1PepDkyOu+eT1oGmzGnQB5Gbnnajxa
+ +2Uw5S33kYDeSfHmgFfg0BA6dUVujVTHn9ZZIGXzIJDWg5wIMgOpHK3XGRgW3cKF
+ pC4qBndlaWYK36AZmOFsok7840N7LYR6jz0Az1wp4F1bxKHBjy4ou3cJjhNVU8yu
+ 13/YoKn0SZ0iYAQrlceybaVwdIUxnH85/qzQ8tnD6DG+9HiC98XjbEgs0pR7HJRP
+ Fp/zuYpNbMnYRbB9EQqfbzIU0msTyaUTWcQwX6fswGRYYq0tRd17n9LcfNREmpAi
+ ydb5x92STgSLE7sGAbsmPSMmOdl3BpUi9dPlx3ka3Y27uWI3VIWTTns5zmIBz+Ht
+ 79a7nYb544eDNax62Gf7nLPnLmZOOfELFcuuuB3QaQIge7NptFmJJE4eXhr6V8vS
+ XgGzxdvXBgu7kaZOgqTFoZndVLzuXaPoy43unU4aEY/ewW5U49ugodZLoW/GSfHQ
+ 14BNCVO3Z8A6XqWfjUsKruROLdx4b5XaJy2PRNz3vLfgTmVo2pZQszMuKjaWzXk=
+ =dvgO
+ -----END PGP MESSAGE-----
+ fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
+ - created_at: "2025-05-03T21:12:57Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAw5vwmoEJHQ1ARAAvAE4F6dTkXICJ3AEgvjbwm9WY4zBH46CxTlxRw/ASC5u
+ SOEWZoVaWQTAVMmdiI34+bzs0m8dtK8zv2OseIVTepVJBN8EfPkd6V+fDZPX37MN
+ gMGjr2AkXAGby9oHL1s5Wo2YtzMi0sna0qqQstZkNTrq+LtEpGKOupEAmKdV6M5u
+ VtPv82YZqAxLk1h1/kpRUMQyd0Hf5YQunOnUXAvCQHue4GLBSPiz+JIplNXFn3Lo
+ g87T06pJDZDtxIKSruSbb9wuJJbz/L4qT8QGJj6CNDoWAKnZhYlVKnKQkRZevBxb
+ EsD6tupcvUokWW21iywlIxTgOWGklNpCnu/4IVa4jnQsvlV2saGM1EaTgsELPy4M
+ atQ6E11V2ZTs1Xqiww1fnXe6KIWKn/xQ3i0VPgif941DsBFtirnutqedU/S7iJWi
+ XsSZrDDsoqG0oX27WphK3MrXoVAkEOWG848mutPaLW4Us+BMnuRUbAi+sVPETvbN
+ hsvywnasgR68bCWispRomGXjUnphNQ8Ry2FXvFhYKXde8xdBroh7iBrn8mZXDn0r
+ DIuJh3yEgItGachvp0t+bElihTihUiNdCyuAv2de7nQn5F0wqG18hfxyy6yYlzUS
+ gMJZ7qzmTpUWGv8cPoSAIOp/ltDVS1g/muFwd6djEetFRQKm8IuhyGFYJB3f7XLS
+ XgGk51EjM2OGUX62galbP3Nrs2s7hPQBlo1cVZbQlB/eBLACQTtrKDyIC7+N9yNd
+ Erw51W1OG1nISvj4azF87U27M2HCOUoH5ecVxtxNo2Mg8dOysZn0HBis58hAViw=
+ =BgbL
+ -----END PGP MESSAGE-----
+ fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
+ - created_at: "2025-05-03T21:12:57Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4HMJd/cQYrVAQ//Tha3qHvAchEyctVDmTc3WPLXy35hi/VBQIw4Ell10q5y
+ Jii6h5fTGBdk/u8uXJmkLqAYfZ8ytCMMWPXvP9tMxX1K8Xm97SFVcZJgdL6+lKKA
+ GPttR0kGo60OowCIWy1s8xl9qW6625L8W+NhIB4JSOHG5h2cpSx0WbrAEPCNTiOe
+ MGSU5l8jIzgFj5cAcSdwojuKQbtiO0TKSoVFqjLQq0l8U6qD3hTcFcT3ktOv4DoA
+ bqKyu17kzonS6tpCnIuuN9AEbOl3k9RPxpbO4c10l1zaNHEEDbXRYRp+MwcgwOK7
+ qlmqf/QLVXWt9WeWvBSPRAbDDrfCaBaPAy7VIkgWdp/CAsdygQkvgh4uSzzZrjnU
+ xZiYVVInwJWSrDmrLXtFRhlxPeVXo/QDBOeb5egsjNQIs9Wys7Y+L5Rgz9g/W/Xh
+ D10LAAQqYcu3DlOhzsT6uuzb+sGVrwfQAQtg/ujaQOlIUC2/V3cmOMACWmoGigb8
+ qlIXx4Ytd1GI2EX2LVEvMTKmIQHeEijmXSu/iu0D+S2mRp/hgSzwH6GbGb8MaRzJ
+ MKAzt3yGh1hck01HSmif3t6rhUS12mW+M4Xdck9d3MjiXrZVznOkMT9bhrvLiej1
+ 85KRMC6x6qiMpp4BfqQ4WXSDUjhynzcoobZf6VWGeSHnaAeZYlnedOlb1fMoSRHS
+ XgGZ5a9J4ZQonAkIRcDn0xr3EYT8F61vVeVwqTQ3PDd/IoRztq32RkHng6dMBZKn
+ lRpC6PKHo08yUGH4R/ppfCpG9ApdvyoiDgGcSotXSk/AQfuOHlTVCA0fQrq1j5Q=
+ =8tP8
+ -----END PGP MESSAGE-----
+ fp: 91213ABAA73B0B73D3C02B5B4E5F372D17BBE67C
+ - created_at: "2025-05-03T21:12:57Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxjNhCKPP69fAQ//YdAXWGS1//BK3tQne5qmvdI1uOY2HPYSd8vEc7+UBi0V
+ bBHsxlVMVdZSJQVX7WLxAqBvCyFbJP8lsoXlVPK6pq8tqBzagBXSemha7Z9SdeZ5
+ 3QamddaiwoeBrli7hV+AXnLwmOn6f+5/KmAdzU2J7QET87Kd/rcNbGP1qtIaIet4
+ dkxdDu1xDI5mrX286gg29lRfjuxsiQfzmU4+PlM4RnXVpl9QpBtvzuWQYDmMdoCG
+ xqmYVv5xZip9MLPv0iT/T4IMAdhI5TvTT1zBrRQW7tNRgRLyoSRQC6qb1C24sHcS
+ VBkALQI5vF6ghPQIC254LUquiTEazzr1TtvLKkdyK877E2E6o7k9dsdSPT+TemgJ
+ nO/lBhk2ZAHZRLb5jfguhzQ1G0WjfbYX1QAwCW3Li8EBmhHTIkStVp4TlDvPhgb3
+ uLfGaasoYHO+oirpmORXd3Y6pJ1FvAk2uFLcqQa4A0lkblxzVAI+ZwVmw/RT+yb0
+ DZlBKshUUYT4gHJOD/UrLlviX+qtVT57OFqhrLEZkt8L2realtpQd0efotK3q+cc
+ M9auKQ0dAy0ZYmBQD1DpDz8pg7pSXN3DpNbXKaWuz6B/84WU2aw64RV/ZaXEfBiw
+ TyrlsFMTAd7haoRYtYW4RxctrnLoBldGezxVIn01m51G7dRHL8/aDiZW2ffKOqPS
+ XgFV+BnacumDlBtMqS5yrLv44tDRXXuusVku3X0XQZquMc/zb1XwyK/DReDi5756
+ 9pDVQQn0SxkZNo/z8ln4C8Q7IZUQWhJtWNwyl49HYlSZWEnJ5KK5uEs09GEhnbk=
+ =nz/W
+ -----END PGP MESSAGE-----
+ fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
+ - created_at: "2025-05-03T21:12:57Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA1Hthzn+T1OoAQ/9EhTITrYK72Zpzr2/obOsRJkJcCxwEtHmUxme8oIw3mJA
+ 0CqrVxibxhQsDVY7Nl3K5MkNe25wQb+5s4UVO0ji2thXZaRDc9ut23qUIiILMv+c
+ KMu+KIvZaOBUIFaTnrbyE3XMoopk9cJsMC5MP9u8ilLMgc3Vu3R992O8lgwqQLG5
+ xwSKMYy/9PjATR28fpz0iPfunvaJsnaeoJl+okSfVny0tvf40ECZF+ui76XJLL3D
+ M0p3LehaFc7+Laqb9nNwzbl8q6RL5PjzjTYk9VvPTJoqORUA9mYbbEcxrEPdBV8U
+ MVUTfTsvlcOPgB7nqxJXR8Xt5m4p/xS7pZX8ix6XkOLIzSCz3O0z9YRh9MXacE7B
+ Fn42DHjfi45qsIRpgUHmxI2kiT5xYJVmE3MYCxrlBdNwPPkWlvN/b8fgU5DnSPXd
+ SJdqMCL/M0lQhQbfWYWE9HWKuXqrHX+lkw+oEnSzj1fqcgKU6f1BapFY71N5zkFM
+ sgtD8Ff/obT2FhVeYdMIbGg2Jq7oSzfZiy9IqDTd28Nb1soX1sH0lFfFMfZQ10lD
+ d03YJtBJzJ4LFlWtSZoMgaw87K089tmOZ99q30TW/oR38GehZ66H9mdLWS0XqCyo
+ NPvyA2lesuO3IaKuqB+XdaLSwFq9TpmvhM0iJD1qLyHHZR69bdD9NhBF5jfaLCXS
+ XgHRsY8JboPGLAKH/fzo/o+gq8yTlCkjjXI5PEEy8MjBQKg9uDxxmcTtjhJcuy4E
+ JBcwtwi7h2CqaoXw8nYGc96YMvVrItARTJeXoQc9EWb9bktzLFH1mMYn6dWN9HI=
+ =LgrR
+ -----END PGP MESSAGE-----
+ fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
+ - created_at: "2025-05-03T21:12:57Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA46L6MuPqfJqAQ//cRs0tUZD57N+1PeLV0IcvJVp2k1MZwTvuBLoUru+kbvT
+ dKG/9z/1OBI/q38s1zLVobXNM87JOX5d2kKU6SusjgZIfQfyBRf+ZUyLWY/7l7+x
+ T8+WCuB6jaRBhtp4TUG6AVWDC6kPmVZBcck2XWXx9J6PNR4rGSO2zeR9dPAUYH/o
+ Lfu8AvCWBGcsgPG2OOgWRYog9B3RLuFaSVEpmHZoponxhCuWnjqdimRZKQPkPEkx
+ 6ZI6q2jp5XzK3erEDtqdxzCwoaU125J7pmizsR6p4Q2Bp7Vew6M6SeOqTH386+8p
+ oS6oBsturH166CVGjSz2ksUsOPaIPRP6ZbdGf6W9Ht1wAV9+VG9AzvO9Oboi4A8+
+ SAGoaO3MGCPNWHRzVpCMsXjJTmqNIl25LFVchGiUtxD/EsVXET/4Z0CHcV2Ulljd
+ lrvhEDvCkozUI9opndZ1qeTJG+JcGnXMCcKEF2iL2tqf6o1YdbYKaHH2SWt7f+t/
+ FmZpwLFLcvO/yr7t9Nc8xOjRvuu0Klq+XHa89usD9D5ODeOuzQHgrLPbV1VFiiKy
+ 8+kvJHabnBpwyIcvziNDtgWwLI4dYQWmpmSWvJrhFJewI4yjTQvl/Hcq9Fcnxf4c
+ TRJvwa6rQWKrjyrhhslUM3Sh9jH30p0dc0nr6UEAeTiRRHIq51JaNZMMM8bu/uPS
+ XgGjA8XM8EMp0c6/YYVwwc5YOR8QZfH8+lW6pfXkWXReGG4dzdeGvR0W46facY1j
+ yQ4nFOCnSB0eEYnucAVxaOHUmEceVg83EECwbBZ/NgMhgojf+xjSpoNcidj0m4g=
+ =LQ1A
+ -----END PGP MESSAGE-----
+ fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
+ - created_at: "2025-05-03T21:12:57Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4EEKdYEzV0pARAAjfwkWbKL9yD3Pc0nIw2PUbI7yZ+rHlYgbQf0fl5EuVcv
+ KNLnRk7Zvl3bLt9+Afq6iTXD3g+0YWDFS1Tqj/SLi3Vu37GxgbgemAuQ7ZS+wsNI
+ KXfPgBS1o/4XVFlZQ1mvZFpwVdnre34xwNbCLbm4u8xBjx13w4vq0TKWTsNP4+ug
+ XB+l9UA46xCJr7LPxUafKqWKEMkRjh033UXSB3e7Y02O6FOrj6p7kGnUdh+Ia4Bj
+ RjZbrVac9W98CkNyDGlH+Hyq0SHtPYvjvriqyOLnY29xm+rISa2UAc2tlb7UPXDo
+ g6vJYNEEOIAzJyYytOoxnq0dqtN3aB+BvxNRKorNHqpUo+AaDT7LuzGJ8LYacSkj
+ Sq3Q27dGrVnBDjTTansQK3vgIcS2Zfrj5apY0q9CgomJMN6b696FMVQOlWuiRMv+
+ UfCS5zQGtB2a+10PasiHmGnGT+TJEZWhD3WVj59cUhlQvY1KDODv6FmsP8t+eU62
+ 7R4Mo656+hB0IooE+kmJU//dijeXF/tczIgCNASwylofzi4qXbmk1zUII5zYgnUL
+ LFEyIENZ8WBIxUWwwDXtcpbxjbgqOws2aXhOtEXFvjd/L3qDx61AGBnquWPFcekU
+ uAx9yNkw7qbyp5gTbP0sRi5bqqOIYbL3RXM/pkArM6uQQxgfApCWjYLU2LBHwojS
+ XgFM9twt0Gi0tDL3W39LzXNPisBDkvp/E4HZIAeSZPMPo6iTJ2tOiVDB4GlTRNaF
+ oLVK1NWwCI46YnC++a5FpPvh3RHntXDpdaBcbj2dko9OZtRum6WbkrX0zZgZ0zc=
+ =zSCl
+ -----END PGP MESSAGE-----
+ fp: 9DFA033E3DAEBAD7FDD71B056C7AAA54BE05F7BA
+ - created_at: "2025-05-03T21:12:57Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DQrf1tCqiJxoSAQdAiMBI38DVqKUchVg9KNRFQ7i5y8PZB/tm7I9JT1gzExYw
+ PhV7QT1EqPuEkAI1OseqboFj0bCo1T72M8TqwMdHz9hYiOAh89Hqhc5nluetbCTK
+ 0l4ButC0VXzo+UjnmjDS2EhEqnIfzK+y/9pv8r+3FuhIpiWdSfEFCrbp3B3WX9+2
+ hv8iJpCdAnInpBDB0uRTt635MBlf96LBowvMWxI43uIjPXXDCg50DQOrHw4Yruub
+ =Fc/i
+ -----END PGP MESSAGE-----
+ fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
+ - created_at: "2025-05-03T21:12:57Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DzAGzViGx4qcSAQdAfvbuQYZWYQVY0ut1Q7nIwx3eYajDZxkITih3R4Lhx3Mw
+ 5LToASYRMdv5fTxxDibNvEyEWFZHPB2ppB1ZOOFKRUA7+cam0YFV1+QtBQDDQnNu
+ 0lgBUR3uvS5IaOeEpg0E04byWimwsQP5roGCZDW4Sx9818HQSr/4HUx8GfQplT+/
+ /DWZK77QB2rTtStWhOPrFkMzRWP+sqwtewnqyPRkl5lcO8+c1jyEhy4Z
+ =8Ilp
+ -----END PGP MESSAGE-----
+ fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
+ - created_at: "2025-05-03T21:12:57Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA2pVdGTIrZI+AQ/+Mt3jDYdw9mWU6Wrsb5B7pf4IcsFCMilrobnDctSaGru0
+ sem2dCrqwjHr/c9FEcfV1aTMx48XekDze/YMH2vXMaPK84hm12KxR+eZvsQWMx+i
+ MlN+4ANt/ZqItqtdJPgB2LtRgoVYI8/yB8q4wtwpt7o9uSSgF6w1hF1KMwL2dwyl
+ bacuXrEHpGh/z9XClnJ4nVGgzaeBvmPLKLcCQAmxu7f4lgjNM+cxQM5e6sYblM6Y
+ IVFMa4p7KmhWaGI4ppLXyFuvY9qzRQwXPk4vOqgCiIjrkr2LcTyDDt0FaL49pEsV
+ WMKTED85cOxL0R1jJ9a9HOzOYDu2AbDCGoKK6rFD/ZX1elJ4dB4rXLKqdkb+d3gP
+ ii15T3I4nrS5BWLrCVDhYh7KYhNAzgib3yRb9gRcuAODWj0JfNpmZJxNEO7enWaH
+ VCNxhp9IeW6AuQdid48m1QeFeIjVseGZKWLih14XJTJJK1oZ7uT827NpForHIMxF
+ ydwyswILsA5RLRpZ01MBf5LL2TjJRoZasIgEWEAKYJe/1/HSD8oZeFzK9THJLVUt
+ TrIRdZ+yaqcSbPBRrFWI6PknWzm3CxdqDeiVdZMOPaknXiQ2EoKeJ6zP54x6XTde
+ TD0g8XuRuIDe/TeSUPfuPT1n9oWXjsyxXSz5JYcsyaRSjkxqpG0uhL3pPyN/pY7U
+ aAEJAhC5mrp1jDSywgh9aTZTzwac/AV3IUE5LDhB9525b5OvSOJdoLNnJ0afch+2
+ +SKfLGahelWSjO44hyDhvYA0dMKZZf1SIlGivNx8nTbK9OpVhadyMCZ96qwzWXTT
+ HrekrFf1PR4v
+ =zm8X
+ -----END PGP MESSAGE-----
+ fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
+ unencrypted_suffix: _unencrypted
+ version: 3.9.4
diff --git a/resources/chaosknoten/zammad/docker_compose/compose.yaml.j2 b/resources/chaosknoten/zammad/docker_compose/compose.yaml.j2
index b2e8f4d..8ea5265 100644
--- a/resources/chaosknoten/zammad/docker_compose/compose.yaml.j2
+++ b/resources/chaosknoten/zammad/docker_compose/compose.yaml.j2
@@ -11,7 +11,7 @@ see https://github.com/zammad/zammad-docker-compose/blob/master/.env
{%- set POSTGRES_DB = "zammad_production" | quote -%}
{%- set POSTGRES_HOST = "zammad-postgresql" | quote -%}
{%- set POSTGRES_USER = "zammad" | quote -%}
-{%- set POSTGRES_PASS = secret__zammad_db_password | quote -%}
+{%- set POSTGRES_PASS = lookup("community.sops.sops", "resources/chaosknoten/zammad/secrets.yaml", extract="['DB_PASSWORD']") | quote -%}
{%- set POSTGRES_PORT = "5432" | quote -%}
{%- set POSTGRES_VERSION = "15-alpine" | quote -%}
{%- set REDIS_URL = "redis://zammad-redis:6379" | quote -%}
diff --git a/resources/chaosknoten/zammad/secrets.yaml b/resources/chaosknoten/zammad/secrets.yaml
new file mode 100644
index 0000000..79b9dc7
--- /dev/null
+++ b/resources/chaosknoten/zammad/secrets.yaml
@@ -0,0 +1,236 @@
+DB_PASSWORD: ENC[AES256_GCM,data:ytb/AQ8UP47KTdUHI5RVZejZBW1vVI7v,iv:AIYEngDj4BHgXnz+pF45Z40EwJSsibVdCeF2IdVvmZE=,tag:dlBva94ytOeuzW71flhTaA==,type:str]
+sops:
+ kms: []
+ gcp_kms: []
+ azure_kv: []
+ hc_vault: []
+ age: []
+ lastmodified: "2025-05-03T21:25:46Z"
+ mac: ENC[AES256_GCM,data:SO6TcvQJNQ3cAAy3yr2S4/PkQm33jLie/MEiLVhWRajfVD0BTyEMG5RJT6eMN/2AW8HxMBs9Dgz2aOWosL3tXWsxp5PY9ZaCg1rlz7UPPp1lsoQLB03LYAl6Ez674WqTmUrb+SjNvbxi66diYBXZj0b1zawMD0J0EMifKqOzJiE=,iv:WTr2qtfazMonEG4hxcE1KNCdq/GtQinMVHXwT5A7yxQ=,tag:c1wBDOXeHwmHF+J5GXIlmA==,type:str]
+ pgp:
+ - created_at: "2025-05-03T21:25:04Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxK/JaB2/SdtAQ//SahMO2M35vCWkHxIHLDO0hiap+RBvab+H35B+6rHsBBA
+ q3hyXieM1uW1OFKNegRPifazytyUVYi7DP+t0vUqXo/CY8BqmjM19ChOvaAPlif2
+ DApPJvV3sYLbUdkYBx0sdpTiWHXmRP0JXtcvQxRMgOuRt+EhWoEnSsf1joMVhR4x
+ aGRmOiZhw4ZMI0GhxlVmonb/B0Bo6/3GIScVY9AzJIcmDqDd8DP7SEsYUxFzBfST
+ KAW2cJBn6rT1OtB97odr5Ir2TkS4H36euSNew/8caHGlKgcnewgF+zpIvjeWUimk
+ cUybZ2UssmBtfWHsypAMg7pKFO/OmV57OWqi8zKYNeLwXeFQvHB1265oJN4szyFJ
+ raCAB02Y1r4E5S3wSeqhjE7lvj37/JTjr5VXmz0tASPpgdcLKyik/qTSMQVLs2gY
+ nUjVnPbpakQ/9cFCElWEhFDwALZjsAef/+mqmA8h9Z84X9gi+EAwee/9uT4Mu/0H
+ 1xKdlAjo0ubkhTbxDf/Zp4RGEQ3ERffj5mtL/DxuBp2jvQ/feljJtO3Lo93Skbti
+ 7s+kOblHH0bBS+/YNP8yQUFZ0V0Jpvn52RMOKiMlrnlbmI2u9x478uF7cT6iQ8xf
+ HlIIGZHJ+dGU10sxmflp3TiSRAOyy5YJOFiBYl08QHREqPoEfn20hWIaf8avJHLU
+ aAEJAhA3M6o9TmOuAV9+n8lrZr+WcRQDovlZmyGb8/mjqupcW7QTsmdjIGFi8ttT
+ VgwJVseKZsTC0dyYNRroBUMyxEhtvsMkoAf6i5t9hr0XcaWQkacd4oYpkFIS+cDk
+ GGZyXPivuky7
+ =Tw63
+ -----END PGP MESSAGE-----
+ fp: EF643F59E008414882232C78FFA8331EEB7D6B70
+ - created_at: "2025-05-03T21:25:04Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA6EyPtWBEI+2AQ//QEj1kGg89Sim6kcAyZR6qi7yU9NIsQUUgNxTD4Dn+AS7
+ w5rKd3ympVFVO3oQTJNLmxssJGyC1mgB9dqBulAPjKepnyHa/EolpGq69mPlO8pH
+ CFxSSz/rxj5h5vojyWE8VhDQtMeKKGMYwwqREkHkOMIvgoXPvcwwiLVDkRMkf7ss
+ xewqL5dlBkmHCHYE3gIE6BrGNoQEZ6vO19P+13KDgHxZN7RfXrQDLYEb8Rse/X24
+ lsQxlaJr1fNsHzEPHkfZzWx0IFLJIPCwLJa7iY96Ku2qZOo+WkGhUiDHo/m9Ru04
+ iwEVzucWHCYt3kKKq3kEyR57jOwzONUAuWl4otO0U3a3+dbHAkEqzU7WcnS2UOy2
+ ajYmAq/j6kn74zCw+FV9tT1S+6WDHW95jXIPr3zKqRSL8V4UK0jc87Nb06w3yRCz
+ f8C2lrzH7iQFajDDuJ/vUI5g2NR10FafOdI83XlWkpd8i33nF7eoMZTagAFLw0C8
+ OPr32i0Ppdz/fAedkYqqRys1tryQGiq3PeumxQTQQj9OKlkYlPIWLsQkSgRNQrc7
+ EuIkm0YT4zpGzcoiQT586GDVsOiEb5yMmOjLqB8BHrSEUQwHL1cZvbGUooFqWX7K
+ iljdQ9RneaZH7REdJcN9+y15vd17pz8y1e8rd3mh2PGGkoVHyspklYvykzCDoNrS
+ XgHjMWrj/QCDI+GB02fql1ZFHodIbFPseWNlf3XVW8/lu2m3FDNYEsJCsBeK5OLW
+ Oti/DyVz2cNdescNEfH0W8OJ2f3C+R07l9FU1x8hjifjd+xURu9z+xrGdHwCYVQ=
+ =v+tQ
+ -----END PGP MESSAGE-----
+ fp: F155144FC925A1BEA1F8A2C59A2A4CD59BFDC5EC
+ - created_at: "2025-05-03T21:25:04Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAz5uSgHG2iMJAQ//SwMT8P0+0S2zrf3/ActFB3m3BRUn93t2MdnAYQZRjil4
+ nhcw7JpMjxD7Qe3klNHdeBK8DxXlr9ou9KvdnVWr4vdnzTdAiSiM9n5AHOCoRnT0
+ rz4A4tTide2kGjmU4nWICAivr1YQqt9c/2D3BL4NAHTy0d4DK88jUe9wcoo8MnPW
+ nKk2LUr6DCR3+/3d9OJrWNlWrCmmSRfgpbmsGOV+TlKO7EaDTjc3Iz+T9zOaFXVj
+ /8VLyksQ6OtYnpOsniOsAb0GxiAGoeXayDvIijqesQ6AUf5HDGMcWCQcqMzITYWe
+ RNKceYd1MU5iSmqbCQ23WVCHMvgwqQJ1hRj9Rj3E4j5QVFzwniwmEK5XIOhvkL8Z
+ McrJ47zYi+QRx9xyhqczv0W2oX4aLZFW3dJtbpNzUMUmgDYZ+d16Iu3AxsMuOx4D
+ HovgP8+fy41+VgQvlGJE1pez/xo6muP6TMR8zD/s/eFnZop18bBK2OYW8yd/kp/B
+ AY9mpq6dDs4IuUBlo5c0YPIfWMWhh4GlaEsbggB/AUsrbJfYMX1MlLiHALAN0+xo
+ swRp0pPm+7mZmv7LnQCzNUM4rjGhJfzljjFmi+RwSS2h6bXbNqiedRbJbfrYWsCh
+ P9Ww4PhI9+kKb2PcNa7Ibzd5Ac3RpN1tMVsVzHOa0WhDCR+TkI9wnsGtHPi3CJbS
+ XgENsQcISscNzddDkTkI5fGogQohsQAQY4UfZDA5QuyFaNLihaWCr9OpUqFMXu+A
+ tSkVmHBVdYT8jIxO5YHYRieSxE0SEmYJf6+Ckxf2TWMJxWxsvwHgekI+kPR1Byc=
+ =VkXh
+ -----END PGP MESSAGE-----
+ fp: 18DFCE01456DAB52EA38A6584EDC64F35FA1D6A5
+ - created_at: "2025-05-03T21:25:04Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAw5vwmoEJHQ1AQ//Uxtqgh64BFkNnCxUvaU0dvhrwuhAfrI2QAgX7Gghky7M
+ QwY5/HGBs34wCHlIJqV6E8AdXN0VyzhBiKiryaqTSECDXZbFsb+q0VhxWTs4T/G5
+ oCvlvOC6rM7XT6puTsIiqjb4YO/8aVbkQCcE3QlwWxQP9DAk6I/Xxc+hTKStiYeC
+ uqON51LEtE1/pqfmf/K4j5kPLBuRYf5IUaBp5WVs9MMbf/vyN235odT8Z29Nz5kq
+ DidBkSq7A9Y64rncvvZ4+U3L0HTFcfyiTNOYPL1W45OgPFN4hRU047u/JjP1/vU+
+ dLwWNwyYqq7KmEsRu8vi1p636KDios6MDo4n0Ma74APpM/3c8GEVeuz+rY6RoHbK
+ FzZ9Eswe5otqmfhfLqBGNYW9+RNu3nUD6U45ES5YqNOH9yk4OqrObVMrUh97IpF8
+ 876cL+RDqI+KhnW1sgpJ5x+v7XrS12/LnjArBUJtHEsTxDWoAFHuVKJdr895M8+U
+ 1rMKOzhREbklNNgF33T4ysk6IE7PhGAJn8Wta2B7GfpBGBnzGdi6fvbuf+RtlZi4
+ 86LkFNI7iOvVV4uiG02yqxlLsCYt6ww6MZuGLREsNeHLuQkrVfF9aVw/+++3PJan
+ tIYl/WSLQ2sAjj6uxoXkBciidqFhtlD+4hvRky3enrYW09EeBOZY+4sE16ALCnHS
+ XgEz/69zcjJK5d3yEdcYeoHRMFVH6haEc48kg3WKlOKQ2HrPS9rKRGSwG8CC4a75
+ iw1OBZGFeaacydhq5XzU7QFlRXx7n8oi9zBHKPb0ND8zm13LQF4oTHogkZInmm0=
+ =Ks/U
+ -----END PGP MESSAGE-----
+ fp: 87AB00D45D37C9E9167B5A5A333448678B60E505
+ - created_at: "2025-05-03T21:25:04Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4HMJd/cQYrVAQ/+MJYZ6RlUXXfn3JFBUMOFMOCR3QYKYyYxFi++34qdw6FP
+ 56KibbYsAs2yLksHy3XdgFgw9ki3AOFK7zb2Urs36/S/lofK592u+bKK+EYqVwIK
+ YdDynzaxA46WlRx8zMufEjyUBimAppOwePeaNPeI5+ElsYT+IBYB59xNEDHx0Gql
+ SzQVj326qkp3J3vYnoV8Srt7MvU+21ysT7eXSFrYP6d7imG4Mc9CuO9Rf4ZzovY3
+ ZcIHGGg5B5/34eeVGfAFw+LfSTAcicidXDjSs9baG9jmoZYiJjF/qw4+mYRJ7Cox
+ CFQmeitar/tAAS8Q/wU9//a4dSupreAIRkA6V6/OsoWli2wY+1fL3TnHeTjskeh+
+ BYCTuWqjAXqk/VEHkzgxqEbmJr9wHrUl5BWnaF+Ic1i3Udmm9UdFx6jgja3IbJpy
+ TlofZx7EhEd2VR29AF4HQV7vjeno+wp8mKJMtaG1gCpxAlaBvpJX8lsH/oDpuYMK
+ HhFNiI/ytFd5rGsthIImzUqe5eqAnl2+JNS5vxY26JU06uN1kPcPifeV9DqJ86OC
+ EfwFs3mHAIdiyn2LfA9ESCiqMEBv7NsyIFEve02y+hJZ+G/6x0Ob//AfrhgTOmSt
+ 2QRA0WMhavJpn3gcnO3OHoHqYzckI315ZLglgPYqP+8Uc8fx6RpA6vXaj7l9aaLS
+ XgGrtCK2C5MJQX8pMYhOhNWCDcXspLlAJMNFLnBh7ngujttyLCbufx3h37evh8DY
+ 4PZ70A4TjPbyiHvQWYhVGmYTdS3TmoE5eY0vlmIHABYvKflkdYp9JPLeqqPLxQE=
+ =Aw8A
+ -----END PGP MESSAGE-----
+ fp: 91213ABAA73B0B73D3C02B5B4E5F372D17BBE67C
+ - created_at: "2025-05-03T21:25:04Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMAxjNhCKPP69fAQ/8DmSZ5hZ04QC8G4G2P2xsTg+hb6Cu+v2leOwhRNhYQtPa
+ 9fa8e5Hd7lhLfdDSfABmWZTW34lyzj2MEi4ZFMaNU7zk/iBTfFFWZkOuaSTLHD0J
+ D28PROIEOVZIjUSqQ1iGT/jRP2fCEsSWexkGJyOrXKUsVi5kSdK8XygG/Hx9uiS5
+ JoyjKMgPRNCqjvZdF12Qr+0QrM57CPE8fTy9MauN6M7CTiktQw9bdVc5hjNf4AZt
+ 8OCwNJLrAiB85iPVrUYO3nxmRETH092N1aw2HPv7/cOCst9jyUAQq3AEFpiaK+PD
+ 4uM+A+bkX3fOaCpNe1ePAnG/hV/456ZkNW3cR1tkRXXcXROFg4hOdZ2b3Rn4X35Z
+ xAHahfyOor15vAbmeAUo0ebdaAICmSoYT+JuLEdaE9hRBOfQkehRMvp2qHhYSe7X
+ 8j/cQP6M9lSPKYy1wATj3ALmLMvab3CCv9Amu3F4JtJLH3bgyWtMhiPWwxgnFRTm
+ OQgf6mXzRgJnnBJwtwdauSIxD758NyvqJgRq87dsrnUi8rp3fRq34jMVAWnrKVBz
+ kL4DMfr06mCMFLEG8B4Im4jfy0W3oVCrRrFgfB3HoiTbrnKOdYJ5e+XvlFxgXQ52
+ h0WaRnPDQK1kx75nJlF72vr0ZgTWogm0OQUadxU+LiaQkQrcBkTmpjyz16l46O/S
+ XgGXzsbwjXq3hMptCN2tD65Ryzra1BGLBPyF39UOj6xNaUcfB0Aht/huvTaWUE1x
+ up3gAnVub2M7PpamJMqAe4vucIuS11+VflWV/zlUFkaqhhlghTEeR7mEt3/1cCU=
+ =6lrH
+ -----END PGP MESSAGE-----
+ fp: F38C9D4228FC6F674E322D9C3326D914EB9B8F55
+ - created_at: "2025-05-03T21:25:04Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA1Hthzn+T1OoAQ/+PbfW/BhAzQ88YgicYVYeqw784T1C2EPbUeBRLJWbKyCL
+ LXm/coGFBpzebUk26spFK151jWOgUfyFeMqYTAKPntV2w+L/sBsuN+hJ12egIKGi
+ 5vdwosq+dgo4jPg86kohepmfh4obv3QQ1P9ESmu3UswTCsn7WnRKLscVcPAFd2Wl
+ m0EaonTQbpW6zPLUJXd+/UnTsj1PrYijazDjUEcfoj5UwQ7vXfzoeNqvkpMzQxFT
+ mCm4hL4iV0E5av/8eP3jYFxz7S13MPvyN9M5I0lCDAYENrQDvDbaKWCYGNRsG07E
+ TULw0TXwvP5KtEORR7OAPGlon+1JQ7AM4RpTvsql+dEYq8t6pFrMw12TAKsCR3e/
+ vmx12aX6eiBxZfcV/l9ykl+ypNE/YcKMjJxrDo/jeypXrHhEieuT+Otxe5OMh6+o
+ D1tydz4GKNJVsL97hlAKizs+h7Kg1KLucXVpWWUyowldzHOWA8ffh7uoM5pDk4wO
+ cYY4ROhy92n9njAzuAJfotTT2Jo/3J9vizlwFEr7F/sHEACIMgU8yJ+yqBiZK+G+
+ Dx735M17sWTbPaV7s+fKwGD213c9lNCqLCqMd0udB2cpItKH6leIQ3wkMOCs384a
+ qs5/zxVorCvMul2iB74mEw3KcbwEuQDS9sJ3G6zXTV05hgx19/qM4IJX0WxkhjPS
+ XgHiuGDuve1w8W3sfT51/I4YsGonYwQe4lfRgQie7efzySidP85lwcfYcjhhaeqy
+ /Ly0kISbmO/AkJ/94TRIw39TePjP34tcYJ7B51ZyIyyJqE9LD7U5Cg/zK5KVqSw=
+ =Pqms
+ -----END PGP MESSAGE-----
+ fp: 5DA93D5C9D7320E1BD3522C79C78172B3551C9FD
+ - created_at: "2025-05-03T21:25:04Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA46L6MuPqfJqARAAmHTz9QCo5nl2Mv5vK+yDYrbVgfgWXqD8s0sinylq4f4K
+ r4U1b8cxGfmsbm+Y3MgvOLja4mHrzAaHdGo4rZWrnGKuhgQ0DNzi3ScDZ3mkTSyS
+ Nn62K65zjG/JaqS9M2tXyjuSq648jy3o/PnZnMY24H4hpw73EvxLudYyz1DaXQoJ
+ lhi/k4Nv+cGyVxCXzBklMJ0KW+VPIKQqf6TxqBRrQzPG1BNIWul9S0YJ5hZKvxqj
+ eEHPetDiQNjAJ9tPsVqXMe+TH3otz0shks5j9PzRGklwcHQjIwZrSwd6Ajs4Y24N
+ DTqAWH6ZosGERCe7Qp9YInTQ67J3VubYqtzpqDPKsu59+c5CYrhZooPHFOSt4WmD
+ bfGVdyogsXAfRVq8eAa3ShRVTYN21eUH+qQfwmo8Vw6GKSeeXiBclP20gJvmasKS
+ ifCLzEV9rhnE4YB2z7wUwOfJL3CFcnd96UqpGvQH6cAJmrKPN9U9pEWRVueMYhnp
+ ZE2NGu3spAFdEcCtd2Yh+nrAMklLMClvqtyp/HA6jg5pVDNcckBUXs2a/9uc0MNJ
+ 3RfrWaTuBRa9iEFJ6LHrjdWkRCMg6b2VrjVdrC6OwaV4vUQhc+VFNJGvkZ684K8l
+ olNX1efLZuVLVCEt9s8CQWktZDkm8hXEc+JLgZa+y7/o+Q2L+ILz2uuFp8nET9LS
+ XgFJ6Ktg3HSq8d8OYDmmKViYvqc8sazpt9RZybbQWxofCPP9Jum2AtxXsV8EvpIJ
+ uGMaJTCrwcIzlGXi+kic5EJJ9mR0woJNTMFLJgmm7CnfCQP9OsPb8IYNzvWK9zg=
+ =jmjo
+ -----END PGP MESSAGE-----
+ fp: 8996B62CBD159DCADD3B6DC08BB33A8ABCF7BC4A
+ - created_at: "2025-05-03T21:25:04Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA4EEKdYEzV0pAQ/8D9QO1hysKECDBPWs+vuWeaYp6nJL3WyoehsD+5NcUgu5
+ n7k6gWdb6qdnX22pG2Y1sXVUbLHpBwGPFmV8yYEz/Wvilu6XbagWOaidIJg4n//t
+ nIEUXun7592rod636coaLdHF2xrFsh3e1RaTmFI4loOhDKZiiQtnGkFKcaukBJrM
+ cZwmuJNCT34RAodzWQI1zYbMKz0RSgALVBTcr1uVcdNfU/QCaqt7zYw75NnaTV/i
+ n5EsKAFcva5H//9lYHSzh38zOpz7eika4q9pBR6AwQ+4qmQEJE2x6cqqKVBAxpJO
+ aKBvWxxD6xZ5euoKYVdNnESaSrDXbBwJjcaWELhf9zGjJ9lh02rrdNyeRYkoBIGm
+ Fgc35S7TG0jK0KnNO/Cx0lOSwKZVdS/wAn4G7UFBAi9wvN5dgW/4+5YJ3FvIP+JQ
+ +WtlhbVuRnytjBoMPXdmhtlMifPqcCCe9tfWzeDshRFkYZYj7fCYahb1RMayckSE
+ mzL09qD/1NWpvCxahd8klOom3i8UZUsF7/f+MvL/qDDrOQNYUkZZlyXMxK6PtHxD
+ 8EllsS7LSKEjyOVKUZARaAVa+4xNRPoekgPGb87c33KcaDTHpAdnR4+OAsdrZqdH
+ m7uDUmFwBl9oUuOSDH5/SzYDwCmzji4fF+RB3y2rN++iMHaoW0cdfrMFJLNh0p/S
+ XgHytHnTUNQHpcO9DvDOJ/k6CMKEy8pqHsJtA6w4qjDBvxp2+MZvLtaiu0+cdIdn
+ Pv4/vMcPQ487w1Bai/RSPpFT/mvul2cx+rvGAvSBOJdJ36IqS77XS7q98oqsLXg=
+ =iE5q
+ -----END PGP MESSAGE-----
+ fp: 9DFA033E3DAEBAD7FDD71B056C7AAA54BE05F7BA
+ - created_at: "2025-05-03T21:25:04Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DQrf1tCqiJxoSAQdAplgn1U9MWtBhmrJn4nWktxeHY59U0ksE1XliNX8mr0Mw
+ 3xD0QuwfaohrhdgX3La+4/OY582zxkSwEP8Jw/JoBOSuEx+HBUreKKPuxO9uHzig
+ 0l4BPz6xZxRAI202Qajo1H9z32HbS95b05bBUapW50sUAAmNUhXW79guW7PjPeE4
+ 1baTqk/BaJEreZshjwlJ92GXqrdbWmsYPRKKMSa1NoZu/uVQYvGXPvtmtE387OAs
+ =gwSv
+ -----END PGP MESSAGE-----
+ fp: B71138A6A8964A3C3B8899857B4F70C356765BAB
+ - created_at: "2025-05-03T21:25:04Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hF4DzAGzViGx4qcSAQdApLDqh0CvSd674B/iVxpxBih7clT+mIDyINRGECvxBBgw
+ Afw8LvDzNDt1SX/xWNqZTYiJOQMq4V5HfSkSMt9mPPbSP9sT0OAHNN2dW/wZh2ZQ
+ 0lgBl47uynaVtrGVFU6ztl1YspN5OirXNIV/QqQIui/iaeeEdY8M/O7Blw2riktx
+ swLDw0o3UQTa76cCcBY0bLv0Vv8zdjKTSP5nBhMDS0pNxkKCuTqXCYkr
+ =VCUK
+ -----END PGP MESSAGE-----
+ fp: D2E9C0807BF681F5E164DAFC5EE1B61CD90954CD
+ - created_at: "2025-05-03T21:25:04Z"
+ enc: |-
+ -----BEGIN PGP MESSAGE-----
+
+ hQIMA2pVdGTIrZI+ARAAiYsQ5CFabAY1WYopL7Q14NoAdQmo41mCMK7VwObHTwRP
+ 7fIc2ug1UvunZsHSnC+IX6L9FXR8SUqFg4P9sWRPnnId/lI23zkBDCYuwCy2F/qa
+ e/GEh4Eha3OSd/ljZADddAIn+mjb6nc2YU/DvLg60h3A317RZassGavSFxYdPmKi
+ mfGVdnM8d4fnBIVaaUBjMVgiiTZnp1JGsaSewGkAie5qbhsqM4DT/se2RoNHmRjk
+ hZw8UNi2gPm27er9q3iBvEe/TKr6diA/ELWzNBXZS9uhOqKAlUKsHMNx9t/aLGXV
+ zSuyM0KuIMX61isHPXvKv1majyjGJ52UIfoUJ29FL9XmRbW2AUjmJnJ0AF8tpUrC
+ 6mqrzKTouOdmAdLmlPnZKlzt32AzkAlg97u1tllWUJstYndl2IwJ69BMaDhQVVgp
+ 6LkxUw5gmgCyj6hjDNjX98IhacGMYBhjjJ39Z+3AGlhuAegN91MGaE3TIrPjmx/H
+ KAXEC5Wv/yp5ezz2FtY41e5selMKcMgn8OuOvdyQZ0wWfqebLd3LMRis3hV04a8u
+ FzfkGo1jG5FWJQj0Nlc9mdgh6mLO43LKdq3Y6P/2pJ/Xdh3/tm1vzY3VOxtuelBO
+ NcB3lYB8ukouKH8yx3LvnB0oD3EsQC0/Uq8HUx4B75Mi7xnG2uo0sR05ALTLMePU
+ aAEJAhCqABkvXA7TWGsj9ohR+1d+6A47/6drox/KI/axPWoSFb/9SfPoSQR8U1Rp
+ NNrUA9GRUEFAsAzU7PaUYL5ZjF7uHN0MbZL7XI1X7qWz8I6qVYtuJAjBTdaKen3N
+ pRg6v53Ytj/L
+ =yFV4
+ -----END PGP MESSAGE-----
+ fp: 878FEA3CB6A6F6E7CD80ECBE28506E3585F9F533
+ unencrypted_suffix: _unencrypted
+ version: 3.9.4
diff --git a/resources/z9/dooris/docker_compose/compose.yaml.j2 b/resources/z9/dooris/docker_compose/compose.yaml.j2
deleted file mode 100644
index 38db85a..0000000
--- a/resources/z9/dooris/docker_compose/compose.yaml.j2
+++ /dev/null
@@ -1,22 +0,0 @@
----
-
-services:
- dooris:
- image: git.hamburg.ccc.de/ccchh/hmdooris/hmdooris:latest
- environment:
- HMDOORIS_ALLOWED_IPS: "2a07:c481:1:c8::/64 2a01:170:118b::/56 172.31.200.0/23 172.31.202.0/27"
- HMDOORIS_CCUJACK_CERTIFICATE_PATH: false
- HMDOORIS_CCUJACK_PASSWORD: "{{ secret__dooris_ccujack_password }}"
- HMDOORIS_CCUJACK_URL: https://hmdooris-ccu.ccchh.net:2122
- HMDOORIS_CCUJACK_USERNAME: dooris
- HMDOORIS_CLIENT_ID: dooris
- HMDOORIS_CLIENT_SECRET: "{{ secret__dooris_client_secret }}"
- HMDOORIS_DISCOVERY_URL: https://id.hamburg.ccc.de/realms/ccchh/.well-known/openid-configuration
- HMDOORIS_LISTEN: '0.0.0.0:3000'
- HMDOORIS_REQUIRES_GROUP: /intern
- HMDOORIS_URL: https://dooris.ccchh.net
- PYTHONWARNINGS: "ignore:Unverified HTTPS request"
- #DEBUG: true
- ports:
- - "127.0.0.1:3000:3000"
- restart: unless-stopped
diff --git a/resources/z9/dooris/nginx/dooris.ccchh.net.conf b/resources/z9/dooris/nginx/dooris.ccchh.net.conf
deleted file mode 100644
index c1ca082..0000000
--- a/resources/z9/dooris/nginx/dooris.ccchh.net.conf
+++ /dev/null
@@ -1,37 +0,0 @@
-# partly generated 2022-01-08, Mozilla Guideline v5.6, nginx 1.17.7, OpenSSL 1.1.1k, intermediate configuration
-# https://ssl-config.mozilla.org/#server=nginx&version=1.17.7&config=intermediate&openssl=1.1.1k&guideline=5.6
-server {
- listen [::]:443 ssl http2;
- listen 443 ssl http2;
-
- server_name dooris.ccchh.net;
-
- ssl_certificate /etc/letsencrypt/live/dooris.ccchh.net/fullchain.pem;
- ssl_certificate_key /etc/letsencrypt/live/dooris.ccchh.net/privkey.pem;
- # verify chain of trust of OCSP response using Root CA and Intermediate certs
- ssl_trusted_certificate /etc/letsencrypt/live/dooris.ccchh.net/chain.pem;
-
- # HSTS (ngx_http_headers_module is required) (63072000 seconds)
- add_header Strict-Transport-Security "max-age=63072000" always;
-
- proxy_set_header Host $host;
- proxy_set_header X-Forwarded-Host $host;
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
- proxy_set_header X-Forwarded-Port 443;
- # This is https in any case.
- proxy_set_header X-Forwarded-Proto https;
- # Hide the X-Forwarded header.
- proxy_hide_header X-Forwarded;
- # Assume we are the only Reverse Proxy (well using Proxy Protocol, but that
- # is transparent).
- # Also provide "_hidden" for by, since it's not relevant.
- proxy_set_header Forwarded "for=$remote_addr;proto=https;host=$host;by=_hidden";
- proxy_http_version 1.1;
- proxy_set_header Upgrade $http_upgrade;
- proxy_set_header Connection "upgrade";
-
- location / {
- proxy_pass http://127.0.0.1:3000/;
- }
-}
diff --git a/resources/z9/waybackproxy/docker_compose/compose.yaml.j2 b/resources/z9/waybackproxy/docker_compose/compose.yaml.j2
deleted file mode 100644
index b6752fa..0000000
--- a/resources/z9/waybackproxy/docker_compose/compose.yaml.j2
+++ /dev/null
@@ -1,10 +0,0 @@
-services:
- # https://github.com/richardg867/WaybackProxy
- waybackproxy:
- image: cttynul/waybackproxy:latest
- environment:
- DATE: 19990101
- DATE_TOLERANCE: 730
- ports:
- - "1999:8888"
- restart: unless-stopped
diff --git a/resources/z9/waybackproxy/nginx/waybackproxy.ccchh.net.conf b/resources/z9/waybackproxy/nginx/waybackproxy.ccchh.net.conf
deleted file mode 100644
index 7c616c7..0000000
--- a/resources/z9/waybackproxy/nginx/waybackproxy.ccchh.net.conf
+++ /dev/null
@@ -1,5 +0,0 @@
-# TODO: set up caching proxy
-
-# server {
-# listen 1999
-# }
diff --git a/resources/z9/yate/docker_compose/README.md b/resources/z9/yate/docker_compose/README.md
deleted file mode 100644
index 1977f4f..0000000
--- a/resources/z9/yate/docker_compose/README.md
+++ /dev/null
@@ -1,12 +0,0 @@
-# Yate Configuration
-
-Yate has a [beginners guide](https://docs.yate.ro/wiki/Beginners_in_Yate). Otherwise, you need to refer to the [sample config files](https://github.com/eventphone/yate/tree/master/conf.d).
-
-For our limited setup, we only need three files:
-* accfile.conf for defining SIP registrars that we want to register with (EPVPN, Fonial, and the Fux door intercom system)
-* regexroute.conf for the call routing rules
-* regfile.conf for the phones that connect to yate.ccchh.net
-
-## Docker Compose Setup
-
-yate runs as a container wiht host networking. The image is build through https://git.hamburg.ccc.de/CCCHH/yate-image, it is using the Eventphone fork of yate.
\ No newline at end of file
diff --git a/resources/z9/yate/docker_compose/accfile.conf.j2 b/resources/z9/yate/docker_compose/accfile.conf.j2
deleted file mode 100644
index 4ce65e3..0000000
--- a/resources/z9/yate/docker_compose/accfile.conf.j2
+++ /dev/null
@@ -1,35 +0,0 @@
-; Yate will register to these SIP services
-; see https://github.com/eventphone/yate/blob/master/conf.d/accfile.conf.sample
-
-[epvpn_ccchh]
-enabled=yes
-protocol=sip
-description=Eventphone EPVPN CCCHH
-username=1008
-authname=1008
-password={{ secret__yate__sip_trunk_epvpn }}
-interval=120
-registrar=hg.eventphone.de
-keepalive=1
-
-[fonial_ccchh]
-enabled=yes
-protocol=sip
-description=Fonial CCCHH
-username=fo370381tr317349_00
-authname=fo370381tr317349_00
-password={{ secret__yate__sip_trunk_fonial }}
-interval=120
-registrar=sip.plusnet.de
-keepalive=1
-
-[fux_intercom]
-enabled=yes
-protocol=sip
-description=Fux Intercom CCCHH doorbell
-username=1337
-authname=1337
-password={{ secret__yate__sip_trunk_fux }}
-interval=120
-registrar=172.16.210.2
-keepalive=1
diff --git a/resources/z9/yate/docker_compose/compose.yaml.j2 b/resources/z9/yate/docker_compose/compose.yaml.j2
deleted file mode 100644
index e3d6614..0000000
--- a/resources/z9/yate/docker_compose/compose.yaml.j2
+++ /dev/null
@@ -1,20 +0,0 @@
----
-
-services:
- yate:
- image: git.hamburg.ccc.de/ccchh/yate-image/yate-image:latest
- # command:
- # - sh
- # - "-c"
- # - "while :; do sleep 10; done"
- environment:
- DEBUG: true
- network_mode: host
- # ports:
- # - "127.0.0.1:3000:3000"
- restart: unless-stopped
- volumes:
- - ./configs/accfile.conf:/opt/yate/etc/yate/accfile.conf
- - ./configs/regexroute.conf:/opt/yate/etc/yate/regexroute.conf
- - ./configs/regfile.conf:/opt/yate/etc/yate/regfile.conf
- - ./lib-yate:/var/lib/yate
\ No newline at end of file
diff --git a/resources/z9/yate/docker_compose/regexroute.conf.j2 b/resources/z9/yate/docker_compose/regexroute.conf.j2
deleted file mode 100644
index aeecf6b..0000000
--- a/resources/z9/yate/docker_compose/regexroute.conf.j2
+++ /dev/null
@@ -1,100 +0,0 @@
-; Call routing
-; see https://github.com/eventphone/yate/blob/master/conf.d/regexroute.conf.sample
-
-[priorities]
-; route: int: Priority of the routing message handler
-route=90
-
-[contexts]
- ; INBOUND CALLS:
-${called}^1337$=inbound_fux
-${called}^1008$=inbound_epvpn
-${called}^04023830150$=inbound_fonial
-${called}^fo370381tr317349_00$=inbound_fonial
-;${called}.*=inbound
-
-;^[0-9]\{4\}$=inbound ; Calls from 4 digit numbers: EPVPN
-;^+\?[0-9]\{5,\}$=inbound ; Calls from longer numbers, optionally starting with +
-;^*\{1,2\}[0-9]\{1,3\}$=inbound ; Internal fritzbox calls
-
- ; OUTBOUND CALLS:
-^[0-9]\{3\}=outbound
-^[a-z0-9]\{4,\}=outbound ; calls from internal users
-
-^.*$=fallback ; Whatever calls managed to not be handled yet
-
-[default] ; unused
-^.*$=echo [default]"\0"
-
-[test] ; unused
-^.*$=echo [test] "\0"
-^99991001$=tone/dial
-^99991002$=tone/busy
-^99991003$=tone/ring
-^99991004$=tone/specdial
-^99991005$=tone/congestion
-^99991006$=tone/outoforder
-^99991007$=tone/milliwatt
-^99991008$=tone/info
-
-; DEBUG HELPER
-; ^.*$=echo match \0 adr ${address} src ${callsource} form ${formats} id ${id} peer ${peerid} type ${type} user ${username} caller ${caller} called ${called}
-
-^[0-9]\{1,2\}$=return;called=\0
-
-
-[outbound] ; Calls from internal users
-^.*$=echo [outbound] "\0" ${caller}->${called} ; log for debug
-^[0-9]\{3\}$=jump internal
-^[0-9]\{1,2\}$=jump z9 ; To internal -> z9
-^.*$=echo [outbound] "\0" ${caller}->${called} ; log for debug
-^.*$=line/\0;line=epvpn_ccchh ; Route everything (.*) to the specified accfile line
-
-[inbound_epvpn]
-^.*$=echo [inbound_epvpn] ${caller}->${called}
-^.*$=return;callername=EPVPN ${caller};called=0 ; TODO which extension do we want to route to?
-
-[inbound_fux]
-^.*$=echo [inbound_fux] ${caller}->${called}
-^.*$=return;callername=Door ${caller};called=0 ; TODO which extension do we want to route to?
-
-[inbound_fonial]
-^.*$=echo [inbound_fonial] ${caller}->${called}
-^.*$=return;callername=Fonial ${caller};called=0 ; TODO which extension do we want to route to?
-
-[inbound] ; Calls from EPVPN or outside world
-^.*$=echo [inbound] "\0" ${caller}->${called} user:${user} callername:${callername} callsource:${callsource} ; log
-^.*$=return;callername=EXTERN ${caller};called=0 ; set call recipient to 0 (shared alias between
- ; all clients in regfile.conf
-
-[internal]
-^.*$=echo [internal] "\0" ${caller}->${called}
-^110$=line/110;line=fonial_ccchh
-^112$=line/112;line=fonial_ccchh
-^115$=line/040115;line=fonial_ccchh
-^911$=line/112;line=fonial_ccchh
-^999$=line/112;line=fonial_ccchh
-; ^119$=line/01753288861;line=fonial_ccchh ; testing only stb cell number
-^.*$=return;called=\0
-
-[z9] ; Internal calls
-^.*$=echo [z9] "\0" ${caller}->${called} ; log
-
- ; test service numbers
-^91$=sip/sip:ha@10.31.208.10:5060; called=ha;format=opus ; Homeassistant
-^98$=external/playrec/echo.sh ; Echotest
-^99$=external/play/tts.sh;mode=text;text=Hallo Hallo Hallo ; TTS test
-
-^.*$=return;called=\0 ; Any remaining internal calls to all
- ; Context: Calls to regfile.conf aliases are always
- ; handled directly and should never get here
-
-
-[special]
-^.*$=echo [special] "\0"
-^.*$=tone/info
-
-[fallback]
-^.*$=echo [fallback] \0 adr ${address} src ${callsource} form ${formats} id ${id} peer ${peerid} type ${type} user ${username} caller ${caller} called ${called}
-^*\{1,2\}[0-9]\{1,3\}$=jump outbound
-^.*$=tone/busy
diff --git a/resources/z9/yate/docker_compose/regfile.conf.j2 b/resources/z9/yate/docker_compose/regfile.conf.j2
deleted file mode 100644
index 95cf70d..0000000
--- a/resources/z9/yate/docker_compose/regfile.conf.j2
+++ /dev/null
@@ -1,37 +0,0 @@
-; YATE offers registration to these SIP devices (ie. phones)
-; see https://github.com/eventphone/yate/blob/master/conf.d/regfile.conf.sample
-
-route=100
-file=/var/lib/yate/regfile.swap
-
-[501]
-password={{ secret__yate__sip_extension_legacy }}
-alternatives=0,1008,1337
-callername=Legacy
-# Yealink im großen Raum am Fenster
-
-[502]
-password={{ secret__yate__sip_extension_flausch}}
-alternatives=0,1008,1337
-callername=Flausch
-# Yealink im großen Raum am Sofa
-
-[503]
-password={{ secret__yate__sip_extension_ewerkstatt }}
-alternatives=0,1008,1337
-callername=E-Werkstatt
-# Yealink in der E-Werkstatt
-
-[610]
-password={{ secret__yate__sip_extension_fritzbox_dect1 }}
-alternatives=0,1008,1337
-callername=DECT-1
-
-[611]
-password={{ secret__yate__sip_extension_fritzbox_dect2 }}
-alternatives=0,1008,1337
-callername=DECT-2
-
-[100]
-password=test100
-callername=stb 100
diff --git a/roles/ansible_pull/README.md b/roles/ansible_pull/README.md
deleted file mode 100644
index f31c552..0000000
--- a/roles/ansible_pull/README.md
+++ /dev/null
@@ -1,21 +0,0 @@
-# `ansible_pull` role
-
-A role for setting up automatic `ansible_pull` runs.
-
-## Supported Distributions
-
-Should work on Debian-based distributions.
-
-## Required Arguments
-
-- `ansible_pull__age_private_key`: The age private key to use to decrypt SOPS secrets with.
-- `ansible_pull__repo_url`: The URL of the repo to run the playbook from.
-- `ansible_pull__inventory`: The inventory to use.
-- `ansible_pull__playbook`: The playbook to run.
-- `ansible_pull__timer_on_calendar`: When to run the playbook. This is the argument to a systemd timers OnCalendar. See the systemd.time man page for reference.
-
-## Optional Arguments
-
-- `ansible_pull__user`: The user to run `ansible_pull` as. Defaults to `ansible_user`.
-- `ansible_pull__checkout`: The branch/tag/commit to check out to run the playbook from. Defaults to `main`.
-- `ansible_pull__timer_randomized_delay_sec`: The timer will be randomly delayed by a value between 0 and this. Useful to not have all timers fire at the same time, even if `ansible_pull__timer_on_calendar` is the same. Time value in seconds. Defaults to 0.
diff --git a/roles/ansible_pull/defaults/main.yaml b/roles/ansible_pull/defaults/main.yaml
deleted file mode 100644
index 3b9acb2..0000000
--- a/roles/ansible_pull/defaults/main.yaml
+++ /dev/null
@@ -1,3 +0,0 @@
-ansible_pull__user: "{{ ansible_user }}"
-ansible_pull__checkout: "main"
-ansible_pull__timer_randomized_delay_sec: "0"
diff --git a/roles/ansible_pull/handlers/main.yaml b/roles/ansible_pull/handlers/main.yaml
deleted file mode 100644
index ada2426..0000000
--- a/roles/ansible_pull/handlers/main.yaml
+++ /dev/null
@@ -1,4 +0,0 @@
-- name: systemd daemon reload
- ansible.builtin.systemd_service:
- daemon_reload: true
- become: true
diff --git a/roles/ansible_pull/meta/argument_specs.yaml b/roles/ansible_pull/meta/argument_specs.yaml
deleted file mode 100644
index e5c88af..0000000
--- a/roles/ansible_pull/meta/argument_specs.yaml
+++ /dev/null
@@ -1,27 +0,0 @@
-argument_specs:
- main:
- options:
- ansible_pull__age_private_key:
- type: str
- required: true
- ansible_pull__repo_url:
- type: str
- required: true
- ansible_pull__inventory:
- type: str
- required: true
- ansible_pull__playbook:
- type: str
- required: true
- ansible_pull__timer_on_calendar:
- type: str
- required: true
- ansible_pull__user:
- type: str
- required: false
- ansible_pull__checkout:
- type: str
- required: false
- ansible_pull__timer_randomized_delay_sec:
- type: str
- required: false
diff --git a/roles/ansible_pull/tasks/main.yaml b/roles/ansible_pull/tasks/main.yaml
deleted file mode 100644
index 53fc219..0000000
--- a/roles/ansible_pull/tasks/main.yaml
+++ /dev/null
@@ -1,63 +0,0 @@
-- name: ensure dependencies are installed
- ansible.builtin.apt:
- name: virtualenv
- state: present
- become: true
-
-# https://docs.ansible.com/ansible/latest/installation_guide/intro_installation.html#installing-and-upgrading-ansible-with-pip
-# https://www.redhat.com/en/blog/python-venv-ansible
-- name: ensure Ansible installation exists
- ansible.builtin.pip:
- name:
- - ansible
- - jmespath
- state: present
- virtualenv: /usr/local/lib/ansible_pull_venv
- become: true
-
-- name: ensure secrets directory exists
- ansible.builtin.file:
- path: /etc/ansible_pull_secrets
- state: directory
- mode: "0750"
- owner: root
- group: "{{ ansible_pull__user }}"
- become: true
-
-- name: ensure age private key is deployed
- ansible.builtin.copy:
- content: "{{ ansible_pull__age_private_key }}"
- dest: /etc/ansible_pull_secrets/age_private_key
- mode: "0640"
- owner: root
- group: "{{ ansible_pull__user }}"
- become: true
-
-- name: ensure systemd service exists
- ansible.builtin.template:
- src: ansible-pull.service.j2
- dest: /etc/systemd/system/ansible-pull.service
- owner: root
- group: root
- mode: "0644"
- become: true
- notify:
- - systemd daemon reload
-
-- name: ensure systemd timer exists
- ansible.builtin.template:
- src: ansible-pull.timer.j2
- dest: /etc/systemd/system/ansible-pull.timer
- owner: root
- group: root
- mode: "0644"
- become: true
- notify:
- - systemd daemon reload
-
-- name: ensure systemd timer is started and enabled
- ansible.builtin.systemd_service:
- name: ansible-pull.timer
- state: started
- enabled: true
- become: true
diff --git a/roles/ansible_pull/templates/ansible-pull.service.j2 b/roles/ansible_pull/templates/ansible-pull.service.j2
deleted file mode 100644
index 588741c..0000000
--- a/roles/ansible_pull/templates/ansible-pull.service.j2
+++ /dev/null
@@ -1,18 +0,0 @@
-[Unit]
-Description=ansible-pull for configuration and maintenance
-After=network-online.target
-Wants=network-online.target
-
-[Service]
-Type=oneshot
-Environment="SOPS_AGE_KEY_FILE=/etc/ansible_pull_secrets/age_private_key"
-ExecStart=/usr/local/lib/ansible_pull_venv/bin/ansible-pull \
- --directory /home/chaos/ansible_pull_checkout \
- --clean \
- --url "{{ ansible_pull__repo_url }}" \
- --checkout "{{ ansible_pull__checkout }}" \
- --inventory "{{ ansible_pull__inventory }}" \
- "{{ ansible_pull__playbook }}"
-User={{ ansible_pull__user }}
-# Reboot, if /var/run/reboot-required or /var/run/ansible-reboot-required exist.
-ExecStartPost=/usr/bin/bash -c 'if [ -e /var/run/reboot-required ] || [ -e /var/run/ansible-reboot-required ]; then sudo systemctl reboot; fi'
diff --git a/roles/ansible_pull/templates/ansible-pull.timer.j2 b/roles/ansible_pull/templates/ansible-pull.timer.j2
deleted file mode 100644
index 24bc8ba..0000000
--- a/roles/ansible_pull/templates/ansible-pull.timer.j2
+++ /dev/null
@@ -1,9 +0,0 @@
-[Unit]
-Description=ansible-pull for configuration and maintenance on a timer
-
-[Timer]
-OnCalendar={{ ansible_pull__timer_on_calendar }}
-RandomizedDelaySec={{ ansible_pull__timer_randomized_delay_sec }}
-
-[Install]
-WantedBy=timers.target
diff --git a/roles/apt_update_and_upgrade/handlers/main.yaml b/roles/apt_update_and_upgrade/handlers/main.yaml
index 4af18be..001bbe4 100644
--- a/roles/apt_update_and_upgrade/handlers/main.yaml
+++ b/roles/apt_update_and_upgrade/handlers/main.yaml
@@ -1,5 +1,3 @@
- name: reboot the system
- ansible.builtin.include_tasks: "../../reboot/tasks/main.yaml"
- vars:
- # Simply don't reboot on local connections and rely on proper handling of /var/run/reboot-required.
- reboot__local_handling: ignore
+ become: true
+ ansible.builtin.reboot:
diff --git a/roles/deploy_ssh_server_config/tasks/main.yaml b/roles/deploy_ssh_server_config/tasks/main.yaml
index dbbf76e..4350790 100644
--- a/roles/deploy_ssh_server_config/tasks/main.yaml
+++ b/roles/deploy_ssh_server_config/tasks/main.yaml
@@ -27,8 +27,8 @@
mv /etc/ssh/moduli.tmp /etc/ssh/moduli
echo "ansible-changed: changed /etc/ssh/moduli"
fi
- register: deploy_ssh_server_config__result
+ register: result
changed_when:
- - '"ansible-changed" in deploy_ssh_server_config__result.stdout'
+ - '"ansible-changed" in result.stdout'
notify:
- restart the ssh service
diff --git a/roles/docker_compose/defaults/main.yaml b/roles/docker_compose/defaults/main.yaml
index 1312972..76831d6 100644
--- a/roles/docker_compose/defaults/main.yaml
+++ b/roles/docker_compose/defaults/main.yaml
@@ -1,2 +1 @@
docker_compose__configuration_files: [ ]
-docker_compose__restart_cmd: ""
diff --git a/roles/docker_compose/handlers/main.yaml b/roles/docker_compose/handlers/main.yaml
index 49e064c..96c5ab3 100644
--- a/roles/docker_compose/handlers/main.yaml
+++ b/roles/docker_compose/handlers/main.yaml
@@ -4,10 +4,3 @@
chdir: /ansible_docker_compose
become: true
changed_when: true # This is always changed.
-- name: docker compose reload script
- ansible.builtin.command:
- cmd: /usr/bin/docker compose {{ docker_compose__restart_cmd }}
- chdir: /ansible_docker_compose
- become: true
- changed_when: true # Mark this as always changed (for now?).
- when: docker_compose__restart_cmd != ""
diff --git a/roles/docker_compose/tasks/main.yaml b/roles/docker_compose/tasks/main.yaml
index af7f717..d11d826 100644
--- a/roles/docker_compose/tasks/main.yaml
+++ b/roles/docker_compose/tasks/main.yaml
@@ -60,7 +60,6 @@
become: true
loop: "{{ docker_compose__configuration_files }}"
# notify: docker compose down
- notify: docker compose reload script
- name: Flush handlers to make "docker compose down" handler run now
ansible.builtin.meta: flush_handlers
diff --git a/roles/msmtp/README.md b/roles/msmtp/README.md
deleted file mode 100644
index e333527..0000000
--- a/roles/msmtp/README.md
+++ /dev/null
@@ -1,21 +0,0 @@
-# Role `msmtp`
-
-A role for setting up msmtp for mail sending.
-
-The role only supports mail servers supporting either STARTTLS or SMTPS.
-
-## Supported Distributions
-
-Should work on Debian-based distributions.
-
-## Required Arguments
-
-- `msmtp__smtp_host`: The SMTP host to use.
-- `msmtp__smtp_port`: The SMTP port to use.
-- `msmtp__smtp_tls_method`: The SMTP TLS method to use.
- Possible choices:
- - `starttls`: Use STARTTLS to connect to the server.
- - `smtps`: Use SMTPS to connect to the server.
-- `msmtp__smtp_user`: The SMTP user to use for authentication.
-- `msmtp__smtp_password`: The SMTP password to use for authentication.
-- `msmtp__smtp_from`: The SMTP from address to use when sending mails.
diff --git a/roles/msmtp/meta/argument_specs.yaml b/roles/msmtp/meta/argument_specs.yaml
deleted file mode 100644
index 84f940f..0000000
--- a/roles/msmtp/meta/argument_specs.yaml
+++ /dev/null
@@ -1,24 +0,0 @@
-argument_specs:
- main:
- options:
- msmtp__smtp_host:
- type: str
- required: true
- msmtp__smtp_port:
- type: int
- required: true
- msmtp__smtp_tls_method:
- type: str
- required: true
- choices:
- - "starttls"
- - "smtps"
- msmtp__smtp_user:
- type: str
- required: true
- msmtp__smtp_password:
- type: str
- required: true
- msmtp__smtp_from:
- type: str
- required: true
diff --git a/roles/msmtp/tasks/main.yaml b/roles/msmtp/tasks/main.yaml
deleted file mode 100644
index 7689ddc..0000000
--- a/roles/msmtp/tasks/main.yaml
+++ /dev/null
@@ -1,14 +0,0 @@
-- name: ensure msmtp is installed
- ansible.builtin.apt:
- name: msmtp
- state: present
- become: true
-
-- name: ensure msmtp config for root user
- ansible.builtin.template:
- src: msmtprc.j2
- dest: /root/.msmtprc
- owner: root
- group: root
- mode: "0600"
- become: true
diff --git a/roles/msmtp/templates/msmtprc.j2 b/roles/msmtp/templates/msmtprc.j2
deleted file mode 100644
index 3c4faa7..0000000
--- a/roles/msmtp/templates/msmtprc.j2
+++ /dev/null
@@ -1,17 +0,0 @@
-# ansible-managed
-
-# defaults
-defaults
-auth on
-tls on
-
-# ansible-managed-account
-account ansible-managed-account
-host {{ msmtp__smtp_host }}
-port {{ msmtp__smtp_port }}
-tls_starttls {% if msmtp__smtp_tls_method == "starttls" %}on{% else %}off{% endif +%}
-user {{ msmtp__smtp_user }}
-password {{ msmtp__smtp_password }}
-from {{ msmtp__smtp_from }}
-
-account default: ansible-managed-account
diff --git a/roles/reboot/README.md b/roles/reboot/README.md
deleted file mode 100644
index 1aaa6a6..0000000
--- a/roles/reboot/README.md
+++ /dev/null
@@ -1,26 +0,0 @@
-# Role `reboot`
-
-A role for rebooting a host, which also handles local connections gracefully.
-
-## Optional Arguments
-
-- `reboot__local_handling`: How to handle reboot on local connections. The default mode is `none`.
- Possible choices:
- - `none`: Just runs `ansible.builtin.reboot`, which would fail on local connections.
- - `ignore`: Just doesn't reboot on local connections.
- - `file`: Doesn't reboot on local connections and instead touches the file defined by `reboot__local_handling_file`.
-- `reboot__local_handling_file`: The file to touch, if `reboot__local_handling` is `file`. Defaults to `/var/run/ansible-reboot-required`.
-
-## Usage in a Handler
-
-Since a reboot should often be triggered from a handler and since handlers can't include or import roles, this roles logic can also be run by including the `main.yaml` task using `ansible.builtin.include_tasks` as a workaround.
-When doing so, arguments should be specified explicitly as necessary (so at least `reboot__local_handling`) as the default role inclusion mechanisms like setting default values don't work.
-
-An example handler would look like this:
-
-```yaml
-- name: reboot the system
- ansible.builtin.include_tasks: "../../reboot/tasks/main.yaml"
- vars:
- reboot__local_handling: ignore
-```
diff --git a/roles/reboot/defaults/main.yaml b/roles/reboot/defaults/main.yaml
deleted file mode 100644
index dbcdd1b..0000000
--- a/roles/reboot/defaults/main.yaml
+++ /dev/null
@@ -1,2 +0,0 @@
-reboot__local_handling: none
-reboot__local_handling_file: /var/run/ansible-reboot-required
diff --git a/roles/reboot/meta/argument_specs.yaml b/roles/reboot/meta/argument_specs.yaml
deleted file mode 100644
index 7bad88f..0000000
--- a/roles/reboot/meta/argument_specs.yaml
+++ /dev/null
@@ -1,13 +0,0 @@
-argument_specs:
- main:
- options:
- reboot__local_handling:
- type: str
- required: false
- choices:
- - "none"
- - "ignore"
- - "file"
- reboot__local_handling_file:
- type: path
- required: false
diff --git a/roles/reboot/tasks/main.yaml b/roles/reboot/tasks/main.yaml
deleted file mode 100644
index 791bf73..0000000
--- a/roles/reboot/tasks/main.yaml
+++ /dev/null
@@ -1,14 +0,0 @@
-- name: Reboot
- ansible.builtin.reboot:
- become: true
- when: ansible_connection != "local" or reboot__local_handling == "none"
-
-- name: Touch a reboot required file
- ansible.builtin.file:
- path: "{{ reboot__local_handling_file }}"
- state: touch
- owner: root
- group: root
- mode: "0644"
- become: true
- when: ansible_connection == "local" and reboot__local_handling == "file"