ViMaSter/ansible-infra

Author	SHA1	Message	Date
June	17ba7c04f2	acmdns(host): expose and monitor health endpoint	2026-02-01 23:14:15 +01:00
June	536eedeffc	status(host): add monitoring for ACME DNS	2026-02-01 22:44:42 +01:00
June	397285655b	status(host): add monitoring for spaceapi.ccc.de	2026-02-01 21:38:57 +01:00
June	8e75f1ad14	status(host): add monitoring for cpu.ccc.de and aliases	2026-02-01 21:30:40 +01:00
June	c3b20abab3	status(host): use custom alert for Matrix to make it work with PAT The Personal Access Token we use isn't compatible with the default Matrix alerting provider, so use a custom alert.	2026-02-01 20:49:33 +01:00
June	9c2fe5ea9b	public-reverse-proxy(host): remove cpuccc.hamburg.ccc.de alias	2026-01-28 15:32:29 +01:00
Stefan Bethke	06ae220857	Remove spaceapiccc.hamburg.ccc.de	2026-01-27 22:35:28 +01:00
Stefan Bethke	1f2a08cf15	Spell stuff correctly	2026-01-27 20:16:57 +01:00
June	2e5b0ab940	nginx(role): to not log IPs, just disable the access log	2026-01-27 18:18:17 +01:00
Stefan Bethke	3bba747dab	Configure seperate server for spaceapi.ccc.de	2026-01-27 16:30:00 +01:00
Stefan Bethke	b90a57ffb0	Merge branch 'main' of git.hamburg.ccc.de:CCCHH/ansible-infra	2026-01-27 16:21:20 +01:00
Stefan Bethke	ad783e4a15	now in production	2026-01-27 16:21:18 +01:00
June	200e8019ed	public-reverse-proxy: add config for local/lokal.ccc.de local/lokal.ccc.de points to cpu.ccc.de.	2026-01-27 15:49:38 +01:00
Stefan Bethke	4f0c4bb276	Explain need to re-encrypt after adding a host	2026-01-27 09:47:01 +01:00
Stefan Bethke	3abc375984	Re-encrypt for spaceapiccc	2026-01-27 09:46:47 +01:00
Stefan Bethke	c8edde4d11	Pretty up	2026-01-26 00:20:27 +01:00
June	ca20721f04	add missing grafana.grafana collection dependency	2026-01-25 23:55:57 +01:00
June	42b23eb181	get collections from repos directly instead of using Ansible Galaxy As Ansible Galaxy is currently down, switch to using the repos directly. This avoids reliancy on Ansible Galaxy in the future as well.	2026-01-25 23:55:48 +01:00
Stefan Bethke	0f3cd2c70a	amcedns to enable Let's Encrypt DNS-01 challenges	2026-01-25 22:41:42 +01:00
Stefan Bethke	c33ae36af3	Enable IPv6 by default	2026-01-25 22:40:36 +01:00
Stefan Bethke	2cd0811b29	Fix warning	2026-01-25 22:40:36 +01:00
chris	6a92aa68c1	light: fix tls cert expiring and not renewing	2026-01-25 22:36:30 +01:00
chris	5693989c38	add alloy to the z9 hosts and some cleanup	2026-01-25 21:44:49 +01:00
chris	c7d51af5b4	rollout Alloy to replace prometheus_node_exporter With the new network we need to deploy a push based solution in order to get metrics into prometheus	2026-01-25 21:44:49 +01:00
June	995dbb06e2	wip: alloy	2026-01-25 21:44:49 +01:00
chris	11779ab21d	grafana: get alertmanager to be more chill a bit of help to deal with alert fatigue	2026-01-25 21:41:20 +01:00
June	8f7990acc0	docs: add ansible_pull_hosts to the desired minimum roles/groups	2026-01-25 21:17:28 +01:00
June	c6c0272448	docs: add section on conf. monitoring with Gatus (status.hamburg.ccc.de)	2026-01-25 21:16:38 +01:00
June	1523b15952	docs: improve formatting and wording a bit to make things clearer	2026-01-25 21:11:07 +01:00
June	a5d291cea8	spaceapiccc(host): setup ansible-pull	2026-01-25 20:58:57 +01:00
June	652aa32e21	docker_compose(role): document new build and pull arguments	2026-01-25 20:49:39 +01:00
June	0939771d08	public-reverse-proxy(host): add entries for cpu.ccc.de	2026-01-25 20:22:44 +01:00
Stefan Bethke	c285694aaa	Add age private key	2026-01-25 15:47:41 +01:00
Stefan Bethke	d35f1cc779	GPG must be installed for the docker role to be able to add the repo	2026-01-25 15:31:42 +01:00
Stefan Bethke	cee1fe970a	Add spaceapiccc as a replacement for erfafoo	2026-01-25 14:03:54 +01:00
Stefan Bethke	0c782caee7	Explain what all needs to be added for a new host	2026-01-25 14:03:34 +01:00
Stefan Bethke	f887de25c5	make building and pulling configurable	2026-01-25 13:26:20 +01:00
Stefan Bethke	664b9115b8	Fix warning	2026-01-25 13:01:52 +01:00
Stefan Bethke	b492472179	Explain how to add age key for ansible pull	2026-01-25 12:12:30 +01:00
June	ddaa069204	status(host): configure Gatus to store more results and events Also see: https://github.com/TwiN/gatus?tab=readme-ov-file#storage	2026-01-18 21:39:23 +01:00
fi	28f80a85f3	status(host): Switch to nekover.se user for personal token As access token now apparently expire with matrix authentication services, use a nekover.se user where we can get a long-lived personal token.	2026-01-18 19:49:59 +01:00
June	d514688574	systemd_networkd(role),router(host): support global config to fix forw. With the router upgrade to Debian 13 the systemd version got upgraded as well breaking the current configuration for IP forwarding. Add a variable for global systemd-networkd configuration and use that to enable IPv4 and IPv6 forwarding on the router. The systemd_networkd role could be a bit nicer, not deploying/deleting the global configuration, if the variable is empty and reloading/restarting systemd-networkd at appropriate times. But as is works for now.	2026-01-18 19:21:33 +01:00
June	d7b463ecb9	status(host): fix token not working by using a new one	2026-01-18 04:54:31 +01:00
Renovate	0b6847493c	Update actions/checkout action to v6	2026-01-18 03:30:42 +00:00
Renovate	744dc00ae5	Update https://github.com/ansible/ansible-lint action to v26	2026-01-18 03:01:35 +00:00
June	fe52127e82	status(host): configure external status page and uptime monitoring host	2026-01-18 01:26:52 +01:00
June	51bbdd42a2	dooris(host): make certbot work	2026-01-13 16:55:22 +01:00
June	428b5c70bc	pretalx(host): roll back to pretalx v2025.1.0 for celery as well	2026-01-13 14:19:57 +01:00
June	92601ab9ea	renovate: add package rule for pretalx reclassifying major updates So that v2025.1.0 to v2025.2.2 counts as a major, not a minor, update.	2026-01-13 03:48:34 +01:00
June	3e0fdfa8de	pretalx(host): roll back to pretalx v2025.1.0 as v2025.2.2 doesn't work	2026-01-13 03:43:28 +01:00

1 2 3 4 5 ...

592 commits