sophia/ansible-infra
0
0
Fork 0
forked from CCCHH/ansible-infra
Code Pull requests Activity
754 commits 5 branches 0 tags 2.4 MiB
Commit graph

754 commits

This branch
This branch
All branches
Author SHA1 Message Date
Stefan Bethke
899dbea4dd Fix redirect check, but this is wrong 
Redirect checks should not repeat the content check for the target, but simply check that the redirect is going to the right URL.
 2026-06-19 09:30:18 +02:00
stb
1abea4ccec Merge branch 'main' into use-canary 2026-06-19 09:10:49 +02:00
Renovate
8b924c924f Update actions/checkout action to v7 2026-06-18 15:15:51 +00:00
Stefan Bethke
e5fa86468a Encode domain in canary 2026-06-15 19:56:15 +02:00
Stefan Bethke
05149f42fa Use canary comment instead of actual content 
Please only merge after CCCHH/ccchh-website#170
 2026-06-15 19:14:42 +02:00
Stefan Bethke
5f7b0c9449 Adjust to content change 2026-06-15 19:07:17 +02:00
lilly
75b7e80321
 		migrate uberwachungsfrei kundgebung to own domain 2026-06-11 14:40:09 +02:00
lilly
5973de0959
 		dns: validate zone files before apply in knot role 2026-06-10 16:17:58 +02:00
lilly
57d2a94990
 		dns: fix syntax error in diday.org zone 2026-06-10 16:17:23 +02:00
lilly
431aaefb36
 		dns: remove ns.vie.ccc.de from already migrated zones 2026-06-10 16:05:51 +02:00
lilly
6d922b7c8b
 		dns: also notify erfadns.ber.ccc.de for catalog zone changes 2026-06-10 13:12:00 +02:00
lilly
931afac7e0
 		add ueberwachungsfrei-kundgebung site 2026-06-09 21:42:49 +02:00
lilly
b283089b06
 		readd ns.vie.ccc.de to our zones because zones are not delegated yet 2026-06-09 21:27:33 +02:00
lilly
ec9275cf46
 		add ueberwachungsfrei-kundgebung.hamburg.ccc.de domain 2026-06-09 21:00:51 +02:00
lilly
389b87113b
 		auth-dns: update NS records of all zone files 
The current set is auth-dns.hamburg.ccc.de in addition to the
newly created erfadns.ber.ccc.de

See https://zammad.hamburg.ccc.de/#ticket/zoom/1738 for details.
 2026-06-09 11:00:02 +02:00
lilly
471012928a auth-dns: configure nameserver secondary solely to erfadns.ber.ccc.de 2026-06-09 10:31:32 +02:00
chris
04305a1124
 		keycloak: update to 26.6.0 2026-06-08 21:34:13 +02:00
lilly
5f94d7f284
 		remove ns-intern.hamburg.ccc.de from notify targets of our domains 2026-06-06 16:26:47 +02:00
lilly
66e0095070
 		add zone diday.org. to authoritative DNS 2026-06-06 16:25:18 +02:00
lilly
8ca5d82d39
 		knot: fix templating inconsistency in netplan config 2026-06-06 15:06:11 +02:00
lilly
3a09c107b9
 		knot: use explicit ansible_facts reference 2026-06-06 14:59:16 +02:00
June
fa6e280594
 		www2/www3(host): remove hosts as they got removed 2026-06-04 00:54:55 +02:00
June
7b48f1ebe7
 		status(host): fix auth-dns ccchh.net check by moving to new entry 
Check entry for pve01 instead of no longer present entry for
club-assistant for the auth-dns ccchh.net check.
 2026-06-04 00:39:07 +02:00
Stefan Bethke
fa598c72fc Add opensourcetorrents 2026-06-01 21:15:31 +02:00
forestcat-admin
a72accca20 Add documentation style outline (#97) 
Reviewed-on: CCCHH/ansible-infra#97
Reviewed-by: lilly <lilly@noreply.git.hamburg.ccc.de>
 2026-05-27 20:49:07 +02:00
lilly
7832978ff7
 		update ccchh.net dns zone after club proxmox migration 2026-05-24 11:55:37 +02:00
lilly
dd48a9d519
 		bring guide about new chaosknoten VMs into doc structure 2026-05-24 00:27:23 +02:00
Stefan Bethke
0842a51ae0 Merge branch 'main' of git.hamburg.ccc.de:CCCHH/ansible-infra 2026-05-24 00:12:52 +02:00
Stefan Bethke
603d3fb6f4 Update machine SMTP mail sending config 2026-05-24 00:12:50 +02:00
June
4574dbf4ba
 		secrets(role): introduce secrets role for storing secrets 
Allows storage of secrets to then be referenced in other places.
The motivation was storing WireGuard secrets for systemd-networkd.
 2026-05-23 22:40:17 +02:00
lilly
5ca311d240
 		add some documentation structure 2026-05-23 19:37:51 +02:00
June
51cd583dff
 		docs: move information on secrets and sops into docs 2026-05-20 22:54:32 +02:00
June
74fb99ec8f
 		docs: delete outdated section on web service setup from README 
A better guide can be found in the new docs.
 2026-05-20 20:09:28 +02:00
June
b91bc38d7b
 		docs: rework and split up docs on creating a new web service 
- Split out the general information on how to set up a new VM on
  Chaosknoten to have it be more generally useful.
- Also split out the section on monitoring to not have it intermingled
  with the other information.
- Rework the guides to include more information and be more streamlined.
  Also remove duplicate information along the way.
 2026-05-20 20:06:57 +02:00
chris
ec27b52820
 		cloud: bump nextcloud to 33 and postgres 15.18 2026-05-20 19:49:53 +02:00
June
411200884b
 		docs: overhaul SOPS documentation for better structure and readability 2026-05-20 18:57:21 +02:00
lilly
292c626629
 		add ns2.vie.ccc.de as dns secondary 2026-05-20 15:44:47 +02:00
June
0c83fcc2b2
 		sops: darios key expired, so remove for now 2026-05-20 04:09:28 +02:00
June
8428d5a66b
 		docs: use pymdownx.superfences to make codeblocks in lists work properly 2026-05-19 23:49:06 +02:00
June
fc47d119bb
 		docs: move guides into sub-directory 
Also start documenting the docs structure in home.
 2026-05-19 19:24:06 +02:00
June
197b9c297c docs: fix code blocks overflowing and add syntax highlighting 
Without these options code blocks would overflow. See:
https://github.com/asiffer/mkdocs-shadcn/issues/57
And it also provides nice syntax highlighting.
 2026-05-19 18:33:03 +02:00
June
abcc144711 docs: add index page 2026-05-19 18:33:03 +02:00
June
31cc60c648 docs: add mkdocs config and CI for building infra-docs website 
Heavily inspired by: https://forgejo.c3voc.de/voc/av-docs
 2026-05-19 18:33:03 +02:00
June
a93d22fb05 add configuration for infra-docs and infra-docs staging 2026-05-19 18:33:03 +02:00
lilly
8a8ce7206d
 		add infrastructure-authorized-keys to lists host 2026-05-19 16:27:59 +02:00
June
dcd454011f
 		status(host): add checks for auth-dns 2026-05-19 14:27:54 +02:00
June
55d1279c3e
 		status(host): add check for diday.org 2026-05-19 14:17:07 +02:00
lilly
3541c68357
 		disable dnssec for catalog zones on auth-dns 
Catalog zones are not real zones in the DNS hierarchy and don't
have a parent zone. Therefore they will never have a valid DNSSEC
delegation so we should skip signing those zones.
 2026-05-19 11:01:52 +02:00
lilly
6bb09901a0
 		add ns.vie.ccc.de. as direct secondary for authoritative DNS zones 2026-05-19 11:00:03 +02:00
June
73e77bde70
 		tag plays in playbooks (instead of tasks in roles) 2026-05-19 00:24:10 +02:00