sophia/ansible-infra

Author	SHA1	Message	Date
June	e76c66d74c	renovate(host): set up Renovate using role and exisiting config Set up Renovate using role and existing config from current Forgejo/GitHub Actions-based deployment.	2025-10-16 17:52:30 +02:00
June	a32998d8da	renovate(host): initialize renovate host	2025-10-16 17:44:23 +02:00
June	8388657d33	renovate(role): introduce first basic Renovate role Sets up Renovate using Docker and systemd service and timer to run regularly. Also add accompanying host group and playbook play.	2025-10-16 17:42:13 +02:00
June	f646cc0bf2	fix creation rules for eh22-wiki, sunders and wiki hosts Also update the keys of the secret files accordingly. This should then fix ansible-pull on these hosts.	2025-10-15 10:45:54 +02:00
June	1d6d1094bc	setup ansible-pull for 7 more hosts Setup for: cloud, eh22-wiki, grafana, onlyoffice, pretalx, sunders and wiki.	2025-10-15 01:59:29 +02:00
June	eadae7a09b	ansible_pull(role): add failure notifications	2025-10-14 22:20:27 +02:00
June	17fd71f079	define common msmtp configuration for chaosknoten inventory hosts Define common configuration as it is the same for all hosts.	2025-10-14 01:45:44 +02:00
June	afceb886dc	msmtp(role): introduce msmtp role Introduce msmtp role for setting up msmtp for mail sending. Also add accompanying host group and playbook play.	2025-10-14 01:40:46 +02:00
June	18dda95c46	remove max expired key	2025-10-13 22:12:31 +02:00
June	9b8e14f3c4	remove duplicate ansible_pull_hosts inventory group entry	2025-10-13 17:37:13 +02:00
June	bd281713f1	netbox(host): setup ansible_pull for host	2025-10-13 16:59:42 +02:00
June	648489ed09	define common ansible_pull configuration for chaosknoten inventory hosts Define common configuration as it should be the same for all hosts, just the ansible_pull__age_private_key needs to be set per host then.	2025-10-13 16:58:30 +02:00
June	434ddfc955	ansible_pull(role): introduce ansible_pull role Introduce ansible_pull role for setting up automatic ansible_pull runs. Also add accompanying host group and playbook play.	2025-10-13 16:56:18 +02:00
June	dec68ab994	sunders(host): initialize sunders host	2025-10-11 20:52:26 +02:00
c6ristian	1355d4d834	grafana: make alerts better for fux	2025-09-09 19:30:53 +02:00
c6ristian	72489be8bd	updatekeys for junes new key	2025-07-20 20:29:22 +02:00
c6ristian	5863b2f9e3	ntfy: iOS instant notifications	2025-06-30 21:11:48 +02:00
c6ristian	a49b8b6d13	cloud: bump nextcloud version to 31	2025-06-29 20:54:32 +02:00
c6ristian	2cb9dc6dae	grafana dinge versuchen	2025-06-12 19:20:03 +02:00
c6ristian	0a50ee470a	grafana: add email alerts, and fix some rules	2025-06-10 21:22:53 +02:00
c6ristian	75bf485eac	Alloy: enable collector systemd	2025-06-03 01:11:39 +02:00
c6ristian	3a9673b113	ntfy alerts	2025-06-02 22:42:37 +02:00
c6ristian	0248b64670	update ntfy user uread and uwrite in sops	2025-06-02 18:36:35 +02:00
c6ristian	c620f0f86b	ntfy: alloy	2025-06-02 00:47:55 +02:00
c6ristian	6824bf5e4f	ntfy	2025-06-02 00:29:08 +02:00
c6ristian	8ff457b01e	Update Postgres to 15.13	2025-05-20 20:24:29 +02:00
June	7f1afef50d	move secrets from sops lookup plugin to sops vars plugin This makes secret configuration and usage a good bit cleaner.	2025-05-04 16:50:15 +02:00
June	bbe4cc131a	eh22-netbox: remove eh22-netbox as its being decommissioned	2025-05-03 23:40:03 +02:00
June	60b2093a02	netbox(host): move secrets to SOPS	2025-05-03 23:08:41 +02:00
June	97b8386878	grafana(host): move secrets to SOPS	2025-05-03 22:18:26 +02:00
June	8de07c2688	cloud(host): move secrets to SOPS	2025-05-03 21:30:06 +02:00
c6ristian	01c006ec22	grafana fix nginx ip allow list	2025-05-02 01:08:55 +02:00
c6ristian	0c9e3ccb87	fix switchup in prometheus.relabel	2025-04-30 15:07:26 +02:00
c6ristian	e183f1a2c3	prometheus remote write with alloy using it	2025-04-30 01:11:17 +02:00
c6ristian	456117a789	adding loki	2025-04-28 20:31:55 +02:00
June	3548c1f4d6	restart ssh service instead of rebooting as this should be fine Active connections should survive a restart of the service and testing also didn't show any issues.	2025-04-25 02:01:29 +02:00
June	ca16e3d55f	dep._hypervisor(playb.): introduce play for setting up vm template gen.	2025-02-23 22:42:58 +01:00
Dario	5dc2520ecd	eh22-wiki: configure custom eh22-theme	2025-02-17 22:26:17 +01:00
June	79012fb7f8	eh22-netbox: setup EH22 NetBox	2025-02-17 01:23:35 +01:00
June	ff540126a1	add chaosknoten to hosts and new hypervisors group Also exclude that group from the tasks otherwise targeting all hosts.	2025-02-16 02:34:14 +01:00
June	61cd5053d0	flatten inventories making them simpler Remove the child groups as we weren't using their functionality anyway. Also remove the debian_11/12 host groups as they're not in use.	2025-02-16 00:36:10 +01:00
June	2ec1471d7f	netbox: move NetBox from NixOS to Ansible Also introduce netbox_hosts group for applying netbox role to multiple hosts.	2025-02-15 19:57:15 +01:00
June	bdbd9ce195	eh22-wiki: setup EH22 wiki using Ansible by copying and mod. wiki config Also introduce wiki_hosts group for applying dokuwiki role to multiple hosts.	2025-02-10 23:40:39 +01:00
c6ristian	c89a6edefe	nextcloud: update to version 30	2025-01-26 03:08:38 +01:00
c6ristian	328ec744cc	Add base_config and deploy_systemd_journal_config	2025-01-19 20:30:05 +01:00
June	e3a1443df9	use deploy_ssh_server_config role for all Chaosknoten hosts	2025-01-14 22:36:51 +01:00
c6ristian	e1866b2449	add cfp.eh22.easterhegg.eu to pretalx	2025-01-13 23:37:20 +01:00
June	07dbbf055c	reorganize (config) files and templates into one "resources" dir This groups the files and templates for each host together and therefore makes it easier to see all the (config) files for a host. Also clean up incorrect, unused docker_compose config for mumble and clean up unused engelsystem configs.	2024-12-08 02:55:25 +01:00
June	4b0e03e8b2	ensure all template files have a .j2 file extension As they should and as this is preparation for a future change reorganizing the file structure.	2024-12-08 02:55:25 +01:00
June	4060dbbe21	fix all ansible-lint yaml errors (except for line-length)	2024-11-23 02:49:23 +01:00

1 2

87 commits