kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 30 Pull Requests 3 Projects 2 Activity
1,922 Commits 7 Branches 0 Tags
Commit Graph

121 Commits

Author SHA1 Message Date
Râu Cao
e4112a3626
Fix TLS cert updates for kosmos.chat 
Some recipes weren't updated for the proxy validation yet. Needed to
split the ejabberd cert in two, so it can do normal validation on
`.org` and proxy validation on `.chat`.
 2024-12-09 18:17:10 +04:00
Râu Cao
6106e627e2
Upgrade Mastodon to 4.3 
Co-authored-by: Greg Karékinian <greg@karekinian.com>
 2024-12-09 18:12:45 +04:00
Râu Cao
eb06926606
Migrate S3 backups from AWS, fix automatic cleanups 
The cleanups were broken in that every single archive was also copied to
a shared folder and never deleted from there.

Co-authored-by: Greg Karékinian <greg@karekinian.com>
 2024-10-16 12:31:51 +02:00
Râu Cao
d1301dad3e
Add, configure, deploy strfry policies 2024-06-11 23:12:22 +02:00
Râu Cao
d878b4208e
Configure akkounts for nostr zaps 2024-06-02 23:03:06 +02:00
Râu Cao
989185f951
Support proxy domain validation for Garage web domains 
Also rename the data bag item
 2024-04-30 12:23:36 +02:00
Râu Cao
83380047bb
Configure LDAP integration for Mastodon 2024-03-29 09:28:13 +04:00
Râu Cao
4a8ab3abe3
Support letsencrypt proxy validation via CNAMEs 
Allows to point other domains' `_acme-challenge.example.com` entries at
`example.com.letsencrypt.kosmos.chat` so we can validate from our side
without access to the other domain's DNS records.

Used for 5apps.com XMPP for now. Can be used for others later.

Co-authored-by: Greg Karékinian <greg@karekinian.com>
 2024-03-11 16:21:28 +01:00
Râu Cao
c0487d0e13
Deploy 5apps Gitea act runner 2024-03-11 16:08:22 +01:00
Râu Cao
5c1c63f94e
Add S3/Garage config for akkounts 2024-01-26 10:40:36 +03:00
Râu Cao
b5020efdd5
Merge branch 'master' into feature/535-liquor_cabinet 2024-01-26 08:19:50 +03:00
Râu Cao
211a613e5c
Add liquor-cabinet configs, deploy to production 2024-01-25 16:27:31 +03:00
Râu Cao
2597e211ed
Add new akkounts configs 2024-01-24 16:18:50 +03:00
Râu Cao
05ccbcc58f
Merge branch 'master' into feature/email 2023-12-05 18:37:43 +01:00
Râu Cao
769ac4a081
Support node-specific borg repo config 2023-12-05 18:09:44 +01:00
Râu Cao
51068e5259 Add email credentials 2023-12-01 09:58:25 +01:00
Râu Cao
65d71d6a73
Migrate ejabberd uploads to mod_s3_upload and Garage 
In addition to installing and configuring the new module, this also
enables public access to the S3 API via `bucket-name.s3.kosmos.org` as
well as Web access on `bucket-name.web.s3.kosmos.org` (when enabled).

Also includes some drive-by improvements to Chef attribute naming and
usage.

Co-authored-by: Greg Karékinian <greg@karekinian.com>
 2023-10-10 17:55:55 +02:00
Râu Cao
0f12a54eab
Refactor tor usage entirely 
Use a custom resource and separate recipe for service configs with
pre-set keys and hostnames
 2023-07-30 12:39:41 +02:00
Râu Cao
cb0fc27134
Refactor tor usage, set up new tor proxy on draco 2023-07-29 16:26:20 +02:00
Râu Cao
ec77e19ab0
Update SMTP credentials 2023-07-23 12:56:46 +02:00
Râu Cao
9648e071ca
Configure akkounts for Discourse Connect 2023-06-04 15:24:06 +03:00
Râu Cao
f36268e906
Update ejabberd admin list 2023-04-04 10:14:50 +02:00
greg
ac00aa9def Merge pull request 'Upgrade Gitea to 1.19, configure Gitea Actions, set up Actions runners' (#482) from chore/upgrade_gitea into master 
Reviewed-on: #482
 2023-04-02 13:57:45 +00:00
Râu Cao
059812524e
Set up Gitea Actions runners 2023-04-01 12:56:21 +02:00
Râu Cao
99d985c0d5
Configure Sentry for akkounts 2023-03-27 19:10:48 +02:00
Râu Cao
9f886cc286
Configure Sentry DSN for lndhub-go 2023-03-27 19:04:03 +02:00
Râu Cao
8ae7cdfafd
Switch Discourse uploads and backups to Garage/S3 2023-03-17 19:13:04 +07:00
greg
7549164a2e Merge branch 'master' into feature/462_akkounts_config 2023-02-14 13:04:00 +00:00
Râu Cao
a1ec9b4d6a
Write akkounts .env config, add config for lndhub admin UI 
closes #462
 2023-02-13 22:39:11 +08:00
Râu Cao
99e029a5ca
Switch NBXplorer to Postgres 2023-02-08 15:30:44 +08:00
Râu Cao
f777af22b8
Finish up Garage S3 config for kosmos.social 2023-01-14 15:59:47 +08:00
Râu Cao
345ba14f0e
Add garage S3 config for Mastodon 2023-01-14 15:03:38 +08:00
Râu Cao
7d11450c4e
Set up lndhub.go 
closes #454
 2022-12-11 14:30:27 +01:00
Râu Cao
e0fb84e56c
Store Gitea data (avatars, attachments, etc.) in Garage/S3 
Also adds a new garage gateway role, which only allows RPC (inter-node)
traffic to Garage.
 2022-11-26 13:05:07 +01:00
Râu Cao
b5ff60214c Install/configure Garage 
Add a garage cookbook that installs the garage binary distribution and
creates the necessary configuration and system service.

Also deploy two new VMs to act as storage nodes.

refs #428
 2022-11-25 10:56:22 +00:00
Râu Cao
756382ec9f
Move block data files to CIFS share 
This is the vast majority of disk space used on the host currently.
 2022-10-26 15:49:03 +02:00
Râu Cao
063e9e070c
Add borg credentials 2022-10-19 12:08:04 +02:00
Sebastian Kippe
48cdd62973
Upgrade ejabberd to 22.05 
Tested/running on all cluster nodes. Due to changes in the upstream
package we were able to remove some complexity from the recipe. Deleting
code FTW!

closes #334
 2022-05-31 16:27:07 +02:00
Greg Karékinian
0d133de1b8 New config and credentials for LDAP connection in mediawiki 2022-05-11 16:23:17 +02:00
Sebastian Kippe
c158f845f0
Configure STUN/TURN for ejabberd and nginx proxy 2022-05-11 15:27:49 +02:00
Greg Karékinian
1502d1956d Set new passwords for the LDAP service accounts 2022-05-11 14:47:32 +02:00
Sebastian Kippe
b270a2c1fd
Add database secret for Drone CI 
closes #388
 2022-03-12 15:05:16 -06:00
Sebastian Kippe
f35fb638d1
Adapt Drone recipes for VM setup, use PostgreSQL 2022-03-12 14:46:48 -06:00
Sebastian Kippe
f6fe3bab0f
Connect to IRC bouncer instead of directly 
Changes botka on libera to connect to a bouncer, which also uses SASL,
in order to fix the connection issues and keep a stable connection with
minimal maintenance.
 2022-01-06 08:12:42 -06:00
Sebastian Kippe
ee0a587dad
Upgrade botka, deploy for Libera.Chat to nodejs-2 
Note: Temporarily disables wormhole, because it's still on Freenode,
where its credentials have been deleted by the new "management".
 2021-09-13 18:21:46 +02:00
Sebastian Kippe
37873fb881
Add data bag for LND credentials 2021-07-01 13:17:51 +02:00
Greg Karékinian
9415b71965 Deploy hubot with new hubot-kredits 
It includes a script for creating Kredits for reviews

Refs #135
 2021-03-30 12:11:03 +02:00
Sebastian Kippe
fd901f6e64
Update Zoom JWT 2021-02-18 18:51:36 +01:00
Greg Karékinian
6ec747d416 Add missing credentials for zerotier 2021-01-22 18:43:05 +01:00
Sebastian Kippe
2b765e744a
Configure and run RTL 
Ride The Lightning is a Web UI for Lightning Network nodes. It is
accessible via the bitcoin VM's private zerotier IP on port 3000.
 2021-01-01 17:42:57 +01:00