kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 30 Pull Requests 3 Projects 2 Activity
402 Commits 7 Branches 0 Tags
Commit Graph

281 Commits

Author SHA1 Message Date
Greg Karékinian
ca118ca8f8 Use the second Redis database for sockethub 2019-04-09 11:39:35 +02:00
Greg Karékinian
2d18e4cd45 Set the mysql version for Ubuntu 18.04 
The current mysql cookbook doesn't know the version it ships with
 2019-04-09 11:09:54 +02:00
Greg Karékinian
21f0e4143e Move the hubot user creation to its own recipe 2019-04-08 17:58:02 +02:00
Greg Karékinian
e137188a4e Add the build_essential resource to both recipes 2019-04-08 17:58:02 +02:00
Greg Karékinian
e2c1a43a62 Fix cookbook dependency 2019-04-08 17:58:02 +02:00
Greg Karékinian
12355a6b27 Add a base role, so that chef is updated before anything else 2019-04-08 17:58:02 +02:00
Greg Karékinian
fddadbce25 Install the ruby-dev package since the backup gem needs it 2019-04-08 12:35:43 +02:00
Greg Karékinian
4b75ae78dc Set the minimum Chef version since it depends on the new sudo resource 2019-04-08 12:31:47 +02:00
Greg Karékinian
aa60d19743 Update sockethub to the latest tag 
2.0.5 wasn't compatible with Node 10
 2019-04-08 12:31:10 +02:00
Greg Karékinian
504ac417e2 Update nodejs to the latest LTS, using packages 2019-04-08 11:23:24 +02:00
Greg Karékinian
44eee142a7 Do nothing on old Ubuntu versions 2019-04-08 11:22:54 +02:00
Greg Karékinian
7bf583b5a3 Update Mediawiki to 1.32.0 2019-04-08 11:22:24 +02:00
Greg Karékinian
96cb3794f9 Don't try to enable TLS in the development environment 2019-04-08 11:21:45 +02:00
Greg Karékinian
4693b15826 Remove the kosmos-wordpress cookbook 2019-04-08 11:21:20 +02:00
Greg Karékinian
6e3e8cde1b Create the Let's Encrypt hook subdirectories 2019-04-08 11:16:38 +02:00
Greg Karékinian
448bffe34e Get rid of the deprecated set_unless 2019-04-03 12:56:15 +02:00
Greg Karékinian
b1a3c5e2cd Revert "Revert "Remove the sudo cookbook"" 
This reverts commit 87d7c721b16356a3607f9462916e6b04a93dbad5.
 2019-04-03 12:52:40 +02:00
Greg Karékinian
2f05629fde Revert "Revert "Update Chef to 14.11.21"" 
This reverts commit db4b45b5c26c50c7b883d0f96b2a9a5136f26b58.
 2019-04-03 12:52:32 +02:00
Greg Karékinian
6b9ce81212 Set postgresql password from an encrypted data bag 2019-04-03 11:34:59 +02:00
Greg Karékinian
d8a0ecec76 Update the postgresql cookbook 2019-04-03 11:34:41 +02:00
Greg Karékinian
85b7278ccc Add initial kosmos-postgresql cookbook 
This is to install PostgreSQL all in one place instead of for each
service that needs it (Mastodon, ejabberd, ...)
 2019-04-03 11:34:34 +02:00
Greg Karékinian
1ef24a2091 Install bundler 1.17.3 since we're still on Ruby 2.5 for now 
Bundler 2.0 needs Ruby 2.6 or RubyGems 3.0
 2019-04-03 11:02:51 +02:00
Greg Karékinian
58b5e5ac22 Move the creation of the SystemD service files outside of the application 
This prevents a crash on the initial Chef run due to the service files
not being there yet before the services gets notified to restart
 2019-04-03 11:02:25 +02:00
Greg Karékinian
87d7c721b1 Revert "Remove the sudo cookbook" 
This reverts commit 73d1722d4b5c545ec488c5eb2119dd8b9b155363.
 2019-04-03 10:30:38 +02:00
Greg Karékinian
db4b45b5c2 Revert "Update Chef to 14.11.21" 
This reverts commit 2f599ffd6d757bc98ac862836110c7b32cda3c51.
 2019-04-03 10:30:24 +02:00
Greg Karékinian
73d1722d4b Remove the sudo cookbook 
Chef 14 ships with a sudo resource:
https://docs.chef.io/resource_sudo.html
 2019-04-02 12:17:06 +02:00
Greg Karékinian
2f599ffd6d Update Chef to 14.11.21 
Closes #21
 2019-04-02 12:16:13 +02:00
Greg Karékinian
5fa0fa661b Install certbot from the direct download when on 15.04 
It does not have a ppa release. Add a cron job for renewal. When using
the PPA a Systemd timer is part of the package
 2019-03-18 16:52:05 +01:00
Greg Karékinian
17f1b2a20a Create a nginx_certbot_site resource to remove duplication 
It creates a folder, the nginx vhost for certbot and HTTP redirects, and
also runs certbot and recreates the nginx vhost that includes the TLS
cert
 2019-03-15 19:03:28 +01:00
Greg Karékinian
b30dcab4da Remove an IPFS port from the ejabberd firewall 2019-03-15 12:30:56 +01:00
Sebastian Kippe
41db5b2b73
Use kosmos.org email address 2019-03-15 12:45:28 +07:00
Sebastian Kippe
a77580d6da
Use variable instead of hardcoding domain 
The domain name is hardcoded exactly 12 times in just the letsencrypt
recipe.
 2019-03-15 12:38:42 +07:00
Greg Karékinian
c3135402ad Move the nginx hook to the deploy directory, create renewal-hooks dir 2019-03-14 20:21:34 +01:00
Greg Karékinian
f50f48b55b Remove the old deploy hook, we moved it to the certbot config dir 2019-03-14 18:07:52 +01:00
Greg Karékinian
a978f2a6a5 Fix the path to the Gandi DNS certbot script 2019-03-14 18:06:55 +01:00
Greg Karékinian
f12ddefec8 Move the Gandi DNS hook for certbot to the kosmos-base cookbook 2019-03-14 18:01:29 +01:00
Greg Karékinian
65482f09c3 Extract the post hooks to their own script in Certbot's config dir 2019-03-14 15:21:50 +01:00
Greg Karékinian
36e046ea73 Run certbot using the binary provided by the Ubuntu PPA 2019-03-14 10:52:44 +01:00
Greg Karékinian
fa27187f11 Switch from the git version of certbot to the Ubuntu PPA 2019-03-14 10:49:47 +01:00
Greg Karékinian
fc265014de Switch back to the upstream nginx cookbook 
chef_nginx is deprecated
 2019-03-14 10:35:11 +01:00
Sebastian Kippe
19ad46036f
Update Cleantalk extension to latest version 
Running on the server already
 2019-03-04 18:22:29 +07:00
Sebastian Kippe
0ea1971b6c
Open up some more ports in firewall 
From some manual playing around.
 2019-02-28 17:19:06 +07:00
Greg Karékinian
886958270f Set REDIS_URL for botka 
It was using the same Redis key to write its brain as hal8000 (`hubot:storage`),
causing scores to not be persisted to Redis. Right now botka is only
saving the online users to the database. It looks like this was only
enabled recently, as the last saved score was from Feb 8

Fixes #14
 2019-02-25 18:29:18 +01:00
Greg Karékinian
5fc158cb5e Install the latest version of the backup gem 2019-02-25 18:28:55 +01:00
Greg Karékinian
33b8b39be2 Update ipfs and ipfs-cluster 2019-02-25 12:50:07 +01:00
Sebastian Kippe
f082269e66
Use Gitea repo, new branch, new Ruby 2019-01-27 12:46:21 +08:00
Greg Karékinian
56d14748f9 Fix the Let's Encrypt renew hook script 
Only copy over the certs to the prosody directory if it's the 5apps.com
wildcard, not for any 5apps.com subdomain
 2018-12-20 17:26:37 +01:00
Greg Karékinian
9c97cb4a58 Remove empty environment 2018-12-03 16:53:41 +01:00
Greg Karékinian
1e3f84ed9b Merge branch 'master' into feature/5apps_xmpp_certs 2018-12-03 16:52:26 +01:00
Greg Karékinian
ffc6858dcc Do not pass the password on the command line anymore to fix a warning 
Since email notifications work now we do not want warnings. Write an
option file with the credentials for mysqldump
(https://dev.mysql.com/doc/refman/5.7/en/option-files.html)
 2018-11-09 14:08:32 +01:00