1042 Commits

Author SHA1 Message Date
Greg Karékinian
e6b7794e20 Extract firewall definitions to their own recipe
This allows us to use them for KVM hosts as well. Until now we had set
up ufw rules manually on the two KVM hosts (draco and centaurus)

Refs #244
2020-12-04 16:27:42 +01:00
Greg Karékinian
9dbe5bcfcb Deploy a script to create new VMs
It uses `virt-install` with the official Ubuntu 20.04 cloud image as a
starting point, with cloud-init to add our SSH keys to the ubuntu user
and set up Zerotier.

USAGE: create_vm VMNAME

Closes #244
2020-12-04 16:21:52 +01:00
58c5fad2a7
Add new nickname config for wormhole 2020-11-27 13:22:09 +01:00
8c60279fe1
Add cluster configs to ejabberd recipe 2020-11-25 21:02:46 +01:00
Greg Karékinian
613b316588 Add comment about needing to run Chef a second time...
... after the TLS certs are generated
2020-11-25 16:36:07 +01:00
Greg Karékinian
3a8af26b5f Remove firewall rule for an unused port 2020-11-25 16:36:07 +01:00
Greg Karékinian
23ca3552d2 Remove the absolute path of certbot to use the new package 2020-11-25 16:36:07 +01:00
Greg Karékinian
ddb706b61c Add a missing dependency on kosmos-dirsrv 2020-11-25 16:36:07 +01:00
Greg Karékinian
085bd8abd5 Move TURN port to a different range
It landed on a port used by PostgreSQL. Also switch STUN/TURN to TCP
because HAProxy does not support UDP.

Closes #240
2020-11-25 16:36:07 +01:00
Greg Karékinian
7636f6ed19 Move the Gandi DNS certbot hook to kosmos-ejabberd 2020-11-25 16:36:07 +01:00
Greg Karékinian
8b1f90c568 Use the same Erlang cookie to enable clustering
Refs #243
2020-11-25 16:35:37 +01:00
134493d2d6 Merge branch 'master' into feature/http_upload_service 2020-11-25 09:46:31 +00:00
f39f953b8a
Configure ejabberd nodes for HTTP upload service 2020-11-24 15:44:59 +01:00
0e29c930ed
Configure subdirectory level for upload.pm
This allows to post to per-domain subdirectories from XMPP clients.
2020-11-24 15:33:34 +01:00
0aef830aa3
Fix upload folder permissions
Uploads are failing with the current mode.
2020-11-23 20:50:01 +01:00
0bebdf7635
Do not require nginx from certbot recipe
In order to be able to use different nginx install recipes, we must not
require a specific one from this recipe.
2020-11-23 17:40:14 +01:00
9efb9cd78c
Configure/deploy HTTP upload service on uploads.kosmos.chat
https://xmpp.org/extensions/xep-0363.html

(Does not contain the config for ejabberd itself yet.)
2020-11-23 17:37:14 +01:00
c26fcd5b26
Remove obsolete manual daemon reload 2020-11-22 20:26:56 +01:00
d384f69139
Configure/deploy new akkounts app 2020-11-21 15:12:31 +01:00
Greg Karékinian
ebf5f405f5 Initial kosmos_drone cookbook
Closes #235
2020-11-19 12:59:15 +01:00
ac49430521
Install lib389
Fixes 389 CLIs not working (e.g. `dsctl`).
2020-11-08 17:23:24 +01:00
f874d7f979
Remove hubot-rss-reader from hubots
Not available in latest hal8000 source anymore
2020-10-29 16:19:24 +01:00
42a70962e8 Merge branch 'master' into feature/222-discourse 2020-10-23 10:11:05 +00:00
Greg Karékinian
255e43c680 Fix the Systemd unit for discourse
Switch the systemd unit to a oneshot type
2020-10-23 09:28:31 +02:00
71c8f6d91a Merge branch 'master' into chore/hubot_mediawiki_notifications 2020-10-21 11:43:08 +00:00
Greg Karékinian
5062392c71 Fix the undefined variable in the instance resource 2020-10-20 19:53:11 +02:00
4f5b005087
Send wiki notifications to new info XMPP room 2020-10-20 15:46:58 +02:00
69383a666b
Let hal8000 join new info@kosmos.chat room 2020-10-20 15:42:42 +02:00
Greg Karékinian
429b609ac2 Initial kosmos_discourse cookbook
The systemd unit does not work

Refs #222
2020-10-20 12:21:53 +02:00
Greg Karékinian
7eaf177bb2 Set the autocreate permission for Mediawiki users
This allows LDAP sign ins to create an account automatically

Fixes #219
2020-10-06 15:51:01 +02:00
Greg Karékinian
2119c11243 Do not include kosmos-postgresql in kosmos-ejabberd default recipe
It will install PostgreSQL, and we do not want that on the ejabberd
server
2020-09-25 16:29:01 +02:00
3d8d31c32f
Fix kosmos-ipfs not requiring nodejs/npm
If node isn't installed on a machine by something else before running
the kosmos-ipfs recipe, then it fails.
2020-09-24 17:39:28 +02:00
a1a0d7e4c1
Switch Certbot to snap package on Ubuntu 20.04+
Needs only minor changes. Tested and running on wiki.kosmos.org already.
2020-09-06 13:46:06 +02:00
8dd146e95c
Remove obsolete mysql client install
This fails nowadays,and the client is already installed via the mysql
package in the first place.
2020-09-06 13:42:34 +02:00
b7e2a72369
Add missing changes for mediawiki upgrades 2020-09-05 23:43:28 +02:00
38c6a1ae15
Update mediawiki, install extensions from git repos 2020-08-30 17:59:45 +02:00
d5448e8240
Basic LND installation 2020-08-23 12:37:53 +02:00
0005f9ab7d
Add golang cookbook
Needs updating of ark and git cookbooks
2020-08-23 11:01:05 +02:00
217ab471ce
Moving bitcoin-core to VM 2020-08-22 23:16:11 +02:00
5c105f00d1
Use MIT license for bitcoin cookbook 2020-08-19 15:29:18 +02:00
c98be94404
Add rpcpassword support to bitcoin snap recipe 2020-08-18 14:44:23 +02:00
97ae73c987
Improve variable name 2020-08-18 14:38:16 +02:00
23588760fa
Add walletdir flag to bitcoind service start 2020-08-17 21:43:56 +02:00
b0daa3d463
Only store wallet in encrypted dir
Storing all chain data in encfs caused unsolvable issues with leveldb.
So now we're only storing wallet data in the encrypted dir.
2020-08-17 16:46:59 +02:00
d65363f964
Remove obsolete ulimit dep 2020-08-17 10:51:54 +02:00
9795e77fde
Bitcoin source recipe 2020-08-17 10:45:15 +02:00
4606773440
Update license note 2020-08-16 16:25:14 +02:00
bbbd0f7408
Change default username 2020-08-16 16:25:06 +02:00
476316e13b
Always use latest/stable channel for bitcoind snap 2020-08-16 16:20:43 +02:00
4889f40c6a
WIP 2020-08-16 16:18:01 +02:00