Commit Graph

93 Commits

Author SHA1 Message Date
Greg Karékinian c4fdf1779f Remove the CleanTalk Antispam extension
It is not needed anymore now that registration is closed and only LDAP
accounts can edit or create pages

Closes #130
2020-02-20 14:31:39 +01:00
Greg Karékinian 90a0e6be9f Enable LDAP on the kosmos.org vhost 2020-02-19 12:30:55 +01:00
Greg Karékinian 276daf0ed7 Switch the Mediawiki config to the new LDAP dir structure
* Use a new read-only account instead of the admin LDAP account
* Disable the LDAPAuthorization plugin. The LDAPAuthentication2 plugin
is still used to authenticate users, but every kosmos.org user has
access to the wiki. See
https://www.mediawiki.org/wiki/Extension:PluggableAuth for the
distinction between authentication and authorization

Refs #127
2020-02-19 12:29:14 +01:00
Greg Karékinian dc1226073c Move the admin users to the ejabberd encrypted data bag 2020-02-14 13:56:17 +01:00
Greg Karékinian 49d01991fd Enable LDAP on the XMPP 5apps.com vhost
Refactor the ejabberd config file to remove hardcoded values about the
vhosts

Refs #123
2020-02-12 17:40:38 +01:00
Greg Karékinian dc91128eca Use a custom resource to create a 389 Directory Server instance
This replaces the default recipe and will make it much easier to create
other types of instances, for example for replication
2019-11-29 14:34:52 +01:00
Greg Karékinian 9e4685a743 Initial version of the kosmos-dirsrv cookbook
It sets up 389 Directory Server, including a TLS cert acquired using
Let's Encrypt in production (that requires ldap.kosmos.org pointing to
the server's IP)
2019-11-15 15:41:30 +01:00
basti f8af66a532 Add/fix akkounts credentials 2019-10-18 13:10:43 +02:00
Greg Karékinian 9ecf40e72a Add dummy encrypted data bag secret
TODO: replace them with the actual secrets
2019-10-17 14:58:07 +02:00
basti 070a1d1889 Configure Kredits signup for hal8000_xmpp 2019-09-01 17:15:56 +02:00
basti c50c68b50c Configure hubot/wormhole deployment
Adding another node.js hubot app. Wormhole is our new IRC/XMPP bridge.
2019-07-30 09:09:19 +02:00
Greg Karékinian aa79297387 Remove unused data bags and cookbooks 2019-05-21 14:58:01 +02:00
Greg Karékinian 44faa1a8df Change the PostgreSQL password for the ejabberd user 2019-05-14 11:40:21 +02:00
basti 36cfeab15d Remove obsolete credential item
rs-logger is run by botka, not hal8000.
2019-05-09 23:44:28 +02:00
basti 584aab76a7 Add hal8000_xmpp recipe
Also, configure express ports in attributes, so they are both easy to
see at once, as well as override per node/env.
2019-05-09 23:44:18 +02:00
basti 1d98bf14fe Configure kosmos-github
closes #35
2019-04-19 18:45:13 +01:00
Greg Karékinian 126b5f8dd5 Update the kosmos-mastodon cookbook to use the new postgresql cookbook
Don't depend on the deprecated database cookbook to create the database
2019-04-10 11:49:26 +02:00
Greg Karékinian 6b9ce81212 Set postgresql password from an encrypted data bag 2019-04-03 11:34:59 +02:00
Greg Karékinian 81c68a9609 Merge branch 'master' into feature/5apps_xmpp_certs 2018-11-08 14:13:09 +01:00
Greg Karékinian 4a42fc4ae3 Merge branch 'master' into feature/25-ipfs_cluster 2018-10-26 16:46:44 +02:00
Greg Karékinian d236d138dc Set the S3 credentials to write the new oncall file 2018-10-26 13:38:12 +02:00
Greg Karékinian 185649a5f9 Automatically generate a Let's Encrypt cert for all 5apps xmpp domains
Uses the Gandi LiveDNS API
2018-09-04 17:38:17 +02:00
Greg Karékinian 7a8042e356 Add initial IPFS Cluster support
It uses an encrypted data bag to store the cluster secret that has to be
the same on all members of a cluster. It installs ipfs-cluster-service
and ipfs-cluster-ctl and starts the cluster

Refs #25
2018-08-06 18:05:44 +02:00
basti 0e974182de Configure botka for web push notifications 2018-05-07 19:34:56 +02:00
basti 69b38552c6 Add vapid keys 2017-07-31 13:00:20 +02:00
basti 025eb77441 Update some kredits data 2017-05-12 13:46:06 +02:00
basti 75b2df5c73 Set up Hubot for Kredits 2017-05-12 00:03:45 +02:00
Greg Karékinian 37ab52902b Use a password attribute in the parity_node resource
The mainnet and testnet nodes use data from an encrypted data bag

Also fix a bug with the resource (hardcoded "dev" name instead of the
name attribute)
2017-05-03 19:06:55 +02:00
Greg Karékinian 34653dc7d6 Add GitHub token and deploy a feature branch for now 2017-04-28 10:23:04 +02:00
Greg Karékinian de11c0d691 Set up an instance of Mastodon for Kosmos
Refs #19

Use new application cookbook, update our cookbooks
2017-04-06 21:20:51 +02:00
Greg Karékinian ccaab2f42d Add an Airtable API key 2017-02-14 11:38:53 +01:00
Greg Karékinian 7378908d93 Deploy botka from its own public repo 2016-11-22 16:10:16 +01:00
Greg Karékinian 58fd0f4e71 Add new credentials for xmpp schlupp and update credentials 2016-10-25 15:44:21 +02:00
Greg Karékinian cb2922b1c9 Add a cookbook to set up an instance of botka on our XMPP server 2016-10-13 15:48:16 +02:00
Greg Karékinian 691a0e5533 Deploy schlupp from new private repo 2016-08-08 13:24:23 +02:00
Greg Karékinian a4f9dd9c2f Update backup credentials data bag 2016-07-08 13:56:42 +02:00
Greg Karékinian 7a53617302 Add automatic daily backup of mediawiki and wordpress databases 2016-05-13 17:12:24 +02:00
Greg Karékinian d95f0b601a Install mediawiki on the dev server 2016-04-16 00:33:58 +02:00
basti afa1a6e4f7 Update schlupp's config 2016-02-21 15:30:25 -05:00
basti df5d9aea20 Add incoming-webhook to hal8000 2016-02-20 21:45:19 -05:00
Greg Karékinian bb06dbcbf0 Add initial kosmos-wordpress cookbook 2016-02-19 18:29:22 +01:00
Greg Karékinian ee26a3f1fc Add logging only bot to Freenode: botka! 2015-10-25 15:16:26 +01:00
Greg Karékinian ee4079fa85 Initial Chef repository 2015-07-21 19:45:23 +02:00