kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 30 Pull Requests 3 Projects 2 Activity
1,978 Commits 7 Branches 0 Tags
Commit Graph

86 Commits

Author SHA1 Message Date
Sebastian Kippe
0a953070fe
Create nginx_proxy role 
Used to configure hosts entries in the Gitea and Drone VMs, as well as
the allowed webhooks config for Gitea.
 2022-03-12 15:39:07 -06:00
Sebastian Kippe
a1b07dfb9e
Adapt Gitea recipes for new VM setup 2022-03-12 14:46:45 -06:00
Sebastian Kippe
23e49134e7
Remove superfluous license headers 2022-03-12 14:42:03 -06:00
Sebastian Kippe
03c7940f1c
Fix Webhooks for Drone not working in Gitea 1.16 
By default, only external requests are allowed:

https://github.com/go-gitea/gitea/pull/17482
 2022-02-12 10:53:45 -06:00
Sebastian Kippe
22f5b8a66c
Upgrade Gitea to 1.16.1 2022-02-10 15:32:25 -06:00
Sebastian Kippe
4462975e51
Upgrade Gitea to 1.15.11 2022-02-01 12:47:37 -06:00
Sebastian Kippe
a184f27c96
Update kosmos postgres cookbook name in other cookbooks 2021-11-30 08:47:15 -06:00
Sebastian Kippe
24f94bdb02
Upgrade Gitea to 1.15.6 
Configures the JWT signing algorithm to be the old, less secure
algorithm, until we update the token for Drone CI (and any other OAuth
apps).

closes #338
 2021-11-25 16:44:48 -06:00
Sebastian Kippe
8bbb4deed7
Upgrade Gitea to 1.14.6 2021-08-09 16:10:40 +02:00
Sebastian Kippe
b6d0bafce0
Remove license header, improve formatting 2021-06-21 17:50:23 +02:00
Sebastian Kippe
bbaeeb5099
Upgrade Gitea to 1.14.3 
Adds a new config for the repository root directory.

closes #322
 2021-06-21 17:47:30 +02:00
Sebastian Kippe
7624bcec11
Upgrade Gitea from 1.13.1 to 1.13.7 2021-04-10 11:00:00 +02:00
Sebastian Kippe
891b5f3fee
Tell browsers to cache Gitea avatars for 30 days 
fixes #312
 2021-02-26 20:41:53 +01:00
Sebastian Kippe
474208ea8e
Use shared Kosmos webfont for Gitea 
Currently using a custom rule for system fonts. This change also adds a
missing new class to the custom rule to cover Markdown-generated content
like e.g. comments.
 2021-02-25 14:29:41 +01:00
raucao
ad271e55d4 Merge pull request 'Move PostgreSQL to VMs and access via Zerotier' (#282) from feature/postgres_vms into master 
Reviewed-on: #282
 2021-01-25 10:56:42 +00:00
Greg Karékinian
0e5519a4b7 Update Gitea to 1.13.1 
Running on centaurus

Closes #253
 2021-01-24 10:12:37 +01:00
Greg Karékinian
a7116b8fe5 Switch the TLS mode to disabled for Gitea 
We connect through a Zerotier private IP
 2021-01-23 19:08:06 +01:00
Greg Karékinian
bb0e73d1b9 Switch ejabberd, mastodon and gitea to a hostname for Postgres 2021-01-23 17:11:45 +01:00
Greg Karékinian
e6b7794e20 Extract firewall definitions to their own recipe 
This allows us to use them for KVM hosts as well. Until now we had set
up ufw rules manually on the two KVM hosts (draco and centaurus)

Refs #244
 2020-12-04 16:27:42 +01:00
Sebastian Kippe
9a28a03265
Increase size limit for Gitea uploads/attachments 
The default limit in nginx is only 1MB. This increases it to 20MB.

fixes #188
 2020-08-05 15:53:13 +02:00
Greg Karékinian
41fd1576ad Override the header template to remove the Roboto font 
Using the system font instead
 2020-07-30 12:33:09 +02:00
Greg Karékinian
924f67d8a8 Update Gitea to 1.12.3 
Closes #189
 2020-07-30 12:16:31 +02:00
Greg Karékinian
5e5bbe07dc Restart gitea after upgrading it 2020-07-30 12:16:04 +02:00
greg
1b84009958 Merge pull request 'Add PostgreSQL primary support to the kosmos-ejabberd cookbook' (#181) from feature/180-ejabberd_pg_primary into master 2020-06-19 14:46:52 +00:00
Greg Karékinian
5e483240c3 Set the Gitea root URL to HTTPS 
It fixes U2F security keys support, that was broken because the protocol
did not match

Fixes #182
 2020-06-12 17:22:34 +02:00
Greg Karékinian
6f696d7634 Define access rules in the PostgreSQL primary recipe 
Access is done for the IP of a server for all users and all databases
for ejabberd and gitea
 2020-06-11 18:20:04 +02:00
Greg Karékinian
759fa52e03 Enable the certbot resource 2020-06-02 16:19:05 +02:00
Greg Karékinian
0f10723c81 Enable secure cookies 2020-06-02 16:18:48 +02:00
Greg Karékinian
55865c526c Add the Let's Encrypt hook dir to the config 
Only enabled when there is no TLS cert. This is already part of the
certbot nginx vhost
 2020-06-02 16:17:34 +02:00
Greg Karékinian
0c502580c2 Fix the condition for the Let's Encrypt cert in the template 
The line contained an extra !
 2020-06-02 16:16:30 +02:00
Greg Karékinian
c8e50fd226 Install git, it is a required dependency for Gitea 
I didn't catch it because git is installed by default in the Vagrant box
I used to write the cookbook
 2020-06-02 11:41:19 +02:00
Greg Karékinian
94330f2052 Comment out the COOKIE_SECURE config for now 
We will enable it again after we have a valid TLS cert generated with
Let's Encrypt. It prevents logins using http, and we will need that as
an admin account
 2020-05-28 18:43:31 +02:00
Greg Karékinian
baa0739936 Add the backup recipe 
Also move the Gitea data dir to an attribute
 2020-05-26 15:21:26 +02:00
Greg Karékinian
3332a1b2e8 Write initial README 2020-05-26 15:21:07 +02:00
Greg Karékinian
1f0e2ccbdd Move the binary URL to an attribute 2020-05-21 11:51:06 +02:00
Greg Karékinian
51d4d88568 Initial kosmos_gitea cookbook 
The default recipe deploys the gitea binary, generates a config file and
our custom Kosmos label set. The service runs as a Systemd unit.

The pg_db recipe needs to run on the primary PostgreSQL (currently
andromeda).

The backup recipe is empty for now

Refs #147
 2020-05-18 19:39:43 +02:00