Commit Graph

1270 Commits

Author SHA1 Message Date
Râu Cao a5b2eb5f97 Move borg credentials to a separate file
To be used from a service
2022-10-21 10:49:02 +02:00
Râu Cao 34a57fa298 Merge branch 'lnd_tor_changes' into feature/qemu_snapshots 2022-10-19 15:23:39 +02:00
Râu Cao 6d765f959d Fix backup VM name for ldap-3
(and potentially other guests where the name differs from the libvirt
domain name)
2022-10-19 12:51:46 +02:00
Râu Cao 82f50b0caa Only back up domain-specific XML per archive 2022-10-19 12:24:10 +02:00
Râu Cao 6c8f9055c1 Create directories for KVM host backup files 2022-10-19 12:23:54 +02:00
Râu Cao 2e2ebbcc02 Fix filenames for guest agent sockets 2022-10-19 12:23:17 +02:00
Râu Cao a3844b7ef6 WIP Add KVM host backup recipe
Add a recipe that configures scripts for live backups of VM images via
libvirt and borg.
2022-10-19 12:08:05 +02:00
Râu Cao 6d50a32aca Add FIXME note 2022-10-19 12:08:05 +02:00
Râu Cao 895d293899 Update RSKj version 2022-10-18 18:46:53 +02:00
Râu Cao 315cd247e5 Enable qemu-guest-agent after install
This is actually automatically done for the service from the apt
package, but I like specifying it explicitly as well.
2022-10-12 15:55:08 +02:00
Râu Cao e73b8fb01f Add guest agent device when creating VMs
This is necessary for qemu-guest-agent to actually work
2022-10-12 15:53:00 +02:00
Greg Karékinian 378fee85ec Create a discourse cookbook that can be wrapped
It makes it possible to serve multiple Discord instances to different
hosts from a single nginx load balancer

Right now we run one for Kosmos and one for remoteStorage
2022-10-11 17:58:22 +02:00
Râu Cao e90b265f7e Remove superfluous license headers 2022-10-10 15:29:17 +02:00
Râu Cao bec54e6ffb Upgrade LND, bitcoind
LND needs an emergency hotfix, released in 0.15.2, due to a subtle
Taproot transaction parsing limitation in a library it depends on.
2022-10-10 13:46:12 +02:00
Râu Cao ff907384d9 Upgrade Gitea to 1.17.2 2022-09-21 11:32:20 +02:00
Greg Karékinian 85abfd4e5e Create the required groups and ACIs 2022-08-22 16:15:02 +02:00
Râu Cao f17a420a64 Update VM base image 2022-08-22 13:40:07 +01:00
raucao 607466b1d2 Merge pull request 'Add KVM Guest role' (#409) from feature/kvm_guest_role into master
Reviewed-on: #409
2022-08-22 11:46:43 +00:00
Râu Cao 65adc84e5b Upgrade Gitea to 1.17.0
Also adds a new Nginx directive to allow larger uploads to the Docker
registry endpoints.

closes #422
2022-08-09 11:58:56 +02:00
Râu Cao 37b948cbe5 Remove custom cron job
refs #395
2022-08-08 12:57:30 +02:00
Râu Cao 08b7c7a5ac Enable cron job to delete repo archives
closes #395
2022-08-08 12:51:26 +02:00
basti 8d332e76f3 Upgrade Gitea to 1.16.9 2022-07-16 16:42:19 +02:00
basti 562da400e3 Update root path for kosmos website 2022-07-11 13:31:31 +02:00
greg a1db277f2f Merge branch 'master' into bugfix/vm_base_images 2022-06-11 09:20:09 +00:00
basti 52d7fe52e5 Fix VM base images being overwritten
The base image is used as backing image for the VM images, so
overwriting it results in corrupt data after VM reboots.
2022-06-11 11:17:42 +02:00
basti a85415ef48 Fix MUC service/domains not being announced
Only subdomains of `hosts` are automatically announced, but other
domains have to be added manually via the `extra_domains` disco module
config.

fixes #413
2022-06-03 18:07:50 +02:00
basti 48cdd62973 Upgrade ejabberd to 22.05
Tested/running on all cluster nodes. Due to changes in the upstream
package we were able to remove some complexity from the recipe. Deleting
code FTW!

closes #334
2022-05-31 16:27:07 +02:00
basti a1e2c21bcb Fix abuse address info in XMPP service discovery
It wasn't replacing the @HOST@ placeholder with the actual vhost domain.
2022-05-31 11:32:55 +02:00
basti a93c5e5af6 Allow external HTTP requests to BTCPay
Limited to private network via firewall rule.
2022-05-24 15:10:24 +02:00
basti 92d1bcd8c7 Add nginx proxy for akkounts/kredits API
closes #410
2022-05-24 15:03:51 +02:00
basti 7a52f2bd89 Allow BTCPay API access over private network 2022-05-24 13:08:41 +02:00
basti a0b64a709d Add KVM Guest role
Only installs qemu-guest-agent for now, for improving live VM backups.
2022-05-23 12:41:55 +02:00
basti 48c3fef1a1 Remove TLS config for ejabberd LDAP 2022-05-11 16:27:21 +02:00
basti decd937d43 Remove superfluous license header 2022-05-11 16:27:21 +02:00
basti e89e0b3122 Fix letsencrypt bootstrap for ejabberd 2022-05-11 16:27:21 +02:00
basti b3f1a74cc2 Remove obsolete ejabberd backups 2022-05-11 16:27:21 +02:00
Greg Karékinian a14cd9a74f New config for LDAP in Discourse 2022-05-11 16:23:18 +02:00
Greg Karékinian 0d133de1b8 New config and credentials for LDAP connection in mediawiki 2022-05-11 16:23:17 +02:00
raucao 5c31531357 Merge pull request 'Configure STUN/TURN for ejabberd and nginx proxy' (#407) from feature/ejabberd_stun_n_turn into new_ldap_server
Reviewed-on: #407
2022-05-11 14:21:14 +00:00
Greg Karékinian 5c00e2d28a Add an attribute containing the LDAP server's address 2022-05-11 15:37:36 +02:00
basti c158f845f0 Configure STUN/TURN for ejabberd and nginx proxy 2022-05-11 15:27:49 +02:00
Greg Karékinian c56870008e Use the new LDAP services application accounts 2022-05-11 14:49:28 +02:00
Greg Karékinian e53e55cb2d Disable TLS for LDAP since we're using Zerotier networking 2022-05-11 14:49:00 +02:00
Greg Karékinian ff7cb1ce4a Generate a hosts entry for the LDAP server 2022-05-11 14:48:30 +02:00
Greg Karékinian 907706d1d2 Set up the hosts entry for the new LDAP server 2022-05-10 11:50:49 +02:00
Greg Karékinian b869002c1a Update Gitea to 1.16.6 2022-05-10 11:50:35 +02:00
Greg Karékinian 7ffd3bbf73 Add LDAP's Zerotier IP to the akkount server's hosts 2022-04-28 12:12:10 +02:00
basti 1da5ef4979 Merge branch 'master' into new_ldap_server 2022-04-28 09:23:18 +02:00
basti 590366639e Fix fresh dirsrv installs on Ubuntu 20.04 2022-04-26 20:10:51 +02:00
basti 71f9b06d28 Tor improvements for bitcoin cookbook 2022-04-19 14:08:02 +02:00