1041 Commits

Author SHA1 Message Date
Greg Karékinian
d2142b046f Reload nginx immediately after enabling the Let's Encrypt vhost 2019-04-15 10:51:18 +02:00
Greg Karékinian
cd00f4c049 Remove boilerplate from the CHANGELOG 2019-04-12 11:42:29 +02:00
Greg Karékinian
57d0885d26 Change the licenses of hte kosmos cookbooks to MIT 2019-04-12 11:41:20 +02:00
Greg Karékinian
e65374c893 Add TODO prefix 2019-04-12 11:21:37 +02:00
Greg Karékinian
67a2c1ea55 Fix the mastodon user variable 2019-04-10 16:38:57 +02:00
Greg Karékinian
e0aa4c5b11 Move the firewall rule for sockethub to its own recipe 2019-04-10 16:33:56 +02:00
Greg Karékinian
39744f517f Fix an undefined variable on older Ubuntu versions 2019-04-10 16:19:05 +02:00
Greg Karékinian
b3786053a5 Don't try to install packages on older Ubuntu versions (dev.kosmos.org)
The package repositories do not exist anymore
2019-04-10 16:18:22 +02:00
Greg Karékinian
919f5db431 Fix the application resources to work on Chef 14 2019-04-10 11:49:26 +02:00
Greg Karékinian
126b5f8dd5 Update the kosmos-mastodon cookbook to use the new postgresql cookbook
Don't depend on the deprecated database cookbook to create the database
2019-04-10 11:49:26 +02:00
Greg Karékinian
ca118ca8f8 Use the second Redis database for sockethub 2019-04-09 11:39:35 +02:00
Greg Karékinian
2d18e4cd45 Set the mysql version for Ubuntu 18.04
The current mysql cookbook doesn't know the version it ships with
2019-04-09 11:09:54 +02:00
Greg Karékinian
21f0e4143e Move the hubot user creation to its own recipe 2019-04-08 17:58:02 +02:00
Greg Karékinian
e137188a4e Add the build_essential resource to both recipes 2019-04-08 17:58:02 +02:00
Greg Karékinian
e2c1a43a62 Fix cookbook dependency 2019-04-08 17:58:02 +02:00
Greg Karékinian
12355a6b27 Add a base role, so that chef is updated before anything else 2019-04-08 17:58:02 +02:00
Greg Karékinian
fddadbce25 Install the ruby-dev package since the backup gem needs it 2019-04-08 12:35:43 +02:00
Greg Karékinian
4b75ae78dc Set the minimum Chef version since it depends on the new sudo resource 2019-04-08 12:31:47 +02:00
Greg Karékinian
aa60d19743 Update sockethub to the latest tag
2.0.5 wasn't compatible with Node 10
2019-04-08 12:31:10 +02:00
Greg Karékinian
504ac417e2 Update nodejs to the latest LTS, using packages 2019-04-08 11:23:24 +02:00
Greg Karékinian
44eee142a7 Do nothing on old Ubuntu versions 2019-04-08 11:22:54 +02:00
Greg Karékinian
7bf583b5a3 Update Mediawiki to 1.32.0 2019-04-08 11:22:24 +02:00
Greg Karékinian
96cb3794f9 Don't try to enable TLS in the development environment 2019-04-08 11:21:45 +02:00
Greg Karékinian
4693b15826 Remove the kosmos-wordpress cookbook 2019-04-08 11:21:20 +02:00
Greg Karékinian
6e3e8cde1b Create the Let's Encrypt hook subdirectories 2019-04-08 11:16:38 +02:00
Greg Karékinian
448bffe34e Get rid of the deprecated set_unless 2019-04-03 12:56:15 +02:00
Greg Karékinian
b1a3c5e2cd Revert "Revert "Remove the sudo cookbook""
This reverts commit 87d7c721b16356a3607f9462916e6b04a93dbad5.
2019-04-03 12:52:40 +02:00
Greg Karékinian
2f05629fde Revert "Revert "Update Chef to 14.11.21""
This reverts commit db4b45b5c26c50c7b883d0f96b2a9a5136f26b58.
2019-04-03 12:52:32 +02:00
Greg Karékinian
6b9ce81212 Set postgresql password from an encrypted data bag 2019-04-03 11:34:59 +02:00
Greg Karékinian
d8a0ecec76 Update the postgresql cookbook 2019-04-03 11:34:41 +02:00
Greg Karékinian
85b7278ccc Add initial kosmos-postgresql cookbook
This is to install PostgreSQL all in one place instead of for each
service that needs it (Mastodon, ejabberd, ...)
2019-04-03 11:34:34 +02:00
Greg Karékinian
1ef24a2091 Install bundler 1.17.3 since we're still on Ruby 2.5 for now
Bundler 2.0 needs Ruby 2.6 or RubyGems 3.0
2019-04-03 11:02:51 +02:00
Greg Karékinian
58b5e5ac22 Move the creation of the SystemD service files outside of the application
This prevents a crash on the initial Chef run due to the service files
not being there yet before the services gets notified to restart
2019-04-03 11:02:25 +02:00
Greg Karékinian
87d7c721b1 Revert "Remove the sudo cookbook"
This reverts commit 73d1722d4b5c545ec488c5eb2119dd8b9b155363.
2019-04-03 10:30:38 +02:00
Greg Karékinian
db4b45b5c2 Revert "Update Chef to 14.11.21"
This reverts commit 2f599ffd6d757bc98ac862836110c7b32cda3c51.
2019-04-03 10:30:24 +02:00
Greg Karékinian
73d1722d4b Remove the sudo cookbook
Chef 14 ships with a sudo resource:
https://docs.chef.io/resource_sudo.html
2019-04-02 12:17:06 +02:00
Greg Karékinian
2f599ffd6d Update Chef to 14.11.21
Closes #21
2019-04-02 12:16:13 +02:00
Greg Karékinian
5fa0fa661b Install certbot from the direct download when on 15.04
It does not have a ppa release. Add a cron job for renewal. When using
the PPA a Systemd timer is part of the package
2019-03-18 16:52:05 +01:00
Greg Karékinian
17f1b2a20a Create a nginx_certbot_site resource to remove duplication
It creates a folder, the nginx vhost for certbot and HTTP redirects, and
also runs certbot and recreates the nginx vhost that includes the TLS
cert
2019-03-15 19:03:28 +01:00
Greg Karékinian
b30dcab4da Remove an IPFS port from the ejabberd firewall 2019-03-15 12:30:56 +01:00
41db5b2b73
Use kosmos.org email address 2019-03-15 12:45:28 +07:00
a77580d6da
Use variable instead of hardcoding domain
The domain name is hardcoded exactly 12 times in just the letsencrypt
recipe.
2019-03-15 12:38:42 +07:00
Greg Karékinian
c3135402ad Move the nginx hook to the deploy directory, create renewal-hooks dir 2019-03-14 20:21:34 +01:00
Greg Karékinian
f50f48b55b Remove the old deploy hook, we moved it to the certbot config dir 2019-03-14 18:07:52 +01:00
Greg Karékinian
a978f2a6a5 Fix the path to the Gandi DNS certbot script 2019-03-14 18:06:55 +01:00
Greg Karékinian
f12ddefec8 Move the Gandi DNS hook for certbot to the kosmos-base cookbook 2019-03-14 18:01:29 +01:00
Greg Karékinian
65482f09c3 Extract the post hooks to their own script in Certbot's config dir 2019-03-14 15:21:50 +01:00
Greg Karékinian
36e046ea73 Run certbot using the binary provided by the Ubuntu PPA 2019-03-14 10:52:44 +01:00
Greg Karékinian
fa27187f11 Switch from the git version of certbot to the Ubuntu PPA 2019-03-14 10:49:47 +01:00
Greg Karékinian
fc265014de Switch back to the upstream nginx cookbook
chef_nginx is deprecated
2019-03-14 10:35:11 +01:00