Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							55eb95ae73 
							
						 
					 
					
						
						
							
							Verify the TLS server's certificate  
						
						... 
						
						
						
						Do not proceed if a certificate is invalid 
						
						
					 
					
						2020-02-14 13:56:52 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							dc1226073c 
							
						 
					 
					
						
						
							
							Move the admin users to the ejabberd encrypted data bag  
						
						
						
						
					 
					
						2020-02-14 13:56:17 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							49d01991fd 
							
						 
					 
					
						
						
							
							Enable LDAP on the XMPP 5apps.com vhost  
						
						... 
						
						
						
						Refactor the ejabberd config file to remove hardcoded values about the
vhosts
Refs #123  
						
						
					 
					
						2020-02-12 17:40:38 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							e56faab5b1 
							
						 
					 
					
						
						
							
							Set the ACIs on the base DN  
						
						... 
						
						
						
						Allow users to change their own password, but nothing else (no search,
no read, no write)
This will only run when setting up the 389-dirsrv instance for the first
time, this has been applied on barnard by editing the dn (see
#128 (comment) )
Closes  #128  
						
						
					 
					
						2020-02-12 16:13:45 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							396cc344fb 
							
						 
					 
					
						
						
							
							Switch the ipfs cookbook from GitHub to Gitlab  
						
						
						
						
					 
					
						2020-02-04 16:26:31 +01:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							628b8c6ef8 
							
						 
					 
					
						
						
							
							Merge branch 'feature/124-enable_cite_extension' of kosmos/chef into master  
						
						
						
						
					 
					
						2020-01-29 14:36:31 +00:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							2a66ff6146 
							
						 
					 
					
						
						
							
							Enable the Cite extension in the MediaWiki config  
						
						... 
						
						
						
						This is used to create references as footnotes.
See https://www.mediawiki.org/wiki/Extension:Cite 
Closes  #124  
						
						
					 
					
						2020-01-29 14:30:39 +01:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							ef29e60403 
							
						 
					 
					
						
						
							
							Merge branch 'feature/107-ldap_mediawiki' of kosmos/chef into master  
						
						
						
						
					 
					
						2020-01-28 17:02:42 +00:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							9ece855902 
							
						 
					 
					
						
						
							
							Remove the config.rb at the root, it interferes with knife-zero  
						
						
						
						
					 
					
						2020-01-28 14:02:34 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							a06ea47e58 
							
						 
					 
					
						
						
							
							Update the LDAPProvider extension  
						
						
						
						
					 
					
						2020-01-28 13:54:57 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							a69192a863 
							
						 
					 
					
						
						
							
							Enable LDAP support on mediawiki  
						
						... 
						
						
						
						Users can log in using their LDAP account (in the
ou=users,dc=kosmos,dc=org group and with the wiki attribute set to
enabled)
Add an attribute for the ldap master server, so it can be overridden in
the development environment
Refs #107  
						
						
					 
					
						2020-01-24 13:45:17 +01:00 
						 
				 
			
				
					
						
							
							
								gregkare 
							
						 
					 
					
						
						
						
						
							
						
						
							484f1306da 
							
						 
					 
					
						
						
							
							Merge branch 'chore/default_license' of kosmos/chef into master  
						
						
						
						
					 
					
						2019-12-27 15:32:10 +00:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							d029ee91be 
							
						 
					 
					
						
						
							
							Move the generate options to config.rb at the root of the repo  
						
						... 
						
						
						
						This has been the only way I managed to make `chef generate cookbook
COOKBOOK_NAME` set the default values
This is not documented, there is an issue open about it:
https://github.com/chef/chef-cli/issues/54  
						
						
					 
					
						2019-12-27 11:33:05 +01:00 
						 
				 
			
				
					
						
							
							
								gregkare 
							
						 
					 
					
						
						
						
						
							
						
						
							7fd558215d 
							
						 
					 
					
						
						
							
							Merge branch 'feature/107-ldap_server' of kosmos/chef into master  
						
						
						
						
					 
					
						2019-12-23 17:50:19 +00:00 
						 
				 
			
				
					
						
							
							
								gregkare 
							
						 
					 
					
						
						
						
						
							
						
						
							f3a711ccfe 
							
						 
					 
					
						
						
							
							Merge branch 'feature/mediawiki_file_uploads' of kosmos/chef into master  
						
						
						
						
					 
					
						2019-12-20 16:09:10 +00:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							9828b867ba 
							
						 
					 
					
						
						
							
							Disable anonymous binds  
						
						... 
						
						
						
						See https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/8.2/html/Administration_Guide/configuring-special-binds.html#disabling-anonymous-binds  
						
						
					 
					
						2019-12-20 16:46:03 +01:00 
						 
				 
			
				
					
						
					 
					
						
						
							
							
						
						
						
							
						
						
							8d78d41af7 
							
						 
					 
					
						
						
							
							Use MIT as default cookbook license  
						
						... 
						
						
						
						And improve the author name, making it more consistent with the rest of
the repo. 
						
						
					 
					
						2019-12-18 20:19:42 +01:00 
						 
				 
			
				
					
						
					 
					
						
						
							
							
						
						
						
							
						
						
							11c7019bfa 
							
						 
					 
					
						
						
							
							Fix thumbnails not working for larger SVGs  
						
						... 
						
						
						
						See linked docs in code comments 
						
						
					 
					
						2019-12-13 13:46:57 +01:00 
						 
				 
			
				
					
						
					 
					
						
						
							
							
						
						
						
							
						
						
							2358ed00db 
							
						 
					 
					
						
						
							
							Fix wiki permissions  
						
						
						
						
					 
					
						2019-12-13 13:41:48 +01:00 
						 
				 
			
				
					
						
					 
					
						
						
							
							
						
						
						
							
						
						
							cbfb760787 
							
						 
					 
					
						
						
							
							Increase wiki file upload size limit  
						
						
						
						
					 
					
						2019-12-13 13:41:48 +01:00 
						 
				 
			
				
					
						
					 
					
						
						
							
							
						
						
						
							
						
						
							2158e1d4bf 
							
						 
					 
					
						
						
							
							Allow SVG file uploads  
						
						
						
						
					 
					
						2019-12-13 13:41:48 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							0a96c31e12 
							
						 
					 
					
						
						
							
							Add initial LDAP documentation  
						
						
						
						
					 
					
						2019-12-06 10:54:10 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							1240ed9da8 
							
						 
					 
					
						
						
							
							Move the dirsrv cert generation to a certbot deploy hook  
						
						
						
						
					 
					
						2019-12-05 15:47:10 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							0d192f536f 
							
						 
					 
					
						
						
							
							Add the empty nginx vhost template  
						
						
						
						
					 
					
						2019-12-05 15:05:37 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							0dbf350540 
							
						 
					 
					
						
						
							
							Restart the server after importing the TLS cert  
						
						
						
						
					 
					
						2019-12-04 17:40:27 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							5ba700cd00 
							
						 
					 
					
						
						
							
							Add the kosmos-dirsrv recipe to barnard  
						
						
						
						
					 
					
						2019-12-04 17:34:15 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							4e7d453942 
							
						 
					 
					
						
						
							
							Move the firewall and backup recipes outside of the custom resource  
						
						... 
						
						
						
						See the comment for more details 
						
						
					 
					
						2019-12-04 17:33:41 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							e24cd01287 
							
						 
					 
					
						
						
							
							Add an empty template because the nginx_certbot_site resource needs one  
						
						
						
						
					 
					
						2019-12-04 17:33:13 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							632cb38aab 
							
						 
					 
					
						
						
							
							Pass an empty passphrase on the command line for the p12 cert  
						
						
						
						
					 
					
						2019-12-04 17:32:40 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							9d9493af0d 
							
						 
					 
					
						
						
							
							Add a missing dependency on the kosmos-nginx cookbook  
						
						
						
						
					 
					
						2019-12-04 17:32:03 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							9e4f12b1b1 
							
						 
					 
					
						
						
							
							Merge branch 'master' into feature/107-ldap_server  
						
						
						
						
					 
					
						2019-12-04 15:52:08 +01:00 
						 
				 
			
				
					
						
							
							
								gregkare 
							
						 
					 
					
						
						
						
						
							
						
						
							aecdaabbcc 
							
						 
					 
					
						
						
							
							Merge branch 'chore/enable_wiki_editor_toolbar' of kosmos/chef into master  
						
						
						
						
					 
					
						2019-11-29 16:38:08 +00:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							dc91128eca 
							
						 
					 
					
						
						
							
							Use a custom resource to create a 389 Directory Server instance  
						
						... 
						
						
						
						This replaces the default recipe and will make it much easier to create
other types of instances, for example for replication 
						
						
					 
					
						2019-11-29 14:34:52 +01:00 
						 
				 
			
				
					
						
					 
					
						
						
							
							
						
						
						
							
						
						
							678286d758 
							
						 
					 
					
						
						
							
							Enable wiki editor toolbar  
						
						... 
						
						
						
						Enables the formatting toolbar for the wiki editor. 
						
						
					 
					
						2019-11-26 22:04:49 +01:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							65eca52b75 
							
						 
					 
					
						
						
							
							Delete file committed by accident  
						
						
						
						
					 
					
						2019-11-22 17:44:47 +01:00 
						 
				 
			
				
					
						
							
							
								gregkare 
							
						 
					 
					
						
						
						
						
							
						
						
							056a3eb0d6 
							
						 
					 
					
						
						
							
							Merge branch 'bugfix/letsencrypt_regenerate_template' of kosmos/chef into master  
						
						
						
						
					 
					
						2019-11-22 16:19:52 +00:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							db4e2777d4 
							
						 
					 
					
						
						
							
							Fix a bug preventing nginx from being reloaded after generating a cert  
						
						... 
						
						
						
						Change the notifies property to :immediately in nginx_certbot_site. This
way the vhost template is recreated and then triggers a reload of the
nginx service. The previous code resulted in nginx not being reloaded,
as the action had already been queued earlier. 
						
						
					 
					
						2019-11-22 14:37:29 +01:00 
						 
				 
			
				
					
						
							
							
								galfert 
							
						 
					 
					
						
						
						
						
							
						
						
							22400b929e 
							
						 
					 
					
						
						
							
							Merge branch 'feature/no_tweets_for_xmpp_hal8000' of kosmos/chef into master  
						
						
						
						
					 
					
						2019-11-15 14:49:45 +00:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							9e4685a743 
							
						 
					 
					
						
						
							
							Initial version of the kosmos-dirsrv cookbook  
						
						... 
						
						
						
						It sets up 389 Directory Server, including a TLS cert acquired using
Let's Encrypt in production (that requires ldap.kosmos.org pointing to
the server's IP) 
						
						
					 
					
						2019-11-15 15:41:30 +01:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							bd3ef8b635 
							
						 
					 
					
						
						
							
							Remove tweet reading from XMPP Hubot  
						
						... 
						
						
						
						Because of the wormhole feature between XMPP and IRC, any links to
tweets will be read by the hal8000 bots on both platforms.
This change removes the Tweet reading extension from the XMPP version of
the bot. 
						
						
					 
					
						2019-11-15 14:43:56 +01:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							90aebe54de 
							
						 
					 
					
						
						
							
							Revert "Remove tweet reading from IRC Hubot"  
						
						... 
						
						
						
						This reverts commit d5fc7ad105f45ea2b8eb2033564e4474abfc77a9. 
						
						
					 
					
						2019-11-15 14:37:19 +01:00 
						 
				 
			
				
					
						
							
							
								galfert 
							
						 
					 
					
						
						
						
						
							
						
						
							529a4fc4a8 
							
						 
					 
					
						
						
							
							Merge branch 'feature/no_tweets_for_irc_hal8000' of kosmos/chef into master  
						
						
						
						
					 
					
						2019-11-15 11:00:18 +00:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							d5fc7ad105 
							
						 
					 
					
						
						
							
							Remove tweet reading from IRC Hubot  
						
						... 
						
						
						
						Because of the wormhole feature between XMPP and IRC, any links to
tweets will be read by the hal8000 bots on both platforms.
This change removes the Tweet reading extension from the IRC version of
the bot. 
						
						
					 
					
						2019-11-14 19:00:04 +01:00 
						 
				 
			
				
					
						
							
							
								gregkare 
							
						 
					 
					
						
						
						
						
							
						
						
							86c43dfb29 
							
						 
					 
					
						
						
							
							Merge branch 'bugfix/110-mastodon_broken_certbot' of kosmos/chef into master  
						
						
						
						
					 
					
						2019-10-30 11:29:55 +00:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							0b579b1fea 
							
						 
					 
					
						
						
							
							Remove the redirection from HTTP to HTTPS from the mastodon vhost  
						
						... 
						
						
						
						This is already done in the certbot vhost
(https://gitea.kosmos.org/kosmos/chef/src/branch/master/site-cookbooks/kosmos-nginx/templates/default/nginx_conf_certbot.erb )
and it redirects every request to HTTPS, breaking Let's Encrypt
validation
Fixes  #110  
						
						
					 
					
						2019-10-28 11:18:31 +01:00 
						 
				 
			
				
					
						
					 
					
						
						
							
							
						
						
						
							
						
						
							77508c62a9 
							
						 
					 
					
						
						
							
							Update barnard node config  
						
						
						
						
					 
					
						2019-10-18 15:52:22 +02:00 
						 
				 
			
				
					
						
					 
					
						
						
						
						
							
						
						
							9e00070141 
							
						 
					 
					
						
						
							
							Merge branch 'feature/18-akkounts-api' of kosmos/chef into master  
						
						
						
						
					 
					
						2019-10-18 12:31:38 +00:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							2c20fa4a2f 
							
						 
					 
					
						
						
							
							Fix the nginx vhost for akkounts-api  
						
						... 
						
						
						
						Listening on port 80 when there is no TLS cert prevented Let's Encrypt
to generate a cert 
						
						
					 
					
						2019-10-18 13:26:04 +02:00 
						 
				 
			
				
					
						
					 
					
						
						
							
							
						
						
						
							
						
						
							f8af66a532 
							
						 
					 
					
						
						
							
							Add/fix akkounts credentials  
						
						
						
						
					 
					
						2019-10-18 13:10:43 +02:00 
						 
				 
			
				
					
						
							
							
								Greg Karékinian 
							
						 
					 
					
						
						
						
						
							
						
						
							2104e81250 
							
						 
					 
					
						
						
							
							Add the kosmos-akkounts::nginx recipe to kosmos-akkounts::default  
						
						
						
						
					 
					
						2019-10-18 12:30:26 +02:00