kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 30 Pull Requests 3 Projects 2 Activity
662 Commits 7 Branches 0 Tags
Commit Graph

662 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Greg Karékinian
a69192a863 Enable LDAP support on mediawiki 
Users can log in using their LDAP account (in the
ou=users,dc=kosmos,dc=org group and with the wiki attribute set to
enabled)

Add an attribute for the ldap master server, so it can be overridden in
the development environment

Refs #107
 2020-01-24 13:45:17 +01:00
gregkare
484f1306da Merge branch 'chore/default_license' of kosmos/chef into master 2019-12-27 15:32:10 +00:00
Greg Karékinian
d029ee91be Move the generate options to config.rb at the root of the repo 
This has been the only way I managed to make `chef generate cookbook
COOKBOOK_NAME` set the default values

This is not documented, there is an issue open about it:
https://github.com/chef/chef-cli/issues/54
 2019-12-27 11:33:05 +01:00
gregkare
7fd558215d Merge branch 'feature/107-ldap_server' of kosmos/chef into master 2019-12-23 17:50:19 +00:00
gregkare
f3a711ccfe Merge branch 'feature/mediawiki_file_uploads' of kosmos/chef into master 2019-12-20 16:09:10 +00:00
Greg Karékinian
9828b867ba Disable anonymous binds 
See https://access.redhat.com/documentation/en-US/Red_Hat_Directory_Server/8.2/html/Administration_Guide/configuring-special-binds.html#disabling-anonymous-binds
 2019-12-20 16:46:03 +01:00
Sebastian Kippe
8d78d41af7
Use MIT as default cookbook license 
And improve the author name, making it more consistent with the rest of
the repo.
 2019-12-18 20:19:42 +01:00
Sebastian Kippe
11c7019bfa
Fix thumbnails not working for larger SVGs 
See linked docs in code comments
 2019-12-13 13:46:57 +01:00
Sebastian Kippe
2358ed00db
Fix wiki permissions 2019-12-13 13:41:48 +01:00
Sebastian Kippe
cbfb760787
Increase wiki file upload size limit 2019-12-13 13:41:48 +01:00
Sebastian Kippe
2158e1d4bf
Allow SVG file uploads 2019-12-13 13:41:48 +01:00
Greg Karékinian
0a96c31e12 Add initial LDAP documentation 2019-12-06 10:54:10 +01:00
Greg Karékinian
1240ed9da8 Move the dirsrv cert generation to a certbot deploy hook 2019-12-05 15:47:10 +01:00
Greg Karékinian
0d192f536f Add the empty nginx vhost template 2019-12-05 15:05:37 +01:00
Greg Karékinian
0dbf350540 Restart the server after importing the TLS cert 2019-12-04 17:40:27 +01:00
Greg Karékinian
5ba700cd00 Add the kosmos-dirsrv recipe to barnard 2019-12-04 17:34:15 +01:00
Greg Karékinian
4e7d453942 Move the firewall and backup recipes outside of the custom resource 
See the comment for more details
 2019-12-04 17:33:41 +01:00
Greg Karékinian
e24cd01287 Add an empty template because the nginx_certbot_site resource needs one 2019-12-04 17:33:13 +01:00
Greg Karékinian
632cb38aab Pass an empty passphrase on the command line for the p12 cert 2019-12-04 17:32:40 +01:00
Greg Karékinian
9d9493af0d Add a missing dependency on the kosmos-nginx cookbook 2019-12-04 17:32:03 +01:00
Greg Karékinian
9e4f12b1b1 Merge branch 'master' into feature/107-ldap_server 2019-12-04 15:52:08 +01:00
gregkare
aecdaabbcc Merge branch 'chore/enable_wiki_editor_toolbar' of kosmos/chef into master 2019-11-29 16:38:08 +00:00
Greg Karékinian
dc91128eca Use a custom resource to create a 389 Directory Server instance 
This replaces the default recipe and will make it much easier to create
other types of instances, for example for replication
 2019-11-29 14:34:52 +01:00
Sebastian Kippe
678286d758
Enable wiki editor toolbar 
Enables the formatting toolbar for the wiki editor.
 2019-11-26 22:04:49 +01:00
Greg Karékinian
65eca52b75 Delete file committed by accident 2019-11-22 17:44:47 +01:00
gregkare
056a3eb0d6 Merge branch 'bugfix/letsencrypt_regenerate_template' of kosmos/chef into master 2019-11-22 16:19:52 +00:00
Greg Karékinian
db4e2777d4 Fix a bug preventing nginx from being reloaded after generating a cert 
Change the notifies property to :immediately in nginx_certbot_site. This
way the vhost template is recreated and then triggers a reload of the
nginx service. The previous code resulted in nginx not being reloaded,
as the action had already been queued earlier.
 2019-11-22 14:37:29 +01:00
galfert
22400b929e Merge branch 'feature/no_tweets_for_xmpp_hal8000' of kosmos/chef into master 2019-11-15 14:49:45 +00:00
Greg Karékinian
9e4685a743 Initial version of the kosmos-dirsrv cookbook 
It sets up 389 Directory Server, including a TLS cert acquired using
Let's Encrypt in production (that requires ldap.kosmos.org pointing to
the server's IP)
 2019-11-15 15:41:30 +01:00
Garret Alfert
bd3ef8b635 Remove tweet reading from XMPP Hubot 
Because of the wormhole feature between XMPP and IRC, any links to
tweets will be read by the hal8000 bots on both platforms.

This change removes the Tweet reading extension from the XMPP version of
the bot.
 2019-11-15 14:43:56 +01:00
Garret Alfert
90aebe54de Revert "Remove tweet reading from IRC Hubot" 
This reverts commit d5fc7ad105f45ea2b8eb2033564e4474abfc77a9.
 2019-11-15 14:37:19 +01:00
galfert
529a4fc4a8 Merge branch 'feature/no_tweets_for_irc_hal8000' of kosmos/chef into master 2019-11-15 11:00:18 +00:00
Garret Alfert
d5fc7ad105 Remove tweet reading from IRC Hubot 
Because of the wormhole feature between XMPP and IRC, any links to
tweets will be read by the hal8000 bots on both platforms.

This change removes the Tweet reading extension from the IRC version of
the bot.
 2019-11-14 19:00:04 +01:00
gregkare
86c43dfb29 Merge branch 'bugfix/110-mastodon_broken_certbot' of kosmos/chef into master 2019-10-30 11:29:55 +00:00
Greg Karékinian
0b579b1fea Remove the redirection from HTTP to HTTPS from the mastodon vhost 
This is already done in the certbot vhost
(https://gitea.kosmos.org/kosmos/chef/src/branch/master/site-cookbooks/kosmos-nginx/templates/default/nginx_conf_certbot.erb)
and it redirects every request to HTTPS, breaking Let's Encrypt
validation

Fixes #110
 2019-10-28 11:18:31 +01:00
Sebastian Kippe
77508c62a9
Update barnard node config 2019-10-18 15:52:22 +02:00
Râu Cao
9e00070141 Merge branch 'feature/18-akkounts-api' of kosmos/chef into master 2019-10-18 12:31:38 +00:00
Greg Karékinian
2c20fa4a2f Fix the nginx vhost for akkounts-api 
Listening on port 80 when there is no TLS cert prevented Let's Encrypt
to generate a cert
 2019-10-18 13:26:04 +02:00
Sebastian Kippe
f8af66a532
Add/fix akkounts credentials 2019-10-18 13:10:43 +02:00
Greg Karékinian
2104e81250 Add the kosmos-akkounts::nginx recipe to kosmos-akkounts::default 2019-10-18 12:30:26 +02:00
Greg Karékinian
6bb93eb5f5 Fix the path to index.js 2019-10-18 12:27:33 +02:00
Greg Karékinian
c5eeab3606 Remove typescript and the compilation step 
The app is now compiled during the release phase:
https://github.com/67P/akkounts-api/pull/6
 2019-10-18 12:24:47 +02:00
Greg Karékinian
9ecf40e72a Add dummy encrypted data bag secret 
TODO: replace them with the actual secrets
 2019-10-17 14:58:07 +02:00
Greg Karékinian
185982ff9f Add the initial kosmos-akkounts cookbook to deploy akkounts-api 
Includes a recipe to set up nginx as a reverse proxy with a TLS
certificate for api.accounts.kosmos.org

Closes #18
Closes #20
 2019-10-17 14:56:48 +02:00
gregkare
1b2edb770e Merge branch 'bugfix/mastodon-web_service' of kosmos/chef into master 2019-10-16 10:34:29 +00:00
Sebastian Kippe
c7d91f68f9
Fix Mastodon Web systemd service 
Removes a legacy property from the config, which made the service fail
to start after having upgraded systemd on Andromeda.
 2019-10-16 08:29:34 +02:00
Râu Cao
fd913770b9 Merge branch 'feature/wormhole_sockethub' of kosmos/chef into master 2019-10-13 19:33:19 +00:00
Sebastian Kippe
76c8120058
Set up XMPP/IRC integration for Sockethub rooms 2019-10-13 21:32:12 +02:00
Râu Cao
fd59c9b23b Merge branch 'chore/update_mastodon_ruby' of kosmos/chef into master 2019-10-13 18:19:58 +00:00
Sebastian Kippe
66782f1f05
Update installed Ruby version for Mastodon 3.x 2019-10-13 20:16:54 +02:00