kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 30 Pull Requests 3 Projects 2 Activity
944 Commits 7 Branches 0 Tags
Commit Graph

944 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Greg Karékinian
a92205bd65 Fix the VM creation script 
Also join the zerotier network
 2020-12-09 16:29:15 +01:00
Greg Karékinian
77ab77afe8 Update the centaurus and draco nodes after Chef run 2020-12-09 15:42:49 +01:00
Greg Karékinian
6273271d40 Remove kosmos-bitcoin::source from draco 
Bitcoind runs inside a VM, not directly on the host
 2020-12-09 15:42:19 +01:00
greg
742dc6ff7f Merge branch 'master' into feature/244-new_vm_script 2020-12-09 13:59:52 +00:00
greg
f540661de4 Merge pull request 'Update ejabberd doc' (#254) from docs/ejabberd into master 
Reviewed-on: #254
 2020-12-09 12:12:51 +00:00
Greg Karékinian
7ceb9af3ed Rename the kosmos_kvm default recipe to host 
It makes it clear it is meant for KVM hosts
 2020-12-09 11:19:13 +01:00
Greg Karékinian
6c907419aa Set the VM name from the script argument 2020-12-08 17:10:40 +01:00
Greg Karékinian
8f304d00ce Remove unused kitchen.yml files 2020-12-08 16:34:24 +01:00
Greg Karékinian
94a34e4758 Add arguments for RAM and number of CPUs 2020-12-08 16:33:27 +01:00
Greg Karékinian
b3c1f81ec6 Set the description of the kosmos_zerotier cookbook 2020-12-08 16:26:14 +01:00
Greg Karékinian
6f7b493173 Create the base Ubuntu 20.04 cloud image with code 2020-12-08 16:25:32 +01:00
Greg Karékinian
176083497c Install the libvirt-daemon-system package 
It creates the libvirt-qemu user
 2020-12-08 16:25:04 +01:00
Greg Karékinian
89c8f42a46 Set the description for the kosmos_kvm cookbook 2020-12-08 16:03:18 +01:00
Sebastian Kippe
02239dd9a8
Update ejabberd doc 2020-12-08 13:13:05 +01:00
Greg Karékinian
1837285b79 Add the kosmos_kvm recipe and the firewall rules 
... to the KVM hosts, centaurus and draco

Refs #244
 2020-12-04 16:33:18 +01:00
Greg Karékinian
ee7a117d63 Add initial kosmos_zerotier cookbook 
For now it only includes the firewall rule

Refs #244
 2020-12-04 16:29:22 +01:00
Greg Karékinian
e6b7794e20 Extract firewall definitions to their own recipe 
This allows us to use them for KVM hosts as well. Until now we had set
up ufw rules manually on the two KVM hosts (draco and centaurus)

Refs #244
 2020-12-04 16:27:42 +01:00
Greg Karékinian
9dbe5bcfcb Deploy a script to create new VMs 
It uses `virt-install` with the official Ubuntu 20.04 cloud image as a
starting point, with cloud-init to add our SSH keys to the ubuntu user
and set up Zerotier.

USAGE: create_vm VMNAME

Closes #244
 2020-12-04 16:21:52 +01:00
raucao
bc80540c14 Merge pull request 'Deploy new wormhole release on barnard' (#251) from chore/wormhole_barnard into master 
Reviewed-on: #251
 2020-11-27 12:25:01 +00:00
Sebastian Kippe
dace63b667
Remove akkounts recipe from barnard runlist 
Must have been committed accidentally.
 2020-11-27 13:22:29 +01:00
Sebastian Kippe
58c5fad2a7
Add new nickname config for wormhole 2020-11-27 13:22:09 +01:00
greg
39ca70d64e Merge pull request 'Set up ejabberd-2 VM/node; add cluster configs to Chef' (#248) from chore/ejabberd-2_vm into master 
Reviewed-on: #248
 2020-11-26 14:47:33 +00:00
Sebastian Kippe
58854da648
Add erland_node fqdn to ejabberd node configs 2020-11-25 21:04:33 +01:00
Sebastian Kippe
137d90ed8a
Configure ejabberd on ejabberd-2 2020-11-25 21:03:16 +01:00
Sebastian Kippe
8c60279fe1
Add cluster configs to ejabberd recipe 2020-11-25 21:02:46 +01:00
Sebastian Kippe
7a1a5c03e3
Set up ejabberd-2 VM 2020-11-25 17:40:40 +01:00
raucao
8e067e8901 Merge pull request 'Enable ejabberd clustering' (#246) from feature/243-ejabberd_cluster into master 
Reviewed-on: #246
 2020-11-25 16:10:14 +00:00
Greg Karékinian
bbf01711f8 Add ejabberd-1 client and node file 2020-11-25 16:42:23 +01:00
Greg Karékinian
fbd71204c2 Use the production run list when no Chef environment was set 2020-11-25 16:41:43 +01:00
Greg Karékinian
613b316588 Add comment about needing to run Chef a second time... 
... after the TLS certs are generated
 2020-11-25 16:36:07 +01:00
Greg Karékinian
3a8af26b5f Remove firewall rule for an unused port 2020-11-25 16:36:07 +01:00
Greg Karékinian
23ca3552d2 Remove the absolute path of certbot to use the new package 2020-11-25 16:36:07 +01:00
Greg Karékinian
ddb706b61c Add a missing dependency on kosmos-dirsrv 2020-11-25 16:36:07 +01:00
Greg Karékinian
085bd8abd5 Move TURN port to a different range 
It landed on a port used by PostgreSQL. Also switch STUN/TURN to TCP
because HAProxy does not support UDP.

Closes #240
 2020-11-25 16:36:07 +01:00
Greg Karékinian
7636f6ed19 Move the Gandi DNS certbot hook to kosmos-ejabberd 2020-11-25 16:36:07 +01:00
Greg Karékinian
8b1f90c568 Use the same Erlang cookie to enable clustering 
Refs #243
 2020-11-25 16:35:37 +01:00
greg
3da883864b Merge pull request 'Configure/deploy HTTP upload service for Kosmos Chat/XMPP' (#245) from feature/http_upload_service into master 
Reviewed-on: #245
 2020-11-25 09:46:47 +00:00
greg
134493d2d6 Merge branch 'master' into feature/http_upload_service 2020-11-25 09:46:31 +00:00
Sebastian Kippe
f39f953b8a
Configure ejabberd nodes for HTTP upload service 2020-11-24 15:44:59 +01:00
Sebastian Kippe
0e29c930ed
Configure subdirectory level for upload.pm 
This allows to post to per-domain subdirectories from XMPP clients.
 2020-11-24 15:33:34 +01:00
Sebastian Kippe
0aef830aa3
Fix upload folder permissions 
Uploads are failing with the current mode.
 2020-11-23 20:50:01 +01:00
Sebastian Kippe
0bebdf7635
Do not require nginx from certbot recipe 
In order to be able to use different nginx install recipes, we must not
require a specific one from this recipe.
 2020-11-23 17:40:14 +01:00
Sebastian Kippe
6a89bb9d2e
Add node info for uploads-1 
Runs uploads.kosmos.chat
 2020-11-23 17:39:47 +01:00
Sebastian Kippe
9efb9cd78c
Configure/deploy HTTP upload service on uploads.kosmos.chat 
https://xmpp.org/extensions/xep-0363.html

(Does not contain the config for ejabberd itself yet.)
 2020-11-23 17:37:14 +01:00
greg
89f5a81952 Merge pull request 'Configure/deploy new akkounts Rails app' (#242) from feature/akkounts into master 
Reviewed-on: #242
 2020-11-23 09:52:16 +00:00
Sebastian Kippe
c26fcd5b26
Remove obsolete manual daemon reload 2020-11-22 20:26:56 +01:00
Sebastian Kippe
0dc314b1e7
Add node data for akkounts-1 2020-11-21 15:12:39 +01:00
Sebastian Kippe
d384f69139
Configure/deploy new akkounts app 2020-11-21 15:12:31 +01:00
raucao
21be68feb5 Merge pull request 'Add CLI script for hashing LDAP passwords' (#239) from chore/ldap_hash_password_script into master 
Reviewed-on: #239
 2020-11-20 13:39:40 +00:00
Sebastian Kippe
b63c86b37f
Add CLI script for hashing LDAP passwords 
Only takes a cleartext password and outputs a salted, hashed password
string for LDAP documents.
 2020-11-20 14:36:25 +01:00