kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 30 Pull Requests 3 Projects 2 Activity
1,775 Commits 7 Branches 0 Tags
Commit Graph

112 Commits

Author SHA1 Message Date
Râu Cao
fbcf1ed5e7
WIP Add initial cookbook and roles for email service 2023-12-01 09:56:54 +01:00
Râu Cao
925a5da239
Upgrade RSKj to 5.3.0, deploy new nodes 
Adapted the cookbook for new nodes running on Jammy.
 2023-11-04 15:06:31 +01:00
Râu Cao
65d71d6a73
Migrate ejabberd uploads to mod_s3_upload and Garage 
In addition to installing and configuring the new module, this also
enables public access to the S3 API via `bucket-name.s3.kosmos.org` as
well as Web access on `bucket-name.web.s3.kosmos.org` (when enabled).

Also includes some drive-by improvements to Chef attribute naming and
usage.

Co-authored-by: Greg Karékinian <greg@karekinian.com>
 2023-10-10 17:55:55 +02:00
Râu Cao
0f12a54eab
Refactor tor usage entirely 
Use a custom resource and separate recipe for service configs with
pre-set keys and hostnames
 2023-07-30 12:39:41 +02:00
Râu Cao
68b56789c5
Migrate ejabberd UDP streams to openresty 
And remove the other streams in the process, in favor of running haproxy
on all LBs.
 2023-07-30 12:39:36 +02:00
Râu Cao
438ee4ace0
Migrate Gitea SSH stream to openresty 2023-07-30 12:35:21 +02:00
Râu Cao
cb0fc27134
Refactor tor usage, set up new tor proxy on draco 2023-07-29 16:26:20 +02:00
Râu Cao
53c35fda51
Migrate garage proxies to openresty 2023-07-26 16:42:48 +02:00
Râu Cao
bb2f41fdb3
Migrate hubot proxies to openresty 2023-07-26 16:21:03 +02:00
Râu Cao
027d0ed570
Migrate IPFS proxies to openresty 2023-07-26 16:12:33 +02:00
Râu Cao
1362da0add
Migrate RS Discourse proxy to openresty 2023-07-26 15:57:08 +02:00
Râu Cao
15b2ea284a
Migrate mastodon proxy to openresty 2023-07-26 15:44:04 +02:00
Râu Cao
ad59913555
Migrate lndhub proxy to openresty 2023-07-26 15:00:55 +02:00
Râu Cao
1bad2939de
Migrate accounts API proxy to openresty 2023-07-26 15:00:43 +02:00
Râu Cao
98d423aa70
Update roles 2023-07-26 14:16:33 +02:00
Râu Cao
543b482adb
Migrate discourse proxy to openresty 2023-07-26 13:40:19 +02:00
Râu Cao
4b0b4b8d80
Migrate akkounts proxy to openresty 2023-07-26 13:31:28 +02:00
Râu Cao
a85bbc4a3e
Add kvm host role 2023-07-25 16:38:52 +02:00
Greg Karékinian
307ccbd561 Set a production run list for the openresty_proxy role 
It only contains the assets for now
 2023-07-17 18:06:58 +02:00
Greg Karékinian
bf72367cf2 Add a firewall rule to the kosmos_openresty cookbook 
It is part of the run list in production
 2023-07-17 18:05:34 +02:00
Greg Karékinian
4e0bd191c3 Move the Hello World lua app to its own recipe 
Use it in the development environment
 2023-07-17 18:04:35 +02:00
Greg Karékinian
df1143525d Add openresty roles 2023-07-12 20:37:03 +02:00
Greg Karékinian
9378df23db Remove unused lndhub recipe 2023-06-28 16:35:56 +02:00
Greg Karékinian
b19fca6e7c Add firewall rule to allow access to Redis on Zerotier network 2023-06-20 15:19:34 +02:00
Greg Karékinian
44e23ffa1f Merge branch 'master' into feature/488-redis_server 2023-06-19 16:08:44 +02:00
Greg Karékinian
6116729907 Set up Redis using the latest version of redisio 
This replaces the deprecated redis cookbook. Compiles the latest version
of Redis, currently 7.0.11

Refs #488
 2023-06-19 16:02:58 +02:00
Râu Cao
90f66c74d2
Refactor RSK nginx sites for proxy/lb usage 2023-06-18 16:55:38 +02:00
greg
ac00aa9def Merge pull request 'Upgrade Gitea to 1.19, configure Gitea Actions, set up Actions runners' (#482) from chore/upgrade_gitea into master 
Reviewed-on: #482
 2023-04-02 13:57:45 +00:00
Râu Cao
059812524e
Set up Gitea Actions runners 2023-04-01 12:56:21 +02:00
Râu Cao
702449acc1
Upgrade Gitea to 1.19.0, enable Actions 2023-03-28 19:36:30 +02:00
Râu Cao
05d0a19b5f
Add Sentry client recipe and role 
Configures a local domain for Sentry in the hostsfile.
 2023-03-27 19:04:03 +02:00
Râu Cao
798ee3d1d8
Basic Sentry setup 
Not running the install script automatically at this point yet.
 2023-03-27 19:03:58 +02:00
Râu Cao
8225e1b67b
Move akkounts nginx to nginx proxy 2023-03-02 18:05:37 +08:00
Râu Cao
99e029a5ca
Switch NBXplorer to Postgres 2023-02-08 15:30:44 +08:00
Râu Cao
ed0e030106
Set up libretranslate for kosmos.social 2023-01-17 17:12:22 +08:00
Râu Cao
4f1b1aff30
Set up PeerSwap 
Allows to swap sats in and out of Lightning channels without a 3rd party
(and their fees). Instead, swaps can be initiated directly with the
channel peer.

https://www.peerswap.dev/
 2022-12-26 11:16:22 +07:00
Râu Cao
90e17b0abc
Rename bitcoind recipe 
Was still using a name from when the cookbook didn't set up anything
else
 2022-12-25 16:28:14 +07:00
Râu Cao
fb1206d03f
Refactor bitcoin-related roles and node config 2022-12-22 19:35:41 +07:00
Râu Cao
7d11450c4e
Set up lndhub.go 
closes #454
 2022-12-11 14:30:27 +01:00
greg
26a34a69d3 Merge branch 'master' into feature/ldap_replication 2022-12-08 13:08:00 +00:00
Râu Cao
5d05d5c187
Move Mastodon nginx to proxy/LB 2022-11-30 12:07:54 +01:00
Râu Cao
66f5217a41
Refactor Mastodon nginx recipe for proxy usage 
Works both as local deployment and proxy (via roles and environments)

* Use upstreams for proxy_pass
* Access static assets from proxy, configure caching for them
* Move Tor config to environment, install via role
* ...
 2022-11-30 12:02:17 +01:00
Râu Cao
991458208d
Use a role for configuring LDAP hostname on clients 
This way it's also easy to converge all LDAP clients at once.
 2022-11-26 16:45:45 +01:00
Râu Cao
8d4db7290e
Rename dirsrv_primary role 
The term used in 389 docs is "supplier" instead (ex "master")
 2022-11-26 16:44:05 +01:00
Râu Cao
e0fb84e56c
Store Gitea data (avatars, attachments, etc.) in Garage/S3 
Also adds a new garage gateway role, which only allows RPC (inter-node)
traffic to Garage.
 2022-11-26 13:05:07 +01:00
Râu Cao
b5ff60214c Install/configure Garage 
Add a garage cookbook that installs the garage binary distribution and
creates the necessary configuration and system service.

Also deploy two new VMs to act as storage nodes.

refs #428
 2022-11-25 10:56:22 +00:00
Râu Cao
d06f5d7723
Set up fail2ban for nginx, move IPFS gateway to proxy role 2022-11-24 14:02:43 +01:00
Greg Karékinian
97fe328312 Add missing pg_db recipe on postgresql_primary role 2022-11-07 16:30:02 +01:00
Greg Karékinian
4bfb7d5f5d Extract mastodon db backup to its own recipe 2022-11-07 16:22:15 +01:00
Râu Cao
65933bef4b Move hubot nginx sites to proxy role, deploy to fornax 2022-11-04 14:41:21 +01:00