1049 Commits

Author SHA1 Message Date
Greg Karékinian
cf4e567dcb Get rid of the letsencrypt recipe
Its content has been moved to the public_gateway recipe
2019-07-04 10:24:33 +02:00
f4990a8066
Switch from IPFS cluster to kredits-ipfs-pinner
This removes the cluster configuration and adds deployment of Kredits
IPFS Pinner. It also switches hubot-kredits to use the normal API
endpoint again (instead of the cluster port).

Furthermore, it upgrades go-ipfs to the latest version.
2019-07-03 15:34:42 +02:00
a22d10e083 Merge branch 'doc/4-join_ipfs_cluster' of kosmos/chef into master 2019-07-02 11:41:58 +00:00
galfert
60205e8c7f Merge branch 'feature/ipfs_gateway' of kosmos/chef into master 2019-07-02 11:39:26 +00:00
f1d58f6172
Add IPFS gateway for document GETs
This adds a gateway endpoint for `http://ipfs.kosmos.org` on port 443
with support for `/ipfs/$objectHash` in order to GET documents from the
local gateway API.
2019-07-01 15:14:06 +02:00
galfert
18170e2abd Merge branch 'bugfix/ipfs-cluster-issues' of kosmos/chef into master 2019-06-26 10:23:40 +00:00
5817073a16
Update IPFS cookbook 2019-06-25 16:12:40 +02:00
galfert
4c7d1a602c Merge branch 'bugfix/mediawiki-hubot' of kosmos/chef into master 2019-06-25 12:37:14 +00:00
d3b07c59bf
Don't notify on minor wiki edits
New config available, which prevents chat notifications on minor edits.
2019-06-25 14:29:55 +02:00
fff5a044fe
Update/fix hubot URL, move variables to attributes 2019-06-25 14:29:11 +02:00
042014b1cb Merge branch 'feature/5-poise-javascript' of kosmos/chef into master 2019-06-22 12:37:27 +00:00
95d19fdf32 Merge branch 'bugfix/3-systemd_email_notifications' of kosmos/chef into master 2019-06-22 12:36:20 +00:00
Greg Karékinian
80526e3396 Switch to our own fork of the poise-javascript cookbook
Includes passing the `--no-audit` switch to `npm install` to prevent the
`npm_install` resource to consider the command resulted in changes,
causing the service to restart at every Chef run. npm returns the
expected string "up to date" when not performing the security audit

Closes #5
2019-06-21 17:36:18 +02:00
Greg Karékinian
3a693efcd6 Add email notifications for failed certbot runs
Based on https://wiki.archlinux.org/index.php/Systemd/Timers#MAILTO

This can easily be used by other services, with one line added to the
[Unit] section of a service:

OnFailure=status-email-ops@%n.service

Refs #3
2019-06-20 12:46:27 +02:00
a7eb12d0eb Merge branch 'bugfix/ejabberd_upload_permissions' of kosmos/chef into master 2019-06-14 15:01:59 +00:00
Greg Karékinian
b01985ec4f Fix the permissions for the ejabberd upload folders 2019-06-14 16:38:49 +02:00
Greg Karékinian
283f623fee Add mastodon role 2019-06-14 15:49:29 +02:00
Greg Karékinian
339f32c957 Simplify the instructions to get the cluster secret 2019-05-28 13:05:52 +02:00
Greg Karékinian
7905ed4402 Remove unused staging node 2019-05-21 15:00:01 +02:00
Greg Karékinian
aa79297387 Remove unused data bags and cookbooks 2019-05-21 14:58:01 +02:00
Greg Karékinian
b10c53cce8 Remove the database and mysql2_chef_gem cookbooks 2019-05-21 14:57:29 +02:00
Greg Karékinian
12ab8dc33b Stop depending on the mysql cookbook to install mysql-server
The mysql cookbook is completely broken on 18.04 (both the released version
and the current master, in different ways). Keep it simple and just run
mysql commands
2019-05-20 18:50:28 +02:00
Greg Karékinian
61959248f3 Run sockethub on barnard 2019-05-16 00:08:15 +02:00
Greg Karékinian
6a0ab0f375 Remove dev server 2019-05-15 13:23:29 +02:00
Greg Karékinian
cdcec7d990 Remove sockethub from andromeda 2019-05-15 13:23:12 +02:00
44ee5acd8c Merge branch 'feature/7-ejabberd_rebased_2' of kosmos/chef into master 2019-05-15 08:46:19 +00:00
Greg Karékinian
63f9c31632 Add the ejabberd role to andromeda 2019-05-14 17:11:18 +02:00
Greg Karékinian
4cc5f3e6d1 Remove the XMPP firewall rules for andromeda
They are part of the kosmos-ejabberd cookbook now
2019-05-14 17:10:33 +02:00
Greg Karékinian
5106ba20fd Add the version to the dpkg package to allow updates 2019-05-14 17:10:15 +02:00
Greg Karékinian
d398c167ca Allow to pass extra attributes to backup PostgreSQL databases 2019-05-14 16:39:21 +02:00
Greg Karékinian
c9547582b7 Add a role for the ejabberd server
Includes the backup, letsencrypt and default recipe
2019-05-14 15:18:05 +02:00
Greg Karékinian
f81b7c82de Backup the 5apps ejabberd database and uploads dir 2019-05-14 15:16:28 +02:00
Greg Karékinian
bd9491675f Add the missing sql schema 2019-05-14 15:10:07 +02:00
Greg Karékinian
902a013dca Restart the service when the systemd unit changes 2019-05-14 12:18:22 +02:00
Greg Karékinian
44faa1a8df Change the PostgreSQL password for the ejabberd user 2019-05-14 11:40:21 +02:00
Greg Karékinian
0be63e5935 Fix the config file when no TLS certs exist 2019-05-14 11:31:42 +02:00
Greg Karékinian
bd720b0189 Use the regular SQL schema (not the new one for all vhosts into one db) 2019-05-14 11:24:08 +02:00
Greg Karékinian
d9390a4b92 Don't use a concatenated cert for kosmos.org anymore 2019-05-13 18:53:45 +02:00
Greg Karékinian
5d1aeb7b68 Create a cert for 5apps.com and improve the renewal script 2019-05-13 18:52:39 +02:00
Greg Karékinian
88204ea91b Update the config to the current one running on andromeda 2019-05-13 17:59:04 +02:00
Greg Karékinian
ad23530653 Add the firewall rules for ejabberd
Includes the missing 5223 port in the andromeda_firewall recipe too
2019-05-13 17:08:21 +02:00
Greg Karékinian
b44a226753 Fix the postgresql setup for the ejabberd cookbook
Create a ejabberd user with a password from an encrypted data bag
2019-05-10 11:43:52 +02:00
Greg Karékinian
3884f9922e Merge branch 'master' into feature/7-ejabberd_rebased_2 2019-05-10 11:08:09 +02:00
gregkare
0a3a2b5c2e Merge branch 'feature/62-hal8000_xmpp' of kosmos/chef into master 2019-05-10 08:04:07 +00:00
5521457d09
Add hal8000_xmpp to barnard's runlist
Also, switch to explicit recipe definitions for the other bots.
2019-05-10 07:22:01 +02:00
3fbea864c1
Remove hubot-kredits from IRC hal8000 2019-05-10 07:08:29 +02:00
7afc2f5774 Remove old hubot admins from botka 2019-05-10 07:02:08 +02:00
b29a007533 Use different Redis database for new bot 2019-05-10 07:01:43 +02:00
4a480931a5 Fix bug in nginx config
Server name isn't recognized when adding a header
directive before like this.
2019-05-10 07:00:53 +02:00
9661980235 Change bot domain 2019-05-10 07:00:35 +02:00