kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 27 Pull Requests 2 Projects 2 Activity
374 Commits 6 Branches 0 Tags
Commit Graph

260 Commits

Author SHA1 Message Date
Greg Karékinian
cb75292d7f Set the ejabberd postgresql user from an encrypted data bag 2019-03-13 17:39:39 +01:00
Greg Karékinian
2123279cdb Update the postgresql schema for ejabberd 19.02 2019-03-13 17:38:53 +01:00
Greg Karékinian
87b3d3a9c5 Set postgresql password from an encrypted data bag 2019-03-13 17:38:24 +01:00
Greg Karékinian
b82ccbb476 Add our kosmos.org accounts as admins 2019-03-13 15:23:55 +01:00
Greg Karékinian
8be7a9017b Get rid of the 5apps.com config for now 2019-03-13 15:23:08 +01:00
Greg Karékinian
6d09f242f2 Merge branch 'master' into feature/7-ejabberd 2019-03-13 15:11:28 +01:00
Sebastian Kippe
0ea1971b6c
Open up some more ports in firewall 
From some manual playing around.
 2019-02-28 17:19:06 +07:00
Greg Karékinian
2325c9a3b1 Update the postgresql cookbook 2019-02-27 12:40:15 +01:00
Greg Karékinian
98a13b08a1 Merge branch 'master' into feature/7-ejabberd 2019-02-27 12:21:59 +01:00
Greg Karékinian
2a579f62d2 Add a recipe that sets up backups for ejabberd 2019-02-26 14:50:26 +01:00
Greg Karékinian
7a91a43add Update ipfs and ipfs-cluster 2019-02-26 14:50:25 +01:00
Greg Karékinian
886958270f Set REDIS_URL for botka 
It was using the same Redis key to write its brain as hal8000 (`hubot:storage`),
causing scores to not be persisted to Redis. Right now botka is only
saving the online users to the database. It looks like this was only
enabled recently, as the last saved score was from Feb 8

Fixes #14
 2019-02-25 18:29:18 +01:00
Greg Karékinian
5fc158cb5e Install the latest version of the backup gem 2019-02-25 18:28:55 +01:00
Greg Karékinian
33b8b39be2 Update ipfs and ipfs-cluster 2019-02-25 12:50:07 +01:00
Sebastian Kippe
855f51be36
Merge branch 'master' into feature/7-ejabberd 2019-01-27 12:51:09 +08:00
Sebastian Kippe
f082269e66
Use Gitea repo, new branch, new Ruby 2019-01-27 12:46:21 +08:00
Greg Karékinian
9d4e0a420c Add a dependency on the backup cookbook 2019-01-24 19:32:37 +01:00
Greg Karékinian
b70a7fcd8b Get rid of the deprecated set_unless 2019-01-24 19:31:17 +01:00
Greg Karékinian
8f95c220f5 Install Ruby in the backup cookbook 
Also switch to the 5.0 beta version, it works with modern Rubies
 2019-01-24 19:23:09 +01:00
Greg Karékinian
8e01bf58ca Revert "Switch certbot to the Ubuntu packages instead of the Git repo" 
This reverts commit 019bf85ecc6bc56a07863191b204654fc8fddd2a.
 2019-01-24 17:47:32 +01:00
Greg Karékinian
a2b589003b Switch the config to the latest version without comments 
Taken from the 18.12.1 default config
 2019-01-10 16:48:12 +01:00
Greg Karékinian
fc644333ff Reload ejabberd when the config file changes 2019-01-10 16:47:58 +01:00
Greg Karékinian
4cb4a98092 Add initial kosmos-postgresql cookbook 
This is to install PostgreSQL all in one place instead of for each
service that needs it (Mastodon, ejabberd, ...)
 2019-01-09 18:26:50 +01:00
Greg Karékinian
a6ad888a49 Initial kosmos-ejabberd cookbook 
No Let's Encrypt cert generation recipe for now

Hardcoded PostgreSQL password too
 2019-01-09 18:19:03 +01:00
Greg Karékinian
019bf85ecc Switch certbot to the Ubuntu packages instead of the Git repo 2019-01-09 11:41:35 +01:00
Greg Karékinian
56d14748f9 Fix the Let's Encrypt renew hook script 
Only copy over the certs to the prosody directory if it's the 5apps.com
wildcard, not for any 5apps.com subdomain
 2018-12-20 17:26:37 +01:00
Greg Karékinian
9c97cb4a58 Remove empty environment 2018-12-03 16:53:41 +01:00
Greg Karékinian
1e3f84ed9b Merge branch 'master' into feature/5apps_xmpp_certs 2018-12-03 16:52:26 +01:00
Greg Karékinian
ffc6858dcc Do not pass the password on the command line anymore to fix a warning 
Since email notifications work now we do not want warnings. Write an
option file with the credentials for mysqldump
(https://dev.mysql.com/doc/refman/5.7/en/option-files.html)
 2018-11-09 14:08:32 +01:00
Greg Karékinian
7073e5d574 Fix backup gem notifications failing 
This was caused by a bogus PATH that did not include /usr/sbin. The root
user's default PATH includes that, so /usr/sbin/sendmail provided by
postfix is in it

Fixes #27
 2018-11-09 14:08:32 +01:00
Greg Karékinian
81c68a9609 Merge branch 'master' into feature/5apps_xmpp_certs 2018-11-08 14:13:09 +01:00
Sebastian Kippe
90851fb7de Update Mastodon's Ruby 2018-11-01 12:19:30 +01:00
Greg Karékinian
3ce78a9ef4 Merge branch 'master' into feature/25-ipfs_cluster 2018-10-26 17:54:05 +02:00
Greg Karékinian
5e973b6875 Use the kosmos-ipfs recipe in the hal8000 recipe 
This changes the port to not conflict with hubot and sets the gateway to
be writable
 2018-10-26 17:49:06 +02:00
Greg Karékinian
a7871770b8 Remove an unnecessary require and letsencrypt recipe 
This way kosmos-ipfs::default can be used without adding the Let's
Encrypt certificate
 2018-10-26 17:46:47 +02:00
Sebastian Kippe
c0358f5c9b Split hubot into separate recipes, add ipfs to hal8000 2018-10-26 17:40:33 +02:00
Greg Karékinian
4a42fc4ae3 Merge branch 'master' into feature/25-ipfs_cluster 2018-10-26 16:46:44 +02:00
Greg Karékinian
d236d138dc Set the S3 credentials to write the new oncall file 2018-10-26 13:38:12 +02:00
Sebastian Kippe
c90ccfcf9e Merge branch 'feature/ipfs' 2018-09-09 15:47:26 +08:00
Sebastian Kippe
4bccf4dd88 Fix missing Mastodon/PosgreSQL backups 
The backup cookbook was incomplete, and also there was no database
configured to be backed up.
 2018-09-08 12:54:51 +08:00
Greg Karékinian
185649a5f9 Automatically generate a Let's Encrypt cert for all 5apps xmpp domains 
Uses the Gandi LiveDNS API
 2018-09-04 17:38:17 +02:00
Sebastian Kippe
214e69427e Open up port for Prosody HTTP uploads 2018-09-04 14:14:02 +08:00
Greg Karékinian
e6a3460a2c Make the number of sidekiq threads configurable, bump to 25 2018-09-03 19:11:42 +02:00
Greg Karékinian
2f87e7c07c Add the ability to override the IPFS port that nginx connects to 
This allows us to use the API proxy from the cluster
 2018-08-16 15:59:44 +02:00
Greg Karékinian
f31322ab81 Move the firewall rule for ipfs p2p to the right recipe 2018-08-16 15:59:06 +02:00
Greg Karékinian
741c4a5192 Move the ipfs cookbook to its own GitHub repository 2018-08-13 12:05:50 +02:00
Greg Karékinian
de32a7c595 Remove the Let's Encrypt recipe from the default one 
We only need one node with a TLS cert
 2018-08-13 12:05:11 +02:00
Greg Karékinian
b36e6a718a Add a recipe that sets up the cluster and enables the firewall 2018-08-13 12:05:00 +02:00
Greg Karékinian
7a8042e356 Add initial IPFS Cluster support 
It uses an encrypted data bag to store the cluster secret that has to be
the same on all members of a cluster. It installs ipfs-cluster-service
and ipfs-cluster-ctl and starts the cluster

Refs #25
 2018-08-06 18:05:44 +02:00
Greg Karékinian
d0f2275ebb Fix the ipfs config 
The whole thing was inconsistent and didn't work when creating a server
from scratch
 2018-08-06 12:14:20 +02:00