kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 30 Pull Requests 3 Projects 2 Activity
1,128 Commits 7 Branches 0 Tags
Commit Graph

1128 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Sebastian Kippe
bbbd0f7408
Change default username 2020-08-16 16:25:06 +02:00
Sebastian Kippe
476316e13b
Always use latest/stable channel for bitcoind snap 2020-08-16 16:20:43 +02:00
Sebastian Kippe
4889f40c6a
WIP 2020-08-16 16:18:01 +02:00
Sebastian Kippe
c8122a44f1
Add systemd service 
Plus some refactoring
 2020-08-16 16:14:18 +02:00
Sebastian Kippe
4a6a02c137
Use 0.19 stable channel 
Instead of relying on the default channel
 2020-08-16 16:14:18 +02:00
Greg Karékinian
e31f480f27
Fix the attribute name 2020-08-16 16:14:18 +02:00
Greg Karékinian
aedf7bcb62
Create the snap mount directory in the user's home 2020-08-16 16:14:18 +02:00
Greg Karékinian
069246cf41
Create the bitcoind user and its home directory 2020-08-16 16:14:18 +02:00
Greg Karékinian
1b9a4aad17
Work around a bug in Chef's snap_package resource 
https://github.com/chef/chef/issues/8827

`snap install` returns 0 when a package is already installed, so no need
for a guard clause
 2020-08-16 16:14:17 +02:00
Sebastian Kippe
09527e693b
WIP bitcoind config 2020-08-16 16:14:15 +02:00
Sebastian Kippe
47105b2a1c
Initial version of bitcoin cookbook 2020-08-16 16:13:39 +02:00
greg
2c40ad4591 Merge pull request 'Increase size limit for Gitea uploads/attachments' (#199) from bugfix/188-attachment_size_limit into master 
Reviewed-on: #199
 2020-08-07 16:14:43 +00:00
Sebastian Kippe
9a28a03265
Increase size limit for Gitea uploads/attachments 
The default limit in nginx is only 1MB. This increases it to 20MB.

fixes #188
 2020-08-05 15:53:13 +02:00
raucao
f235aee17a Merge pull request 'Fix comet icon on maintenance page' (#198) from bugfix/61-maintenance_page_logo into master 
Reviewed-on: #198
 2020-08-02 19:05:18 +00:00
Sebastian Kippe
af0717a65b
Fix comet icon on maintenance page 
The data URI declares an SVG source, but this was actually a PNG. Hence
the failure in Chrome. This change turns it into an actual inline SVG
and uses UTF8 encoding instead of base64, because SVG is just text anyway.

fixes #61
 2020-08-02 21:00:10 +02:00
greg
436bb8fcc1 Merge pull request 'Update Gitea to 1.12.3' (#197) from feature/189-gitea_1.12.3 into master 
Reviewed-on: #197
 2020-07-30 10:39:17 +00:00
Greg Karékinian
41fd1576ad Override the header template to remove the Roboto font 
Using the system font instead
 2020-07-30 12:33:09 +02:00
Greg Karékinian
924f67d8a8 Update Gitea to 1.12.3 
Closes #189
 2020-07-30 12:16:31 +02:00
Greg Karékinian
5e5bbe07dc Restart gitea after upgrading it 2020-07-30 12:16:04 +02:00
raucao
c68bf472d4 Merge pull request 'Upgrading centaurus to Ubuntu 20.04' (#196) from feature/195-centaurus_20.04 into master 2020-07-30 10:03:01 +00:00
Greg Karékinian
3f7894bd46 Run Chef again after upgrading centaurus to Ubuntu 20.04 
Closes #195
 2020-07-30 11:59:30 +02:00
Greg Karékinian
44b49ddd57 Upgrade nginx to the latest mainline version 2020-07-30 11:58:52 +02:00
raucao
3563b05932 Merge pull request 'Use the right variable for the TLS cert's domain in kosmos-dirsrv's instance resource' (#194) from bugfix/193-dirsrv_undefined_var into master 2020-07-22 14:16:53 +00:00
Greg Karékinian
d2126f6153 Use the right variable for the TLS cert's domain 
`domain` was undefined. `new_resource.hostname` is ldap.kosmos.org and
is what we need

Fixes #193
 2020-07-22 15:59:27 +02:00
greg
9ec1fe1db4 Merge pull request 'Add PostgreSQL primary server support to the mastodon cookbook' (#187) from feature/186-postgresql_primary_mastodon into master 2020-07-07 15:45:54 +00:00
Greg Karékinian
4583421597 Connect to the PostgreSQL primary server instead of localhost 
Move the db and user creation to its own recipe

Refs #186
 2020-06-26 15:22:14 +02:00
Greg Karékinian
004a6913b4 Remove dependency to an old PostgreSQL in the Systemd unit 
Refs #186
 2020-06-26 15:22:05 +02:00
raucao
6adb910e1b Merge pull request 'Chef base role improvements' (#184) from feature/unattended_upgrades_and_vim into master 2020-06-22 13:07:20 +00:00
raucao
f55fc71765 Merge pull request 'Bootstrap draco.kosmos.org' (#185) from feature/175-draco_bootstrap into master 2020-06-22 13:06:41 +00:00
Greg Karékinian
fb8687b63c Add the postgresql_replica role to draco 2020-06-19 17:33:06 +02:00
Greg Karékinian
f7dfffd967 Add the kosmos_encfs recipe to draco 2020-06-19 17:33:06 +02:00
Greg Karékinian
8386dae46f Add the new Hetzner server, draco.kosmos.org 2020-06-19 17:33:06 +02:00
Greg Karékinian
84cf008bac Install vim 2020-06-19 17:30:02 +02:00
Greg Karékinian
b4357df471 Enable unattended-upgrades (security and updates repositories) 
... with email notifications on failure and logging with syslog
 2020-06-19 17:30:02 +02:00
Greg Karékinian
e7edb5a464 Update apt to 7.3.0 
It now includes unattended-upgrades support
 2020-06-19 17:30:02 +02:00
greg
1b84009958 Merge pull request 'Add PostgreSQL primary support to the kosmos-ejabberd cookbook' (#181) from feature/180-ejabberd_pg_primary into master 2020-06-19 14:46:52 +00:00
greg
01f8af6e38 Merge pull request 'Set the Gitea root URL to HTTPS' (#183) from bugfix/182-gitea_root_url into master 2020-06-15 12:39:29 +00:00
Greg Karékinian
5e483240c3 Set the Gitea root URL to HTTPS 
It fixes U2F security keys support, that was broken because the protocol
did not match

Fixes #182
 2020-06-12 17:22:34 +02:00
Greg Karékinian
ee9c241a4d Add a postgresql_client role 
The role is empty but is used to explicitly define servers that have
access rights to all PostgreSQL databases and users
 2020-06-12 16:54:58 +02:00
Greg Karékinian
6f696d7634 Define access rules in the PostgreSQL primary recipe 
Access is done for the IP of a server for all users and all databases
for ejabberd and gitea
 2020-06-11 18:20:04 +02:00
Greg Karékinian
26097a7584 Use the correct database name for the access rights 2020-06-11 09:00:50 +02:00
Greg Karékinian
1a6ce44758 Create a minimalist ejabberd role for development 
No Let's Encrypt, no backups
 2020-06-10 18:43:34 +02:00
Greg Karékinian
2c21d6255b Add PostgreSQL primary support to the kosmos-ejabberd cookbook 
* Move the PostgreSQL user and database creation to a pg_db recipe
* Generate access rights for the ejabberd servers in the pg_db recipe
* Connect to the PostgreSQL primary instead of localhost

Refs #180
 2020-06-10 18:38:40 +02:00
Greg Karékinian
091a46e972 Do not pass the pgsql_password variable to ejabberd.yml 
The password is only used in the config files for the vhosts
 2020-06-10 18:37:36 +02:00
raucao
81403b7cb9 Merge pull request 'Fix PostgreSQL replica config with encrypted data directory' (#179) from bugfix/postgres_issues into master 2020-06-10 14:04:58 +00:00
Greg Karékinian
a0db6adaf2 Pass the data_directory to the postgresql_server_conf resource 
Previously we were passing it as an additional config, but it is set by
default. The last value was used, the custom one, so the server still
used the correct file
 2020-06-10 14:41:07 +02:00
Greg Karékinian
e3e726097f Do not enable the postgresql@12-main service 
We want it to run only once the encrypted data directory has been
mounted
 2020-06-10 14:41:07 +02:00
Greg Karékinian
dba6629869 Use the attribute from the encfs recipe for the data directory 2020-06-10 14:41:03 +02:00
Greg Karékinian
229e9cfbd2 Add the kosmos_encfs recipe to centaurus 2020-06-10 14:40:01 +02:00
raucao
d88d3b07a5 Merge pull request 'Encrypt PostgreSQL data directory' (#166) from feature/pg_encfs into master 2020-06-08 15:02:58 +00:00