2bd80bcfed
Simplify libvirt role configuration
2026-02-08 13:43:05 -05:00
46e289d249
Add podman_compose tag for deployments
2026-02-02 23:47:53 -05:00
e7dd861d7a
Add SELinux certbot_acmesh bool for Certbot DNS-01
2026-01-25 15:59:36 -05:00
cb828bdf53
Fix SELinux context for Cloudflare API files
2026-01-25 15:27:12 -05:00
213e7ed175
Fix podman SSH key paths and add registry support
...
- Configure SELinux to permit nginx network connections
2026-01-25 13:01:29 -05:00
e2e5fdcd67
Add WireGuard routing and Podman playbook
2026-01-15 00:47:04 -05:00
39e8f78adf
Add SELinux support to the base role
2026-01-13 01:07:29 -05:00
ac33f8bf7d
Optional IPv6 in nginx confs
2026-01-10 10:48:29 -05:00
d3a6b22199
Fix ansible-lint warnings in base and proxy roles
2026-01-10 10:36:08 -05:00
a3f723885d
Prefix base role variables
2025-12-31 19:11:58 -05:00
2298ca008e
Add users tag to user management tasks
2025-11-26 20:07:28 -05:00
c713317e49
Add cron job deployment to base role
2025-11-24 16:35:11 -05:00
e5541315ec
Implement Git-based script deployment system
2025-11-24 15:13:58 -05:00
00814cd6b5
Implement Podman-based Docker Compose projects
2025-11-17 22:15:26 -05:00
6c3aa6d257
Fix boolean defaults in Ansible conditionals
2025-11-07 21:48:21 -05:00
337aa57c6f
Add docker tag to compose deployment tasks
2025-11-07 21:22:49 -05:00
d954c64e23
Add Podman deployment configuration
2025-08-07 00:24:58 -04:00
ccf6b10a0e
Add GPG key and reorganize dockerbox configuration
...
- Add new primary GPG key in dev config for compose repos
- Slight reorganization of the dockerbox production playbook
- Remove group management in the docker role
- Move HSTS inside the location block
- Add git ignore entry for .ansible files
- Add X-Forwarded-Proto proxy header
2025-03-26 22:07:06 -04:00
bd8eca0466
Remove redundant group management for Docker users
...
- Minor formatting updated
2025-01-19 17:48:45 -05:00
56c3721a5e
Add flexible home and group controls for users
2025-01-19 16:28:54 -05:00
77c9b12186
Add multi-domain support for Jellyfin
...
- Allow Jellyfin to operate on multiple domains via Host rule config
- Move Cloudflare API tokens from Ansible inventory to manual file
- Minor formatting
2024-12-29 02:22:46 -05:00
3102c621f0
Add optional IP restriction for nginx site configs
2024-10-19 21:08:15 -04:00
e3f03edf3f
Use file-based preshared keys for WireGuard
...
- Include proxy role in standard Docker playbook
2024-10-13 22:27:27 -04:00
f481a965dd
Update Samba and WireGuard configuration
...
- Adjust Samba config file permissions to 644
- Introduce PresharedKey option in WireGuard config template
2024-09-10 22:35:20 -04:00
a0aa289c05
Restrict GitHub Actions to a dedicated branch
...
- The Vagrant testing setup on macos-latest is broken
- Temporary measure until fixed or abandoned
2024-09-10 22:11:31 -04:00
324fe0b191
Upgrade Nextcloud setup to use compose files
...
- Integrated MariaDB role into Dockerbox configuration
- Moved proxy role to the end to avoid early endpoint activation
- Temporarily disabled select roles for future re-evaluation
- Introduced flush_handlers task for early MariaDB restart
- Moved a few Nextcloud tasks to handlers
- Configured Nextcloud to utilize the host's MariaDB instance
- Enhanced overall code linting quality
2024-04-21 22:27:48 -04:00
6fbd3c53bb
Add Vagrant cache option for dhparams.pem
2024-03-26 21:51:39 -04:00
01e8e22c01
Prevent running 'vagrant ssh' as root
...
Resolve possible issues with 'vagrant ssh' when executed as root
2024-03-04 23:42:40 -05:00
a31bf233dc
Slight message tweaks in forward-ssh.sh script
2023-12-09 13:16:46 -05:00
60fafed9cd
Update forward-ssh.sh script for Swarm support
...
- Address limitations in Swarm with loopback binding
- Ensure compatibility with localhost DNS wildcard A record
- Enable port forwarding on 80 and 443 using VM IP for Swarm compatibility
- Retain 8443:localhost:8443 for non-Swarm setups
2023-12-09 13:04:07 -05:00
2c00858590
Update README.md
2023-11-18 17:37:27 -05:00
be80681485
Add multi-machine support to forward-ssh.sh
...
- Detects multiple private keys
- Adds validation for all discovered keys
- Defaults to "default" machine, with override via the first parameter
2023-11-05 21:37:33 -05:00
a2e60972c7
Comply with linting on proxy setup
2023-11-05 21:34:19 -05:00
598359854f
Update proxy role to comply with linting
2023-11-03 00:47:06 -04:00
ef812c1877
Add copyright notice on forward-ssh.sh
2023-11-03 00:12:12 -04:00
385e60aee5
Update proxy playbook
2023-11-02 23:29:54 -04:00
5633468f41
Fix linting issues on Docker role
2023-10-22 13:48:20 -04:00
7f91b24adb
Add Debian/Official Docker repo toggle
...
- Default docker_official toggle to false (for now)
- Preempt MariaDB restart before container restarts
- Start containers in a handler
2023-10-22 11:33:05 -04:00
5b09029239
Update base role to pass linting
2023-10-20 21:30:25 -04:00
7adb5f10e9
Update Gitea role for docker_compose_deploy
...
- Add MariaDB to dev playbook
- Set Git user in "users:"
- Define Gitea external compose project
- Forward SSH port in forwarding script
- Create user groups with system users
- Install python3-pymysql for Ansible
- Strip old Gitea deployment methods
- Bind MariaDB to docker0 for Docker access
2023-10-20 15:41:44 -04:00
c3b4321667
Add Gitea dev playbook and host_vars
2023-10-19 16:40:34 -04:00
d05c5d3086
Slight tweaks on Ansible output
2023-10-19 16:36:05 -04:00
ac412f16ef
Simplify the "Import GPG keys" loop
2023-10-19 14:09:10 -04:00
2354a8fb8c
Verify successful GPG imports
2023-10-19 13:37:35 -04:00
251a7c0dd5
Import PGP key and verify git commits
2023-10-19 02:56:36 -04:00
1d8ae8a0b6
Install ntpsec
2023-10-19 01:27:31 -04:00
6b2feaee5e
Hide docker-compose secrets from diff output
2023-10-18 23:03:52 -04:00
31e0538b84
Add locale configuration tasks to base role
2023-10-18 16:32:09 -04:00
a65c4b9cf6
Handle Ansible undefined loop variable
...
- Default docker_compose_deploy to empty list if undefined
- Add conditional check to avoid looping through an empty list
2023-10-10 00:14:52 -04:00
7ee6e4810d
Convert booleans to lowercase
2023-10-10 00:00:00 -04:00
