Commit Graph

148 Commits

Author SHA1 Message Date
b4393a4567
Updated Ansible tasks to FQCN format 2023-05-03 23:27:03 -04:00
81d2ea447a
Add mediaserver, rm .gitignore, FQCN, Jellyfin
- Added development "mediaserver" playbook for testing
- rm .gitignore in roles dir since no external ansible roles are used
- Update a part of the base role to use FQCN for linting
- Added "jellyfin" role to install Jellyfin with docker-compose
- Updated Traefik to use the loopback for default web entry points
- Simplified Traefik docker-compose vars, Ansible sets defaults
2023-04-26 02:26:50 -04:00
9512212b84
Refactor Traefik deploy: docker-compose + systemd
- Replace docker_container ansible with new setup
- Add option to disable HTTPS for alternate reverse proxy use
2023-04-21 03:04:53 -04:00
c67a39982e
Option to enable websockets for the noVNC console 2022-12-06 00:15:10 -05:00
f68f57d0cf
ROOT_URL should have HTTPS for the clone URL 2022-09-18 15:21:16 -04:00
b9f9b0bf3c
Update TLS settings in nginx proxy 2022-08-27 18:56:12 -04:00
4f4a341b05
Add client_max_body_size for Nextcloud 2022-08-19 01:27:55 -04:00
cab6ab2d8e
Strip auth header and update external config 2022-08-19 00:51:05 -04:00
95f54b7f0a
Add Traefik toggles 2022-08-18 23:32:37 -04:00
7522c333da
Disable Traefik LE resolver and HSTS 2022-08-18 21:53:38 -04:00
344b79e97f
Add base domain to the wildcard certificate 2022-08-17 02:17:36 -04:00
e4fed78193
Remove basic auth on static nginx sites 2022-08-17 01:40:11 -04:00
85a6c3894a
Add basic auth and ignore backend SSL errors 2022-08-17 01:15:15 -04:00
7677bc25fa
Add WireGuard firewall rule 2022-08-13 00:19:24 -04:00
b255680a7a
Use host MariaDB in Gitea container 2022-08-11 21:04:07 -04:00
9eefad0e87
Install Fail2ban IP allow list 2022-06-28 23:43:58 -04:00
8362230eb4
Add nginx proxy server 2022-06-27 20:21:25 -04:00
82df91305a
Install aggressive Fail2ban jail for SSH 2022-06-18 19:47:02 -04:00
dd9f84d498
Create initial log files for fail2ban 2022-06-07 00:25:47 -04:00
b52ccabd22
Add Fail2ban to Gitea and Bitwarden 2022-05-28 02:31:41 -04:00
eccd6b7874
Add reverse proxy settings for Gitea and Bitwarden 2022-05-28 00:18:15 -04:00
3a92921932
Minor cleanup 2022-05-27 23:14:06 -04:00
330f2b5a91
Add X-Forwarded-For proxy header 2022-05-27 22:33:35 -04:00
45465ad26b
Add the ufw firewall 2022-05-27 16:29:27 -04:00
d7838563a1
Gitea SSH container passthrough 2022-05-27 02:28:51 -04:00
03a57d2531
Only create LE directory if production is true 2022-05-27 00:06:09 -04:00
e346180b13
Add Bitwarden systemd service 2022-05-27 00:03:49 -04:00
be6e1596c5
Rehaul Gitea role for compose and PostgreSQL 2022-05-27 00:02:45 -04:00
dc520a09e9
Add generic docker-compose systemd service 2022-05-26 23:50:14 -04:00
c0be314268
Add PostgreSQL server role 2022-05-26 23:49:06 -04:00
9aca035f2d
Redirect HTTP to HTTPS 2022-05-26 23:32:25 -04:00
209ff57a4a
Determine wildcard cert paths and tidy nginx role 2022-05-23 22:33:17 -04:00
9a4aece442
Use DNS-01 on Cloudflare for wildcard LE certs 2022-05-23 03:32:56 -04:00
acd2cefb1e
Setup nginx reverse proxy 2022-05-22 00:19:56 -04:00
cd11567164
Fix broken Bitwarden provision 2022-05-19 23:19:09 -04:00
1c321f6ef7
Use Debian repositories for Docker 2022-05-19 21:06:34 -04:00
4dbc6e3a72
Default Java to 16 for MC 1.17 using AdoptOpenJDK 2021-07-16 18:44:28 -04:00
09dd034b2c
Add optional btrfs support 2021-06-24 00:37:12 -04:00
d87eb4f8cd
Dynamic Java options on Minecraft systemd service 2021-06-21 22:36:35 -04:00
f44ac239d9
Minecraft modpacks.ch server management 2021-06-21 22:02:42 -04:00
6a73e4120e
Email rsnapshot backup reports 2021-06-08 00:33:55 -04:00
38d1cd78e1
Fix mismatch with the ansible cron interface 2021-06-04 19:24:27 -04:00
d9ab865fd9
Use a list for the expected ordering of intervals 2021-06-04 00:50:14 -04:00
828539dceb
Implement rsnapshot backups on infrastructure 2021-06-03 20:38:56 -04:00
3dc0e04ab4
Manage Minecraft servers with systemd 2021-05-13 03:35:00 -04:00
32455e8016
Remain a monolithic project for now 2021-05-12 17:31:49 -04:00
96e7a0f8d2
Restart WireGuard on configuration update 2021-05-07 02:38:49 -04:00
e3a89aecc2
Add WireGuard VPN 2021-05-07 00:24:52 -04:00
6bcc37732d
Add routing for external non-docker websites 2021-04-16 22:44:20 -04:00
44ec2ae197
Simplify to a single network interface template 2021-04-16 01:40:50 -04:00