Commit graph

81 commits

Author SHA1 Message Date
0a67d1ba01
Update reverse proxy. 2024-03-02 11:57:21 +01:00
d211d596c4
nftables: Bump burst to 10 packets. 2024-02-25 19:28:21 +01:00
bf6b958ed7
Reverse proxy: Etebase add admin page + Remove Matrix to Element redirection. 2024-02-25 19:27:24 +01:00
fc7e2ec06d
Update homepage role for V2. 2024-02-25 19:15:58 +01:00
675762fe6d
nftables: Split rate limiting rules into multiple lines. 2024-02-25 19:07:39 +01:00
d7190fcf6e
Roles: Move update tasks to update.yml for consistency.
Roles which require backup (etebase, synapse & vaultwarden) have their
tasks splitted into two files (backup.yml & update.yml), which are
executed based on the value of run_backup & run_update variables.

For consistency, move the update tasks to update.yml for every role,
even if they do not have any backup task.
2024-02-23 16:50:51 +01:00
7d78e00d71
Add a task to show which image(s) got pulled. 2024-02-23 15:15:30 +01:00
c4ea834bf6
Split image(s) pulling & container(s) recreation for better clarity. 2024-02-23 14:35:09 +01:00
93c291289c
Run backup before recreating container(s) if a new image has been downloaded. 2024-02-23 14:29:10 +01:00
81cd44918e
Add Etebase backup tasks. 2024-02-23 12:51:17 +01:00
6a4dd7cd2b
Etebase: Add etebase-server.ini template.
Some environment variables set in docker compose file (TIME_ZONE,
ALLOWED_HOSTS) are used only if
the etebase-server.ini file doesn't exist, which can be misleading.

If we change these variables after the etebase-server.ini file has been
generated, the settings won't be updated in the config file.

Templating this file allows changing these settings after the first run.
2024-02-23 12:41:39 +01:00
0460ac0840
Add Synapse backup tasks. 2024-02-23 12:17:32 +01:00
1408698d53
nftables: Add blackhole 2024-02-23 11:32:00 +01:00
e31b9b260d
Add borg backup playbook/roles/tasks + Implement for Vaultwarden. 2024-02-22 19:09:43 +01:00
baab29b4a5
SearXNG: Remove some mentally impaired search engines. 2024-02-22 17:16:37 +01:00
4c3f1404a1
Update (& fix) dockerd role. 2024-02-21 21:56:48 +01:00
Viyurz
853d1b20bb Update NGINX worker_connections, worker_rlimit_nofile & keepalive_timeout. 2024-02-21 09:21:47 +01:00
Viyurz
7baeedaebb SearXNG: Remove unused CAP_ADD & CAP_DROP. 2024-02-19 11:21:02 +01:00
Viyurz
feebb53402 Syncthing: Add relaysrv with nftables forwarding to unprivileged port. 2024-02-19 11:03:16 +01:00
Viyurz
8b8e7505eb Docker: Publish ports to localhost + proxy to ip to reduce lookups. 2024-02-18 22:19:55 +01:00
Viyurz
449dcb61ed Hedgedoc: Serve assets through HTTPS and not plain HTTP. 2024-02-17 19:37:54 +01:00
Viyurz
2cf429ab16 Reverse proxy/Hedgedoc: Enable WebSocket 2024-02-17 19:37:21 +01:00
78c8a8a08d Replace fake spaces by real ones. 2024-02-17 19:09:53 +01:00
4f805ae80d Replace fake spaces by real ones. 2024-02-17 19:09:25 +01:00
c2269f8fd4 Replace fake spaces by real ones. 2024-02-17 19:08:53 +01:00
6cca92b522 Replace fake spaces by real ones. 2024-02-17 19:08:41 +01:00
65f0910d0d Replace fake spaces by real ones. 2024-02-17 19:08:18 +01:00
f6d59ed922 Replace fake spaces by real ones. 2024-02-17 19:07:49 +01:00
d0d8ababb3 Replace fake spaces by real ones. 2024-02-17 19:07:16 +01:00
a45a245556 Replace fake spaces by real ones. 2024-02-17 19:06:41 +01:00
Viyurz
474ca92782 The Great Ansible Update. 2024-02-17 19:01:04 +01:00