7918d3b6f7
Add postgres role/container.
2024-03-29 20:59:20 +01:00
a24851a8b1
Syncthing: Change TCP port to 18880 from 5432.
2024-03-29 19:12:21 +01:00
32f7274e39
Hedgedoc: Add missing backups tasks before updating container.
2024-03-26 18:43:35 +01:00
63166a5fc2
README: Add note for SMTP port 25 listener.
2024-03-18 09:27:58 +01:00
06a963ed38
Synapse: Change PostgreSQL datadir chmod from 770 to 700.
...
PostgreSQL datadir permissions are changed to 700 by the container.
Set to 700 from the start to stop the task displaying "changed"
everytime the synaspe role is run.
2024-03-17 14:50:22 +01:00
542d4ad5f3
Add email support for Matrix/Synapse.
2024-03-16 20:34:38 +01:00
23eebca05a
Uptime Kuma: Fix db backup file causing app to not start.
2024-03-16 18:58:40 +01:00
1304ffd7b7
Replace occurences of ansible_env['USER'] by host_uid.
2024-03-16 18:52:25 +01:00
a0a7dfbaf6
Vaultwarden: Add email support.
2024-03-16 13:50:04 +01:00
03cf2817a4
Add Stalwart mailserver.
2024-03-16 13:49:47 +01:00
bb4bdfca70
Vaultwarden: Enable admin page & remove SIGNUPS_ALLOWED=false.
2024-03-15 10:52:59 +01:00
de1fd0454a
Add Uptime Kuma role.
2024-03-08 16:35:07 +01:00
826f1507b9
SearXNG: Disable Deviantart by default.
2024-03-08 14:31:20 +01:00
21936246b0
Add Hedgedoc backup tasks.
2024-03-05 11:15:10 +01:00
8d197c8e55
Add docker.io prefix to container image names.
2024-03-02 12:13:30 +01:00
30f6f1f3ee
Move nftables to its own playbook.
2024-03-02 12:03:14 +01:00
0a67d1ba01
Update reverse proxy.
2024-03-02 11:57:21 +01:00
d211d596c4
nftables: Bump burst to 10 packets.
2024-02-25 19:28:21 +01:00
bf6b958ed7
Reverse proxy: Etebase add admin page + Remove Matrix to Element redirection.
2024-02-25 19:27:24 +01:00
fc7e2ec06d
Update homepage role for V2.
2024-02-25 19:15:58 +01:00
675762fe6d
nftables: Split rate limiting rules into multiple lines.
2024-02-25 19:07:39 +01:00
d7190fcf6e
Roles: Move update tasks to update.yml for consistency.
...
Roles which require backup (etebase, synapse & vaultwarden) have their
tasks splitted into two files (backup.yml & update.yml), which are
executed based on the value of run_backup & run_update variables.
For consistency, move the update tasks to update.yml for every role,
even if they do not have any backup task.
2024-02-23 16:50:51 +01:00
38ef68ad3d
Remove old backup script.
2024-02-23 15:25:55 +01:00
7d78e00d71
Add a task to show which image(s) got pulled.
2024-02-23 15:15:30 +01:00
c4ea834bf6
Split image(s) pulling & container(s) recreation for better clarity.
2024-02-23 14:35:09 +01:00
93c291289c
Run backup before recreating container(s) if a new image has been downloaded.
2024-02-23 14:29:10 +01:00
81cd44918e
Add Etebase backup tasks.
2024-02-23 12:51:17 +01:00
6a4dd7cd2b
Etebase: Add etebase-server.ini template.
...
Some environment variables set in docker compose file (TIME_ZONE,
ALLOWED_HOSTS) are used only if
the etebase-server.ini file doesn't exist, which can be misleading.
If we change these variables after the etebase-server.ini file has been
generated, the settings won't be updated in the config file.
Templating this file allows changing these settings after the first run.
2024-02-23 12:41:39 +01:00
0460ac0840
Add Synapse backup tasks.
2024-02-23 12:17:32 +01:00
1408698d53
nftables: Add blackhole
2024-02-23 11:32:00 +01:00
5d1d316450
README: Add full crontab entry.
2024-02-23 09:46:48 +01:00
e31b9b260d
Add borg backup playbook/roles/tasks + Implement for Vaultwarden.
2024-02-22 19:09:43 +01:00
baab29b4a5
SearXNG: Remove some mentally impaired search engines.
2024-02-22 17:16:37 +01:00
4c3f1404a1
Update (& fix) dockerd role.
2024-02-21 21:56:48 +01:00
Viyurz
853d1b20bb
Update NGINX worker_connections, worker_rlimit_nofile & keepalive_timeout.
2024-02-21 09:21:47 +01:00
Viyurz
7baeedaebb
SearXNG: Remove unused CAP_ADD & CAP_DROP.
2024-02-19 11:21:02 +01:00
Viyurz
feebb53402
Syncthing: Add relaysrv with nftables forwarding to unprivileged port.
2024-02-19 11:03:16 +01:00
Viyurz
8b8e7505eb
Docker: Publish ports to localhost + proxy to ip to reduce lookups.
2024-02-18 22:19:55 +01:00
Viyurz
449dcb61ed
Hedgedoc: Serve assets through HTTPS and not plain HTTP.
2024-02-17 19:37:54 +01:00
Viyurz
2cf429ab16
Reverse proxy/Hedgedoc: Enable WebSocket
2024-02-17 19:37:21 +01:00
78c8a8a08d
Replace fake spaces by real ones.
2024-02-17 19:09:53 +01:00
4f805ae80d
Replace fake spaces by real ones.
2024-02-17 19:09:25 +01:00
c2269f8fd4
Replace fake spaces by real ones.
2024-02-17 19:08:53 +01:00
6cca92b522
Replace fake spaces by real ones.
2024-02-17 19:08:41 +01:00
65f0910d0d
Replace fake spaces by real ones.
2024-02-17 19:08:18 +01:00
f6d59ed922
Replace fake spaces by real ones.
2024-02-17 19:07:49 +01:00
d0d8ababb3
Replace fake spaces by real ones.
2024-02-17 19:07:16 +01:00
a45a245556
Replace fake spaces by real ones.
2024-02-17 19:06:41 +01:00
34aee3e672
Replace fake spaces by real ones.
2024-02-17 19:05:39 +01:00
Viyurz
474ca92782
The Great Ansible Update.
2024-02-17 19:01:04 +01:00
