Commit graph

61 commits

Author SHA1 Message Date
b2ca0d8333
Bump LLDAP from 2024-03-18 to 2024-04-01. 2024-04-06 22:07:32 +02:00
86346e6840
Lock Syncthing version to '1.*'. 2024-04-06 22:01:03 +02:00
9638075580
Stalwart mail: Migrate to PostgreSQL & LLDAP. 2024-04-06 21:43:34 +02:00
1c1c7c22df
Migrate Hedgedoc from MySQL to PostgreSQL. 2024-04-04 20:26:59 +02:00
a8ea9a6aed
Fix PostgreSQL backup task. 2024-04-04 20:12:25 +02:00
51d9c9ec60
Lock LLDAP version. 2024-04-01 11:05:11 +02:00
1514031f1e
Migrate Synapse database to postgres container. 2024-04-01 11:02:09 +02:00
e3c7c4f38a
Rename role reverse-proxy to nginx + split configuration. 2024-04-01 10:27:06 +02:00
ce753e991c
Lock Authelia to version 4 instead of 4.38. 2024-03-31 18:47:09 +02:00
1292bc6f5c
Lock Stalwart mailserver version. 2024-03-31 18:35:28 +02:00
36bd236beb
NGINX: Change JMAP subdomain from mail to jmap. 2024-03-31 18:34:03 +02:00
aca23d6af6
Add Authelia. 2024-03-31 18:26:05 +02:00
3852896273
Update NGINX proxy headers. 2024-03-31 17:28:53 +02:00
1e26499932
Add LLDAP. 2024-03-31 17:08:42 +02:00
14b484dd37
Replace docker_projects_dir by project_dir variable. 2024-03-30 11:58:59 +01:00
604e836b96
Add {{ docker_host }} variable. 2024-03-30 11:32:39 +01:00
edb616b612
Change PostgreSQL superuser password handling. 2024-03-29 21:25:48 +01:00
7918d3b6f7
Add postgres role/container. 2024-03-29 20:59:20 +01:00
32f7274e39
Hedgedoc: Add missing backups tasks before updating container. 2024-03-26 18:43:35 +01:00
06a963ed38
Synapse: Change PostgreSQL datadir chmod from 770 to 700.
PostgreSQL datadir permissions are changed to 700 by the container.
Set to 700 from the start to stop the task displaying "changed"
everytime the synaspe role is run.
2024-03-17 14:50:22 +01:00
542d4ad5f3
Add email support for Matrix/Synapse. 2024-03-16 20:34:38 +01:00
23eebca05a
Uptime Kuma: Fix db backup file causing app to not start. 2024-03-16 18:58:40 +01:00
1304ffd7b7
Replace occurences of ansible_env['USER'] by host_uid. 2024-03-16 18:52:25 +01:00
a0a7dfbaf6
Vaultwarden: Add email support. 2024-03-16 13:50:04 +01:00
03cf2817a4
Add Stalwart mailserver. 2024-03-16 13:49:47 +01:00
bb4bdfca70
Vaultwarden: Enable admin page & remove SIGNUPS_ALLOWED=false. 2024-03-15 10:52:59 +01:00
de1fd0454a
Add Uptime Kuma role. 2024-03-08 16:35:07 +01:00
826f1507b9
SearXNG: Disable Deviantart by default. 2024-03-08 14:31:20 +01:00
21936246b0
Add Hedgedoc backup tasks. 2024-03-05 11:15:10 +01:00
8d197c8e55
Add docker.io prefix to container image names. 2024-03-02 12:13:30 +01:00
0a67d1ba01
Update reverse proxy. 2024-03-02 11:57:21 +01:00
d211d596c4
nftables: Bump burst to 10 packets. 2024-02-25 19:28:21 +01:00
bf6b958ed7
Reverse proxy: Etebase add admin page + Remove Matrix to Element redirection. 2024-02-25 19:27:24 +01:00
fc7e2ec06d
Update homepage role for V2. 2024-02-25 19:15:58 +01:00
675762fe6d
nftables: Split rate limiting rules into multiple lines. 2024-02-25 19:07:39 +01:00
d7190fcf6e
Roles: Move update tasks to update.yml for consistency.
Roles which require backup (etebase, synapse & vaultwarden) have their
tasks splitted into two files (backup.yml & update.yml), which are
executed based on the value of run_backup & run_update variables.

For consistency, move the update tasks to update.yml for every role,
even if they do not have any backup task.
2024-02-23 16:50:51 +01:00
7d78e00d71
Add a task to show which image(s) got pulled. 2024-02-23 15:15:30 +01:00
c4ea834bf6
Split image(s) pulling & container(s) recreation for better clarity. 2024-02-23 14:35:09 +01:00
93c291289c
Run backup before recreating container(s) if a new image has been downloaded. 2024-02-23 14:29:10 +01:00
81cd44918e
Add Etebase backup tasks. 2024-02-23 12:51:17 +01:00
6a4dd7cd2b
Etebase: Add etebase-server.ini template.
Some environment variables set in docker compose file (TIME_ZONE,
ALLOWED_HOSTS) are used only if
the etebase-server.ini file doesn't exist, which can be misleading.

If we change these variables after the etebase-server.ini file has been
generated, the settings won't be updated in the config file.

Templating this file allows changing these settings after the first run.
2024-02-23 12:41:39 +01:00
0460ac0840
Add Synapse backup tasks. 2024-02-23 12:17:32 +01:00
1408698d53
nftables: Add blackhole 2024-02-23 11:32:00 +01:00
e31b9b260d
Add borg backup playbook/roles/tasks + Implement for Vaultwarden. 2024-02-22 19:09:43 +01:00
baab29b4a5
SearXNG: Remove some mentally impaired search engines. 2024-02-22 17:16:37 +01:00
4c3f1404a1
Update (& fix) dockerd role. 2024-02-21 21:56:48 +01:00
Viyurz
853d1b20bb Update NGINX worker_connections, worker_rlimit_nofile & keepalive_timeout. 2024-02-21 09:21:47 +01:00
Viyurz
7baeedaebb SearXNG: Remove unused CAP_ADD & CAP_DROP. 2024-02-19 11:21:02 +01:00
Viyurz
feebb53402 Syncthing: Add relaysrv with nftables forwarding to unprivileged port. 2024-02-19 11:03:16 +01:00
Viyurz
8b8e7505eb Docker: Publish ports to localhost + proxy to ip to reduce lookups. 2024-02-18 22:19:55 +01:00