Project to manage my services. https://viyurz.fr
Find a file
2024-11-09 10:01:15 +01:00
nginx [NGINX] Add no-cache header on sex 2024-11-04 09:23:59 +01:00
projects [fix] Exclude local Keycloak image from Diun 2024-11-09 10:01:15 +01:00
.gitignore Annihilate ansible 2024-10-16 18:48:51 +02:00
env.yml Annihilate ansible 2024-10-16 18:48:51 +02:00
fstab.part Rename fstab to fstab.part 2024-10-16 19:15:25 +02:00
manage.py Annihilate ansible 2024-10-16 18:48:51 +02:00
monitoring.py [monitoring] Update thresholds 2024-09-21 12:27:20 +02:00
monitoring.service Add monitoring.service 2024-10-01 14:46:22 +02:00
nftables.conf.mako [manage.py] Add setNftables() & sudoRun() 2024-10-01 13:44:53 +02:00
psql-create-db-user.sh [psql-create-db-user.sh] Switch to Podman 2024-10-16 18:52:00 +02:00
README.md Update README 2024-10-08 20:56:26 +02:00
secrets.yml.example Annihilate ansible 2024-10-16 18:48:51 +02:00
setup.sh setup.sh: Disable podman-auto-update service/timer 2024-11-01 10:05:45 +01:00

vps

This repository contains all the files I use to manage my services hosted on viyurz.fr.

Requirements

Initial setup

Run the setup script:

./setup.sh

SSL certificates

Install Certbot:

sudo apt install -y certbot python3-certbot-dns-ovh python3-certbot-nginx

Request certificates:

# For the NGINX reverse proxy
sudo certbot certonly --nginx -d viyurz.fr,*.viyurz.fr

# For Coturn
bash <(wget -q -O - https://github.com/zerossl/zerossl-bot/raw/master/get-zerosslbot.sh)
sudo zerossl-bot certonly --nginx -m viyurz@viyurz.fr -d turn.viyurz.fr

# For the mailserver
sudo certbot certonly --nginx -d mail.viyurz.fr

Secrets

Copy the existing secrets.yml.example file to secrets.yml and fill the variables.

Storagebox

Add credential:

/etc/storagebox-cifs-credentials.txt
---
username=MYUSERNAME
password=MYPASSWORD

Copy the file fstab and edit it accordingly (username and potentially uids/gids).

Backups

Create a cronjob to periodically backup all projects:

0 4 * * * /home/viyurz/vps/manage.py backup ''