flyingscorpio/self-hosting
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
323 commits 1 branch 0 tags 1.1 MiB
Commit graph

288 commits

Author SHA1 Message Date
Tunui Franken
3c1160cd23 [tunuifranken] Change unix user to tunuifranken 2024-04-07 17:08:53 +02:00
Tunui Franken
808a40ac68 Set more specific sudoers permissions for git user 2024-04-07 17:08:53 +02:00
Tunui Franken
e0cfde4c9f Permit to define forgejo_dump_path with ansible-playbook -e ... 2024-04-07 12:09:50 +02:00
Tunui Franken
cbc1712a63 Minor change 2024-04-07 11:51:36 +02:00
Tunui Franken
49b7fea2ee Fix forgejo .asc file download as user git 2024-04-07 11:51:19 +02:00
Tunui Franken
0b9f2f6197 Minor change 2024-04-01 17:11:27 +02:00
Tunui Franken
c3ebf02781 Add missing apache2 modules for forgejo 2024-04-01 16:42:09 +02:00
Tunui Franken
f27a0901c5 Conditionnaly run DNS-01 or HTTP-01 for certificates 2024-03-08 09:59:23 +01:00
Tunui Franken
f64784fafa Minor naming change 2024-03-07 18:22:19 +01:00
Tunui Franken
ab2ec4f933 Add certbot command for HTTP-01 challenge 2024-03-07 18:11:27 +01:00
Tunui Franken
2b80d8b762 Add post-hook for letsencrypt certificate 2024-03-07 17:59:06 +01:00
Tunui Franken
0226b9a0a2 Clarify variables used in letsencrypt roles 2024-03-07 15:18:05 +01:00
Tunui Franken
393eafb5c0 Rename role setup_certbot => add_cert_http_01 2024-03-07 15:01:38 +01:00
Tunui Franken
8adc6a74c5 Rename role deploy_certificate => add_cert_dns_01 2024-03-07 15:01:38 +01:00
Tunui Franken
b453e559c9 Disable forgejo mailer functionality, as long as mailserver role isn't ready 2024-03-05 15:33:26 +01:00
Tunui Franken
d7deda69a2 Fix download asc file needs root 2024-03-05 14:27:40 +01:00
Tunui Franken
bcef50c199 Restart postfix instead of reloading 2024-01-27 13:49:09 +01:00
Tunui Franken
47dd5c4676 Add postfix master.cf 2024-01-27 13:47:55 +01:00
Tunui Franken
0ed9279666 Use template for postfix main.cf 2024-01-27 13:47:37 +01:00
Tunui Franken
9344a95d95 Move execution of postgresql script to a handler 2024-01-17 10:01:47 +01:00
Tunui Franken
f01e29fd31 Use hashes for default created virtual_users 2024-01-17 09:53:35 +01:00
Tunui Franken
3641d2dd35 Use var for the main virtual_domain 2024-01-12 20:51:34 +01:00
Tunui Franken
96b171baab [mailserver_database tables] Add UNIQUE constraints and insert default data 2024-01-12 20:51:34 +01:00
Tunui Franken
74cdf27ad8 Add dovecot authentication for Postfix 2024-01-12 20:51:34 +01:00
Tunui Franken
58b1237167 Group mailserver_database vars in a dict 2024-01-10 09:24:18 +01:00
Tunui Franken
0214544027 Add quota-warning script and config 2024-01-09 19:25:54 +01:00
Tunui Franken
56bb12f2c6 Correct dovecot db connexion query 2024-01-09 19:14:39 +01:00
Tunui Franken
a995be66fb Add smtpd_recipient_restrictions to add quota-status 2024-01-09 19:09:18 +01:00
Tunui Franken
658c1ce9b4 Add dovecot quota config 2024-01-09 18:54:43 +01:00
Tunui Franken
9ce0ae045f Add sieve plugin to dovecot 2024-01-09 16:28:39 +01:00
Tunui Franken
6891a6e771 Add Postfix-Dovecot LMTP config 2024-01-09 15:52:43 +01:00
Tunui Franken
17eebf1abf Add dovecot-sql config 2024-01-09 14:55:33 +01:00
Tunui Franken
4b2aa0db8a Use letsencrypt staging server when testing 2024-01-09 14:24:29 +01:00
flyingscorpio@clevo
ba2749b4a7 Add role mailserver_dovecot 2024-01-08 17:06:23 +01:00
flyingscorpio@clevo
0a0c815268 Add postfix configs 2024-01-08 11:19:51 +01:00
flyingscorpio@clevo
91610ff937 Rename variables 2024-01-08 10:06:48 +01:00
flyingscorpio@clevo
c56a2f58dc Rename role mailserver => mailserver_postfix 2024-01-08 09:43:09 +01:00
flyingscorpio@clevo
58146917b9 Remove old mail role 2024-01-08 09:36:42 +01:00
Tunui Franken
90146d49a9 Create mailserver tables 2024-01-05 21:40:13 +01:00
Tunui Franken
13827e454e Add mailserver_database tables 2024-01-05 20:10:29 +01:00
Tunui Franken
ca0577a860 Create mailserver_database db and users 2024-01-05 20:10:16 +01:00
Tunui Franken
c539644f53 Add mailserver_database role 2024-01-05 18:58:27 +01:00
Tunui Franken
4eb599fc9c Rename srv-mail => mailserver 2024-01-05 18:37:10 +01:00
Tunui Franken
67802af43e Add role mail_server 2024-01-04 19:44:40 +01:00
flyingscorpio@clevo
31b92d645f Remove local resolution entries 2023-12-04 12:35:14 +01:00
flyingscorpio@clevo
0ea59b67b0 Fix inclusion of vault variables that are now defaults 2023-12-04 12:08:29 +01:00
flyingscorpio@clevo
66dfee5df4 Change vars to defaults 2023-12-04 12:08:29 +01:00
flyingscorpio@clevo
e4c046934d Rename role 'common' => 'common_handlers', use 'always' tag 2023-12-04 09:58:18 +01:00
Tunui Franken
1eff115b7b Add systemd override to certbot.service to run certbot in the venv 2023-12-01 20:01:42 +01:00
Tunui Franken
cb1cae63c7 Replace gandi_live_dns with infomaniak's certbot authenticator 
We now use a dns-01 challenge in all cases
 2023-12-01 19:42:23 +01:00
Tunui Franken
f0bd51e720 Rename some variables 2023-10-01 17:30:38 +02:00
Tunui Franken
fe746e67f2 Update forgejo version downloading, as it can now be guessed from the codeberg tag 2023-10-01 17:16:27 +02:00
flyingscorpio@clevo
b07f891860 Bump forgejo to 1.19.1-0 2023-04-28 15:42:01 +02:00
flyingscorpio@clevo
593363373e Bump forgejo version to v1.19.0-2 2023-03-27 21:26:47 +02:00
flyingscorpio@clevo
3136bf34c2 Bump forgejo to 1.18.3-2 2023-02-18 11:22:22 +01:00
flyingscorpio@clevo
60a83ad9a3 Include role to deplay certificate for mail 2023-01-26 09:02:56 +01:00
flyingscorpio@clevo
93ee736c80 Install postfix 2023-01-26 08:54:45 +01:00
flyingscorpio@clevo
cba5d817f5 Don't update cache 2023-01-26 08:39:18 +01:00
flyingscorpio@clevo
254b56259f Restart forgejo when we copied new binary 2023-01-26 08:28:01 +01:00
flyingscorpio@clevo
1e5020e70a Don't skip attachment data when backing up forgejo 2023-01-24 08:58:05 +01:00
flyingscorpio@clevo
3f639d7973 Bump forgejo version to 1.18.2-1 2023-01-23 11:51:42 +01:00
flyingscorpio@clevo
092a1fbc85 Put vhost in subdir of templates 2023-01-22 12:23:13 +01:00
flyingscorpio@clevo
d5f527442a Don't comment certificate in apache vhost 2023-01-22 12:21:24 +01:00
flyingscorpio@clevo
06a210cbd2 Use deploy_certificate role in forgejo 2023-01-20 23:22:16 +01:00
flyingscorpio@clevo
9d08db6ae3 Move certificate creation for tunuifranken.info to generic role 2023-01-20 22:50:24 +01:00
flyingscorpio@clevo
ba3fd694dd Fix error on git clone 2023-01-20 16:34:19 +01:00
flyingscorpio@clevo
73c8ccb0ab Use correct archive paths with symlinks in live for letsencrypt 2023-01-20 14:52:15 +01:00
flyingscorpio@clevo
22d541373a Add letsencrypt renewal config for tunuifranken.info 2023-01-20 14:17:46 +01:00
flyingscorpio@clevo
af3c5d696f Add checks for when the challenge isn't changed 2023-01-20 12:02:47 +01:00
flyingscorpio@clevo
2f2313d401 Add account_email for acme challenge 2023-01-20 12:02:33 +01:00
flyingscorpio@clevo
b534c6d960 Activate cert and key for tunuifranken.info 2023-01-20 09:57:39 +01:00
flyingscorpio@clevo
68eb6e331d Fix letsencrypt challenge, using different account privkey 2023-01-20 09:26:42 +01:00
flyingscorpio@clevo
b918e48ca3 Almost finish dns-01 letsencrypt challenge for tunuifranken.info 
Account_key not set correctly, probably need to use acme_account too
 2023-01-19 17:37:21 +01:00
flyingscorpio@clevo
e71ade9964 Finish http-01 letsencrypt challenge for tunuifranken.info 2023-01-19 16:14:31 +01:00
flyingscorpio@clevo
f8a1592b69 Start tasks for letsencrypt for tunuifranken.info 2023-01-19 12:07:10 +01:00
flyingscorpio@clevo
494f388130 Split up local dns resolutions into the roles that need them 2023-01-19 10:43:26 +01:00
flyingscorpio@clevo
65c5a5112c Add ssh key for cloning tunuifranken.info 2023-01-19 10:40:55 +01:00
flyingscorpio@clevo
c39c717d52 Remove role gitea 2023-01-19 10:22:30 +01:00
flyingscorpio@clevo
f784701b74 Add local DNS resolutions for forgejo 2023-01-19 10:15:49 +01:00
flyingscorpio@clevo
b473c79476 Add ssh tasks for forgejo 2023-01-19 10:02:17 +01:00
flyingscorpio@clevo
eb1d7143ed Bump forgejo to 1.18.1-0 2023-01-19 08:38:41 +01:00
flyingscorpio@clevo
4a2a5b349e Add ssh tasks for forgejo 2023-01-18 19:35:33 +01:00
flyingscorpio@clevo
5ead3d5701 Restoring config file overwrites the config file we just deployed 2023-01-18 16:05:16 +01:00
flyingscorpio@clevo
e87a453e88 Add APP_DATA_PATH to forgejo config 2023-01-18 15:55:54 +01:00
flyingscorpio@clevo
ead3ac50e9 Use mysqldump instead of gitea's xorm for forgejo backup 2023-01-18 15:00:27 +01:00
flyingscorpio@clevo
a1218be960 Remove useless import 2023-01-18 13:10:21 +01:00
flyingscorpio@clevo
0192344ecc Add logrotate for forgejo 2023-01-18 11:20:11 +01:00
flyingscorpio@clevo
bf6ddb08e6 Add repos tasks for forgejo 2023-01-18 10:56:22 +01:00
flyingscorpio@clevo
60461a192b Add fail2ban tasks for forgejo 2023-01-18 10:18:47 +01:00
flyingscorpio@clevo
baf8bf386b Add start tasks for forgejo 2023-01-18 10:01:47 +01:00
flyingscorpio@clevo
06088a9e50 Add backup tasks for forgejo 2023-01-17 16:59:32 +01:00
flyingscorpio@clevo
1cce9c2457 Minor renaming 2023-01-17 16:18:10 +01:00
flyingscorpio@clevo
19aae836da Add binary installation for forgejo 2023-01-17 16:16:42 +01:00
flyingscorpio@clevo
16241c9037 Start new role forgejo 2023-01-16 14:36:54 +01:00
flyingscorpio@clevo
292fc3adba Use variables for gitea directories 2023-01-16 14:32:13 +01:00
flyingscorpio@clevo
97aa822ee6 At startup, fail2ban is not started so nftables post-hook exits with 1 2023-01-16 13:34:38 +01:00
flyingscorpio@clevo
947723155e Fix some errors in gitea playbook 2023-01-16 10:37:40 +01:00
flyingscorpio@clevo
230a42bc24 Update vars after gitea 1.18.0 breaking changes 2022-12-30 22:25:00 +01:00
flyingscorpio@clevo
90814de597 Don't use date in gitea dump pushing, use latest present dump on the server instead 2022-12-28 10:53:52 +01:00
flyingscorpio@clevo
d4c2cc1e75 Move some tasks from gitea to gitea repos 2022-12-28 10:29:16 +01:00