flyingscorpio/self-hosting
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
344 commits 1 branch 0 tags 1.1 MiB
Commit graph

306 commits

Author SHA1 Message Date
Tunui Franken
b0b308a25d Add AcceptEnv sshd_config for forgejo 2024-07-21 00:04:19 +02:00
Tunui Franken
1087698be9 Rename forgejo_backup.sh => forgejo-backup.sh 2024-07-20 22:45:10 +02:00
Tunui Franken
dbb0563248 Redirect forgejo-backup logs in cron, move some files 2024-07-20 22:45:10 +02:00
Tunui Franken
b7fcd6e300 fixup! Move forgejo-backup logs out of log dir 2024-07-08 17:28:26 +02:00
Tunui Franken
7d71495034 Fix name of sql dump file in forgejo backup script 2024-07-08 15:47:18 +02:00
Tunui Franken
babf3aee25 Move forgejo-backup logs out of log dir 
Otherwise the backup includes it's own logs while writing to them
 2024-07-08 10:56:11 +02:00
Tunui Franken
ee361662d0 Make sure some dirs exist before doing forgejo backup 2024-07-08 10:40:11 +02:00
Tunui Franken
8ccf64fbff Allow incoming HTTPS for websites 2024-07-06 20:42:33 +02:00
Tunui Franken
73a730494c Small fixes 2024-07-06 20:41:11 +02:00
Tunui Franken
7e4af01df3 Add sshd_config 2024-07-06 18:10:12 +02:00
Tunui Franken
6fc0f44412 Add bash_aliases to common 2024-04-14 00:07:57 +02:00
Tunui Franken
7f5358e9da Add role common with etckeeper 2024-04-13 23:22:15 +02:00
Tunui Franken
949163ca59 Make forgejo conf file non group readable 2024-04-13 22:46:00 +02:00
Tunui Franken
dac63af2ec Add role "add_cert" to be used instead of add_cert_{dns_01,http_01} 2024-04-09 23:51:18 +02:00
Tunui Franken
b388fa002e Minor change 2024-04-09 20:21:59 +02:00
Tunui Franken
ac1e28aab6 Fix some vars in mailserver_postfix main.cf template 2024-04-07 20:41:25 +02:00
Tunui Franken
0b9a101c02 [forgejo] Enable mailer with dummy protocol while mailserver isn't ready 2024-04-07 20:39:32 +02:00
Tunui Franken
b4ffb1ae86 Reload apache2 after cloning tunuifranken.info 2024-04-07 17:08:53 +02:00
Tunui Franken
3c1160cd23 [tunuifranken] Change unix user to tunuifranken 2024-04-07 17:08:53 +02:00
Tunui Franken
808a40ac68 Set more specific sudoers permissions for git user 2024-04-07 17:08:53 +02:00
Tunui Franken
e0cfde4c9f Permit to define forgejo_dump_path with ansible-playbook -e ... 2024-04-07 12:09:50 +02:00
Tunui Franken
cbc1712a63 Minor change 2024-04-07 11:51:36 +02:00
Tunui Franken
49b7fea2ee Fix forgejo .asc file download as user git 2024-04-07 11:51:19 +02:00
Tunui Franken
0b9f2f6197 Minor change 2024-04-01 17:11:27 +02:00
Tunui Franken
c3ebf02781 Add missing apache2 modules for forgejo 2024-04-01 16:42:09 +02:00
Tunui Franken
f27a0901c5 Conditionnaly run DNS-01 or HTTP-01 for certificates 2024-03-08 09:59:23 +01:00
Tunui Franken
f64784fafa Minor naming change 2024-03-07 18:22:19 +01:00
Tunui Franken
ab2ec4f933 Add certbot command for HTTP-01 challenge 2024-03-07 18:11:27 +01:00
Tunui Franken
2b80d8b762 Add post-hook for letsencrypt certificate 2024-03-07 17:59:06 +01:00
Tunui Franken
0226b9a0a2 Clarify variables used in letsencrypt roles 2024-03-07 15:18:05 +01:00
Tunui Franken
393eafb5c0 Rename role setup_certbot => add_cert_http_01 2024-03-07 15:01:38 +01:00
Tunui Franken
8adc6a74c5 Rename role deploy_certificate => add_cert_dns_01 2024-03-07 15:01:38 +01:00
Tunui Franken
b453e559c9 Disable forgejo mailer functionality, as long as mailserver role isn't ready 2024-03-05 15:33:26 +01:00
Tunui Franken
d7deda69a2 Fix download asc file needs root 2024-03-05 14:27:40 +01:00
Tunui Franken
bcef50c199 Restart postfix instead of reloading 2024-01-27 13:49:09 +01:00
Tunui Franken
47dd5c4676 Add postfix master.cf 2024-01-27 13:47:55 +01:00
Tunui Franken
0ed9279666 Use template for postfix main.cf 2024-01-27 13:47:37 +01:00
Tunui Franken
9344a95d95 Move execution of postgresql script to a handler 2024-01-17 10:01:47 +01:00
Tunui Franken
f01e29fd31 Use hashes for default created virtual_users 2024-01-17 09:53:35 +01:00
Tunui Franken
3641d2dd35 Use var for the main virtual_domain 2024-01-12 20:51:34 +01:00
Tunui Franken
96b171baab [mailserver_database tables] Add UNIQUE constraints and insert default data 2024-01-12 20:51:34 +01:00
Tunui Franken
74cdf27ad8 Add dovecot authentication for Postfix 2024-01-12 20:51:34 +01:00
Tunui Franken
58b1237167 Group mailserver_database vars in a dict 2024-01-10 09:24:18 +01:00
Tunui Franken
0214544027 Add quota-warning script and config 2024-01-09 19:25:54 +01:00
Tunui Franken
56bb12f2c6 Correct dovecot db connexion query 2024-01-09 19:14:39 +01:00
Tunui Franken
a995be66fb Add smtpd_recipient_restrictions to add quota-status 2024-01-09 19:09:18 +01:00
Tunui Franken
658c1ce9b4 Add dovecot quota config 2024-01-09 18:54:43 +01:00
Tunui Franken
9ce0ae045f Add sieve plugin to dovecot 2024-01-09 16:28:39 +01:00
Tunui Franken
6891a6e771 Add Postfix-Dovecot LMTP config 2024-01-09 15:52:43 +01:00
Tunui Franken
17eebf1abf Add dovecot-sql config 2024-01-09 14:55:33 +01:00
Tunui Franken
4b2aa0db8a Use letsencrypt staging server when testing 2024-01-09 14:24:29 +01:00
flyingscorpio@clevo
ba2749b4a7 Add role mailserver_dovecot 2024-01-08 17:06:23 +01:00
flyingscorpio@clevo
0a0c815268 Add postfix configs 2024-01-08 11:19:51 +01:00
flyingscorpio@clevo
91610ff937 Rename variables 2024-01-08 10:06:48 +01:00
flyingscorpio@clevo
c56a2f58dc Rename role mailserver => mailserver_postfix 2024-01-08 09:43:09 +01:00
flyingscorpio@clevo
58146917b9 Remove old mail role 2024-01-08 09:36:42 +01:00
Tunui Franken
90146d49a9 Create mailserver tables 2024-01-05 21:40:13 +01:00
Tunui Franken
13827e454e Add mailserver_database tables 2024-01-05 20:10:29 +01:00
Tunui Franken
ca0577a860 Create mailserver_database db and users 2024-01-05 20:10:16 +01:00
Tunui Franken
c539644f53 Add mailserver_database role 2024-01-05 18:58:27 +01:00
Tunui Franken
4eb599fc9c Rename srv-mail => mailserver 2024-01-05 18:37:10 +01:00
Tunui Franken
67802af43e Add role mail_server 2024-01-04 19:44:40 +01:00
flyingscorpio@clevo
31b92d645f Remove local resolution entries 2023-12-04 12:35:14 +01:00
flyingscorpio@clevo
0ea59b67b0 Fix inclusion of vault variables that are now defaults 2023-12-04 12:08:29 +01:00
flyingscorpio@clevo
66dfee5df4 Change vars to defaults 2023-12-04 12:08:29 +01:00
flyingscorpio@clevo
e4c046934d Rename role 'common' => 'common_handlers', use 'always' tag 2023-12-04 09:58:18 +01:00
Tunui Franken
1eff115b7b Add systemd override to certbot.service to run certbot in the venv 2023-12-01 20:01:42 +01:00
Tunui Franken
cb1cae63c7 Replace gandi_live_dns with infomaniak's certbot authenticator 
We now use a dns-01 challenge in all cases
 2023-12-01 19:42:23 +01:00
Tunui Franken
f0bd51e720 Rename some variables 2023-10-01 17:30:38 +02:00
Tunui Franken
fe746e67f2 Update forgejo version downloading, as it can now be guessed from the codeberg tag 2023-10-01 17:16:27 +02:00
flyingscorpio@clevo
b07f891860 Bump forgejo to 1.19.1-0 2023-04-28 15:42:01 +02:00
flyingscorpio@clevo
593363373e Bump forgejo version to v1.19.0-2 2023-03-27 21:26:47 +02:00
flyingscorpio@clevo
3136bf34c2 Bump forgejo to 1.18.3-2 2023-02-18 11:22:22 +01:00
flyingscorpio@clevo
60a83ad9a3 Include role to deplay certificate for mail 2023-01-26 09:02:56 +01:00
flyingscorpio@clevo
93ee736c80 Install postfix 2023-01-26 08:54:45 +01:00
flyingscorpio@clevo
cba5d817f5 Don't update cache 2023-01-26 08:39:18 +01:00
flyingscorpio@clevo
254b56259f Restart forgejo when we copied new binary 2023-01-26 08:28:01 +01:00
flyingscorpio@clevo
1e5020e70a Don't skip attachment data when backing up forgejo 2023-01-24 08:58:05 +01:00
flyingscorpio@clevo
3f639d7973 Bump forgejo version to 1.18.2-1 2023-01-23 11:51:42 +01:00
flyingscorpio@clevo
092a1fbc85 Put vhost in subdir of templates 2023-01-22 12:23:13 +01:00
flyingscorpio@clevo
d5f527442a Don't comment certificate in apache vhost 2023-01-22 12:21:24 +01:00
flyingscorpio@clevo
06a210cbd2 Use deploy_certificate role in forgejo 2023-01-20 23:22:16 +01:00
flyingscorpio@clevo
9d08db6ae3 Move certificate creation for tunuifranken.info to generic role 2023-01-20 22:50:24 +01:00
flyingscorpio@clevo
ba3fd694dd Fix error on git clone 2023-01-20 16:34:19 +01:00
flyingscorpio@clevo
73c8ccb0ab Use correct archive paths with symlinks in live for letsencrypt 2023-01-20 14:52:15 +01:00
flyingscorpio@clevo
22d541373a Add letsencrypt renewal config for tunuifranken.info 2023-01-20 14:17:46 +01:00
flyingscorpio@clevo
af3c5d696f Add checks for when the challenge isn't changed 2023-01-20 12:02:47 +01:00
flyingscorpio@clevo
2f2313d401 Add account_email for acme challenge 2023-01-20 12:02:33 +01:00
flyingscorpio@clevo
b534c6d960 Activate cert and key for tunuifranken.info 2023-01-20 09:57:39 +01:00
flyingscorpio@clevo
68eb6e331d Fix letsencrypt challenge, using different account privkey 2023-01-20 09:26:42 +01:00
flyingscorpio@clevo
b918e48ca3 Almost finish dns-01 letsencrypt challenge for tunuifranken.info 
Account_key not set correctly, probably need to use acme_account too
 2023-01-19 17:37:21 +01:00
flyingscorpio@clevo
e71ade9964 Finish http-01 letsencrypt challenge for tunuifranken.info 2023-01-19 16:14:31 +01:00
flyingscorpio@clevo
f8a1592b69 Start tasks for letsencrypt for tunuifranken.info 2023-01-19 12:07:10 +01:00
flyingscorpio@clevo
494f388130 Split up local dns resolutions into the roles that need them 2023-01-19 10:43:26 +01:00
flyingscorpio@clevo
65c5a5112c Add ssh key for cloning tunuifranken.info 2023-01-19 10:40:55 +01:00
flyingscorpio@clevo
c39c717d52 Remove role gitea 2023-01-19 10:22:30 +01:00
flyingscorpio@clevo
f784701b74 Add local DNS resolutions for forgejo 2023-01-19 10:15:49 +01:00
flyingscorpio@clevo
b473c79476 Add ssh tasks for forgejo 2023-01-19 10:02:17 +01:00
flyingscorpio@clevo
eb1d7143ed Bump forgejo to 1.18.1-0 2023-01-19 08:38:41 +01:00
flyingscorpio@clevo
4a2a5b349e Add ssh tasks for forgejo 2023-01-18 19:35:33 +01:00