Tips-Of-Mine/infrastructure
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,584 Commits 15 Branches 0 Tags
fb0830e9fc190ad89781ff85e4313368aab1c40d
Commit Graph

1584 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jake Howard 9ac9380387 Restructure state IAM to use separate role 2024-01-07 12:58:16 +00:00
Jake Howard 1555803d25 Move terraform state file 
This lets me use the bucket for other states too
 2024-01-06 21:28:57 +00:00
Jake Howard c8211d4756 Use Debian repo version of nginx 
It's older, and doesn't have `stream` compiled in, but the repo one can't link to any of the installed modules, which is a non-starter.
 2024-01-04 14:17:36 +00:00
Jake Howard 57ad143268 Set password for homeassistant SMB mount 
It had an IP restriction, but still
 2024-01-03 21:23:49 +00:00
Jake Howard 16e9952b2f Replace custom restic logs with runitor 2024-01-03 21:09:07 +00:00
Jake Howard f5154d1683 Use CoreDNS to do recursive CNAME aliasing for AGH 2024-01-02 17:48:47 +00:00
Jake Howard 3ed7074af6 Rename coredns role 2024-01-02 17:02:34 +00:00
Jake Howard 5581bbc01a Replace pihole with adguardhome 
AGH is much simpler to install and manage, and does DoH natively.
 2024-01-01 15:48:14 +00:00
Jake Howard 6a14679edf Only add IPv4 address for PVE sys domain 
For some reason, ipv6 doesn't really work with my current setup. It'll change at another time, so it's future me's problem
 2023-12-31 23:01:53 +00:00
Jake Howard 56bfe544e4 nginx HTTPS redirect on ipv6 2023-12-31 22:49:11 +00:00
Jake Howard e03cc40bf3 Update DNS records to alias sys records 2023-12-31 21:10:55 +00:00
Jake Howard 6a23d8cab5 Use sys domain resource for reverse DNS 2023-12-31 18:22:21 +00:00
Jake Howard 8b21c7d64c Add record for PVE 2023-12-31 16:46:45 +00:00
Renovate 8df1806faa Update Terraform b2 to v0.8.7 2023-12-31 16:44:33 +00:00
Renovate 83543fe081 Update lscr.io/linuxserver/nextcloud Docker tag to v28.0.1 2023-12-28 21:39:28 +00:00
Jake Howard 0e0d0c9b82 walker doesn't have a traefik anymore 2023-12-26 22:31:12 +00:00
Jake Howard 026d8db13e Be root when generating dhparams 
This is needed to write to the destination
 2023-12-24 19:44:30 +00:00
Jake Howard 593a945c5c Install nginx from package manager if available 2023-12-24 19:44:30 +00:00
Jake Howard bd15946f3b Update Nebula 2023-12-24 19:44:30 +00:00
Jake Howard f4b96afcfa Deploy ntfy 2023-12-23 16:40:53 +00:00
Jake Howard c0c7f393e3 Only pin to minor versions of gitea 2023-12-21 16:43:18 +00:00
Jake Howard 5fd952be4c Only pin to minor version of Authentik 2023-12-21 16:42:02 +00:00
Jake Howard 1e798ac5ce Don't require role variables to be prefixed 2023-12-21 16:38:24 +00:00
Jake Howard 39899cd1e0 Use certbot to issue certificates 2023-12-21 16:38:07 +00:00
Jake Howard 8e1a203df2 Add helper map for better websocket support 2023-12-21 16:38:07 +00:00
Jake Howard a3baf8be1e Use nginx as reverse proxy on walker, removing traefik 
SSL coming soon
 2023-12-21 16:38:07 +00:00
Jake Howard a7eb372899 Fix HTTPS redirect hostname 2023-12-21 14:58:19 +00:00
Jake Howard 80a770f399 Add include files before main nginx config 2023-12-21 14:58:04 +00:00
Jake Howard ef432642dd Unify nginx module tasks 2023-12-20 22:35:11 +00:00
Jake Howard b32a63bd72 Add helpful includes 
Along with ensuring there are dhparams
 2023-12-20 22:29:42 +00:00
Jake Howard 2336e4dd5b Add brotli 2023-12-17 18:12:33 +00:00
Jake Howard 46eda36515 Fully block Server header 2023-12-16 21:57:19 +00:00
Jake Howard cfb498d7c6 Only add HTTPS redirect when it's needed 2023-12-16 18:13:49 +00:00
Jake Howard 48efcf4d91 Use mainline nginx release on Arch 2023-12-16 18:03:01 +00:00
Jake Howard 930cf87084 gzip as much as makes sense 2023-12-16 17:58:15 +00:00
Jake Howard 92052a3d0a Unify nginx configuration 
This creates a simple base configuration skeleton, that other configuration can be easily loaded into.
 2023-12-16 17:47:04 +00:00
Jake Howard 943c141d59 Ensure ingress proxy doesn't terminate connections 
This mostly works around a weird issues with Jellyfin
 2023-12-14 22:08:02 +00:00
Jake Howard 2ff2128330 Set pihole temp unit 2023-12-14 22:04:14 +00:00
Jake Howard b33e19e152 Remove unnecessary extra variable definitions 
The world could do with a bit less YAML!
 2023-12-14 22:03:23 +00:00
Jake Howard 7ad5d6e51e Deploy coredns as a proxy to Docker's internal DNS 2023-12-14 21:04:26 +00:00
Jake Howard 7381c1f10a Update nextcloud version in config.php 2023-12-13 17:48:46 +00:00
Renovate 18fd0631e1 Update lscr.io/linuxserver/nextcloud Docker tag to v28 2023-12-13 17:38:40 +00:00
Renovate 05eee3f4de Update gitea/gitea Docker tag to v1.21.2 2023-12-13 17:37:11 +00:00
Renovate b865469f3e Update Terraform b2 to v0.8.5 2023-12-13 12:00:34 +00:00
Renovate e0f7b47961 Update lscr.io/linuxserver/mastodon Docker tag to v4.2.3 2023-12-05 18:00:28 +00:00
Jake Howard c0df505f70 Disable browser updates for nextcloud 2023-12-04 09:39:14 +00:00
Jake Howard aecd7c0a18 Upgrade nextcloud version in config 2023-12-04 09:38:43 +00:00
Renovate b9c5c7ce01 Update lscr.io/linuxserver/nextcloud Docker tag to v27.1.4 2023-12-04 09:35:32 +00:00
Jake Howard e815fcb2be Pin all redis versions to 7 
Keeps them all in sync
 2023-12-04 09:22:51 +00:00
Renovate ad7bd24fec Update dependency ansible-lint to v6.22.1 2023-12-04 09:10:46 +00:00