WoodSmellParticle/ansible-infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
124 commits 1 branch 0 tags 24 MiB
Commit graph

124 commits

This branch
This branch
All branches
Author SHA1 Message Date
NaeiKinDus
7342cf1c50
fix(tooling): corrected custom collections path in Taskfile 2025-03-04 00:00:00 +00:00
NaeiKinDus
5248760268
fix(common): yq installation uses proper binary name 2025-03-04 00:00:00 +00:00
NaeiKinDus
43d68e5cab
feat(tooling): added tasks to ease en/decrypt operations on vault files 2025-03-02 00:00:00 +00:00
NaeiKinDus
93a3754ce4
chore(tooling): cleanup of Taskfile 2025-02-26 00:00:00 +00:00
NaeiKinDus
ed41e77b30
chore(inventory): updated sysctl configuration for unobtainium 2025-02-26 00:00:00 +00:00
NaeiKinDus
4244571f94
feat(workstation): added picom configuration 2025-02-26 00:00:00 +00:00
NaeiKinDus
5cb62c1ca3
fix(k3s): fixed invalid ip6 FW rule 2025-02-26 00:00:00 +00:00
NaeiKinDus
ab41f3ffc0
chore(common): updated gitconfig 2025-02-26 00:00:00 +00:00
NaeiKinDus
0c3718d4c3
fix(common): fixed incomplete installation recipe for github artifact yq 2025-02-23 00:00:00 +00:00
NaeiKinDus
888590ed9f
chore!: separated galaxy deps and own collections; modified ansible script generation to use two paths for collections 
REQUIRES REGENERATING ansible.cfg!
 2025-02-23 00:00:00 +00:00
NaeiKinDus
4af69c31ce
feat(common): updated some zsh related customizations 2025-02-23 00:00:00 +00:00
NaeiKinDus
22847db529
feat(common): fixed ydig zsh function; updated some other zsh related customizations 2025-02-23 00:00:00 +00:00
NaeiKinDus
7a009b0cbc
chore(inventory): remove helm setup for invidious 2025-02-05 00:00:00 +00:00
NaeiKinDus
55bea6838e
fix(tooling): update and add dependencies to python jq 2025-02-05 00:00:00 +00:00
NaeiKinDus
a8c728e916
feat(tooling): add templates directory to role skeleton 2025-02-05 00:00:00 +00:00
NaeiKinDus
55cb1601ee
fix(workstation): add missing dependency for terminator 2025-01-30 00:00:00 +00:00
NaeiKinDus
5d3c966b58
fix(workstation): fix default permissions for lua-lgi dirs 2025-01-30 00:00:00 +00:00
NaeiKinDus
87084c1d97
feat(nginx): change default configuration setup 2025-01-30 00:00:00 +00:00
NaeiKinDus
35d72db683 feat!(tasks): move tasks to include; move dependencies installation to a task;... 2025-01-26 22:52:14 +00:00
NaeiKinDus
846f5e693e feat(tooling): added a new molecule:purge task 2024-12-30 00:00:00 +00:00
NaeiKinDus
437e6728e6
fix(scripts): update ansible.cfg generation script to include path to collections, fix noclobber issue and force ansible to run handlers even when an error is encountered 2024-12-27 00:00:00 +00:00
NaeiKinDus
394bd151ea
chore(inventory): updated unobtainium host vars 2024-12-27 00:00:00 +00:00
NaeiKinDus
cd328704e5
fix(workstation): added missing environment flag and force file permissions when installing lua-lgi 2024-12-27 00:00:00 +00:00
NaeiKinDus
6f84e794c7
feat(workstation): moved X11 configuration behind a feature flag 2024-12-27 00:00:00 +00:00
NaeiKinDus
63a306f54a
chore(security): removed allowed cipher chacha20-poly1350@openssh.com from allowed ciphers list for sshd due to security concerns 2024-12-27 00:00:00 +00:00
NaeiKinDus
f0d464d988
chore(security): updated default ClamAV version to 1.4.1 2024-12-27 00:00:00 +00:00
NaeiKinDus
21185a17c4
feat(security): moved nftables reserved networks behind a feature flag and no longer block 0.0.0.0/8 and 169.254.0.0/16 by default to ease DHCP and APIPA configuration 2024-12-27 00:00:00 +00:00
NaeiKinDus
667c7de87e
fix(provisioner): fixed wrong variable used to retrieve github token when installing k3sup 2024-12-27 00:00:00 +00:00
NaeiKinDus
04fa08133e
feat(development): moved Virtualbox installation behind a feature flag, defaults to false 2024-12-27 00:00:00 +00:00
NaeiKinDus
6ef571ceb9
fix(common): added missing privileges elevation to firmware management tools installation step 2024-12-27 00:00:00 +00:00
NaeiKinDus
8275ee4790
chore(git): updated gitignore 2024-12-27 00:00:00 +00:00
NaeiKinDus
904b067816
feat: add terraform deployment for K8s invidious 2024-10-17 00:00:00 +00:00
NaeiKinDus
ff7c9d8b91
feat(common): add new timer function to ZSH 2024-09-23 00:00:00 +00:00
NaeiKinDus
c3305093e4
feat(vault): separated vault binary install and service configuration; use provisioner artifacts directory to store HC vault setup information; set group level HC vault instance info 2024-09-23 00:00:00 +00:00
NaeiKinDus
b6695cf49c
feat(tooling): added role skeleton for new ansible roles generated using Task 2024-08-18 00:00:00 +00:00
NaeiKinDus
31aaf10a5c
feat(nginx): added new nginx role to install and configure nginx webservers 2024-08-17 00:00:00 +00:00
NaeiKinDus
15cd8bf8da
feat(common): moved installation of firmware management tools behind a check, useful for external servers that prohibit usage of such tools 2024-08-08 00:00:00 +00:00
NaeiKinDus
3701ea6276
fix(security,common)!: moved sysctl and resolvconf tasks from common to security role to fix DNS resolution fail due to firewall rules 2024-08-08 00:00:00 +00:00
NaeiKinDus
b7ba39bce9
feat(security): tightened files mode for ssh configuration and enabled ipv6 on ssh, along with an increase on max sessions from 3 to 5 2024-08-08 00:00:00 +00:00
NaeiKinDus
3acdd804df
fix(security): fixed invalid template generation for nft rules 02 and 03 when ipv6 addresses are specified in controllers ips list 2024-08-08 00:00:00 +00:00
NaeiKinDus
b83c6c1d4f
fix(security): fixed wordwrap breaking long strings (ipv6 addresses) in nftables.conf 2024-08-08 00:00:00 +00:00
NaeiKinDus
9ab416993e
chore(playbooks)!: moved provisioners setup from internal to provisioner playbook 2024-08-08 00:00:00 +00:00
NaeiKinDus
ae79544b95
chore(playbooks): update external playbook to load provisioners facts and add tags 2024-08-08 00:00:00 +00:00
NaeiKinDus
dcb3b887f9
chore(inventory): update lithium and external group vars 2024-08-08 00:00:00 +00:00
NaeiKinDus
8577acb156
feat(security): add a way to override supervisors ip addresses for external devices 2024-08-08 00:00:00 +00:00
NaeiKinDus
641bf17fa4
feat(security): add tags to target security role or firewall actions 2024-08-08 00:00:00 +00:00
NaeiKinDus
6b15ecc3a6
feat(k3s): add possibility to provide a custom backend; moved opentofu states to postgresql on actinium 2024-07-29 00:00:00 +00:00
NaeiKinDus
1cd41762fc
feat(inventory): added invidious deployment to actinium 2024-07-29 00:00:00 +00:00
NaeiKinDus
193ee7c447
feat(k3s): allow custom Helm manifests installation 2024-07-29 00:00:00 +00:00
NaeiKinDus
f9aa2cfed5
fix(postgresql): added check to detect possible errors when executing custom init script 2024-07-28 00:00:00 +00:00