WoodSmellParticle/ansible-infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Commit graph

  • 2c68a0c168
         fix(valkey): changed compilation recipe to account for noexec /tmp rules main NaeiKinDus 2025-04-21 00:00:00 +00:00
  • 68a0e385c2
         feat(valkey): added new basic valkey role NaeiKinDus 2025-04-21 00:00:00 +00:00
  • bccc729cd6
         fix(deluge): use specified deluge_user and deluge_group when generating systemd units NaeiKinDus 2025-04-15 00:00:00 +00:00
  • 95e483c2fb
         feat(deluge): add configuration to allow remote connection to deluge daemon NaeiKinDus 2025-04-13 00:00:00 +00:00
  • e12cd90d34
         feat(nginx): update nftables rule to allow QUIC NaeiKinDus 2025-04-12 00:00:00 +00:00
  • 1c625d2d84
         feat(deluge): added role to install deluge and deluge web NaeiKinDus 2025-03-24 00:00:00 +00:00
  • bef258cfec
         feat(security): added nft rule to allow outgoing git queries (clone using git://) NaeiKinDus 2025-03-24 00:00:00 +00:00
  • 27cd98274c
         feat(common): create common default directories NaeiKinDus 2025-03-24 00:00:00 +00:00
  • c6670c1c5f
         fix(molecule): working again, added test for provisioner load_vars NaeiKinDus 2025-03-11 00:00:00 +00:00
  • 6707ece8e0
         fix(tooling): make shellscript executable NaeiKinDus 2025-03-09 00:00:00 +00:00
  • 6ae15ccbbc
         chore: updated dependencies for python and ansible galaxy NaeiKinDus 2025-03-09 00:00:00 +00:00
  • f46827bada
         feat(tooling): prevent possible ansible vault-id pass overwriting when forcing setup tasks NaeiKinDus 2025-03-09 00:00:00 +00:00
  • bf7159d79e
         fix(tooling): set molecule vault password file to shell script wrapper for pass NaeiKinDus 2025-03-09 00:00:00 +00:00
  • 170f972185
         fix(tooling): fixed molecule setup linked to previous path changes NaeiKinDus 2025-03-09 00:00:00 +00:00
  • a710ec9644
         fix(molecule): updated paths to inventory NaeiKinDus 2025-03-08 00:00:00 +00:00
  • d0e4450645
         fix(tooling): fixed path to pass shellscript wrapper when running molecule commands NaeiKinDus 2025-03-07 00:00:00 +00:00
  • b70a8301bb
         fix(tooling): corrected path in molecule task NaeiKinDus 2025-03-07 00:00:00 +00:00
  • 75f18e2ac7
         fix(tooling): added missing steps to virtd reset task NaeiKinDus 2025-03-07 00:00:00 +00:00
  • 7342cf1c50
         fix(tooling): corrected custom collections path in Taskfile NaeiKinDus 2025-03-04 00:00:00 +00:00
  • 5248760268
         fix(common): yq installation uses proper binary name NaeiKinDus 2025-03-04 00:00:00 +00:00
  • 43d68e5cab
         feat(tooling): added tasks to ease en/decrypt operations on vault files NaeiKinDus 2025-03-02 00:00:00 +00:00
  • 93a3754ce4
         chore(tooling): cleanup of Taskfile NaeiKinDus 2025-02-26 00:00:00 +00:00
  • ed41e77b30
         chore(inventory): updated sysctl configuration for unobtainium NaeiKinDus 2025-02-26 00:00:00 +00:00
  • 4244571f94
         feat(workstation): added picom configuration NaeiKinDus 2025-02-26 00:00:00 +00:00
  • 5cb62c1ca3
         fix(k3s): fixed invalid ip6 FW rule NaeiKinDus 2025-02-26 00:00:00 +00:00
  • ab41f3ffc0
         chore(common): updated gitconfig NaeiKinDus 2025-02-26 00:00:00 +00:00
  • 0c3718d4c3
         fix(common): fixed incomplete installation recipe for github artifact yq NaeiKinDus 2025-02-23 00:00:00 +00:00
  • 888590ed9f
         chore!: separated galaxy deps and own collections; modified ansible script generation to use two paths for collections REQUIRES REGENERATING ansible.cfg! NaeiKinDus 2025-02-23 00:00:00 +00:00
  • 4af69c31ce
         feat(common): updated some zsh related customizations NaeiKinDus 2025-02-23 00:00:00 +00:00
  • 22847db529
         feat(common): fixed ydig zsh function; updated some other zsh related customizations NaeiKinDus 2025-02-23 00:00:00 +00:00
  • 7a009b0cbc
         chore(inventory): remove helm setup for invidious NaeiKinDus 2025-02-05 00:00:00 +00:00
  • 55bea6838e
         fix(tooling): update and add dependencies to python jq NaeiKinDus 2025-02-05 00:00:00 +00:00
  • a8c728e916
         feat(tooling): add templates directory to role skeleton NaeiKinDus 2025-02-05 00:00:00 +00:00
  • 55cb1601ee
         fix(workstation): add missing dependency for terminator NaeiKinDus 2025-01-30 00:00:00 +00:00
  • 5d3c966b58
         fix(workstation): fix default permissions for lua-lgi dirs NaeiKinDus 2025-01-30 00:00:00 +00:00
  • 87084c1d97
         feat(nginx): change default configuration setup NaeiKinDus 2025-01-30 00:00:00 +00:00
  • 35d72db683 feat!(tasks): move tasks to include; move dependencies installation to a task;... NaeiKinDus 2025-01-26 22:52:14 +00:00
  • 846f5e693e feat(tooling): added a new molecule:purge task NaeiKinDus 2024-12-30 00:00:00 +00:00
  • 437e6728e6
         fix(scripts): update ansible.cfg generation script to include path to collections, fix noclobber issue and force ansible to run handlers even when an error is encountered NaeiKinDus 2024-12-27 00:00:00 +00:00
  • 394bd151ea
         chore(inventory): updated unobtainium host vars NaeiKinDus 2024-12-27 00:00:00 +00:00
  • cd328704e5
         fix(workstation): added missing environment flag and force file permissions when installing lua-lgi NaeiKinDus 2024-12-27 00:00:00 +00:00
  • 6f84e794c7
         feat(workstation): moved X11 configuration behind a feature flag NaeiKinDus 2024-12-27 00:00:00 +00:00
  • 63a306f54a
         chore(security): removed allowed cipher chacha20-poly1350@openssh.com from allowed ciphers list for sshd due to security concerns NaeiKinDus 2024-12-27 00:00:00 +00:00
  • f0d464d988
         chore(security): updated default ClamAV version to 1.4.1 NaeiKinDus 2024-12-27 00:00:00 +00:00
  • 21185a17c4
         feat(security): moved nftables reserved networks behind a feature flag and no longer block 0.0.0.0/8 and 169.254.0.0/16 by default to ease DHCP and APIPA configuration NaeiKinDus 2024-12-27 00:00:00 +00:00
  • 667c7de87e
         fix(provisioner): fixed wrong variable used to retrieve github token when installing k3sup NaeiKinDus 2024-12-27 00:00:00 +00:00
  • 04fa08133e
         feat(development): moved Virtualbox installation behind a feature flag, defaults to false NaeiKinDus 2024-12-27 00:00:00 +00:00
  • 6ef571ceb9
         fix(common): added missing privileges elevation to firmware management tools installation step NaeiKinDus 2024-12-27 00:00:00 +00:00
  • 8275ee4790
         chore(git): updated gitignore NaeiKinDus 2024-12-27 00:00:00 +00:00
  • 904b067816
         feat: add terraform deployment for K8s invidious NaeiKinDus 2024-10-17 00:00:00 +00:00
  • ff7c9d8b91
         feat(common): add new timer function to ZSH NaeiKinDus 2024-09-23 00:00:00 +00:00
  • c3305093e4
         feat(vault): separated vault binary install and service configuration; use provisioner artifacts directory to store HC vault setup information; set group level HC vault instance info NaeiKinDus 2024-09-23 00:00:00 +00:00
  • b6695cf49c
         feat(tooling): added role skeleton for new ansible roles generated using Task NaeiKinDus 2024-08-18 00:00:00 +00:00
  • 31aaf10a5c
         feat(nginx): added new nginx role to install and configure nginx webservers NaeiKinDus 2024-08-08 00:00:00 +00:00
  • 15cd8bf8da
         feat(common): moved installation of firmware management tools behind a check, useful for external servers that prohibit usage of such tools NaeiKinDus 2024-08-08 00:00:00 +00:00
  • 3701ea6276
         fix(security,common)!: moved sysctl and resolvconf tasks from common to security role to fix DNS resolution fail due to firewall rules NaeiKinDus 2024-08-08 00:00:00 +00:00
  • b7ba39bce9
         feat(security): tightened files mode for ssh configuration and enabled ipv6 on ssh, along with an increase on max sessions from 3 to 5 NaeiKinDus 2024-08-08 00:00:00 +00:00
  • 3acdd804df
         fix(security): fixed invalid template generation for nft rules 02 and 03 when ipv6 addresses are specified in controllers ips list NaeiKinDus 2024-08-08 00:00:00 +00:00
  • b83c6c1d4f
         fix(security): fixed wordwrap breaking long strings (ipv6 addresses) in nftables.conf NaeiKinDus 2024-08-08 00:00:00 +00:00
  • 9ab416993e
         chore(playbooks)!: moved provisioners setup from internal to provisioner playbook NaeiKinDus 2024-08-08 00:00:00 +00:00
  • ae79544b95
         chore(playbooks): update external playbook to load provisioners facts and add tags NaeiKinDus 2024-08-08 00:00:00 +00:00
  • dcb3b887f9
         chore(inventory): update lithium and external group vars NaeiKinDus 2024-08-08 00:00:00 +00:00
  • 8577acb156
         feat(security): add a way to override supervisors ip addresses for external devices NaeiKinDus 2024-08-08 00:00:00 +00:00
  • 641bf17fa4
         feat(security): add tags to target security role or firewall actions NaeiKinDus 2024-08-08 00:00:00 +00:00
  • 6b15ecc3a6
         feat(k3s): add possibility to provide a custom backend; moved opentofu states to postgresql on actinium NaeiKinDus 2024-07-29 00:00:00 +00:00
  • 1cd41762fc
         feat(inventory): added invidious deployment to actinium NaeiKinDus 2024-07-29 00:00:00 +00:00
  • 193ee7c447
         feat(k3s): allow custom Helm manifests installation NaeiKinDus 2024-07-29 00:00:00 +00:00
  • f9aa2cfed5
         fix(postgresql): added check to detect possible errors when executing custom init script NaeiKinDus 2024-07-28 00:00:00 +00:00
  • 7d6155f97e
         feat(postgresql): added new role to install pgsql server NaeiKinDus 2024-07-21 00:00:00 +00:00
  • 068a2e2790
         fix(security): fixed an issue leading to an invalid nftables.conf file being generated using provisioners ip addresses NaeiKinDus 2024-07-27 00:00:00 +00:00
  • 9914c7921a
         chore(actinium): update invoice ninja to version 0.0.8 NaeiKinDus 2024-07-26 00:00:00 +00:00
  • e260d25245
         feat(common): add acl package NaeiKinDus 2024-07-21 00:00:00 +00:00
  • 3ec536f299
         feat: added tags for multiple roles used by internal.yml playbook NaeiKinDus 2024-07-13 00:00:00 +00:00
  • 736d90b82d
         chore(python)!: cleanup and upgrade python3 dependencies NaeiKinDus 2024-07-12 00:00:00 +00:00
  • 6876a18241
         fix(provisioner): added missing github_token parameter when installing k3sup NaeiKinDus 2024-07-11 00:00:00 +00:00
  • 50e7b53f97
         chore(ansible): upgrade ansible community collections NaeiKinDus 2024-07-11 00:00:00 +00:00
  • e52f87a448
         feat(security): update / install clamav only if desired version and installed version differs NaeiKinDus 2024-07-11 00:00:00 +00:00
  • 31e40cc47a
         fix(security): fixed incorrect target file for wait_for step when deploying clamav NaeiKinDus 2024-07-11 00:00:00 +00:00
  • 14a46715c7
         feat(security): allow all registered provisioners to connect without limitations instead of the one running playbooks only NaeiKinDus 2024-07-11 00:00:00 +00:00
  • 332e367c3c
         feat(provisioner): add variable that contains hostnames and DNS IP of registered provisioners in provisioner_facts NaeiKinDus 2024-07-11 00:00:00 +00:00
  • 679518872e chore(inventory): removed useless unsepttrium subdirectory NaeiKinDus 2024-07-10 00:00:00 +00:00
  • 5d716cbf51
         feat(workstation): added apt-file package NaeiKinDus 2024-07-10 00:00:00 +00:00
  • 49cfb442b7
         chore(actinium): update invoice ninja to version 0.0.7 NaeiKinDus 2024-07-10 00:00:00 +00:00
  • 95bb861049
         refactor(k3s): replace code with what the provisioner role now offers and store opentofu data accordingly NaeiKinDus 2024-07-10 00:00:00 +00:00
  • 1b3e0c401c
         feat(role): add provisioner role NaeiKinDus 2024-06-27 00:00:00 +00:00
  • b22b39c92b chore(README): fixed invalid requirements section which referenced the virtualenv package instead of venv NaeiKinDus 2024-07-10 00:00:00 +00:00
  • 2d4a8de985 fix(ansible): added missing galaxy requirement NaeiKinDus 2024-07-10 00:00:00 +00:00
  • 5c67a916ee
         feat(github_artifact): add force parameter to force installation NaeiKinDus 2024-07-07 00:00:00 +00:00
  • 890c7646fa
         refactor(development): use kubectl role instead of custom code NaeiKinDus 2024-07-07 00:00:00 +00:00
  • 41cb71e364
         feat(role): add kubectl role NaeiKinDus 2024-07-07 00:00:00 +00:00
  • 247e2dbdad
         refactor(development): use helm role instead of custom code NaeiKinDus 2024-07-07 00:00:00 +00:00
  • d151db8ebf feat(role): add helm role NaeiKinDus 2024-07-07 00:00:00 +00:00
  • 60a9f0a8cb
         doc(README): added missing MD escape chars for module task section NaeiKinDus 2024-07-04 00:00:00 +00:00
  • fc11d3ee83 feat(tooling): added tasks to generate a new ansible role or collection with default skeleton NaeiKinDus 2024-07-04 18:25:24 +00:00
  • 317c562e7a chore: add a license NaeiKinDus 2024-06-26 16:28:44 +00:00
  • 263d45a3c8
         chore(inventory): update invoice ninja deployment on actinium NaeiKinDus 2024-06-26 00:00:00 +00:00
  • ddf406fd37
         feat(vault): add a HashiCorp Vault role NaeiKinDus 2024-06-26 00:00:00 +00:00
  • 688bdae6a1
         chore(inventory): updated git version of invoice ninja to 0.0.4 NaeiKinDus 2024-06-10 00:00:00 +00:00
  • e33c3718bf
         feat(k3s): add deployment rules for Helm and OpenTofu projects NaeiKinDus 2024-06-09 00:00:00 +00:00
  • b317cabe65
         fix(tests): do not fail when testing collections without a test directory (typically collections from ansible-galaxy) NaeiKinDus 2024-02-07 00:00:00 +00:00