| Commit message (Collapse) | Author | Age | Lines |
|---|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumps [pre-commit](https://github.com/pre-commit/pre-commit) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/pre-commit/pre-commit/releases)
- [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md)
- [Commits](https://github.com/pre-commit/pre-commit/compare/v3.1.0...v3.1.1)
---
updated-dependencies:
- dependency-name: pre-commit
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumps [ansible](https://github.com/ansible/ansible) from 7.2.0 to 7.3.0.
- [Release notes](https://github.com/ansible/ansible/releases)
- [Commits](https://github.com/ansible/ansible/commits)
---
updated-dependencies:
- dependency-name: ansible
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
| |
|
|
| |
Ansible is case sensitive when specifying a handler
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumps [pre-commit](https://github.com/pre-commit/pre-commit) from 3.0.4 to 3.1.0.
- [Release notes](https://github.com/pre-commit/pre-commit/releases)
- [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md)
- [Commits](https://github.com/pre-commit/pre-commit/compare/v3.0.4...v3.1.0)
---
updated-dependencies:
- dependency-name: pre-commit
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
| | |
|
| |
|
|
|
|
| |
errors
Signed-off-by: Bradley Reynolds <[email protected]>
|
| |
|
|
| |
environment that we can test ansible updates in
|
| |
|
|
| |
This also removes the need to pass some of the keys, so those have been removed.
|
| | |
|
| |
|
|
|
|
|
| |
* Use uppercase for all names
* Pin `requirements.txt` versions
* Add `dependabot.yml`
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Move Kubespray Inventory
Move the kuberspray inventory to the repo root to make accessing it
easier, and unify inventories.
* Document Kubespray Deploy Instructions
Signed-off-by: Hassan Abouelela <[email protected]>
* Ignore Kubespray In Ansible Lint
Signed-off-by: Hassan Abouelela <[email protected]>
* Fix Ansible Lint
The `.github` folder was inappropriately being included in linting
due to actions being in yaml format.
Signed-off-by: Hassan Abouelela <[email protected]>
---------
Signed-off-by: Hassan Abouelela <[email protected]>
|
| | |
|
| | |
|
| |
|
|
|
| |
* Add instructions to the bootstrap script
* Make the .ssh folder before making a file within
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
This got introduced by a recent `ansible-lint` update, and is now
breaking all PRs (and failing on master).
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Makes all role names begin with a capital letter in Ansible roles
|
| |
|
|
| |
Allow HTTP traffic in addition to HTTPS by switching to the "Nginx Full" ruleset
|
| | |
|
| |
|
|
|
|
|
|
| |
Update the forced command in authorized_keys to reload NGINX after
termination of the rsync session.
This ensures that after key updates complete they will be reloaded and
pushed to NGINX.
|
| |
|
|
|
|
|
|
|
|
| |
Add a certbot role that generates a certificate on the first host in the
NGINX group and then deploys it to all other NGINX hosts. As of now we
generate wildcard certs for pythondiscord.com and pydis.wtf.
A unique SSH key is generated for each replica host which is restricted
for security purposes. A deploy hook is installed to push renewals to
other hosts.
|
| | |
|
| |
|
|
|
|
|
|
|
| |
In order to add moon phase support on the dark theme picker later, we
need to configure the GeoIP module included with nginx.
On Debian, the `nginx` package that we install installs `nginx-core`,
which in turn installs the GeoIP module and even a GeoIP country
database for us.
|
| |
|
|
| |
To start off, we are only scraping Prometheus itself and node-exporter.
|
| | |
|
| |
|
| |
Co-authored-by: ChrisJL <[email protected]>
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
Includes documented roles for:
- installing nginx & configuring handlers
- installing the mTLS certificate for Cloudflare
- installing firewall rules
They are kept separate for now, for composability.
Closes #22.
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
This PR adds a new podman role, see #18.
The playbook is merged into sections for each group of hosts that we
want to deploy to. To limit by role now, use tags, such as `-t
role::podman`.
|
| |
|
|
| |
This will allow us to add more key: value pairs in future, without having to update it in two places
|
| | |
|
| | |
|
dependabot[bot]
GDWR
Bradley Reynolds
Chris Lovering
GDWR
Hassan Abouelela
ChrisJL
Johannes Christ
Joe Banks