aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeLines
...
* Re-add previous ansible rolesGravatar Chris Lovering2023-07-24-93/+435
| | | | | | | Co-authored-by: Hassan Abouelela <[email protected]> Co-authored-by: Johannes Christ <[email protected]> Co-authored-by: Joe Banks <[email protected]> Co-authored-by: MarkKoz <[email protected]>
* Remove bad default fail2ban ignore IPGravatar Chris Lovering2023-07-24-1/+2
|
* Remove kubespray and related rolesGravatar Chris Lovering2023-07-24-1842/+3
|
* Add agenda for next weekGravatar Johannes Christ2023-07-18-0/+11
|
* Add meeting notes for todayGravatar Johannes Christ2023-07-18-0/+35
|
* Add meeting notes for yesterdayGravatar Johannes Christ2023-07-12-0/+34
|
* Add Chris's other ssh keyGravatar chrislovering2023-06-17-1/+2
|
* Bump ansible from 7.4.0 to 7.5.0 (#99)Gravatar dependabot[bot]2023-05-04-1/+1
| | | | | | | | | | | | | | | Bumps [ansible](https://github.com/ansible/ansible) from 7.4.0 to 7.5.0. - [Release notes](https://github.com/ansible/ansible/releases) - [Commits](https://github.com/ansible/ansible/commits) --- updated-dependencies: - dependency-name: ansible dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump pre-commit from 3.2.1 to 3.2.2 (#97)Gravatar dependabot[bot]2023-04-11-1/+1
| | | | | | | | | | | | | | | | Bumps [pre-commit](https://github.com/pre-commit/pre-commit) from 3.2.1 to 3.2.2. - [Release notes](https://github.com/pre-commit/pre-commit/releases) - [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md) - [Commits](https://github.com/pre-commit/pre-commit/compare/v3.2.1...v3.2.2) --- updated-dependencies: - dependency-name: pre-commit dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump ansible from 7.3.0 to 7.4.0 (#95)Gravatar dependabot[bot]2023-04-05-1/+1
| | | | | | | | | | | | | | | Bumps [ansible](https://github.com/ansible/ansible) from 7.3.0 to 7.4.0. - [Release notes](https://github.com/ansible/ansible/releases) - [Commits](https://github.com/ansible/ansible/commits) --- updated-dependencies: - dependency-name: ansible dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump pre-commit from 3.2.0 to 3.2.1 (#94)Gravatar dependabot[bot]2023-03-30-1/+1
| | | | | | | | | | | | | | | | Bumps [pre-commit](https://github.com/pre-commit/pre-commit) from 3.2.0 to 3.2.1. - [Release notes](https://github.com/pre-commit/pre-commit/releases) - [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md) - [Commits](https://github.com/pre-commit/pre-commit/compare/v3.2.0...v3.2.1) --- updated-dependencies: - dependency-name: pre-commit dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump pre-commit from 3.1.1 to 3.2.0 (#92)Gravatar dependabot[bot]2023-03-21-1/+1
| | | | | | | | | | | | | | | | Bumps [pre-commit](https://github.com/pre-commit/pre-commit) from 3.1.1 to 3.2.0. - [Release notes](https://github.com/pre-commit/pre-commit/releases) - [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md) - [Commits](https://github.com/pre-commit/pre-commit/compare/v3.1.1...v3.2.0) --- updated-dependencies: - dependency-name: pre-commit dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Add Griff's ssh key to bootstrapGravatar ChrisJL2023-03-14-0/+1
|
* Bump pre-commit from 3.1.0 to 3.1.1 (#88)Gravatar dependabot[bot]2023-03-06-1/+1
| | | | | | | | | | | | | | | | Bumps [pre-commit](https://github.com/pre-commit/pre-commit) from 3.1.0 to 3.1.1. - [Release notes](https://github.com/pre-commit/pre-commit/releases) - [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md) - [Commits](https://github.com/pre-commit/pre-commit/compare/v3.1.0...v3.1.1) --- updated-dependencies: - dependency-name: pre-commit dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Bump ansible from 7.2.0 to 7.3.0 (#89)Gravatar dependabot[bot]2023-03-06-1/+1
| | | | | | | | | | | | | | | Bumps [ansible](https://github.com/ansible/ansible) from 7.2.0 to 7.3.0. - [Release notes](https://github.com/ansible/ansible/releases) - [Commits](https://github.com/ansible/ansible/commits) --- updated-dependencies: - dependency-name: ansible dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Match casing of task handlersGravatar GDWR2023-03-04-5/+5
| | | | Ansible is case sensitive when specifying a handler
* Bump pre-commit from 3.0.4 to 3.1.0 (#86)Gravatar dependabot[bot]2023-02-27-1/+1
| | | | | | | | | | | | | | | | Bumps [pre-commit](https://github.com/pre-commit/pre-commit) from 3.0.4 to 3.1.0. - [Release notes](https://github.com/pre-commit/pre-commit/releases) - [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md) - [Commits](https://github.com/pre-commit/pre-commit/compare/v3.0.4...v3.1.0) --- updated-dependencies: - dependency-name: pre-commit dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Only install `python3-pip` on `control` as it is required to install ansibleGravatar GDWR2023-02-22-2/+2
|
* add snippet about world writable ansible dir on windows causing permissions ↵Gravatar Bradley Reynolds2023-02-22-1/+5
| | | | | | errors Signed-off-by: Bradley Reynolds <[email protected]>
* Add `local_testing` utilizing vagrant and virtualbox to create an ↵Gravatar GDWR2023-02-22-0/+204
| | | | environment that we can test ansible updates in
* Bump SebastiaanZ/github-status-embed-for-discord to 0.3.0Gravatar Chris Lovering2023-02-22-10/+1
| | | | This also removes the need to pass some of the keys, so those have been removed.
* Bump CI action versions to latestGravatar Chris Lovering2023-02-22-5/+5
|
* Pin dependencies & resolve ansible-lint failures (#79)Gravatar GDWR2023-02-22-9/+32
| | | | | | | * Use uppercase for all names * Pin `requirements.txt` versions * Add `dependabot.yml`
* Update & Deploy Kubespray (#77)Gravatar Hassan Abouelela2023-02-08-32/+1938
| | | | | | | | | | | | | | | | | | | | | | | | | * Move Kubespray Inventory Move the kuberspray inventory to the repo root to make accessing it easier, and unify inventories. * Document Kubespray Deploy Instructions Signed-off-by: Hassan Abouelela <[email protected]> * Ignore Kubespray In Ansible Lint Signed-off-by: Hassan Abouelela <[email protected]> * Fix Ansible Lint The `.github` folder was inappropriately being included in linting due to actions being in yaml format. Signed-off-by: Hassan Abouelela <[email protected]> --------- Signed-off-by: Hassan Abouelela <[email protected]>
* Add MOTD and sudo lecture roles (#76)Gravatar ChrisJL2023-02-08-0/+39
|
* Update bootstrap script to use shorturl (#75)Gravatar ChrisJL2022-12-21-1/+1
|
* Add instructions to the bootstrap script (#74)Gravatar ChrisJL2022-12-21-1/+9
| | | | | * Add instructions to the bootstrap script * Make the .ssh folder before making a file within
* Add a server bootstrap script (#73)Gravatar ChrisJL2022-12-21-0/+15
|
* Add kubespray moduleGravatar Johannes Christ2022-11-27-0/+3
|
* Delete roles we won't use with self-hosted k8sGravatar Chris Lovering2022-10-18-1193/+0
|
* Disable `fqcn-builtins` lintGravatar Johannes Christ2022-04-07-0/+1
| | | | | This got introduced by a recent `ansible-lint` update, and is now breaking all PRs (and failing on master).
* Add meeting notes for todayGravatar Johannes Christ2022-04-07-0/+22
|
* Add auditbeatGravatar Joe Banks2022-03-15-0/+159
|
* Return random URL for default serverGravatar Joe Banks2022-03-15-2/+40
|
* Move from sites-enabled to conf.d for Kibana NGINXGravatar Joe Banks2022-03-15-1/+1
|
* De-duplicate elasticsearch apt reposGravatar Joe Banks2022-03-15-131/+59
|
* Address ansible-lint concernsGravatar Joe Banks2022-03-15-4/+8
|
* Add wireguard rule to allow all internal trafficGravatar Joe Banks2022-03-15-1/+6
|
* Add new logs tooling to root playbookGravatar Joe Banks2022-03-15-0/+13
|
* Add PacketbeatGravatar Joe Banks2022-03-15-0/+300
|
* Add FilebeatGravatar Joe Banks2022-03-15-0/+178
|
* Add Kibana and NGINX config for KibanaGravatar Joe Banks2022-03-15-0/+100
|
* Add ElasticsearchGravatar Joe Banks2022-03-15-0/+48
|
* Install and configure fail2banGravatar Joe Banks2022-03-15-0/+45
|
* Remove vim modelinesGravatar Joe Banks2022-03-15-11/+1
|
* Capitalise all task names in rolesGravatar Joe Banks2022-03-15-10/+10
| | | | Makes all role names begin with a capital letter in Ansible roles
* Allow HTTP traffic through the firewallGravatar Joe Banks2022-03-15-2/+2
| | | | Allow HTTP traffic in addition to HTTPS by switching to the "Nginx Full" ruleset
* Update extra SANGravatar Joe Banks2022-03-14-1/+1
|
* Force reload on all rsync operationsGravatar Joe Banks2022-03-14-2/+20
| | | | | | | | Update the forced command in authorized_keys to reload NGINX after termination of the rsync session. This ensures that after key updates complete they will be reloaded and pushed to NGINX.
* Add certbot rolesGravatar Joe Banks2022-03-14-1/+125
| | | | | | | | | | Add a certbot role that generates a certificate on the first host in the NGINX group and then deploys it to all other NGINX hosts. As of now we generate wildcard certs for pythondiscord.com and pydis.wtf. A unique SSH key is generated for each replica host which is restricted for security purposes. A deploy hook is installed to push renewals to other hosts.
generated by cgit v1.2.3 (git 2.39.1) at 2025-10-24 03:25:59 +0000