muppeth
fb2dde1d7d
cleaned up and streamlined the wildcard cert creation process
2023-12-29 18:26:59 +01:00
muppeth
41b95fb710
Merge branch 'main' into wildcard
2023-12-29 14:11:16 +00:00
meaz
31bfe12f38
add header cryptpad 5.6.0 ( #60 )
...
Reviewed-on: #60
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2023-12-26 19:52:53 +00:00
muppeth
fd1184cfef
Lemmy template fix; replace depricated include with include_tasks ( #61 )
...
Reviewed-on: #61
Reviewed-by: meaz <meaz@no-reply@disroot.org>
Co-authored-by: muppeth <muppeth@disroot.org>
Co-committed-by: muppeth <muppeth@disroot.org>
2023-12-24 07:26:08 +00:00
meaz
975fd3949f
update lemmy role to match upstream ( #58 )
...
Reviewed-on: #58
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
Co-authored-by: meaz <meaz@disroot.org>
Co-committed-by: meaz <meaz@disroot.org>
2023-12-20 13:02:34 +00:00
meaz
bc560888db
deploy with machine_name
2023-12-03 12:17:02 +01:00
meaz
b82921e642
set server name to wildcard when wildcard set
2023-11-26 12:12:42 +01:00
meaz
8b9468191a
add subject_alt_name and CN when wildcard declared
2023-11-26 12:12:09 +01:00
meaz
d7041335e4
upgrade to cryptpad 5.5.0 ( #56 )
...
Reviewed-on: #56
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2023-10-31 20:03:42 +00:00
meaz
b57ac22a41
force http on proxy_pass for mumble-web ( #51 )
...
Unless I messed up with something, I can not deploy correctly if I keep `{{ item.proto }`. Indeed, it has to be set as http by default, but if I set `proto` in defaults as `http`, set certificates aren't deployed...
And as I just wrote, it has to be `proxy_pass http://<proxybox>:64737;` anyway.
I'm done with the role btw.
Reviewed-on: #51
2023-10-25 04:53:45 +00:00
meaz
678fd345d3
movim ( #55 )
...
I've just noticed that we have a movim branch, but that we never done a PR!
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #55
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2023-10-20 11:46:39 +00:00
muppeth
89889fff5b
Searx template - added variable set_real_ip when using additional reverse proxy ( #54 )
...
When using reverse rpoxy in front of searx and using limiter (or filtron) we need to be able to pass on client real ip.
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #54
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2023-09-19 19:40:18 +00:00
meaz
a2ef7572cd
try to match upstream with cryptpad5.4.1 ( #52 )
...
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #52
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2023-09-06 19:28:54 +00:00
muppeth
49149f7eb5
small fix to basephp template ( #53 )
...
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #53
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2023-08-13 03:57:18 +00:00
muppeth
80dd92a994
adding header to core; adding header for pleroma ( #49 )
...
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #49
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2023-06-24 06:31:08 +00:00
muppeth
d5b2c45d16
Zabbix Check Fix ( #48 )
...
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #48
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2023-05-18 12:54:16 +00:00
meaz
e6a1ae4d89
update cryptpad template to match 5.3.0 ( #47 )
...
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #47
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2023-05-16 19:12:58 +00:00
muppeth
3c0d238f24
525 - Updated zabbix checks vhost including php ( #46 )
...
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #46
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2023-05-16 04:08:17 +00:00
muppeth
1487af80da
Tor Adjustements ( #44 )
...
fix for onion addresses; added header to autodetect onion address on tor browser
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #44
2023-01-18 21:58:55 +00:00
meaz
98f9868b75
add lemmy template ( #34 )
...
Working, just not for pict-rs, so if you can have a look @muppeth
Co-authored-by: meaz <meaz@disroot.org>
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #34
2023-01-18 14:35:23 +00:00
muppeth
18cb8f5b37
Pad Template ( #43 )
...
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #43
2023-01-17 21:59:36 +00:00
muppeth
4afb881e92
Disable Tor Default ( #42 )
...
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #42
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2023-01-17 21:05:20 +00:00
muppeth
93a0c94758
fixed onion_address.content base64 decode issue in core template ( #41 )
...
Ansible's builtin base64 decode is automatically moving to new line which was breaking the configuration as it needs `;` at the end. Adding trim solves it.
Additionally removed .onion since the generated onion address already has it.
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #41
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2023-01-17 20:24:53 +00:00
muppeth
79448def24
Small template changes ( #40 )
...
Changes to templates:
- core
- pleroma
- proxy
- mumble
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #40
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2023-01-17 14:30:34 +00:00
meaz
6c96fe5180
tor ( #38 )
...
Co-authored-by: muppeth <muppeth@disroot.org>
Co-authored-by: meaz <meaz@disroot.org>
Co-authored-by: muppeth <muppeth@no-reply@disroot.org>
Reviewed-on: #38
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2023-01-17 14:25:11 +00:00
meaz
ae7f3a72b4
match new cryptpad v5.2.1 config ( #37 )
...
@muppeth could you check https://github.com/xwiki-labs/cryptpad/commits/main/docs/example.nginx.conf , the two commits from Dec 7, 2022 , and adjust as needed? I'm not too sure where to implement those changes, not in cryptpad template apparently...
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #37
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2023-01-17 14:05:52 +00:00
meaz
2a853122c1
change include to include_tasks ( #39 )
...
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #39
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2023-01-13 17:02:09 +00:00
meaz
e69f196489
fix limiter issue ( #36 )
...
see https://github.com/searxng/searxng/issues/1492 and https://github.com/searxng/searxng/issues/1289#issuecomment-1153004382
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #36
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2023-01-13 17:01:42 +00:00
muppeth
84a1e2991d
Maintenance Vhost ( #35 )
...
added task of deploying maintenance pages for vhost for easy swap when service under maintenance
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #35
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2023-01-12 20:56:12 +00:00
antilopa
f7e825f45c
vhost_headers_update ( #17 )
...
Part of a group of PR's rewriting and cleaning up Nginx headers.
Co-authored-by: antilopa <antilopa@disroot.org>
Co-authored-by: muppeth <muppeth@disroot.org>
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #17
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
Reviewed-by: meaz <meaz@no-reply@disroot.org>
Co-authored-by: antilopa <antilopa@no-reply@disroot.org>
Co-committed-by: antilopa <antilopa@no-reply@disroot.org>
2023-01-12 20:49:39 +00:00
meaz
7d851c4fdf
fix couple of issues on searx ( #33 )
...
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #33
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
Co-authored-by: meaz <meaz@no-reply@disroot.org>
Co-committed-by: meaz <meaz@no-reply@disroot.org>
2022-11-15 23:47:32 +00:00
meaz
a26f5fe40a
Update searx to include limiter unstead of filtron ( #32 )
...
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #32
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2022-11-15 16:18:39 +00:00
muppeth
4d0d913abf
Cryptpad - added FrameAcestors variable to the template ( #31 )
...
By default it will set `https: vector:` unless `item.ancestors` is defined in vhost array
Co-authored-by: muppeth <muppeth@disroot.org>
Co-authored-by: meaz <meaz@disroot.org>
Co-authored-by: meaz <meaz@no-reply@disroot.org>
Reviewed-on: #31
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2022-11-08 20:48:51 +00:00
meaz
bcb406061f
Remove nginx static assets caching (done by Lufi now) ( #27 )
...
see here https://framagit.org/fiat-tux/hat-softwares/lufi/-/wikis/installation/diff?version_id=f561a1f4afa55bd3ca993df8bfc13fa6f062b314
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #27
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2022-10-18 13:45:44 +00:00
meaz
33be6b2240
bump to cryptpad 5.1.0 ( #30 )
...
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #30
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2022-09-27 19:17:19 +00:00
muppeth
e6244872e8
Merge pull request 'cstate' ( #29 ) from cstate into master
...
Reviewed-on: #29
2022-09-06 20:52:22 +00:00
meaz
7fcaa2f982
fix cstate template
2022-07-25 22:22:39 +02:00
meaz
166351a98c
cstate template
2022-06-21 06:33:26 +02:00
meaz
91c7a475e4
bumpt cryptpad template to 5.0.0 ( #26 )
...
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #26
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2022-06-21 04:20:48 +00:00
muppeth
5fc206c68f
Merge pull request 'Searx template fix - prevent leaking internal ip behind proxy' ( #25 ) from searx_tpl into master
...
Reviewed-on: #25
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2022-06-14 11:36:54 +00:00
muppeth
dccfbba0fa
removed proxy ip address. prevents from showing internal ip when using ip feature in searx
2022-06-03 03:57:20 +02:00
meaz
68ffa6c51d
add missing deps to create selfsigned certificate ( #19 )
...
Co-authored-by: meaz <meaz@disroot.org>
Co-authored-by: muppeth <muppeth@no-reply@disroot.org>
Reviewed-on: #19
Reviewed-by: antilopa <antilopa@no-reply@disroot.org>
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2022-06-01 20:11:06 +00:00
meaz
04672b22fa
update nginx template for cryptpad 4.14 ( #22 )
...
Co-authored-by: meaz <meaz@disroot.org>
Co-authored-by: muppeth <muppeth@no-reply@disroot.org>
Reviewed-on: #22
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
2022-06-01 20:10:24 +00:00
meaz
a2b99e98bf
akaunting template ( #2 )
...
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #2
Reviewed-by: antilopa <antilopa@no-reply@disroot.org>
Co-authored-by: meaz <meaz@no-reply@disroot.org>
Co-committed-by: meaz <meaz@no-reply@disroot.org>
2022-06-01 12:54:42 +00:00
muppeth
18283258c9
cryptpad - fixed unsafe csp header directives for sandbox ( #24 )
...
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #24
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2022-05-10 19:27:56 +00:00
muppeth
541f4cdfef
Privatebin Var Update ( #23 )
...
small changes to the template reflecting upstream docs.
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #23
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2022-05-08 07:03:15 +00:00
muppeth
e02433bb25
changes to cryptpad template; small fix for core template ( #20 )
...
Co-authored-by: muppeth <muppeth@disroot.org>
Co-authored-by: meaz <meaz@no-reply@disroot.org>
Reviewed-on: #20
Reviewed-by: meaz <meaz@no-reply@disroot.org>
Co-authored-by: muppeth <muppeth@no-reply@disroot.org>
Co-committed-by: muppeth <muppeth@no-reply@disroot.org>
2022-03-29 21:45:07 +00:00
muppeth
798b98ec9d
simple php template to test things ( #21 )
...
just simple php template.
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #21
Reviewed-by: meaz <meaz@no-reply@disroot.org>
2022-03-21 20:13:46 +00:00
muppeth
1ed9505c6d
pleroma initial template ( #18 )
...
Co-authored-by: muppeth <muppeth@disroot.org>
Reviewed-on: #18
Reviewed-by: antilopa <antilopa@no-reply@disroot.org>
Reviewed-by: meaz <meaz@no-reply@disroot.org>
Co-authored-by: muppeth <muppeth@no-reply@disroot.org>
Co-committed-by: muppeth <muppeth@no-reply@disroot.org>
2021-11-16 09:57:28 +00:00
meaz
19f1bd4cb7
update nginx template for cryptpad 4.12.0 ( #16 )
...
(sorry I messed up a it with the branch name, as I was working on gitea update at the same time)
Co-authored-by: meaz <meaz@disroot.org>
Reviewed-on: #16
Reviewed-by: muppeth <muppeth@no-reply@disroot.org>
Reviewed-by: antilopa <antilopa@no-reply@disroot.org>
Co-authored-by: meaz <meaz@no-reply@disroot.org>
Co-committed-by: meaz <meaz@no-reply@disroot.org>
2021-11-05 06:29:52 +00:00