Commit Graph

615 Commits

Author SHA1 Message Date
ead19311c2 Also ensure Ansible owns EVERYTHING in their home dir 2020-07-08 00:47:13 -05:00
41225985fd Ensure Ansible user has the right perms
This was causing issues when I migrated home directories across machines
2020-07-08 00:45:14 -05:00
1da2e625b5 Remove 99x11-common_start
This seems like a bad idea at first, but then you realize that the moment a user's .xsessionrc or .xinitrc gets sourced in, 99% of the time they exec themselves
2020-07-08 00:41:31 -05:00
241a74a21f Add a gmod server and required roles 2020-07-05 11:45:27 -05:00
61ed816059 Update inventory, add a new steamcmd role 2020-07-05 09:26:21 -05:00
8946e7284f Use lineinfile instead of calling out to dpkg 2020-07-05 08:56:35 -05:00
4b9ea3b3f6 Assure .ssh dir BEFORE we have to write something into it 2020-07-05 08:46:47 -05:00
5972c8f7e7 Configure running services
In particular, disable unattended-upgrades as it may interfere with ansible-pull
2020-07-04 19:50:55 -05:00
744b72858f Move common packages into another tasks file 2020-07-04 19:47:11 -05:00
166bcb59b6 Add kdepim 2020-07-04 06:22:26 -05:00
f116244b25 Rename localansible role to just ansible 2020-07-02 23:56:11 -05:00
034ce830d8 Add whois to basic package set 2020-07-02 01:16:29 -05:00
0a1a39cc4f Use variable for mc view dist 2020-07-02 00:23:17 -05:00
9a39fbb654 Zoom finally got around to adding a good simlink endpoint. Maybe they'll have a repo at some point, too 2020-07-01 23:22:25 -05:00
70bce852f9 Include rdesktop 2020-07-01 12:08:16 -05:00
042099032c Add htop to common package list
I guess that's not installed by default on 20.04
Anymore
for some reason
idk
2020-06-30 14:09:48 -05:00
efd22958a3 Ignore .backup directories that don't have anything in them 2020-06-30 07:09:29 -05:00
19908fea0b Ignore directories of users who don't have anything to back up 2020-06-30 07:08:09 -05:00
2b8cf96cfe Whups 2020-06-30 07:04:08 -05:00
0918589be6 Fix typo
Totally didn't just copy this thing
Totally
2020-06-30 06:54:45 -05:00
46f098dfb2 Slight semantic difference in tarring 2020-06-30 06:48:53 -05:00
debfc714aa Template out a backup module for desktops
Kinda primitive, but the idea is that I can just link shit into ~/.backups and it'll get backed up
2020-06-30 06:47:31 -05:00
c58b04533c Disable setting maintenance mode on Nextcloud backups
Risky move!
2020-06-30 06:28:49 -05:00
8ee2aa91ec Fix typo 2020-06-30 06:24:36 -05:00
622dcacc07 Move to backup timers instead of cronjobs, lay groundwork for backing up personal systems 2020-06-30 06:22:27 -05:00
df047fb174 Have Minecraft servers publish their own DNS records
AUTOMATE
EVERYTHING
2020-06-30 05:52:18 -05:00
ab36f2376e Become root when attempting to push changes to DNS
Kinda forgot the aws keys were in root's home folder whups
2020-06-29 11:24:27 -05:00
6ce15dcd96 Register DNS automatically for 9iron instances
This opens the door to making new CNAME entries for other services
automagically
2020-06-29 11:18:26 -05:00
997fc8b3ee Go back to Nitrogen
aaaaa
2020-06-29 10:28:18 -05:00
4eb55dca2d Fix wrong wm and lack of conky in desktop deps
ups
2020-06-29 06:18:55 -05:00
2e807d6b1b More dev scripts 2020-06-29 03:56:46 -05:00
3d11ee5a17 Add cmake 2020-06-29 03:46:26 -05:00
c291ce7f85 Install debhelper tools 2020-06-29 03:42:57 -05:00
618e0211a8 Install smartmontools
WHY THE FUCK
DOES IT WANT
TO INSTALL
POSTFIX
2020-06-28 09:06:23 -05:00
1d8ebf17dc Remove substitute tweaks
run once on all the hosts, as I already did, and you're done
2020-06-28 08:41:30 -05:00
47977063f4 Fix old substitutes, also how about we generate new fancy keys instead of old RSA ones
Also because this is clobbering my old keys help me
2020-06-28 08:36:57 -05:00
51869e069a Instead of janking read-only git bullshit, how about we actually generate some keys? 2020-06-28 08:27:46 -05:00
e898ee97b4 Remove pidgin from package list
Yeah fuck that noise
2020-06-28 07:37:03 -05:00
76e7206131 ncdu is manditory 2020-06-28 07:30:47 -05:00
172fb2a33b Install php-redis on Nextcloud
ups
2020-06-26 23:48:41 -05:00
04a538d274 Verify ownership of MC world after restore 2020-06-26 20:27:46 -05:00
cf8d063f56 Depend Minecraft on AWS creds 2020-06-26 20:26:22 -05:00
5624967fd9 Alias Matrix vhost to server name
Turns out Matrix actually sends the delegated host in the Host: field, which is probably why this fails
Interdasting
https://matrix.org/docs/spec/server_server/latest#resolving-server-names
2020-06-26 11:24:57 -05:00
7f1653d881 Stop server before recovery 2020-06-25 08:57:58 -05:00
9886ae046a Also clean up more after script end 2020-06-25 08:57:24 -05:00
6f619f2f9d Fix tar invocation 2020-06-25 08:56:43 -05:00
eef44aab43 Look in ./var for backup 2020-06-25 08:54:47 -05:00
ccdcfffcaa Force local resolution for tar
why the fuck
2020-06-25 08:51:17 -05:00
4e2732be3f Don't run the recovery script if the world exists
BIG OOPS
2020-06-25 08:50:01 -05:00
06a21f1770 ups, {{{ 2020-06-25 08:47:56 -05:00
8bdfd3936d Clean up after recoveries 2020-06-25 08:45:39 -05:00
d698f0b588 Set up a recovery script for MC servers
this shit happens to goddamn often-
2020-06-25 08:42:29 -05:00
4b9e2503d6 Bump HSTS on Nextcloud 2020-06-25 06:30:44 -05:00
68a4a21c64 Reconfigure pull timers, add defaults 2020-06-25 02:19:36 -05:00
1b618daf54 Modularize ansible-pull a bit 2020-06-25 02:16:06 -05:00
e2cee3a6fa Force move when unpacking modpack 2020-06-24 23:39:14 -05:00
5a032fe26e Redownload forge on updates
This isn't the best solution, but it works
2020-06-24 10:51:48 -05:00
847a83b209 Implement support for new naming scheme 2020-06-24 10:51:11 -05:00
2fed89bc4c Add handlers to Minecraft 2020-06-24 10:40:51 -05:00
7db2c2bbab Switch gears, use installer script 2020-06-24 10:38:24 -05:00
8e9f6a9582 Hopefully fix erroneous MultiMC pack detection 2020-06-24 10:29:58 -05:00
b044082ea1 Bump to root when stopping service
ups
2020-06-24 10:21:09 -05:00
bcf8fe1081 Stop Minecraft before knocking its feet out from under it 2020-06-24 10:19:23 -05:00
3517e71f60 Remove remnants of old pack when pushing an update 2020-06-24 10:18:09 -05:00
c8b5d97c02 Change control flow of Minecraft deployment 2020-06-24 09:33:43 -05:00
d5d6bfcf2e Unify log titles 2020-06-24 09:24:09 -05:00
ecbfdb0f4e PROPERLY qualify 2020-06-24 09:23:56 -05:00
4cdebd4b35 Properly qualify MultiMC code 2020-06-24 09:22:26 -05:00
850d0e97f8 Work on improving Minecraft deployments 2020-06-24 09:20:25 -05:00
7091be6f60 Move more vars for Gitea, polish 9iron.yml 2020-06-24 07:16:34 -05:00
b023bc1ea1 Move matrix vars into defaults 2020-06-24 07:15:05 -05:00
2bf650657e Move dokuwiki vars into defaults 2020-06-24 07:12:42 -05:00
8bb24a28ca Move NC vars into defaults, where they should be 2020-06-24 07:10:22 -05:00
f8adc3cd10 Configure backups more appropriately across servers 2020-06-23 09:52:55 -05:00
44b3b99990 Template out matrix vars a bit more nicely, make config changes 2020-06-23 09:47:48 -05:00
a26e3630f0 Work on polishout our homeserver.yaml 2020-06-23 09:40:16 -05:00
4c9e27d9a5 Make AWS S3 copy nicer 2020-06-23 08:03:16 -05:00
6f842a3464 Switch IME 2020-06-23 04:18:36 -05:00
77be60fd4d Switch UIM plugins 2020-06-23 04:09:22 -05:00
37d9f54617 Add UIM 2020-06-23 04:07:51 -05:00
2901cd8af9 Restart Minecraft servers nightly 2020-06-22 12:07:07 -05:00
429642fe6a Switch from STANDARD_IA to STANDARD for S3 backups
My retention period is actually too low for IA lol
2020-06-22 11:46:24 -05:00
c6f750d0c1 Run backups more frequently
Just had a DR tonight and I need more frequent backups than "nightly at 2am"
2020-06-22 11:36:31 -05:00
b36f351740 Fix using mc templates in matrix backup script
ups
2020-06-22 11:17:01 -05:00
2c91b8cd5d Make matrix backups 2020-06-22 11:05:56 -05:00
05dc022adb Enable embedding in grafana 2020-06-22 07:52:31 -05:00
13d2d6a77f Remove erroneous notify on an include 2020-06-22 07:23:15 -05:00
eba35a0256 Set default id server for matrix 2020-06-22 07:22:40 -05:00
c620f1d80e Remove dep on mysql for matrix
It's either postgres or sqlite
Take a guess
2020-06-22 06:39:15 -05:00
b0693c1ddd notify: restart apache
a lot
2020-06-22 06:33:57 -05:00
23c0763fce Fix our dumb proxy pass args lol 2020-06-22 06:31:58 -05:00
9ca53861a5 Actually proxypass properly 2020-06-22 05:34:01 -05:00
56057012b5 Fix accidentally breaking gitea lmao 2020-06-22 05:24:58 -05:00
124997992e Really fix it 2020-06-22 05:07:25 -05:00
c92f044a7d Fix looking for wrong config file on apache config templating 2020-06-22 05:07:11 -05:00
5f76a6d8f7 Polish up our Matrix config a bit 2020-06-22 05:03:32 -05:00
71f3269798 Fix missing quote 2020-06-22 04:44:14 -05:00
89c2025dcc More work on Matrix deployment, configure apache on 8448 2020-06-22 04:43:05 -05:00
50321bd2a2 Fix typo 2020-06-22 04:28:38 -05:00
1bcd748484 Also restart synapse
forgot about that
2020-06-22 04:10:32 -05:00
3b785e47b5 Generate turn secrets 2020-06-22 04:09:24 -05:00
e766baf63d Generate secrets for Matrix 2020-06-22 04:08:03 -05:00
46e0dff885 Fix an actual okay error where Synapse uses double curly braces in its config 2020-06-21 11:35:16 -05:00
f35e8f9eca I DIDN'T CHANGE THE SOURCE EXTENSIONS 2020-06-21 11:28:11 -05:00
24f79bc4ab They're really called fucking .yaml? Really? 2020-06-21 11:23:40 -05:00
a20efc3ca2 Fix wrong variables in loop
am good sysadmin
2020-06-21 11:17:52 -05:00
d15e44c7ea Move notify on templating configs 2020-06-21 11:12:38 -05:00
cec71cd2ad Fix typo 2020-06-21 11:05:01 -05:00
f8bf755f4f Working on more fedi stuff 2020-06-21 10:58:56 -05:00
d457ebf213 Separate out our proxy from our frontend 2020-06-21 10:50:59 -05:00
aed52c16a0 Working on more Matrix stuffs, adding creds for SES 2020-06-21 10:46:49 -05:00
73d1ebd9a2 Less clobber when grabbing certs
I bet you know where this is going
You probably don't
It's for host delegation
2020-06-21 10:24:05 -05:00
b839015b28 Add part of a matrix setup 2020-06-21 10:22:01 -05:00
bb59382d4c Remove pull tag
Fuck it, we're doing it all
2020-06-17 09:34:13 -05:00
33f5af534e Tag certain roles for pull remediation 2020-06-17 09:29:24 -05:00
62ea91fc7f Remove all references to ansiblehost 2020-06-17 09:26:13 -05:00
531b2e19dc Use proper hostname source when templating hosts
Because we turn around and invalidate nodename like immediately
2020-06-17 09:24:34 -05:00
71cfb5c2be Remove timebomb
grep -r -e 'here we go again'
2020-06-17 09:19:53 -05:00
3d91b4d752 Configure hostnames
oh boy here we go
2020-06-17 09:16:08 -05:00
8ea69fd3b4 Declare proper deps on ansible-pull role 2020-06-17 09:07:28 -05:00
c69954eeb5 Absolute our binary for ansible-pull timer
Because I guess we need to do that on 18.04
2020-06-17 09:04:20 -05:00
79102c5d0c More tweaking on that front 2020-06-17 09:03:47 -05:00
27e6cadb9a Work on switching to ansible in pull mode 2020-06-17 08:52:28 -05:00
7344050dde Fix reloading influxdb as normal user
derp
2020-06-16 10:09:16 -05:00
1ac644d8d1 Fix closing quote, rename sudoers config 2020-06-16 10:08:12 -05:00
8f15bf4f2b Make some tweaks, actually add our Ansible user 2020-06-16 10:04:54 -05:00
fe7b962ad7 Create mopidy config directory if it doesn't exist 2020-06-16 09:53:01 -05:00
ed9298fae4 Add zerotier roles to 9iron servers
I'm going to regret this, I know it
2020-06-16 09:48:07 -05:00
fa6b01b782 Add SSHD config for desktops 2020-06-16 09:42:27 -05:00
c1ad0bb498 Perms whups 2020-06-16 09:36:36 -05:00
6d05dc50d9 Add openssh server to default package list 2020-06-16 09:35:47 -05:00
f0a61e9538 Reorganize inventory, add ansible system user
Who is only used on my desktop hosts, obviously
2020-06-16 09:34:55 -05:00
f9826d2e9f Stop saying changed when I assert i386 arch 2020-06-16 09:18:14 -05:00
d3feeebb46 Stop trying to disable a news service that doesn't need disabling 2020-06-16 09:17:53 -05:00
afa7c651a8 Stop trying to configure zerotier in the wrong place 2020-06-16 09:15:48 -05:00
37a85f625f Move zerotier into its own role 2020-06-16 09:14:33 -05:00
e0169f8915 Add Zerotier to the list of things to do for desktops 2020-06-16 08:58:38 -05:00
59df24dc13 Add barrier
Sliiiiiiick
2020-06-16 08:50:26 -05:00
b8624e069f Set Mopidy volume to a much, much more reasonable level 2020-06-15 09:55:29 -05:00
1dae60f120 Actually use those spotify vars god dammit 2020-06-15 09:00:10 -05:00
4de750c106 Actually allow Mopidy to serve on an MPD socket
ups
2020-06-15 08:59:28 -05:00
160fa41d1a Make secrets less executable 2020-06-15 08:58:03 -05:00
a157988506 Make secrets secret 2020-06-15 08:56:20 -05:00
6db1c680fa Add mopidy to desktop role 2020-06-15 08:55:51 -05:00
f9a8c86b9c Separate package installation into its own task file, install mopidy stuff 2020-06-15 08:41:26 -05:00
e2d73a8427 Disable mopidy.service 2020-06-15 08:25:07 -05:00
90800438d7 Switch out MPD for Mopidy 2020-06-15 08:20:09 -05:00
7789127491 Remove Spotify adblock aliases
Well shit.
2020-06-15 08:13:13 -05:00
384c27b017 Install Spotify 2020-06-15 07:58:27 -05:00
8860638c87 Supress more AWS stuff 2020-06-09 05:16:22 -05:00