Commit Graph

537 Commits

Author SHA1 Message Date
2769a78198 Source a backuprc if we have it to allow for site-local backup storage changes 2020-05-03 06:08:36 -05:00
6440710a3e Hardcode backups directories
Unless I make these playbook-wide variables, there's no real way to configure them at runtime. Best to just hardcode them, I suppose
2020-05-03 05:48:01 -05:00
f9ad4801c5 Log to the backups directory 2020-05-03 03:08:13 -05:00
86ab23bd07 Add an untested barebones backup script wrapper 2020-05-03 03:06:16 -05:00
26a83ae2ab Add joy2key and joystick 2020-05-02 10:21:44 -05:00
ef516aca30 Or I guess we just need an operator, whatever 2020-05-02 05:58:15 -05:00
44ac75ba88 Fix unquoted string literal 2020-05-02 05:57:04 -05:00
433ebb900f Install Piper on focal 2020-05-02 05:55:40 -05:00
fb941e4297 Don't install ricing packages that don't exist 2020-05-02 05:13:16 -05:00
006f8759fe Give less of a shit about which version of PHP we install on our desktop 2020-05-02 05:00:31 -05:00
533406d69a Remove pip2
Kinda never needed it anyway
2020-05-02 04:54:14 -05:00
8b58b1fe24 Install Zoom
[shudders]
2020-05-02 04:24:23 -05:00
d43a91c04c Remove some unwanted applications on desktop role 2020-05-02 04:18:47 -05:00
770a6a1258 Turn off password requirements 2020-05-01 14:59:10 -05:00
18d4ea0b09 Clean up our Gitea role a little bit 2020-05-01 14:01:53 -05:00
add7926db5 Update links across the board to point to git.9iron 2020-04-30 13:26:16 -05:00
988246ac66 Fix not including tasks to add user 2020-04-30 13:08:15 -05:00
30bed76efe Fix keeping a ton of json in key variables 2020-04-30 12:44:26 -05:00
67f636129c Rewrite app.ini based on pregenerated one
The one on the wiki is ass and misses a couple keys that HAVE to be generated
This fixes me not being able to upload with SSH
2020-04-30 12:33:04 -05:00
75f5e0c46c Fix botched quotes in MySQL query 2020-04-30 12:08:21 -05:00
21d3d8c410 Move add user task to an import_tasks task so that we can actually notify it, use systemd daemon reloads in a copuple places 2020-04-30 11:54:27 -05:00
ab51654a1b Gotta rice those repos boys 2020-04-30 11:33:36 -05:00
b491397580 Enable creating repos through push 2020-04-30 10:57:58 -05:00
e4eabcb32e Enable cache, correct deployment profile 2020-04-30 10:47:55 -05:00
347db1aba4 Correct ROOT_URL for Gitea 2020-04-30 09:28:49 -05:00
a1d8a578b6 Fix Gitea always being on localhost instead of its own fucking domain 2020-04-30 08:40:04 -05:00
f4568e7e49 Remove pymysql
Keeps getting auth errors because it's bad or whatever
2020-04-30 08:32:14 -05:00
2d9dd4a9a7 Simplify root password assignment for MySQL 2020-04-30 08:29:24 -05:00
4c1cf35afa Turns out mysql_query is in devel lol 2020-04-30 08:16:59 -05:00
a60dbf5062 REALLY fix syntax errors 2020-04-30 08:11:55 -05:00
e3509c0d6c Really fix syntax errors 2020-04-30 08:11:33 -05:00
72e5cbe090 Fix syntax errors 2020-04-30 08:11:03 -05:00
f68c64e467 Fix gitea user not having a shell 2020-04-30 08:10:02 -05:00
0d8f6f4a97 Use MySQL query to promote new user to admin
Because that doesn't happen by default
2020-04-30 07:56:36 -05:00
bd38470bde Disable registration by default 2020-04-30 07:38:54 -05:00
0ce93e0391 Small fixes in vhost 2020-04-30 07:38:06 -05:00
30041d16e1 Shoooould be the last thing we need to configure 2020-04-30 07:26:03 -05:00
04cc076d5c Create webroot so Apache stops complaining 2020-04-30 07:20:04 -05:00
a7f2afd43a Add default user if we're generating a DB 2020-04-30 07:07:18 -05:00
2b1ed0daf1 Revert "Add Gitea default user if and only if we don't have any users"
This reverts commit aa11c3378b.
Turns out I don't have that module, nor do I care to patch my
environment.
2020-04-30 07:05:28 -05:00
aa11c3378b Add Gitea default user if and only if we don't have any users 2020-04-30 07:03:52 -05:00
9553987cc7 Fuck it we're disabling redis
Just want this thing online
2020-04-30 06:50:43 -05:00
798cb2e57d Maybe finally fix passwordless redis 2020-04-30 06:45:13 -05:00
d4e4c53b00 Restart Gitea if service changes 2020-04-30 06:45:04 -05:00
70503185cd Configure Gitea and open up Redis 2020-04-30 06:32:19 -05:00
0e9b43438b Add the right module 2020-04-30 06:21:25 -05:00
4117fef790 Add our handler under the right name 2020-04-30 06:05:54 -05:00
90e1dbea28 Why am I trying to write to etc as git? 2020-04-30 06:01:59 -05:00
181f8835e2 Use handler so that we actually have a users table when we go to add the admin 2020-04-30 05:59:10 -05:00
35138d98e1 Actually use internal token 2020-04-30 05:53:16 -05:00
c5ee46be04 Become git when adding user 2020-04-30 05:44:19 -05:00
9fd5ca7e3f Whoops. Kinda need argv there 2020-04-30 05:41:12 -05:00
1ada045fa2 Quote variables 2020-04-30 05:39:53 -05:00
661cad5c39 Make command clearer, include config, and give the git user access to his damn config file 2020-04-30 05:38:55 -05:00
2f432feb24 Create default admin user on startup 2020-04-30 05:25:35 -05:00
bdb50afcc0 Actually do what the last commit message tried to do 2020-04-30 05:21:33 -05:00
01ef37f283 Fix Gitea trying to install what has already been installed 2020-04-30 05:20:21 -05:00
a80d0fa1c4 Only deploy Gitea config if we don't already have one 2020-04-30 05:08:52 -05:00
31ea3c3e1f Add Gitea role 2020-04-30 05:06:49 -05:00
f0028cdda0 Remove speed ricer repo
Blocker for 20.04 upgrade
2020-04-27 05:45:22 -05:00
2247a9db5d More progress on GitLab installation 2020-04-26 04:50:40 -05:00
5fa716d470 More configs, give in to GitLab's directory heirarchy
It's hardcoded in SO MANY FUCKING PLACES
2020-04-26 04:33:35 -05:00
16e27e1b80 Configure Apache for GitLab 2020-04-26 04:10:08 -05:00
a9dd6b65ec Update GitLab config 2020-04-26 03:56:04 -05:00
6d1fb9d41d Add postfix role 2020-04-26 03:48:55 -05:00
4b29609901 Remove Python 2 packages 2020-04-26 02:14:02 -05:00
bbdc136c11 Fix incorrect variable naming in GitLab role 2020-04-26 02:12:29 -05:00
da95df7a88 Fix Redis filename 2020-04-26 02:10:09 -05:00
5656d7dee8 Fix Redis declaring an invalid variable 2020-04-26 02:05:41 -05:00
1232d0be2f Switch to Python 3 for MySQL role 2020-04-26 02:05:32 -05:00
4941c56254 Detect PHP configuration directory 2020-04-26 02:02:15 -05:00
60b69d52f8 Add acl to required packages
Fixes a bug later down the line
2020-04-26 01:39:40 -05:00
f036d5701e Fix quoting on variable 2020-04-26 01:28:48 -05:00
824a17ad4d Move Redis into its own role 2020-04-26 01:22:36 -05:00
58f31c403e Add filezilla
Turns out I need FTP sometimes
2020-04-23 00:27:10 -05:00
a5790b55cc Add openconnect 2020-04-22 23:13:48 -05:00
b902d6e620 Fix not being able to install Slack
Yay
2020-04-22 23:01:59 -05:00
a977534c4e Make it more clear that ansiblehost should be pulling 2020-04-22 22:55:37 -05:00
39636ef0e5 Add slack to desktop 2020-04-22 22:52:48 -05:00
579445a4b7 Give MC server more memory, add a desktop package 2020-04-21 08:17:35 -05:00
293f74e49d Quit using remote_src 2020-04-18 03:16:17 -05:00
1906213fff Make nextcloud role less verbose 2020-04-18 03:15:41 -05:00
01793908a0 Add pwgen 2020-04-18 01:29:28 -05:00
4d2454088f Add more rice stuff 2020-04-15 10:35:16 -05:00
6beafec7c3 Add Nitrogen 2020-04-15 10:00:35 -05:00
96e7d8ca57 Add a workaround for a dumb Ubuntu bug 2020-04-15 09:57:41 -05:00
7a7ce8e0d0 Move the session into /usr/share, not local
Gotta fight SDDM bugs now
2020-04-15 09:48:40 -05:00
061f971b48 Copy over an i3 .desktop entry
Because apparently my i3-gaps guy doesn't include it
2020-04-15 09:46:57 -05:00
2fb3231bc3 Add ricing packages 2020-04-15 09:17:00 -05:00
2b03b3565d Rename some blocks 2020-04-15 09:01:11 -05:00
dcd53412ee Clean up cruft in desktop play 2020-04-15 08:59:19 -05:00
498bb75416 Add ricing repo 2020-04-15 08:58:13 -05:00
a1ca574f41 Make MOTD nuking more aggressive, add user role to localhost
Oopsie. Turns out my new VM didn't pull my dotfiles down.
2020-04-15 08:34:32 -05:00
71d1efe21c Add xdotool 2020-03-27 08:12:02 -05:00
98590d3aae Sort Minecraft server.properties, add missing file 2020-03-26 10:22:30 -05:00
40ab5434c6 Disable MOTD stuff
Cosmetic, yes, but annoying. Very annoying.
2020-03-26 10:00:22 -05:00
f856ca4fe6 Change restart condition for Minecraft server to always
With so many mods, it's possible for it to exit "cleanly"
2020-03-25 08:30:03 -05:00
b86c81add2 Polish up Minecraft server unit, reduce restart delay 2020-03-25 08:29:09 -05:00
43f0c3591c Add mupen 2020-03-25 06:57:45 -05:00
661b441dd3 Put P2 deps back into localansible 2020-03-23 04:28:34 -05:00
0ba9143a18 Reduce redundancy between ansible host roles 2020-03-23 02:31:54 -05:00
4ca00eaa3e Add Pulseeffects 2020-03-23 02:28:22 -05:00
f50eb1d0c8 Add Dolphin repo 2020-03-21 23:01:01 -05:00
e1c3a19b17 Add filelight 2020-03-21 22:41:18 -05:00
78a244f389 Add Kubuntu stuffs to desktop roles 2020-03-21 22:35:53 -05:00
4e57697906 Generalize pull role, apply it to desktop machines 2020-03-21 22:29:36 -05:00
3708b8f254 Rename desktop playbook 2020-03-21 22:21:25 -05:00
bbc2894d28 Add qbittorrent
New I was forgetting something
2020-03-20 06:07:32 -05:00
5b2fbaad4b Merge branch 'master' of gitlab.com:rehashedsalt/ansible 2020-03-16 18:00:12 -05:00
79fc6be3eb Remove erroneous dictionary entry 2020-03-16 18:00:01 -05:00
5f8cf52979 Add python3-usb 2020-03-16 17:23:12 -05:00
bb28e696cb Add a few android tools to desktops 2020-03-16 05:45:41 -05:00
f9c190c7b2 Fix redirects, change Minecraft port on botaniapack-1 2020-03-12 00:08:18 -05:00
bb481aceb3 Add another Minecraft server 2020-03-09 07:00:20 -05:00
221baa0910 Add pyqt5 to desktop role 2020-03-07 16:58:26 -06:00
4348fb2e6f Replace audacity with Cantata 2020-03-04 04:22:33 -06:00
ad10b482e8 Add more python packages
python dev wew
2020-03-04 03:02:35 -06:00
ba5681be97 Add appdirs for Python3 deps 2020-03-04 00:44:11 -06:00
56953be6a9 Add python venv 2020-03-03 16:59:57 -06:00
cbc37e7dd4 Add units to desktop 2020-03-02 05:51:31 -06:00
9ccc2b154b Add earlyoom
Defaults are good
2020-03-01 01:52:07 -06:00
6956324d6b Use latest version of PHP in Apache, whatever it is 2020-02-29 03:03:55 -06:00
d13e3f33ba Add php-xml to desktop packages 2020-02-29 03:02:38 -06:00
fef58fdc60 Install PHP on desktops
I KNOW
I know
I need it for dev
2020-02-28 04:12:03 -06:00
430fe1199c Remove unused themes
BREEZY BOI
2020-02-27 17:18:28 -06:00
8cc6688469 Migrate domains, reorganize websites so that they actually leverage sites-available and sites-enabled 2020-02-27 05:16:02 -06:00
968ca2eeaf Switch repo for gitweb, fix apache handler
God dammit Ubuntu
2020-02-26 19:10:21 -06:00
3a02792e3b Use handlers for Apache restarts, reorganize Minecraft tasks 2020-02-26 18:53:20 -06:00
e7623b6c77 Add handlers for apache, defaults for Minecraft 2020-02-26 18:43:51 -06:00
a206c16f43 Add service install, enable by default 2020-02-24 00:18:41 -06:00
eb5c6a62b0 Add Minecraft server role 2020-02-23 23:45:11 -06:00
884ed33ab6 Install more dictionaries and use a smaller one by default
lol
2020-02-23 03:24:39 -06:00
175b36c3ed Add wamerican-insane dictionary to playbook
I'm having an aneurism
2020-02-23 00:30:13 -06:00
363c11b2c1 Merge branch 'master' of gitlab.com:rehashedsalt/ansible 2020-02-22 16:35:28 -06:00
d657cccf05 Add a couple more packages 2020-02-22 16:35:01 -06:00
c82a60771b Add openvpn to desktop role 2020-02-20 20:23:59 -06:00
886ba76ea9 Fix ansiblehost role?
Hopefully?
2020-02-20 06:00:58 -06:00
08e81dea25 Minor semantic change in gitweb role 2020-02-20 05:31:11 -06:00
3ab2f9b425 Migrate gitweb 2020-02-20 05:29:27 -06:00
f2237a8e00 Migrate nextcloud 2020-02-20 05:28:39 -06:00
9f2d80ffdb Migrate dokuwiki role 2020-02-20 05:27:49 -06:00
b77975c199 Migrate redirect to new https behavior 2020-02-20 05:27:03 -06:00
85b0b2e139 Only attempt to fulfill the challenge if we have to 2020-02-20 05:25:46 -06:00
e5a5f5efcd Also maybe https should use a directory that actually exists
Holy fuck
2020-02-20 04:32:30 -06:00
092e9ae470 Use a more PATH-dependent mv command in https
Dude what
I get through all this complex ACME configuration and misplace fucking mv of all things
2020-02-20 04:28:29 -06:00
e44a6126c8 Have the https role do all the config changing
Hopefully this should cut down on erroneous changes
2020-02-20 04:19:03 -06:00
d41b4ebbdf Turn upgrade fields in apt modules into strings
This fixes a small but annoying warning
2020-02-20 04:02:01 -06:00
e8b77345f7 Have redirect clean up its webroot when it finishes 2020-02-20 03:58:18 -06:00
508d7889ba Fix permissions with https keys and certs 2020-02-20 03:56:51 -06:00
e8cd7dc58a Do the same for gitweb role 2020-02-20 03:51:13 -06:00
cb4cb59f32 Remove force from ansiblehost cloning
Really not required
2020-02-20 03:50:19 -06:00
75ae2367d4 Separate module enable tasks in apache-php, enable headers 2020-02-20 03:49:06 -06:00
0f8ed190b7 Fix dokuwiki role clobbering existing installs
WHOOPS THAT'S KINDA BAD OH FUCK
2020-02-20 03:21:04 -06:00
1a8b0ff6be Add another desktop program 2020-02-18 02:53:12 -06:00
9ad7a4b5ec Add DokuWiki role
It deploys without issue, naisu
2020-02-18 02:39:55 -06:00
b2c402b97e Try to fix ansiblehost cronjob by setting HOME 2020-02-17 21:51:27 -06:00
b5ca563b6e Add more programs to desktop role
See, this is why I have to make it a role
I lose track of all this shit over time
2020-02-17 21:10:11 -06:00
a6173db75f Add more packages to desktop role 2020-02-17 20:28:38 -06:00
c1d31742a8 Add desktop setup role
Assumes a Kubuntu full installation
2020-02-17 16:15:45 -06:00
4b4e0c81cb Separate vault passwords from the playbooks, fix ansibleupdate cronjob
Again
2020-02-14 15:40:31 -06:00
b54f52b47b Merge branch 'master' of gitlab.com:rehashedsalt/ansible 2020-02-14 03:18:24 -06:00
bbdaf54af1 Use absolute path on ansiblehost role cronjob
Ups
2020-02-14 03:18:11 -06:00
5034285ac2 Change ansiblehost role to rerun every 12 hours instead of 24
This renews certs at about the requested rate
Hopefully it doesn't break anything. I'm using LTS instances so it should be fine but you never know
2020-02-11 14:43:25 -06:00
9313f26fcb Add local Ansible setup role
Run with -K
2020-02-11 14:42:44 -06:00
bc1b618c05 More instances of bad variable naming 2020-02-11 04:25:42 -06:00
93fad9ab5c God fucking dammit 2020-02-11 04:22:50 -06:00
55cbc1eb2d Fix more bad variables from that copy
Oof
2020-02-11 04:20:25 -06:00
1ee8485b40 Remove leftovers from shamelessly copying a role
Whoops
2020-02-11 04:18:14 -06:00
728a6e4771 Add simple redirect role
And furnish that one, too
2020-02-11 04:16:57 -06:00
18627fbf39 Add simple git web deploy role
And, of course, furnish it
2020-02-11 04:06:29 -06:00
90fcbf7cbc Move Apache-PHP to its own role, set up dependencies 2020-02-10 01:19:59 -06:00
685a20bca6 Move SSL-required package into https role 2020-02-10 01:05:38 -06:00
0758ac1908 Remove key from MySql role 2020-02-10 01:02:36 -06:00
3e52a522f3 Generalize https setup into its own role 2020-02-10 00:50:56 -06:00
427804d68b Log cronjob on ansiblehost role 2020-02-08 01:44:06 -06:00
f8c152ebc1 Add fullchain to configs 2020-02-06 14:14:56 -06:00
ec2216a4cb Fix quoting on cronjob 2020-02-06 04:05:34 -06:00
ae29a7f870 Remove deprecated NameVirtualHost 2020-02-06 03:57:35 -06:00
7a1010f389 Fix typo in cronjob minute 2020-02-06 03:47:10 -06:00
96b7f55e63 Set up Nextcloud cronjob 2020-02-06 03:44:37 -06:00
cffd0b38bb Enable strict transport security 2020-02-06 03:22:38 -06:00
67373adcaf Add php configs, also add an unused mysql config 2020-02-06 03:17:15 -06:00
331005ab24 Change nextcloud db name 2020-02-06 01:42:12 -06:00
fc7f10a9e6 Let's uh... actually use the variable we set 2020-02-06 01:16:54 -06:00
777a9d86a0 Quote creds and modes in ansiblehost tasks 2020-02-06 01:01:18 -06:00
65ae3dd958 I guess we're installing both versions of pip and boto 2020-02-06 00:59:21 -06:00
e707695692 Create more appropriate Nextcloud directory 2020-02-06 00:53:47 -06:00
4e650f80c2 Prune unused files and the workstation role 2020-02-06 00:46:14 -06:00
ada9a5b8c1 Remove sizes from Nextcloud keys
They default to 4096, and I don't want to have to bump them up as necessary
2020-02-06 00:45:01 -06:00
34675072e8 Downgrade Python packages
I guess??
2020-02-06 00:43:43 -06:00
4f0908b245 Apply ansiblehost to inventory, fix syntax error 2020-02-06 00:38:04 -06:00
60acdbc9cb Use blocks to cut down on repeat code in user role 2020-02-06 00:35:06 -06:00
6eacfb3ba4 Remove cockpit user from common role 2020-02-06 00:34:01 -06:00
84949100f3 Remove cockpit role 2020-02-06 00:33:24 -06:00
129cc13848 Repurpose old ansiblehost role
It's now an automatic pullinator
2020-02-06 00:32:31 -06:00
9cf24c1acc Fix permissions on Nextcloud webroot 2020-02-06 00:20:43 -06:00
c2d9a3786f Correct some Apache configs 2020-02-06 00:01:26 -06:00
cbb84598b9 Set up a database for nextcloud 2020-02-05 23:56:41 -06:00
35fd9dd3ab Basic MySQL configuration 2020-02-05 23:43:22 -06:00
823b9bb060 Depend on it 2020-02-05 23:29:50 -06:00
3fa61ca850 Add barebones MySQL role
Which we are going to immediately flesh out
2020-02-05 23:29:39 -06:00
9781ad8426 Fix typo, only generate cert if necessary 2020-02-05 23:19:07 -06:00
67e428dd41 Whoops, got the keys mixed up 2020-02-05 23:01:06 -06:00
6612541a7b Copy over SSL configs after certification, fix using the wrong keys 2020-02-05 22:59:14 -06:00
230d8a2a92 Fix some bad Apache configs, set up ability for apache to nab its keys
Getting there, step by step
2020-02-05 22:48:21 -06:00
d0794d9abc Remove unnecessary directory 2020-02-05 22:35:15 -06:00
db2bf21579 Got modded mc on the brain; fixed two typos 2020-02-05 22:30:30 -06:00
8906a0ea1e Improve apache configs, enable modules 2020-02-05 22:28:03 -06:00
6b0a86128d Add execute bit for directories
Whups
2020-02-05 22:14:35 -06:00
ef7b4db3eb Fix removing the wrong archive file 2020-02-05 22:12:56 -06:00
9145796033 Fix typo 2020-02-05 22:10:25 -06:00
0a4eb939bd Refactor variable names, get SSL ready 2020-02-05 22:09:35 -06:00
2e28ff2dbc Use remote_src PROPERLY 2020-02-05 21:58:04 -06:00
fecd02cbba Use remote_src properly 2020-02-05 21:57:12 -06:00
4975ed3ffd Use an archive Nextcloud actually provides 2020-02-05 21:56:33 -06:00
f9d69fe220 Work a bit more on that Apache setup 2020-02-05 21:54:30 -06:00
96a9671052 Refactor a little bit 2020-02-05 21:26:03 -06:00
9e14dc5426 Create well-known directory
So close now
2020-02-05 21:13:04 -06:00
2437728f94 Maybe set up PKI fully? Probably not 2020-02-05 21:06:44 -06:00
02e5164eed Add disfunctional Nextcloud role 2020-02-05 20:23:20 -06:00
34ab9cc8d2 Fix another package name error for libnotify-bin
I'm on the fuckin ball today
2019-10-11 19:50:24 -05:00
f334d65d80 Fix apt_repository in workstation role
Whoops, that doesn't take a list
2019-10-11 19:49:08 -05:00
7599a1fddd Add blueman, correct pip package 2019-10-11 19:33:14 -05:00
258047afb7 Add local-workstation playbook and role 2019-10-11 19:12:00 -05:00
2bb29965bd Reorganize user salt creation
This now allows for easier home directory imports
Gonna whip up a playbook to initialize a fresh Ubuntu install on my workstations
2019-10-11 16:37:18 -05:00
86562b3ccc Reorganize, add cockpit role 2019-10-11 14:08:22 -05:00
52fd78e28b Disallow duplicates for all given roles 2019-10-03 03:54:46 -05:00
9ee50492c2 Force ansible repo clone
Changes on this host don't matter; it's not supposed to have commit rights so local changes are invalid anyway
2019-09-15 02:34:29 -05:00
4f5fe365fc Fix bootstrapping, use https URL for ansible scripts 2019-09-15 02:30:46 -05:00
8f7f53e96c Remove template yaml 2019-09-15 02:03:00 -05:00
1d3369fcb0 Split userlogon and ansible role tasks, switch apt packages to python3 2019-09-15 01:38:16 -05:00
cb3d94db94 Remove role interdependencies 2019-09-15 01:26:37 -05:00
4775944fc0 Install Ansible via pip for the Ansible host 2019-09-15 01:08:35 -05:00
963f43aeeb Add Ansible key to deployment
Kinda need that for an Ansible host
2019-09-15 00:49:01 -05:00
b8238a062d Lots: Add a new Ansible role, prepare for an EC2 inventory migration 2019-09-15 00:39:47 -05:00
3823f7a47f Babby's first playbooks 2019-09-14 11:49:23 -05:00
f462019c83 Actually add Ansible files 2019-08-30 14:13:34 -05:00