Commit Graph

562 Commits

Author SHA1 Message Date
f35e8f9eca I DIDN'T CHANGE THE SOURCE EXTENSIONS 2020-06-21 11:28:11 -05:00
24f79bc4ab They're really called fucking .yaml? Really? 2020-06-21 11:23:40 -05:00
a20efc3ca2 Fix wrong variables in loop
am good sysadmin
2020-06-21 11:17:52 -05:00
d15e44c7ea Move notify on templating configs 2020-06-21 11:12:38 -05:00
cec71cd2ad Fix typo 2020-06-21 11:05:01 -05:00
f8bf755f4f Working on more fedi stuff 2020-06-21 10:58:56 -05:00
d457ebf213 Separate out our proxy from our frontend 2020-06-21 10:50:59 -05:00
aed52c16a0 Working on more Matrix stuffs, adding creds for SES 2020-06-21 10:46:49 -05:00
73d1ebd9a2 Less clobber when grabbing certs
I bet you know where this is going
You probably don't
It's for host delegation
2020-06-21 10:24:05 -05:00
b839015b28 Add part of a matrix setup 2020-06-21 10:22:01 -05:00
bb59382d4c Remove pull tag
Fuck it, we're doing it all
2020-06-17 09:34:13 -05:00
33f5af534e Tag certain roles for pull remediation 2020-06-17 09:29:24 -05:00
62ea91fc7f Remove all references to ansiblehost 2020-06-17 09:26:13 -05:00
531b2e19dc Use proper hostname source when templating hosts
Because we turn around and invalidate nodename like immediately
2020-06-17 09:24:34 -05:00
71cfb5c2be Remove timebomb
grep -r -e 'here we go again'
2020-06-17 09:19:53 -05:00
3d91b4d752 Configure hostnames
oh boy here we go
2020-06-17 09:16:08 -05:00
8ea69fd3b4 Declare proper deps on ansible-pull role 2020-06-17 09:07:28 -05:00
c69954eeb5 Absolute our binary for ansible-pull timer
Because I guess we need to do that on 18.04
2020-06-17 09:04:20 -05:00
79102c5d0c More tweaking on that front 2020-06-17 09:03:47 -05:00
27e6cadb9a Work on switching to ansible in pull mode 2020-06-17 08:52:28 -05:00
7344050dde Fix reloading influxdb as normal user
derp
2020-06-16 10:09:16 -05:00
1ac644d8d1 Fix closing quote, rename sudoers config 2020-06-16 10:08:12 -05:00
8f15bf4f2b Make some tweaks, actually add our Ansible user 2020-06-16 10:04:54 -05:00
fe7b962ad7 Create mopidy config directory if it doesn't exist 2020-06-16 09:53:01 -05:00
ed9298fae4 Add zerotier roles to 9iron servers
I'm going to regret this, I know it
2020-06-16 09:48:07 -05:00
fa6b01b782 Add SSHD config for desktops 2020-06-16 09:42:27 -05:00
c1ad0bb498 Perms whups 2020-06-16 09:36:36 -05:00
6d05dc50d9 Add openssh server to default package list 2020-06-16 09:35:47 -05:00
f0a61e9538 Reorganize inventory, add ansible system user
Who is only used on my desktop hosts, obviously
2020-06-16 09:34:55 -05:00
f9826d2e9f Stop saying changed when I assert i386 arch 2020-06-16 09:18:14 -05:00
d3feeebb46 Stop trying to disable a news service that doesn't need disabling 2020-06-16 09:17:53 -05:00
afa7c651a8 Stop trying to configure zerotier in the wrong place 2020-06-16 09:15:48 -05:00
37a85f625f Move zerotier into its own role 2020-06-16 09:14:33 -05:00
e0169f8915 Add Zerotier to the list of things to do for desktops 2020-06-16 08:58:38 -05:00
59df24dc13 Add barrier
Sliiiiiiick
2020-06-16 08:50:26 -05:00
b8624e069f Set Mopidy volume to a much, much more reasonable level 2020-06-15 09:55:29 -05:00
1dae60f120 Actually use those spotify vars god dammit 2020-06-15 09:00:10 -05:00
4de750c106 Actually allow Mopidy to serve on an MPD socket
ups
2020-06-15 08:59:28 -05:00
160fa41d1a Make secrets less executable 2020-06-15 08:58:03 -05:00
a157988506 Make secrets secret 2020-06-15 08:56:20 -05:00
6db1c680fa Add mopidy to desktop role 2020-06-15 08:55:51 -05:00
f9a8c86b9c Separate package installation into its own task file, install mopidy stuff 2020-06-15 08:41:26 -05:00
e2d73a8427 Disable mopidy.service 2020-06-15 08:25:07 -05:00
90800438d7 Switch out MPD for Mopidy 2020-06-15 08:20:09 -05:00
7789127491 Remove Spotify adblock aliases
Well shit.
2020-06-15 08:13:13 -05:00
384c27b017 Install Spotify 2020-06-15 07:58:27 -05:00
8860638c87 Supress more AWS stuff 2020-06-09 05:16:22 -05:00
231c704bd6 Supress errors when pushing to S3 2020-06-09 05:14:47 -05:00
73302047a4 Fix mode on authentication token 2020-06-09 01:31:45 -05:00
c3fd867197 Fix Adam deployment 2020-06-09 01:29:20 -05:00
7a1a4dfaf9 libopus0
god dammit
2020-06-09 01:19:04 -05:00
dd53ee6226 Install npm on desktops 2020-06-09 01:18:18 -05:00
65e0fed3d3 Install libopus to get adam to stop complaining 2020-06-09 01:18:02 -05:00
4316ca2e86 Oops. That needs to be a dir 2020-06-09 01:14:57 -05:00
910018e3d5 Add Adam to our server configuration 2020-06-09 01:13:19 -05:00
7793693483 Declare dependency for backup role 2020-06-08 20:23:34 -05:00
63c7af0016 Move AWS credentials to their own directory 2020-06-08 20:15:22 -05:00
7406d30191 Add backups for Minecraft instances 2020-06-08 20:10:58 -05:00
2175fe8ada Exclude logfiles in backup script 2020-06-08 08:49:39 -05:00
58d39a3f51 Do the same for Doku 2020-06-08 08:47:57 -05:00
61175feabd Actually wait let's use the URL 2020-06-08 08:47:13 -05:00
763f1d0209 Add nc- to the beginning of NC backups 2020-06-08 08:45:55 -05:00
e59ecf33ea Add AWS backups bucket
Joining the big boy club oh yeah
2020-06-08 08:45:17 -05:00
19bca26d1b Add aws-cli 2020-06-08 08:20:36 -05:00
252ff7ecf9 Fix Nextcloud not purging old backups
So THAT'S where all my space was going
2020-06-07 02:12:54 -05:00
2b52985e7f Add chromedriver 2020-06-06 07:22:41 -05:00
e6cef1d8fb Merge branch 'master' of git.9iron.club:salt/ansible 2020-06-05 08:04:21 -05:00
b1f75519ad Add terraria servers 2020-06-05 08:04:11 -05:00
f8a503ac41 Add qt5ct 2020-06-05 05:38:36 -05:00
3dc0af70d7 Disable outdated TLS versions
hopefully this fixes git
2020-06-04 19:35:59 -05:00
fa963a3adb Remove old apache2 vhosts 2020-06-04 19:14:24 -05:00
d7f34587be Roll out new cipher suites 2020-06-03 06:07:11 -05:00
8a6a53ff6e Add Minecraft serbers 2020-06-01 21:56:39 -05:00
0241a1db36 Template out systemd unit for minecraft servers 2020-06-01 21:28:09 -05:00
ac92512088 Add tree 2020-06-01 05:46:21 -05:00
9b101949d2 Minor fix in user playbook task 2020-06-01 04:55:40 -05:00
c7d674a9b0 Modularize user role, fix indentation with ansible vault secrets 2020-06-01 04:54:38 -05:00
d246ce2519 Update Gitea 2020-06-01 01:49:04 -05:00
af06462040 Restart Gitea after update 2020-06-01 01:47:25 -05:00
2f499b11b3 Add hsetroot 2020-06-01 00:49:19 -05:00
8f8c572d6d Add inkscape 2020-05-31 20:40:23 -05:00
8a1c6f167b Disable motd-news service 2020-05-31 20:31:58 -05:00
cb2763e361 Enable Syncthing on desktop machines as a systemd unit 2020-05-31 20:29:38 -05:00
13bd8547ff Add xbacklight 2020-05-31 17:34:35 -05:00
1e1c831124 Add pavucontrol-qt 2020-05-31 17:33:59 -05:00
d3b51bd56a Revert "Add dex"
This reverts commit eddfdcdf20.
2020-05-30 06:30:36 -05:00
eddfdcdf20 Add dex 2020-05-30 06:14:49 -05:00
c269582b2e Add pixelorama 2020-05-29 17:50:58 -05:00
3848e0f476 Add krita 2020-05-29 17:39:04 -05:00
dc3b476127 Add imagemagick 2020-05-28 22:42:40 -05:00
1922f75d16 Install more desktop packages 2020-05-28 21:52:53 -05:00
ea8d0764f2 Update Zoom 2020-05-26 23:40:18 -05:00
70ac8cecb1 Point ansiblehost to new config 2020-05-26 12:48:09 -05:00
db9a8d00e0 Tinker with gitea configs, enable open registration 2020-05-26 12:27:49 -05:00
6dad2e4383 Rename screens for terraria servers 2020-05-26 11:25:27 -05:00
75e14bc4e0 Add monodevelop, fix terraria backups growing eternally 2020-05-26 11:19:54 -05:00
16225dff8f Install papirus 2020-05-24 23:45:29 -05:00
63d64cd8fc Add startx session to desktop role 2020-05-24 23:24:00 -05:00
7fc422e571 Fix checking focal for wrong task 2020-05-24 23:05:45 -05:00
2f05c3d3e8 Install rice packages 2020-05-24 23:05:12 -05:00
46d5d6df79 Reorganize desktop package set 2020-05-24 23:03:15 -05:00
6585879256 Add speed ricer repo 2020-05-24 23:00:09 -05:00
8869526324 Update terraria 2020-05-23 15:30:06 -05:00
e64d318442 Fix playbook for pull-and-run cronjob 2020-05-20 12:59:33 -05:00
3bcd3a94c9 Fix ansiblehost playbook 2020-05-20 11:10:35 -05:00
b7be09de34 Fix perms on output directory in backup script 2020-05-19 12:20:24 -05:00
54f19e0619 Quote variables correctly
god dammit
2020-05-19 12:19:21 -05:00
810fccfce2 Add log function to backup script: 2020-05-19 12:14:27 -05:00
c8409a00f4 Fix perms on output directory 2020-05-19 12:12:51 -05:00
8379e2051e Lower backup interval 2020-05-19 12:10:13 -05:00
8e12cb19b2 Fix perms on backup script 2020-05-19 12:06:56 -05:00
3f15994c22 Fix cronjob syntax 2020-05-19 12:05:03 -05:00
8e1d9f6c14 Ooops, gotta become root for that 2020-05-19 12:03:32 -05:00
a94d872e79 Add backups for terraria servers 2020-05-19 12:02:30 -05:00
bdbf542083 Remove security on terraria servers
Liquid spam lmao
2020-05-18 20:21:59 -05:00
818b717a5d Remove sonata 2020-05-17 17:43:03 -05:00
bea5a72284 Bump terraria version 2020-05-16 19:48:39 -05:00
efa6a69fad Turns out that bug is actually due to an undefined difficulty, I guess 2020-05-16 17:43:11 -05:00
24a0c37427 Revert "Remove colon from terraria configs"
This reverts commit 0eb1cd1924.
2020-05-16 17:42:05 -05:00
f8b42e18f9 Actually fix the crashy bug? Maybe? 2020-05-16 17:41:07 -05:00
0eb1cd1924 Remove colon from terraria configs
This is a bug, turns out
2020-05-16 17:34:51 -05:00
44c5ca6ccd Fix erroneous world names for terraria servers 2020-05-16 17:08:33 -05:00
ab57cc6c4c Fix erroneous default difficulty 2020-05-16 17:04:00 -05:00
d53c5bc12c Add and sadly hardcode our terraria servers 2020-05-16 10:25:06 -05:00
bbc1093d5d Actually use our config file 2020-05-15 11:11:51 -05:00
b5970881ee Fix more ownership 2020-05-15 11:04:34 -05:00
3e6af36e93 Fix ownership 2020-05-15 11:00:45 -05:00
4d489e33f3 Hopefully fix inaccurate globbing
Or lack thereof
2020-05-15 10:58:58 -05:00
f9874ec05b Fix server move operation, mark binary as executable 2020-05-15 10:57:28 -05:00
f9ae17b34d Clean up after terraria server deployment 2020-05-15 10:55:39 -05:00
6e1bf6a467 Polish up that Terraria role some more 2020-05-15 10:49:42 -05:00
c514fb4183 Fix using a group that doesn't exist 2020-05-15 10:40:14 -05:00
a2a3b10ac9 Add a Terraria role
Time to blow shit up
2020-05-15 10:11:32 -05:00
9662013bed Fix up postfix a bit more, make it a general role 2020-05-12 12:58:03 -05:00
880920e647 Don't always reload udev ffs 2020-05-12 08:26:12 -05:00
201bca1cbc Switch up the IM client show with Pidgin 2020-05-12 08:22:21 -05:00
e4f47efed0 Add Nheko and Zim to desktop app list 2020-05-12 08:05:54 -05:00
b6cef0e28e Fix timezonectl dying
I'm retarded
2020-05-10 08:22:50 -05:00
ecee3ed4f8 Fix up our common playbook with cron handlers n stuff 2020-05-10 08:22:02 -05:00
4dec3a081f Change everything to CDT
Oh boy can't wait for this to fuck all my cronjobs
2020-05-10 08:15:09 -05:00
1411b414c9 Flesh out influxdb service some more 2020-05-10 04:18:21 -05:00
3d0b1c2b29 Fix wrong package name 2020-05-10 04:03:30 -05:00
21fa73cb22 Add influxdb to every box 2020-05-10 04:03:26 -05:00
0b55d4689e Add deps to Grafana role 2020-05-10 03:48:04 -05:00
c646e926e2 Install Netstat on all the boxen 2020-05-10 03:47:29 -05:00
cc814b3cb6 Add Grafana
WEW No fires
2020-05-10 03:30:19 -05:00
781f8f584f Add Clonezilla 2020-05-10 01:04:43 -05:00
d094d7b31c Lower retention period for NC backups 2020-05-10 00:39:51 -05:00
c56698bac8 Install Wine on desktops, alongside binfmt support 2020-05-08 22:49:33 -05:00
bb60d875be Add push creation configs for gitea 2020-05-08 02:11:34 -05:00
2d5895c76e Really for real fix exclude glob 2020-05-06 23:24:10 -05:00
ebfa2e4b92 Fix perms on config.php
This is what NC sets it to every time I change it lol
2020-05-06 23:22:35 -05:00
f337532435 Fix order of tar args in NC backup script 2020-05-06 23:21:54 -05:00
3a33549174 Fix Nextcloud multipart backups being only slightly rotated 2020-05-06 09:46:45 -05:00
c3fa85aacb Fix looking for the wrong kinda backups in dokuwiki backup script 2020-05-06 09:43:12 -05:00
7646396dac Fix order of arguments for tar 2020-05-06 07:38:00 -05:00
4c829bf782 Exclude users' trash directories when making a NC backup 2020-05-06 03:27:53 -05:00
4a7a5f4645 Add default variables for backups role 2020-05-06 02:25:21 -05:00
54d3aadb14 Improve Nextcloud backup script by removing redundant trap and recursing through symlinks for userdata 2020-05-06 02:12:17 -05:00
755249febf Move backups to using symlinks instead of hard directories
This should make reconfiguring backup outputs leagues easier
2020-05-06 02:10:26 -05:00
78e510211f Fix typo in nc backup script 2020-05-06 02:03:23 -05:00
c5574e4924 Also add a file for that udev thing I changed earlier 2020-05-06 02:01:47 -05:00
4c54833b7e Actually add that file 2020-05-06 02:01:30 -05:00
f5acd6014d Add backup script for Nextcloud 2020-05-06 01:59:17 -05:00
9da55f236c Assert more specific permissions with Nextcloud 2020-05-06 00:31:49 -05:00
7753453caa Only reload udev if we assigned new rules
Having my mouse flip out at midnight was getting old
2020-05-06 00:02:39 -05:00
f285096a5c Fix modules clobbering each other on deploy 2020-05-03 06:58:09 -05:00
07c486efca Colon 2020-05-03 06:54:03 -05:00
d61ea20b5a Fix indentation on dokuwiki task main.yml
Buggin the shit outta me man
2020-05-03 06:51:52 -05:00
52e1001cc9 Add backups for dokuwiki 2020-05-03 06:51:31 -05:00
951ca51572 Use URL for backup directory
In theory this should allow for concurrent Gitea installations with non-trampling backups
2020-05-03 06:49:23 -05:00
737ad8dec8 Rename backup script to be more self-descriptive 2020-05-03 06:47:52 -05:00
a9b6c9a88b Actually remove that last backup 2020-05-03 06:42:12 -05:00
85a3da7b6c Add backup module to Gitea 2020-05-03 06:37:58 -05:00
ed04787e9b Check for backups dir AFTER we might've changed it 2020-05-03 06:09:10 -05:00
2769a78198 Source a backuprc if we have it to allow for site-local backup storage changes 2020-05-03 06:08:36 -05:00
6440710a3e Hardcode backups directories
Unless I make these playbook-wide variables, there's no real way to configure them at runtime. Best to just hardcode them, I suppose
2020-05-03 05:48:01 -05:00
f9ad4801c5 Log to the backups directory 2020-05-03 03:08:13 -05:00
86ab23bd07 Add an untested barebones backup script wrapper 2020-05-03 03:06:16 -05:00
26a83ae2ab Add joy2key and joystick 2020-05-02 10:21:44 -05:00
ef516aca30 Or I guess we just need an operator, whatever 2020-05-02 05:58:15 -05:00
44ac75ba88 Fix unquoted string literal 2020-05-02 05:57:04 -05:00
433ebb900f Install Piper on focal 2020-05-02 05:55:40 -05:00
fb941e4297 Don't install ricing packages that don't exist 2020-05-02 05:13:16 -05:00
006f8759fe Give less of a shit about which version of PHP we install on our desktop 2020-05-02 05:00:31 -05:00
533406d69a Remove pip2
Kinda never needed it anyway
2020-05-02 04:54:14 -05:00
8b58b1fe24 Install Zoom
[shudders]
2020-05-02 04:24:23 -05:00
d43a91c04c Remove some unwanted applications on desktop role 2020-05-02 04:18:47 -05:00
770a6a1258 Turn off password requirements 2020-05-01 14:59:10 -05:00
18d4ea0b09 Clean up our Gitea role a little bit 2020-05-01 14:01:53 -05:00
add7926db5 Update links across the board to point to git.9iron 2020-04-30 13:26:16 -05:00
988246ac66 Fix not including tasks to add user 2020-04-30 13:08:15 -05:00
30bed76efe Fix keeping a ton of json in key variables 2020-04-30 12:44:26 -05:00
67f636129c Rewrite app.ini based on pregenerated one
The one on the wiki is ass and misses a couple keys that HAVE to be generated
This fixes me not being able to upload with SSH
2020-04-30 12:33:04 -05:00
75f5e0c46c Fix botched quotes in MySQL query 2020-04-30 12:08:21 -05:00
21d3d8c410 Move add user task to an import_tasks task so that we can actually notify it, use systemd daemon reloads in a copuple places 2020-04-30 11:54:27 -05:00
ab51654a1b Gotta rice those repos boys 2020-04-30 11:33:36 -05:00
b491397580 Enable creating repos through push 2020-04-30 10:57:58 -05:00
e4eabcb32e Enable cache, correct deployment profile 2020-04-30 10:47:55 -05:00
347db1aba4 Correct ROOT_URL for Gitea 2020-04-30 09:28:49 -05:00