admin/it-ansible
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
61 Commits 1 Branch 0 Tags
024f2a906600bdf4f619d5baf36b6ce7414a265f
Commit Graph

61 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jannik Kramer
024f2a9066 changes caddy playbook update (restart) to rebuild (down and up) 2025-12-01 13:39:56 +01:00
Jannik Kramer
21f8d67b1f shows hidden files when debugging 2025-12-01 13:39:56 +01:00
Jannik Kramer
26dcdb0f83 updates caddy, separates caddyfiles, introduces env file for secrets, improves deployment/update process 2025-12-01 13:39:52 +01:00
Jannik Kramer
518ec7decd adds registry and enricher routes 2025-12-01 13:38:44 +01:00
Jannik Kramer
40a147394d adds ollama host alias to n8n and makes builds more consistent 2025-12-01 13:38:44 +01:00
Jannik Kramer
dd1306766c cleans up support scripts 2025-12-01 13:38:44 +01:00
Jannik Kramer
f37bd556c3 adds pandoc to n8n, reverts caddy rename 2025-12-01 13:38:44 +01:00
Jannik Kramer
e1d1f17894 renames caddy folder, fixes readme command, lints docker compose files 2025-12-01 13:38:44 +01:00
johannesstahlhut
272af441a6 add transcript-api + transcript-frontend 2025-11-28 11:04:35 +01:00
Jannik Kramer
662ea8f1ee adds upstreams for CF Cortex 2025-08-15 09:43:25 +02:00
Jannik Kramer
d8e14964ad adds upstreams for CF Cortex 2025-08-15 09:38:46 +02:00
Jannik Kramer
7cea261f0d changes legacy arg format 2025-08-15 09:37:28 +02:00
Jannik Kramer
786a581d2f adds pseudo.cortex.consider-funding.de upstream, adds snippet for easy oauth2-proxy protect, moves oauth2-proxy secrets to .env file 2025-08-12 11:22:18 +02:00
Jannik Kramer
51b8fa2b8c feat: configure caddy as reverse proxy for metabase 2025-08-05 10:38:18 +02:00
Jannik Kramer
bc7314a8f8 feat: Add Metabase as a new service 
Adds the Metabase service to the Docker Compose setup.

- Creates a compose.yaml and .env.example for Metabase.

- Adds Metabase to the list of deployed services in the Ansible configuration.

- Updates .gitignore
 2025-08-05 10:26:35 +02:00
Jannik Kramer
78c1ee1876 adds missing compose for oauth2 proxy 2025-08-05 10:10:34 +02:00
Jannik Kramer
e3474178af adds example for oauth proxy config 2025-08-05 10:04:19 +02:00
Jannik Kramer
9c60e3a354 adds ai tooling rules 2025-08-05 09:29:53 +02:00
Jannik Kramer
05dad51019 moves n8n config to .env file and adds mail config 2025-07-03 12:12:07 +02:00
Jannik Kramer
48efff09b8 adds oauth2-proxy to sterling-pdf 2025-07-03 11:32:19 +02:00
Jannik Kramer
6bcc8ebe4c ensures ll alias on host 2025-07-03 11:28:48 +02:00
Jannik Kramer
5a7032da89 adds restart options to services 2025-07-02 19:42:15 +02:00
Jannik Kramer
d73bb035c1 adds playbook to just run docker compose 2025-07-02 19:20:37 +02:00
Jannik Kramer
82614418a6 disables analytics in sterling pdf 2025-07-02 19:20:20 +02:00
Jannik Kramer
9cc7268745 adds .env to .gitignore 2025-07-02 19:20:05 +02:00
Jannik Kramer
6869a79562 adds n8n 2025-07-02 19:19:55 +02:00
Jannik Kramer
a16a19d670 removes test hosts 2025-07-02 18:32:43 +02:00
Jannik Kramer
52d6f8f866 adds 1password deploy key 2025-07-02 17:38:33 +02:00
Jannik Kramer
93c31b2d96 Update cit_authorized_keys 2025-06-11 11:55:49 +02:00
Jannik Kramer
c763201ff8 authorized_keys: removes Julian Schachers ssh key 2024-12-03 09:24:13 +01:00
Julian Schacher
5adc36b4d9 add play for cleaning up unused Docker data 2024-10-23 15:36:27 +02:00
Julian Schacher
c9542e2b38 authorized_keys: add Jannik Kramers ssh key to authorized keys 2024-10-23 15:22:54 +02:00
Julian Schacher
3557d33afb docs: add note on how to add a new Hetzner VM 2024-10-22 23:44:17 +02:00
Julian Schacher
e657a872e7 pdf: use correct project_data path for tessdata 2024-08-14 17:22:02 +02:00
Julian Schacher
cf1dbc046c pdf: switch to standard image to have pdf compression functionality 2024-08-14 16:29:19 +02:00
Julian Schacher
78fc83f927 Switch to stirling pdf ultra lite, since lite doesn't exist anymore 
See here:
https://github.com/Stirling-Tools/Stirling-PDF/pull/1012
 2024-07-12 15:59:10 +02:00
Julian Schacher
34f658b8c4 Don't run workflow on schedule anymore, only manually 
It broke once in a while, so better have an administrator manually start
it and be ready to deal with it.
 2024-04-05 19:41:58 +02:00
Julian Schacher
908a35cf20 Add link to Datenschutzerklärung to stirling-pdf description as well 2024-02-16 11:37:47 +01:00
Julian Schacher
4400ff9b93 Deploy customized stirling-pdf and fix reverse proxy 
Use "network_mode: host" to make the reverse proxy work.
 2024-02-15 19:12:27 +01:00
Julian Schacher
89fda37a38 Switch reverse-proxy to Caddy and let it handle the certs 
Do this to simply the entire deployment.
 2024-02-15 14:58:27 +01:00
Julian Schacher
bcd065f42d Enable pipelining for faster playbook execution 
Some quick tests show a massive improvement.
I ran the following: ansible-playbook playbooks/everything.yaml
And the execution times without setting the option were:
- 1m25.5s
- 1m25.1s
- 1m25.8s
And with the option set to true:
- 25.5s
- 24.1s

Also see:
https://www.redhat.com/sysadmin/faster-ansible-playbook-execution
https://www.ansible.com/blog/ansible-performance-tuning
https://docs.ansible.com/ansible/latest/reference_appendices/config.html#ansible-pipelining
 2024-02-07 21:04:09 +01:00
Julian Schacher
894785fb5c Add GitHub Actions Workflow for maintaining & deploying production hosts 
The workflow runs on a schedule and can also be triggered manually.
 2024-02-07 20:49:43 +01:00
Julian Schacher
076d53ab9c Add GitHub Actions Ansible Infra Deploy Key to authorized_keys 2024-02-07 20:46:58 +01:00
Julian Schacher
de568ceacd Add role for deploying SSH authorized_keys and add it to maint. playb. 
Having this role will enable us to easily manage SSH authorized_keys.
 2024-02-07 20:44:46 +01:00
Julian Schacher
58ea4d4729 Introduce Production_Hosts group 
Introduce this group in preparation for automatic maintenance and
deployment of production hosts.
Also add cit-docker-host to this group.
 2024-02-07 20:34:09 +01:00
Julian Schacher
8d869af388 Configure the hetzner inventory to be the default inventory 
This avoids the user needing to explicitly configure it using e.g. "-i
inventories/hetzner" every time.
 2024-02-07 19:22:29 +01:00
Julian Schacher
75830e445b Deploy a reverse proxy doing PROXY Protocol 
This is needed to be able to nicely host multiple services under a
single IPv4.
The reverse proxy also includes a configuration to pass requests for
acme challenge properly.
And lastly the reverse proxy is already configured for a stirling pdf,
which gets added once the DNS record for it is in place.
 2024-02-07 19:16:32 +01:00
Julian Schacher
013fec6f16 Add play to everything playb. for deploying Docker Compose applications 
Also introduce a new group for hosts, for which this play should be run,
called Docker_Compose_Hosts.
Finally add cit-ansible-test and cit-docker-host to this group with an
empty project list initially.
 2024-02-07 18:59:10 +01:00
Julian Schacher
2167849edf Specify that generally code was taken from the CCCHH/ansible-infra repo 
Do this in preparation for using more code from the CCCHH/ansible-infra
repo, not just for the docker role.
Also use the current name and repository URL.
 2024-02-07 17:53:27 +01:00
Julian Schacher
31f65d591c Add cit-docker-host to inventory 2024-01-31 17:07:19 +01:00