LibertaCasa/salt - salt - GitCom: Git with a cup of Com

Author	SHA1	Message	Date
Georg Pfuetzenreuter	942b71815e	Repair PrivateBin config quoting All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Ensure strings are quoted correctly. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-04-30 20:38:43 +02:00
Georg Pfuetzenreuter	1290fd5ec7	Repair undefined id All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Replace with call to grains dict. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-04-30 20:11:24 +02:00
Georg Pfuetzenreuter	269b30ce9f	Exclude libX11 removal for FPM hosts All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Needed for some PHP extensions. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-04-30 19:48:36 +02:00
Georg Pfuetzenreuter	985b401aaa	Repair BookStack quoting All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Re-order ending quote. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-04-30 18:57:03 +02:00
Georg Pfuetzenreuter	4053be45d2	Repair BookStack quoting All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Attempt to repair quoting by correcting the if-condition grouping and by replacing the quote filter with manual quotes. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-04-30 18:50:25 +02:00
Georg Pfuetzenreuter	ef0a931157	Correct BookStack group All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Environment file needs to be readable by the www, not the wwwrun, group for PHP-FPM to be able to access it. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-04-30 18:27:35 +02:00
Georg Pfuetzenreuter	938be46faf	Quote BookStack values All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Some strings contain spaces or special characters and should be quoted. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-04-30 18:20:54 +02:00
Georg Pfuetzenreuter	b685f16c91	Add manage_firewall conditional All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Allow us to enroll machines in Salt which do not yet have their firewall configuration imported without having their rules overwritten. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-04-30 16:07:21 +02:00
Georg Pfuetzenreuter	d65cb9a43b	Watch httpd service for snippets All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details The reload/restart module calls have been dropped from the formula. Watch the service.running state instead. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-04-30 14:39:27 +02:00
Georg Pfuetzenreuter	b1249e69eb	Merge pull request 'Import themis / PrivateBin' (#40 ) from privatebin into production Some checks failed ci/lysergic/push/pipeline Pipeline failed Details Reviewed-on: #40	2023-04-30 14:37:12 +02:00
Georg Pfuetzenreuter	76d1da11d9	Split out salt.formulas state All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Allow formulas update on Salt master without applying the complete Salt master profile. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-04-29 18:55:49 +02:00
Georg Pfuetzenreuter	96daffc979	Add privatebin profile+role Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-03-12 17:01:00 +01:00
Georg Pfuetzenreuter	c932881cd7	profile.bookstack: quote keys All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Some keys needed quoting to pass the YAML parser. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-03-11 18:10:07 +01:00
Georg Pfuetzenreuter	c28a4f5a52	role.bookstack: include php-fpm Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-26 13:14:29 +01:00
Georg Pfuetzenreuter	361e118b31	Add php-fpm role Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-26 13:14:29 +01:00
Georg Pfuetzenreuter	edbf9f3f20	role.bookstack: include memcached Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-26 13:14:28 +01:00
Georg Pfuetzenreuter	f820978b78	Add memcached role Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-26 13:14:28 +01:00
Georg Pfuetzenreuter	4653655010	profile.apache-httpd: manage snippets - add apache-httpd profile with snippets configuration - add TLS snippet to apache-httpd role pillar Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-26 13:14:28 +01:00
Georg Pfuetzenreuter	5e0c0e4bff	Add bookstack profile+role Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-26 13:14:27 +01:00
Georg Pfuetzenreuter	906dd92d7e	Add web.apache-httpd role Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-26 11:10:05 +01:00
Georg Pfuetzenreuter	8016f86164	p.node_exporter->p.prometheus.node_exporter Since the last commit introduced a new Prometheus targets profile, it makes sense to move node_exporter underneath the Prometheus tree as well. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-21 19:06:01 +01:00
Georg Pfuetzenreuter	2bafbeedd7	Manage Prometheus targets Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-21 19:05:40 +01:00
Georg Pfuetzenreuter	979021f5c4	Import Prometheus server configuration * add new roles: - monitoring.prometheus - monitoring.prometheus-alertmanager - monitoring.prometheus-exporter-blackbox * add common Prometheus and Prometheus Alertmanager pillar data * add moni.lysergic.dev specific Prometheus pillar data Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-21 19:05:03 +01:00
Georg Pfuetzenreuter	18d28c3b7f	Address salt-lint errors/warnings All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details - remove trailing whitespaces - format octal modes correctly Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-15 23:18:54 +01:00
Georg Pfuetzenreuter	75f105a6aa	AppArmor: reload on drop-in changes All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Self-explanatory. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-12 17:35:09 +01:00
Georg Pfuetzenreuter	7e73f6b1a4	web-proxy: include apparmor.local Some web proxy servers need additional AppArmor drop-ins, for example for serving static content. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-12 16:39:48 +01:00
Georg Pfuetzenreuter	0eca62f4ce	Add AppArmor profile Simple profile to allow for management of local profile drop-ins using pillar values. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-12 16:20:44 +01:00
Georg Pfuetzenreuter	0581510c10	Add ha-netcup role All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Role managing the Netcup IP failover script plus keepalived. Requires ha-node role introduced via `a8bbe056f1`. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-12 05:24:27 +01:00
Georg Pfuetzenreuter	af2c5b0061	Add keepalived_script_user profile Short profile source from other profiles requiring the keepalived_script user to be present. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-12 05:24:27 +01:00
Georg Pfuetzenreuter	f08bda4256	Add netcup_failover profile Profile managing a Netcup IP address failover script for use with keepalived. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-12 05:24:27 +01:00
Georg Pfuetzenreuter	8e1436d4af	common.suse: manage qemu-guest-agent All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Ensure qemu-guest-agent is active on all KVM guests. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-12 04:11:14 +01:00
Georg Pfuetzenreuter	b6b7ff1e33	common.suse: remove AutoYaST We only use AutoYaST for the OS deployment and don't need the packages afterwards. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-12 04:11:14 +01:00
Georg Pfuetzenreuter	9a0c210b87	lighttpd: improve dependencies All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details - add more explicit Salt ID dependencies - reload service on configuration changes Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-12 03:03:09 +01:00
Georg Pfuetzenreuter	b446afcc49	matterbridge: restart on changes All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Matterbridge does detect file changes, but seems to only apply them on a service restart. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-12 02:39:47 +01:00
Georg Pfuetzenreuter	b061265885	matterbridge: quote numbers All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Needed to make the TOML configuration format happy. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-12 02:30:56 +01:00
Georg Pfuetzenreuter	ab47eb5485	matterbridge: manage media directories Create media directories if defined in the pillar. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-12 00:51:26 +01:00
Pratyush Desai	dee3e035c2	Merge pull request 'Refactor Matterbridge profile' (#11 ) from matterbridge-refactor into production All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Reviewed-on: #11	2023-02-09 20:44:03 +01:00
Georg Pfuetzenreuter	a8bbe056f1	Add ha-node role All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Add ha-node role for machines in a HA pair using keepalived. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-08 20:31:27 +01:00
Georg Pfuetzenreuter	650854fa27	Refactor matterbridge profile All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details - reduce pillar calls - no longer define possible configuration options, apply settings from pillar 1:1 Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-07 22:37:37 +01:00
Georg Pfuetzenreuter	a3ec351b70	Add onion-router role Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-07 18:21:32 +01:00
Georg Pfuetzenreuter	119e97805d	Increase LC repository priority All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-05 18:47:17 +01:00
Georg Pfuetzenreuter	7ab3cb6c59	Refresh LC repository All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Configure repository to be refreshed automatically. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-05 01:01:56 +01:00
Georg Pfuetzenreuter	2e4d350c7f	Add web-proxy role - web-proxy role to configure nginx - pillar with common nginx configuration Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-02-04 11:47:09 +01:00
Georg Pfuetzenreuter	1a03ecc9db	salt.master: add salt-keydiff package All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Useful to accept new minions. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-01-30 02:14:22 +01:00
Georg Pfuetzenreuter	83f698e18c	Manage Salt roleproxy All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details Add role, profile and pillar for roleproxy. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-01-30 00:39:33 +01:00
Georg Pfuetzenreuter	81a37bf842	salt.minion: no longer manage grains Grains have only been managed to track roles, however those have since been moved to the Role API. Hence the managed /etc/salt/grains file can safely be removed from management. Existing installations will be cleaned up by me. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-01-29 23:33:40 +01:00
Georg Pfuetzenreuter	e62080ae5b	Manage firewalld Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-01-29 15:30:37 +01:00
Georg Pfuetzenreuter	002fad5f27	salt.minion: allow minions without roles All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details If-clause to check for Syndic roles caused regression on minions without any assigned roles. Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-01-29 14:09:49 +01:00
Georg Pfuetzenreuter	f4b253a1cf	salt.master: add ldap + completion packages All checks were successful ci/lysergic/push/pipeline Pipeline was successful Details - python-ldap is needed for authenticating with the API - shell completions are useful :-) Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-01-27 20:59:00 +01:00
Georg Pfuetzenreuter	85bfe2cac4	salt.master: add Salt API configuration Signed-off-by: Georg Pfuetzenreuter <mail@georg-pfuetzenreuter.net>	2023-01-27 19:25:21 +01:00

1 2

85 Commits