ace4efe499
Update server/config/megan-portfolio/upload.ini, server/config/megan-portfolio/docker-compose.yml
2022-07-20 19:50:14 +00:00
1e9f7d74b2
Update new port mapping
2022-07-17 11:04:04 -07:00
1b28030963
Fix missing network declaration
2022-07-17 11:00:01 -07:00
f34af731e6
Switch to monitoring Traefik via docker network
2022-07-17 10:58:44 -07:00
b523049c15
Switch to exporting metrics from pihole via hostname
2022-07-17 10:42:37 -07:00
c038d2c5f4
Add pihole to monitoring network
2022-07-17 10:41:36 -07:00
5238229a94
#39 Update welcome blurb
2022-07-16 23:49:19 -07:00
5134ba2cbb
#39 Add welcome blurb
2022-07-16 23:47:31 -07:00
a6110ffe19
#39 |
...
- Remove NVGM
- Add empty jafner.dev category
2022-07-16 23:45:08 -07:00
8d98453b0f
Merge branch 'main' of ssh://gitlab.jafner.net:2229/Jafner/homelab into #39
2022-07-16 23:39:06 -07:00
4b27e82d37
#39 |
...
- Make jafner.net and www.jafner.net point to homer
2022-07-16 23:38:03 -07:00
66d0d28cc0
Archive landing, portfolio, and nvgm wordpress instances
2022-07-16 23:34:07 -07:00
3904ad1777
Remove subtitle
2022-07-16 23:26:26 -07:00
18a8aea176
#39 |
...
- Add socials links
- Delete public cloud section
- Move jafner.tools section to bottom
- Remove all admin-only services
2022-07-16 23:26:12 -07:00
561d87fa74
Fix typo
2022-07-16 16:27:56 -07:00
3e0961a1ea
Fix typo
2022-07-16 16:18:44 -07:00
38a6c6413e
Fix container name collision
2022-07-16 16:18:27 -07:00
d733eab053
Fix typo
2022-07-16 16:17:27 -07:00
c806ed328b
Enable megan-portfolio wordpress
2022-07-16 16:16:55 -07:00
161b667647
Switch from fqdn
2022-07-16 16:11:36 -07:00
a911d46271
Add explicit web endpoint
2022-07-16 16:11:03 -07:00
fbc62e37b7
Update creds
2022-07-16 16:07:27 -07:00
a532a1f119
Fix router collision
2022-07-16 15:59:05 -07:00
ab2bb4042a
Add second nginx instance
2022-07-16 15:57:32 -07:00
0c88176a1c
Disable SSL on meganmcdonough.net
2022-07-16 15:45:10 -07:00
36dff15e81
Appease vscode compose linter
2022-07-16 15:45:01 -07:00
2f73a171c1
Switch from wp to nginx for testing dns routing
2022-07-16 15:20:55 -07:00
6595c29ac1
Update ddclient config
2022-07-16 15:20:37 -07:00
0f2390bdaa
Add meganmcdonough.art to ddconf
2022-07-16 15:14:21 -07:00
f1bcc18912
Create nginx test for test.jafner.dev
2022-07-16 00:46:39 -07:00
63c921e386
Enable use=web
2022-07-16 00:43:36 -07:00
082f5e0fde
Merge branch 'main' of ssh://gitlab.jafner.net:2229/Jafner/homelab
2022-07-16 00:39:38 -07:00
1edd98e001
Delete old ddns
2022-07-16 00:38:59 -07:00
cb02087b45
Update ddns
2022-07-16 00:38:12 -07:00
5a02a3ac15
Init megan-portfolio
2022-07-16 00:21:10 -07:00
e3d564e497
Refactor DDNS to support Google domains (via ddclient)
2022-07-16 00:18:54 -07:00
04d413974f
Update Uptime Kuma and Pihole
2022-07-15 19:24:47 -07:00
4118cd951c
#38 Remove uptime kuma from prometheus scraper
2022-07-15 19:14:03 -07:00
753025871d
#38 Reorganize Archive and archive Uptime-kuma
2022-07-15 19:10:16 -07:00
80e54525e2
Switch Traefik scrape target to LAN IP
2022-07-15 19:06:56 -07:00
faea9e8f05
#37 Switch to LAN IP for scrape IP
2022-07-15 18:49:26 -07:00
a90ae2b6e8
Update and clean up prometheus.yml
2022-07-15 18:27:29 -07:00
43a97d4bab
Reset Prometheus to 1000:1000
2022-07-15 18:16:54 -07:00
04a3ce81cf
Prometheus use default user
2022-07-15 18:10:29 -07:00
a21a253cf6
Standardize exporter container naming
2022-07-15 18:09:25 -07:00
813d00966e
Disable Traefik access logging
2022-07-15 12:11:11 -07:00
e8aab97616
Disable the lan-only@file middleware for autopirate stack
2022-07-15 11:15:07 -07:00
8cbd0fbcf0
Remove authentik@file middleware from services
2022-07-15 10:56:20 -07:00
dc73478062
Remove authentik@file middleware from services
2022-07-15 10:56:02 -07:00
0a1182dc4e
Merge branch 'main' of ssh://gitlab.jafner.net:2229/Jafner/homelab
2022-07-15 10:52:00 -07:00
570950cb7e
Rename homepage_homer to homer_homer
2022-07-15 10:51:32 -07:00
f0b316432e
Remove Authentik from autopirate stack
2022-07-15 10:50:59 -07:00
a1f8e43213
Run loki as 1000:1000
2022-07-15 00:02:56 -07:00
4af3f5c2e9
Add access logging to Traefik
2022-07-14 23:46:34 -07:00
29bb9c150d
Add keep-file: true to loki driver
2022-07-14 15:22:44 -07:00
e2dbd1b89f
Remove root from loki
2022-07-14 14:28:38 -07:00
e22f94631e
Change path_prefix to loki-logs
2022-07-14 14:28:03 -07:00
901a06c9cd
Switch to using common block to define chunks and rules directories
2022-07-14 14:14:21 -07:00
67772fb8e3
Uncomment common config
2022-07-14 14:10:49 -07:00
a49e27a3e8
Explicitly elevate to root
2022-07-14 14:10:08 -07:00
ba41bf6bf8
Disable volume map
2022-07-14 14:07:50 -07:00
cb60b422ff
Try again
2022-07-14 13:59:43 -07:00
74abe421bb
Switch to local_storage_config with /loki-logs
2022-07-14 13:56:26 -07:00
a791f2ed47
Remove loki storage binding
2022-07-14 13:47:56 -07:00
3b640c0f17
Persist loki log storage
2022-07-14 13:44:43 -07:00
02f0e42781
Update pihole exporter config
2022-07-14 00:07:54 -07:00
253a1cec66
Set empty password
2022-07-14 00:02:58 -07:00
ca1604a200
Add pihole-specific env vars
2022-07-13 23:25:35 -07:00
2ed769d0b2
Automatically append /admin to requests to the route
2022-07-13 23:06:45 -07:00
73d38f136d
Elevate pihole container runner
2022-07-13 22:58:08 -07:00
54a3a4fcd4
Add missing image
2022-07-13 22:55:31 -07:00
9d7670e323
Init PiHole
2022-07-13 22:54:57 -07:00
5f8770b6ee
Fix typo
2022-07-13 22:52:52 -07:00
415c1cda52
Fix typo
2022-07-13 19:52:06 -07:00
590ecfdc2a
Reset Qbt, autopirate to stable
...
Use jdl as guinnea pig
2022-07-13 19:49:54 -07:00
5bdb3ecbbc
Switch to authentik-auth@file service
2022-07-13 19:46:31 -07:00
f77afe2f44
Protect autopirate suite with lan-only until authentik is worked out
2022-07-13 19:06:02 -07:00
ef352cb8b7
Correct missing rule
2022-07-13 19:03:08 -07:00
88bbd9e50a
Add Authentik to all autopirate stack
2022-07-13 16:29:41 -07:00
e05630789e
Remove lan-only middleware from Sonarr
2022-07-13 16:20:19 -07:00
17b27624bc
Accidentally added Radarr to authentik, not Sonarr.
...
Fix that
2022-07-13 16:18:27 -07:00
5c0ed2434e
Add Sonarr to Authentik
2022-07-13 16:16:31 -07:00
c03211f591
Update SSO documentation
2022-07-13 16:16:20 -07:00
a3f25f1709
Fix typo
2022-07-13 13:53:13 -07:00
3253145881
#31 Update basic webapp template with new logging instrumentation
2022-07-13 13:40:48 -07:00
b67ef90d3c
#31 Add Loki logging for all "main" apps
...
Also converted a few old composes from 4-space indentation to 2-space
Ignores supporting containers like postgres, redis, etc.
2022-07-13 13:35:56 -07:00
871c91fe08
Remove redundant labels
2022-07-13 13:12:30 -07:00
917cb6af4c
Rename loki-labels to just labels
2022-07-13 13:11:34 -07:00
a24bd2e90c
Add loki-labels as string
2022-07-13 13:11:04 -07:00
cb332d0520
Add loki-timeout as string
2022-07-13 13:10:49 -07:00
90243b5907
Switch loki-retries to string
2022-07-13 13:10:29 -07:00
6b1922b1e7
Add loki-retries
2022-07-13 13:10:13 -07:00
9ac7674e1a
Switch loki-batch-size to string
2022-07-13 13:09:52 -07:00
949a5d8c25
Add loki-batch-size
2022-07-13 13:09:31 -07:00
60b71e7f8f
Isolate loki-url
2022-07-13 13:09:09 -07:00
635a666c70
Confirm logging block is responsible for errors
2022-07-13 13:08:42 -07:00
ece50f7c04
Fix typo
2022-07-13 13:08:02 -07:00
2c6802f62e
Fix typo
2022-07-13 13:07:22 -07:00
c76d85bc41
Fix typo
2022-07-13 13:06:22 -07:00
a3732d19e2
Test wg-easy loki logging
2022-07-13 13:00:28 -07:00
a9fe279a0a
Add log_tags link
2022-07-13 12:51:57 -07:00
37494800ef
Add docker logging docs
2022-07-13 12:50:39 -07:00
8bd6573146
Update Loki docs
2022-07-13 12:14:38 -07:00
d419cc2014
Disable auto-start for all containers. (Set all restart: "no")
2022-07-13 10:47:27 -07:00
df2eeec270
Add to Authentik documentation
2022-07-13 00:27:02 -07:00
70e5681db2
Implement second gitlab runner
2022-07-12 17:02:18 -07:00
380edd8323
Switch to master branch
2022-07-12 16:47:44 -07:00
859f327929
Switch to nodb branch
2022-07-12 15:47:26 -07:00
311d593d6a
Archive xbackbone
2022-07-12 10:30:56 -07:00
3f4bf88682
See previous commit
2022-07-12 01:22:16 -07:00
8373dd6b6b
Re-enable persistent volume
2022-07-12 01:20:22 -07:00
367d0462ce
Switch dev to new image
2022-07-12 01:19:14 -07:00
eca1d27e23
services -> service
2022-07-12 01:04:31 -07:00
6bb4ea2575
Fix field services to service
2022-07-12 01:02:46 -07:00
2c561859d4
Init auth to qbt
2022-07-12 01:01:15 -07:00
2e50e7fe8e
Disable config persistence
2022-07-12 00:03:44 -07:00
650d32d57b
Test security headers
2022-07-11 21:44:37 -07:00
5083d5e127
Add X-Scheme: https to security headers
2022-07-11 21:44:01 -07:00
c676aba109
Try again
2022-07-11 14:07:10 -07:00
4f39fa2614
Switch to customResponseHeaders
2022-07-11 14:03:34 -07:00
86cfb5807c
Switch to customerRequestHeaders
2022-07-11 14:02:19 -07:00
8bcecc602a
Fix dev not being on network
2022-07-11 14:01:31 -07:00
6569093d8e
Restore securityheaders
...
Single-variable testSchemeHeaders
2022-07-11 13:15:57 -07:00
8d87c81512
Remove test headers
2022-07-11 12:36:43 -07:00
d478c38401
Delete testSchemeHeaders, instead update securityHeaders
2022-07-11 12:36:26 -07:00
bab62f910b
Add custom request headers
2022-07-11 11:25:14 -07:00
079ee7decc
Fix for:
...
time="2022-07-11T18:01:05Z" level=error msg="Unable to obtain ACME certificate for domains \"loki-monitoring\": unable to generate a certificate for the domains [loki-monitoring]: acme: error: 400 :: POST :: https://acme-v02.api.letsencrypt.org/acme/new-order :: urn:ietf:params:acme:error:rejectedIdentifier :: Error creating new order :: Cannot issue for \"loki-monitoring\": Domain name needs at least one dot" ACME CA="https://acme-v02.api.letsencrypt.org/directory " routerName=prometheus@docker rule="Host(`loki-monitoring`)" providerName=lets-encrypt.acme
2022-07-11 11:02:21 -07:00
f4bdeff5a7
Add testSchemeHeaders for passing X-Scheme: https
2022-07-11 11:00:37 -07:00
7706e90fc3
Switch to correct-er image
2022-07-11 10:51:28 -07:00
6253e4daa2
Switch to correct image
2022-07-11 10:50:11 -07:00
c71c3c5977
Update calibre-web dev to new image
2022-07-10 23:04:17 -07:00
cebf1c8509
Disable authentik middleware for dev.calibre-web
2022-07-10 16:36:31 -07:00
a11d6e55e1
Add authentik to prometheus
2022-07-10 16:04:10 -07:00
07985a94e6
Fix overlapping router name
2022-07-10 16:01:15 -07:00
fdf510bcc9
Increase max file size to 40GB
2022-07-09 23:43:57 -07:00
7d9b97f363
Set explicit file size
2022-07-09 23:40:56 -07:00
40d7630c1e
Remove dead prometheus jobs
2022-07-09 01:05:37 -07:00
1544cd6d4b
Fix typo
2022-07-09 00:46:28 -07:00
fcecacd31a
Traefik cleanup and switch to yaml
2022-07-09 00:44:40 -07:00
8f826b8007
Add Authentik to Traefik
2022-07-09 00:09:56 -07:00
9119f72f13
Add Omniauth config for Authentik
2022-07-09 00:01:18 -07:00
10b3e13a66
Update docs
2022-07-09 00:00:22 -07:00
456e67674f
Enable automatic oauth
2022-07-08 23:37:07 -07:00
143d58b9b1
Remove role mapping
2022-07-08 23:33:41 -07:00
ba1ae131d9
Init grafana OAuth2 with Authentik
...
Per Authentik: https://goauthentik.io/integrations/services/grafana/
And Grafana: https://grafana.com/docs/grafana/latest/setup-grafana/configure-security/configure-authentication/generic-oauth/
2022-07-08 23:31:04 -07:00
540834c4d2
Init partial OAuth provisioning docs
2022-07-08 23:30:26 -07:00
83c37c02ed
Fix navidrome container name
2022-07-08 23:03:33 -07:00
1bf8057b27
Add Authentik simple services:
...
- jdownloader2
- librespeed
- navidrome
- stashapp
- uptime-kuma
- wg-easy
2022-07-08 22:57:08 -07:00
3aa3b81ac4
Delete testing nginx stack
2022-07-08 22:55:39 -07:00
5ca735a518
Add Authentik to simple service: homer
2022-07-08 22:23:26 -07:00
f6ef13b784
Add Authentik to simple service: send
2022-07-08 22:21:51 -07:00
7dafd7b087
Documentation update
2022-07-08 12:48:34 -07:00
94cc7e4b12
Refactor volume management
2022-07-08 12:47:43 -07:00
9daebe3aa0
Fix path
2022-07-08 11:12:20 -07:00
ff43e5cc43
Fix indentation
2022-07-08 11:11:46 -07:00
cf2accd42d
Update docs
2022-07-08 11:10:33 -07:00
82f96ef3f6
Remove dangling promtail-config
2022-07-08 10:48:57 -07:00
548de71a39
Remove superfluous promtail
2022-07-08 10:48:36 -07:00
c6f8cbd61a
Remove entry_parser
2022-07-08 01:32:31 -07:00
7593e21cf6
Fix indentation
2022-07-08 01:31:00 -07:00
e55baff8e6
Disable other jobs
2022-07-08 01:28:15 -07:00
9a48e1349d
Implement ruanbekker's job
2022-07-08 01:27:27 -07:00
1abf602e1c
Add docker_sd job
2022-07-08 01:18:17 -07:00
d7eaa943c7
Switch back to TechnoTim's log scraping method
2022-07-08 01:09:35 -07:00
3ed05ae45d
Run loki as default user
2022-07-08 01:01:24 -07:00
4bc314e8be
Run promtail as default user
2022-07-08 00:56:51 -07:00
2eb8e1dc5a
Fix typo
2022-07-08 00:56:21 -07:00
bf5b24e5af
Disable :ro due to permissions errors
2022-07-08 00:55:53 -07:00
5d30f520a5
- Switch back to 1000:1000
...
- Mount docker socket read-only
- Use docker service discovery
2022-07-08 00:54:24 -07:00
ccb6e00a10
Test with 0:0
2022-07-08 00:35:34 -07:00
d79f61cffe
Fix typo
2022-07-08 00:32:53 -07:00
7524c7c5bc
make container volume map explicitly read-only
2022-07-08 00:30:44 -07:00
ede63a36e6
Map /var/lib/docker/containers to promtail
2022-07-08 00:21:58 -07:00
f2765400ba
Fix promtail config indentation
2022-07-07 23:32:56 -07:00
2239e9b605
Fix job indentation
2022-07-07 23:30:13 -07:00
c1c743f979
Switch from machine logs to docker logs
2022-07-07 23:25:09 -07:00
97dbc9af7b
Fix typo
2022-07-07 23:20:02 -07:00
9fbe2f1f47
Clarify new daemon.json
2022-07-07 23:16:52 -07:00
72b8c77959
Init loki & promtail
2022-07-07 23:12:57 -07:00
01d5192da5
Add dev calibre-web container for oauth image
2022-07-07 21:07:02 -07:00
a40102ad77
Explicitly configure service for gitlab router
2022-07-07 12:48:18 -07:00
7d82f33adb
Update gitlab config per https://gitlab.com/gitlab-org/omnibus-gitlab/-/issues/5560
2022-07-07 12:43:18 -07:00
eae8e9848c
Update gitlab config and docs
2022-07-07 12:31:22 -07:00
5345fffcde
Update Homer
2022-07-07 09:30:20 -07:00
619be8c45a
Disable TLS for SSL
2022-07-06 19:46:43 -07:00
8da7913824
Remove adminer
2022-07-06 18:28:51 -07:00
ace8286f9e
Add authentik to calibre-rpg
2022-07-06 18:25:58 -07:00
9ab238deb3
Undo and switch to using authentik-server
2022-07-06 18:14:37 -07:00
1f085bdf41
Set authentik hostname
2022-07-06 18:12:38 -07:00
5ec5248e62
Fix typo
2022-07-06 18:04:28 -07:00
bc6f6c2d26
Fix typo
2022-07-06 18:03:36 -07:00
59e12c6df6
Flesh out nginx stack
2022-07-06 18:02:51 -07:00
9cf1c9cf38
Disable authentik on calibre-web
2022-07-06 17:57:20 -07:00
d8695061e7
Init test nginx
2022-07-06 17:56:52 -07:00
a2faba9198
Fix missing property
2022-07-06 17:50:03 -07:00
a86f0fde20
Switch middleware name from security-headers to securityheaders
2022-07-06 17:46:52 -07:00
775cf7089d
Fix typos
2022-07-06 17:40:41 -07:00
206c515a70
Add new security headers to calibre-web-rpg and Authentik
2022-07-06 17:36:51 -07:00
cb28ba5218
Cleanup
2022-07-06 17:35:12 -07:00
2dc3fa2af1
Switch Traefik dynamic config files from toml to yaml
2022-07-06 17:34:52 -07:00
