a8a9705b82
Migrate Nextcloud to Stacks
2024-10-08 11:52:56 -07:00
b327b8c6f1
Migrate Keycloak to Stacks
2024-10-08 11:52:30 -07:00
5aa743534b
Migrate home-assistant to Stacks
2024-10-08 11:51:27 -07:00
23c07b21ba
Migrate autopirate to Stacks
2024-10-08 11:49:44 -07:00
67fc3688f0
Migrate calibre-web to books stack
2024-09-06 13:45:21 -07:00
5ffd89514f
Delete unused DDNS service
2024-09-06 13:45:03 -07:00
b89acb7203
#14 Migrate homepage: init
2024-09-05 15:11:01 -07:00
e86f343ec8
Switch to LE production for dnschallenge certs
2024-09-01 00:42:14 -07:00
bb337129f0
#3 Rotate Gitea runner key, re-encrypt all keys
...
Stacks CICD / Setup (push) Waiting to run
Also removes git-crypt encryption from all remaining secrets.
2024-08-29 14:29:51 -07:00
56d29450a7
Move gitea-runner to stack
Stacks CICD / Setup (push) Waiting to run
2024-08-29 00:03:07 -07:00
5fb2056c1d
#3 Add keycloak and traefik secrets with sops
2024-08-28 13:07:56 -07:00
f3686ae3ad
Move send to stack
2024-08-28 12:14:19 -07:00
da31608729
Init gitea-runner service
Stacks CICD / Setup (push) Waiting to run
2024-08-27 22:09:37 -07:00
bb26fe060e
Delete unneeded compose file
2024-08-23 11:41:52 -07:00
1fe802b4ce
#12 Disable sabnzbd-exporter
2024-08-22 21:01:13 -07:00
1ec2804584
#12 Switch to a specific tag because :latest doesn't exist
2024-08-22 20:57:47 -07:00
6be08d88c2
#12 Switch to Linuxserver's container registry
2024-08-22 20:50:37 -07:00
021b61f5ca
#12 Init Readarr
2024-08-22 20:49:16 -07:00
1601b86401
Move Qbt to port 49500
2024-08-20 22:11:35 -07:00
56c7590000
Revert qbittorrent to before gluetun
2024-08-20 21:42:19 -07:00
ba40901fa8
Move gluetun to port 8580
2024-08-20 21:20:46 -07:00
b638ce2c7c
Remove port mappings
2024-08-20 21:19:58 -07:00
eaa5c91865
Remove web network
2024-08-20 21:07:57 -07:00
417a3f3fe9
Configure Qbittorrent to use gluetun to route container network traffic through vpn.jafner.tools
2024-08-20 20:47:17 -07:00
fac4bf6613
#6 Add "Public" service group
...
Add labels for calibre-web stack
2024-08-18 16:59:54 -07:00
7593a6b7b6
#6 Move Homepage to general-purpose
2024-08-18 16:49:50 -07:00
f224745def
#3 Delete test secret, add zipline secret
2024-08-16 17:41:23 -07:00
fe2351fe6e
#3 Delete secrets.env, init gitignore and gitattributes for git-crypt
2024-08-16 16:59:50 -07:00
ce7bd53e26
#3 Touch secrets.env to re-encrypt with fighter's host pubkey as recipient
2024-08-16 15:28:45 -07:00
cbaedf5018
#3 Refactor secret management for fighter/zipline
2024-08-16 15:21:59 -07:00
172fab21f0
#4 Disable traefik debug logging
2024-08-15 11:56:19 -07:00
1b00de1c9d
#4 Remove quotes from token value
2024-08-15 11:47:31 -07:00
5aabb51cb5
#4 Add debug logging
...
Switch back to just one token with both Zone/DNS/Edit and Zone/Zone/Read permissions for 'All zones from account'
2024-08-15 11:34:15 -07:00
a21aedd233
#4 Enable debug logs for traefik to better diagnose issue getting certs via dnsChallenge
2024-08-15 11:25:31 -07:00
03878b77ef
#4 Add cloudflare zone read token
2024-08-15 11:03:59 -07:00
ec6f552a53
#4 Add nginx container at test.nginx.jafner.net to test DNS challenge
2024-08-15 10:24:17 -07:00
676da8dca3
#2 Move age files to homelab/.sops/
...
Separate "authors" keys and "deploy" keys.
Add features to setup, encrypt, and decrypt scripts:
- Validate input arguments
- Set age keyfile and recipients dynamically at runtime
2024-08-14 14:26:52 -07:00
383b8b3351
#3 Switch send to dns01 challenge certresolver
2024-08-14 14:10:49 -07:00
1bcc37f70d
#3 Configure lets-encrypt-dns01 certresolver with its own acme.json storage
2024-08-14 14:10:17 -07:00
756225c680
#2 Switch postgress back to password from password file
2024-08-14 00:15:41 -07:00
228b3768cd
#2 Fix typo: extra underscore
2024-08-14 00:10:32 -07:00
b2028a5ad0
#2 Re-encrypt keycloak secrets with fighter's pubkey added to map
2024-08-14 00:05:58 -07:00
9ca38bd52c
#2 Replace Docker secrets with encrypted secrets.env file
...
Add encrypt and decrypt scripts
Add pubkeys file with desktop and fighter pubkeys
2024-08-13 23:34:15 -07:00
8729e02a23
Switch postgres to native password file, remove entrypoint injection
2024-08-13 15:52:02 -07:00
c4cc18835f
Resolve "/bin/sh: 1: source: not found"
2024-08-13 15:39:52 -07:00
8efd7c42a8
Simplify entrypoint
2024-08-13 15:38:57 -07:00
1f5801d31f
Correct entrypoint script name (this is going to be a pain)
2024-08-13 15:32:17 -07:00
aa0fe3365d
Experimental implementation of entrypoint injection to export secrets to env vars
2024-08-13 15:29:04 -07:00
f838aa199f
Remove deprecated HOSTNAME_URL option
2024-08-13 11:37:33 -07:00
d6682073d8
Update keycloak proxy configuration per upgrading guide.
...
https://www.keycloak.org/server/reverseproxy
https://www.keycloak.org/docs/latest/upgrading/index.html#deprecated-proxy-option
2024-08-13 11:27:01 -07:00
