5aabb51cb5
#4 Add debug logging
...
Switch back to just one token with both Zone/DNS/Edit and Zone/Zone/Read permissions for 'All zones from account'
2024-08-15 11:34:15 -07:00
a21aedd233
#4 Enable debug logs for traefik to better diagnose issue getting certs via dnsChallenge
2024-08-15 11:25:31 -07:00
03878b77ef
#4 Add cloudflare zone read token
2024-08-15 11:03:59 -07:00
ec6f552a53
#4 Add nginx container at test.nginx.jafner.net to test DNS challenge
2024-08-15 10:24:17 -07:00
676da8dca3
#2 Move age files to homelab/.sops/
...
Separate "authors" keys and "deploy" keys.
Add features to setup, encrypt, and decrypt scripts:
- Validate input arguments
- Set age keyfile and recipients dynamically at runtime
2024-08-14 14:26:52 -07:00
383b8b3351
#3 Switch send to dns01 challenge certresolver
2024-08-14 14:10:49 -07:00
1bcc37f70d
#3 Configure lets-encrypt-dns01 certresolver with its own acme.json storage
2024-08-14 14:10:17 -07:00
756225c680
#2 Switch postgress back to password from password file
2024-08-14 00:15:41 -07:00
228b3768cd
#2 Fix typo: extra underscore
2024-08-14 00:10:32 -07:00
b2028a5ad0
#2 Re-encrypt keycloak secrets with fighter's pubkey added to map
2024-08-14 00:05:58 -07:00
9ca38bd52c
#2 Replace Docker secrets with encrypted secrets.env file
...
Add encrypt and decrypt scripts
Add pubkeys file with desktop and fighter pubkeys
2024-08-13 23:34:15 -07:00
8729e02a23
Switch postgres to native password file, remove entrypoint injection
2024-08-13 15:52:02 -07:00
c4cc18835f
Resolve "/bin/sh: 1: source: not found"
2024-08-13 15:39:52 -07:00
8efd7c42a8
Simplify entrypoint
2024-08-13 15:38:57 -07:00
1f5801d31f
Correct entrypoint script name (this is going to be a pain)
2024-08-13 15:32:17 -07:00
aa0fe3365d
Experimental implementation of entrypoint injection to export secrets to env vars
2024-08-13 15:29:04 -07:00
f838aa199f
Remove deprecated HOSTNAME_URL option
2024-08-13 11:37:33 -07:00
d6682073d8
Update keycloak proxy configuration per upgrading guide.
...
https://www.keycloak.org/server/reverseproxy
https://www.keycloak.org/docs/latest/upgrading/index.html#deprecated-proxy-option
2024-08-13 11:27:01 -07:00
037ce905d0
#2 Fix typo in secret filename
2024-08-13 11:15:13 -07:00
e6158be743
#2 Remove leftover env_file block for forwardauth
2024-08-13 11:12:38 -07:00
b01948219f
Init Traefik certresolver for dns01 challenges
2024-08-12 16:40:17 -07:00
3b2c9039c5
#2 Refactor Keycloak secret configuration
2024-08-12 16:39:28 -07:00
10e1fb2d74
Init passthrough router from fighter to dungeon-master
2024-08-12 13:08:28 -07:00
184013dde1
Fix accidental quotes
2024-08-09 16:28:11 -07:00
34fdb75fb7
Fix regexps for router rules
2024-08-09 16:27:25 -07:00
180a4bd14a
Add additional router for silver-hand
...
Per: https://community.traefik.io/t/run-traefik-behind-traefik-reverse-proxy/4044/6
2024-08-09 16:22:19 -07:00
e45dfd64e8
Switch TCP router to point to TLS port
2024-08-09 15:57:08 -07:00
e1f79bcaa8
Configure fighter traefik instance to pass through requests for *.jafner.dev to the k3s cluster
2024-08-09 15:55:24 -07:00
557be69e3f
Fix erroneous protocol prefix
2024-08-08 12:25:36 -07:00
c13727ce56
Init Traefik TCP router for passing *.k3s.jafner.net and k3s.jafner.net through to cluster ingress controller
2024-08-08 12:24:28 -07:00
b28498c945
Archive nginx, unused
2024-07-22 10:36:12 -07:00
5c6abd693a
Archive megan-portfolio, unused
2024-07-22 10:35:51 -07:00
541be8dc45
Archive jellyfin, unused
2024-07-22 10:34:55 -07:00
d33f9a93fc
Archive jafner-dev wordpress instance, unused
2024-07-22 10:34:39 -07:00
1faa629c42
Archive gitea runner, currently unused
2024-07-22 10:34:19 -07:00
edf5173f5e
Pin images to latest, remove obsolete 'version' top-level compose element
...
Pinning to digests was resulting in many stacks failing to come online with "manifest unknown" errors. Will look further into this.
2024-07-22 10:26:29 -07:00
b9c9cfa287
Fix typo; restore Traefik router rule, update ND_BASEURL envvar
2024-07-21 14:42:25 -07:00
230a86baa3
Add protocol to base URL
2024-07-21 14:40:39 -07:00
88ed7233ea
Pin navidrome image to latest by digest
2024-07-21 14:35:00 -07:00
03f54b62ce
Add web network to stack
2024-07-21 14:31:06 -07:00
e8180e0cd7
Define MUSIC_DIR
2024-07-21 14:29:35 -07:00
6e07c5bf9a
Init navidrome
2024-07-21 14:28:00 -07:00
fb44b723f3
Update autopirate stack to use the UID:GID of admin user
2024-07-19 21:59:17 -07:00
9643d6e307
Add lidarr to autopirate stack
2024-07-19 00:37:50 -07:00
18e1ee001c
Update to latest
2024-07-18 16:22:34 -07:00
47dbe749af
Update qbittorrent UID/GID to match host
...
Resolves permissions issue preventing the qbit from reading files
2024-07-18 12:18:46 -07:00
fedd04569d
Fix wrong traefik-forward-auth image
2024-07-17 16:22:33 -07:00
5debaf00a2
Update plex stack to latest
2024-07-17 16:16:59 -07:00
efd23780a5
Update autopirate stack images to latest
2024-07-17 16:12:20 -07:00
a8a4671d9f
Pass hostname to start command
2024-07-17 15:52:56 -07:00
112d6bda90
Downgrade postgres to v15
2024-07-17 15:47:37 -07:00
cd9f369b93
Update postgres, keycloak tags to latest
2024-07-17 15:45:20 -07:00
e34c840305
Update to working tags for traefik-forward-auth
2024-07-17 15:42:17 -07:00
df60566d3c
#1 Pin images to current digest
2024-07-16 14:25:20 -07:00
6086222503
Reorganize root level of repo.
...
- Move homelab, Jafner.dev (now called blog) to root.
- Rename "archived projects" -> "archive"
- Rename "active projects" -> "projects"
- Rename "jafner-homebrew" -> "5ehomebrew"
- Rename "docker-llm-amd" -> "local-ai"
2024-07-16 12:17:55 -07:00
97e4cc547a
Init Jafner.net monorepo from constituent repos:
...
1. homelab [Gitea](https://gitea.jafner.tools/Jafner/homelab ), [Github (docker_config)](https://github.com/Jafner/docker_config ), [Github (wiki)](https://github.com/Jafner/wiki ), [Github (cloud_tools)](https://github.com/Jafner/cloud_tools ), [Github (self-hosting)](https://github.com/Jafner/self-hosting ).
- Rename? Jafner.net? Wouldn't that be `Jafner/Jafner.net/Jafner.net`?
2. Jafner.dev [Github](https://github.com/Jafner/Jafner.dev ).
3. dotfiles [Gitea](https://gitea.jafner.tools/Jafner/dotfiles ), [Github](https://github.com/Jafner/dotfiles ).
4. nvgm [Gitea](https://gitea.jafner.tools/Jafner/nvgm )
5. pamidi [Gitea](https://gitea.jafner.tools/Jafner/pamidi ), [Github](https://github.com/Jafner/pamidi )
6. docker-llm-amd [Gitea](https://gitea.jafner.tools/Jafner/docker-llm-amd )
7. doradash [Gitea](https://gitea.jafner.tools/Jafner/doradash )
8. clip-it-and-ship-it [Gitea (PyClipIt)](https://gitea.jafner.tools/Jafner/PyClipIt ), [Github](https://github.com/Jafner/clip-it-and-ship-it ).
9. razer battery led [Github](https://github.com/Jafner/Razer-BatteryLevelRGB )
10. 5etools-docker [Github](https://github.com/Jafner/5etools-docker )
11. jafner-homebrew [Github](https://github.com/Jafner/jafner-homebrew )
2024-07-15 15:35:16 -07:00
f7887fcd12
Init new host: paladin
...
Paladin is a new TrueNAS host. Currently configured with no storage, but will end up getting the DS4243 currently attached to Barbarian.
2024-07-09 21:12:50 -07:00
6a9d83a67c
Add president's day tasmota to homepage and traefik
2024-07-02 12:04:51 -07:00
7c24e130fd
#128 Fix secret leak, document better configuration procedure
2024-06-25 12:19:58 -07:00
ace17cdf21
Switch to e9
2024-06-19 22:02:09 -07:00
a555760cbb
Give up and just route e10 to desktop:25565
2024-06-19 13:18:34 -07:00
1fbc2e53b4
Set java and minecraft versions
2024-06-18 23:28:03 -07:00
37b8d3d50e
Update container user
2024-06-18 23:21:54 -07:00
482eacc7c4
Fix UID/GID for itzg container
2024-06-18 23:15:56 -07:00
cb9e64e103
Update mc-router mapping
2024-06-18 17:08:19 -07:00
3710afbd45
WIP Set up Enigmatica 10
2024-06-18 17:07:07 -07:00
663345b3d9
Add qbt-api route for unauthenticated access over LAN
2024-05-30 00:36:34 -07:00
6de2a0beb6
Remove jafner.dev from ddns
...
Repurposing the domain for GitHub Pages.
2024-05-28 22:17:37 -07:00
0ae5247407
Fix typo
2024-05-28 13:17:04 -07:00
f04aff5ff8
Update all zones to update root
...
Also CNAME'd wildcard subdomains to root
2024-05-28 13:15:48 -07:00
c11880c67b
Update ddclient config
2024-05-28 13:07:30 -07:00
4d77b12d60
Init jafner-dev wordpress portfolio instance
2024-05-28 12:34:19 -07:00
7c121138b1
#126 Cleanup to facilitate diagnosis later
2024-05-28 11:42:59 -07:00
5530b8661f
Update ai traefik routiung
2024-05-28 11:42:15 -07:00
55009fca5a
Update AI routers
2024-05-23 22:19:47 -07:00
4410150e43
Set upload size limits explicitly
2024-05-20 22:02:14 -07:00
0f16d8b663
Update env vars for new DATASOURCE_* storage configuration
2024-05-20 21:14:16 -07:00
f181c77220
Add permanent volume for /public in Zipline
2024-05-20 21:10:30 -07:00
267151ca8c
Fix typo
2024-05-20 21:01:51 -07:00
4376219065
Allow zipline to assume the mimetype of files uploaded via API (Curl)
2024-05-20 18:00:23 -07:00
c7bcbcdefe
#126 Check whether connecting runner container to host network eliminates traefik errors.
2024-05-19 15:20:08 -07:00
f3ee8bbcd6
Disable megan-portfolio until DNS records can be updated
2024-05-19 15:06:26 -07:00
fc78e428c6
Update nextcloud docs to better address config manipulation
2024-05-19 14:37:29 -07:00
0264a6248e
#127 Add Traefik route for ollama and open-webui
2024-05-19 14:36:08 -07:00
198dd867be
Update script to use proper fully-qualified path for secrets file
2024-04-25 17:23:12 -07:00
f0b77f370d
Fix secrets file not passed
2024-04-25 11:39:56 -07:00
d9996607c1
Add discord notifier script to qbt container
2024-04-25 11:07:29 -07:00
a1a49b21cd
Braindump for March 2024 Rescue
2024-03-30 17:54:10 -07:00
27f1a0251f
Update docker network web to use wider subnet and restricted DHCP pool
2024-03-30 17:53:19 -07:00
f7431ef0e4
Split out Media share into three components: Movies, Shows, and Music
2024-03-12 21:00:01 -07:00
98d7fb3d57
#123 Disable security headers to troubleshoot "MIME type not found" error
2024-03-10 18:57:15 -07:00
0eea0276cf
#123 Enable CORE_RETURN_HTTPS as first step in diagnosing failure to render media
2024-03-10 18:52:15 -07:00
ceeac33f93
#123 Fix typo'd healthcheck command
2024-03-10 17:54:12 -07:00
604ea86fb1
#123 Init Zipline
2024-03-10 17:51:47 -07:00
2db9f8a25d
Clean up volume map names
2024-03-09 01:55:20 -08:00
ecf6d86d1c
Update fighter startup/shutdown scripts
2024-03-09 01:04:44 -08:00
c9521264a3
Remove dependency on healthcheck
2024-03-08 20:44:10 -08:00
3498a1cced
Remove broken healthcheck
2024-03-08 20:41:37 -08:00
fd103e833f
Fix try-catch blocks to make bash happy
2024-03-02 17:21:06 -08:00
96da89793c
Init improved share handling
...
- Automatically attempt to connect and mount iSCSI
- For each stack, check share dependency against availability
Add 'clean' "subcommand" to shutdown and remove existing containers
Consistently indent console printouts
2024-03-02 17:13:44 -08:00
