bb337129f0
#3 Rotate Gitea runner key, re-encrypt all keys
...
Stacks CICD / Setup (push) Waiting to run
Also removes git-crypt encryption from all remaining secrets.
2024-08-29 14:29:51 -07:00
5fb2056c1d
#3 Add keycloak and traefik secrets with sops
2024-08-28 13:07:56 -07:00
676da8dca3
#2 Move age files to homelab/.sops/
...
Separate "authors" keys and "deploy" keys.
Add features to setup, encrypt, and decrypt scripts:
- Validate input arguments
- Set age keyfile and recipients dynamically at runtime
2024-08-14 14:26:52 -07:00
756225c680
#2 Switch postgress back to password from password file
2024-08-14 00:15:41 -07:00
228b3768cd
#2 Fix typo: extra underscore
2024-08-14 00:10:32 -07:00
b2028a5ad0
#2 Re-encrypt keycloak secrets with fighter's pubkey added to map
2024-08-14 00:05:58 -07:00
9ca38bd52c
#2 Replace Docker secrets with encrypted secrets.env file
...
Add encrypt and decrypt scripts
Add pubkeys file with desktop and fighter pubkeys
2024-08-13 23:34:15 -07:00
8729e02a23
Switch postgres to native password file, remove entrypoint injection
2024-08-13 15:52:02 -07:00
c4cc18835f
Resolve "/bin/sh: 1: source: not found"
2024-08-13 15:39:52 -07:00
8efd7c42a8
Simplify entrypoint
2024-08-13 15:38:57 -07:00
1f5801d31f
Correct entrypoint script name (this is going to be a pain)
2024-08-13 15:32:17 -07:00
aa0fe3365d
Experimental implementation of entrypoint injection to export secrets to env vars
2024-08-13 15:29:04 -07:00
f838aa199f
Remove deprecated HOSTNAME_URL option
2024-08-13 11:37:33 -07:00
d6682073d8
Update keycloak proxy configuration per upgrading guide.
...
https://www.keycloak.org/server/reverseproxy
https://www.keycloak.org/docs/latest/upgrading/index.html#deprecated-proxy-option
2024-08-13 11:27:01 -07:00
037ce905d0
#2 Fix typo in secret filename
2024-08-13 11:15:13 -07:00
e6158be743
#2 Remove leftover env_file block for forwardauth
2024-08-13 11:12:38 -07:00
3b2c9039c5
#2 Refactor Keycloak secret configuration
2024-08-12 16:39:28 -07:00
edf5173f5e
Pin images to latest, remove obsolete 'version' top-level compose element
...
Pinning to digests was resulting in many stacks failing to come online with "manifest unknown" errors. Will look further into this.
2024-07-22 10:26:29 -07:00
fedd04569d
Fix wrong traefik-forward-auth image
2024-07-17 16:22:33 -07:00
a8a4671d9f
Pass hostname to start command
2024-07-17 15:52:56 -07:00
112d6bda90
Downgrade postgres to v15
2024-07-17 15:47:37 -07:00
cd9f369b93
Update postgres, keycloak tags to latest
2024-07-17 15:45:20 -07:00
e34c840305
Update to working tags for traefik-forward-auth
2024-07-17 15:42:17 -07:00
df60566d3c
#1 Pin images to current digest
2024-07-16 14:25:20 -07:00
6086222503
Reorganize root level of repo.
...
- Move homelab, Jafner.dev (now called blog) to root.
- Rename "archived projects" -> "archive"
- Rename "active projects" -> "projects"
- Rename "jafner-homebrew" -> "5ehomebrew"
- Rename "docker-llm-amd" -> "local-ai"
2024-07-16 12:17:55 -07:00
97e4cc547a
Init Jafner.net monorepo from constituent repos:
...
1. homelab [Gitea](https://gitea.jafner.tools/Jafner/homelab ), [Github (docker_config)](https://github.com/Jafner/docker_config ), [Github (wiki)](https://github.com/Jafner/wiki ), [Github (cloud_tools)](https://github.com/Jafner/cloud_tools ), [Github (self-hosting)](https://github.com/Jafner/self-hosting ).
- Rename? Jafner.net? Wouldn't that be `Jafner/Jafner.net/Jafner.net`?
2. Jafner.dev [Github](https://github.com/Jafner/Jafner.dev ).
3. dotfiles [Gitea](https://gitea.jafner.tools/Jafner/dotfiles ), [Github](https://github.com/Jafner/dotfiles ).
4. nvgm [Gitea](https://gitea.jafner.tools/Jafner/nvgm )
5. pamidi [Gitea](https://gitea.jafner.tools/Jafner/pamidi ), [Github](https://github.com/Jafner/pamidi )
6. docker-llm-amd [Gitea](https://gitea.jafner.tools/Jafner/docker-llm-amd )
7. doradash [Gitea](https://gitea.jafner.tools/Jafner/doradash )
8. clip-it-and-ship-it [Gitea (PyClipIt)](https://gitea.jafner.tools/Jafner/PyClipIt ), [Github](https://github.com/Jafner/clip-it-and-ship-it ).
9. razer battery led [Github](https://github.com/Jafner/Razer-BatteryLevelRGB )
10. 5etools-docker [Github](https://github.com/Jafner/5etools-docker )
11. jafner-homebrew [Github](https://github.com/Jafner/jafner-homebrew )
2024-07-15 15:35:16 -07:00
c9521264a3
Remove dependency on healthcheck
2024-03-08 20:44:10 -08:00
3498a1cced
Remove broken healthcheck
2024-03-08 20:41:37 -08:00
d30172bc84
Update compose schema version number, reorganize command parameter for forwardauth
2024-02-15 01:05:11 -08:00
8bf93e4b18
Update keycloak to new env_file format
2024-02-15 00:16:48 -08:00
0bdbb30459
#113 Reorganize compose file
2024-01-08 11:44:38 -08:00
7ca9570f4a
#113 Remove old keycloak install, copy new install over
2024-01-08 11:41:52 -08:00
f8717b0d85
Deprecate GitLab
2024-01-06 11:55:07 -08:00
8fecb04cd9
#113 Remove deprecated Dockerfile
2024-01-06 11:53:01 -08:00
7878c5d233
#113 Update to working config
2024-01-05 17:42:09 -08:00
e9b7c4086f
#113 Update DB parameters
2024-01-05 14:49:38 -08:00
2e8d386e1d
#113 Add DB env vars to keycloak-wip.env
2024-01-04 15:54:40 -08:00
d191e09bb9
#113 Implement keycloak-wip parallel to current prod
2024-01-04 15:46:14 -08:00
ec0b6fe4e6
#117 Add healthcheck requirement to forwardauth depdends_on
2024-01-04 15:34:58 -08:00
f6f27f37f9
#117 Remove "start_period" config
2024-01-04 15:33:15 -08:00
5813c397ed
#117 Reduce test interval
2024-01-04 15:31:41 -08:00
780e919a99
#117 Update healthcheck test URL
2024-01-04 15:29:51 -08:00
2147af04cf
#117 Init healthcheck for Keycloak
2024-01-04 15:25:44 -08:00
9f4a19011b
#117 WIP
2024-01-04 12:16:05 -08:00
f18fda0c86
#113 Attempt to fix instant death
2024-01-04 12:05:43 -08:00
6cc5538ddd
#113 Comment out WIP env vars
2024-01-04 12:01:27 -08:00
8edd33ac43
#113 Fix typo
2024-01-04 11:59:29 -08:00
1468d69b1b
#113 Comment out WIP blocks
2024-01-04 11:59:06 -08:00
5dcaf09b6b
#113 Save progress in commented block, fallback to working dev config
2024-01-04 11:58:13 -08:00
303b57750d
#113 Fix typos
2024-01-04 11:52:52 -08:00
