Quentin
3e0df95fe9
use diplonat autodiscovery to set ip addr
2024-05-18 15:45:00 +02:00
Quentin
e746768de1
hotfix garage
2024-05-17 20:29:05 +02:00
ADRN
f55891ba21
migration Cryptpad sur Courgette (Neptune) depuis Abricot (Scorpio), avec reconfiguration des backups
2024-05-12 22:02:22 +02:00
ADRN
9a6935ac90
ajout Boris en admin sur Cryptpad
2024-05-12 20:35:04 +02:00
Armaël Guéneau
3b777ddeb6
Move emails from ananas (in scorpio) to celeri (in neptune)
2024-05-12 17:09:05 +02:00
ADRN
28b58b3776
ajout max et vincent en admin cryptpad
2024-04-30 10:10:40 +02:00
Baptiste Jonglez
7db40a8dcf
Fix coturn that was failing with newer Nomad/Docker
...
Coturn was failing to start with the following error:
failed to create task for container: failed to create shim task: OCI
runtime create failed: runc create failed: unable to start container
process: exec: "/usr/local/bin/docker-entrypoint.sh": permission denied:
unknown
It seems to be caused by the recent NixOS update.
Either because Docker/runc is now more strict when checking if the
entrypoint is executable [1]
And/or because Nomad may mount the secrets directory with "noexec" [2].
In any case, the "local" directory [2] looks more appropriate, because
it's shared with the task while not being accessible to other tasks.
[1] https://github.com/opencontainers/runc/issues/3715
[2] https://developer.hashicorp.com/nomad/docs/concepts/filesystem
2024-04-28 18:01:52 +02:00
Baptiste Jonglez
c56ce9134c
Update woodpecker to latest 2.4.1
2024-04-28 13:31:15 +02:00
baptiste
1d40a3c7c0
Merge pull request 'Update Woodpecker to v2.4.0' ( #24 ) from tixie/nixcfg:update-woodpecker-2.4.0 into main
...
Reviewed-on: #24
2024-04-28 11:25:06 +00:00
Baptiste Jonglez
5dc7c3132b
Fix link in CI setup doc
2024-04-28 13:23:54 +02:00
Quentin
e6bac83e02
Tricot ulimit
2024-04-25 09:13:06 +02:00
Tixie
22fbadef2e
update woodpecker-agent to 2.4.0
2024-04-24 22:20:20 +02:00
Tixie
43189a5fc2
update woodpecker-server to 2.4.0
2024-04-24 22:20:06 +02:00
Alex
444306aa54
prod: allow woodpecker on neptune now with good ipv6
2024-04-20 10:20:04 +02:00
Alex
27df86a7e5
fix pad when not in neptune, and allow android7 email to move to bespin
2024-04-19 08:53:48 +02:00
ADRN
1871f7bbff
ajout de Jill & Trinity en admins de CryptPad
2024-04-18 19:36:07 +02:00
ADRN
a817d764d3
déplacement du service cryptpad concombre -> abricot
2024-04-18 19:07:08 +02:00
Jill
9111997f84
cluster/prod(app): Add new CryptPad build files
2024-04-18 18:56:19 +02:00
Jill
d41e10bd25
cluster/prod(app): Upgrade CryptPad to 2024.3.0
2024-04-18 18:45:07 +02:00
Alex
96ead9a597
prod: garage v1.0.0-rc1
2024-04-01 20:11:24 +02:00
Lauric Desauw
6152dc18d6
remove notice message for moderation
2024-03-29 15:48:21 +01:00
trinity-1686a
e4708a325d
add trinity.fr.eu.org to DKIM
2024-03-24 13:42:47 +00:00
Vincent
05dcd1c6a6
Courderec.re domain in the DKIM table
2024-03-24 14:23:47 +01:00
Alex
8fdffdf12f
prod: remove drone-ci
2024-03-17 11:35:07 +01:00
Quentin
f228592473
Ajout de la regex dans le query parameter du http-bind aussi
2024-03-11 08:37:40 +01:00
ADRN
263dad0243
ajout redirection nginx des salons Jitsi suspects
2024-03-10 21:05:43 +01:00
ADRN
aaf95aa110
added notice message on Jitsi about our monitoring
2024-03-10 20:39:41 +01:00
ADRN
6544cd3e14
increased Jitsi logs a bit
2024-03-09 12:56:34 +01:00
Maximilien Richer
54f7cb670d
Update lightstream and grafana
2024-03-09 11:41:46 +01:00
ADRN
3ca0203753
store real IP from Jitsi
2024-03-08 21:25:43 +01:00
Alex
dde6ece4db
prod: give more memory to promehteus
2024-03-08 12:03:48 +01:00
Alex
eb40718bee
force woodpecker on scorpio
2024-03-04 15:38:21 +01:00
Alex
62bd80a346
garage: update to v0.9.2 final
2024-03-01 18:11:36 +01:00
Alex
71e959ee79
prod: update to garage 0.9.2-rc1
2024-02-29 16:19:21 +01:00
Alex
5f0cec7d3e
woodpecker-ci: higher affinity to scorpio
2024-02-28 11:42:39 +01:00
Alex
f724e81239
add automatic subdomains for v4 and v6 per site for dashboard
2024-02-14 09:28:31 +01:00
Alex
82500758f6
prod: unpin woodpecker
2024-02-13 17:32:01 +01:00
Alex
c2e0e12dc8
add woodpecker agent instructions
2024-02-09 11:29:03 +01:00
Alex
52cfe54129
prod: install woodpecker-ci
2024-02-08 16:10:39 +01:00
Alex
a21493745d
prod: update diplonat and make garage restart on template changes again
...
Diplonat update prevents unnecessary flapping of autodiscovered ip
addresses, which was the cause of useless restarts of the garage daemon.
But in principle we want Garage to be restarted if the ipv6 address
changes as it indicates changes in the network.
2024-01-17 12:38:53 +01:00
Quentin
3b34e3c2f5
upgraded postfix to fix smtp smuggling cve
...
https://security-tracker.debian.org/tracker/source-package/postfix
https://www.postfix.org/smtp-smuggling.html
2023-12-25 14:09:57 +01:00
Quentin
ac42e95f1a
update smtp server security conf
2023-12-25 14:00:36 +01:00
Baptiste Jonglez
55c9b89cb2
Revert "Revert "garage prod: use dynamically determined ipv6 addresses""
...
Quentin's fix seems to work fine.
This reverts commit e5f3b6ef0a
2023-12-19 09:27:40 +01:00
Baptiste Jonglez
e5f3b6ef0a
Revert "garage prod: use dynamically determined ipv6 addresses"
...
This partially reverts commit 47e982b29d
2023-12-19 08:38:12 +01:00
Quentin
516ab9ad91
stop reloading config file
2023-12-19 08:36:26 +01:00
Quentin
16168b916e
tricot upgrade
2023-12-14 10:59:40 +01:00
Alex
47e982b29d
garage prod: use dynamically determined ipv6 addresses
2023-12-13 17:33:56 +01:00
Quentin
d694ddbe2c
Move garage's redirections to a dedicated service
...
Reason:
- do not slow down the garage web endpoint
- required now that we map domain name to a garage bucket
2023-12-04 12:32:46 +01:00
Quentin
0c3db22de6
fix bagage
2023-12-04 12:19:00 +01:00
Quentin
af242486a3
add degrowth
2023-12-04 12:16:41 +01:00
Quentin
ADRN
baptiste
Tixie
Alex
Jill
Lauric Desauw
trinity-1686a
Vincent
Maximilien Richer