PHiAX/Raspberry-Pi-IaC
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
121 commits 1 branch 0 tags 306 KiB
Commit graph

87 commits

Author SHA1 Message Date
Thomas Kleinendorst
d92299e66c Add comment on the podman_image task 2024-06-05 16:55:31 +02:00
Thomas Kleinendorst
fd2052767d Properly recreate systemd unit on container update 2024-06-05 16:53:00 +02:00
Thomas Kleinendorst
4fb455c6b4 Deduplicate Podman container logic with new role 2024-06-05 12:57:41 +02:00
Thomas Kleinendorst
bcf920053c Allow removal of Podman container on version bump 
Before this change it was necessary to remove the container manually.
With these changes it will automatically detect when a new version
should be deployed and the role will automatically remove the old
container.
 2024-06-03 13:47:22 +02:00
Thomas Kleinendorst
86d75b8de0 Update the actual version (to 24.5.0) 
There is also a problem with the configuration in that it's hard to
upgrade running containers, I added a note explaining this.
 2024-05-06 10:54:06 +02:00
Thomas Kleinendorst
2014745501 Add changedetection as a hosted service 2024-04-28 15:50:14 +02:00
Thomas Kleinendorst
743af73974 Fix problems with earlier nginx role rename 2024-04-28 15:22:01 +02:00
Thomas Kleinendorst
131991ec22 Create generic rule for simple nginx reverse proxy 2024-04-28 15:13:05 +02:00
Thomas Kleinendorst
a84542a786 Rename reverse-proxy (role) > nginx 2024-04-28 14:56:26 +02:00
Thomas Kleinendorst
b1ff2515e1 Start podman restart service in user role 2024-04-23 17:12:06 +02:00
Thomas Kleinendorst
16c78c0d00 Copy ansible user's authorized_keys for new users 
This allows logging in directly via SSH to the newly added users.
I also removed the XDG_RUNTIME_DIR variable in ~/.zshrc because
this variable is already correctly loaded when loggin in directly via
SSH.
 2024-04-17 16:00:58 +02:00
Thomas Kleinendorst
5d32ed57b4 Add user systemd config to pi-hole container 2024-04-16 17:17:34 +02:00
Thomas Kleinendorst
462e202737 Register actual container as systemd service 
This service is scoped to the user only but ensures that the container
is started on system boot.
 2024-04-16 17:04:45 +02:00
Thomas Kleinendorst
77f20aad28 Set hostname in pi-hole container 
The hostname is reported in the pi-hole dashboard, this looks a bit
nicer than a randomly generated id.
 2024-04-15 20:56:02 +02:00
Thomas Kleinendorst
606a26a008 Add link for starting containers on system boot 
As mentioned in the comment; this behavior is different in
Podman than how it is in Docker.
 2024-04-15 20:35:57 +02:00
Thomas Kleinendorst
9365ce9258 Fix Podman warnings for sudo login users 2024-04-15 19:01:45 +02:00
Thomas Kleinendorst
f23093d8dc Add UDP forwarding from Nginx 
This is working locally, I can resolve addresses. But there still
seems to be another problem in that Windows is timing out when setting
the Pi as the DNS server.
 2024-04-15 10:20:02 +02:00
Thomas Kleinendorst
690b2d56d8 Comment out ufw rules 2024-04-15 09:50:33 +02:00
Thomas Kleinendorst
2502d034d9 Add failing firewall configuration 2024-04-15 09:46:00 +02:00
Thomas Kleinendorst
e06547e25c Rearange existing roles to make more sense 2024-04-14 12:29:17 +02:00
Thomas Kleinendorst
bec00118c0 Add a non working setup for ip forwarding 2024-04-14 10:58:41 +02:00
Thomas Kleinendorst
abd99b179e Fix missing git on new install 
I locked myself out and had to rerun the scripting. It failed on
the user role since git wasn't installed. The dependency is now
correctly added.
 2024-04-13 18:24:49 +02:00
Thomas Kleinendorst
77c9614321 Change actual role user > username 2024-04-13 15:26:58 +02:00
Thomas Kleinendorst
21237b64c0 Install Pi-hole with some existing problems 
There is an error telling that dnsmasq doesn't start, this might have
to do with the user having to be root.
The DNS service also isn't exposed yet as it needs some ufw forwarding
(there's a TODO in the code mentioning this).
 2024-04-13 15:26:45 +02:00
Thomas Kleinendorst
22376928e2 Fix invalid variable naming for user role 
According to the linter variables used within rules should start with
the role's prefix.
 2024-04-13 13:54:49 +02:00
Thomas Kleinendorst
6c0425418e Install actual on Raspberry Pi 2024-04-12 13:34:45 +02:00
Thomas Kleinendorst
c7a20e14a1 Add certbot installation with root cert renew 2024-04-12 11:49:45 +02:00
Thomas Kleinendorst
a08eb939b6 Install Nginx (with default page running) 2024-04-12 09:33:14 +02:00
Thomas Kleinendorst
3ba044d1a2 Extract cloudflare_ddns user to a variable 2024-04-12 09:10:43 +02:00
Thomas Kleinendorst
5c5f1e4a93 Add timestamp to public IP change log file 2024-04-12 08:48:32 +02:00
Thomas Kleinendorst
04671f7d31 Add DDNS service to the Pi 2024-04-12 08:39:41 +02:00
Thomas Kleinendorst
04c8038733 Improve some minor parts of the code 2024-04-11 11:13:29 +02:00
Thomas Kleinendorst
90855de87a Update custom user role 2024-04-11 10:39:03 +02:00
Thomas Kleinendorst
fb017565f4 Add user creation for ddns script 2024-04-10 20:09:34 +02:00
Thomas Kleinendorst
f29cd352bd Move ddns scripting to new role 2024-04-10 20:08:19 +02:00
Thomas Kleinendorst
8d27bd892c Add TODO stub of Pi Hole setup 
See the TODO comment in /roles/pi-hole/tasks/main.yml.
We'll probably need to install other software first.
 2024-04-10 16:56:01 +02:00
Thomas Kleinendorst
acb1e34b5c Move zsh tasks to a new role 2024-04-10 15:29:17 +02:00