PHiAX/Raspberry-Pi-IaC
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
87 commits 1 branch 0 tags 306 KiB
Commit graph

22 commits

Author SHA1 Message Date
Thomas Kleinendorst
cfb228cada Add secure postgres deployment 2024-10-06 17:45:04 +02:00
Thomas Kleinendorst
ea8e387a1c Add cloudflared role 2024-10-05 12:58:04 +02:00
Thomas Kleinendorst
da250bc2be Add basic Prometheus role 2024-09-16 10:53:58 +02:00
Thomas Kleinendorst
2014745501 Add changedetection as a hosted service 2024-04-28 15:50:14 +02:00
Thomas Kleinendorst
a84542a786 Rename reverse-proxy (role) > nginx 2024-04-28 14:56:26 +02:00
Thomas Kleinendorst
16c78c0d00 Copy ansible user's authorized_keys for new users 
This allows logging in directly via SSH to the newly added users.
I also removed the XDG_RUNTIME_DIR variable in ~/.zshrc because
this variable is already correctly loaded when loggin in directly via
SSH.
 2024-04-17 16:00:58 +02:00
Thomas Kleinendorst
16a0dc1e20 Enable all roles 2024-04-15 19:20:57 +02:00
Thomas Kleinendorst
2502d034d9 Add failing firewall configuration 2024-04-15 09:46:00 +02:00
Thomas Kleinendorst
e06547e25c Rearange existing roles to make more sense 2024-04-14 12:29:17 +02:00
Thomas Kleinendorst
bec00118c0 Add a non working setup for ip forwarding 2024-04-14 10:58:41 +02:00
Thomas Kleinendorst
6c0425418e Install actual on Raspberry Pi 2024-04-12 13:34:45 +02:00
Thomas Kleinendorst
64fa1562dd Add whitelist for squashfs filesystem 2024-04-12 12:21:45 +02:00
Thomas Kleinendorst
04c8038733 Improve some minor parts of the code 2024-04-11 11:13:29 +02:00
Thomas Kleinendorst
fb017565f4 Add user creation for ddns script 2024-04-10 20:09:34 +02:00
Thomas Kleinendorst
d1cf27d277 Properly add hostname and FQDN 2024-04-10 17:53:34 +02:00
Thomas Kleinendorst
8d27bd892c Add TODO stub of Pi Hole setup 
See the TODO comment in /roles/pi-hole/tasks/main.yml.
We'll probably need to install other software first.
 2024-04-10 16:56:01 +02:00
Thomas Kleinendorst
acb1e34b5c Move zsh tasks to a new role 2024-04-10 15:29:17 +02:00
Thomas Kleinendorst
f20f3aba24 Add scripting for installing and configuring zsh 2024-04-09 20:17:25 +02:00
Thomas Kleinendorst
3a0e231bf3 Configure the SSH hardening role 
This one is also disabled since it's not super useful to run more than
once. This role however doesn't report changes on reruns (as we've seen
for the os_hardening role).
 2024-04-09 17:57:38 +02:00
Thomas Kleinendorst
ce995083c6 Add and configure OS hardening role 
This role was run but is commented out as rerunning it shouldn't add
much whilst also being a time hog.
 2024-04-09 17:49:51 +02:00
Thomas Kleinendorst
7a42119d1a Update apt as first step in playbook 2024-04-09 17:12:27 +02:00
Thomas Kleinendorst
511de6edfd Add a simple playbook for testing 2024-04-09 17:03:04 +02:00