Commit Graph

511 Commits

Author SHA1 Message Date
8f6bed297c Upgrade to nomad 1.6.1 2023-07-26 15:29:39 -07:00
882b93a4c5 Abort nomad recovery if any hosts fail 2023-07-26 15:27:46 -07:00
0d37652447 Add pre-commit hook to make sure variable sample is up to date 2023-07-25 16:57:44 -07:00
a52c2bc6c7 Run pre-commit on everything 2023-07-25 16:57:44 -07:00
70098930f8 Add lidarr 2023-07-25 16:57:33 -07:00
e7c985d276 Allow adminer to connect to postgres 2023-07-25 16:57:33 -07:00
0ea9da3a53 Update postgres bootstrap allowing multiple databases 2023-07-25 16:57:33 -07:00
ac29343d96 Add postgres stunnel and service bootstrap 2023-07-25 10:59:33 -07:00
f8478ae6c9 Service Template: Make sure stunnel is there for ldap 2023-07-25 10:30:28 -07:00
f0d31ff13c Move stunnel psks to a more restrictive path 2023-07-25 10:16:30 -07:00
c33f877af8 Allow specifying port from value for local host binding 2023-07-24 15:23:40 -07:00
b9fb2d4b07 Add ability to specify custom services for service module 2023-07-24 15:23:31 -07:00
6524631a53 Upgrade to nomad 1.6 2023-07-19 10:42:38 -07:00
10a9689eef Bump up MySQL memory 2023-07-19 09:37:23 -07:00
9b11ad9a69 Add Nomad var example and remove old examples 2023-07-11 12:46:47 -07:00
72c30d4d74 Add basic readme 2023-07-11 17:32:50 +00:00
2e7dc0315e Use shorthand for ingress middlware for photoprism 2023-07-07 16:35:07 -07:00
744466bf07 Use static port for Authelia so that nomad middleware config is the same for each service 2023-07-07 16:34:50 -07:00
d0641f8edf Enable setting static ports for service template 2023-07-07 16:33:36 -07:00
cb73e2b205 Remove whitespace 2023-07-07 15:56:25 -07:00
486df58bac Use nomad-python client for setting nomad vars 2023-07-07 15:56:25 -07:00
b75f8fce7b Clean photoprism config 2023-07-07 15:56:24 -07:00
df062000e7 Run two authelia instances now that it's stateless 2023-07-07 15:56:23 -07:00
2b91b6dc8f Add instance count to service template 2023-07-07 15:51:19 -07:00
85db434c1f Minor cleanup to backups module 2023-07-07 15:50:58 -07:00
0a7ad7a9dc Enable redis for authelia
This also splits redis instances by service
2023-07-07 15:50:23 -07:00
b0c1aca497 Increase token time for Nomad OIDC 2023-07-07 15:47:08 -07:00
60a4051988 Enable Authelia OIDC for Nomad 2023-07-07 00:41:44 -07:00
0ceb513216 Switch Grafana to OIDC from proxy auth 2023-07-07 00:40:19 -07:00
9d5aeeec96 Enable Authelia OIDC provider 2023-07-07 00:39:44 -07:00
6dbe0f7f45 Add nomad ACLs and roles for use in oidc auth 2023-07-07 00:30:02 -07:00
eae5b201b6 Add two factor for external IPs 2023-07-06 21:25:31 -07:00
532d7f9a4c Use Authelia for Grafana login 2023-07-06 18:00:06 -07:00
88e91e5e5d Deploy authelia
Backed by lldap and mysql and deployed on whoami for now as a forward
proxy example

Would be good to add oidc for Nomad as well as make policies configurable
via Nomad variables.
2023-07-06 18:00:06 -07:00
a90b3bbdbe Make it easier to enable bootstrap now that key isn't included 2023-07-06 17:25:13 -07:00
cdbd6a9cb3 Add ability to set priority for service templates 2023-07-06 17:25:13 -07:00
2a1a7fb6b7 Clean mysql stunnel config 2023-07-06 17:25:13 -07:00
8650ab973a Add stunnel for ldap as part of service template 2023-07-06 17:25:13 -07:00
acc80868f9 Switch lldap storage to mysql 2023-07-05 17:30:54 -07:00
f606e0a17e Remove blocky client groups because fallback server masks them 2023-07-05 15:45:55 -07:00
44467d1075 Add playbook to restart wesher and nomad 2023-06-20 09:45:01 -07:00
8b0495c6c8 Take mysql off wesher network 2023-06-20 09:44:21 -07:00
2df43584cf Grafana config reloading: Use explicit path and echo
Was running into some issues with this not running. Using an explicit
path seems to help, so I'll try it for now. Also added some echo statements
to make it easier to discern when run.
2023-06-20 09:44:04 -07:00
2c128b25f3 Add additional blocking for wemo 2023-06-20 09:42:33 -07:00
1df5545835 Promtail: use local task dir rather than bind mount 2023-05-12 10:11:30 -07:00
d4cb91d58d Rename metrics job to exporters 2023-05-12 10:11:11 -07:00
48322d9a78 Document what the nomad stalker is for 2023-05-12 10:10:31 -07:00
73e9977d41 Use variable secrets location for mysql 2023-05-09 15:57:09 -07:00
5dc0e4bcaf Use pushgateway with restic scheduler batches
Batches can't run due to incorrectly scoped variables
2023-05-09 15:56:53 -07:00
5169aecc6d Add pushgateway to prometheus 2023-05-09 15:56:20 -07:00