Commit Graph

505 Commits

Author SHA1 Message Date
0ea9da3a53 Update postgres bootstrap allowing multiple databases 2023-07-25 16:57:33 -07:00
ac29343d96 Add postgres stunnel and service bootstrap 2023-07-25 10:59:33 -07:00
f8478ae6c9 Service Template: Make sure stunnel is there for ldap 2023-07-25 10:30:28 -07:00
f0d31ff13c Move stunnel psks to a more restrictive path 2023-07-25 10:16:30 -07:00
c33f877af8 Allow specifying port from value for local host binding 2023-07-24 15:23:40 -07:00
b9fb2d4b07 Add ability to specify custom services for service module 2023-07-24 15:23:31 -07:00
6524631a53 Upgrade to nomad 1.6 2023-07-19 10:42:38 -07:00
10a9689eef Bump up MySQL memory 2023-07-19 09:37:23 -07:00
9b11ad9a69 Add Nomad var example and remove old examples 2023-07-11 12:46:47 -07:00
72c30d4d74 Add basic readme 2023-07-11 17:32:50 +00:00
2e7dc0315e Use shorthand for ingress middlware for photoprism 2023-07-07 16:35:07 -07:00
744466bf07 Use static port for Authelia so that nomad middleware config is the same for each service 2023-07-07 16:34:50 -07:00
d0641f8edf Enable setting static ports for service template 2023-07-07 16:33:36 -07:00
cb73e2b205 Remove whitespace 2023-07-07 15:56:25 -07:00
486df58bac Use nomad-python client for setting nomad vars 2023-07-07 15:56:25 -07:00
b75f8fce7b Clean photoprism config 2023-07-07 15:56:24 -07:00
df062000e7 Run two authelia instances now that it's stateless 2023-07-07 15:56:23 -07:00
2b91b6dc8f Add instance count to service template 2023-07-07 15:51:19 -07:00
85db434c1f Minor cleanup to backups module 2023-07-07 15:50:58 -07:00
0a7ad7a9dc Enable redis for authelia
This also splits redis instances by service
2023-07-07 15:50:23 -07:00
b0c1aca497 Increase token time for Nomad OIDC 2023-07-07 15:47:08 -07:00
60a4051988 Enable Authelia OIDC for Nomad 2023-07-07 00:41:44 -07:00
0ceb513216 Switch Grafana to OIDC from proxy auth 2023-07-07 00:40:19 -07:00
9d5aeeec96 Enable Authelia OIDC provider 2023-07-07 00:39:44 -07:00
6dbe0f7f45 Add nomad ACLs and roles for use in oidc auth 2023-07-07 00:30:02 -07:00
eae5b201b6 Add two factor for external IPs 2023-07-06 21:25:31 -07:00
532d7f9a4c Use Authelia for Grafana login 2023-07-06 18:00:06 -07:00
88e91e5e5d Deploy authelia
Backed by lldap and mysql and deployed on whoami for now as a forward
proxy example

Would be good to add oidc for Nomad as well as make policies configurable
via Nomad variables.
2023-07-06 18:00:06 -07:00
a90b3bbdbe Make it easier to enable bootstrap now that key isn't included 2023-07-06 17:25:13 -07:00
cdbd6a9cb3 Add ability to set priority for service templates 2023-07-06 17:25:13 -07:00
2a1a7fb6b7 Clean mysql stunnel config 2023-07-06 17:25:13 -07:00
8650ab973a Add stunnel for ldap as part of service template 2023-07-06 17:25:13 -07:00
acc80868f9 Switch lldap storage to mysql 2023-07-05 17:30:54 -07:00
f606e0a17e Remove blocky client groups because fallback server masks them 2023-07-05 15:45:55 -07:00
44467d1075 Add playbook to restart wesher and nomad 2023-06-20 09:45:01 -07:00
8b0495c6c8 Take mysql off wesher network 2023-06-20 09:44:21 -07:00
2df43584cf Grafana config reloading: Use explicit path and echo
Was running into some issues with this not running. Using an explicit
path seems to help, so I'll try it for now. Also added some echo statements
to make it easier to discern when run.
2023-06-20 09:44:04 -07:00
2c128b25f3 Add additional blocking for wemo 2023-06-20 09:42:33 -07:00
1df5545835 Promtail: use local task dir rather than bind mount 2023-05-12 10:11:30 -07:00
d4cb91d58d Rename metrics job to exporters 2023-05-12 10:11:11 -07:00
48322d9a78 Document what the nomad stalker is for 2023-05-12 10:10:31 -07:00
73e9977d41 Use variable secrets location for mysql 2023-05-09 15:57:09 -07:00
5dc0e4bcaf Use pushgateway with restic scheduler batches
Batches can't run due to incorrectly scoped variables
2023-05-09 15:56:53 -07:00
5169aecc6d Add pushgateway to prometheus 2023-05-09 15:56:20 -07:00
69c8322d50 Better error handling in nomad variable bootstrap 2023-05-09 13:21:00 -07:00
f11fad30a5 Use stunnel for mysql
Doesn't remove wesher or normal mysql service
2023-05-09 13:20:36 -07:00
a5efe0c21b Fix variable bootstrap address 2023-05-09 13:13:28 -07:00
30766cce39 Bump up sonarr memory 2023-05-09 11:40:31 -07:00
33ec66346b Make target to stop Nomad cluster 2023-05-09 11:39:27 -07:00
8d63c50ffb Add Postgres database to cluster 2023-05-03 14:16:47 -07:00