be2fd9c327
Move stunnel psks to a more restrictive path
2023-07-24 15:30:18 -07:00
c33f877af8
Allow specifying port from
value for local host binding
2023-07-24 15:23:40 -07:00
b9fb2d4b07
Add ability to specify custom services for service module
2023-07-24 15:23:31 -07:00
6524631a53
Upgrade to nomad 1.6
2023-07-19 10:42:38 -07:00
10a9689eef
Bump up MySQL memory
2023-07-19 09:37:23 -07:00
9b11ad9a69
Add Nomad var example and remove old examples
2023-07-11 12:46:47 -07:00
72c30d4d74
Add basic readme
2023-07-11 17:32:50 +00:00
2e7dc0315e
Use shorthand for ingress middlware for photoprism
2023-07-07 16:35:07 -07:00
744466bf07
Use static port for Authelia so that nomad middleware config is the same for each service
2023-07-07 16:34:50 -07:00
d0641f8edf
Enable setting static ports for service template
2023-07-07 16:33:36 -07:00
cb73e2b205
Remove whitespace
2023-07-07 15:56:25 -07:00
486df58bac
Use nomad-python client for setting nomad vars
2023-07-07 15:56:25 -07:00
b75f8fce7b
Clean photoprism config
2023-07-07 15:56:24 -07:00
df062000e7
Run two authelia instances now that it's stateless
2023-07-07 15:56:23 -07:00
2b91b6dc8f
Add instance count to service template
2023-07-07 15:51:19 -07:00
85db434c1f
Minor cleanup to backups module
2023-07-07 15:50:58 -07:00
0a7ad7a9dc
Enable redis for authelia
...
This also splits redis instances by service
2023-07-07 15:50:23 -07:00
b0c1aca497
Increase token time for Nomad OIDC
2023-07-07 15:47:08 -07:00
60a4051988
Enable Authelia OIDC for Nomad
2023-07-07 00:41:44 -07:00
0ceb513216
Switch Grafana to OIDC from proxy auth
2023-07-07 00:40:19 -07:00
9d5aeeec96
Enable Authelia OIDC provider
2023-07-07 00:39:44 -07:00
6dbe0f7f45
Add nomad ACLs and roles for use in oidc auth
2023-07-07 00:30:02 -07:00
eae5b201b6
Add two factor for external IPs
2023-07-06 21:25:31 -07:00
532d7f9a4c
Use Authelia for Grafana login
2023-07-06 18:00:06 -07:00
88e91e5e5d
Deploy authelia
...
Backed by lldap and mysql and deployed on whoami for now as a forward
proxy example
Would be good to add oidc for Nomad as well as make policies configurable
via Nomad variables.
2023-07-06 18:00:06 -07:00
a90b3bbdbe
Make it easier to enable bootstrap now that key isn't included
2023-07-06 17:25:13 -07:00
cdbd6a9cb3
Add ability to set priority for service templates
2023-07-06 17:25:13 -07:00
2a1a7fb6b7
Clean mysql stunnel config
2023-07-06 17:25:13 -07:00
8650ab973a
Add stunnel for ldap as part of service template
2023-07-06 17:25:13 -07:00
acc80868f9
Switch lldap storage to mysql
2023-07-05 17:30:54 -07:00
f606e0a17e
Remove blocky client groups because fallback server masks them
2023-07-05 15:45:55 -07:00
44467d1075
Add playbook to restart wesher and nomad
2023-06-20 09:45:01 -07:00
8b0495c6c8
Take mysql off wesher network
2023-06-20 09:44:21 -07:00
2df43584cf
Grafana config reloading: Use explicit path and echo
...
Was running into some issues with this not running. Using an explicit
path seems to help, so I'll try it for now. Also added some echo statements
to make it easier to discern when run.
2023-06-20 09:44:04 -07:00
2c128b25f3
Add additional blocking for wemo
2023-06-20 09:42:33 -07:00
1df5545835
Promtail: use local task dir rather than bind mount
2023-05-12 10:11:30 -07:00
d4cb91d58d
Rename metrics job to exporters
2023-05-12 10:11:11 -07:00
48322d9a78
Document what the nomad stalker is for
2023-05-12 10:10:31 -07:00
73e9977d41
Use variable secrets location for mysql
2023-05-09 15:57:09 -07:00
5dc0e4bcaf
Use pushgateway with restic scheduler batches
...
Batches can't run due to incorrectly scoped variables
2023-05-09 15:56:53 -07:00
5169aecc6d
Add pushgateway to prometheus
2023-05-09 15:56:20 -07:00
69c8322d50
Better error handling in nomad variable bootstrap
2023-05-09 13:21:00 -07:00
f11fad30a5
Use stunnel for mysql
...
Doesn't remove wesher or normal mysql service
2023-05-09 13:20:36 -07:00
a5efe0c21b
Fix variable bootstrap address
2023-05-09 13:13:28 -07:00
30766cce39
Bump up sonarr memory
2023-05-09 11:40:31 -07:00
33ec66346b
Make target to stop Nomad cluster
2023-05-09 11:39:27 -07:00
8d63c50ffb
Add Postgres database to cluster
2023-05-03 14:16:47 -07:00
cf0a415179
Revert "Upgrade cni to 1.1.2"
...
This reverts commit bbc8ba5c6b
.
2023-05-02 21:29:27 -07:00
27fd60d84d
Add missing service to Wesher
...
Promtail, Backups, service module
2023-05-02 21:14:36 -07:00
0a84fd04bc
Automatically re-provision grafana when data source addresses change
2023-05-02 21:13:59 -07:00