il/ilnmors-homelab
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
118 Commits 1 Branch 73 Tags
main
Commit Graph

59 Commits

Author SHA1 Message Date
il a6bba986a5 fix(crowdsec): update whitelist.yaml to prevent false positive 
false positive:
- outline session problem (LePresidente/http-generic-401-bf)
 2026-05-17 00:00:46 +09:00
il 24eff8f3eb chore(outline): fix HSTS annotation typo 2026-05-16 21:16:28 +09:00
il 9be4276676 feat(memos): release memos 
deployment notes:
- compare to Affine, maybe outline + memos can be substituted for affine
 2026-05-16 21:04:53 +09:00
il 1256122081 feat(outline): release outline 
deployment notes:
- compare to Affine (Affine is heavy and their whtieboard and canvas is not used enough)
- don't restart this when it initiates, redis lock causes failure
 2026-05-16 20:56:43 +09:00
il a09712c142 refactor(script): update edit_secret.sh to optimize log print logic 2026-05-15 10:12:42 +09:00
il a7e2320b21 chore(script): archive a extract_secret.sh script 
archived stack: extract_secret.sh
 2026-05-15 09:19:59 +09:00
il 26d696f813 refactor(all): update hardcoded internal domain to ansible variable 2026-05-12 08:08:04 +09:00
il 1096981ef2 feat(paperless): change paperless OCR engine model from tesseract_fast to tesseract_best 2026-05-12 08:00:37 +09:00
il e1936b494d fix(crowdsec): update whitelist.yaml to prevent false positive 
false positive:
- nextcloud chunk problem (crowdsecurity/http-crawl-non_statics)
- change expression 'chunks.mjs' to 'chunk.mjs'
 2026-05-11 19:40:50 +09:00
il a39122eb4b fix(crowdsec): update whitelist.yaml to prevent false positive 
false positive:
- nextcloud chunk problem (crowdsecurity/http-crawl-non_statics)
 2026-05-11 19:34:22 +09:00
il 530407c162 refactor(all): update hardcoded timezone 'Asia/Seoul' to ansible variable 'timezone' 2026-05-10 18:44:28 +09:00
il 4527e39d0f chore(app): archive removed stacks from app 
archived stacks:
- actual-budget
- ezbookkeeping
- opencloud
- trilium
- vikunja
- wikijs
 2026-05-10 00:07:51 +09:00
il 02fa912cb1 feat(trilium): release trilium 
deployment notes:
- oidc error (users cannot access at once, it needs login twice when using oidc
 2026-05-09 22:38:57 +09:00
il aceef4bdaa refactor(authelia): update authelia.yaml.j2 to fix redirect_uris from hardcoded uris to ansible variables 2026-05-09 21:44:11 +09:00
il 81244d55a7 feat(wiki.js): release wiki.js 
deployment notes:
- use this as personal/family wiki system
- compare to affine / memos and triliumNext
 2026-05-09 17:50:05 +09:00
il 1cfd024285 refactor(x509-exporter): update notification to restart x509-exporter when its config.yaml is changed 2026-05-09 17:42:35 +09:00
il 934dd314a8 feat(x509-exporter): update x509-exporter from 3.21.0 to 4.1.0 
update notes:
- '--listen-address' and '--watch-dir' cli flags are deprecated
- add '--config' cli flag and config.yaml
 2026-05-09 12:44:05 +09:00
il a05951f883 fix(crowdsec): optimize whitelist expressions 
update notes:
- add http_status and http_verb for each expressions (actual budget, immich, opencloud)
- fix crowdsec and issues documents
 2026-05-07 10:32:11 +09:00
il b404a9e459 fix(crowdsec): update whitelist.yaml to prevent false positive 
false positive:
- nextcloud thumbnail/preview 404 problem (crowdsecurity/http-probing)
 2026-05-07 10:27:34 +09:00
il 3b4b56f53f fix(nftables): update fw nftables to allow vpn connection regardless of crowdsec ban 2026-05-07 09:22:49 +09:00
il f697715065 feat(sure): release sure (we-promise/sure) 
deployment notes:
- let's try three of budget apps, actual budget, ezbookkeeping, and sure
 2026-05-06 18:52:31 +09:00
il be7f215380 feat(ezbookkeeping): release ezbookkeeping 
deployment notes:
- use ezbookkeeping for budget
- compare to actual budget
- it has no RBAC and sharing budget, try to sure (we-promise/sure)
 2026-05-06 15:56:19 +09:00
il 2bb1f015e0 fix(kopia): update the bound home path from %h to ansible variable 
update note:
- hotfix
- backups haven't run since commit '9f236b6fa5'
- the root service unit's %h always indicates root's home path
- backup service is verified
 2026-05-06 14:06:22 +09:00
il 0f546e13b3 fix(btrfs): update btrfs scrub path 
update notes:
- from '{{ node['home_path'] }}/data' to '{{ storage['btrfs']['mount_point'] }}'
 2026-05-06 10:33:57 +09:00
il ba8b312bf2 feat(btrfs): update btrfs scrub service and timer on app vm 2026-05-06 08:15:53 +09:00
il 6fcedd9162 feat(collabora): release collabora 
deployment note:
- link to nextcloud
- document opening is verified (including korean fonts)
 2026-05-05 21:20:31 +09:00
il 6ca4f61d50 docs(nextcloud): update security warning decisions and background job annotation 
update notes:
- trusted_proxies warning
- HSTS option warning
- background job mode annotation
 2026-05-05 20:09:00 +09:00
il 880857a70a fix(crowdsec): update parser 'crowdsecurity/nextcloud-whitelist' 
update note:
- deprecate custom whitelist expression
- apply 'crowdsecurity/nextcloud-whitelist' parser
 2026-05-03 07:19:59 +09:00
il 5dd38b7e49 fix(crowdsec): update whitelist.yaml to prevent false positive 
false positive:
- chunk problems (crowdsecurity/http-crawl-non_statics)
- directory upload 404 problem (crowdsecurity/http-probing)
 2026-05-02 20:38:48 +09:00
il 278dd3cebe feat(nextcloud): release nextcloud 
deployment note:
- use nextcloud for groupware
- consider replacing vikunja and opencloud
 2026-05-02 19:22:05 +09:00
il 17326b1b15 feat(step-ca): update step-ca version from 0.29.0 to 0.30.2 
update note:
- step-ca container doesn't support $PWDPATH anymore
- add --password-file argument to exec
 2026-04-30 09:56:22 +09:00
il 9f236b6fa5 refactor(kopia): fix the homepath from hardcoded path to %h the systemd specifier 2026-04-14 07:44:39 +09:00
il b4a0874deb refactor(authelia): fix publish port from hardcoded number to variable 2026-04-14 07:43:12 +09:00
il c51216ff9b refactor(gitea): fix publish port from hardcoded number to varible 2026-04-14 07:42:32 +09:00
il 7debdfcb93 fix(alloy): fix log level parser 
- remove parser for JSON and logfmt, and add regex expression to extract the level of log
 2026-04-13 10:42:10 +09:00
il da016343c0 feat(alloy): add json parser to categorize log level 2026-04-12 14:09:44 +09:00
il 41d509a49d feat(immich): update immich version from 2.6.3 to 2.7.4 
- IMMICH_HELMET_FILE environment can set CSP from v2.7.0
 2026-04-12 10:45:59 +09:00
il 664cf2956d 1.9.0 Release affine 2026-04-06 23:33:44 +09:00
il 8c3fe409ae 1.8.2 Update manticore 2026-04-06 20:35:34 +09:00
il 075b796608 config, docs: update whitelists.yaml.j2 and crowdsec.md to add whitelist expression to fix false positive of opencloud chunk problem 2026-04-04 09:59:58 +09:00
il 0b7d1c4d78 1.8.0 Release opencloud 2026-04-04 09:45:48 +09:00
il b52a6f6f0d config: update postgresql.conf.j2 to fix port from hardcoded number to ansible variable 2026-04-01 21:54:55 +09:00
il 84d961c7e3 inventory, roles, config, docs: update all files to refactor the ansible variables structure 2026-04-01 21:30:56 +09:00
il d1e0eb30c0 config, docs: update secrets.yaml, vikunja.container.j2, vikunja.md to remove oidc fallback options and local-oidc dual login configuration 2026-03-31 20:31:51 +09:00
il 0f38df0100 config: update fw/nftables.conf.j2 to add the rule that allow connection from console to printer 2026-03-29 13:01:59 +09:00
il 9137791aac 1.7.0: Release vikunja 2026-03-28 10:44:18 +09:00
il 25e33caec9 roles, config, docs: update set_paperless.yaml, paperless.container.j2, paperless-ngx.md to add redis_paperless container restart logic and to optimize paperless-ngx configuration 2026-03-25 23:47:50 +09:00
il 5f063d82d5 1.6.0 Release paperless-ngx 2026-03-24 21:55:04 +09:00
il e8f523c2af config, docs: update whitelists.yaml.j2 and crowdsec.md to add whitelist expression to fix false positive of immich thumbnails 404 error 2026-03-21 21:35:41 +09:00
il 726c0c3523 config: update whitelists.yaml.j2 to add whitelist expression to fix false positive of actual budget 2026-03-21 19:32:25 +09:00