9082443753
Refactor docker compose exec usage
...
Introduce centralized variables:
- docker_compose_command_base
- docker_compose_command_exec
Replaced hardcoded 'docker compose exec' with '{{ docker_compose_command_exec }}'
across multiple roles (BigBlueButton, EspoCRM, Friendica, Listmonk, Mailu, Matrix, OpenProject).
Ensures consistent environment file loading and reduces duplicated code.
Details: https://chatgpt.com/share/68d6a276-19d0-800f-839d-d191d97f7c41
2025-09-26 16:26:17 +02:00
cbfb991e79
Hardened BBB Version
2025-09-26 15:21:01 +02:00
fa7b1400bd
Created mail account for blackhole to prevent delivery failure messages
2025-09-26 15:11:33 +02:00
1d29617f85
Added creation of docker-compose.override.yml file
2025-09-26 12:03:47 +02:00
3e6193ffce
Solved ollama network bug
2025-09-23 02:21:20 +02:00
d129f71cef
Added Ollama network
2025-09-22 19:19:44 +02:00
6cf6c74802
Inverted docker_compose_skipp_file_creation to don't use double negation
2025-09-22 13:40:28 +02:00
62493ac5a9
XWiki: increase installer execution timeout and add retries
...
The task 'XWIKI | Execute installer page' now uses:
- timeout: 300 (allow up to 5 min per request)
- retries: 20
- delay: 15
- until: condition
This prevents early failures during the first Distribution Wizard bootstrap when hundreds of extensions are still being installed.
Context: https://chatgpt.com/share/68ca0f18-2124-800f-a70d-df1811966107
2025-09-17 03:30:40 +02:00
d9c527e2e2
Changed handler order
2025-09-17 02:36:17 +02:00
b0f10aa0d0
Removed unnecessary just up
2025-09-12 13:21:29 +02:00
71ceb339fc
Fix Confluence & BookWyrm setup:
...
- Add docker compose build trigger in docker-compose tasks
- Cleanup svc-prx-openresty vars
- Enable unsafe-inline CSP flags for BookWyrm, Confluence, Jira to allow Atlassian inline scripts
- Generalize CONFLUENCE_HOME usage in vars, env and docker-compose
- Ensure confluence-init.properties written with correct home
- Add JVM_SUPPORT_RECOMMENDED_ARGS to pass atlassian.home
- Update README to reference {{ CONFLUENCE_HOME }}
See: https://chatgpt.com/share/68b7582a-aeb8-800f-a14f-e98c5b4e6c70
2025-09-02 22:49:02 +02:00
163a925096
fix(docker-compose): proper lock path + robust pull for buildable services
...
- Store pull lock under ${PATH_DOCKER_COMPOSE_PULL_LOCK_DIR}/<hash>.lock so global cleanup removes it reliably
- If any service defines `build:`, run `docker compose build --pull` before pulling
- Use `docker compose pull --ignore-buildable` when supported; otherwise tolerate pull failures for locally built images
This prevents failures when images are meant to be built locally (e.g., custom images) and ensures lock handling is consistent.
Ref: https://chatgpt.com/share/68b6b592-2250-800f-b68e-b37ae98dbe70
2025-09-02 11:15:28 +02:00
b02d88adc0
Refactored server roles for better readability
2025-09-01 18:08:35 +02:00
2fccebbd1f
Enforce uppercase README.md and TODO.md filenames
...
- Renamed all Readme.md → README.md
- Renamed all Todo.md → TODO.md
- Added integration test (tests/integration/test_filename_conventions.py) to automatically check naming convention.
Background:
Consistency in file naming (uppercase README.md and TODO.md) avoids issues with case-sensitive filesystems and ensures desktop cards (e.g. Pretix) are properly included.
Ref: https://chatgpt.com/share/68b1d135-c688-800f-9441-46a3cbfee175
2025-08-29 18:11:53 +02:00
4c7bb6d9db
Solved path bugs and optimized them
2025-08-29 14:13:59 +02:00
6ea8301364
Refactor: migrate cmp/* and srv/* roles into sys-stk/* and sys-svc/* namespaces
...
- Removed obsolete 'cmp' category, introduced 'stk' category (fa-bars-staggered icon).
- Renamed roles:
* cmp-db-docker → sys-stk-back-stateful
* cmp-docker-oauth2 → sys-stk-back-stateless
* srv-domain-provision → sys-stk-front
* cmp-db-docker-proxy → sys-stk-full-stateful
* cmp-docker-proxy → sys-stk-full-stateless
* cmp-rdbms → sys-svc-rdbms
- Updated all include_role references, vars, templates and README.md files.
- Adjusted run_once comments and variable paths accordingly.
- Updated all web-app roles to use new sys-stk/* and sys-svc/* roles.
Conversation: https://chatgpt.com/share/68b0ba66-09f8-800f-86fc-76c47009d431
2025-08-28 22:23:09 +02:00
dece6228a4
Refactor docker-compose build logic and pull policy
...
- Added conditional '--pull' flag on retry in docker-compose build handler, tied to MODE_UPDATE
- Added 'pull_policy: never' to multiple docker-compose service templates to prevent unwanted image pulls
- Fixed minor formatting issues (e.g. Nextcloud volume spacing, WordPress desktop alignment)
Reference: https://chatgpt.com/share/68b0207a-4d9c-800f-b76f-9515885e5183
2025-08-28 11:25:35 +02:00
5aaf2d28dc
Refactor path handling, service conditions and dependencies
...
- Fixed incorrect filter usage in docker-compose handler (proper use of | path_join).
- Improved LetsEncrypt template by joining paths with filenames instead of appending manually.
- Enhanced sys-svc-msmtp task with an additional condition to only run if no-reply mailu_token exists.
- Updated Keycloak meta to depend on Mailu (ensuring token generation before setup).
- Refactored Keycloak import path variables to use path_join consistently.
- Adjusted Mailu meta dependency to run after Matomo instead of Keycloak.
See: https://chatgpt.com/share/68af13e6-edc0-800f-b76a-a5f427837173
2025-08-27 16:19:57 +02:00
7a6e273ea4
In between commit, updated matrix and optimized mailu
2025-08-20 17:51:17 +02:00
a4f39ac732
Renamed webserver roles to more speakable names
2025-08-20 08:54:17 +02:00
ec07d1a20b
Added logic to start docker compose pull just once per directory
2025-08-20 07:02:27 +02:00
594d9417d1
handlers(docker): add once-per-directory docker compose pull with lockfile
...
- Introduced a new handler 'docker compose pull' that runs only once per
{{ docker_compose.directories.instance }} directory by using a lock
file under /run/ansible/compose-pull.
- Ensures idempotency by marking the task as changed only when a pull
was actually executed.
- Restricted execution with 'when: MODE_UPDATE | bool'.
- Improves update workflow by avoiding redundant docker pulls during
the same Ansible run.
Reference: ChatGPT discussion
https://chatgpt.com/share/68a55151-959c-800f-8b70-160ffe43e776
2025-08-20 06:42:49 +02:00
55cf3d0d8e
Solved unit performance tests
2025-08-20 04:35:46 +02:00
f0b323afee
Added auto snippet for webserver injection
2025-08-16 01:31:49 +02:00
022800425d
THE HUGE REFACTORING CALENDER WEEK 33; Optimized Matrix and during this updated variables, and implemented better reset and cleanup mode handling, also solved some initial setup bugs
2025-08-15 15:15:48 +02:00
0228014d34
Replaced .infinito.service and .infinito.timer by SOFTWARE_NAME suffix, optimized LICENSE link and update OIDC Realm and ID conf
2025-08-14 14:39:18 +02:00
db0e030900
Renamed general and mode constants and implemented a check to verify that constants are just defined ones over the whole repository
2025-08-13 19:11:14 +02:00
03290eafe1
feat(proxy,bigbluebutton): use parameterized HTML location template & add build retry
...
- proxy(html.conf.j2):
* Make proxy_pass more robust (strip '=', '^~' prefixes; ignore @/~ match locations)
* Switch WS header to $connection_upgrade
* Unify timeouts (proxy_connect_timeout 5s)
* Lua optional: include only when proxy_lua_enabled=true; unset Accept-Encoding only then
* Buffering via flag: proxy_buffering/proxy_request_buffering 'on' with Lua, otherwise 'off'
- proxy(media.conf.j2): minor formatting/spacing fix
- inj-css(head_sub.j2): consistent spacing for global_css_version
- bigbluebutton(tasks/main.yml):
* Render HTML location block once before include_role (location='^~ /html5client', OAuth2/Lua disabled)
* Pass rendered snippet via proxy_extra_configuration to the vHost
* Cleanup afterwards: proxy_extra_configuration = undef()
- docker-compose(handlers):
* Build with retry: if 'docker compose build' fails -> retry with '--no-cache --pull'
* Enable BuildKit (DOCKER_BUILDKIT=1, COMPOSE_DOCKER_CLI_BUILD=1)
- vars: trailing newline / minor formatting
Motivation:
- BBB HTML5 client (^~ /html5client) needs a separate location without Lua/buffering.
- More resilient CI/CD builds via automatic no-cache retry.
- Cleaner headers/proxy defaults and fewer side effects.
Files:
- roles/docker-compose/handlers/main.yml
- roles/srv-proxy-7-4-core/templates/location/html.conf.j2
- roles/srv-proxy-7-4-core/templates/location/media.conf.j2
- roles/srv-web-7-7-inj-css/templates/head_sub.j2
- roles/web-app-bigbluebutton/tasks/main.yml
- roles/web-app-bigbluebutton/vars/main.yml
2025-08-13 06:01:50 +02:00
53770f5308
Optimized flush order to solve yourls oauth2 proxy bug
2025-08-13 01:03:31 +02:00
f31565e4c5
Optimized URLS
2025-08-13 00:33:47 +02:00
1a42e8bd14
Replaced depenencies by includes for performance reasons
2025-08-12 03:08:33 +02:00
1595a7c4a6
Optimized tests für run once
2025-08-12 02:38:37 +02:00
d5e5f57f92
Optimized openproject for new repository structure
2025-08-11 23:03:24 +02:00
3431796283
Wrapped docker compose file routines tasks in block for docker compose
2025-08-11 10:20:06 +02:00
a9d77de2a4
Optimized docker compose ensure logic
2025-08-11 01:26:31 +02:00
22c8c395f0
Refactored handlers loading
2025-08-08 19:01:12 +02:00
aae69ea15b
Ensure that keycloak is up
2025-08-08 17:25:31 +02:00
44e0fea0b2
Renamed cymais to infinito and did some other optimations and logout implementations
2025-07-29 16:35:42 +02:00
f62355e490
Replaced nginx native with openresty for logout injection. Right now still buggy on nextcloud and espocrm
2025-07-24 03:19:16 +02:00
0472fecd64
Solved ooauth2 bugs and restructured postgres roile to implement extensions used by discourse
2025-07-23 13:24:55 +02:00
c8be88e3b1
Activated redis for oauth2 for large cookies
2025-07-22 22:00:11 +02:00
4501c31756
Solved docker compose handler bugs
2025-07-22 08:33:36 +02:00
b1bf7aaba5
Fixed BBB stuff
2025-07-21 15:10:05 +02:00
5343536d27
Optimized snipe-it und bbb
2025-07-21 01:40:42 +02:00
ed866bf177
Finished bbb implementation
2025-07-20 20:07:43 +02:00
e1d36045da
Solved open run_once issues
2025-07-20 14:23:08 +02:00
6a1a83432f
Different optimations and mig integration. test will fail due to strickter validation checks. need to be cleaned up tomorrow
2025-07-18 20:08:20 +02:00
d1982af63d
Optimized mastodon and network integration. added options for mig build to make
2025-07-17 18:50:28 +02:00
409e659143
Overall optimations for application id naming
2025-07-17 17:41:52 +02:00
562603a8cd
Restructured libraries
2025-07-17 16:38:20 +02:00
