10 Commits

Author	SHA1	Message	Date
Kevin Veen-Birkenbach	0a588023a7	feat(bluesky): fix CORS by serving /config same-origin and pinning BAPP_CONFIG_URL ... - Add `server.config_upstream_url` default in `roles/web-app-bluesky/config/main.yml` to define upstream for /config (defaults to https://ip.bsky.app/config). - Introduce front-proxy injection `extra_locations.conf.j2` that: - proxies `/config` to the upstream, - sets SNI and correct Host header, - normalizes CORS headers for same-origin consumption. - Wire the proxy injection only for the Web domain in `roles/web-app-bluesky/tasks/main.yml` via `proxy_extra_configuration`. - Force fresh social-app checkout and patch `src/state/geolocation.tsx` to `const BAPP_CONFIG_URL = '/config'` in `roles/web-app-bluesky/tasks/02_social_app.yml`; notify `docker compose build` and `up`. - Tidy and re-group PDS env in `roles/web-app-bluesky/templates/env.j2` (no functional change). - Add vars in `roles/web-app-bluesky/vars/main.yml`: - `BLUESKY_FRONT_PROXY_CONTENT` (renders the extra locations), - `BLUESKY_CONFIG_UPSTREAM_URL` (reads `server.config_upstream_url`). Security/Scope: - Only affects the Bluesky web frontend (same-origin `/config`); PDS/API and AppView remain unchanged. Refs: - Conversation: https://chatgpt.com/share/68b8dd3a-2100-800f-959e-1495f6320aab	2025-09-04 02:29:10 +02:00
Kevin Veen-Birkenbach	d2dc2eab5f	web-app-bluesky: refactor role, add Cloudflare DNS integration, split tasks ... Changes: add AppView port; add CSP whitelist; new tasks (01_pds, 02_social_app, 03_dns); switch templates to BLUESKY_* vars; update docker-compose and env; TCP healthcheck; remove admin_password from schema. Conversation context: https://chatgpt.com/share/68b85276-e0ec-800f-90ec-480a1d528593	2025-09-03 16:37:35 +02:00
Kevin Veen-Birkenbach	7ca8b7c71d	feat(nextcloud): integrate Talk & Whiteboard; refactor to NEXTCLOUD_* vars; full-stack setup ... config(ports): add Nextcloud websocket port (4003); canonical domains (nextcloud/talk/whiteboard) refactor: unify get_app_conf usage & Jinja spacing; migrate paths/handlers to new NEXTCLOUD_* vars feat(plugins): split plugin routines; configure Whiteboard via occ (URL + JWT) fix(oidc): use NEXTCLOUD_URL for logout; correct LDAP attribute mappings; add OIDC flavor switch feat: Whiteboard container & reverse-proxy location; Talk STUN/WS ports; Redis URL for Whiteboard chore: drop obsolete TODO; minor cleanups in oauth2-proxy, matrix, peertube, pgadmin, phpldapadmin, pixelfed, phpmyadmin security(schema): Bluesky jwt_secret now base64_prefixed_32; add Nextcloud whiteboard_jwt_secret db: normalize postgres image tag templating; central DB host checks spacing fixes ops: add full-stack bootstrap (certs, proxy, volumes); internal nginx config reload handler update refs: https://chatgpt.com/share/68b5f5b7-8d64-800f-b001-1241f818dc0e	2025-09-01 21:37:02 +02:00
Kevin Veen-Birkenbach	d3cc187c3b	Made System Email Variables UPPER	2025-08-19 09:34:18 +02:00
Kevin Veen-Birkenbach	3ac9bd9f90	Optimized variable typos	2025-08-15 18:43:42 +02:00
Kevin Veen-Birkenbach	0228014d34	Replaced .infinito.service and .infinito.timer by SOFTWARE_NAME suffix, optimized LICENSE link and update OIDC Realm and ID conf	2025-08-14 14:39:18 +02:00
Kevin Veen-Birkenbach	db0e030900	Renamed general and mode constants and implemented a check to verify that constants are just defined ones over the whole repository	2025-08-13 19:11:14 +02:00
Kevin Veen-Birkenbach	2ffaadfaca	Changed bluesky to web-app-bluesky	2025-07-21 11:10:06 +02:00
Kevin Veen-Birkenbach	33d14741e2	Added j2 sniffer and solved syntax bugs	2025-07-13 21:20:23 +02:00
Kevin Veen-Birkenbach	563d5fd528	Huge role refactoring/cleanup. Other commits will propably follow. Because some bugs will exist. Still important for longrun and also for auto docs/help/slideshow generation	2025-07-08 23:43:13 +02:00