kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-04-28 18:30:24 +02:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: kevinveenbirkenbach:22ce80cd23d44c24d7bed2352a36a073ff7eca07
Branches Tags
kevinveenbirkenbach:master
...
compare: kevinveenbirkenbach:2b3cdd58d6c957d1839690bea54618d2900a2cc8
Branches Tags
kevinveenbirkenbach:master

6 Commits
22ce80cd23 ... 2b3cdd58d6

Author SHA1 Message Date
Kevin Veen-Birkenbach
2b3cdd58d6 chenged ldap_uid to preferred_username 2025-02-26 18:11:44 +01:00
Kevin Veen-Birkenbach
a9de544a8d Solved https bug 2025-02-26 17:54:17 +01:00
Kevin Veen-Birkenbach
7893ee068c Specified user dn 2025-02-26 17:52:28 +01:00
Kevin Veen-Birkenbach
0471eb5d4a Solved s01ldap_base_users bug 2025-02-26 17:47:16 +01:00
Kevin Veen-Birkenbach
9720fc1813 Activated oidc_login by default and optimized documentation for applications 2025-02-26 15:54:46 +01:00
Kevin Veen-Birkenbach
54dab4ba6a Optimized CSS for Taiga 2025-02-26 15:38:23 +01:00
5 changed files with 132 additions and 111 deletions
Show Stats Expand all files Collapse all files

46
group_vars/all/07_applications.yml
View File

@ -66,7 +66,7 @@ defaults_applications:
oidc: oidc:
enabled: true # Activate OIDC enabled: true # Activate OIDC
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
## Friendica ## Friendica
friendica: friendica:
@ -74,7 +74,7 @@ defaults_applications:
oidc: oidc:
enabled: true # Activate OIDC. Plugin is not working yet enabled: true # Activate OIDC. Plugin is not working yet
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
## Funkwhale ## Funkwhale
funkwhale: funkwhale:
@ -82,19 +82,19 @@ defaults_applications:
ldap: ldap:
enabled: True # Enables LDAP by default @todo check implementation enabled: True # Enables LDAP by default @todo check implementation
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
## Gitea ## Gitea
gitea: gitea:
version: "latest" version: "latest"
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
## Gitlab ## Gitlab
gitlab: gitlab:
version: "latest" version: "latest"
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
## Joomla ## Joomla
joomla: joomla:
@ -109,7 +109,7 @@ defaults_applications:
ldap: ldap:
enabled: True # Enables LDAP by default enabled: True # Enables LDAP by default
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
# database_password: # Needs to be defined in inventory file # database_password: # Needs to be defined in inventory file
# administrator_password: # Needs to be defined in inventory file # administrator_password: # Needs to be defined in inventory file
@ -152,7 +152,7 @@ defaults_applications:
version: "latest" # Docker Image version version: "latest" # Docker Image version
setup: false # Set true in inventory file to execute the setup and initializing procedures setup: false # Set true in inventory file to execute the setup and initializing procedures
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
mailu: mailu:
version: "2024.06" # Docker Image Version version: "2024.06" # Docker Image Version
@ -184,7 +184,7 @@ defaults_applications:
css: css:
enabled: false # The css isn't optimized yet for Matomo enabled: false # The css isn't optimized yet for Matomo
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
## Mastodon ## Mastodon
mastodon: mastodon:
@ -192,9 +192,9 @@ defaults_applications:
single_user_mode: false # Set true for initial setup single_user_mode: false # Set true for initial setup
setup: false # Set true in inventory file to execute the setup and initializing procedures setup: false # Set true in inventory file to execute the setup and initializing procedures
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
oidc: oidc:
enabled: true # Activate OIDC for Mastodon enabled: True # Activate OIDC for Mastodon
credentials: credentials:
# Check out the README.md of the docker-mastodon role to get detailled instructions about how to setup the credentials # Check out the README.md of the docker-mastodon role to get detailled instructions about how to setup the credentials
# database_password: # database_password:
@ -222,7 +222,7 @@ defaults_applications:
version: "latest" version: "latest"
setup: false # Set true in inventory file to execute the setup and initializing procedures setup: false # Set true in inventory file to execute the setup and initializing procedures
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
oidc: oidc:
enabled: False # Deactivated OIDC due to this issue https://github.com/matrix-org/synapse/issues/10492 enabled: False # Deactivated OIDC due to this issue https://github.com/matrix-org/synapse/issues/10492
@ -235,13 +235,13 @@ defaults_applications:
email: "{{users.administrator.email}}" email: "{{users.administrator.email}}"
version: "latest" version: "latest"
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
## MyBB ## MyBB
mybb: mybb:
version: "latest" version: "latest"
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
## Nextcloud ## Nextcloud
nextcloud: nextcloud:
@ -254,10 +254,10 @@ defaults_applications:
# Available options: oidc_login, sociallogin # Available options: oidc_login, sociallogin
# @see https://apps.nextcloud.com/apps/oidc_login # @see https://apps.nextcloud.com/apps/oidc_login
# @see https://apps.nextcloud.com/apps/sociallogin # @see https://apps.nextcloud.com/apps/sociallogin
flavor: "sociallogin" # Keeping on sociallogin because the other option is not implemented yet flavor: "oidc_login" # Keeping on sociallogin because the other option is not implemented yet
force_import: False # Forces the import of the LDIF files force_import: False # Forces the import of the LDIF files
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
credentials: credentials:
# database_password: Null # Needs to be set in inventory file # database_password: Null # Needs to be set in inventory file
users: users:
@ -286,7 +286,7 @@ defaults_applications:
ldap: ldap:
enabled: True # Enables LDAP by default enabled: True # Enables LDAP by default
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
css: css:
enabled: false # Temporary deactivated due to bugs enabled: false # Temporary deactivated due to bugs
# @todo Solve and reactivate # @todo Solve and reactivate
@ -295,7 +295,7 @@ defaults_applications:
peertube: peertube:
version: "bookworm" version: "bookworm"
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
## PHPMyAdmin ## PHPMyAdmin
phpmyadmin: phpmyadmin:
@ -307,7 +307,7 @@ defaults_applications:
application: "application" application: "application"
# cookie_secret: None # Set via openssl rand -hex 16 # cookie_secret: None # Set via openssl rand -hex 16
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
css: css:
enabled: False # The css needs more optimation for PHPMyAdmin enabled: False # The css needs more optimation for PHPMyAdmin
@ -316,7 +316,7 @@ defaults_applications:
titel: "Pictures on {{primary_domain}}" titel: "Pictures on {{primary_domain}}"
version: "latest" version: "latest"
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
## Postgres ## Postgres
# Please set an version in your inventory file - Rolling release for postgres isn't recommended # Please set an version in your inventory file - Rolling release for postgres isn't recommended
@ -331,13 +331,13 @@ defaults_applications:
snipe_it: snipe_it:
version: "latest" version: "latest"
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
## Taiga ## Taiga
taiga: taiga:
version: "latest" version: "latest"
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
## YOURLS ## YOURLS
yourls: yourls:
@ -352,7 +352,7 @@ defaults_applications:
location: "/admin/" # Protects the admin area location: "/admin/" # Protects the admin area
# cookie_secret: None # Set via openssl rand -hex 16 # cookie_secret: None # Set via openssl rand -hex 16
database: database:
central_storage: True central_storage: True # Activate Central Database Storage
wordpress: wordpress:
# Deactivate Global theming for wordpress role # Deactivate Global theming for wordpress role
@ -364,4 +364,4 @@ defaults_applications:
css: css:
enabled: false enabled: false
database: database:
central_storage: True central_storage: True # Activate Central Database Storage

11
roles/docker-nextcloud/README.md
View File

@ -94,6 +94,11 @@ docker-compose exec -it -u www-data application /var/www/html/occ
``` ```
### User Administration ### User Administration
#### List Users
```bash
docker compose exec -it -u www-data application php occ user:list
```
#### Create user via CLI #### Create user via CLI
```bash ```bash
docker compose exec -it -u www-data application php occ user:add {{username}} docker compose exec -it -u www-data application php occ user:add {{username}}
@ -150,6 +155,12 @@ docker compose exec -u www-data application /var/www/html/occ config:app:get soc
More information: https://docs.nextcloud.com/server/latest/admin_manual/configuration_user/user_auth_ldap.html More information: https://docs.nextcloud.com/server/latest/admin_manual/configuration_user/user_auth_ldap.html
## Get all relevant entries except password
```sql
SELECT * FROM `oc_appconfig` WHERE appid LIKE "%ldap%" and configkey != "s01ldap_agent_password";
```
## Federation ## Federation
If users are just created via Keycloak and not via LDAP, they have a different username. Due to this reaso concider to use LDAP to guaranty that the username is valid. If users are just created via Keycloak and not via LDAP, they have a different username. Due to this reaso concider to use LDAP to guaranty that the username is valid.

4
roles/docker-nextcloud/templates/oidc.config.php.j2
View File

@ -7,7 +7,7 @@ return array (
'lost_password_link' => 'disabled', 'lost_password_link' => 'disabled',
// URL of provider. All other URLs are auto-discovered from .well-known // URL of provider. All other URLs are auto-discovered from .well-known
'oidc_login_provider_url' => 'https://{{oidc.client.issuer_url}}', 'oidc_login_provider_url' => '{{oidc.client.issuer_url}}',
// Client ID and secret registered with the provider // Client ID and secret registered with the provider
'oidc_login_client_id' => '{{oidc.client.id}}', 'oidc_login_client_id' => '{{oidc.client.id}}',
@ -98,7 +98,7 @@ return array (
'mail' => 'email', 'mail' => 'email',
# 'quota' => 'nextcloudQuota', # Not implemented yet # 'quota' => 'nextcloudQuota', # Not implemented yet
# 'home' => 'homeDirectory', # Not implemented yet # 'home' => 'homeDirectory', # Not implemented yet
'ldap_uid' => '{{ldap.attributes.user_id}}', 'ldap_uid' => 'preferred_username',
# 'groups' => 'ownCloudGroups', # Not implemented yet # 'groups' => 'ownCloudGroups', # Not implemented yet
# 'login_filter' => 'realm_access_roles', # 'login_filter' => 'realm_access_roles',
// 'photoURL' => 'picture', // 'photoURL' => 'picture',

2
roles/docker-nextcloud/vars/ldap.yml
View File

@ -42,7 +42,7 @@ nextcloud_ldap_configuration:
- -
appid: "user_ldap" appid: "user_ldap"
configkey: "s01ldap_base_users" configkey: "s01ldap_base_users"
configvalue: "{{ldap.dn.root}}}" configvalue: "{{ldap.dn.users}}"
- -
appid: "user_ldap" appid: "user_ldap"

16
roles/nginx-modifier-css/templates/global.css.j2
View File

@ -1069,7 +1069,6 @@ section.main.kanban{
div.master, div.kanban-header, div.kanban-table-inner, section.kanban button,a.dropdown-project-list-projects{ div.master, div.kanban-header, div.kanban-table-inner, section.kanban button,a.dropdown-project-list-projects{
background-color: var(--color-92); background-color: var(--color-92);
/* New Gradient based on original background (92 -5, 92, 92 +1, 92 +5) */
background: linear-gradient({{ range(0, 361) | random }}deg, var(--color-87), var(--color-92), var(--color-93), var(--color-97)); background: linear-gradient({{ range(0, 361) | random }}deg, var(--color-87), var(--color-92), var(--color-93), var(--color-97));
color: var(--color-40); color: var(--color-40);
} }
@ -1080,7 +1079,6 @@ section.kanban h1, section.kanban h2{
.home-project { .home-project {
background: var(--color-88); background: var(--color-88);
/* New Gradient based on original background (88 -5, 88, 88 +1, 88 +5) */
background: linear-gradient({{ range(0, 361) | random }}deg, var(--color-83), var(--color-88), var(--color-89), var(--color-93)); background: linear-gradient({{ range(0, 361) | random }}deg, var(--color-83), var(--color-88), var(--color-89), var(--color-93));
border-color: var(--color-60); border-color: var(--color-60);
color: var(--color-12); color: var(--color-12);
@ -1088,7 +1086,6 @@ section.kanban h1, section.kanban h2{
.home-wrapper .title-bar { .home-wrapper .title-bar {
background: var(--color-75); background: var(--color-75);
/* New Gradient based on original background (75 -5, 75, 75 +1, 75 +5) */
background: linear-gradient({{ range(0, 361) | random }}deg, var(--color-70), var(--color-75), var(--color-76), var(--color-80)); background: linear-gradient({{ range(0, 361) | random }}deg, var(--color-70), var(--color-75), var(--color-76), var(--color-80));
} }
@ -1101,6 +1098,19 @@ section.kanban h1, section.kanban h2{
color: var(--color-10); color: var(--color-10);
} }
input.ng-empty::placeholder,.ng-empty::placeholder {
color: rgba(var(--color-rgb-03),0.6); /* Beispiel: roter Platzhaltertext */
}
.lightbox {
background: rgba(var(--color-rgb-97), .93);
color: var(--color-03);
}
.kanban-filter tg-filter {
border-color: var(--color-70);
}
/* Portfolio */ /* Portfolio */
.card-img-top i { .card-img-top i {
filter: drop-shadow(4px 4px 4px rgba(var(--color-rgb-23), 0.6)); filter: drop-shadow(4px 4px 4px rgba(var(--color-rgb-23), 0.6));