Commit graph

88 commits

Author SHA1 Message Date
Rouven Seifert f518bd545d
remove ese wireguard 2024-10-13 22:50:06 +02:00
Lyn Fugmann 9662b35f42
fix forgejo actions 2024-10-06 20:04:32 +02:00
Rouven Seifert 0d9bd777c8
network: init ese wireguard 2024-10-04 15:39:10 +02:00
Rouven Seifert 4e99931626
directus: remove
yeet
2024-09-26 20:11:04 +02:00
Rouven Seifert 8177e8407a
forgejo: properly configure runner 2024-09-04 12:00:59 +02:00
Benno Fünfstück c1a0b67261 add hyperilo reverse proxy 2024-09-01 21:39:45 +02:00
Jonas Gaffke 0c19d4e565
sops: fix kanboard conf 2024-05-19 11:14:27 +02:00
Jonas Gaffke fa964bf950
sops: add kanboard conf 2024-05-18 10:28:15 +02:00
Rouven Seifert 077138401e
dex: deconfigure 2024-05-08 15:37:19 +02:00
Rouven Seifert cb828a2188
decision: move to keycloak 2024-05-08 14:10:46 +02:00
Rouven Seifert 7b7e8858cf
secrets: cleanup 2024-05-08 14:08:05 +02:00
Rouven Seifert 7c87808bc1
mediawiki: update secret 2024-05-08 11:54:11 +02:00
Rouven Seifert 8ea250e387
mediawiki: enable keycloak 2024-05-08 11:47:07 +02:00
Rouven Seifert 02535cca08
grafana: configure oidc 2024-05-08 00:09:40 +02:00
Rouven Seifert 6abc1e75b9
directus: configure openid connect 2024-05-07 11:10:59 +02:00
Rouven Seifert 395ca48ac0
padlist: remove dex configuration 2024-05-06 23:51:28 +02:00
Rouven Seifert 5294cd68f8
keycloak: init 2024-05-06 11:24:21 +02:00
Jonas Gaffke 993a554396
sops: decisions env 2024-05-05 09:40:31 +02:00
Rouven Seifert 5b95918c29
tomate: configure ifsr-apb network 2024-04-16 10:58:35 +02:00
Rouven Seifert d086eed901
network: clean up secrets 2024-03-21 15:49:50 +01:00
Jonas Gaffke ba2f0fb86b
grav: try dex login 2024-03-17 15:48:54 +01:00
Rouven Seifert b454ad2437
secrets: prepare sssd for quitte 2024-03-04 21:51:30 +01:00
Lyn Fugmann 0cf95c4c34
Add hendrik's pgp and ssh keys 2024-02-29 16:24:21 +01:00
Rouven Seifert a364e28bb8
nix-serve: init at cache.ifsr.de 2024-02-25 23:10:43 +01:00
Jonas Gaffke b9a216ad59
decisions: add dex openid connect client 2024-02-05 22:01:11 +01:00
Rouven Seifert 826758e138
decisions: init secrets 2024-02-03 20:17:06 +01:00
Rouven Seifert 948570032b
strukturbot: init secrets 2024-02-03 19:56:14 +01:00
Rouven Seifert 4177a2ba0a
directus: init secrets 2024-02-02 16:59:42 +01:00
Rouven Seifert a9f6bc3ed0
print: initial config 2024-01-29 14:51:37 +01:00
Jonas Gaffke a336061b1d
sops: add dex oicd client secret for padlist tool 2024-01-01 16:26:43 +01:00
Rouven Seifert 83a668b9f0
bacula: fix keys 2023-12-26 19:15:07 +01:00
Rouven Seifert 68202e2d64
sops: rotate again and add jonasga
apparently key rotation doesn't mean actually updating the keys
2023-12-26 18:18:53 +01:00
Rouven Seifert 665c69ca20
sops: fix phil 2023-12-26 17:48:01 +01:00
Rouven Seifert 3f4c304bc9
sops: rotate some passwords 2023-12-26 16:21:39 +01:00
Rouven Seifert 0330129ec2
sops: remove old key 2023-12-26 16:10:05 +01:00
Rouven Seifert 3ee4380328
tomate: prepare secrets for sssd 2023-12-12 11:39:38 +01:00
Rouven Seifert a16337f84f
tomate: secret consistency 2023-12-12 11:35:27 +01:00
Rouven Seifert 7d4a6e08ef
tomate: init secrets 2023-12-12 11:31:48 +01:00
quitte 8a8af52ec7 zammad: init 2023-11-17 18:18:35 +01:00
Lyn Fugmann 7d7ac6c571
add courses-phil secrets 2023-09-27 14:23:22 +02:00
Rouven Seifert db6d312581
mail: don't match users by the mail attribute 2023-09-04 08:58:15 +02:00
Rouven Seifert d90e705738
hydra: init 2023-08-23 16:53:43 +02:00
Lyn Fugmann aaab6ef91c
wiki: configure oidc auth 2023-08-16 15:40:43 +02:00
Rouven Seifert 38c947fe01
remove the vm 2023-08-16 14:51:01 +02:00
Rouven Seifert 8e85ef6281
secret rotation
- removed all non-admin keys from ssh and sops
- rotated sops keys
- regenerated secrets
2023-08-14 11:31:18 +02:00
Rouven Seifert c4563e5fe2
update quitte sops key 2023-07-26 16:41:02 +02:00
Rouven Seifert 8cfcb56405
fix postfix ldap again 2023-07-22 23:09:21 +02:00
Rouven Seifert defc2f2324
remove postgresql passwords where they are unneeded 2023-07-19 17:44:49 +02:00
Rouven Seifert 3fef58e888
configure bacula 2023-07-19 15:46:49 +02:00
Lyn Fugmann e8263b93dc
Refactor ldap and enable dex
Co-authored-by: revol-xut <revol-xut@protonmail.com>
2023-07-19 14:31:47 +02:00