This patch reduces the permissions on the install directory to just the root user and also fixes the ansible-lint issue for specifying the `mode`.
For all container mounted volumes, the ansible-lint rule is disabled, as codimd takes care of the permissions etc.
This patch renames all roles with a `-` to `_`, to comply with the ansible-lint rule 106. As collection roles are now also limited to these symbols and this will make it easier to move them later.
Currently there is an ugly error message when traefik tries to read the
dynamic_conf directory while it doesn't exists, because no dynamic
config is definied. This patch makes the config, given that it's not
defined truely optional and gets rid of the error message.
Adds a simplified version of the role, without generating configuration. You still need to adjust the `rights.toml` and add a bot under `data/bots/BOTNAME/bot.toml`.
With some of the recently introduced changes especially around the
defaults and ipv6 addresses, this patch fixes all remaining issues and
makes sure the docker and firewall configuration fits the expectations.
Original commit: 7819c8fcc8
This patch adds the possibility to automatically create a www. alias for a website and also sets the alt-svc header with an information about a possible hidden service location.
This patch removes installing an SELinux context for the install directory, which only holds the docker-compose.yml and explicitly setting the seuser / setype.
This is now consistent with all other docker-compose.yml deployments.
This patch adjusts the role to allow for deployments of the docker, docker+machine and shell executors.
The default is now the docker executor instead of the docker+machine executor. Also all defaults have been adjusted for this use case.
This patch removes the priority on the default HTTP->HTTPS redirect rule defined on the traefik container, as all traffic should always be redirected to HTTPS.
So, to fix the teamspeak redirect, the endpoint for the redirect was also correctly set.
