homelab-infra

me/homelab-infra

Fork 0

6c69fb0ace fixed sops decrypt path main v.karaychentsev 2026-03-15 16:17:39 +03:00
0b0ea9b288 add script to reload caddy v.karaychentsev 2026-02-24 18:43:23 +03:00
687fb17038 enable admin interface to reload caddy v.karaychentsev 2026-02-24 18:24:22 +03:00
f16acb6aea fixes v.karaychentsev 2026-02-24 18:20:26 +03:00
ac3712b722 fixes Uladzimir K 2026-02-24 18:18:06 +03:00
e4f623ffa7 caddy: update config. Move sites to the (apps) section. Use existing certificates. v.karaychentsev 2026-02-24 18:13:19 +03:00
d00f4f65c4 fix typo v.karaychentsev 2026-02-24 16:35:18 +03:00
3d1f6375e3 fix typo v.karaychentsev 2026-02-24 16:34:45 +03:00
211c19ff41 homepage: add keenetic icon v.karaychentsev 2026-02-24 16:33:39 +03:00
59091880e4 homepage: fixed hydra route icon Uladzimir K 2026-02-24 16:32:47 +03:00
f5205fc5d1 add hydra-route-neo.png v.karaychentsev 2026-02-24 16:15:39 +03:00
7106df52f1 use lego to renew certificates on vps refactor caddy config v.karaychentsev 2026-02-23 20:35:57 +03:00
c308c5a8d2 homepage: add network group, add hydraroute neo link Uladzimir K 2026-02-24 16:15:05 +03:00
c8902ca953 immich: remove BOM from .sh files, renamed yml to yaml v.karaychentsev 2026-02-20 20:10:20 +03:00
ad5fad1bd3 immich: configure backup with backrest v.karaychentsev 2026-02-20 19:54:00 +03:00
8e2a70d886 backrest: bypass file permissions while making backups v.karaychentsev 2026-02-20 19:35:20 +03:00
2cb4863e38 gitea: try to automate backup with backrest pre/post hooks and pgdump v.karaychentsev 2026-02-20 19:24:34 +03:00
978d745449 homepage: update PGID because changed cloned git repo ownership Uladzimir K 2026-02-20 17:08:07 +03:00
7cbbae6c87 Backrest: add homepage link. Use host.docker.internal in homepage to connect to host services v.karaychentsev 2026-02-20 16:53:47 +03:00
2bf6cba869 Backrest: install Backrest as a systemd service to simplify pre/post-backup hooks (e.g., docker compose stop/start). Do not want to overcomplicate setup and run backrest (single binary) in a container with SSHing to host and/or docker.sock access v.karaychentsev 2026-02-20 11:34:29 +03:00
7d7080b336 use host address for syncthing Uladzimir K 2026-02-19 18:13:17 +03:00
891fd07a41 change keenetic icon v.karaychentsev 2026-02-19 12:49:04 +03:00
6c30c8aee7 add keenetic url v.karaychentsev 2026-02-19 12:48:28 +03:00
c4c725d842 beszel container fixes Uladzimir K 2026-02-18 17:57:12 +03:00
d29e545340 remove catmedved copypaste, stick to one endpoint only v.karaychentsev 2026-02-17 19:19:29 +03:00
97fe488ca3 setup microbin to be a kladovka service Uladzimir K 2026-02-17 19:18:27 +03:00
2376205279 microbin: add caddy_internal network v.karaychentsev 2026-02-17 18:54:15 +03:00
1c936aeb31 microbin for copy-paste service v.karaychentsev 2026-02-17 17:52:02 +03:00
e7e9f8a29b reorganize vps domains v.karaychentsev 2026-02-17 12:27:34 +03:00
e4e3796f89 reconfigure caddy to autoparse wireguard incoming requests Uladzimir K 2026-02-17 11:12:51 +03:00
7bf54d7fea stirling: change port for public access v.karaychentsev 2026-02-15 18:03:31 +03:00
338d363149 pdf-tools: allow access from internet v.karaychentsev 2026-02-15 18:02:41 +03:00
8839078ec3 stirling-pdf: fix homepage icon v.karaychentsev 2026-02-15 17:57:28 +03:00
fcbcefd85d stirling-pdf: fix homepage icon v.karaychentsev 2026-02-15 17:56:52 +03:00
cd78573813 stirling pdf - add link on homepage v.karaychentsev 2026-02-15 17:54:40 +03:00
1f936a412d stirling pdf - enable login v.karaychentsev 2026-02-15 17:54:25 +03:00
82a27b09ca add Stirling-PDF tools v.karaychentsev 2026-02-15 17:17:36 +03:00
68df7ab696 immich: try add dns to reach pc for ML tasks v.karaychentsev 2026-02-15 00:32:24 +03:00
c99cdf11dc try fix issue with broken redis v.karaychentsev 2026-02-15 00:26:47 +03:00
3328ceecf7 immich: fix network for redis image after update v.karaychentsev 2026-02-14 19:35:23 +03:00
f543c35d29 immich - update to latest version v2.5.6 v.karaychentsev 2026-02-14 13:02:29 +03:00
428f694eaa add initial setup scripts used for by-02 host (vpnwg.ulakar.com) v.karaychentsev 2026-02-13 18:24:00 +03:00
cc467dcdf4 add beszel config v.karaychentsev 2026-02-13 18:21:08 +03:00
4dce2b7037 add wgeasy setup config v.karaychentsev 2026-02-13 18:16:01 +03:00
4559164bff vpn host - add caddy v.karaychentsev 2026-02-13 18:10:05 +03:00
54bbce83a1 add postgres config. used for testing purposes for now v.karaychentsev 2026-02-13 18:07:45 +03:00
a0c18e0c4b update user for mealie v.karaychentsev 2026-02-13 17:56:53 +03:00
1834f2449a Add mealie service v.karaychentsev 2026-02-13 17:53:19 +03:00
2cf4e6002c update filebrowser config v.karaychentsev 2026-02-13 15:38:37 +03:00
8ab507ea5c add mealie (recepies) to caddy v.karaychentsev 2026-02-13 15:38:29 +03:00
b6eff26522 fix filebrowser db path v.karaychentsev 2026-02-13 15:20:08 +03:00
4072c90c6e add config folder for filebrowser v.karaychentsev 2026-02-13 15:14:23 +03:00
1cdd635a35 filebrowser: update endpoint v.karaychentsev 2026-02-13 15:07:30 +03:00
0055c7976c add filebrowser v.karaychentsev 2026-02-13 14:58:13 +03:00
3f8f7fd325 filebrowser: update endpoint v.karaychentsev 2026-02-13 14:56:03 +03:00
ace8d2351f homepage: fixed gitea hostname to docker container name v.karaychentsev 2026-02-13 14:47:32 +03:00
bcf2213e45 homepage: remove disabled services links: librechat and authentik v.karaychentsev 2026-02-13 14:45:38 +03:00
400f03970f beszel: mount secrets for agent v.karaychentsev 2026-02-13 14:39:31 +03:00
d2bc75def7 beszel: fix keyfile paths v.karaychentsev 2026-02-13 14:35:14 +03:00
103286ed27 Add beszel compose and secrets for agent v.karaychentsev 2026-02-13 14:31:16 +03:00
9394795a75 add vaultwarden v.karaychentsev 2026-02-13 14:22:14 +03:00
d7e96440d9 pihole - add compose and secrets files v.karaychentsev 2026-02-13 14:16:31 +03:00
5e49b168c1 add glances service v.karaychentsev 2026-02-13 14:06:34 +03:00
17b7029203 gameyfin: fix volumes paths to use /srv/rundata/gameyfin/ v.karaychentsev 2026-02-13 13:56:22 +03:00
99c224c2e2 gameyfin: re-encrypt broken (with bom) sops file v.karaychentsev 2026-02-13 13:52:51 +03:00
430869f610 add gameyfin service v.karaychentsev 2026-02-13 13:50:13 +03:00
952eb75f1f databasus - add gitea_db_net v.karaychentsev 2026-02-13 13:43:31 +03:00
ca709b9bf1 databasus - add backup service v.karaychentsev 2026-02-13 13:43:00 +03:00
fc14d06616 homepage: add fastmail service link v.karaychentsev 2026-02-13 13:36:37 +03:00
087d789494 gitea: add dns - need for smtp v.karaychentsev 2026-02-13 13:36:09 +03:00
089786e292 gitea: set correct db host. pin network name v.karaychentsev 2026-02-13 13:27:20 +03:00
68f402affd gitea - use secret files. gitea env to ini supports __FILE postfix v.karaychentsev 2026-02-13 13:18:58 +03:00
885e530454 add option decrypt .env secrets as is to separate file for services that do not support docker secrets reading from file. v.karaychentsev 2026-02-13 10:57:56 +03:00
ae4efa868f Add gitea config. Extract secrets to sops encrypted file. v.karaychentsev 2026-02-13 10:18:38 +03:00
c9328dbe5c Add gitea docs from v1.19. because in later versions the info about sshhing shim is removed from docs for unknown reasons. And forgejo references latest docs. So it was necessary to get docs from old git branch. v.karaychentsev 2026-02-13 09:14:22 +03:00
72ef1ed2a3 update sops config. Decided to use an approach when encrypted file contains only secrets. This approach does not require to configure encrypted_regex stuff. .env files are going to be used for .env secrets for containers that can't read secrets from file. .yaml files are for secrets that can be converted into docker secrets (key - file name, value - file content) because it easy to extract such data usyn yq than trying to parse .env files. v.karaychentsev 2026-02-13 09:12:31 +03:00
eea6125511 remove wekan - too noisy ui v.karaychentsev 2026-02-13 09:02:16 +03:00
75f615db43 remove nocodb v.karaychentsev 2026-02-13 09:01:35 +03:00
68ce5c8fb1 update gitea service name v.karaychentsev 2026-02-12 12:26:39 +03:00
bb4caeb7bf add basic .gitignore v.karaychentsev 2026-02-12 11:38:06 +03:00
a755b7d04f add homepage config v.karaychentsev 2026-02-11 19:15:56 +03:00
a72225785d add navidrome. move to /srv stack v.karaychentsev 2026-02-11 11:28:01 +03:00
2ad21aa3ca configure git repo to avoid crlf / bom issues v.karaychentsev 2026-02-11 11:19:06 +03:00
8d6b857f85 cleanup - removed bom v.karaychentsev 2026-02-11 11:17:45 +03:00
fa99b8926f add some inventory notes v.karaychentsev 2026-02-11 11:14:23 +03:00
de0411573e gitconfig: add pullroot alias for pulling from nested directories. Put this file in user home directory ~/ v.karaychentsev 2026-02-11 11:14:10 +03:00
647f53690f update jellyfin compose to run from /srv v.karaychentsev 2026-02-11 11:10:13 +03:00
b9de4b242e add public key for lab-home-morefine used in gitea for example v.karaychentsev 2026-02-11 11:00:54 +03:00
c1a803484e set secrets password file for immich v.karaychentsev 2026-02-10 20:19:22 +03:00
d1f3e4959c pause healthcheck to update user and db name correctly later on v.karaychentsev 2026-02-10 20:14:58 +03:00
632a2db4c1 pause healthcheck to update user and db name correctly later on v.karaychentsev 2026-02-10 20:14:39 +03:00
27a9663f94 fixed issue with yq syntax (need to wrap .key, .value in braces otherwise ',' breaks priority v.karaychentsev 2026-02-10 20:04:11 +03:00
bab01172b9 try fix yq parser v.karaychentsev 2026-02-10 19:50:31 +03:00
6632254e95 sops - add server key v.karaychentsev 2026-02-10 19:44:26 +03:00
5953b635fe removed bom v.karaychentsev 2026-02-10 19:33:17 +03:00
c4ac3aa02c create secrets with ability to read by apps user v.karaychentsev 2026-02-10 19:21:57 +03:00
ab495df606 add immich docker compose info and move db password to sops secrets file v.karaychentsev 2026-02-10 18:35:30 +03:00
d457efd566 add basic container, configure git repo structure, add sops addon v.karaychentsev 2026-02-10 18:34:25 +03:00
3e5be7b7a4 add sops-decrypt.sh to decrypt all secrets v.karaychentsev 2026-02-10 18:33:05 +03:00
ce2829266a add initial age file v.karaychentsev 2026-02-10 18:32:44 +03:00

1 2

Commit Graph Select branches Hide Pull Requests main Mono Color

Commit Graph

Select branches

Hide Pull Requests

main