Add micro gpodder service at gpodder.lunch.org.uk.

This commit is contained in:
Jim Hague 2023-12-07 15:02:28 +00:00
parent 02bff10e25
commit 39ab8ea933
8 changed files with 87 additions and 1 deletions

3
.gitmodules vendored
View File

@ -1,3 +1,6 @@
[submodule "states/certificates/dehydrated/dehydrated-mythic-dns01"] [submodule "states/certificates/dehydrated/dehydrated-mythic-dns01"]
path = states/certificates/dehydrated/dehydrated-mythic-dns01 path = states/certificates/dehydrated/dehydrated-mythic-dns01
url = https://github.com/mythic-beasts/dehydrated-mythic-dns01 url = https://github.com/mythic-beasts/dehydrated-mythic-dns01
[submodule "states/gpodder/micro-gpodder-server"]
path = states/gpodder/micro-gpodder-server
url = https://github.com/bohwaz/micro-gpodder-server.git

View File

@ -22,7 +22,7 @@ VOLNAME="all"
# List of directories to make backups of. # List of directories to make backups of.
# All paths MUST be absolute and start with a '/'! # All paths MUST be absolute and start with a '/'!
SRCLIST=(/etc /root /home /var/mail /usr/local /var/lib/wordpress) SRCLIST=(/etc /root /home /var/mail /usr/local /var/lib/wordpress /srv)
# The following expression specifies the files not to be archived. # The following expression specifies the files not to be archived.
# See the find(1) man page for further info. It is discouraged to # See the find(1) man page for further info. It is discouraged to

View File

@ -11,6 +11,7 @@ www.bear-cave.org.uk {{ keyid }} {{ secret }}
lunch.org.uk {{ keyid }} {{ secret }} lunch.org.uk {{ keyid }} {{ secret }}
www.lunch.org.uk {{ keyid }} {{ secret }} www.lunch.org.uk {{ keyid }} {{ secret }}
git.lunch.org.uk {{ keyid }} {{ secret }} git.lunch.org.uk {{ keyid }} {{ secret }}
gpodder.lunch.org.uk {{ keyid }} {{ secret }}
hg.lunch.org.uk {{ keyid }} {{ secret }} hg.lunch.org.uk {{ keyid }} {{ secret }}
jenkins.lunch.org.uk {{ keyid }} {{ secret }} jenkins.lunch.org.uk {{ keyid }} {{ secret }}
lists.lunch.org.uk {{ keyid }} {{ secret }} lists.lunch.org.uk {{ keyid }} {{ secret }}

View File

@ -1,6 +1,7 @@
bear-cave.org.uk www.bear-cave.org.uk bear-cave.org.uk www.bear-cave.org.uk
lunch.org.uk www.lunch.org.uk lunch.org.uk www.lunch.org.uk
git.lunch.org.uk git.lunch.org.uk
gpodder.lunch.org.uk
hg.lunch.org.uk hg.lunch.org.uk
jenkins.lunch.org.uk jenkins.lunch.org.uk
mail.lunch.org.uk webmail.lunch.org.uk mail.lunch.org.uk webmail.lunch.org.uk

View File

@ -0,0 +1,45 @@
<IfModule mod_ssl.c>
<VirtualHost *:443>
ServerName gpodder.lunch.org.uk
ErrorLog /var/log/apache2/gpodder-error.log
CustomLog /var/log/apache2/gpodder-access.log combined
RemoteIPProxyProtocol On
DocumentRoot /srv/gpodder
<Directory /srv/gpodder>
Options FollowSymLinks
AllowOverride All
Order allow,deny
Allow from all
Require all granted
DirectoryIndex index.php
</Directory>
SSLEngine on
SSLCertificateFile /var/local/certificates/gpodder.lunch.org.uk/fullchain.pem
SSLCertificateKeyFile /var/local/certificates/gpodder.lunch.org.uk/privkey.pem
</VirtualHost>
</IfModule>
<VirtualHost *:80>
ServerName gpodder.lunch.org.uk
ErrorLog /var/log/apache2/gpodder-error.log
CustomLog /var/log/apache2/gpodder-access.log combined
RemoteIPProxyProtocol On
<IfModule rewrite_module>
#
# This redirects all accesses to the HTTPS version of the site.
#
RewriteEngine On
RewriteRule ^/?(.*) https://gpodder.lunch.org.uk/$1 [R=301,L]
</IfModule>
</VirtualHost>

34
states/gpodder/init.sls Normal file
View File

@ -0,0 +1,34 @@
gpodder:
pkg.installed:
- pkgs:
- php-sqlite3
- libapache2-mod-php8.2
srv_gpodder_directory:
file.recurse:
- name: /srv/gpodder
- source: salt://gpodder/micro-gpodder-server/server
- user: www-data
- group: www-data
- dir_mode: '0755'
gpodder_web:
file.managed:
- require:
- sls: apache
- sls: certificates/client
- names:
- /etc/apache2/sites-available/gpodder.lunch.org.uk.conf:
- source: salt://gpodder/gpodder.lunch.org.uk.conf
apache_module.enabled:
- name: php8.2
apache_site.enabled:
- require:
- file: /etc/apache2/sites-available/gpodder.lunch.org.uk.conf
- name: gpodder.lunch.org.uk
service.running:
- name: apache2
- reload: true
- watch:
- file: /etc/apache2/sites-available/gpodder.lunch.org.uk.conf

@ -0,0 +1 @@
Subproject commit 2a7d3bab5dff46bc0db7b9316bb71c8733ae97b8

View File

@ -14,6 +14,7 @@ base:
- lunch_website - lunch_website
- havoc_website - havoc_website
- cowboy_website - cowboy_website
- gpodder
'scabbers.lunch.org.uk': 'scabbers.lunch.org.uk':
- debian - debian