Fichiers de configuration du serveur Coh@bit.

Go to file

Julien Oculi 26929ca7b9 feat: add `bash` config to zsh		2024-06-04 16:39:54 +02:00
caddy	fix: remove `sudo` from caddy install script	2024-05-30 18:06:05 +02:00
fail2ban	feat: add `vim` `zsh` and `fail2ban` entries	2024-05-29 16:04:52 +02:00
forgejo	feat: provide `.env` file with matcher replace for config secrets	2024-05-30 15:12:12 +02:00
iptables	fix: patch relative paths in services install/deploy scripts	2024-05-30 13:39:34 +02:00
portfolio_server	feat: add `portfolio_server` config, service and scripts	2024-06-04 15:39:43 +02:00
sshd	fix: patch relative paths in services install/deploy scripts	2024-05-30 13:39:34 +02:00
vim	feat: add `vim` config and install scripts	2024-06-04 15:54:13 +02:00
website	fix: typo in `systemctl` cmd in `_deploy.sh`	2024-05-30 13:43:29 +02:00
wireguard	feat: provide `.env` file with matcher replace for config secrets	2024-05-30 15:12:12 +02:00
zsh	feat: add `bash` config to zsh	2024-06-04 16:39:54 +02:00
.env.example	feat: provide `.env` file with matcher replace for config secrets	2024-05-30 15:12:12 +02:00
.env.gpg	chore: commit encrypted `.env` secrets	2024-05-30 17:47:08 +02:00
.gitignore	feat: provide `.env` file with matcher replace for config secrets	2024-05-30 15:12:12 +02:00
_requirements.sh	fix: ensure `gpg` install	2024-06-04 16:15:33 +02:00
deploy.sh	feat: implement `.env` (secrets) loader	2024-05-30 17:35:48 +02:00
install.sh	fix: typo flag test in `install.sh` and `deploy.sh`	2024-05-30 12:43:10 +02:00
load_secrets.sh	fix: missing flag for overwritting files with sed	2024-05-30 18:02:01 +02:00
README.md	doc: update general usage snippet	2024-05-30 17:52:28 +02:00

README.md

Server Config

Fichiers de configuration du serveur Coh@bit.

Usage général

Cloner ce dépôts sur votre système (pas de répertoire privilégié).

# Clone repository
git clone https://git.cohabit.fr/cohabit/server_config.git
cd server_config

# Decrypt secrets
gpg -d .env.gpg > .env

# Allow execute scripts
sudo chmod +x ./install.sh
sudo chmod +x ./deploy.sh

# Install and deploy services
sudo ./install.sh --all && sudo ./deploy.sh --all

Warning

Après avoir executer deploy.sh tous les secrets sont écrits en clair dans les fichiers de configs et les scripts.
Ne surtout pas faire de git commit ou de git push.
Pour retourner à l'état d'origine faire un git reset --hard HEAD ou équivalent.

Installation

Pour installer les différents services/apps du serveur.

Usage

sudo (bash|sh|zsh) ./install.sh [SERVICES...]

Examples

Install caddy and iptables.
```
sudo ./install.sh caddy iptables
```
Install all services.
```
sudo ./install.sh -a
```

Déploiement

Pour déployer les différents services/apps dur serveur.

Nécessite d'avoir installer les services au préalable.

Usage

sudo (bash|sh|zsh) ./deploy.sh [SERVICES...]

Examples

Install caddy and iptables.
```
sudo ./deploy.sh caddy iptables
```
Install all services.
```
sudo ./deploy.sh -a
```