Fichiers de configuration du serveur Coh@bit.
Go to file
2024-05-30 17:35:48 +02:00
caddy chore: update website proxy internal port 2024-05-30 15:02:12 +02:00
fail2ban feat: add vim zsh and fail2ban entries 2024-05-29 16:04:52 +02:00
forgejo feat: provide .env file with matcher replace for config secrets 2024-05-30 15:12:12 +02:00
iptables fix: patch relative paths in services install/deploy scripts 2024-05-30 13:39:34 +02:00
sshd fix: patch relative paths in services install/deploy scripts 2024-05-30 13:39:34 +02:00
vim feat: add vim zsh and fail2ban entries 2024-05-29 16:04:52 +02:00
website fix: typo in systemctl cmd in _deploy.sh 2024-05-30 13:43:29 +02:00
wireguard feat: provide .env file with matcher replace for config secrets 2024-05-30 15:12:12 +02:00
zsh feat: add vim zsh and fail2ban entries 2024-05-29 16:04:52 +02:00
.env.example feat: provide .env file with matcher replace for config secrets 2024-05-30 15:12:12 +02:00
.gitignore feat: provide .env file with matcher replace for config secrets 2024-05-30 15:12:12 +02:00
_requirements.sh fix: add systemctl to requirements 2024-05-30 13:31:46 +02:00
deploy.sh feat: implement .env (secrets) loader 2024-05-30 17:35:48 +02:00
install.sh fix: typo flag test in install.sh and deploy.sh 2024-05-30 12:43:10 +02:00
load_secrets.sh feat: implement .env (secrets) loader 2024-05-30 17:35:48 +02:00
README.md doc: update install instructions and warnings 2024-05-30 15:23:38 +02:00

Server Config

Fichiers de configuration du serveur Coh@bit.

Usage général

Cloner ce dépôts sur votre système (pas de répertoire privilégié).

# Clone repository
git clone https://git.cohabit.fr/cohabit/server_config.git
cd server_config

# Decrypt secrets
gpg -d .env.gpg

# Allow execute scripts
sudo chmod +x ./install.sh
sudo chmod +x ./deploy.sh

# Install and deploy services
sudo ./install.sh --all && sudo ./deploy.sh --all

Warning

Après avoir executer deploy.sh tous les secrets sont écrits en clair dans les fichiers de configs et les scripts.
Ne surtout pas faire de git commit ou de git push.
Pour retourner à l'état d'origine faire un git reset --hard HEAD ou équivalent.

Installation

Pour installer les différents services/apps du serveur.

Usage

sudo (bash|sh|zsh) ./install.sh [SERVICES...]

Examples

  • Install caddy and iptables.
    sudo ./install.sh caddy iptables
    
  • Install all services.
    sudo ./install.sh -a
    

Déploiement

Pour déployer les différents services/apps dur serveur.

Nécessite d'avoir installer les services au préalable.

Usage

sudo (bash|sh|zsh) ./deploy.sh [SERVICES...]

Examples

  • Install caddy and iptables.
    sudo ./deploy.sh caddy iptables
    
  • Install all services.
    sudo ./deploy.sh -a