From 3087227fbf75a3809991a0abfa5ec4a333e0487b Mon Sep 17 00:00:00 2001 From: nodiscc Date: Sat, 19 Oct 2024 09:23:22 +0200 Subject: [PATCH] release v1.25.0 --- CHANGELOG.md | 2 +- README.md | 3 +- docs/TODO.md | 50 ++++++++++++++++------------ docs/conf.py | 4 +-- docs/configuration-variables.md | 58 +++++++++++++++++++++++++-------- docs/index.md | 6 ++-- docs/tags.md | 7 ++-- galaxy.yml | 2 +- xsrv | 2 +- 9 files changed, 90 insertions(+), 44 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 141b2e07d..fdf096a04 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -3,7 +3,7 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](http://keepachangelog.com/). -#### [v1.25.0](https://gitlab.com/nodiscc/xsrv/-/releases#1.25.0) - UNRELEASED +#### [v1.25.0](https://gitlab.com/nodiscc/xsrv/-/releases#1.25.0) - 2024-10-19 **Upgrade procedure:** - `xsrv self-upgrade` to upgrade the xsrv script diff --git a/README.md b/README.md index 5e65f26c3..7e17246a6 100644 --- a/README.md +++ b/README.md @@ -8,7 +8,7 @@ [![](https://gitlab.com/nodiscc/xsrv/badges/master/pipeline.svg)](https://gitlab.com/nodiscc/xsrv/-/pipelines) [![](https://bestpractices.coreinfrastructure.org/projects/3647/badge)](https://bestpractices.coreinfrastructure.org/projects/3647) -[![](https://img.shields.io/badge/latest%20release-1.24.0-blue)](https://gitlab.com/nodiscc/xsrv/-/releases) +[![](https://img.shields.io/badge/latest%20release-1.25.0-blue)](https://gitlab.com/nodiscc/xsrv/-/releases) [![](https://img.shields.io/badge/docs-readthedocs-%232980B9)](https://xsrv.readthedocs.io) **Install, manage and run self-hosted network services and applications on your own server(s).** @@ -41,6 +41,7 @@ This project provides: - [monitoring_netdata](roles/monitoring_netdata) - lightweight, real-time monitoring and alerting system - [monitoring_rsyslog](roles/monitoring_rsyslog) - log aggregation, processing and forwarding system - [monitoring_utils](roles/monitoring_utils) - monitoring and audit utilities +- [moodist](roles/moodist) - Ambient sound mixer - [mumble](roles/mumble) - low-latency VoIP/voice chat server - [nextcloud](roles/nextcloud) - file hosting/sharing/synchronization and collaboration platform - [nmap](roles/nmap) - automated network scanning for ansible-based projects diff --git a/docs/TODO.md b/docs/TODO.md index ffea94690..4a8f2e27e 100644 --- a/docs/TODO.md +++ b/docs/TODO.md @@ -2,33 +2,41 @@ ### xsrv/xsrv +- #1324 - it-tools role - **`1.26.0`** `feature` +- #1323 - xsrv init-vm: allow specifying disk size - **`1.26.0`** `enhancement` +- #1322 - update ollama role for version > 0.3.6 - **`1.26.0`** `maintenance` +- #1321 - WIP wireguard automatically generate a public/private key pair for peers where public_key is not defined - **`1.26.0`** `enhancement` +- #1320 - sshd: disable socket activation? - **`-`** `configuration,easy,question,security` +- #1316 - netdata: allow limiting alert silencing to a specif host/chart - **`1.26.0`** `enhancement,monitoring` +- #1313 - graylog: sigma rules? - **`-`** `question,security` +- #1312 - WIP: netdata: netdata_notification_downtimes: allow disabling alerts completely instead of just silencing notifications - **`1.26.0`** `enhancement,monitoring` +- #1307 - Webmail client - **`-`** `feature` +- #1306 - nextcloud: upgrade to v29.0.1 - **`1.26.0`** `enhancement` +- #1305 - ZIM (Kiwix) server? - **`-`** `feature,question` - #1301 - ollama: replace ollama-ui with text-generation-webui/open-webui? - **`-`** `enhancement,question` -- #1298 - IRC web client + bouncer - **`1.24.0`** `feature` -- #1297 - shaarli: backup/restore thumbnails cache during upgrades (or store data outside webroot) - **`1.24.0`** `enhancement` -- #1292 - netdata grafana source - **`1.25.0`** `feature,monitoring,upstream` +- #1298 - IRC web client + bouncer - **`1.26.0`** `feature` +- #1297 - shaarli: backup/restore thumbnails cache during upgrades (or store data outside webroot) - **`1.26.0`** `enhancement` - #1291 - debsecan: per-host dashboard? - **`-`** `enhancement,monitoring,question,security` -- #1290 - monitoring_rsyslog: use common name based authentication to authenticate peers - **`1.25.0`** `enhancement,security` +- #1290 - monitoring_rsyslog: use common name based authentication to authenticate peers - **`1.26.0`** `enhancement,security` - #1289 - graylog: enable TLS client authentication - **`2.0.0`** `documentation,enhancement,security` - #1288 - samba: ldapsam: better documentation of samba LDAP attributes - **`-`** `documentation` - #1286 - doc: graylog: add example stream setup - **`-`** `documentation` - #1285 - gotty: check sha256sums after download - **`-`** `enhancement,security` - #1282 - xsrv nmpa: allow output to SVG graph - **`-`** `feature` -- #1276 - WIP: common: split role into sub-roles, make the common role a 'meta' role depending on all sub roles - **`1.25.0`** `maintenance` -- #1275 - WIP: rsnapshot: allow automatic discovery of paths to backup from/commands to run on remote hosts - **`1.25.0`** `backups,enhancement` +- #1275 - WIP: rsnapshot: allow automatic discovery of paths to backup from/commands to run on remote hosts - **`1.26.0`** `backups,enhancement` - #1269 - document getting ansible-vault-password from keepassxc - **`2.0.0`** `documentation,enhancement,security,upstream` -- #1268 - backup: allow automatic discovery of paths to backup/commands to run for each host - **`1.24.0`** `backups,enhancement` +- #1268 - backup: allow automatic discovery of paths to backup/commands to run for each host - **`1.26.0`** `backups,enhancement` - #1267 - xsrv self-upgrade: update the bash completion script as well - **`-`** `enhancement` - #1266 - homepage: allow displaying arbitrary netdata badges in the footer - **`-`** `easy,enhancement` -- #1259 - WIP: wireguard: when peer.public_key is not defined, auto-generate a public/private key pair for this peer - **`1.24.0`** `enhancement` -- #1257 - graylog: upgrade to v5.2.x - **`1.25.0`** `maintenance` +- #1257 - graylog: upgrade to v5.2.x or 6.0.x - **`1.26.0`** `maintenance` - #1256 - wireguard: web interface? - **`-`** `enhancement,question` -- #1253 - wireguard: add QR code to auto-generated client config files - **`1.24.0`** `enhancement` +- #1253 - wireguard: add QR code to auto-generated client config files - **`1.26.0`** `enhancement` - #1251 - WIP: xsrv: don't require sudo during xsrv init-vm-template - **`-`** `difficult,enhancement` - #1245 - gitea: use unix socket instead of HTTP socket? - **`-`** `enhancement,question,security` - #1235 - gitea_act_runner: do not log job output to syslog by default - **`-`** `enhancement,monitoring,upstream` -- #1230 - podman: add docker-compose? - **`1.24.0`** `enhancement,question` +- #1230 - podman: add docker-compose? - **`-`** `enhancement,question` - #1226 - postgresql: allow enabling pg_stat_statements extension - **`-`** `enhancement,monitoring,performance` -- #1215 - WIP: tests: add tests for deploying individual roles to a host - **`1.24.0`** `tools` +- #1215 - WIP: tests: add tests for deploying individual roles to a host - **`1.26.0`** `tools` - #1214 - nextcloud: enable machine learning (AI) related features? - **`-`** `feature,question` - #1212 - nextcloud: allow enabling/disabling file locking? - **`-`** `enhancement,question` - #1211 - nextcloud: warning about opcache incorrect configuration - **`-`** `enhancement,performance` @@ -41,7 +49,8 @@ - #1134 - Lemmy role? - **`-`** `feature,question` - #1127 - xsrv: help-tags: outputs duplicate tags when running on non-default playbook - **`-`** `bug` - #1122 - nextcloud: install memories app? - **`-`** `feature,question` -- #1119 - WIP: common/firewalld: allow defining a manual IP address/network blacklist (firewalld_bad_ips) - **`1.24.0`** `enhancement,security` +- #1119 - WIP: common/firewalld: allow defining a manual IP address/network blacklist (firewalld_bad_ips) - **`1.26.0`** `enhancement,security` +- #1117 - airtable-like application (nocodb/baserow) role? - **`-`** `feature,question` - #1108 - matrix/element: Cross-Origin Request Blocked: .well-known/matrix/client - **`-`** `question` - #1103 - xsrv: bash completion: auto-complete init-vm/init-vm-template options? - **`-`** `enhancement,question` - #1099 - graylog: document backup restoration procedure - **`-`** `backups,documentation` @@ -92,6 +101,7 @@ - #778 - systemd-nspawn/systemd-machined role? - **`-`** `feature,question` - #768 - add ldap-client role (LDAP PAM/SSH authentication)? - **`-`** `feature,question` - #751 - monitoring_utils: add scripts to measure disk usage by type/extension/path? - **`-`** `easy,enhancement,monitoring,question` +- #734 - nextcloud: add whiteboard app? - **`1.26.0`** `documentation,easy` - #723 - Automate DNS scans with dnsspy.io? - **`-`** `feature,question,security` - #722 - Allow hdparm/disk spindown time configuration? - **`-`** `feature,question` - #717 - transmission: configuration templating task always returns changed (cleartext/hashed password) - **`2.0.0`** `enhancement,maintenance,upstream` @@ -121,7 +131,7 @@ - #344 - nextcloud: replace onlyoffice integration with collabora/nextcloud office? - **`-`** `feature,question` - #323 - prometheus role? - **`-`** `feature,monitoring,question` - #322 - Frontail role? - **`-`** `feature,monitoring,question` -- #317 - monitoring_utils: lynis: suggestion[]=BOOT-5264|Consider hardening system services - **`1.24.0`** `enhancement,security` +- #317 - monitoring_utils: lynis: suggestion[]=BOOT-5264|Consider hardening system services - **`1.26.0`** `enhancement,security` - #310 - samba: ability to whitelist/blacklist files by extension? - **`-`** `enhancement,question,security` - #309 - apply postgresqltuner recommended settings? - **`-`** `enhancement,performance,question` - #280 - Samba Directory Controller or other Identity Management solution? - **`-`** `feature,question` @@ -129,7 +139,7 @@ - #267 - apache: make disabled modules list configurable, disable more modules by default? - **`-`** `enhancement,performance,question,security` - #265 - apache: provide custom error pages? - **`-`** `enhancement,question` - #256 - CAS, SAML or Oauth Single Sign On (SSO)? - **`-`** `feature,question` -- #202 - netdata: monitoring network bandwidth per application with ebpf - **`1.25.0`** `enhancement,monitoring,upstream` +- #202 - netdata: monitoring network bandwidth per application with ebpf - **`1.26.0`** `enhancement,monitoring,upstream` - #200 - roles for other monitoring software? - **`-`** `feature,monitoring,question` - #193 - netdata: graph tiger warnings? - **`-`** `feature,monitoring,question,security` - #184 - monitoring_utils: add Mozilla observatory module? - **`-`** `feature,monitoring,question,security` @@ -153,9 +163,9 @@ - #96 - grafana role? - **`-`** `feature,monitoring,question` - #93 - VNC/other remote desktop server role? - **`-`** `feature,question` - #86 - Peertube role? - **`-`** `feature,question` -- #78 - Adminer role - **`1.25.0`** `feature` +- #78 - Adminer role - **`1.26.0`** `feature` - #70 - common: ssh: allow setting up endlessh? - **`-`** `feature,question,security` -- #69 - IDS/IPS role? - **`1.25.0`** `question,security` +- #69 - IDS/IPS role? - **`1.26.0`** `question,security` - #64 - RAID role? - **`-`** `feature,question` - #63 - pfSense role? - **`-`** `feature,question,wontfix` - #61 - GDPR compliance? - **`-`** `feature,question` @@ -170,15 +180,15 @@ - #43 - OSM routing service role? - **`-`** `feature,question` - #42 - OpenStreetMap/maps tileserver role? - **`-`** `feature,question` - #41 - network scanner (SANE) server role? - **`-`** `feature,question` -- #40 - SearxNG role - **`1.25.0`** `feature` +- #40 - SearxNG role - **`1.26.0`** `feature` - #39 - wallabag role? - **`-`** `feature,question` - #37 - Replace `ntp` with `chrony`? - **`2.0.0`** `question` - #35 - simple git server role? - **`-`** `feature,question,wontfix` - #34 - CentOS compatibility? - **`-`** `feature,question,wontfix` -- #33 - Minecraft server role? - **`1.25.0`** `feature,question` +- #33 - Minecraft server role? - **`1.26.0`** `feature,question` - #30 - Gitlab role? - **`-`** `feature,question` - #26 - dynamic DNS updater role? - **`2.0.0`** `feature` - #24 - DHCP/TFTP/PXE server role? - **`-`** `feature,question` - #22 - Add molecule tests? - **`-`** `difficult,enhancement,question,tools` -- #10 - xsrv init-vm: use cloud-init images - **`1.25.0`** `enhancement` +- #10 - xsrv init-vm: use cloud-init images - **`1.26.0`** `enhancement` - #3 - Mail server role? - **`-`** `feature,question` diff --git a/docs/conf.py b/docs/conf.py index 30c4a9840..171e6f135 100644 --- a/docs/conf.py +++ b/docs/conf.py @@ -5,8 +5,8 @@ project = 'xsrv' author = 'nodiscc@gmail.com' -version = '1.24.0' -release = '1.24.0' +version = '1.25.0' +release = '1.25.0' html_show_copyright = True # -- General configuration --------------------------------------------------- diff --git a/docs/configuration-variables.md b/docs/configuration-variables.md index 33b46c000..24bbe90cc 100644 --- a/docs/configuration-variables.md +++ b/docs/configuration-variables.md @@ -224,7 +224,7 @@ apt_unattended_upgrades_origins_patterns: - "origin=Debian,codename=${distro_codename}-proposed-updates" # Debian stable proposed updates - "origin=Debian,codename=${distro_codename}-security,label=Debian-Security" # Debian security - "origin=Debian Backports,codename=${distro_codename}-backports,label=Debian Backports" # Debian backports - - "origin=packagecloud.io/netdata/netdata,label=netdata" # nodiscc.xsrv.monitoring_netdata + - "origin=Netdata,label=Netdata" # nodiscc.xsrv.monitoring_netdata - "origin=Jellyfin,site=repo.jellyfin.org" # nodiscc.xsrv.jellyfin - "o=Freight,a=stable,site=packages.graylog2.org" # nodiscc.xsrv.graylog - "o=mongodb,a=jammy,site=repo.mongodb.org" # nodiscc.xsrv.graylog @@ -673,7 +673,7 @@ gitea_db_host: "/run/postgresql/" # /run/postgresql/ for a local postgresql data gitea_db_password: "" # leave empty for local postgresql database/peer authentication gitea_db_port: 5432 # usually 5432 for PostgreSQL, 3306 for MySQL # gitea version to install - https://github.com/go-gitea/gitea/releases.atom; remove leading v -gitea_version: "1.21.11" +gitea_version: "1.22.3" # HTTPS and SSL/TLS certificate mode for the gitea webserver virtualhost # letsencrypt: acquire a certificate from letsencrypt.org # selfsigned: generate a self-signed certificate @@ -1198,7 +1198,7 @@ matrix_synapse_ldap_validate_certs: yes # enable/disable the synapse-admin virtualhost (redirect users to maintenance page if disabled) matrix_synapse_admin_enable_service: yes # synapse-admin version (https://github.com/Awesome-Technologies/synapse-admin/releases) -matrix_synapse_admin_version: "0.10.1" +matrix_synapse_admin_version: "0.10.3" # list of IP addresses allowed to access synapse-admin and synapse admin API endpoints (IP or IP/netmask format) # set to empty list [] to allow access from any IP address matrix_synapse_admin_allowed_hosts: [] @@ -1214,7 +1214,7 @@ matrix_element_jitsi_preferred_domain: "meet.element.io" # when matrix_element_video_rooms_mode = 'element_call', domain of the Element Call instance to use for video calls matrix_element_call_domain: "call.element.io" # matrix element web client version (https://github.com/vector-im/element-web/releases) -matrix_element_version: "1.11.66" +matrix_element_version: "1.11.77" # element installation directory element_install_dir: "/var/www/{{ matrix_element_fqdn }}" # HTTPS and SSL/TLS certificate mode for the matrix-element webserver virtualhost @@ -1251,7 +1251,7 @@ goaccess_update_calendar_expression: "*:00:00" # (optional) only parse log lines containing this string # goaccess_filter: "mysite.CHANGEME.org" # IP to Country Lite GeoIP database version (https://db-ip.com/db/download/ip-to-country-lite) -goaccess_geoip_db_version: "2024-03" +goaccess_geoip_db_version: "2024-09" # username/password used to access the HTML report goaccess_username: "CHANGEME" goaccess_password: "CHANGEME" @@ -1546,6 +1546,24 @@ bonnie_benchmark_paths: ``` +## moodist + +[roles/moodist/defaults/main.yml](https://gitlab.com/nodiscc/xsrv/-/blob/master/roles/moodist/defaults/main.yml) + +```yaml +# Fully Qualified Domain Name for the moodist instance +moodist_fqdn: "pdf.CHANGEME.org" +# the moodist OCI image to pull +moodist_image: "ghcr.io/remvze/moodist:latest" +# HTTPS and SSL/TLS certificate mode for the moodist webserver virtualhost +# letsencrypt: acquire a certificate from letsencrypt.org +# selfsigned: generate a self-signed certificate +moodist_https_mode: "selfsigned" +# start/stop the moodist service, enable/disable it on boot (yes/no) (redirect users to maintenance page if disabled) +moodist_enable_service: yes +``` + + ## mumble [roles/mumble/defaults/main.yml](https://gitlab.com/nodiscc/xsrv/-/blob/master/roles/mumble/defaults/main.yml) @@ -1613,7 +1631,7 @@ nextcloud_install_dir: "/var/www/{{ nextcloud_fqdn }}" # full public URL of your nextcloud installation (update this if you changed the install location to a subdirectory) nextcloud_full_url: "https://{{ nextcloud_fqdn }}/" # nextcloud version to install -nextcloud_version: "28.0.5" +nextcloud_version: "28.0.11" # base folder for shared files from other users nextcloud_share_folder: '/SHARED/' # default app to open on login. You can use comma-separated list of app names, so if the first app is not enabled for a user then Nextcloud will try the second one, and so on. @@ -1741,8 +1759,8 @@ ollama_ui_fqdn: "llm.CHANGEME.org" # username/password for access to the ollama web interface/API ollama_username: "CHANGEME" ollama_password: "CHANGEME" -# ollama version (https://github.com/ollama/ollama/releases/tag/v0.1.30.atom) -ollama_version: "v0.1.33" +# ollama version (https://github.com/ollama/ollama/releases.atom) +ollama_version: "v0.3.6" # HTTPS and SSL/TLS certificate mode for the ollama-ui webserver virtualhost # letsencrypt: acquire a certificate from letsencrypt.org # selfsigned: generate a self-signed certificate @@ -1799,7 +1817,7 @@ ldap_account_manager_allowed_hosts: "10.*,192.168.*,172.16.*,172.17.*,172.18.*,1 # installation directory for ldap-account-manager ldap_account_manager_install_dir: "/var/www/{{ ldap_account_manager_fqdn }}" # LDAP Account Manager version (https://github.com/LDAPAccountManager/lam/releases) -ldap_account_manager_version: "8.7" +ldap_account_manager_version: "8.8" # ldap-account-manager installation method (tar.bz2, apt...) # currently only tar.bz2 is supported (ldap-account-manager not available in debian 10 repositories) ldap_account_manager_install_method: "tar.bz2" @@ -1844,7 +1862,7 @@ self_service_password_debug: no # installation directory for Self Service Password self_service_password_install_dir: "/var/www/{{ self_service_password_fqdn }}" # LDAP Self-Service Password version (https://github.com/ltb-project/self-service-password/releases) -self_service_password_version: "1.6.0" +self_service_password_version: "1.6.1" # LDAP server URI for Self Service Password (e.g. ldap://localhost:389 or ldap://ldap.CHANGEME.org:686) self_service_password_ldap_url: "ldap://{{ openldap_fqdn }}:389" # HTTPS/SSL/TLS certificate mode for the Self Service Password webserver virtualhost @@ -1905,7 +1923,7 @@ owncast_allowed_hosts: [] # start/stop the postgresql service, enable/disable it on boot (yes/no) postgresql_enable_service: yes # pgmetrics version (https://github.com/rapidloop/pgmetrics/releases.atom, without leading v) -postgresql_pgmetrics_version: "1.16.0" +postgresql_pgmetrics_version: "1.17.0" ``` @@ -2098,7 +2116,7 @@ shaarli_stack_default_ui: "medium" # shaarli stack template version (https://github.com/RolandTi/shaarli-stack/releases.atom) shaarli_stack_version: "0.8" # php-fpm: Maximum amount of memory a script may consume (K, M, G) -shaarli_php_memory_limit: '128M' +shaarli_php_memory_limit: '256M' # php_fpm: Maximum execution time of each script (seconds) shaarli_php_max_execution_time: 30 # php-fpm: Maximum amount of time each script may spend parsing request data (seconds) @@ -2121,6 +2139,15 @@ shaarli_enable_service: yes stirlingpdf_fqdn: "pdf.CHANGEME.org" # the stirlingpdf OCI image to pull stirlingpdf_image: "docker.io/frooodle/s-pdf:latest" +# HTTPS and SSL/TLS certificate mode for the stirlingpdf webserver virtualhost +# letsencrypt: acquire a certificate from letsencrypt.org +# selfsigned: generate a self-signed certificate +stirlingpdf_https_mode: selfsigned +# start/stop the stirlingpdf service, enable/disable it on boot (yes/no) (redirect users to maintenance page if disabled) +stirlingpdf_enable_service: yes +# IP addresses allowed to access the stirlingpdf web interface (IP or IP/netmask format) +# set to empty list [] to allow access from any IP address +stirlingpdf_allowed_hosts: [] ``` @@ -2227,10 +2254,12 @@ wireguard_enable_service: yes # clients can generate a private/public key pair by running: wg genkey | (umask 0077 && tee wireguard.key) | wg pubkey > wireguard.pub # wireguard_peers: # - name: client1 # arbitrary name for the peer -# state: present # optional, default present. set to absent to remove the peer +# state: present # (optional, present/absent, default present) set to absent to remove the peer and its keys) # public_key: Faz...4vEQ= # the public key of the peer (contents of its wireguard.pub) # ip_address: "10.200.200.10" # IP address of the client on the VPN network (CIDR notation), must be part of the VPN server network -# routes: "1.2.3.4/32, 192.168.18.0/24" # (optional, default 0.0.0.0/0 - route all traffic through the VPN) IP addresses/network to route through the VPN on the client +# routes: "1.2.3.4/32, 192.168.18.0/24" # (optional, default 0.0.0.0/0 - route all traffic through the VPN) IP addresses/networks to route through the VPN on the client +# - name: client2 +# state: absent wireguard_peers: [] # firewall zones from which peers are allowed to connect to the VPN service, if nodiscc.xsrv.common/firewalld role is deployed @@ -2242,6 +2271,7 @@ wireguard_firewalld_zones: state: enabled # allow wireguard clients to connect to these firewalld services/ports on the host +# in addition, the clients must have a route to the server IP in wireguard_peers.*.routes, see anotherclient example above # Example: # wireguard_firewalld_services: # - name: ssh # service name diff --git a/docs/index.md b/docs/index.md index 8a6d88d14..26b64b17e 100644 --- a/docs/index.md +++ b/docs/index.md @@ -8,7 +8,7 @@ [![](https://gitlab.com/nodiscc/xsrv/badges/master/pipeline.svg)](https://gitlab.com/nodiscc/xsrv/-/pipelines) [![](https://bestpractices.coreinfrastructure.org/projects/3647/badge)](https://bestpractices.coreinfrastructure.org/projects/3647) -[![](https://img.shields.io/badge/latest%20release-1.24.0-blue)](https://gitlab.com/nodiscc/xsrv/-/releases) +[![](https://img.shields.io/badge/latest%20release-1.25.0-blue)](https://gitlab.com/nodiscc/xsrv/-/releases) [![](https://img.shields.io/badge/docs-readthedocs-%232980B9)](https://xsrv.readthedocs.io) **Install, manage and run self-hosted network services and applications on your own server(s).** @@ -41,6 +41,7 @@ This project provides: - [monitoring_netdata](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/monitoring_netdata) - lightweight, real-time monitoring and alerting system - [monitoring_rsyslog](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/monitoring_rsyslog) - log aggregation, processing and forwarding system - [monitoring_utils](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/monitoring_utils) - monitoring and audit utilities +- [moodist](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/moodist) - Ambient sound mixer - [mumble](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/mumble) - low-latency VoIP/voice chat server - [nextcloud](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/nextcloud) - file hosting/sharing/synchronization and collaboration platform - [nmap](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/nmap) - automated network scanning for ansible-based projects @@ -77,9 +78,10 @@ This project provides: [![](https://gitlab.com/nodiscc/toolbox/-/raw/master/DOC/SCREENSHOTS/XYmHNqT.png)](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/libvirt) [![](https://gitlab.com/nodiscc/toolbox/-/raw/master/DOC/SCREENSHOTS/goaccess-bright-thumb.png)](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/monitoring_goaccess) [![](https://gitlab.com/nodiscc/toolbox/-/raw/master/DOC/SCREENSHOTS/owncast-thumb.png)](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/owncast) -[![](https://gitlab.com/nodiscc/toolbox/-/raw/master/DOC/SCREENSHOTS/ollama-ui-thumb.png)](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/owncast) +[![](https://gitlab.com/nodiscc/toolbox/-/raw/master/DOC/SCREENSHOTS/ollama-ui-thumb.png)](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/ollama) [![](https://gitlab.com/nodiscc/toolbox/-/raw/master/DOC/SCREENSHOTS/nmap-thumb.png)](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/nmap) [![](https://gitlab.com/nodiscc/toolbox/-/raw/master/DOC/SCREENSHOTS/stirlingpdf-thumb.png)](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/stirlingpdf) +[![](https://gitlab.com/nodiscc/toolbox/-/raw/master/DOC/SCREENSHOTS/moodist-thumb.png)](https://gitlab.com/nodiscc/xsrv/-/tree/master/roles/moodist) ## Source code diff --git a/docs/tags.md b/docs/tags.md index c4f2bfc0b..d42d218a3 100644 --- a/docs/tags.md +++ b/docs/tags.md @@ -3,7 +3,7 @@ ``` ╻ ╻┏━┓┏━┓╻ ╻ ░░╺╋╸┗━┓┣┳┛┃┏┛ - ╹ ╹┗━┛╹┗╸┗┛ v1.23.0 + ╹ ╹┗━┛╹┗╸┗┛ v1.24.0 [xsrv] INFO: list of tags in project xsrv-test [xsrv] USAGE: TAGS=tag1,tag2,tag3 xsrv deploy xsrv-test TAGS: @@ -48,6 +48,7 @@ matrix - setup matrix chat server and web client mongodb - setup mongodb database monitoring - setup monitoring/alerting/logging system/utilities monitoring_utils - setup command-line/additional monitoring utilities +moodist - setup Moodist ambient sound mixer msmtp - setup outgoing system mail mumble - setup mumble voip server netdata-apt - setup netdata apt module @@ -83,6 +84,7 @@ shaarli - setup shaarli bookmark service ssh-authorized-keys - setup ssh authorized keys ssh - setup SSH server ssl - setup SSL certificates and configuration +stirlingpdf - setup Stirling PDF PDF manipulation tools synapse-admin - setup synapse-admin matrix administration web interface synapse - setup synapse (matrix) chat server sysctl - setup sysctl kernel configuration @@ -111,9 +113,10 @@ utils-samba-listusers - (manual) list samba users utils-shutdown - (manual) shut down the host wireguard - setup wireguard OTHER TAGS: +graylog +mongodb never nmap readme_gen -stirlingpdf ``` diff --git a/galaxy.yml b/galaxy.yml index f400f7d21..b959ac4b1 100644 --- a/galaxy.yml +++ b/galaxy.yml @@ -1,6 +1,6 @@ namespace: nodiscc name: xsrv -version: 1.24.0 +version: 1.25.0 readme: README.md authors: - nodiscc diff --git a/xsrv b/xsrv index 23eb810fe..7da454101 100755 --- a/xsrv +++ b/xsrv @@ -58,7 +58,7 @@ projects_dir="${XSRV_PROJECTS_DIR:=$HOME/playbooks}" editor="${EDITOR:=nano}" ansible_tags="${TAGS:-}" pager="${PAGER:=nano --syntax=YAML --view +1 -}" -version="1.24.0" +version="1.25.0" ansible_version="10.5.0" trivy_version="0.49.1" xsrv_git_url="https://gitlab.com/nodiscc/xsrv"