From e67c4af95ce9ea9955beb9630f6afbaa5b7f0de0 Mon Sep 17 00:00:00 2001
From: nodiscc <nodiscc@gmail.com>
Date: Sat, 3 Feb 2024 19:04:04 +0100
Subject: [PATCH] release v1.22.0

---
 CHANGELOG.md                    |  2 +-
 README.md                       |  2 +-
 docs/TODO.md                    | 33 ++++++++++++++++++---------------
 docs/conf.py                    |  4 ++--
 docs/configuration-variables.md |  9 +++++----
 docs/index.md                   |  2 +-
 docs/tags.md                    |  2 +-
 galaxy.yml                      |  2 +-
 xsrv                            |  2 +-
 9 files changed, 31 insertions(+), 27 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 10b71d845..18258a985 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -3,7 +3,7 @@
 All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](http://keepachangelog.com/).
 
-#### [v1.22.0](https://gitlab.com/nodiscc/xsrv/-/releases#1.22.0) - UNRELEASED
+#### [v1.22.0](https://gitlab.com/nodiscc/xsrv/-/releases#1.22.0) - 2024-02-03
 
 **Upgrade procedure:**
 - `xsrv self-upgrade` to upgrade the xsrv script
diff --git a/README.md b/README.md
index b9744eea1..f52626929 100644
--- a/README.md
+++ b/README.md
@@ -8,7 +8,7 @@
 
 [![](https://gitlab.com/nodiscc/xsrv/badges/master/pipeline.svg)](https://gitlab.com/nodiscc/xsrv/-/pipelines)
 [![](https://bestpractices.coreinfrastructure.org/projects/3647/badge)](https://bestpractices.coreinfrastructure.org/projects/3647)
-[![](https://img.shields.io/badge/latest%20release-1.21.0-blue)](https://gitlab.com/nodiscc/xsrv/-/releases)
+[![](https://img.shields.io/badge/latest%20release-1.22.0-blue)](https://gitlab.com/nodiscc/xsrv/-/releases)
 [![](https://img.shields.io/badge/docs-readthedocs-%232980B9)](https://xsrv.readthedocs.io)
 
 **Install, manage and run self-hosted network services and applications on your own server(s).**
diff --git a/docs/TODO.md b/docs/TODO.md
index a4902a82c..3739c9071 100644
--- a/docs/TODO.md
+++ b/docs/TODO.md
@@ -2,18 +2,22 @@
 
 ### xsrv/xsrv
 
-- #1264 - WIP: mumble: allow uninstalling mumble server using the `utils-mumble-uninstall` ansible tag - **`1.22.0`** `enhancement`
-- #1260 - WIP: add xsrv nmap subcommand/role - **`1.22.0`** `feature,security`
-- #1259 - WIP:  wireguard: when peer.public_key is not defined, auto-generate a public/private key pair for this peer - **`1.21.0`** `easy,enhancement`
-- #1257 - graylog: upgrade to v5.2.x - **`1.22.0`** `maintenance`
+- #1270 - WIP: netdata: disable ML fuctionality when streaming to a parent node is enabled - **`1.23.0`** `easy,enhancement,performance`
+- #1269 - document getting ansible-vault-password from keepassxc - **`2.0.0`** `documentation,enhancement,security,upstream`
+- #1268 - backup: allow automatic discovery of paths to backup/commands to run for each host - **`2.0.0`** `backups,enhancement`
+- #1267 - xsrv self-upgrade: update the bash completion script as well - **`-`** `enhancement`
+- #1266 - homepage: allow displaying arbitrary netdata badges in the footer - **`-`** `easy,enhancement`
+- #1264 - WIP: mumble: allow uninstalling mumble server using the `utils-mumble-uninstall` ansible tag - **`1.23.0`** `enhancement`
+- #1259 - WIP:  wireguard: when peer.public_key is not defined, auto-generate a public/private key pair for this peer - **`1.23.0`** `enhancement`
+- #1257 - graylog: upgrade to v5.2.x - **`1.23.0`** `maintenance`
 - #1256 - wireguard: web interface? - **`-`** `enhancement,question`
 - #1253 - wireguard: add QR code to auto-generated client config files - **`-`** `enhancement`
 - #1251 - WIP: xsrv: don't require sudo during xsrv init-vm-template - **`-`** `difficult,enhancement`
-- #1245 - gitea: use unix socket instead of HTTP socket? - **`1.22.0`** `enhancement,question,security`
+- #1245 - gitea: use unix socket instead of HTTP socket? - **`1.23.0`** `enhancement,question,security`
 - #1235 - gitea_act_runner: do not log job output to syslog by default - **`-`** `enhancement,monitoring,upstream`
-- #1230 - podman: add docker-compose? - **`1.22.0`** `enhancement,question`
-- #1226 - postgresql: allow enabling pg_stat_statements extension - **`1.22.0`** `easy,enhancement,monitoring,performance`
-- #1215 - WIP: tests: add tests for deploying individual roles to a host - **`-`** `tools`
+- #1230 - podman: add docker-compose? - **`1.23.0`** `enhancement,question`
+- #1226 - postgresql: allow enabling pg_stat_statements extension - **`1.23.0`** `easy,enhancement,monitoring,performance`
+- #1215 - WIP: tests: add tests for deploying individual roles to a host - **`1.23.0`** `tools`
 - #1214 - nextcloud: enable machine learning (AI) related features? - **`-`** `feature,question`
 - #1212 - nextcloud: allow enabling/disabling file locking? - **`-`** `enhancement,question`
 - #1211 - nextcloud: warning about opcache incorrect configuration - **`-`** `enhancement,performance`
@@ -27,7 +31,7 @@
 - #1134 - Lemmy role? - **`-`** `feature,question`
 - #1127 - xsrv: help-tags: outputs duplicate tags when running on non-default playbook - **`-`** `bug`
 - #1122 - nextcloud: install memories app? - **`-`** `feature,question`
-- #1119 - WIP: common/firewalld: allow defining a manual IP address/network blacklist (firewalld_bad_ips) - **`-`** `enhancement,security`
+- #1119 - WIP: common/firewalld: allow defining a manual IP address/network blacklist (firewalld_bad_ips) - **`1.23.0`** `enhancement,security`
 - #1108 - matrix/element: Cross-Origin Request Blocked: .well-known/matrix/client - **`-`** `question`
 - #1103 - xsrv: bash completion: auto-complete init-vm/init-vm-template options? - **`-`** `enhancement,question`
 - #1099 - graylog: document backup restoration procedure - **`-`** `backups,documentation`
@@ -97,7 +101,6 @@
 - #517 - allow configuration of a custom MOTD? - **`-`** `feature,question`
 - #497 - nextcloud: allow enabling 2-factor authentication? - **`-`** `configuration,enhancement,question,security`
 - #475 - ACME certificate authority role? - **`-`** `feature,question,security`
-- #459 - add xsrv nmap subcommand (nmap scan all hosts or a specific host, output to html)? - **`-`** `feature,monitoring,question,security`
 - #451 - Document management system? - **`-`** `feature,question`
 - #445 - bookstack role? - **`2.0.0`** `feature,question`
 - #441 - openldap: allow restricting application access to groups/setup MemberOf overlay - **`-`** `enhancement,security`
@@ -108,7 +111,7 @@
 - #344 - nextcloud: replace onlyoffice integration with collabora/nextcloud office? - **`-`** `feature,question`
 - #323 - prometheus role? - **`-`** `feature,monitoring,question`
 - #322 - Frontail role? - **`-`** `feature,monitoring,question`
-- #317 - monitoring_utils: lynis: suggestion[]=BOOT-5264|Consider hardening system services - **`1.22.0`** `enhancement,security`
+- #317 - monitoring_utils: lynis: suggestion[]=BOOT-5264|Consider hardening system services - **`1.23.0`** `enhancement,security`
 - #310 - samba: ability to whitelist/blacklist files by extension? - **`-`** `enhancement,question,security`
 - #309 - apply postgresqltuner recommended settings? - **`-`** `enhancement,performance,question`
 - #280 - Samba Directory Controller or other Identity Management solution? - **`-`** `feature,question`
@@ -139,9 +142,9 @@
 - #96 - grafana role? - **`-`** `feature,monitoring,question`
 - #93 - VNC/other remote desktop server role? - **`-`** `feature,question`
 - #86 - Peertube role? - **`-`** `feature,question`
-- #78 - Adminer role - **`1.22.0`** `feature`
+- #78 - Adminer role - **`1.23.0`** `feature`
 - #70 - common: ssh: allow setting up endlessh? - **`-`** `feature,question,security`
-- #69 - IDS/IPS role? - **`1.22.0`** `question,security`
+- #69 - IDS/IPS role? - **`1.23.0`** `question,security`
 - #64 - RAID role? - **`-`** `feature,question`
 - #63 - pfSense role? - **`-`** `feature,question,wontfix`
 - #61 - GDPR compliance? - **`-`** `feature,question`
@@ -156,12 +159,12 @@
 - #43 - OSM routing service role? - **`-`** `feature,question`
 - #42 - OpenStreetMap/maps tileserver role? - **`-`** `feature,question`
 - #41 - network scanner (SANE) server role? - **`-`** `feature,question`
-- #40 - SearxNG role - **`1.22.0`** `feature`
+- #40 - SearxNG role - **`1.23.0`** `feature`
 - #39 - wallabag role? - **`-`** `feature,question`
 - #37 - Replace `ntp` with `chrony`? - **`2.0.0`** `question`
 - #35 - simple git server role? - **`-`** `feature,question,wontfix`
 - #34 - CentOS compatibility? - **`-`** `feature,question,wontfix`
-- #33 - Minecraft server role? - **`1.22.0`** `feature,question`
+- #33 - Minecraft server role? - **`1.23.0`** `feature,question`
 - #30 - Gitlab role? - **`-`** `feature,question`
 - #26 - dynamic DNS updater role? - **`2.0.0`** `feature`
 - #24 - DHCP/TFTP/PXE server role? - **`-`** `feature,question`
diff --git a/docs/conf.py b/docs/conf.py
index b0db1dcbe..a80092c90 100644
--- a/docs/conf.py
+++ b/docs/conf.py
@@ -5,8 +5,8 @@
 
 project = 'xsrv'
 author = 'nodiscc@gmail.com'
-version = '1.21.0'
-release = '1.21.0'
+version = '1.22.0'
+release = '1.22.0'
 html_show_copyright = True
 
 # -- General configuration ---------------------------------------------------
diff --git a/docs/configuration-variables.md b/docs/configuration-variables.md
index 55ebcbe6b..9b9dadb3c 100644
--- a/docs/configuration-variables.md
+++ b/docs/configuration-variables.md
@@ -310,7 +310,8 @@ apt_listbugs_ignore_list:
   - 1039472 # https://bugs.debian.org/1039472 - fixed, patch pending upload
   - 1043415 # https://bugs.debian.org/1043415 - not applicable to upstream/packagecloud packages
   - 1051003 # https://bugs.debian.org/1051003 - only affects pam_shield
-  - 1030284 # https://bugs.debian.org/1030284 # only affects arm64 architecture
+  - 1030284 # https://bugs.debian.org/1030284 - only affects arm64 architecture
+  - 1057715 # https://bugs.debian.org/1057715 - only affects i386 architecture
 
 ### DATE/TIME ###
 # yes/no: setup ntp time service
@@ -665,7 +666,7 @@ gitea_db_host: "/run/postgresql/" # /run/postgresql/ for a local postgresql data
 gitea_db_password: "" # leave empty for local postgresql database/peer authentication
 gitea_db_port: 5432 # usually 5432 for PostgreSQL, 3306 for MySQL
 # gitea version to install - https://github.com/go-gitea/gitea/releases.atom; remove leading v
-gitea_version: "1.21.3"
+gitea_version: "1.21.5"
 # HTTPS and SSL/TLS certificate mode for the gitea webserver virtualhost
 #   letsencrypt: acquire a certificate from letsencrypt.org
 #   selfsigned: generate a self-signed certificate
@@ -1203,7 +1204,7 @@ matrix_element_jitsi_preferred_domain: "meet.element.io"
 # when matrix_element_video_rooms_mode = 'element_call', domain of the Element Call instance to use for video calls
 matrix_element_call_domain: "call.element.io"
 # matrix element web client version (https://github.com/vector-im/element-web/releases)
-matrix_element_version: "1.11.52"
+matrix_element_version: "1.11.57"
 # element installation directory
 element_install_dir: "/var/www/{{ matrix_element_fqdn }}"
 # HTTPS and SSL/TLS certificate mode for the matrix-element webserver virtualhost
@@ -1586,7 +1587,7 @@ nextcloud_install_dir: "/var/www/{{ nextcloud_fqdn }}"
 # full public URL of your nextcloud installation (update this if you changed the install location to a subdirectory)
 nextcloud_full_url: "https://{{ nextcloud_fqdn }}/"
 # nextcloud version to install
-nextcloud_version: "28.0.1"
+nextcloud_version: "28.0.2"
 # base folder for shared files from other users
 nextcloud_share_folder: '/SHARED/'
 # default app to open on login. You can use comma-separated list of app names, so if the first  app is not enabled for a user then Nextcloud will try the second one, and so on.
diff --git a/docs/index.md b/docs/index.md
index 63c1c1cb3..fcd1c4b26 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -8,7 +8,7 @@
 
 [![](https://gitlab.com/nodiscc/xsrv/badges/master/pipeline.svg)](https://gitlab.com/nodiscc/xsrv/-/pipelines)
 [![](https://bestpractices.coreinfrastructure.org/projects/3647/badge)](https://bestpractices.coreinfrastructure.org/projects/3647)
-[![](https://img.shields.io/badge/latest%20release-1.21.0-blue)](https://gitlab.com/nodiscc/xsrv/-/releases)
+[![](https://img.shields.io/badge/latest%20release-1.22.0-blue)](https://gitlab.com/nodiscc/xsrv/-/releases)
 [![](https://img.shields.io/badge/docs-readthedocs-%232980B9)](https://xsrv.readthedocs.io)
 
 **Install, manage and run self-hosted network services and applications on your own server(s).**
diff --git a/docs/tags.md b/docs/tags.md
index cc55b2115..71150c2a4 100644
--- a/docs/tags.md
+++ b/docs/tags.md
@@ -3,7 +3,7 @@
 ```
   ╻ ╻┏━┓┏━┓╻ ╻
 ░░╺╋╸┗━┓┣┳┛┃┏┛
-  ╹ ╹┗━┛╹┗╸┗┛ v1.20.0
+  ╹ ╹┗━┛╹┗╸┗┛ v1.22.0
 [xsrv] USAGE: TAGS=tag1,tag2,tag3 xsrv deploy
 TAGS:
 apache-reverseproxy - setup apache custom reverseproxies
diff --git a/galaxy.yml b/galaxy.yml
index f4a42ccfa..488f992ff 100644
--- a/galaxy.yml
+++ b/galaxy.yml
@@ -1,6 +1,6 @@
 namespace: nodiscc
 name: xsrv
-version: 1.21.0
+version: 1.22.0
 readme: README.md
 authors:
   - nodiscc <nodiscc@gmail.com>
diff --git a/xsrv b/xsrv
index c4c1cc07c..f001314e3 100755
--- a/xsrv
+++ b/xsrv
@@ -55,7 +55,7 @@ projects_dir="${XSRV_PROJECTS_DIR:=$HOME/playbooks}"
 editor="${EDITOR:=nano}"
 ansible_tags="${TAGS:-}"
 pager="${PAGER:=nano --syntax=YAML --view +1 -}"
-version="1.21.0"
+version="1.22.0"
 ansible_version="9.2.0"
 xsrv_git_url="https://gitlab.com/nodiscc/xsrv"
 xsrv_upgrade_channel="${XSRV_UPGRADE_CHANNEL:=release}"