Post-X-Society/Post-Tyranny-Tech-Infrastructure
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Commit graph

  • 9b631232a8 Update README with user adjustments main Pieter 2026-01-27 09:04:10 +01:00
  • 9921b3f96c Add MIT License to project Pieter 2026-01-27 08:46:45 +01:00
  • 9a38486322 feat: Add brand recovery flow config and improve security Pieter 2026-01-26 09:17:08 +01:00
  • 12d9fc06e5 feat: Configure Diun with Docker Hub auth and watchRepo control Pieter 2026-01-24 13:16:25 +01:00
  • 39c57d583a feat: Add Nextcloud maintenance automation and cleanup Pieter 2026-01-24 12:44:54 +01:00
  • 60513601d4 fix: Improve container wait loop to actually wait 5 minutes Pieter 2026-01-23 21:41:14 +01:00
  • 6af727f665 fix: YAML syntax error in stage verification task Pieter 2026-01-23 21:36:30 +01:00
  • fb90d77dbc feat: Add improved Nextcloud upgrade playbook (v2) Pieter 2026-01-23 21:25:44 +01:00
  • 7e91e0e9de fix: Correct docker_compose_v2 pull parameter syntax Pieter 2026-01-23 21:13:49 +01:00
  • c56ba5d567 fix: Restart containers after backup before upgrade stages Pieter 2026-01-23 21:03:13 +01:00
  • 14256bcbce feat: Add Nextcloud major version upgrade playbook (v30→v32) Pieter 2026-01-23 20:58:25 +01:00
  • 27d59e4cd3 chore: Clean up Terraform/Tofu artifacts and improve .gitignore Pieter 2026-01-23 20:45:48 +01:00
  • e092931cb7 refactor: Remove Zitadel references and clean up templates Pieter 2026-01-23 20:40:34 +01:00
  • b6c9fa666d chore: Post-workshop state - January 23rd, 2026 Pieter 2026-01-23 20:36:31 +01:00
  • 825ed29b25 security: Remove exposed Kuma API key from defaults Pieter 2026-01-20 21:46:18 +01:00
  • 52d8e40348 docs: Remove Zitadel references and update documentation Pieter 2026-01-20 20:19:04 +01:00
  • 9dda882f63 chore: Remove internal documentation from repository Pieter 2026-01-20 20:12:40 +01:00
  • c8793bb910 chore: Ignore documentation and report markdown files Pieter 2026-01-20 20:10:37 +01:00
  • 55fd2be9e5 feat: Add DNS configuration and Docker improvements Pieter 2026-01-20 19:06:32 +01:00
  • 79635eeece feat: Add private network architecture with NAT gateway Pieter 2026-01-20 19:06:19 +01:00
  • 13685eb454 feat: Add infrastructure roles for multi-tenant architecture Pieter 2026-01-20 19:05:51 +01:00
  • f40acee0a3 feat: Add Python script for automated recovery flow creation Pieter 2026-01-20 19:05:22 +01:00
  • ecc09127ef feat: Enable automated password recovery flow configuration Pieter 2026-01-20 18:22:02 +01:00
  • 2a107cbf14 fix: Pass API token as command-line arg to recovery script Pieter 2026-01-20 18:13:10 +01:00
  • 7e2ade2d98 docs: Update enrollment flow task output with accurate information Pieter 2026-01-19 14:06:48 +01:00
  • 4906b13482 fix: Remove tenant modification from enrollment flow blueprint Pieter 2026-01-19 14:06:28 +01:00
  • 3e934f98a0 fix: Remove SMTP password from documentation Pieter 2026-01-18 19:05:22 +01:00
  • 9a3afa325b feat: Configure status.vrije.cloud and auto-monitor integration Pieter 2026-01-18 18:55:33 +01:00
  • 5fc95d7127 feat: Deploy Uptime Kuma for service monitoring Pieter 2026-01-18 18:48:48 +01:00
  • e04efa1cb1 feat: Move Hetzner API token to SOPS encrypted secrets Pieter 2026-01-18 18:17:15 +01:00
  • 8a88096619 🔧 fix: Optimize Collabora Online performance for 2-core servers Pieter 2026-01-18 18:04:19 +01:00
  • f795920f24 🚀 GREEN CLIENT DEPLOYMENT + CRITICAL SECURITY FIXES Pieter 2026-01-18 17:06:04 +01:00
  • df3a98714c docs: Complete blue client deployment test and security review Pieter 2026-01-17 21:40:12 +01:00
  • 62977285ad feat: Automate OpenTofu terraform.tfvars management Pieter 2026-01-17 21:34:05 +01:00
  • 9eb6f2028a feat: Use Hetzner Volumes for Nextcloud data storage (issue #18) Pieter 2026-01-17 21:07:48 +01:00
  • 0c4d536246 feat: Add version tracking and maintenance monitoring (issue #15) Pieter 2026-01-17 20:53:15 +01:00
  • bf4659f662 feat: Implement client registry system (issue #12) Pieter 2026-01-17 20:24:53 +01:00
  • ac4187d041 feat: Automate SSH key and secrets generation in deployment scripts Pieter 2026-01-17 20:04:29 +01:00
  • 071ed083f7 feat: Implement per-client SSH key isolation Pieter 2026-01-17 19:50:30 +01:00
  • e15fe78488 chore: Clean up client secrets directory Pieter 2026-01-17 19:32:06 +01:00
  • dc14b12688 Remove automated recovery flow configuration Pieter 2026-01-17 09:57:07 +01:00
  • 6cd6d7cc79 fix: Deploy all flow blueprints automatically (enrollment + recovery + 2FA) Pieter 2026-01-15 13:48:40 +01:00
  • fcc5b7bca2 feat: Add password recovery flow with email notifications Pieter 2026-01-15 13:36:43 +01:00
  • 918a43e820 feat: Add playbook to update enrollment flow and fix brand default Pieter 2026-01-15 13:29:26 +01:00
  • 847b2ad052 fix: Set invitation-only enrollment flow as default in brand Pieter 2026-01-15 13:08:27 +01:00
  • af2799170c fix: Change enrollment flow to invitation-only (not public) Pieter 2026-01-15 11:27:43 +01:00
  • 508825ca5a fix: Remove auto-login from enrollment flow to avoid redirect issue Pieter 2026-01-15 11:24:14 +01:00
  • 22e526d56b feat: Add public enrollment flow with invitation support Pieter 2026-01-15 11:22:53 +01:00
  • 90a92fca5a feat: Add automated invitation stage configuration for Authentik v1.2-invitation-stage Pieter 2026-01-14 16:17:44 +01:00
  • 2d94df6a8a feat: Add automated 2FA/MFA enforcement for Authentik v1.1-2fa-enforcement Pieter 2026-01-14 16:11:08 +01:00
  • 9571782382 fix: Restore Mailgun SMTP and Nextcloud OIDC integration v1.0-mailgun-oidc-fix Pieter 2026-01-14 16:04:00 +01:00
  • 669d70f98e feat: Implement Authentik flow configuration via blueprints Pieter 2026-01-14 14:15:58 +01:00
  • 325c9e6cf8 fix: Use correct Authentik API endpoint for readiness check Pieter 2026-01-14 13:47:17 +01:00
  • 64e76036b2 Fix bash loop syntax in API readiness check Pieter 2026-01-14 09:03:13 +01:00
  • 2ccdf4aebf Add Authentik API readiness check before running flow configuration Pieter 2026-01-14 08:54:47 +01:00
  • fb945c8737 Implement Authentik flow configuration via REST API Pieter 2026-01-14 08:39:43 +01:00
  • 45a41e3752 fix: Increase Nextcloud wait timeout to 300s and make invitation flow non-blocking Pieter 2026-01-13 13:14:47 +01:00
  • b300503e14 fix: Make invitation flow non-blocking like recovery flow Pieter 2026-01-13 12:36:08 +01:00
  • 301394df14 fix: Make recovery flow creation non-blocking Pieter 2026-01-13 11:26:15 +01:00
  • 5b38c4b5b4 fix: Copy flow scripts into container before executing them Pieter 2026-01-13 10:55:14 +01:00
  • 8c3553d89f feat: Add Authentik recovery and invitation flows Pieter 2026-01-13 10:43:16 +01:00
  • c1c690c565 feat: Add complete email configuration automation Pieter 2026-01-13 10:39:26 +01:00
  • 30b3b394a6 fix: Resolve Authentik email delivery issues Pieter 2026-01-13 09:52:23 +01:00
  • 671ebc985b fix: Remove blocking HTTPS check from Authentik bootstrap Pieter 2026-01-12 07:07:55 +01:00
  • d95862f522 security: Rotate exposed Authentik API token Pieter 2026-01-09 08:32:45 +01:00
  • bb41dbbbe3 security: Remove test script with exposed Authentik API token Pieter 2026-01-08 18:01:45 +01:00
  • 797d5b4e36 fix: Clear Nextcloud log after initial maintenance repairs Pieter 2026-01-08 17:45:59 +01:00
  • 7029de5bc9 fix: Improve Authentik bootstrap resilience Pieter 2026-01-08 17:39:42 +01:00
  • 5e46cf9cc4 chore: Add gitignore for secrets/clients to prevent plaintext files Pieter 2026-01-08 17:01:15 +01:00
  • b231ebec21 Merge branch 'feature/authentik-identity' Pieter 2026-01-08 16:56:41 +01:00
  • a5fe631717 feat: Complete Authentik SSO integration with automated OIDC setup feature/authentik-identity Pieter 2026-01-08 16:56:19 +01:00
  • 20856f7f18 Add Authentik identity provider to architecture Pieter 2026-01-07 11:23:13 +01:00
  • b951d9542e Remove Zitadel from project completely feature/nextcloud-deployment Pieter 2026-01-07 11:10:32 +01:00
  • 48ef4da920 Fix Zitadel deployment by removing FirstInstance variables Pieter 2026-01-06 16:43:57 +01:00
  • 282e248605 Security: Remove exposed Collabora password from docs, rotate credential Pieter 2026-01-06 10:54:14 +01:00
  • c7eeaad6df Add Collabora password to secrets - eliminate manual step Pieter 2026-01-06 10:47:02 +01:00
  • 9cdf49db48 Add Collabora Office, 2FA, cron container, and dual-cache (#4) Pieter 2026-01-06 10:34:42 +01:00
  • 8866411ef3 Implement fully automated OIDC/SSO provisioning (#4) Pieter 2026-01-06 09:49:16 +01:00
  • 93ce586b94 Deploy Nextcloud file sync/share with automated installation (#4) Pieter 2026-01-06 09:30:54 +01:00
  • 054e0e1e87
         Deploy Zitadel identity provider with DNS automation (#3) (#8) Pieter van Boheemen 2026-01-05 16:40:37 +01:00
  • 6bc8e508c6 Complete SOPS secrets management setup (#5) Pieter 2025-12-27 14:23:36 +01:00
  • 4e72ddf4ef Complete Ansible base configuration (#2) Pieter 2025-12-27 14:13:15 +01:00
  • 171cbfbb32 WIP: Ansible base configuration - common role (#2) Pieter 2025-12-27 14:00:22 +01:00
  • 0135bd360a Implement OpenTofu infrastructure provisioning (#1) Pieter 2025-12-27 13:48:42 +01:00
  • 3848510e1b Initial project structure with agent definitions and ADR Pieter 2025-12-24 12:12:17 +01:00