luke/ansible-roles/pleroma/otp/templates, branch mainAnsible roles for nth.io infrastructure
https://src.nth.io/luke/ansible-roles/atom?h=main2026-04-26T00:54:49+00:00Build all roles from source with versioned artifacts2026-04-26T00:54:49+00:00Luke Hoerstenluke@hoersten.org2026-04-26T00:54:49+00:00urn:sha1:6a8cb5f10557733f1521035d57a191b12832d634
- Add pleroma/build role to compile from source (OTP binaries no longer published)
- Install Elixir 1.18.3 manually on Ubuntu Noble (ships 1.14, needs 1.15+)
- Standardize all build roles to produce versioned .tar.gz artifacts
- Add version defaults to all server roles (bin, dendrite, nostr/relayer)
- Switch server roles from get_url to unarchive for .tar.gz installs
- Add build_srv_dir variable to all build roles
- Deploy pleroma styles.json so custom FE themes appear in picker
- Fix pleroma OTP install: version check, root ownership, auto-cleanup old releases
- Fix pleroma config: log level :warn -> :warning, remove availableStyles
- Add wait_for grafana readiness before dashboard install
- Set minecraft ops changed_when: false
Harden role security: file permissions, service binding, no_log, strict defaults2026-04-06T02:19:55+00:00Luke Hoerstenluke@hoersten.org2026-04-06T02:19:55+00:00urn:sha1:06b69bd8def0aae07d3fb565d19193be1a8dfe20
- Add no_log: true to tasks that handle passwords/secrets
- Tighten config file permissions (0644 -> 0600/0640 where appropriate)
- Bind pleroma to 127.0.0.1 instead of 0.0.0.0
- Tighten ergo unix socket mode 0777 -> 0770
- Remove weak defaults; roles now fail explicitly if required vars not set
Version updates and fixed excessive logging on web server.2025-01-04T01:36:28+00:00Luke Hoerstenluke@hoersten.org2025-01-04T01:36:28+00:00urn:sha1:b180fe427c44da015874dbf86c326f6e6bcd0aa8Lots of updates and fixes for Ubuntu 24.04 Noble.2024-10-07T20:25:37+00:00Luke Hoerstenluke@hoersten.org2024-10-07T20:25:37+00:00urn:sha1:27739609362360b2bf533f5a59106ce52c8d4b9fTons of updates to fix migration to new server.2024-02-05T02:27:19+00:00Luke Hoerstenluke@hoersten.org2024-02-05T02:27:19+00:00urn:sha1:04edbf561c44e28753cbbaa3870b23b220cc644cBacked out changeset 10051617d0752022-11-07T04:03:27+00:00Luke Hoerstenluke@hoersten.org2022-11-07T04:03:27+00:00urn:sha1:3cf3889b92cf553ade47f51d0130d69e67e7f992Fixed proxy pass.2022-11-07T00:23:19+00:00Luke Hoerstenluke@hoersten.org2022-11-07T00:23:19+00:00urn:sha1:464cbc372635cd82c98749931ac6901b1f81e968Changed pleroma logging to "warn" status.2022-09-05T16:14:16+00:00Luke Hoerstenluke@hoersten.org2022-09-05T16:14:16+00:00urn:sha1:d39e7c2142f5920a4e4b135eb92a1e44a863dd6dRemoved matrix specific locations from pleroma nginx config.2021-07-20T01:32:56+00:00Luke Hoerstenluke@hoersten.org2021-07-20T01:32:56+00:00urn:sha1:34672aa5296c8dd6293b5e6460cbd097c37203f8Tons of updates.2021-07-18T22:43:46+00:00Luke Hoerstenluke@hoersten.org2021-07-18T22:43:46+00:00urn:sha1:9bb76f57d55ca5a9e502a34e504a21904d4157a1