it-team/lmn-client
3
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
792 commits 5 branches 0 tags 8 MiB
Commit graph

792 commits

This branch
This branch
All branches
Author SHA1 Message Date
Raphael Dannecker
93a0f07846 Apply libvirt firewall policy only on devices with vm_support 2025-12-17 13:25:49 +01:00
Raphael Dannecker
405fed1fcf No longer logout when /lmn/media directory not present (not present on localhome devices anymore) 2025-12-15 12:30:16 +01:00
Raphael Dannecker
241f13d136 Add domjoin user, password and disk_encryption passphrase to inventory 2025-12-15 12:26:09 +01:00
Raphael Dannecker
e45275181f Encryption role for luks encrypted drives including TPM2 support 2025-12-15 12:19:17 +01:00
Raphael Dannecker
b807d2142e Reboot system after initial ansible-run 2025-12-15 12:18:53 +01:00
Raphael Dannecker
37b8b94c9d Make domjoin user and password configurable via inventory and join domain only when necessary 2025-12-15 12:18:29 +01:00
Raphael Dannecker
c53e43f4ce Tag tasks for basic installation 2025-12-15 12:18:09 +01:00
Raphael Dannecker
3bfc3de6a1 Allow using tags using import_role instead of include_role 2025-12-15 12:17:43 +01:00
Raphael Dannecker
9797ac3d4e Add package php-sqlite3 (required for teaching purposes) 2025-12-11 14:23:21 +01:00
Raphael Dannecker
51ae283d6d Activate outbound traffic restriction in exam-mode for PCRooms 2025-12-11 08:23:28 +01:00
Raphael Dannecker
f032517a94 Restrict outbound traffic in exam-mode 2025-12-10 17:16:37 +01:00
Raphael Dannecker
857b834232 Fix NETHOME detection issue for examusers, staff and parents 2025-12-10 17:16:00 +01:00
Raphael Dannecker
63dec2f8b7 Add hosts to inventory 2025-12-04 08:16:34 +01:00
Raphael Dannecker
e7b2f7edd9 Provide a skript to delete VM disks in /lmn/vm 2025-11-27 17:03:49 +01:00
Raphael Dannecker
3ac7e99bb0 Due to new media tables, change the default audio output for some PCs 2025-11-27 16:02:10 +01:00
Raphael Dannecker
98bdee5f4d Add package libsqlite3-dev (required for teaching purposes) 2025-11-27 15:58:27 +01:00
Raphael Dannecker
e8015d70d1 Update browser bookmarks (webuntis) 2025-11-27 15:58:20 +01:00
Andreas B. Mundt
15cd06f4d6 Fix type=user VMs 2025-11-17 12:30:58 +01:00
Raphael Dannecker
fb9ffa53bb Fix graphic issues in Chromium for specific video cards 2025-11-10 17:28:56 +01:00
Andreas B. Mundt
fee6a0bc18 Fixes for trixie livebox images (dracut) 2025-11-10 08:18:53 +01:00
Raphael Dannecker
f95b220aa0 Allow multiple entries for debian and match IPv4 more strictly 2025-10-29 16:40:12 +01:00
Raphael Dannecker
148a478121 Add new hosts to inventory 2025-10-08 12:22:50 +02:00
Raphael Dannecker
9a83ebca6b Fix screen resolution for C157 2025-10-07 10:34:53 +02:00
Raphael Dannecker
8ec701595a Prevent simultaneous logins from multiple users (multi-seat mode) 
Because the home directory is mounted via pam_mount using the user's Kerberos ticket,
simultaneous login of two users is not possible.
 2025-10-06 20:20:59 +02:00
Raphael Dannecker
cb37d52271 Eliminate bind mounts that are no longer required for virtual machines (VMs) 2025-10-06 20:13:58 +02:00
Raphael Dannecker
b4caaf036d Implement timeout for krb5 ticket retrieval during VPN connections 2025-10-06 13:12:08 +02:00
Raphael Dannecker
61833201cb Remove the Nextcloud/WebDAV integration 2025-10-05 16:49:16 +02:00
Raphael Dannecker
998bcb515a Add firmware-sof-signed package for audio output on different Lenovo devices 2025-10-05 16:01:03 +02:00
Raphael Dannecker
ad9c0e7243 zulucrypt-gui package has been removed from Trixie 2025-10-05 15:55:59 +02:00
Raphael Dannecker
e83616292f Set firefox and thunderbird as default applications 2025-10-05 15:55:25 +02:00
Raphael Dannecker
62f2ac58f4 Freeplane package has been removed from Trixie 2025-10-05 15:54:13 +02:00
Raphael Dannecker
34fbb44b22 Fix Ansible boolean syntax for compatibility with new version 2025-10-05 15:51:14 +02:00
Raphael Dannecker
fdc44b8a6d Move outbound traffic restriction from teacher pc to classromm pcs 2025-10-02 08:54:05 +02:00
Raphael Dannecker
29d77f3ba3 Due to new media tables, the audio output on some devices has changed 2025-10-02 08:40:41 +02:00
Raphael Dannecker
f69cc6efb7 Add more links to firefox bookmarks 2025-10-02 08:05:00 +02:00
Raphael Dannecker
191e953bb0 Force vminfo.service to run on every vm start 2025-10-02 08:04:44 +02:00
Raphael Dannecker
51d4e34a07 No longer output error messages from the vminfo script to stdout 
The error messages were corrupting the contents of the .vminfo.json file.
Error messages are now sent to stderr.
 2025-10-02 08:04:00 +02:00
Raphael Dannecker
2660cc05c8 Fix home directory for localhomes in vminfo.service 2025-10-02 08:03:43 +02:00
Raphael Dannecker
1b1758809a Force use of /lmn/media/USER share for legacy VMs 
- Introduced VMLEGACY environment variable to ensure that old VMs
  utilize the legacy media share located at /lmn/media/USER.
- This change is aimed at maintaining compatibility with older
  virtual machines that rely on the previous media share structure.
 2025-10-02 08:03:24 +02:00
Raphael Dannecker
a7c879d267 Sync desktop starters from fileserver instead of server 2025-10-02 08:02:22 +02:00
Raphael Dannecker
e875ac00a4 Configure SSSD for hourly ticket lifetime checks and renewal 2025-10-02 08:01:05 +02:00
Raphael Dannecker
b688a8df59 Refactor VM volume mounting 
- Replace bind-mounts on /lmn/media/$USER with separate
  mounting for Home and Share SMB shares in the VM.
- Update vm-run to start virtiofsd with /lmn/media/$USER
  (/home/$USER on localhome machines).
- Use vm-vminfo to generate a JSON file containing user
  information, including Username, Groups, printer list
  krb5-ticket and some more
- Configure vminfo.service (systemd-timer) to periodically
  call vm-vminfo.
- Ensure krb5-ticket (TGT) is injected into the Windows VM.
- Mount SMB-Home and SMB-Share shares as part of the new structure.
 2025-10-02 08:00:13 +02:00
Raphael Dannecker
efd48de6c7 The virt-viewer package must be explicitly selected for trixie 2025-06-05 13:02:12 +02:00
Raphael Dannecker
db6197d0a0 Prevents the --options option in vm-run from interfering with other options 2025-06-05 12:48:10 +02:00
Raphael Dannecker
563ac18483 Add host to inventory 2025-06-04 11:20:58 +02:00
Raphael Dannecker
76c7cc042a Configure display resolution / audio out for specific clients 2025-06-04 10:49:47 +02:00
Raphael Dannecker
84865291e0 Allow multiple macvtap-VMs to use the same MAC address 2025-06-04 10:26:56 +02:00
Raphael Dannecker
6e119e0129 Omit backports, because Trixie does not have backports yet 2025-06-04 10:21:18 +02:00
Andreas B. Mundt
6063e65089 Fixes for trixie 2025-05-14 12:33:39 +02:00
Andreas B. Mundt
0e0950d184 Fix conditionals for ansible version in trixie 2025-05-14 12:33:39 +02:00