post: commit 440a412 in bojemoi

2026-04-05 22:08:33 +02:00
parent b550111526
commit 99b692979d
1 changed files with 84 additions and 0 deletions
--- a/content/posts/commits/2026-04-05-commit-440a412.md
+++ b/content/posts/commits/2026-04-05-commit-440a412.md
@@ -0,0 +1,84 @@
+---
+title: "[bojemoi] feat: make project distributable — templatize stacks + install wizard"
+date: 2026-04-05T22:08:33+02:00
+draft: false
+tags: ["commit", "bojemoi", "main"]
+categories: ["Git Activity"]
+summary: "Commit 440a412 par Betty dans bojemoi"
+author: "Betty"
+---
+
+## Commit `440a412`
+
+| | |
+|---|---|
+| **Repository** | bojemoi |
+| **Branch** | `main` |
+| **Author** | Betty |
+| **Hash** | `440a4121d9e4b987ff859b4649c06ec9b63dbbd3` |
+
+
+### Description
+
+- Add .env.example with 70+ documented variables (passwords, domains, IPs, paths)
+- Add install.sh: interactive wizard → generates .env → deploys stacks
+- Add scripts/create-secrets.sh: creates all Docker Swarm secrets interactively
+- Rewrite README.md: quickstart, architecture diagram, stack reference, ops guide
+- Templatize all 16 stack files: replace hardcoded values with ${VAR} references
+  - localhost:5000 → ${IMAGE_REGISTRY}
+  - bojemoi.lab → ${LAB_DOMAIN}
+  - /opt/bojemoi → ${BOJEMOI_BASE_PATH}
+  - passwords (bojemoi, bojemoi2, totototo) → ${POSTGRES_PASSWORD}, ${FARADAY_PASSWORD}, etc.
+  - IPs, node hostnames, Telegram chat ID, C2 redirectors → env vars
+- Update .gitignore: add .env.local, .env.*.local
+
+Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
+
+### Files Changed
+
+```
+A	.env.example
+M	.gitignore
+M	README.md
+A	install.sh
+A	scripts/create-secrets.sh
+M	stack/01-service-hl.yml
+M	stack/01-suricata-host.yml
+M	stack/40-service-borodino.yml
+M	stack/45-service-ml-threat-intel.yml
+M	stack/46-service-razvedka.yml
+M	stack/47-service-vigie.yml
+M	stack/48-service-dozor.yml
+M	stack/49-service-mcp.yml
+M	stack/50-service-trivy.yml
+M	stack/51-service-ollama.yml
+M	stack/55-service-sentinel.yml
+M	stack/56-service-dvar.yml
+M	stack/60-service-telegram.yml
+M	stack/65-service-medved.yml
+```
+
+### Diff Summary
+
+```
+ .env.example                         | 224 +++++++++++++++++++
+ .gitignore                           |   2 +
+ README.md                            | 225 +++++++++++++++----
+ install.sh                           | 415 +++++++++++++++++++++++++++++++++++
+ scripts/create-secrets.sh            | 212 ++++++++++++++++++
+ stack/01-service-hl.yml              | 200 ++++++++---------
+ stack/01-suricata-host.yml           |  18 +-
+ stack/40-service-borodino.yml        | 136 ++++++------
+ stack/45-service-ml-threat-intel.yml |   8 +-
+ stack/46-service-razvedka.yml        |   4 +-
+ stack/47-service-vigie.yml           |   4 +-
+ stack/48-service-dozor.yml           |   6 +-
+ stack/49-service-mcp.yml             |   2 +-
+ stack/50-service-trivy.yml           |   2 +-
+ stack/51-service-ollama.yml          |  40 +++-
+ stack/55-service-sentinel.yml        |   4 +-
+ stack/56-service-dvar.yml            |   4 +-
+ stack/60-service-telegram.yml        |   4 +-
+ stack/65-service-medved.yml          |   2 +-
+ 19 files changed, 1280 insertions(+), 232 deletions(-)
+```