From c3200c91db8388d11963a2ffbfe3580e0a20b73c Mon Sep 17 00:00:00 2001
From: Lukas Bestle <mail@lukasbestle.com>
Date: Mon, 1 Jun 2020 14:04:35 +0200
Subject: [PATCH] Initial commit

---
 ansible.cfg                                   |    6 +
 hosts                                         |   14 +
 requirements.yml                              |    5 +
 .../home/.config/fish/functions/radicale.fish |    3 +
 roles/dav/files/home/bin/radicale_to_ics      |   54 +
 roles/dav/files/home/etc/services.d/.gitkeep  |    0
 roles/dav/files/home/radicale/rights          |   24 +
 .../files/home/radicale/storage/.gitignore    |    3 +
 roles/dav/handlers/main.yml                   |    8 +
 roles/dav/tasks/main.yml                      |   63 +
 roles/dav/templates/config.j2                 |   16 +
 roles/dav/templates/service.ini.j2            |    4 +
 roles/dav/templates/users.j2                  |    3 +
 .../home/.config/fish/functions/gitea.fish    |    3 +
 roles/git/files/home/etc/services.d/.gitkeep  |    0
 .../git/files/home/gitea/custom/conf/.gitkeep |    0
 .../home/gitea/custom/public/img/favicon.png  |  Bin 0 -> 6341 bytes
 .../home/gitea/custom/public/img/gitea-lq.png |  Bin 0 -> 26900 bytes
 .../gitea/custom/public/img/gitea-safari.svg  |    1 +
 .../home/gitea/custom/public/img/gitea-sm.png |  Bin 0 -> 2583 bytes
 .../custom/templates/base/footer_content.tmpl |   24 +
 .../custom/templates/base/head_navbar.tmpl    |  133 ++
 roles/git/files/home/gitea/data/.gitkeep      |    0
 roles/git/files/home/gitea/log/.gitkeep       |    0
 roles/git/files/home/gitea/repos/.gitkeep     |    0
 roles/git/handlers/main.yml                   |    8 +
 roles/git/tasks/main.yml                      |   47 +
 roles/git/templates/app.ini.j2                |   73 ++
 roles/git/templates/service.ini.j2            |    5 +
 roles/homebrew/handlers/main.yml              |    3 +
 roles/homebrew/tasks/main.yml                 |   13 +
 roles/host-site/tasks/main.yml                |   11 +
 roles/host-site/templates/index.html.j2       |  127 ++
 roles/mail-redirect/tasks/main.yml            |   15 +
 roles/mail/tasks/main.yml                     |   59 +
 roles/mail/templates/muttrc.j2                |   32 +
 roles/mail/templates/qmail-dated.j2           |    3 +
 roles/terminal/files/authorized_keys          |    4 +
 .../dotfiles/.composer/vendor/bin/.gitkeep    |    0
 .../dotfiles/.config/fish/conf.d/pkgs.fish    |   60 +
 .../files/dotfiles/.config/fish/config.fish   |   46 +
 .../.config/fish/functions/fish_greeting.fish |    3 +
 .../.config/fish/functions/nsreverse.fish     |   21 +
 .../.config/fish/functions/nsreverse6.fish    |   21 +
 .../files/dotfiles/.config/fish/pkgs/.gitkeep |    0
 .../files/dotfiles/.config/git/.gitkeep       |    0
 .../dotfiles/.config/welcome/colossal.flf     | 1136 +++++++++++++++++
 .../.config/welcome/summarizers/01-date.sh    |    6 +
 .../.config/welcome/summarizers/02-uptime.sh  |  111 ++
 .../.config/welcome/summarizers/03-quota.sh   |   12 +
 .../.config/welcome/summarizers/04-ram.sh     |    8 +
 .../dotfiles/.config/welcome/warners/.gitkeep |    0
 .../files/dotfiles/.local/bin/.gitkeep        |    0
 roles/terminal/handlers/main.yml              |    3 +
 roles/terminal/tasks/main.yml                 |   58 +
 roles/terminal/templates/gitconfig.j2         |   17 +
 .../web/files/home/.config/projectr/.gitkeep  |    0
 roles/web/files/home/bin/qdated-generate      |    5 +
 roles/web/tasks/main.yml                      |  102 ++
 roles/web/templates/deploy.php.j2             |  172 +++
 run.sh                                        |    9 +
 site.yml                                      |   46 +
 vars/config.yml                               |   51 +
 vars/installs.yml                             |   20 +
 vars/vault.yml                                |   30 +
 65 files changed, 2701 insertions(+)
 create mode 100644 ansible.cfg
 create mode 100644 hosts
 create mode 100644 requirements.yml
 create mode 100644 roles/dav/files/home/.config/fish/functions/radicale.fish
 create mode 100755 roles/dav/files/home/bin/radicale_to_ics
 create mode 100644 roles/dav/files/home/etc/services.d/.gitkeep
 create mode 100644 roles/dav/files/home/radicale/rights
 create mode 100644 roles/dav/files/home/radicale/storage/.gitignore
 create mode 100644 roles/dav/handlers/main.yml
 create mode 100644 roles/dav/tasks/main.yml
 create mode 100644 roles/dav/templates/config.j2
 create mode 100644 roles/dav/templates/service.ini.j2
 create mode 100644 roles/dav/templates/users.j2
 create mode 100644 roles/git/files/home/.config/fish/functions/gitea.fish
 create mode 100644 roles/git/files/home/etc/services.d/.gitkeep
 create mode 100644 roles/git/files/home/gitea/custom/conf/.gitkeep
 create mode 100644 roles/git/files/home/gitea/custom/public/img/favicon.png
 create mode 100644 roles/git/files/home/gitea/custom/public/img/gitea-lq.png
 create mode 100644 roles/git/files/home/gitea/custom/public/img/gitea-safari.svg
 create mode 100644 roles/git/files/home/gitea/custom/public/img/gitea-sm.png
 create mode 100644 roles/git/files/home/gitea/custom/templates/base/footer_content.tmpl
 create mode 100644 roles/git/files/home/gitea/custom/templates/base/head_navbar.tmpl
 create mode 100644 roles/git/files/home/gitea/data/.gitkeep
 create mode 100644 roles/git/files/home/gitea/log/.gitkeep
 create mode 100644 roles/git/files/home/gitea/repos/.gitkeep
 create mode 100644 roles/git/handlers/main.yml
 create mode 100644 roles/git/tasks/main.yml
 create mode 100644 roles/git/templates/app.ini.j2
 create mode 100644 roles/git/templates/service.ini.j2
 create mode 100644 roles/homebrew/handlers/main.yml
 create mode 100644 roles/homebrew/tasks/main.yml
 create mode 100644 roles/host-site/tasks/main.yml
 create mode 100644 roles/host-site/templates/index.html.j2
 create mode 100644 roles/mail-redirect/tasks/main.yml
 create mode 100644 roles/mail/tasks/main.yml
 create mode 100644 roles/mail/templates/muttrc.j2
 create mode 100644 roles/mail/templates/qmail-dated.j2
 create mode 100644 roles/terminal/files/authorized_keys
 create mode 100644 roles/terminal/files/dotfiles/.composer/vendor/bin/.gitkeep
 create mode 100644 roles/terminal/files/dotfiles/.config/fish/conf.d/pkgs.fish
 create mode 100644 roles/terminal/files/dotfiles/.config/fish/config.fish
 create mode 100644 roles/terminal/files/dotfiles/.config/fish/functions/fish_greeting.fish
 create mode 100644 roles/terminal/files/dotfiles/.config/fish/functions/nsreverse.fish
 create mode 100644 roles/terminal/files/dotfiles/.config/fish/functions/nsreverse6.fish
 create mode 100644 roles/terminal/files/dotfiles/.config/fish/pkgs/.gitkeep
 create mode 100644 roles/terminal/files/dotfiles/.config/git/.gitkeep
 create mode 100644 roles/terminal/files/dotfiles/.config/welcome/colossal.flf
 create mode 100755 roles/terminal/files/dotfiles/.config/welcome/summarizers/01-date.sh
 create mode 100755 roles/terminal/files/dotfiles/.config/welcome/summarizers/02-uptime.sh
 create mode 100755 roles/terminal/files/dotfiles/.config/welcome/summarizers/03-quota.sh
 create mode 100755 roles/terminal/files/dotfiles/.config/welcome/summarizers/04-ram.sh
 create mode 100644 roles/terminal/files/dotfiles/.config/welcome/warners/.gitkeep
 create mode 100644 roles/terminal/files/dotfiles/.local/bin/.gitkeep
 create mode 100644 roles/terminal/handlers/main.yml
 create mode 100644 roles/terminal/tasks/main.yml
 create mode 100644 roles/terminal/templates/gitconfig.j2
 create mode 100644 roles/web/files/home/.config/projectr/.gitkeep
 create mode 100755 roles/web/files/home/bin/qdated-generate
 create mode 100644 roles/web/tasks/main.yml
 create mode 100644 roles/web/templates/deploy.php.j2
 create mode 100755 run.sh
 create mode 100644 site.yml
 create mode 100644 vars/config.yml
 create mode 100644 vars/installs.yml
 create mode 100755 vars/vault.yml

diff --git a/ansible.cfg b/ansible.cfg
new file mode 100644
index 0000000..c4ec182
--- /dev/null
+++ b/ansible.cfg
@@ -0,0 +1,6 @@
+[defaults]
+inventory = hosts
+transport = ssh
+
+[ssh_connection]
+pipelining = true
diff --git a/hosts b/hosts
new file mode 100644
index 0000000..1a19aba
--- /dev/null
+++ b/hosts
@@ -0,0 +1,14 @@
+[dav]
+kodos-cdddav.codesignd.net
+
+[git]
+kodos-cddgit.codesignd.net
+
+[mail]
+kodos-cddmail[1:2].codesignd.net
+
+[misc]
+kodos-cddmisc1.codesignd.net
+
+[web]
+kodos-cddweb[1:2].codesignd.net
diff --git a/requirements.yml b/requirements.yml
new file mode 100644
index 0000000..a4e1ab1
--- /dev/null
+++ b/requirements.yml
@@ -0,0 +1,5 @@
+---
+- src: snapstromegon.uberspace_mail_catchall
+- src: snapstromegon.uberspace_mail_user
+- src: snapstromegon.uberspace_web_backend
+- src: snapstromegon.uberspace_web_domain
diff --git a/roles/dav/files/home/.config/fish/functions/radicale.fish b/roles/dav/files/home/.config/fish/functions/radicale.fish
new file mode 100644
index 0000000..fcf443c
--- /dev/null
+++ b/roles/dav/files/home/.config/fish/functions/radicale.fish
@@ -0,0 +1,3 @@
+function radicale
+    ~/.local/bin/radicale --config ~/radicale/config $argv
+end
diff --git a/roles/dav/files/home/bin/radicale_to_ics b/roles/dav/files/home/bin/radicale_to_ics
new file mode 100755
index 0000000..008538e
--- /dev/null
+++ b/roles/dav/files/home/bin/radicale_to_ics
@@ -0,0 +1,54 @@
+#!/usr/bin/env bash
+########################################################################
+# 2018-11-25 Lukas Bestle <project-shell@lukasbestle.com>
+########################################################################
+# Concats a directory of ICS files to a single ICS file for sharing
+#
+# Usage: radicale_to_ics <directory> <output.ics> [<calname>]
+#
+#        <directory>   Directory with ICS files (e.g. from Radicale)
+#        <output.ics>  Output path for the concatenated ICS file
+#        <calname>     Optional name of the ICS file
+#                      (displayed in clients)
+########################################################################
+
+directory="$1"
+output="$2"
+calname="$3"
+
+if [[ -z "$output" ]]; then
+    # Print help
+    echo -e "\033[1mUsage:\033[0m \033[34mradicale_to_ics\033[0m <directory> <output.ics> [<calname>]"
+    exit 1
+fi
+
+# Place temporary file right next to the output file
+# Will be moved when done with processing
+tmp="$output.tmp"
+
+# iCalendar header
+echo "BEGIN:VCALENDAR" > "$tmp"
+echo "VERSION:2.0" >> "$tmp"
+echo "X-WR-TIMEZONE:Europe/Berlin" >> "$tmp"
+echo "CALSCALE:GREGORIAN" >> "$tmp"
+echo "METHOD:PUBLISH" >> "$tmp"
+
+# Add calendar name if given
+if [[ -n "$calname" ]]; then
+    echo "X-WR-CALNAME:$calname" >> "$tmp"
+fi
+
+# Concat all event files in the given directory
+# unless the directory is empty
+if [[ "$(ls "$directory")" ]]; then
+    for file in "$directory"/*; do
+        # Extract all VEVENT elements (supports multiple per input file)
+        sed '/^BEGIN:VEVENT/, /^END:VEVENT/!d' "$file" >> "$tmp"
+    done
+fi
+
+# Add iCalendar footer
+echo "END:VCALENDAR" >> "$tmp"
+
+# Move to final destination
+mv "$tmp" "$output"
diff --git a/roles/dav/files/home/etc/services.d/.gitkeep b/roles/dav/files/home/etc/services.d/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/roles/dav/files/home/radicale/rights b/roles/dav/files/home/radicale/rights
new file mode 100644
index 0000000..30f3a43
--- /dev/null
+++ b/roles/dav/files/home/radicale/rights
@@ -0,0 +1,24 @@
+# The user "lukas" can read and write any collection
+[admin]
+user: lukas
+collection: .*
+permissions: RrWw
+
+# Allow reading root collection for authenticated users (required for the web interface)
+[root]
+user: .+
+collection:
+permissions: R
+
+# Allow reading and writing principal collection (same as user name)
+[principal]
+user: .+
+collection: {user}
+permissions: RW
+
+# Allow reading and writing calendars and address books that are direct
+# children of the principal collection
+[calendars]
+user: .+
+collection: {user}/[^/]+
+permissions: rw
diff --git a/roles/dav/files/home/radicale/storage/.gitignore b/roles/dav/files/home/radicale/storage/.gitignore
new file mode 100644
index 0000000..7cced80
--- /dev/null
+++ b/roles/dav/files/home/radicale/storage/.gitignore
@@ -0,0 +1,3 @@
+.Radicale.cache
+.Radicale.lock
+.Radicale.tmp-*
diff --git a/roles/dav/handlers/main.yml b/roles/dav/handlers/main.yml
new file mode 100644
index 0000000..3a4bdc0
--- /dev/null
+++ b/roles/dav/handlers/main.yml
@@ -0,0 +1,8 @@
+---
+- name: Reread service config
+  command: supervisorctl reread
+
+- name: Restart Radicale
+  supervisorctl:
+    name: radicale
+    state: restarted
diff --git a/roles/dav/tasks/main.yml b/roles/dav/tasks/main.yml
new file mode 100644
index 0000000..fa714cf
--- /dev/null
+++ b/roles/dav/tasks/main.yml
@@ -0,0 +1,63 @@
+---
+- name: Add DAV domain to Uberspace config
+  import_role:
+    name: snapstromegon.uberspace_web_domain
+  vars:
+    domain: dav.bstl.xyz
+
+- name: Copy config to home directory
+  copy:
+    src: home/
+    dest: "{{ ansible_env.HOME }}/"
+    mode: preserve
+  tags: radicale-update
+  notify: Restart Radicale
+
+- name: Copy service config
+  template:
+    src: service.ini.j2
+    dest: "{{ ansible_env.HOME }}/etc/services.d/radicale.ini"
+  notify: Reread service config
+
+- name: Copy app config
+  template:
+    src: config.j2
+    dest: "{{ ansible_env.HOME }}/radicale/config"
+  tags: radicale-update
+  notify: Restart Radicale
+
+- name: Set up Radicale users
+  template:
+    src: users.j2
+    dest: "{{ ansible_facts.env.HOME }}/radicale/users"
+  tags: radicale-update
+  notify: Restart Radicale
+
+- name: Configure web backend
+  import_role:
+    name: snapstromegon.uberspace_web_backend
+  vars:
+    route: dav.bstl.xyz
+    http:
+      port: 8080
+
+- name: Install and update Radicale
+  pip:
+    name: radicale[bcrypt]
+    state: latest
+    extra_args: --user
+    executable: pip3.8
+  tags: radicale-update
+  notify: Restart Radicale
+
+- name: Initialize storage repository
+  command:
+    chdir: "{{ ansible_env.HOME }}/radicale/storage"
+    cmd: git init
+    creates: "{{ ansible_env.HOME }}/radicale/storage/.git"
+
+- name: Set up garbage collection cronjob
+  cron:
+    name: "Garbage-collection"
+    special_time: weekly
+    job: git --git-dir {{ ansible_env.HOME }}/radicale/storage/.git gc
diff --git a/roles/dav/templates/config.j2 b/roles/dav/templates/config.j2
new file mode 100644
index 0000000..44d4f70
--- /dev/null
+++ b/roles/dav/templates/config.j2
@@ -0,0 +1,16 @@
+[server]
+hosts = 0.0.0.0:8080
+
+[auth]
+type = htpasswd
+htpasswd_filename = {{ ansible_env.HOME }}/radicale/users
+htpasswd_encryption = bcrypt
+realm = bstl DAV - Password Required
+
+[rights]
+type = from_file
+file = {{ ansible_env.HOME }}/radicale/rights
+
+[storage]
+filesystem_folder = {{ ansible_env.HOME }}/radicale/storage
+hook = git add -A && (git diff --cached --quiet || git commit -m "Changes by "%(user)s)
diff --git a/roles/dav/templates/service.ini.j2 b/roles/dav/templates/service.ini.j2
new file mode 100644
index 0000000..25d013c
--- /dev/null
+++ b/roles/dav/templates/service.ini.j2
@@ -0,0 +1,4 @@
+[program:radicale]
+command={{ ansible_env.HOME }}/.local/bin/radicale --config {{ ansible_env.HOME }}/radicale/config
+autostart=yes
+autorestart=yes
diff --git a/roles/dav/templates/users.j2 b/roles/dav/templates/users.j2
new file mode 100644
index 0000000..78601eb
--- /dev/null
+++ b/roles/dav/templates/users.j2
@@ -0,0 +1,3 @@
+{% for username, password in dav_users.items() %}
+{{ username }}:{{ password }}
+{% endfor %}
diff --git a/roles/git/files/home/.config/fish/functions/gitea.fish b/roles/git/files/home/.config/fish/functions/gitea.fish
new file mode 100644
index 0000000..8f7d4f8
--- /dev/null
+++ b/roles/git/files/home/.config/fish/functions/gitea.fish
@@ -0,0 +1,3 @@
+function gitea
+    env GITEA_WORK_DIR=$HOME/gitea ~/.linuxbrew/bin/gitea $argv
+end
diff --git a/roles/git/files/home/etc/services.d/.gitkeep b/roles/git/files/home/etc/services.d/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/roles/git/files/home/gitea/custom/conf/.gitkeep b/roles/git/files/home/gitea/custom/conf/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/roles/git/files/home/gitea/custom/public/img/favicon.png b/roles/git/files/home/gitea/custom/public/img/favicon.png
new file mode 100644
index 0000000000000000000000000000000000000000..51fc51f1163678d9500059f08bf5546396cb5a7c
GIT binary patch
literal 6341
zcmV;$7&_;PP)<h;3K|Lk000e1NJLTq006WA006WI0{{R33KRAK0002MP)t-s@$vEU
z^78WW^78Za^7Qud_W1Jc==0^;^V!1l&8zb2<nr(A^vRs_zJl|(Z}YWg@~Kht)422A
z&h)fk^tWpBxpDNmbo9J;^uvwxxpDEUVei7E@4A-nwT<tuf$p76?wLI8kR|Po8SRY`
z?Ti8JgaGY^0PT+)?T;Vsk}U0y8tsVy?x=D3_4m@{-RSP?j?J?Gwu7hD!6vzj0JMD#
zxQMyj&1J)%6}X9Z$EO6ih#$F%3b=?uy^;*Mic!Co-O_hZ000-jNkl<ZcmafyfvUwY
z2tz&n|Brr5>~Uc{F0g7B)kJI+1yzsj53ZqYK|6!i^~S-Nxi?B-8W(12v!$@LFu@4G
z=s|R_w$Y6*p+){BZ4XKN^G$RPjU>$VKHs~O3g1~{sURKS^#IzKy8#H!_4HB0LY;Gt
zEAiz(#)Zi5dZ?{oQDr*W^W09Z$1s+_xe8nrDVen)xgJg}*Ta-0ZTZVRC+#pE#%GJQ
z0;Ii{^T^_K!s@r(Zsm8<--T?eh9n(3En;PrSac?yq+8l)Xc&#UZ7%7b4>96n0mQN_
zYh(;us-hPsR4M8hAb^3{)0qp4`!3=E?b8+#ANP;+@=$LWgn_UP!h1A0#_{_<XopCB
zm+H&<N_Qi}&mm3<uj?g9`6H&w&vBg7I1%xgx@6foCoBg~1Dr=nmw%K7BNTBN*jIJa
zc5+AQ?;z>grmlPtpY`UXv`QabnfKOl|2K4P3DVciFi!KwN$!Wr>0_S8p{aWb0xbY@
zpT<O!(CknYWG#}X5b0t&&dYLM(==B8$ZpgDRoYkMl-BdI%wronk^3yTtK=a_a(san
ze^Yh(D+i3TjKikDDXnW-nxKKVxv1L+&GHkG6nq<^%|r50_6)v=$E~tQVBO=EnuaSc
zA4;MloyXqu*<nK8kLMhv;UAZmGqW_^&fQ33pLd3D=WRVkT4E?1ppp6^E(vkl+)DBP
z!EAJDPobq{m^5Elk&>po%)fE_zNW=M8w|{HH|lU<Q(TZkWIsnI6i!R}#!!^~hdK(k
ze!0%OLgM@rrhy853b~%snp7jWKf&ENB96_VQs5%8(wLfJT)tl{^`JrQ)7sb#B=nwd
ztaA|3ss)`gFOzV>o8AK#nTrb~&|GDuzsFn)i<a9Csb|H_pZhiUsmUp<(kR!^QxU+!
zC&FUi_MtYh6h{Tr&ug~gSdsY*ty?P{-y=MPU0`*B#%8ch+fSF+4yQ=|lun7E^t5(z
zt90=bG_leeq)O8wtTYlAevJrL?G^VhT1&T0NNPw8_b?W-uW8yk|JXgaeSYwlX_$~P
zxu%iQh{;6*>7hVUICrSx^2S){T!iqJ4Goinu5|DIx(A@4>+3!Z1IAE0W2Lh#Lg*cK
zZuBMhc+<tpH!32V*-^_Y&(OZghr!UpT_`AR8bGrdG~f)4zxWCIucLg0)QvE-u$5Cm
zJbEN}L9Y2mdBs9JgWL4L8F-xw(HI_Qk6PaIG4+?(K%c}c`wQ&JmF*~BOb=K1qLN<)
zZekpC{ARh1DJ>C9y~HI=SKfRP^(=UOo>i*C-z;x@+R9AOU@qG&${mmTVOjw^t$W(e
zLkJ?`y@-S`oVT>E)5J>0z}AMvyu__7Jp@utYk7FimhtRZ{jf}P+Y3h?K@w*Gr!Q8m
zg|Sf<2!3M7%R6hWu}N&BAPQ*y|L^-)%5^!8aL>Ir<Yc<C!_H6>W%G2cy6)}$X5#&=
z>#FNhQ^E`aw`~>qacgXf!&CY4#Vm#G8VX(yZG;#x+0Zv^&o5@hm-CKhBw$F}R#+sE
z;r7y8tA1d76w@@#Hq2kd$l1_W*9JZTN2B>|XAeZT3W1-X&gsrAwcVg$<@59--4ZGn
z!2D{<tK4T{6KqcovtuF0<+U2vD8x8&sk9eL@)5?_P+d!d+kCt|;;D&g&i18M6t93f
zrBp)5A>}#DfZDvbBMlhIv9LkhYXBydQc}u=d$CAqhhbj#2DfAKpp59z>_S`94mAmL
znG#qC8ZkQp#(Kn$7U!m^hS36+0C<sMxG@WS9IB={7br5Y0+Bm|T&E%ngstI?;{2Vo
zYhIup{n{op`>Gir4&lb318%0jW)wX#SAj3~*hJJt9=_BNY!+pYJo{qvd^x$_Ts^|v
z2Xva(H!ir6zY&THeyeke%exB1z8p}0$#PeSiG~RscvKT`MEjtjZD^kVv&qiDsHt!3
zELAkeiF_+LueW+*ITX_T-*bb9CbqcIS`1tm_XD>_zI`nnXpHt`>k+2u?p@4G%SHZX
zEK;*syzeOF(pKQ<6Z6I8+O)XaJk;BmXwQNQdJoXhK4#Z3KiPVu#bKG0mR$ZpaH-X_
z913bH(53l;2|``(ndtaiKp9@9QF3_O!;zm^uD(y>pFl>~<8-ghmu`tJe4(#S0AZ#*
zO_*+&HqfEr(`>kU?8K}YmwyqQ=~;BH0{ysrbc%U`rxPcQJ*3Oi4^g(Ip19_V{Hs{F
z=94bl*b4TbPk>Dw<DMCF!Tz(oGOiVue;r(D&aP<Vcshdqf^{8XkIcy_hx&q;t8rAA
z=D$m}8pq1?f8V?(hxtQ}5$xf@Z4!tpybc2=7o>F4dUaA>PQ8FS`bWW~6#eN^ey1{D
zkEw<U(4}3|z@#;mKKu&iWm)*bx%uN)P!EQY0>d~hs}mPRBnx@3yp)4bNz4YURE%jC
zj42pOqE=$SatwUn&^Zex5Hz|n5IHK-vIWdZ#L~cJqgYof0OoZSBaFxtZXdN{I|4`$
zPjJnFIS&14Hw(Pid@`uP{BU*771K=2(=3MT-DoYNxbD}%4wwnW`NOZ(p#D4!njLIt
z;v+`!<s$6$9AdmA^emzj=7lpY*J<r<-F|m0$i@aKj=Oz#>&=AJj4uh)fkBm~yr>`#
zCO&MWwtu)c_`<Z9#I>uBIY{x`Jt50Mkmtv`yP9du7XEOD^zDZ$A0kYHeq@U|3$bh~
zkvNjqseh{r1DJUK(FHNUi~6mf*2K{-s<w3YWe6+cDS2)+_JDY+NSxu{UPmdH2M3#&
zdUMH4Kh2WN{Dkl<4Qei$`$@!)Qh4xqZQb=4A=x8aEM#f4Trtxb-eQ$(lsw)-j8p$y
zQ0L%9@5b%$h8EBLG{&12E=N{6whNuaIOr_O(<sA$_cT{aJk7J{wlw#TE0<}cDe^7d
z+fK~!WOKzeupJWG1D+1=T*BKeOgHT&9bHPx>As_AKV{)-#Va<FLAH1INj`Yg)Y;A9
z0SmTAum$`~`{d`$d0LBTqPbqhfl%KLMn=Up#*RAbrQ{&i80tlF0bBa_z6~L?da<w0
zi~Af|hc9~WYbZYwar8;-6%+Ftt@~Lok;m!z{y*X7p_sZ3gJGPQ4PlRSIw^Fe4UiHj
zhpzX3tLsRZzlz;ncbD}={92A;cMiPrz;8~a2WW_+4snQ<>GqksT;yG00yq$+mS{KW
z`Bt=Q5J<gDcl=ErZlNlohjk%cjTf`n$9&P$KbDP2@}o29=7o<sp3UQ`#?xS<(-XAW
z4jAI%cNh277cjJ7J`c6DFzSRPSuS&I<x2%69i9tnnEC?H-v=R?4VDJDAw@3Z<6tj*
z@}%!LXAXrPkO@_?TBqrHm9X9eK+|ieQkYZ6zI0B$2(UuiDjkvojn-w}#TU`_5?&~b
z0%o~_r1Y}Mw%cs;Qc40h1v53?KH-a(VSv*`D%3|Lc^L3(-JjO$y;{H8Xf#WPpYd};
z&-|XQNpQ|ia}w@evvjlHZ_?~_7bfC9IIZrFNV6wnYC<(%s?=;Ws{LB8UZ3{0HyY|z
zw=*!SGn%xgtsLL*SDMNiTE^!qYUIFSk;7#9FGoIXw}%}2-!ic$$M7B#b>m9LYinxN
ztQgW9wKZ)|M$FW0X}FH4<wlb+O(aFb4&OBzx2NqJPae3>wWq%OwX$M<Ib?5d@9$gs
ze0$3dFC^{aG$duLdr!uio0l9%{Q8}tX=rk$3DtjYmeFWo$H(=@;13@cs1;;D#WaZ3
zNmAN<WQPs$=F9xp9I}sHDZvXWPO=F9g%V`(IAl~_qTN-J8XYWcTVf}0IJ@x)IzXs{
znDvsx%*@*@Q<Jopnx!p!jld`Cn;G`kv5mw1u2eOq(0EtIvYXQ1HT1)LQ7w}gP{5Fw
z*I8!7%*bSD`ZChavNcH?N6I5m)y4e5ZN0ka&5t~P#QYqNU01p3hNbB%x}M+1zH$s&
zK8g90#Z0(|{oC9AV9|}VKUvxV5~II(jPK{yU_P>7(nu_vFvcB?q^VyizI}_UiikfD
z^Y(<fdCxNQ%^t#5NE^;yxmwH|S(_dvlJbxnd{|*?;96QVvq*)#GKz2#^D)ew1Ys<j
zuGgut{7Edw@R!JzzuZG&EHt?z3u2*Lp_op>SVjT*PxLr<s+y;(W{8UbNEw39hG!eF
z#gRZG><G=Pr&(Oo$74hULLSA_kBTH6;U4_MRR_Wy3jDx`d6Vtmgc81X%9u1!yDy=c
zw|%xT(hhKD(_i(nKA0Mtz!A-ueIH6G*E(YcHjAMPu>*>xHecBp1p}74VC-z}0j2o?
zg;vygN`tBqs=I*xW1+{Lnl9{w=z2FABTmx~v8Mz>pL6v{+~LZVfQ@dH)V<PKg?O9w
zIZTcHCgA3ul<%T$y_m^Wqt_k`30q{AqC7Z(pE`tOmu-B`2E~VtlWwvd5+o<{U-Jtg
z4+rgD!<jnQx>9QoI&5wF6q1G;{^cMaSm?K{8`hBF-Eg>lv(SonC;m!Tgs6es8MJE^
z?JGV)vv)P^bVeLRtfW1O1rH@?VnJ<W(=~m_DvB1MY55WiiP~y<JnD3&X2&foAOpM9
zZ*>MNZfDC8^{(<j?>SZ5b^^2cNb!3YI#6!Cjz~>X9&}p$5+hsHVf2ueDywRJMA)3e
zr60x=JJ4eSdY`^7QSUo*p+OQZU(-FHalIPFk63ylWpYLy)vHRY5`w$jpXO#xY2Bz#
za-WO}eu#ERDPd`1{#aS_iM>4Z^vUWYeLF$pZh@zrn;TDza_^he8(J%o${-N&yTR_|
zJ~`<Wckg4=N)q}l{aPvXoft(1x>|h|p;0vzYqFcpB=^3aK}Ng~Jvgw{@nv<nQkxEj
zZa$pd)qaEy3)gHYxoH>*Xl$IBymmKpbK-C?tyRj549(eZat;C3ZuVPUnObPVq>4d6
z7rJnbqu2~e1hgoMQB|X+ZuOfwgp`GSc|n30`Bd5sMzh5=S~V{;FIXB;L|WQHkSAWl
z6A@T7E-%HX>F*<MW;G==QVZ5^&~TGqEv;mF0d&(h)%(BaTu>Ik51*d@W9GUN+`3`l
z%vgJbEiXOp-T%J-z0$bJ1Rz0jC8Z#7w;>qDE1UxG%%Y#=qCK4-KZGmMFF2z*=bnHb
z!+ZbR9q(ihDf^<W<`4RQaxxw`{dUiLKf?5!CCGv1o&Mp^qMhuAlYh^$)7a=VN1xN0
zGZ_!sOhR+aWCrov0g{+@nuAU&ce?$u|3&jN42s?t|0p%a?AEMkEjn$K)})J4r~UiN
zqTwWCHvp3*z8??Iv@C=gbQ)l2W6^2*tM$j{ydRDS*?G5C^7_;Fug4c6uza}W+3q{t
zswghR*WcGOopW=3%X{8#d9w?V!|?!B-#w`EmPfGXTt>F=t36x{PF6*e<mC^Sy~jA0
zMfYh3MYotf#+Si(SFK-|>UR%0OLnBNx_fB-!X)Rd3>bT_rbVa8u@k6%_gKH00;-$4
ze+Y2oLqHh>%c56@fHJSx9k*_a<CZyy#c|8mp_GqX{*Bdf>(<9DL6`(jdk5PV;b7a)
z{%$<X68K>2PHX#M>%5#p2*(^kU=1NSc?BV~9GpN1M-L&Gc^HB<w{x&YEkO;|cxOxj
z)(|AQ25W8uSR;`b!(z8<Sggew7E=L>iAz}QxIKDUj9?8w9&-Rvz!ZQaU}nDtAY}lu
zyAE%U0)TYfWT^Lc1@*T7zYNj-HrfJMLA_SsmQb&mfF9~4q(@NQ^u-!f2Mnrz-3Qgb
zHc(w#pnCg~LG?smBz9{>UjUcT7bNHOg}Z0^0+2Ose<z9#|Mr?F`XktnfJb{wc^L~{
z5k-mJYD5vqs6mK4;;}=?S$VKa$(gvo1|`?Rlw1rikT{Ml^3xB8g!Y@qH?tpZhw^8d
z{496?k7^@76@*u9HH168M>7+^(`jaRx~7>;6t%BSGqWJ{UG##`cLMDZ`T`tU6Z)Nr
zo^YHgonXkal1}8<mrkV35OCb|B9+^PNF~aF7a|oR#kNT0ut+7jD9@7vkzPnJmjlVj
z6Q^>Z=cOFTLdOe*R|p6YE8$geeP1HH5(q~xaXW2E+!(}^8cN)tsKGr~;+F7Z4#b4o
z6cb9IaT)buLcu#3sVy-fG!_#o;JWQcQj~2H(2i`AaS3RaZ3dSCma<KPq!5B|8p9Nl
z3#G-h+7QSJo@|e{1+sQW0N4@88sh91z6=3KvAb+;)>35lP|CAUy<D4{Qe=mxV9)1b
z@_8Zp79ggg{Xt1Jtd;0Hgd13KF35YB0BB2I?<J_tC=zLJ*rvRmgnK}zAxoutKOTCD
zks+~LPP1ubV7;lZi}+UxRcPBXqG&=f%L;8<Mx-cV4UfT8n<?RBvlXF7bI$X%Ij4<O
za@GUfH|Hqe1YxHyd&h0<zSy@xIitZE3V4bQN@2<hbIy9NsSRh(=Z3Stq-%DF2rW1_
zoISVUtOok~Aj#3L-ltmo2#fA?rnQf$)5x9nuyZ&b`X8An^LI!hby`HQs~&g%nq8H>
zW74tSm$z>Wet$h<u!MR%7KSsPX~BN}Xu*E{y9N9Cc^2&M{!kch7pqHcc7K0Ov-|r$
zYCe``_d4pe0>=~A3Os-QYj0<;+cpdYQ4Jdx1$yWy26)dc|Nnn&&BZ`ZSPft`?jDFh
zrp(oLGmKpM&0ny<(^!FN4sD3k9zz5;%=uD)!vw%#pwcL);^s1l%6NYfDg#u@;u*<V
z^<NBD1Fj^L#PM1viAR2C0nD1CdSv{|{6F}Y3H(b4fzEFl9@K8W7_>8sq%wE9cLt!&
zJ$*CUW5t|68h!j5(&z(7BL|R13<|b9_=RD36yk;OC^yJ7Jn9(gk2IJr1TkHo*D+n6
z4@{Sg>4HER)5WwZQhN}H_6{K0wv876(N=34h~`9E>V)y#>d<ozqvysKqUV&*bEqds
z-pIUO0OZgAWCi)t?s<r-kiX%D0r|5~caXnuyOnW@_|jH~Q)K2Dr#K`j;uJxp@sR2D
z3lQ3XD;-zCl_>N!0Imci^a&W+DI#=y6(SUGWJKuw3byjd79))H2n^A70mk|#ut{qR
zFjo4w5TuBvkuvrcXWuSkZ=F+vy=AMiOb+p5F+yYs7_Oso(oX?~r-}Rga7Y4RSOjD5
z@&EAMYVj{E${Ce55*t9Xx1Tjbg>tT##%i~pXpcfUqu-qtmgnpI0nqFU(OU+)W`Jfp
z3Yv}eOqA%M*~%ZPvptk4j03m56L|7vZACo!ob!0=D!yNx7z6FG0*oA(hWT=8kTeW}
zpC)3L3Ts6vc~QRCqz4Foz(1{qA-YI7qczVdhDvWzmi7^m`&Bw1_vxTQ0S!INK2mHC
z<@T_-fuqa~vTK700kup{y3c?nXiS<y0)46HwI2!jkqr0ikQK={Kz@p9U6|X$V+HtO
zN9--k30Y~PI9zmuRu$h7W!QllF2fGQn#A@9C0DB@uC#=nrk9*HgdfM5mJdFa;qhCQ
z+VN}c;{x1EG|h96Tnc@+X6$>yP2=VvBFP_`IdhxPc%ktCT6oIzmN>Mj={yNJ!v=GO
zS9e;>o2HbOA)j;mQM>r0-Or{yQ>=usCY9X}tV^t-z77x02X&{f4k`)WrKdXv<?QSp
z8u#^<#o=lMQ9ZVY@{KL6(4=0HZpp&R??E}A?);V!B?SpoCxWD_pSg_47yZ_mh1FSB
zvSG8Zxi<@=yt<>@h|pv7QvNSFvEx~tY|BQy>TTI9yB<7Z2SlG!S)8<ja}K840Pju%
zJkHr*fOoe6Uflf@w(%~g)9O!Awi?u7vCe96oGzbxI<?2%FcZIx^k${0<4T40ni5PM
zzn7^adRDcfe-y<TjX;YtB#rh62y@zJB0%DxeI_^YWRJ;vL^ivQCn_h6S8P<u*Vv_R
zE8%fIBjYLaSFq1+&2&1s=}!sQ%sIKTDe_<3iq8Nb?Tdj$a?*-N^qlXOP7bjb#m8<^
z=n2W|)dQ=d#hbUr-hhn*M|c)~;{nz{S~z4aVU-o{5p%V}abduPIYgPDj4|l;N3J^l
z?n5z!HTG}}qJSllm&yW?bS!HzFU+$$zksfXl#6^dbbZ=ys3gc!Sy9$Z00000NkvXX
Hu0mjfXF7Fz

literal 0
HcmV?d00001

diff --git a/roles/git/files/home/gitea/custom/public/img/gitea-lq.png b/roles/git/files/home/gitea/custom/public/img/gitea-lq.png
new file mode 100644
index 0000000000000000000000000000000000000000..c48fbd693e33e3dd1f94b224950878633f7373b2
GIT binary patch
literal 26900
zcmYg$WmsF!({^wI#jQYa_u`>wky5l2cP&yhxEFUwix;O*+@V15;94kFEJ%<7MT<*;
zH^2Y$<vrJCGdsIG=brmaCVQRTI4w<O0z4W#002Os@<ve`0KkC!_rb+LX^cetc2Hkk
zTI#w=$`JMCzSj+fW=9qJCuQ2l#VY48xARuFvsSnN1Q-NWE?|)RZm<6nt~xx<+y2u$
z_4!=1xuXPBL3JG@Q6ED8|3Y*0UlUdTSI%3U&Kj)$R_dRARXl>y9)0?+oTboSrGf4;
zLC0TS9DSxgf|4Dgx{~mKEiu5>7~JM4RE^gfgWsKm(-iri42!{s#R6NSQ8iv`?6cw2
z0_mYElp``;+L}55H1ucGoaSm`9{J-}Pu+i>9@n3q=IUdm44lK$%G-x#R-aJU@xT9S
z)b;oz(an^9^h6Z2@@V{YcVAa93IN!Ts3^YD^+P+%OUPcSCRD=ews_B?aCrXsHb6+>
z{CZ83Hty%i$^o#@)(G<oR|p+^(p4;;-Ex4#tUSLN8{O@cBY^$rhQ_$Uu`pznotd6l
z>Wa*cTCmNJ{+sIkned-YW1H_nOWp})MqH&GDPfTP`dW?W=h}eKz?fqZn-Je4TtSaF
zD#xe4K3BouF1)_lcpw|_@vlpp^TAw447nC%QHP-pr&iIS5tTI+E?}Lse<k_bhq06y
zn@*68shjV?(C>H6RVjp)RJTSgJD;CRNa>Ep4$RIQZ-Ux{Rqu%WSs;lXyagrwkEFWH
zCXc<Twk8aXC9M1Sk=I{;k?ww2G@4nE`exGP^>}WI=I8#wX}O`m?S71Csau(KQkT#3
z-`_7yUY*CSZ44{eQG}gqExt>?$ZzZ$Z6iM=2jyY8N*T_)9hq@|bI{=hA?*AqwoWkH
zCgh2`zuRKVYTi7#6W>FBn@5f=T(>LYML$V_Q}%Rw7-G)q@#d_=c}FeRHZ1UTy(Em+
zvs(}zjK&GKNp9}<rU%`!G}<a|DsFSDduzO#iMjEzhY$M`@O7c>;)QNK)fQw*zkV!t
zqDGpib$6pLtlhk|bC0n>WVW3^%mB|uTW;N#p_fz6<8L;*+evpvu5(!*NS4|z7fYvQ
zA8i3YSwn_%T$g>~1pj??rbd>qS(t^H+_?Q_Cbdor&T0Ss?jG$YLRD<*drjXzDwG=|
za?QvX^2gV(Lr_!oiint_i5h^uC6CARMsh`n;`J9#XNd>CB?<GX7*9<2EKGdm>h12+
zJ}`3Os~9pmy&xy`4Ib$F5CoXoJZYg5{QZ116}LdKmVJG1d)Gca<R_i)t`yqoGw8C;
zXbZ@S{(#hVqQRDJck*g!2@SV(P%nkF&(o~$N40pXsOuCS4r8utF)JVI?;r!c3VuG;
z{6`5S;8cVMFEg?(JF>&j)73rNZR1v{!U)N_)^415KDX+%TY4&pMhsPI9?-bN6|bNK
zC;cH{M6kYUezqNCKvz*)&Sm-;*oPJc)qmAWc+rfz(8Q{N{6*h~c0?$NXYbE<%Z-O9
z)!NX#XGJUY^U6;qkA4|RD?dYVyw5`f$US~%KItpEZE<4a*?8Q!S;L|XkfIhfN{hlj
zFpPj~(WFJ05R0JUxx|UvB1xz65#wYc!UxBkY_6C{cq&*KZ;3w-x9Ov^QL1P@F`)xy
zP;-<TGT`rwm!g4;PzBEtR;aLHc92&cWv!&)lQ23G#V|;8T2a2;oDY#c$H7JxsRQWS
zDUUk?2B;mEDA(QADo8q@hBbks%Hy;TwPYD9=|sXHg^lN(i30{#CmwU#RfP9V27rqx
zs*8y3OPt1Z&2T{dQ&%d>1VLLS1uUr9aOXrjv^*{fVijx@xinjkjgQO?hXDGfO9f0*
zz&+&y5{`DMK&B<E!<>>|3|9I{d@JH@Sj4V`qeaZ70&y=S&oY(5)U2W*avVOKy+s2@
zbhnuof0i{$Sze;O10dN``3yJDctk>E!CB799Jpm@rx8&Ql^ciAp2BpMZvF2tBTTs?
z6%KFKNK-P^g@eMU+n+)4_>7K?O{~F@ZW{i`?40TMKA0MzGwkZGV2(ak4>XC9vrCK^
zxC<cOQ9zstG6zlhV}h6`vN#O#QVurw2Fy=uHQ8WW)y7M#i7!Pm%&fwY?5Axt$vKK{
zB}G_<6{!=Oz2}3oaI#WMj3Vo$9N5<g$l+dEv^Sh_DVdC>s6qbnxcqX<z>nh<0}%L%
zjE~V&;B_Bc92LcOy#6`vi~^XCShRr*IxhX{u%e?O4}zNwXwLhR1yR{ltTl}J!8xi9
zZtfD4n|p7oV#ij?X5m01-v6N*H#@Wv<BD1Zk(sSLrIG?Hx-BCD^i?Qpj46vqiMBL_
zLgZX3T%*-QN3`r{A}|$@VyqpZ<~cl?8BX)5JR~M|Dt7h8WI_PsKU;3Z%g;Qw_TTT`
zSPy2r0lXu_LSE2J?2F&)5EH&4V++-hUFUgv7G3P#N`Yz@K5rDK(DZAea<x;*=;L}^
z!jPLA(1x-8-5a4TYlk}UfWq13+9Y6feVNS=s)Q1VRTM<7&8UHz*?oT`N7Hgz0CMN@
z4Xs|2$u5$^1j&Bz*NI&oEpjE1${AsNma+9|sP6-mfpNu~2A|_=D|s!EH7_FWJym^3
zpVl?d+U>gQ1%phAS!H3;=gW8vp+%thn?}lG4`RZ(r`DOP9HD!HhO_k=jExF$s>wt4
z@jFUE{IV-Da=`8f%Z4?bMhy-<<&Sm;bR~>SCHQ@5zm=GKuHRoQX9W94Ln;|pnse|o
z1F2T7lUjh;jHoD;eECQARkc8_1`g}}aW;w?6V`9z@-VfIx02!PS8_06RiW3LGbuU(
z5Vg4E0%A=%MUBK{Ml%1)#l~_<Fs8;K8oz9WRnmZl|LRM}7G{hEsS`AKCJBGFwEq!D
zv;s9!>H}KnQ|^(_rx%j*=)M`$t;goi869VuSUu0M8t<aIM41!cX98oh7Yk(kJhCfl
z4UZ+i;)X(gzax7Xi7soHD`x`L`_rvF-t?x<I!)6jJj-@_<Ac`GV(|N@PB$lMiKTkk
z>lvWzXS8yiN>5)Z?j7G}5SnF3w=1dDRWwoSuaF$HP?l_bAeA=1I}H|plziV0OyuK-
z+$tGI>pRSbc*qa!a`+OCMzsO)AK>j>l<<Uag=OZSO4+5I{eDp@KMym7HNA`@p{I@y
z^Bl2sw>5Jd%u!=0W|KOzZJ(gP?rE=yn&9Nww`d2b@D^<pG_7a9Z`aq7WSGS<APzd8
zrRf(U_BYU*`!;u%e)ErP0J@i$63=L=_jAC%$O`D5CzW`wwKBu=H+xe?RI&T9Jnk=g
z?Gr|F<fn$xCoacQ>C*Jsc{q&7l>P_P8&V_$s@Pp5CjU;Gnssu@0M@nv;c;ZzjvErL
zf0F|D#NYbZQQP`<A6Mn?Ue`m*Ot*M!@Myij$W@o&_m<Rd*-aa)zgJZPXb|YoP7mcU
zGw+=}hiVtz;nWgc@KA7UU7&aRz0~$3@qBK^NG6X1wL8nT4rm&pn0z6pJtr&KARGDf
z&-tFv1rBVY_>&#=8Pi+7GB&}{%=K`ao6*Hkjz2xOUj<07t131vCaC_sOADk7ig8<R
z3ET~F^Ljd1b66Rg^;K8GkxZ@I%vm%IBv&aQL3Rya!k?BT$u9N1>F`)M_UZQr%k~%S
z@*|kSE*=VwjeSP*9calC@uu6iBsyk?k##P7A8s}7k1TfIL?gRu@_x2vi?rHVh8S32
zl#bFQ4X5sVi4{yyB@AjiUB+Y>-w|CfOqI@#`bo_&Is)!xX&$WhX*Haiw`F+!!#*}L
zT}MA$>2A)cnn-?KkF^PJ*ws&Uh)p@TwCh+s5;3ouH|K%srO@M*g#7uO|HSyty>r31
zMkKsr)u+R#Zeix5RY8hE>T?aAP|xOVi_QGS&pb`*-I>=dIm@GrxR|$jiEG9h%o+p6
z<DouMc3Il~`QOSF)hcv?!ZcOcjJdc+Jxdx7{dnOfTfTpPIh^qU&URcZE7^9=sn(Z1
z^Nf-btp^m?UYy=UWrJVfOx(RofGDjz|M^*%r-WKk!DmLBYVX@6zKrhQL0&&vg0&Zw
z43eJe=#FdMQZk(nkCC|p=6x$Gv|@29;W94Gr0NH+yQ(S5D>4m4JWA4SE7>V5xWohA
zVfnl<`;jClXOefg<*wM>wQswr%3qdzVkAxCeT3=wJteuB;F#f)(PNQS;Gn{-K6IT=
za+BXPVs74H7Q?%lHQ@Sz`q8_Ks5P^5*aTS~R9u}W_p`37l_%w@Jfmx`wWsBB!s^HD
zT-W<62uE?i%MM&x4M5K7Q{c_%C9*VC9`GghvKOPc4mGO^4cvA+Xsj>kM7Wq&u`+T%
zs{v8WYd7}jeJin1nmX>^WN)D(iN<YmIc7K39DU@ci{&&h#_RpZZ|-MJopZ@E^uhx^
z|L^lH32|Fjqr(Y)k_(#X)3s~0oHVrr&RJulRy<++2C%s$Qug^9^PQa^`fB|DBpBKn
zX2Qfbmw~^1qGqzdI`N9X_AEO9FAwM#y^beTsIBd&f}11bI`;S;9SJ)#RhN5p(a2>h
zJ*!mSw<gzJKB@;BBR^$09Uoo^dAN#v1rSEkiKO#8HPn`2L(aF*6mYV7b&HncR(86k
zwG3E3QR_dfFkcWf7T1~+vb4S?D{_pZ6Y>6ha0)oLqiP$LOj(XoNYr|tDOP>os&SiO
zw#OWU%ar0cx>`JbHZ(xJb|IpauJcmq2$TO)udz+kfG&$3zHMcu!>2kr8V$}$w%@#)
z>WC-TbTBTrFUJ_C^T!u@nZBpPU0+&wb&m9W1U+$c`ISUu9pddmo8r+VEZ1^bf%099
zdm;bMYsI6*<{g*uJP|KijY6K8$^ya-YvWHQlSpyUz@iwl3z~{Q1FzxKM$2cQg%-_`
z=hzu-d#g6@1c=ESOcz8<a3G!sE25ngU(J7Rv}j{)3Z|XRWH?o*d%vNPsPWB8MHV{{
zf{D=<U+Lfox&tOJN6&tbee@(E?7vgEwbLN|pktQKZ)&|dGpmP781BitAS%?X8oKgF
zpe;o_EiwDqWjLT)S;6Q}E6H;JrroOwS&o=#U);h`!`cI!lW8<xHmJX3OaPk5_de+d
zeA7rJmFkpoD83V?VN2p8R&B*=vQXxX1LM&Z=E<wKga@A$7~3;xl^WEo=|Ycr#yxae
zykHIUYR%tj{d}J6UgOx@HRQE@)e=aIN=g1V?mq7B-ocb5mUhViSE+6kCm)acZNis=
zNySX8LVoThT8@;v5a<c$z#{^<cd+H<g|ENt=oVqHHjkJH%0+R^me8Gw?bBBWSAxN)
zmt!HtzPpgD1alh(+Ql4-E;jFO@zz(M-&pfwCW2r7gxD!#VmOz6w^boiE^^hiYoDUz
zBZ0kQ{P%W~JfgIjG-gy@Ja0-b5B4+UNb$=Wf6@w}dxv`-aa-Q&NiQGZ(|pR$ai@p@
zZ|RW6790c8KWuO}w*?!{R!Lqp?!msI9ao<IVROb<o3=`_h5b&|AX}cZ*A|j!hgn_r
zh)1R4?%k$aIZRX@QefzdTqG<jOppsAs`Bl97ahRl`pT_y3XdvOZxOll5kYj?mOA92
z$8p@T$L-EeF|bnn-!Bfi!_e_uJ;OZ?A3nCV^PaJjkt4jwcvDSCD2|tIr{?ZK_}f?W
zo6CHTDpnQE_{&e4cfHl@Q#XYUC_w8Evnrd6u>Q&bZ<440pd8}L@4=YMt(wf-vQ>FI
zk}-a#lK(>VxE(jQTn4ZU{$lLJ`0^@|fW1oLY%=d1?*k+y!e|HJNFZ1z<M0Pe&(S_?
zayf4QM!pMgnb%ct>x#rfkXii2+a&&ss=G_sq67l7{y)sPm*`gRYO`SdY9fl^501%X
za#Z7kF6liq>d^!h<$3V=l9X=#bkOtG@np%pvp7Lu?c}=`^C?yo?&Cn3wVk$qkBD?9
zg|5%P9{ozRcS31-^ec>$?nfq?8%&29T%a(1GYtNCqYu6)kHX{-8Qk90>W!MQ2-0M-
z4W<D^Cd4&w4R9^Ny$Wxci44$tq>wab*GmG30aJF$&#?OkJVaabE?&Si>)h4|U}wKo
z%_Pyvy~6$SD|Gd0)IA2ZOB}CEKO|%PoKHD>rE}tg5Z@a?7r!|{?$-NT9bxA1@H}^$
zeF!sXJ<xCK|M(JKwlCx0SjqO|V7EUc0`L;elxS;*Gd8vK1QSls+AX>^M`3MbQp*67
z2|naYW)&DGK4AYz@)jTs#v6s~X-f)fj1@;&Z`IJ7X!5--typR>7Gfn1aDR}47#Pqs
zlY!K`U@HEUO=MaH%EVLru8!F6ba<(*eXX)m>~!{pzTowN)@EM%rgqk;|9Gbfc*UDp
z%onOO#;*~O>dZ|i-xVp?KD#|IZju!LR>d(9f+QYSYWzAd>gH-zThn${oJD84mcM)0
zIWOR~^LvQ-#(}h~`<IHV1vc*S_Gc(;FG5Qota<byOd0Yo@fdVvSVzt<;GyKzNuUwn
zwXmrkE0(TQP9>x5H;ezAFNl8ahO_l~*Zs|jIxkiFwn9=b`ym1OimHyJ|LneI@PFNz
z-TM(ajw;C}eNaG`_=dzBep1n2A&uwabu$SFkHo3=EJObM8?h|2V=}64g|2!xj~9}E
z&wdRs`({(ez@;<BeG^nTJUf2U!pc^3GhzaO&vHyfy#uyV5sryHe^qVTaK+QE388>M
zjLEO&J(qcg0--gnzttrUi2u=Be}wK>E5rLsXAll=%9-cJiE+@o0QrJ0Elc=x=vD<!
z5*Z0vgTX0z<j>vY2;->Q7})2k4A-8wMqj7<BsVpf%Eo54eieZNylxw<Ix1Le^DYP;
zwkVVuA`>{O8vKXv2j)rBo^^cuTi@24dB=oWvshA=k&n{~czlqe{bI=f$D;eH`#o+u
z&jt2KNY#>79Z8^DT0UZA$b&?UM!E1_oG?|^p89B0QP9nc;KyIW9{_7n_uUtP809|%
z-@@KyHGY*C{glHLPlt9g5S&Wl{=qS4Cy`dv!@q^?BLVYm&3z}eTj<sE)}>&mlltx1
z+$uXWpMf|Mw_dzny1V=>(=Sxkg@%RzRoyJRbP9H~gY+}1R<r5Q*24kizp;yc9P60P
z{uuM6%_k}B=o}02KGXR-G)At^vqW-wLh$)nv1^lQuu#L9vzn0CpB0jg!m&&Kr^I1#
znUS3i(P1qg{&JzdqiuU~{MK}mVXc5`>})pI`z(K(&6Xc$uMcpEaTOs8<>K`}WKMii
z(nbA0D=2SF=7~>|Z*I{tY%h`&5>>tz4}CzJd9F%WiTK`6U>RaLyZK!83j5|}2uH#P
z6Sp(0#(Hg8K6km1Wn+Q%R3@?ARqvdYVcW;)M4{{vghp7I___5eHflf#q_FQ67tzDt
zuz5_HpS*I@^#!k!4{}K040Vz0ZV>v8vq*Bv%6W|qlN#N^IK=fMkvk>7l^9a_opcl?
z%UZk#T!-aQI=C^WA$|;=6?8Hx9O2#|lOnj=q?WF%*@m_5NZ_(-fb*e%r5b54dcIg1
zNVjdRi<6SffKp*p-mP#=V<)?qqvJ(dd#$g65g47fT)dpre_VHbaLgR)1pRv97pE6|
z#Ab#}id&f*%4tog@N*4CF|}4eVi^`84(}9nKg7N18Hh*e{#mFG{&%nBbQI7tY<h*!
zEwt*p7@YSvBhb)HwQ4a$?ZlFN2^4Vtn_PGFfVR$^-kNiX78dgP@@#0+GdBokuM9sT
z<@ueo0Q)Uax>=}tEFjUv<b%UKq;*z$cB0O7g+W}t_(!9DlA&;L;31D@fObp`Mcv08
zgUK}QIQ`0W!;1B^!gyKHkPB6MUm**KAjP=3wf8}1S4uR9ZU&QN*{LSue92jCK3kpL
zhVMaEhwnjrcYNL)e*w-a%@|mR@J<HbB~&cZ%B{T|pwadOvo=Jj&x!_oq`wH1wt7#<
zssv-kEjF){_4`Qw0h=$#-2=>6MOQ=^XQK>P?jH^2T;1(xs;!SMAH3hOmQk3zqpT7(
z1C-RPUwy(_eA;L6Z@RT^`$W=FtCiU{6*_*}eML!jh5fnp*Mibybq!_HzMse*Rvms8
z1%Ti7wDgbxyL|J!Q2cpPS<~Q{_Cizy9jQSR3mml?QcCX3>MWcEzLHzKQd2x?vmn08
z3CG9k+4t@}kY({1mzK9z%NJM3O+>{HiSCm5nr7)(Sab4&^~+zwBKJPz<MZB)2j-UF
zi2Szpt=%fQ@PKY^0r|7&yH<N?0u9T*Yf3b-<R3rE2*!wp8vF{U(bM9Xn06If=Q-C{
z2`pbpF;^eVG*nvQb>ngg=!z3{4zMDtvy|IV8Kj~LsF?jZ7@*<8<>}wDlTaaLYJEvQ
zHc7b6=%Nx|GO}O3j<02I$rCntym(*CMfqa(ThxRt716=S=_t~g`wE+WJL<Z}_Q+(#
zE9`wqW=sB(5_;dS&xhCOBo`O*tus;Nrn}1vBOtRmYmYV-c>4uumFU^8mb`5=9@YqW
zImzOfS%+oe0jD4hcA3t2tjR)%AjJVGDvvmkxRo*&fHV{K_e^hz9CU*Yo|=5cI$T%<
ziRph#35G_QmhSe5pVg~a{Rn<4Gx`2(n|wTZKyF@;0J9CRP?hz-CN)M(y((X#;?KJG
z9t#=T$-1i@MgixsAu+L*YFtz+*EYg#Q;Fs#Q(`LWgAFq64St_{L9p<@7xN637*A;!
zm}@|}TzTIQUoE?VnV&rN`pDOfUI|JZzt_P0cXH06UzVai`hDso<2}KZ^hf~*ZRUCY
z3uiTqL0jgH+aCe%Y?<WbxZ-|_`6P8ITkjW%tiqDtF!Ny%-q5Jtv*@pXiaOAUo8p@M
zT2Za0azE4P*aw=;Qo%Ps{O!24;<nJu3X>!8SXpSOs?AIRm)Nc*9ptkaFoRA-)37C@
zJl+}Y4K$i>XQY}0b8gNY*=7irwIytS|0(g?RO^lw4TWwGdq>hULC3;i-WwB8+V;=?
zp38g@)akw%Q<3;2^V0g#1Kn-o4VfC~Ud>k*u~XmvXP7fL4ZZ@K9WRho-;s<uHRvW4
zEc4#`=qk;r>EVCuq%onmp_AS%I`Z$<*A7F8nq8ImdnBcW>jK+CbX25Df{>;VNxkcr
zhuHZ8+7>|-HHXuktG4azdg2z_+p9k@6%(GOb{K=t+0z;kj<{{qZ)zt~)N~WwQ{qBt
z(^?X^h5rs+s!p~))3DW=D};pG8D3OJhDc5>Xe~1|^ognK>iJO{bN)Atj*?PuP+arh
zi*#vP_-dSToGqR4xiM*BqjQWNnB?CU*h1k$$N=8_3np9Wl}CTF>3e<jV9;(%MYWFU
z!+GpHS4oJV3S7n;8zZ&cCc|6&s625aFT{dSXFh+U8fq9UxhV!oi_DOD%lz0yQcn0F
zpMu+(B>C~YUpE7T!^mBEpqNgz@8D;sK`OSlt#CE(w^(HvsFB-m7WPSO&8Jr>t>8_Q
zRI%ut=Tj<ZE3i~i63E~Vi@q%5EbWi3E`%1_!W3rK_Q&mh-If5<a}t0M<T|GC&A|u1
zJ*b7(t7u0#ZJAHRg*JsPhz|;@@vm(g+###lfm2e`tp-la8}ax9cthxZ1UUaL?DDn=
zt!!V&7pnIfx@lsI>DOPhe9H0)>C)0Yf<>@N?EJ_IJ(}z^D*Pvy@}1l%<M|g3HB#2W
z4=GC?!ucGqurGxZqrnq<M^(|qjzea+oXi6vi&6cTzm&t`Ypc7^_W83TuB%>XtFvC&
z#h=@+ClHed<}CMBsYJ9l<`sU)9kae%TuFwHRLZ%kJi{S!Y2jh{>{~QeOhR)S?qQD}
zjwXy7h+*j=y!DTq^u%0uS?bn2GSm|OGc+v~U~4Ok+V@Kt-0W?oO2gn#nx+jkLEp_Q
z<kTc1`b3q^592Q)PixD?v{?m^2Wf);#^r@=fc&fa;NqbwwlM$S?l|r|dJMzs{IFM9
zFN*xv`s!wKINIv-^aQnY3Hf2l_MB02%dI;szB8+1Sl^O${$`Eg(50&AGC2S=j+A%4
zWu_k~s^h)W)%<kB{<uZ$!=8BM0?S@Qs17-7$6lYx<pz~HQS>>i-yH;;H#V*_I+CQ!
zb95fd>Wjw9cRm=(x~vENtTJJH#aVj@6e!p)VikU@7U~l@=Z%ZcKRr`Mw~qvrj&ekQ
zbi;O&x7_f$vd8e9@~S}ZbOr@ST)A=A(xa^btL`Ef@^JYZ+og?kM;eW8g9hC@iH0P?
z)$Y8ylnVIUT>h}i&=EO!Jok;+0D#EY+Awgy^o&@i8u4VgM0`A>%d3uW+l`iL<c&9p
zn*=_xEvzVqEXZW?K!XGie*^^HCB`wkl}LcjWH<8OR=zC|cOP6O|1QYp-4)E++CKTT
z#eF<Ft@fdl&ku?jncp==rRR35^DwpM|DyFrzvY+6ZS^rym*CaF3fE)qlf$Q{R+(2q
z9=bKcM>?j3zCj(nWIKXG_@A3@gQC~dRYBLUmImwktHUgTkaIDA1}@_G9CKcSgG<M@
z&+(x0y@$vwSd}Hg1w+xZ&JS9D?tc4pb$6K5xw+M*qtnIWv!r(w{L<T~QHx!9_-FM1
zxz-9cmz_8vX_GUxk6n49##Re$wh0&0{3d7Tm%~TW+7YAb8;kH@7an19&-Dg9&i2wQ
zwr(GThgnafVSKLok+e*$?M93qLUCJOIF*854L`=>bM$0Hy^)nWDD`7OfVTf=YdU55
z)~6v&4R6to&sk4fl5+YslOUeS{o0zN3Ytx1;!6SpQGj8?-t@D{0mfaIxTS4{m=|@X
zDLfn}>e(p`@hdC?SR2+CokqJHuk8N*j%=-A<Y-F6_|>NB)w2c2HON&ki~1g+IEn{5
z8v3Dh{Hqza?^U<R#-#vp+3gtGkC$^%*T3)r<q9b#e!s`^O5hE@eU^s(!6~V8%Cqo7
zHY_>XxP4|l-*||UZHueOIKgv`9w^S>@oCdkqK10vZ1DAtNy(F#?ZD(Ckp#5&!Ch^*
zz_^=x(T}HoBtyS*HNf4I5B)<4NURr6Y%{*fX7WYg4I@+v-TTV=W^;3A{5*BG=@sJd
zHA`3d7ADLB%V~(HF#~eEn>V-u)pq?T;N*^DSmhx_NeNXn!U(_9`MYs=vHfpnJOQt`
zN&3-UYu85CTI1#23F(s4&)L-vyPicjLDaIP3@38LZm~a{AK$=^)DWw8?-n-+IsIa6
z(Jk}{r}70{n|@kGr<py9t0rj-m3uz*)aYGUJ3E(1sikmSa9=&H)QiU!<I1&#zc#+s
zlwJD;w0*wUr`(RBKO~u_wfubg#deg6?bGX>=*AkNJI;6<+Ofwf&Z-yVG?pp63gHts
zO5eWA7K3cXraV_h82xE4QYL63PR(5V%t0(cHH8Z}($663`yY)=zashEfV)V`wgkyu
zfB^gR%>c_^g!Z^bAh+-(HhDYl3DQ1ZWpf%P`6XOW)sWX8&NFy{)8nM%kE?IC_B<8~
zeZ}Oiyp(^=#$dxN;caT*m~k@%&<F9ANz*q{I4O-_l4c@0lV!G0j`cl16Q5CtCh*I<
z<scK$hGUCdlA!dVI2EofshTC7m?GuCGPW(1=#=VENjJBd*}6`fdR*38^33mX0i1S~
zrH5%ALvyTK?~AKb5-?__*%Bn!ZiL1}n%ds-2b4!&yR*rET68LI9k=+2w<c6_xARsA
zQ;`pO@%h^zoe<8)4E4cV6RiLP@t!2=cUO@{B{YpSK~p?ACEdB&HYl$Y-ml1C3`MS$
z*t}586X2m449EhQ>EicgKmy*ZZ4&<6nXWb<aL~1Hq>%XWPpvPpouSqv5SQkQj-$ov
zti{fl<-H^)+oWE(!@+mEmI>C+g_6B{ld<iAWo3v#x}Vzo3^ugl@A8Tn-W_U*scMMT
z&i7R_5X5nmVS3xWC_WTW+iQLnjrcaQrjse`u}<)}Or>|>MRIH8Yyns$K{C6_Jv?b_
zG5Eu${Px5*MvfkM_H?VC@*A_3vUD6vCdu%!ry^G=15_gNMY;OKSuLdF*T_?~AEgg@
z)xaM|Ef8q66=NRSopH<_r7^fhj?NKAXB>87A(~5463W#+@6-AReh;Uzy~`=_k4Wm(
zAOEz@+o`gMEM&{gUwVJNHyV*RNM|<X*Fb!IkJBQX_#yjt4&5E>B;QZ+KGo`*Wu}ES
z6vwo6@N;V0wM(D(fY6g7Rj4m;SYT?C5b%^pweZS3)$M&2onWpvhCMc(k8PU&m8`#g
z|FRfqBr?nW4?@D-O|Ro3_aj}hF3reTxct}lo2RFms>&HBqqc21NuoeA#-L&V{qJ-C
z^|q%zrv25H;BU?h)x@~=j}#ck&uynk@5Me$2ANY_$yRXb9jYtsf4<1RNx-|PEG3?l
z7eMpX4Vi!NCA%7+byB@ofj?Z~kV3Yc?hT95XaLA>b>t9bC2HV+&H8ag=zZt?uX74p
ziZ7w~-iNW6$}H&Y%v_PFTLeVJu+&hDH}MJHmgxMt_D-r4{_R_2AXi6BIdB=0>7G_o
z3Kl_~ti(Tfl%G!o<CyZ%4evPljP>J{E`B6r$bc1A%#HJYb$L~X%k}zjbSc!t0*A9-
zR6RV<wum?K-2Jhhb^Uak1^>95bL(M2Tq_!X;h+hv^(*(-$~|-$Hw}mcY-l1o!j2y^
zD!Igq>_tA+mB%;k$NABUqbn(ZmBJ;rTmf;gXgpYz|AT$1nj@E1GabuJi7w05N@qz8
z2zboNvNhk_I%mD1?JTxou0>&+Bm!~MF9Jmh`$d}sSV}-Ppksdsges~l$gky{&1)0z
zU@cp3)d9FTL7XrQx?C?l3P{tYS+VItOVMj~lCPxALAYg#5M`2IU~QXJM@gPF+s5e4
zByh2mCYkC8Fh<2qC8ZeTTdKlVpIAJ^zS6unffQ;XcL>82uk8%GD8-ip<3~uwdwJl<
z>BLrXiL;|t9j33SYr9X1p2kd+;(pN9<M~BmM{xB#UX^n>arT=@lc;5)&(i~8KYbG8
zfu+MyQsyfOnbAkf@Ou0C5<^wI!}4SmhOqFN&ZZo;08@n8_pS-aacV8yp?sR0LsDz_
zHoEm&1+oX*zveld0OV;?N|rd|1~k6wD)UEzMkwbTeuICo6!rufZ=xxd+IIg|j(BDI
zJ!5SnN2Dk<*8W8KPDOR=JswRKfCo(0nn}_(3OJ5k(Xph)Nz$l%@X5=~az@2XQb_py
zf&APo`BSnc_+R{n+gqKF>G)4=DnuW0oW*&j8BAciEAcd0H<JENw*jU*PJtDf_u{f*
z6)jU`?1XMe`PDX?HCN^FN<v~yY>4vwN$gUf)@?Uo5E%z|`&tYhZC2U|CXO6<Cqfbr
zBq(f?%6+)NeAjPgu!!0YK9Ul2Zx?hAg$Q+q^wO0Drgm)or2_O+1>Yds$KPW$L%fy0
zMBPrPlIr{;UEBCD_SO*H$J;U+mj2}wuioXvrOS_{NJ$<HfNfbN{#hNo<g3G}V(ziP
z=`Py#j);tb+=zoiCBGDDMLLc_9#*|G<DFadqIA<Hfyc+MCz!fyV<6E}0+O(;&)e#*
z|D05rH!6>Q--nvK3NUlQ@x#X;)`WsY9{K1IXt}W+lrzW1aVdNtt#|b63~mFsxE%fQ
zFNa^!0esb6p(mfVb4eXG(;Sh1_VPCLi!dWo!)7PpP%>1Mj;%WPlxBlV*fLipR}PG-
zA-ML>OT(h$gQ+K;DIlSe>}zYsW(mL-lHVbr##E^rUg3}-VhHt8M>YM>iN*#Lor~~`
z&Px&ZLOFA?yt)jcB0^$lO!l|Tz7h;ru?M8v3QE9}VV_21v!ZNKVN3P{hzz>et0=7t
zR;x^Dvj=snD|&`Ya{uNT0Nqo1*!`n~(3Te+vV7hEF@j?Htz$4g;6QLx+=+{Y#oVu&
zW9<^(=HOaNpzcw%o0Pq~peO9@-ffe*_(H#&XSyOvfj?7WMcJS!H$osXwRc`a!~VR=
z);rr1;7eHR^RmGW!=pz^)E%3;K>xZH%~#y~on1IYbIG2KD9-J}X30y}owJw6xk6!*
zTS_HP@u&nhfai?|ev{k?&9e_54+W~1-hA|ww_WY?43i`i*~r>#H&pnOhMkQk63h#Y
zz+lXsZ7aA9+A9cZ3AOcfZ*W7m6MUfxKQ1f@-JQ8FiTxc4q4y|jJ#VFN^5xG;MJN!W
zlBIb7f6v!JxNBMj)~~ft`klY7Bu5MHb(5d6-A%)!U3I^5&kDV`XWKpFK~I&X(*{+&
zH3~Kh&M_tRVE?*rT8BF7l)a&w$C&$emm792dd$HAQTCoDzaG2nu5v<Wa`xa7D?)#|
zr#yzm_CU}M>|C)dGVt9GX&oGkn5(?((2F6RfjB3T!mq&Wj!zFG&gi~=!*pva5z(6|
z6{D((BrCaE9Z=47x&cbj!6_o7)C3U+z2wAbh^4>rT-y5f>7=)o5zdgJvdrvSm;*9k
z3iH~hqN?^HC7z)N;~@Uxmvh*CZR-=nH($-s<`wy|tF2rFX7s2Ie>jlPgV4k8X?XdA
zk1DNR$CrMRt^3S^$~xC|*Y4Q~p4x<7IiqJfBr5HTn}RIuW%B{Se9<7R7i_r?L~jwV
zpt$O_4?2H&=ZvV-yhuq#Ujk|wWspG(rmS~+tf2Y+<(GZ9f$%s<ZW4EkT-nWd!qD+f
z`<YR4=#tRV8Xh_<hR`zjZd$q%TzvO6H6Ebp*2?n{U08xg;B);H4m8`Y@hk(ld6SsH
zjx5a2`DVnl32BD$r)Z3IGN{f)al>mk3($?(|9ldUkHml{@gMt{0UdI*s6_58Lj|5G
zlJ3$)@=uv}TeqkKC`v|i1Y~hZp=f`ED`8tB4>xD84<Q@nE~y3r_H=1!{=6zZ+brT`
z{E-O*m}rRMY!)PdP!DnYNP?F8MRCsC-BZTZR+a?V*wp(a5s~88>*5+g7`D}67i3@e
z8jT7ev@pmw3QNMVH)8x4?)P$=Ss81xDMAiT!Ul3MtMGHjA<8WSy2Og^q$I3BXmEav
zyiQ#kN#^kf)=LR;kVjy|WI|-(D(T&~&`c4%81|%RtaRq|&ik;WfH<*!Jy8;ksgvY$
zhL9SsD91oDVpni@<gAC^CLuB!-?e34AfpLFG$-x4Tk&rPzbZ~OTjQ+LlDO4Shewr6
z29i6WTm(}9XeJu#)KWb|#7h;tuPD!cY?>jm(H!?ssp2%qDI)=aJ0n@rqLv{jq^1{M
zO`Fo2;G|KovwvPrdGzQKJedV^yFu5DVh3aR@m>H~w}82!J2&WN4Dj^#LSWmga8~{@
z_j&VKJ?8eNeB{Rm=~PEEf2BAa!aG@hvYCce9m4dZD4a>BF-NoMcJ}k)O|i+CSyqQN
z*P{`YWm-ClHZ0G$kBR^&BNCvD$$va|8HY|Kn0Y7weVwx<_NQcK<BGvfIY7pJTlM3R
zgpAaiC;-T;51Al|x$*CX)0nNh6oP$s|LLK#lAF}_At)%9>y-*dt#M!rIx+Zrqz(5)
zF*cd+Dcpaiue}J(fIg~)W2>`3N%Hd**Hyot@pjY{$<14^X^Z@ucH|8yp#_2oP)53$
zLV5EET((1>-2_G)d{|@5RLAj$zOFUwd_VLqdm{`(v4XqCVCKx5g4iYjM>CN|tBrF*
z;W+4p1`XosHUFEyestkyyByj9#tRhmVE7in3p}|vN$+4sxY_hfN6;X^Z^Z0b;D?_Z
zSHdGk0WtwXKHIp`Wb$8tXsCy)K<tYPpDxnCH6t5#F-@G*ae~|%ZL_{CNR!*PliJ8%
z2U3DRN3yVUK-32Sn}jsrw!ldYSL}hB++1ZzJ3=>>nA(Z2pNn1omj9}9B0*v-eC(Qc
zTaS$&ivv-li@P0MsX+;I3l8Sni;gbjkiQ#EVyVx||7d2dFc~oGqAkzeFGX>ZgF_=D
zZdildV{mfE2Ahulkn9L#N+L{sJar+LA3tAU+rZNbPxFC%(y;)L6*-)mggA7|4oK3@
zKG`qr+QsT1!$;h95rli{`v%^Y<;fDXf#OyV#Vv=pi1Kil<YG5<ewhOzyF_sMcJC(_
zT8+K7i+-kjU_S{fC>#~A(Db(|d)Z*u!9A%)Y;h?MQoB?P=9t*zH2MXK_`hLJ>ygDC
zMamlAgSQB&!Kt4q*LDQ)aR$*f8nqx6EraWEL@Kx3zdJ=zI|@BFK;l94RF7XCWteXa
z3jmPb)lz034Z=6b_?07CkVmD@o3VvlG4e&z1cza`KRwl}KD6U5RNjV6$Qk~N4r7lR
z_kjuiBfQ;Ds|#NcHoDge1%NEMWRR8_XJn!0y#PXRP)?%?($S&tqS-WSr6ee?GDoMG
zgTE=XUk%Lb9)o2Xi0-K*;&t^FnJvO)I)Tm_@aC5LZ_abn{#?D<My~kdHi2-u=O!+k
zgx-ClD{)5w&p@%aMtY}8s*BxL&!w(rCFSh?)Aa<LbV5+a|7k0*m950gt%}T9Cqn}-
zGv0f4DaCRst<G8#{~MzHaFq{IFt|NUmpZkIzPo&Vb<xiLpT(b6!%G8mS8BI+NnMi5
z?^X;V05W26+>vvxReyMaa*Z9KF2wHZPy3S^eC|z8Gp}iGs{gVueth<KH&OQE^fJXS
z^lPGVSqzxyQ6B1*0wRykwENpi#4n51AUbwq3j-F2K3VNoZ(og=9#>>Q`0D%bbybok
z-B7X`Go%GQ5_3|TJ~yK5l2?6LvaQD4L~1l>SYr1le@{1J`s{KNW1(MRgO?p76+jQW
zmNbT$cV|%6?i!Zt90Y#2Wp>u~U_hopOd$t46GZE!ynLqXPrf1eROyJK??KY^rr=LC
zW)M}Fk5tTX1P`AnzD(;ap9Ny&qThA_zJys8>FMB;3Ewa6?CzOB{X0rYtUub1FW@vJ
zlfJ;w1P;4NJ>7JcZSS6BuKp7ya?f=#Hz;Th>H-y|OOvr7f*{yF8l`?W-=mx^m*LWB
zEB`X;FkGg-k%1$C!#&oPFHt6$tF!nlhU4_mIw-;8z*f8YUd>_I?-1($@SC9UNAR@z
z;pWaq^7saP?oFqxb!+7_^%=Qc$q+cx-Dr$}FKK{r4*9p+;4b)?0*LBlr%c(8Ybp2U
zu9ZR%m&s=kRj_d8o@qz~58~saVaspW>Q#Zr_`Jr>&--+A{^6haxyZ-}Wd>_@f=yS)
zF#U1tXRg&5b)OCt9Y+o@Cw=;ARLuNmFC&)v1{rt%WukIcY-fa-=Efm=?iSr~e9TPW
z<)F!~KDKA=_n-#2S#%WKND~}02(b!7aS4fRpl#hr5TjV^7X!0_uD-XyQLBC46i>Mh
z(`oq8h9y-lDIrvpYGl^E*%{4%q*YsDJDbT?6X$S91T`L1^--eiD_X8{@Hj?pWqhu@
z8(l7GEfJUJm>b{|O=bkcRG28m3qnocLY{VED6O<<$p)p{F1*KSkrm8_$iB4ocdEo%
zSblhx4snJM9F5QD<3qj70$_=2FTrfN3<Cdp6z0QN9{AS#QEkvwHO^x|uX}!kr@G|%
zMjB+X<O|nEyJPPqE5zM~A(s>?96P>0XMjieZCVxDhK>pujg3%zX-Bh(Pe1>gf3Pdz
ztaY&bda~#2CtCe8O(0Go{x_V@e3hnzi>0{)hmu@K)N!qrvOLda^jb|whi5E$S!7@%
z(@d=~B=8q!Q!^3Dk^ITtq48Ao1^5bfS>(9`rYk=z4D;B<3g!6ZEVSJMJ1ht2S`El0
zbrr-zNI~*3_{+K$gmWM4!98!YFeVM~Tm?<vD0A@u%FI;XzEt<8rc4iadL5?IC(QtB
zAOWKUU~ZDoDrmL^8|8pY{F0o8xGgZ3RC7c3gEm~^9_2R_>sVvscXx;}8j7S9MOu`K
z_7u*A#MA^Dpj05tNyTP+sKI|j)gew{Ihl}P0+ieZ|DPE<zA!S>y#E@L__-7i+OS#v
z68Hz+!pK=e%Qe#f>zdU5^DPd(f7(c@8IyS#0EO=dga2<@h4m|7S$q@@|NoFWo>@zy
zOurNL=MLBFtH90Z(e<v4)R}K{otn0#zarDj^xtdeX3MRuA_bd`I7lPCn2Kvb`hELj
zR%Vp~kbx4l%LAj8=Uf}|IJmh-kr5~I%w4A8#tZB(;5+02D2zLio^lM@cA@yRb8UVM
zR%^Jqe<M8+1-smt3L%@J2^66^eJ;#6h>Dmha#LT`Z?og*_Oi$~_L;L4Rg@r?VqXEs
z6`AW>T4udxP?0fE7u@JAST+T!LJr{;&2s<JNCG|pF8u7~b!pz9te!gkPKj!_mWG+=
zVnd$<nDSnRHRVI-4#Gk%yu&@|pHDKSyyii-mqOls7Q#XR{N`FaF|wI<-p~vHQLwfW
zk=B|D7+?#gR-d+)nprwJ4P^hB+allC-iH~tcqe<(qfX(rO|dC^GvdMJ-#c3YmzT)s
zR5K+vG)|tJO=_&pwIv%g3@SMO<=xB+1`{uNm{-}@^G&g6${^qLlF;Q3>_aQ_1)5|i
zZr&1ad`hO&t4WkF9RK@DT?V<=8zrv0K{!<2&OLMTRDIa5QJO&Qfl-LQfEc0&^+Xnj
zsEbdc0Y-mNR&3LILQTG;NsEUDuNYOD%LPD!$TYQ^(OaCZ0n%+kKst#@L{X5C9+Y-6
zc%?aGJ8^a>Vk;M-?fiytcd^Ck1TDbB@#QE>?e=FA;#~^PRZj&7k(rt&N$dHB9|r>Z
zo3!?b9t7r?big{7B7B~r;3{OI|Hs~yFt_9nmf}XQy9P{7s~P=D5)5K3tF&d$N>*^S
zGM;cGkoCj}e)|g_p-2x}kHlB>Quu`jpR#$j7oh)*DaB?EBXZQ**l7#)Af>yJ-I4y;
zwD&eL^`T~bd*jX^<I*cRQpy<pn(wv$KCJh|Gei!;YLY5y0g*vMR6a~8ih}+LLQVIt
zI9ND1?gzi!(u(IslvH+$=c0_PZ1AX7(j1>`tM@df75`@6vK1X6xX6EofSz}yJ(`cv
zQNyI+jBSq8<M{}1Ta=ODtYd5r&*sRlv}9br@N*zlY^<}&(wftA*0PK0k-m2+o`@Oi
zO7dqAmLsf5KhMl<;3P-x0BwhZNf??(;oSE(!^(t#p`1p~OXyljLYvAc3{WV)86qdQ
zH#a~MH51Hn^=!}eh=_MfYI{*e_%|Vs>wb`Lz+q4O8M;77|Ms)F_KB^A@0iCqv6*Cg
zL{7y5n-C{vB^0&lFu4&rI`GXxVVki=#^2}0=y3&&Me?qvX%bptPOi*M(qJf%L&<A4
zm(PgcTG2x<x$WdQ1ra{n@A~#PcED5bS$pg`P??C3VOj(8xZk`#6?;^gJ_~;vt1aro
zQbD)><{=*i%<ibS%X0fUyoOc{b5e!^^xXGjnYse2FO%y#ZJO;XOt)>PG0&!SW*9F_
z;O1$3GUvv_2om;r<+rm+X4+d0`!UvbfCLvp2bMMiUAciTorf&A`IB6yx1F21g5ttn
zV6*07?08HreIFmovRZ$t;otBuoU3%2V}D$8`DGvsm|F+H(=WXQ**~SSRQnDkd@vIV
z^)!Z=%p^5R)-&yVBD24xYYK|PTko?~JD#sR7urh+4g7%%za99Ik<b=litnBykRe<k
zjt*JkA%dmL!t-oucX%*w$NT0b%$v{bDIrSknlSBly^N*+U93kD>W3JD`SSeqNrqI<
z5-9<^UlZFBvgXY%LyWpvF)O3+%m0nGX_KzKDnYl8F%_n^rXv2B`XX0k^6zT^^!BPk
z?}SSh8?QCUin3OkSRA9)<YzWaF%3Oe$5uGUh-cwgfgjUp&2IAV5V|JY*Y6O0GYmpS
zSE7a>G)jJe_~YDwsXrGH_{qGjI#eHu=+sl&6;r|D7geBle-no~+dOViU%zrS&9G1V
z9K1HSeH7jja~@Y^f9X(O(`8T@OQ_uJnX`Qbp>kv0aDD^KOyWH+c1f6sx-^6lUb`c1
zbW*RKlHnMW%9F+t1V>V9)&8DPac0P??Yk~Z0xlQ3@JtsVA=)^VC2|u32X~5$A0p$S
zwlbzNJ|^a-h9mwG0?dxu!iX{HCdQ|-a+LS;|ALX*?9ueDq$WFm@kFUAS)2!n;roaO
zP|nZV$Pk$8i&~iFa1lK9Q93~eZD&val+od<u>4`NwK;TxtX*?Z3!5t2dX8n(4Z>eo
z3gI)2tN<dj!2FPw^c>A0zNN7xH*2Y^<?2WP=+X+@H?bYUYhhny_}}OTBxRKcJ%oYC
zC?~W@Ve+Yk>M79Fr?VLdI}GzF26ckPRRL`_h_f9N*rE>Ezk{^QBIk{NjTB)nJKJjG
zVs2Hn=(z9-)0sxd<OC)&VN1|Mm`S_;A4Awiz%iwwr0sZUlfUhL9j;+j=!{(|9|qLn
z8*e)p0^K?A5;mijc=*xheP{wZtx##*=-GdTJ*f<(M7Ya?Wn6<cM(X^?&4TPUQ48jf
zrXVf{Bzk<_Pj@MNsv^t{z;<;yKGI1a&C}r=6)%_Nq3NkVUg6gVEj@ilLA^mi)l`v0
zhHgMllbbAv@Q@Hq@McmYt&QELVRy^NjRJ8nC4Y4;l{EOcRy_>^1gYD`@#T%g_@6iL
zeJ2xBPN6u)&>fzeCs3Rb>~yw9Ps6ll&w@BK!T__U*<*}6!w|QO>mUQ&cUs`C#to@o
zA7u1#xR=kH*Yxk7RR6MPq_}W2)PY$9i7Ju_L<)I@e*XHF`qJjuuv@Xm3Ay~gaV5$a
z$E)<0i~yW@hTc3mIZX`uJ|w{Yliz7$8M~ReQ`U~t^%JkfE0-7k=-=F68lcb9ZH0hg
z!sAl~F!=^QZ<azTKL*yeucq_+3gkLvEepIaYF?*RndNxvWilLx5cfFpax*#xVhG1l
zsg?EX^zNl3tPi4laJ`MUM9PceOErxuaI0bvmXiXHiRHmT8@e+%n@OZ|Jc{)}Y_zZ_
ze3#8~U)4t-4z{nCOBH}IvR@Vn6Ibnw>gTnf%!=SOB?+|=a~F@}WB~KR$V6VcqTwS?
z!*o<!4?|h>o^1fe7k<0OB+)*8!(l%eTZEH@OGXkCGQcLLy-Cbx?Gt&$ZEf<L#3xto
zFqx{+u4_zr+$j<7NRke=;z|4dhU~5bHb7{+W$mAa5sib0==XsVS*<r7s^My!vHCZ!
zdWnuVm_XYOwYu_NfyA#=Mql%<kF&0>?qX#25QimfmFW`PSmrSx!sNj>+6rv)S)WoC
z`~HTltZT3>Au;R)o)Le7(Z&gvf1h`c3kg-}rDKeYa1(KMVX#%?62C!<>EVVSZTgTV
zA3bd8Be+)T#BQ@-O_r`a!0^+FFD^y_9{E{>&#dfjo<a^>E5!_a^rxqf7d$_2rnQ(a
zSo+48)HYFu3`n`hupxQrYks3oO92E^uPE4vVD7#=zH6j#TMZScMiKJ%<bG}4T?sLr
z3ZWEtBY0aEL6;@<wwIqC()O^HOAwxYR{7;XK^4D-^@}ub=+Iv9>e$2m?<46YSFz_=
z<Stl~&!Gib6Jn{!!aLbu^N_Z3-)7-OqI2@MM>*2mo6!779b05)Qe5;@fazR2_=oLB
zJ0T6^So#sp`Mc?XWUgbW36r~QuRot0hx1}Xeh6xi5>DH<c-2D^JQ;gcGSRpGy_!@<
zw2+6=>g18CyDL+MJ|mJtFuehHVrnmveA&=W_Rs~mjwAZSqfz$4sQKei{64In_ecAf
zQr2=H=d5|x&ZG&*iN^eD9gss-{e696*Kl^|^#vzup1OMtFi&n@pUl^fR8#Ly3;Tp!
zIO=u#+8~BA@=A;h()}`hE{!V#rxbQq*!UxU<6vRU+m`7#Rs~Fbt3z9ZUMZ|9(%aRU
zp_?}Q&91%ey<-X`hC{p)oLUQ^8C(@7sip!B*OSA~2V`%|=*kHRyL&bjma%tE%Dd_^
z6nyaytToDd7o<n(iwBG`9tr&3S|RD5tL6sbV$9BpWZU?~5%FFSUJ4tZ*sWpVeOoT$
z`!wS;oVN@tlRTE)9W}~SHtl*(miwOTh59f24YBLd3Sga|`Eds{ko)p{fG#_7c9sAM
zGxh#Uv%5X<K13KTQ&}{-LS<PW#k%!iC;oP0x=!<3dc^t~(AAZP>V3Fc4)>3VZ$Y6}
z|K=j=xKb$>upmMIFZ3r1*p5-=*AC$T5l&xG=FG&Rl+as~LB1FOSUMNc32_#lUDSK3
ziz>gusSfgec90&{32$+cyd1Kk93?H>Rso!9^*vkxb4nt`WdxLJ3UP-e;e0Fu8#ciK
z6(zs+E;aOyq^6vw9xS>1&MvO2GtFC$xWkcf-gb5P$qw!bn&6&`D$1R|zCIT<aj6H3
zj!kZBkNpmUtDR3z3ULP{;aJ~SJGn(iCaC}`YT?`p;8aaq?!MU+*U0i)Puy{rlW<y@
zdb0^GJq1K9+#SGe&a#P9li~n-#uJOqhQ9HEx!2F?l_%l!NN~l1k*C7pEu5Qao4Bkg
z@e~(;EffF-0MvkuR^SOPD@t(-mw#^W&LuS^3%D0A9+ec=6>`bB?hc6VfKI-7SGbh~
zhc<8tI7LO73VC)1aH=K_t|`-GzfX$ewY_*fu09DaP4x8@CDOu~o4Sb`ujv%mfixh}
z&Ehq~dhEPU5C=wmMY%iMG{0*URPLAc3d{^I4oGtSi96j^0ZUae0UjK$xC~q_-!)Bh
zi|t|5*OZ7|+?ktO_wXRJkNfF92k}PcXNUu%zM>q5?J&Q~09+rliPMXB0d{dm9RWuW
zcc=qt0B}cuA)H>WD_gj6{az~*w#iRT$T=lI)8UCb5DBN}Q5Vy}=_|@%vT1RDT9i$k
zjHAQeFrPqxD=UJI#GMW#91rYq>;%4ARxxw3g}Xl;_jIiqM`cY(8Z>r2@B-xz02zm_
zM_q&gqh38IBYmp;{;yx>O>}sD$}%@;Vx|KSclhQFeV5ZRG2!(ndE1=zf;W8=H(v88
zuC*$xp18x1a9V4>;t4LPr}`GIG;s%-CT^&tO<->iAP|vOh=c>WcXWuWLDRw={CMEx
z<{EWMer%FO<!#zmf#K0WhP<<!dboiRc6^%!B|kC|DN>sM_y8O8(!}Wv_JO&{8jCn{
zZ(y|1(J;i_SiG&_6O%ma(j>TXzF|?nz>cV<{5_QxXvB56Hvz1q7)vbX#stUPvmBXd
zD$1QTi@K(k=qzMhC*bg+5&#@vmI#<Wb_nMS$^_i?D5@y)uB%S+>i{QCuLxTZx0t6x
z5qI=kxtx_yB%H;p8~|^6wXVX2Tdy8jC6-slCV~|AsD*zOK->XHIDCE+tl)}Tmr@|F
zx@<ep)s*=n{1I~)8x7PX8$01>o`61DE+MNZ4;EhUh8?N^_gf}7d~O09F$2V%4kR4n
zXjy=_XTPfecW7aCgl)`JH6@?ovZ6WV0jDSK)Fd1paHskF{7yhsQO-6j79W%Ds8Zb3
zb47}4P*eiuselg;UQj9$Tr%NAdR^7AyjXylCw^zVSga_75_igq0A2;~n>SuJNKW;x
zC6}x4Vuh+F>FC$r7;%SP5#%a>CE@5--b$)>F+Tk%;MVp;DQ>_?I>l_@7-(b~ICC>@
z;XpX&l~WOO22q0BTl*>COk;(baji*lMZ-%J;Q(=`BH_657u#AP<;aLRyz#016mY&Z
zA4DlGeLWP2J6};E4kPX)-U<mv`*T;$6K?{<sS?~UubBdRJy=nS%Y&0z7#3d<6ygp-
z!g1-3H9N@@6IFuKE5KF<%+my%o`<SGIMEY#KoSmrV#1$M4l2M+V+r7F3zw&ye-9wV
z0d4~TaR(sb02=`~!Og!1E=ZXb<&u_m0;RY+4=@bF?w@h>DBp%JDj%PR8gVsohbQ3>
zc#HGLd_kG<=qkUkVHoawcylJfP1Y=y^|V=2GB8V&J;+xW=ab1~wm-dj{z8%B3U5Fh
zVcx|;IL{`RlW<6mKt4AgFP`5__h*yIWS(DLesuZO%>n3TMY(J$mo;SvwY)#rI~Ufr
zVIYqCWT!97v6bSKtzndB%Le58f4fQNlU*ajKW#B5KnIkDG16A~`Cj_pxyh{m&6qN8
zU7)P*Pvi0F<?-(R;n37I?|N2A<M4!&{DnLEA{;!$L?waa-R^bW93JlP9$%i0<Eifh
zd;B>J?D>!4UgY_ANh8X=rsX*?%a}b+m@#Byd!8_BYGbG}-uMpr8#oWu2`71O+|d`|
z=ua`hPt<AhFPX{eW<u}WjtpNw&l{sRv$xlLyfmi#$+SGjm_-{RXM^>WwMS2xU^YM0
ziQ;$0U{#{}CSrZzPW~bsyjxgBYix}C6^NF`e?;%;d~7{?c8KH+Zm}QE#{+#{s=hoe
z&#|SLbsn>YvVhq-ZRcOzP%y1!VauAvOX3Aog*zUWeV5`Zc<;;KtDLUdN<gCcnOkxw
zHuC5(doO`Kk6xFc_Z|FPn2$%`5A)FDm@-K?r34bp_G2rQacVX>bE(DAVjHZRSFJPo
zc*p(k{DnKpA{@~1e*aK<n*Mv;>V(l^lOy1-hB(<1_S&(xLY_x2aW5E?q34Ja#FWnt
za~2R|$i!Sf24^OeanKmw$xOzK;kGC~6#cDn`WtujH{oQz2`<_dUu}?Ji!Hw9fK%8D
zZg1>eH{0MX^*Y<b70`Pdi7B@+i;ziK)t*|ZGBRZ~Nj{cfc5~gB!~FaUC;A(A^f%$;
zUoepbJ?Z+~j9%ogX7;4Y*`6$;5J_MZq9qfT(HZdYuEDK~j4>_i24}gLKUWz8Wrp|%
zGqe<f!uLe<o&65@Ihem1RYkZ1L^%34OtfN`Z*6WNs%G*iy!2oBbzpC<a&m*gx}l2+
z-@44{h7*b?Wq6le7a1KF^JC0-2#^_?gGTz~&TxvJtBbo{wS)sexbtP+ltef{B5=Lt
z>)-%+3wjkTA8}&%4l&~727_CdIjxNA!ZBsA&Pg#pcBW~~Ms#Q7O+hWS%esA|LmUw9
z<SxR&H@Yr++~`tRO-3Z_(ab>n7wN0V27_Z?B@rczDbInjh?#Kp=}m<)+Gk0h7H~Yq
zE2j@CQAJp|14TIcyvdL*CE)g1zDYy^!jcB?%Nf1E-Wf)eY^G^GKk8{^`wN0OsMHDf
zL32PMl_M<NNklkga{3)A+2pMhQ0^${2Ye87ge``PI9}YtNbS0b+^W=b4nVk*sR#!c
zk;V;5h3(Qw)M*%_oBxyA0ZA6881Yk;lNl1>4j@iMI105A)PU1H&x781GDi8EMEs>4
zw-WAfivY9&R-L!ffRn7e7<wc&dXGdFfagb?sYrx7NQ9FgZ`^>>b8roGa0NK?TU=ae
zfa8rj+ajFO@D>NhMX+M%l-~G8r5bTMS{>YeT?=;-5e`v)C;3N>H@-#rhEKAXj8ZGa
zA>j@X;S}D$2*hH^Y^QR`3kY|%ML6X`mt=6o!QH%ZeVxS>;?j*fU=vQ^&A;`p;@@sQ
zE52@`7>wu>2ZcL8grk3kiirVVGQnq93=HTk#F43pg*!lmQ+WH*NbOQLxuh<x5EuL4
zEZkucPIy^(+jel5QZdO*rUM2tYo^=)Ie**Bi*P90AFxpvv7FT+vj6OziE`Vz4u-A8
z-Q8LzI;r-haYT@+jlTcWUC~YklY5;}*l4an8{cf_bZ?z+2;wIR-v}>sz>7d+nGVpz
zosb?G<d_HGWj{TDQhakDplCphI|E%j7T;bQ(c)523N)Gak_mXbX8UE$_s>P=CohK5
zN+JPQ;X;aWyfID)g5Z+AQIHynaC}}ebTF>VR<ajx$_ca1-8UYuj7l_M055J_pNnxW
zzUBSJeM2ygk$^y>1}<*gP`uqZ@vRt)f{Q}K1l*BZ1Bh^8lvd>%U(XZY!cytW`-XB$
zfZ>262jifM-ejB{fvv#FH~z!N<VfWOP@wBrnw9f$KwN83K*%9V?~2NxGzb?5!Nvpf
zA<k^y)~#XS8z@s+`vvc=q7sM_56o`gvd$oK@U4}ClK&ibX;v=Lp5)-09&-7d-gDlh
zGKd_E)2fQk-aQk7a1~cdbMOsOA~?<ui8`RbG_sL<ZTr@^Z{L_c<SWo9h|7XFcKJEu
z#J9W~5n1@Av5@tR{UK(Dja(T@S^0v%rriv-Z*pjP$>|<i0SlCdI)1sx$?_K0z~}Q>
zZgz*f3(I69*JdkP<YakUW$x*ly!^`j#86`turY2ZA_-QX50^y6z{WRFrjavvS98LP
z@&R2xcPphkS!+rIuIEgb6qTh$1U`#gp9iZ@d<*iP&+-O{x|D))!Ko0y1ysg{;6ZTf
zXO$~u6ap6(oxvhSWzWet)VJI_p>By*z{s~=3d#kIqxhRmBp2B~*RAf}A{)MO@=dEk
zd|NjD1_VAR15LKN$-2`1owEjv0zM!}<h}TrO3g$#3JA*EO2H}XE_s9j1nQ;FPzt%?
zVjKkoZ64g%PA;&`$(BbLK%hMQx_mV7`SF0j3I#@0x01<G_Esq-%Nv1*$IlW8Ec-!!
z`mz0e*aIsN!E`yDXTF7#%6Vr15m>Q5{NDcfBqimdvpv3Vk_S${Q6^VkfAfTzB{ie$
zjo3dVo9|0b?~sD>=O#_k-5+3wg0U~-YgUeQi_3ll1?>2<OOtf-bGf2Y3d)b)Hc6T$
zkAGM$a=I&`Yt6wa>5hs{vs~W(Jld~~&9{$IR4$eY{5$zJ@j%-+X3di(vqKWExK|Qn
z4YOtmZQvf#)Ef8iLdk&m7Jj))(jz+nhQ^`NW;pgM!>jxNj=jl&Qx-t%0e0z;<nBu-
z#x0WwY||&<wvPwkh(fLV!sg(?HCB^x(QAzgIC6MQPbBG9vVmn1fq!g4`2<trK!G;x
zbty->wMK&iroR13pGY>64J_eX^!<)}qiq~F5YgzSh_0z&Y5yis(P)Ddy|LWD9Z8bA
z?~xd{Od>!$><_>cg(F^za-<uMsDLSlJ^7YOHn50rAHQv_Z^VwHaFoiaCJ$HsSC+x?
zFOfHjVe&>CY{P^|w%<O!Q#iToeM$rfo5lfKP-&}NM9TTATV!>k)+F1831PDVx%U0O
zfmL5NNs_+g7j5JCfi@$Ul#59@KXr>I-3;l*a|8G5zlBRSUxIh6ak9XDPN<;d-8dnX
z(i+-gP0IPF+q!5$Yo&l--7uk|GWje^+%ky(vEA)i8wUzOo4(9QIlpwv%HC)|1+0DB
z@3!gxkZk_>`)oiGfqO~>UK)1*)*vG2v9GewDi?TTo7FAMs(#dT2gi$s36b30|9v(f
zi9nL1=lDhWH|NdVIMlX(!apaVKVy{F!>ASM=10SXND|2g{*LfPBH&Nsgg7eKmg}bj
ziEN=i-@0s%x&h%!!{lW)5U$*jMBwYWf|By@J$RuU^rvMm;Jcj*!r-*H_27kWu&2cP
zTv7Q|vH@p;RY-||zs3P7FlOk=^)Z^`=v;7I+@f{a4aR^%@YgrW2HfAw6X8BkB5;-+
z_yH=V4GeW2pPXY@N=9*B4`8$+-I#N}VM5u!2NBNs(&^bmfYBK*2b2P>bzkM{fJ#d)
zrDU+qt6pmjN&(?fgYs-PAeT`c*SF~Y^@5VoRUL=Q6136X<lL#W3>ZWJ$AmktI&C!g
zQA<*Ta?ZH>$Z3re;XZG-bH3SdU=LnE*&Mc29<MCHrKF?ZI?k&WkC_{SH|*^dxEYe|
z_Ol4*lnDHoD<~-(@CQ^1%s8}Fv3}k`1sCa&Sk^_=4x<635PafXAVAP%RF`Z(5&?VZ
zbe=7ps`SaZaUA-l%%YP3|3B&I_lmNz>4$Oj$u>GcxlQLu?!Lb{8xY@upEJI33kTfW
zmZKWF$~G=7;X=~Q$QGVti}R`*)acNZ<QNFduW>&EG43q{lnA_m9bEwTt+q5;4NaM?
z<8U$QW@HPabyhZm(uOKYzc}o7DKVQ3$Ubg?M1XrZ;NYB|fJwSMv(i0T7cAY2eEOy1
zET3cpJ>g&*`v7i%Y(VY^IQW((6b^Xk99jX4v3-<m9k0l`;N7Z`YpZyj*$#;@S_7cN
z$z<k%z<f3!#?1!;Z%PD+E!`aO5k!Ru+Kl7S)m4#aF$r_RLB2CTC(iPss=Hwv4FFoe
zU(N&qbJ@UrQ7M;BZ6e^pFM8y}U+a#6fo)&5wO#C@bIVomD(4o($S!MjYnzeB=D!u&
zZ~i#>_ST0gB@wW`xf-_z??Lr!of^8fsmtQHwR0x4i&|MXZ8xZA*A#;H>|K4c#yMmI
z@(iVealgs9Yp_mR?LZBE-%a9K^RjguMd6Vkc-a%NL{YrXtY?#GUEdE1tZJHEy9VE8
z0&l|Mp-NfcKG3DpTQrWWQ=qjmPu2_*R=&Efs;ZnQCd!HFf9u*xHcULZdhCrTa_ts<
zqsyotWQm&}Om)M?5%}aCfSxc`qa&bcgpjt-_rioyv|YP#-{yx{Ng{9>Oy$n@;kt|?
za6+BH*O$Z-)P%e~-yTwTPD8BbvjG`QCB~fvUjxn~zR3_P$3(yZGENZRBpYxZOy!J!
zR|f?5CzhR&Ay#gQfCD=*PJCM;8<1xx309YN1O^v!h<83zDTAq;+0q&($ol3s#7dr_
zl+KCZ?wdSR={}fh0pkSePs$K0_rX+RocQLB46&N`Exvb11SA0$-<-37`}u9045pGb
zPJDA^eu$M2%q0SHlKCyjdF7dGfP|C5R10n3$T$!@XCdEc8z)1o{=?q2_oePT%_e{f
zQq7urzxzdLE4TOm>Yi*k`yBb%gM~I5gq{D+)qF~aY-TpI%^iXGsS5(0JOu`CKw>Bx
z0F#9T2a^|6JE&3#<C;4H!Z_iZcms8zD26fs<D|{&x3-sr;F}DwB1ga&$U<QBTU(i>
zU3mmq0Dv*yy#X0aC5#ikWnmygtk4m#_4y`OQl(wF2>|S2djmRAlo}L_arv);AQ;~$
zQ%D^y<5beX5!lzk17g3KtN~buScxN0Z4dmCvQjV&U<Zgdurip+LKYgM{I?wB<oK44
zvd{pFL#!l*G92DStUMTbl0T?Y9D(X=p?v2ds7MQ9@&?2a2q0GO^d={mk~|q6hv^Nd
zL^X(^ls+%%=3)q{l)+TnK)O!k_$EWFa4?mHj1eR8z<2qw=_q3aSR7&{jzCbD9qu|2
zzWryia1d{R9067sImqqq@hvFd#2cW&RLp?U?)d|PFqd&;h}EhiaK^|t@dv~Ws9@Y#
zH_<YfDmdeIt+i5`C!_F<ya5?Z72c8CrPfMmo(%53$q*}a1X9Ri!Hjk(v{KvvlSKlg
z=nY5=C4)ckzKCB|3a0sjp`4VU%F4l1{A%TVo=1dWKIc~_D~DLgrBf!gvWQ7Jp<BVC
zPReCebOda4z5$r`agmSnC=iVEV*G9({(E528<4?N43hA9|MsOUqA*S{F3OkN{&{d~
zNQPL^V5+!)G(9^>lHTLE97|crj=6j6kG&*0IZHXu7W_l3#1Wuxwc&NwtEG3Z<y<y7
zW{l_M>z!8zyVpa;YKPw&5Jvz3nY}!A)c5IxH%~>uyUEG+RuoS+K9N)>$?>HPR#u8P
zfPBLk%E-^x40?accBPZ<{YRPeQBK6ky!^QDCR+W80qzY9+cz+OP^CBmklFLT_MbO`
zHaV#)xvELp-j+~0(f#v4o1Az9I_bo91OSXzOZ3+@B^`H?le&_pnsleP&g%2`+KB;(
z>kV`gEq4S$m;u9U`n(BBd%04?6ArOtj^ZSi7pvcR*TdNF1$qM#L)kLGq)WBr+q#s#
z<M8Cfd%M$~VJlc_Cuz*1Jq1-t3}w4&2@JZpjH)5yN$=q!>?SAM+s6ZnRjTUENV)@P
zS38lQN}cFIRKD4ZzM{{&f^z!ySx#~xPjAn+$(qNn`WH4T;|4m>dpDRWgNSO$6{#ha
z&<Q#OpYsq6&Ef^jKhX<V|M*X?B5Eg)wdf6qBLHAgEzv5e1}W6&5VYRVEW2Coy?~z{
zKWZlyK)itfF_iq<+bOCgKdw=A(IJqdT)T%i^a8rbsP#bY<g}elPJ$}2MmHJ6S4-AH
zX)m70QLfd)8;T{B+Z%&+!XH#AjsTeS;>h=w)Buw5#+h<bSGI$3UXCAc{DZ9ltm=<0
zQUl@*{9Z=@QghX-^?}o8j(VkgPlR%fF&>xs^R2G2y%Dg)xH4(1S7l$k0hM$HaSBQR
zd*1J$>|7g4p<em=*}SflYVz|HwaE>iey4wK0pb*ugHEFMf^fYHJB(6J+OryJNwp9D
znKz=GXp^7SPInFM<jlq>E6vbe^!DTwr~1PbVyGq8-AzAnDlBgv^D^Jwm6KaI`6F2Y
z8-L$*uVZK@kPiE5e`e)m1|p~>YRjTrC#rM%QWUbwZR@<f+)|tP7GHNNf_4HX+aH-y
zC;FQA6bGwn$yS@3bLDcmow^0x${d}yZML^n?F4vFaMwD~dt`iLwgPV~R|jdcHMB~I
za=D;3h;B`veTO&H3zHVMHoj#*6<st{4cD9~Cs-Dr8+Zib1QaMus)p~bqKm0AysAN7
z*Qo{0Sgz*J&wokx?q5r><?7O{e7)~2x2T5Dtf5|DPkV`$K$ERwxsK>FZwRH3a^98`
z#d1C7OXICaPpyq_yCV$s+U3?|>F=Ugu9hAjc?3u~xw^Cd3J%h(!U<@!$x*16baib5
zl^hLIV2I_Sn>Z~&d&+&3ViK$~0?H3hw^rU;-cT<{heu3)0KXkKG{6zd)%xb_ce$b{
zgmD#^y9a~2TYv}85b6bHNCw<K=5~cNzyT^^xmv3$wL8m=s|JM2nC`JVyXn@d$%;@f
zfRKjw{?7Bz7<HZjM=VzW%Aqg!F<q=uPUyCnexUCb;JI^zdO?=*#+mTn{7wOQE}91T
z=sRbl_vu20@_(h<`{=9_h;AzvQ$rO+%s0LH4RB;!m{=|fF%S54ahU>9PB5Jz-5|XT
z`^utr5-8LQ`4->sW@tG9hFGp3Yd=rHWdFTS7Bk`7Y%y^|@eQQs0p3}bP%oeclRbu7
z&K!miy(L-&@0RhthNIkQGINxh9&Ra_&t{X6qnlUNgLi2t9is09_J86qHF>qmIEv*8
zud<%}u{BKg<|<3ax#{!(**0}-bG76f(#;d@qy?3aKhz7Tp-UJSUoEMI{yH!D%~h73
zbNNBRv(43#Z!1%K8zWGtm+*}S4_jzAmP;v~^k^a+ZF7?u`UHn0OU@>=x$#akRI1%j
zFR<~44Kp?}x5YR}O?b702&cbYTt@)~Ma$`7)RMCWZf;SoN|SbCQfP~BR0;1tluAx6
zEVL8LbxpBc3_D!Ky>)}z+yb|`{omXcxVf2%yV4AVqfoEwc0#?tUYy|ncQA}oEiewi
zSg)2SuKehVxIYpt_uVL%El8HEh?i4Ldxi4ai8Ua6+njO7$hhWe3EyK=iT>BEb%P2D
za&CXwhB}G)*KKLdR-7qC+DSvc9Ul<i5GrYUJq|MKW4RP#C+OurS8OuRIdbRr%W*@t
zkxo)YxJ$NfL<;q?88o~Aw^<b|i~~|jSQ|lUQ(nWl{c-2Waa+SS+Adhz5lK4%;oHV4
zJ2I}xMbkvHF1Y*idOhbBi#_1n6jc(>wx8c$j16LCT!${EZpXI`eGFk7^_D2!^`6vP
z?%N1ChhD+&b^wrVqqkZwFtfm}sP9Dhws}=)VH-1mV!3#idt5If!Vu?vX&cHkugf-y
zC^+VQfhp8$8-oBW)sqLxxC;x-W4V}cR68L8b<5Fj6fQ}U9HAyzJEPzzMiac+Ce#b;
z1@TQ7*DS=G0ez@TIP&L4*oX3qNH@b?k`eiBbqNRkqycyW(S>isICQ{a(-3p5;v}+c
z_>F3^<woa_@3dbqMY1{gtt~SfRvd9sL6qJ!5FOC(K488fl=6L*&>)tJk8s<}M=<8i
zE0_L-&ZoPlq~MZ}Yq?h>-;CKNm%qVV%opkfU@xh^L>Si~#GH+ASKIZ*7?UCCkae@g
z?vReiw(wj-vf-Az1;Ac05Uz0`y6}w{NB83z#B%WvuHke9UtUh~#V(MJ$hOEQzKm>`
z%pZerq@C0W^`iT4_4y`@14w~F%p;8|Z{bc6IMShI5R-MpHI)7x*`S4+F7bwAqjo~g
zmBP3BH&QWKs6i|jPoqgYm-vh$-Cx%6_N3rX`^z;)Hq*}4vIeatJfU8g7ex0>1(fBr
zlWGY;wK)FA80XU=?IzRNg3&ja;ZK`RkZR6nGp5DiGeo%P+DVOkE`joSl^O8Ia@B`w
zd-{*@0;Vr9^To`AcA@t6Ga?#dk^2(TOOdAK=`#$3YY^%M+5hBE3OwTstXE575C3U<
z+!lD&0nu*h9e6AUuKmHh=A^7S;{X3m{^dWLPKat*yIdo}#U4N71JUi8_ec0v;bIOl
z1G}e|5LCd~KS+W%2dpxYc%FGh`B|1_;eZ37YQS-<a41Xn4-3z;CDEJ+>9G7M83dX?
zLxkHw?F39#HNac;IE`gN^+i)1UtdzxXc7)ch`+>petvm<{csrL__fbJD8GUJ1P9oS
zKOA0PU!I?dXh8pQAW*A`im!F+>Wis(9MQtJ$}g$@cg8_VYDx6vU9*f#rg+uUZlb%r
zo15FayZeWS$ET;KXGcMY*HyURaev_c`0?T4{_gJf=BC%xN%zz*)-a8vzut)tNIC7K
z;sqM^E8ic1{&qo*V!0Bv3#%Jg$hZKuPe1lAbf??xA#RrFd33uSy|PY(>a#9(unTXr
zN-9FV@PH|NTYq@~zLt}8(KP<r)D_=53@N6RswKXxVU>egD=Mc5Y6;BRO}SPJ@p`)|
zL%lM{2=L?e0BNi|O#$kJnDaN9oG}v4uAYiiEv%k6|F69>TvHX<p=eU53J|PK(enOp
zdOgmxGyjffOfdc3y`I48W)Y~`Bzyka*&}M=-w++Jk@3mjhfY@fYqz9mlInYSB}(ad
zlw96yZoL?G6K*^tsUlkbwReJ*@sd{#<c3<|-<He2J$vj+k;+?W{41w_n||M>UZ{28
z@!Km0a@%TCTwAXEB?ERnzq|7C2*%_u$Z<`*CR?``j^9X;(oe0%@0R4ffZI(RxV8K@
zh_G*V#@eR7(6?6)<QCW65(mnog;2ulH^ChObvh;cXUSn$UO#@LaeC~eXs+MX*L5%9
z<{}z63c(w!wU?6Z#pI~;?NwCL-JFVSZO3}yfbLk6+m`SD#pAa>K~?^5g|o2}^$@Nb
zZGYi-1rev=aPh*qP83y<ey!LiYU13ti%_`kwv%wSI2|4pIV^^qwpBX{M|^`O`y{)t
z+OxnplsH?lPqxcBYC;$}+vkM{bva6L`_W6qKChjOP>~-QG(p=`)a}J{YuGPpLWpP3
zq+*W(cXhmUi(Gd4)!tDPLgA*0U1H0Q6Y5pU&~_1SqHx4H*=0b2D>vnR0x-vH7a>}t
zZ%DAep7b;Wt*3A#K4=o30*=pI$45;FiQn&Y>{XDzGX$FNOh&?>$qu^@sBnKWE7GGP
zUbul#6XM&6y&*wwkfgm>(0qG|6ACvP_9$>F&gdQ`4mSD;N60RH9%0KNLb$_X*rkuA
z5b|>(8(8Zm5yHt<SNxoS3?aJ50W$1*6cu+=j#mStCO-=%yBZK&;A|){!j-{-OB~QB
zoF}Ysrxsr%f}YBXT;j`fW46l=qT$Idz=keLxNb1SXS-C$Pk})btT;;vdmzS&1fTI`
zfiP%-cI(1~3yv@|YC`<4Si>3!P)||<UqNfIaOQcxAPkz!hVV8#CGz(-#0uy6`w4}M
z4VnPfO9^e%Zo$HRQ8-7K?1~MVppC~^;f`ZNY}CYY0ffme#0qDdl-Lz)7AqW>?Q(>|
zg=RI-mZPWyqH<gsLUS?{&JiZNB83BN5S36=1_L66W46l)q9UhI;p}>e7w&SkP~lGE
zv<5=qw6_(Z1ukAV9Sq1n5`hqvvPBAK(^)ir5$DMwh1&{+bA!pQxat6h5yK86h!bV6
z36ous*J{OCcHxYQz^Dm@^M@^j@?Wa)w+*%tiiW~1hRFRrl^xK?y;j&l;oP8blOb<u
zNKmK&n<!iYnCwdQt+Yztz-(7`h{_oii90$b=&p$hx3dkxph=u?Z4=#ZC0mOVj!_dY
zC|ti*B%Y3)U{X2i%BYDG6i&l>7o!dPE@fy4>l>{UjyQEv4H6Ev?=<=%=c^$|IIljo
zgu>kn2<p`(I}_Bu3$Po7bArjP(GV6}F0vyfEW!*MneB3d!Ub(Lpt;AEUx+ZbAmJ7Y
z=LCZ$S3}ec{oM(gvJbm5YC=-adxDL-w=34i^Kss3TZBY?x`|qQ*<U#6YenMEXbCw@
z6{!RE2|j)Bdp;%%noJd`+khl!(1JSoEQe6I4Hc=I6(?vTjf%}hI6~n<f+lEN5&cX{
zq=t~FiHmTA!rd&Sz<uZgvLcs|5@$CT;RuDB8zN%MMf6kI(2xbq9>Ng{r(X^J1<oPW
z^+vv{!e6*Abr6nFxI=_+?beBYtk34HMF@AGaKvTsj3MIGs>p{Z5hshVg;5ida|{O1
z=1%m3t)%CMq$5cPlU@G8RrH@s`WER?;V#_!*)Bpf;Q0$}{OJ3R%3*Bqe@dosZ$s3-
z8lbM5=w}zTt?r9LPvMBiwOLpA$Cf`UoPUHFYuzXuN!aP?acO>9xPaS88z`IyOm;P7
z|5h`>SG7QM$aWD5r_NjGSZyeu7p@Gp!a3We6pp0Z&_kUP%)KabnJV&ay%GjZzMO@#
zTbDt&?q<%yeKBf6()HuVx}K$ESlD@8k!wx@A@1G5(Qbzv!X0i6{(ajC$rSVj>PbqH
z2u+25Ae)d(u|u>uNyF44hq)nHK$K9p&2^FoEX`F}r1xAJU>k)a?+e%9x_5reBiwQH
zU0X8Y2$Nl@s=%XquU>%JF5)sA&QUnD<&sIb%i_8?j))`g2TkTS!LPt2D*}W0t!-*E
zqbB5S;cl%}+)3MpAVK>G+^MbI-V}}yEtmeb_&5juW~m-cZk=pfZvCamdk~_k-QBrs
zv$_IEHPR`;C@uhNwRXMR)`_aT2_dD3$S>z6Gplbn2iV+Y6Rw*L@7Pw&Y<k%C_)EPH
zA^PpyJmC%JP;r)YoKf+HZR<3D+os|HA<xUHJNEMxt^GIWU}L(u^W{H|AO=ud!*%YD
z-Sd{@3ZZj<@1e}g)SBT>rNe5cbUg@E<YX)UR5n;^(=zv$A{z53Nyzg)emo81^^cu{
zeR;%|{Ugj@hCjCLIu57fv-Sr;h^mTck;8erE!J$s%hsXg?Axe)!|SrG)@-?L=Ytge
z>(3DiA^MBQCdz3T(X9S;CB8K5qDVT*3&TpjS6HoK98Q<+`DY+x$EVA3JooctX0`rS
zI<!qRX{XzU-^x}W`~P!)J{CSlk`FrftI&N-Yc;F5ld9u~L)RAEsb+PZzJ}A~AheBq
z);SgF4!@+kPS&2%#rGwS{sQSKTeIo<kgdyL8=-UhxDLBZKaAI@J*A89uoKrO=_y;A
zuH(>Oy7F8rAz6+K<RRUHZ|Sf;iSGmM*UcT@vSE41CfT<C2~jQjk970b)LOF@-`c@4
zceE;Unhf8nVYSxU^fmt@n-<Mx8zK7OFX>Kq>z3M{hX#(ZWq(x4Y|oAVR+qbLkG=or
zng~h!d|Bj9Ib6<n>#laE8cw-?^9fe%&h_rv`En?KFNCU*A0wTrO82mCoNVkwB`qr5
zXw&#`t$Y0NA0`_i&jO*{;dnYrZsFv7IvzTa;L1k+2j_!+*DWBwYybcN07*qoM6N<$
Eg1@#FQ2+n{

literal 0
HcmV?d00001

diff --git a/roles/git/files/home/gitea/custom/public/img/gitea-safari.svg b/roles/git/files/home/gitea/custom/public/img/gitea-safari.svg
new file mode 100644
index 0000000..066f529
--- /dev/null
+++ b/roles/git/files/home/gitea/custom/public/img/gitea-safari.svg
@@ -0,0 +1 @@
+<svg width="1000" height="1000" xmlns="http://www.w3.org/2000/svg"><g fill="none" fill-rule="evenodd"><path d="M591.655 0a504.542 504.542 0 0178.979 21.11l-12.775 135.521a377.428 377.428 0 0160.526 35.013l110.923-78.783a511.365 511.365 0 0157.832 57.832l-78.783 110.922a377.428 377.428 0 0135.012 60.526l135.52-12.775A504.542 504.542 0 011000 408.345l-123.768 56.707A382.582 382.582 0 01877.827 500c0 11.784-.54 23.441-1.595 34.95L1000 591.654a504.542 504.542 0 01-21.11 78.979l-135.52-12.775a377.428 377.428 0 01-35.013 60.526l78.783 110.922a511.365 511.365 0 01-57.833 57.833l-110.922-78.784a377.428 377.428 0 01-60.526 35.013l12.775 135.52A504.542 504.542 0 01591.655 1000l-56.707-123.77a382.582 382.582 0 01-34.947 1.596c-11.783 0-23.44-.54-34.948-1.595L408.345 1000a504.542 504.542 0 01-78.979-21.11l12.775-135.522a377.428 377.428 0 01-60.525-35.012L170.693 887.14a511.365 511.365 0 01-57.832-57.832l78.783-110.925a377.428 377.428 0 01-35.011-60.524L21.11 670.634A504.542 504.542 0 010 591.655l123.77-56.707A382.582 382.582 0 01122.175 500c0-11.783.54-23.44 1.595-34.947L0 408.345a504.542 504.542 0 0121.11-78.979l135.523 12.775a377.428 377.428 0 0135.011-60.524L112.86 170.693a511.365 511.365 0 0157.833-57.833l110.923 78.784a377.428 377.428 0 0160.525-35.012L329.366 21.11A504.542 504.542 0 01408.345 0l56.708 123.77A382.582 382.582 0 01500 122.173c11.783 0 23.44.54 34.947 1.595L591.655 0zm-91.654 241.084c-142.995 0-258.916 115.92-258.916 258.916 0 142.995 115.92 258.916 258.916 258.916 142.995 0 258.916-115.92 258.916-258.916 0-142.995-115.92-258.916-258.916-258.916z" fill="#000"/><path stroke="#000" stroke-width="57.537" d="M500.5 347l132.935 76.75v153.5L500.5 654l-132.935-76.75v-153.5z"/></g></svg>
\ No newline at end of file
diff --git a/roles/git/files/home/gitea/custom/public/img/gitea-sm.png b/roles/git/files/home/gitea/custom/public/img/gitea-sm.png
new file mode 100644
index 0000000000000000000000000000000000000000..d515f85b5af07d8b4e260c26ceb0c93ec8584e7e
GIT binary patch
literal 2583
zcmV+y3h4ETP)<h;3K|Lk000e1NJLTq004LZ004Lh0{{R34!XwR0002DP)t-sM{rE=
ztXK59ar3!w^to{KxpDcgSMji5^SE&IxpDNlaQwb>|HF6x%6s&;ZuGfv_`GxVxpDBO
zM)bLH^to{Jxp3`_7VM20?T#Dsv}y9KU-G3;@0~*Kmo)8^EbWgP?T;Glj~nfe8|{q_
z?285YmK^eu8|{!E@u*krjS}sS8|;r8?T;Gmj~eWc8|{u71HXm}w}%P1hzhue3b=<0
zxQGkEj|#Ym3%iO7xQGh3hzhre3b=?is}%A8002F7QchC<5j=61#R4N(-1-0i|E%u+
z{{{Sm|2k7H|Nj5}|Nim%{Qv*||NsBsXUG1i<av|>Js^PIX#c<e{`#Cyz@UtF000Qm
zNkl<Zcmb@FMFQkN2t_H00TDvm{ZBewghgz;{-)&<UNHC@g_v>^p>1KW@;f#;#Q^p7
zMRk21ka(Qz*U6klCLD6#xmk}Jr<s@+L7L+g9A`pVm}#D3Rq_gHWGzDFeDyOcn$2T^
zwJNyB1yw~vY3`0iwb0Fk#nNw3Um0x8EK=dee!a@~2aB3%gQyK=l&8q^i97_@gCPuz
z&*BMkb#OO0Sa6|q1SeY5Js!Hs;LvPfc`9<VE4ejG%@VU}f?HS}Y$c0tknf!=ZWZtf
zZB;N#Y*ks!mVWn2J7<Fb0Jm#<d#Wn3)kS_ZerRL`+dXl<P4~y;dD_d#><VjFQ@d-$
z_0+&q{Q=nmWAMjMt83J!U(F`Jv!}7u7XJLoAzIQu;68Bb_OZS~gkt#@(I-u>x9Ky{
zQ)Lk;9+LFu=b)SL@msP5WMUrrW9&A{AGDZ>Vxmk8#|z3KOug_vIRvVsy=!T=@Bdt1
zGFdcC>&ka!dm`j#@=qq&B6K*N%@>R1YP}AlC|s{s%f(_on+_39;#a-7Eg}5oRWej-
zQ^2V#f~Em^(vL2LuHs~~*(7P2fu*VXC0-$1Ke*s=qY19Ou4qE_UyD~@SHj@6P#T*b
zU9<TzPY@I5c@&0Wq`u^N9OKn|IiK-^%f@1{U`%7@i$BL~mt4qNPjnh^MUnBVb2kqY
zfaVC&4KKor;r!0w&onv$9Q8`F{Ri&AS6nbS8T~f8Q7(+_PAY1A(G*+mwuXY*SXI98
zpc9Df4=$5INKX(KzMwQMm(o4nWoaxK^#WVQX|@{!fvO6MrSt}lx%_&>20Iub-GS&~
zjZOC8FOqQ$lM%eb{RFG3Cjyn`@=R+R0Ju8+h>Ss7=Jo(s<klkt`mi-E441fd=B0h(
z20oGL3D9Pdq_QrS&@xRHP%GqxxPIV*^DAWyNA5Y@vt?2%%UZsZ<*ax167;C3uTFf%
z%{L5Nn=GSE&d9VM)Z4CzJCBq6f|6mREWDt8p2Tw^*WSeJ2K6#>lOMPeU=j~YvMf^<
zejq1`OiNnrWg{SN{EaKa2$`8&AC#@7`ZWr5G(1Y=pzc~iJ;k{k8v|v%+ux5z6UQ-}
z$!L7P->m^2e@7F!_U38Zw7$)lz6`tG-H-58<RfTwzgsgj(|Ja#Azv%5jfz>WbE7Ct
z4-cchx(Bx&yRW{fG>sk(X&Oa3IiIodP=jn({&K^)5KEW=cA}uw0PqdKGZR2(A>7Kz
zo273VHM!JNizH$$B&0db_9J}lM=v(!VYJWEP*xs`k_GFe8Y*w$ysD&G!U4>%7tnC5
z%j$DkvPFM&Q$0DPmDY^nbT|2ieSG|ep6t??lVy}1CiNx0*{8C?&C<Prj=3o+LsLGC
zeVSFsGTmP)u5vZU3L)?~W)Dk@_n{A7^=O}-^r&sP?Ezz!>`lkxlViJN(XS_?>o>-Z
zCt7hK8Xf!m^7{JntfS#JMdr!g88?b{CK1$ZxTfhCXV2R#i>k@$Yh3tvdp&}^zroKM
zxnC73%ChbGRl_k&w_&PZ+P7Y()3U5~bI@>I({U;R%TT>zJ<IRK@#FLJ<5;}w`BoVV
zWhG?CF<rMYXtph@)#-S*ZM@Oxh^{Zl{GQio-LY1bafoHv*RuTU^H_X-fPEIn&tF=;
z``8pA_aX0E9j|wSbVbL3`&>Wpl);+U_2Jd|hCQPa#nb_S@d8<fXwe|*<MH*y;Q6*~
zU98O<aDKNpEJ?l#x1Iju8wBe5EKG8qr#&ky^#1mKge)s4p+7+CFWy>k`<|<nC*e%-
zP9QwLjTUUQYV4DBVH#EvJtFQ&T+o$>0Q?;_=*^@?@`#en=HuCh!vOzqWP07;d}-L5
z^64N|C)t{~#DzE^b|Pz1+p4D|pB2*{3ohuwcHi(}31pin8;5#jVG9+%6I_6@kB={K
zfzWv2?NP5UHXa!RfPMo;ujiGQXy4&2OaYUCUnDLX1z4t_BK6}bWC>iBYi6DYB3rjU
zh)z&U$6~_+UZcXu1w?UfA?#jCEQrpp)7w!huX)Iu1!kHc0aW#^g?|sm_N9UYiB|w-
zXGgyb_zha9j0}^CSVDsUWtkt3Z)M1Rc8UOa1tL>LV?%e^CLWp1ju73z8v?k?H!bMl
zd*ULvpty=7KcT7QP-=>~ATW~ep_lpg)kXha&=sQ7L@YXX1}z`aTw<PS1}=E@mgq;2
zx~PJ+TuTs{uzqXc{GL>ZHX2q>_>ld@CO#R?6)oc8^$SQ0iw0!->$T7##u<0^wOOFF
zqGvS>c$J{^-Eb{W2&^rAhI8=oMIZiUzF&?UtZx%oT|#)4Yn-4Z8M5QHJFr~p64wCV
zXkaEXTQ@sxw@;|=%bM9<CD9oy$Dq|e1H*%3c?L(xs%>h^B179$5oA<b{{pQ0Lcqm+
zdR)2rF!?v&$)N(K>|F$hS$Hn$gY$1Rb`IyV2DewhQ5O9lU~v0a@n*moF%U%I0aLkx
zwT1##pa4N}-T(i?O7z?&6V1KO$Xnn*T<(&2^WOLP7shY(cl=hf|6KlY`nck8;=Mrl
zuS``54GBSpgbb5O6d8;AORpdCv4{zQekcUwR0zyo2oR*tv`U{r?AgD>-txNGvq9`#
zEN{zG-fjeafdsug1bqhtz5NP$V1-#yR~XvT_E=M&=fyR(N7qyt7xU^C^X3-w;itwH
z^SWKk6}2LkBrAetz69*1d++y%-Lx^-6g1er0E12U1{=*%WSOWu+n8^Zv!ek*7!rto
z1c-m&z^m;8FWm)R4Gz5Uh;KZ2#1{=U-~J3WKe13#MRQ`@8I5s;5L{zXeOpf?s&{Zg
z4Z;cY7EY+=a6%G}(EuES0H6?%n+qW$^N<lAt0IDA+31{lbdC=Ta`8w45Q-zPR_qvo
zH5`E@LBBZWY;nw)3U(7vb{yU>0KA`GS13nyg<4ByT>&U)+<<}xvy#Fu;Q+Ox+xz5e
tN0X}^QHoZyY8j_Ymw!~x>x00T{Q;(ddqjZ_b{hZy002ovPDHLkV1h@w2O9tY

literal 0
HcmV?d00001

diff --git a/roles/git/files/home/gitea/custom/templates/base/footer_content.tmpl b/roles/git/files/home/gitea/custom/templates/base/footer_content.tmpl
new file mode 100644
index 0000000..f69533e
--- /dev/null
+++ b/roles/git/files/home/gitea/custom/templates/base/footer_content.tmpl
@@ -0,0 +1,24 @@
+<footer>
+    <div class="ui container">
+        <div class="ui left">
+            © Lukas Bestle
+        </div>
+        <div class="ui right links">
+            {{if .ShowFooterBranding}}
+                <a target="_blank" rel="noopener noreferrer" href="https://github.com/go-gitea/gitea"><i class="fa fa-github-square"></i><span class="sr-only">GitHub</span></a>
+            {{end}}
+            <div class="ui language bottom floating slide up dropdown link item">
+                <i class="world icon"></i>
+                <div class="text">{{.LangName}}</div>
+                <div class="menu">
+                    {{range .AllLangs}}
+                        <a class="item {{if eq $.Lang .Lang}}active selected{{end}}" href="{{if eq $.Lang .Lang}}#{{else}}{{$.Link}}?lang={{.Lang}}{{end}}">{{.Name}}</a>
+                    {{end}}
+                </div>
+            </div>
+            <a target="_blank" href="https://codesignd.com">{{.i18n.Tr "website"}}</a>
+            <a target="_blank" href="https://codesignd.com/legal">Imprint</a>
+            {{if (or .ShowFooterVersion .PageIsAdmin)}}<span class="version">{{GoVer}}</span>{{end}}
+        </div>
+    </div>
+</footer>
diff --git a/roles/git/files/home/gitea/custom/templates/base/head_navbar.tmpl b/roles/git/files/home/gitea/custom/templates/base/head_navbar.tmpl
new file mode 100644
index 0000000..21e8acb
--- /dev/null
+++ b/roles/git/files/home/gitea/custom/templates/base/head_navbar.tmpl
@@ -0,0 +1,133 @@
+<div class="ui container" id="navbar">
+    <div class="item brand" style="justify-content: space-between;">
+        <a href="{{AppSubUrl}}/">
+            <img class="ui mini image" src="{{AppSubUrl}}/img/gitea-sm.png">
+        </a>
+        <div class="ui basic icon button mobile-only" id="navbar-expand-toggle">
+            <i class="sidebar icon"></i>
+        </div>
+    </div>
+
+    {{if .IsSigned}}
+        <a class="item {{if .PageIsDashboard}}active{{end}}" href="{{AppSubUrl}}/">{{.i18n.Tr "dashboard"}}</a>
+        <a class="item {{if .PageIsIssues}}active{{end}}" href="{{AppSubUrl}}/issues">{{.i18n.Tr "issues"}}</a>
+        <a class="item {{if .PageIsPulls}}active{{end}}" href="{{AppSubUrl}}/pulls">{{.i18n.Tr "pull_requests"}}</a>
+        <a class="item {{if .PageIsExplore}}active{{end}}" href="{{AppSubUrl}}/explore/repos">{{.i18n.Tr "explore"}}</a>
+    {{else if .IsLandingPageHome}}
+        <a class="item {{if .PageIsHome}}active{{end}}" href="{{AppSubUrl}}/">{{.i18n.Tr "home"}}</a>
+        <a class="item {{if .PageIsExplore}}active{{end}}" href="{{AppSubUrl}}/explore/repos">{{.i18n.Tr "explore"}}</a>
+    {{else if .IsLandingPageExplore}}
+        <a class="item {{if .PageIsExplore}}active{{end}}" href="{{AppSubUrl}}/explore/repos">{{.i18n.Tr "home"}}</a>
+    {{else if .IsLandingPageOrganizations}}
+        <a class="item {{if .PageIsExplore}}active{{end}}" href="{{AppSubUrl}}/explore/organizations">{{.i18n.Tr "home"}}</a>
+    {{end}}
+
+    {{template "custom/extra_links" .}}
+
+    {{/*
+        <div class="item">
+        <div class="ui icon input">
+        <input class="searchbox" type="text" placeholder="{{.i18n.Tr "search_project"}}">
+        <i class="search icon"></i>
+        </div>
+        </div>
+    */}}
+
+    {{if .IsSigned}}
+        <div class="right stackable menu">
+            <a href="{{AppSubUrl}}/notifications" class="item poping up" data-content='{{.i18n.Tr "notifications"}}' data-variation="tiny inverted">
+                <span class="text">
+                    <i class="fitted octicon octicon-bell"></i>
+                    <span class="sr-mobile-only">{{.i18n.Tr "notifications"}}</span>
+
+                    {{if .NotificationUnreadCount}}
+                        <span class="ui red label">
+                            {{.NotificationUnreadCount}}
+                        </span>
+                    {{end}}
+                </span>
+            </a>
+
+            <div class="ui dropdown jump item poping up" data-content="{{.i18n.Tr "create_new"}}" data-variation="tiny inverted">
+                <span class="text">
+                    <i class="fitted octicon octicon-plus"></i>
+                    <span class="sr-mobile-only">{{.i18n.Tr "create_new"}}</span>
+                    <i class="fitted octicon octicon-triangle-down not-mobile"></i>
+                </span>
+                <div class="menu">
+                    <a class="item" href="{{AppSubUrl}}/repo/create">
+                        <i class="fitted octicon octicon-plus"></i> {{.i18n.Tr "new_repo"}}
+                    </a>
+                    <a class="item" href="{{AppSubUrl}}/repo/migrate">
+                        <i class="fitted octicon octicon-repo-clone"></i> {{.i18n.Tr "new_migrate"}}
+                    </a>
+                    {{if .SignedUser.CanCreateOrganization}}
+                    <a class="item" href="{{AppSubUrl}}/org/create">
+                        <i class="fitted octicon octicon-organization"></i> {{.i18n.Tr "new_org"}}
+                    </a>
+                    {{end}}
+                </div><!-- end content create new menu -->
+            </div><!-- end dropdown menu create new -->
+
+            <div class="ui dropdown jump item poping up" tabindex="-1" data-content="{{.i18n.Tr "user_profile_and_more"}}" data-variation="tiny inverted">
+                <span class="text">
+                    <img class="ui tiny avatar image" src="{{.SignedUser.RelAvatarLink}}">
+                    <span class="sr-only">{{.i18n.Tr "user_profile_and_more"}}</span>
+                    <span class="mobile-only">{{.SignedUser.Name}}</span>
+                    <i class="fitted octicon octicon-triangle-down not-mobile" tabindex="-1"></i>
+                </span>
+                <div class="menu user-menu" tabindex="-1">
+                    <div class="ui header">
+                        {{.i18n.Tr "signed_in_as"}} <strong>{{.SignedUser.Name}}</strong>
+                    </div>
+
+                    <div class="divider"></div>
+                    <a class="item" href="{{AppSubUrl}}/{{.SignedUser.Name}}">
+                        <i class="octicon octicon-person"></i>
+                        {{.i18n.Tr "your_profile"}}<!-- Your profile -->
+                    </a>
+                    <a class="item" href="{{AppSubUrl}}/{{.SignedUser.Name}}?tab=stars">
+                        <i class="octicon octicon-star"></i>
+                        {{.i18n.Tr "your_starred"}}
+                    </a>
+                    <a class="{{if .PageIsUserSettings}}active{{end}} item" href="{{AppSubUrl}}/user/settings">
+                        <i class="octicon octicon-settings"></i>
+                        {{.i18n.Tr "your_settings"}}<!-- Your settings -->
+                    </a>
+                    <a class="item" target="_blank" rel="noopener noreferrer" href="https://docs.gitea.io">
+                        <i class="octicon octicon-question"></i>
+                        {{.i18n.Tr "help"}}<!-- Help -->
+                    </a>
+                    {{if .IsAdmin}}
+                        <div class="divider"></div>
+
+                        <a class="{{if .PageIsAdmin}}active{{end}} item" href="{{AppSubUrl}}/admin">
+                            <i class="icon settings"></i>
+                            {{.i18n.Tr "admin_panel"}}<!-- Admin Panel -->
+                        </a>
+                    {{end}}
+
+                    <div class="divider"></div>
+                    <a class="item" href="{{AppSubUrl}}/user/logout">
+                        <i class="octicon octicon-sign-out"></i>
+                        {{.i18n.Tr "sign_out"}}<!-- Sign Out -->
+                    </a>
+                </div><!-- end content avatar menu -->
+            </div><!-- end dropdown avatar menu -->
+        </div><!-- end signed user right menu -->
+
+    {{else}}
+
+        <div class="right stackable menu">
+            {{if .ShowRegistrationButton}}
+                <a class="item{{if .PageIsSignUp}} active{{end}}" href="{{AppSubUrl}}/user/sign_up">
+                    <i class="octicon octicon-person"></i> {{.i18n.Tr "register"}}
+                </a>
+            {{end}}
+            <a class="item{{if .PageIsSignIn}} active{{end}}" href="{{AppSubUrl}}/user/login?redirect_to={{.Link}}">
+                <i class="octicon octicon-sign-in"></i> {{.i18n.Tr "sign_in"}}
+            </a>
+        </div><!-- end anonymous right menu -->
+
+    {{end}}
+</div>
diff --git a/roles/git/files/home/gitea/data/.gitkeep b/roles/git/files/home/gitea/data/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/roles/git/files/home/gitea/log/.gitkeep b/roles/git/files/home/gitea/log/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/roles/git/files/home/gitea/repos/.gitkeep b/roles/git/files/home/gitea/repos/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/roles/git/handlers/main.yml b/roles/git/handlers/main.yml
new file mode 100644
index 0000000..3078312
--- /dev/null
+++ b/roles/git/handlers/main.yml
@@ -0,0 +1,8 @@
+---
+- name: Reread service config
+  command: supervisorctl reread
+
+- name: Restart Gitea
+  supervisorctl:
+    name: gitea
+    state: restarted
diff --git a/roles/git/tasks/main.yml b/roles/git/tasks/main.yml
new file mode 100644
index 0000000..798f8b3
--- /dev/null
+++ b/roles/git/tasks/main.yml
@@ -0,0 +1,47 @@
+---
+- name: Add Git domain to Uberspace config
+  import_role:
+    name: snapstromegon.uberspace_web_domain
+  vars:
+    domain: git.codesignd.com
+
+- name: Copy config to home directory
+  copy:
+    src: home/
+    dest: "{{ ansible_env.HOME }}/"
+    mode: preserve
+  tags: gitea-update
+  notify: Restart Gitea
+
+- name: Copy service config
+  template:
+    src: service.ini.j2
+    dest: "{{ ansible_env.HOME }}/etc/services.d/gitea.ini"
+  notify: Reread service config
+
+- name: Copy app config
+  template:
+    src: app.ini.j2
+    dest: "{{ ansible_env.HOME }}/gitea/custom/conf/app.ini"
+  tags: gitea-update
+  notify: Restart Gitea
+
+- name: Configure web backend
+  import_role:
+    name: snapstromegon.uberspace_web_backend
+  vars:
+    route: git.codesignd.com
+    http:
+      port: 8080
+
+- name: Set up Gitea Homebrew tap
+  homebrew_tap:
+    name: gitea/tap
+    url: https://gitea.com/gitea/homebrew-gitea.git
+
+- name: Install and update Gitea
+  homebrew:
+    name: gitea
+    state: latest
+  notify: Restart Gitea
+  tags: gitea-update
diff --git a/roles/git/templates/app.ini.j2 b/roles/git/templates/app.ini.j2
new file mode 100644
index 0000000..86c1d14
--- /dev/null
+++ b/roles/git/templates/app.ini.j2
@@ -0,0 +1,73 @@
+; Config last updated based on:
+;  commit: bcb722daec4bdd45303da97173a2b8a3c4c95dcd
+;  date:   2020-01-19
+
+APP_NAME = codesignd Git
+RUN_USER = {{ ansible_user_id }}
+RUN_MODE = prod
+
+; Server settings
+; ===============
+
+[server]
+PROTOCOL     = http
+DOMAIN       = git.codesignd.com
+HTTP_PORT    = 8080
+ROOT_URL     = https://%(DOMAIN)s/
+SSH_PORT     = 22
+OFFLINE_MODE = true
+ENABLE_GZIP  = true
+LANDING_PAGE = explore
+
+[security]
+INSTALL_LOCK        = true
+SECRET_KEY          = {{ git_secret_key }}
+INTERNAL_TOKEN      = {{ git_internal_token }}
+PASSWORD_COMPLEXITY = off
+
+[oauth2]
+JWT_SECRET = {{ git_jwt_secret }}
+
+; Paths
+; =====
+
+[database]
+DB_TYPE = sqlite3
+PATH    = /home/%(RUN_USER)s/gitea/data/gitea.db
+
+[repository]
+ROOT = /home/%(RUN_USER)s/gitea/repos
+
+; Functionality settings
+; ======================
+
+[admin]
+DISABLE_REGULAR_ORG_CREATION = true
+
+[log]
+MODE  = file
+LEVEL = Info
+
+[mailer]
+ENABLED     = true
+FROM        = %(APP_NAME)s <git@codesignd.com>
+MAILER_TYPE = sendmail
+
+[service]
+DISABLE_REGISTRATION = true
+ENABLE_NOTIFY_MAIL   = true
+NO_REPLY_ADDRESS     = noreply.codesignd.com
+
+[session]
+COOKIE_SECURE = true
+
+; Branding
+; ========
+
+[ui]
+THEME_COLOR_META_TAG = `#eb8e2e`
+
+[other]
+SHOW_FOOTER_BRANDING           = false
+SHOW_FOOTER_VERSION            = false
+SHOW_FOOTER_TEMPLATE_LOAD_TIME = false
diff --git a/roles/git/templates/service.ini.j2 b/roles/git/templates/service.ini.j2
new file mode 100644
index 0000000..d52bc9c
--- /dev/null
+++ b/roles/git/templates/service.ini.j2
@@ -0,0 +1,5 @@
+[program:gitea]
+command={{ ansible_env.HOME }}/.linuxbrew/bin/gitea web
+environment=GITEA_WORK_DIR={{ ansible_env.HOME }}/gitea
+autostart=yes
+autorestart=yes
diff --git a/roles/homebrew/handlers/main.yml b/roles/homebrew/handlers/main.yml
new file mode 100644
index 0000000..66e7135
--- /dev/null
+++ b/roles/homebrew/handlers/main.yml
@@ -0,0 +1,3 @@
+---
+- name: Opt out from Homebrew analytics
+  command: ~/.linuxbrew/bin/brew analytics off
diff --git a/roles/homebrew/tasks/main.yml b/roles/homebrew/tasks/main.yml
new file mode 100644
index 0000000..1d17c8a
--- /dev/null
+++ b/roles/homebrew/tasks/main.yml
@@ -0,0 +1,13 @@
+---
+- name: Install Homebrew
+  git:
+    repo: "https://github.com/Homebrew/brew.git"
+    version: master
+    dest: "{{ ansible_env.HOME }}/.linuxbrew"
+  notify: Opt out from Homebrew analytics
+
+- name: Install Homebrew formulae
+  homebrew:
+    name: "{{ homebrew_formulae }}"
+    state: latest
+    path: "{{ ansible_env.HOME}}/.linuxbrew/bin"
diff --git a/roles/host-site/tasks/main.yml b/roles/host-site/tasks/main.yml
new file mode 100644
index 0000000..16bec7d
--- /dev/null
+++ b/roles/host-site/tasks/main.yml
@@ -0,0 +1,11 @@
+---
+- name: Add host domain to Uberspace config
+  import_role:
+    name: snapstromegon.uberspace_web_domain
+  vars:
+    domain: kodos-{{ ansible_user_id }}.codesignd.net
+
+- name: Set up host site
+  template:
+    src: index.html.j2
+    dest: /var/www/virtual/{{ ansible_user_id }}/html/index.html
diff --git a/roles/host-site/templates/index.html.j2 b/roles/host-site/templates/index.html.j2
new file mode 100644
index 0000000..db899f6
--- /dev/null
+++ b/roles/host-site/templates/index.html.j2
@@ -0,0 +1,127 @@
+<!DOCTYPE html>
+<html lang="en">
+  <head>
+    <meta charset="utf-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1">
+
+    <title>kodos-{{ ansible_user_id }}.codesignd.net</title>
+    <meta name="robots" content="noindex, nofollow">
+
+    <style>
+    /* Reset */
+    html {
+      box-sizing: border-box;
+    }
+
+    *, *::before, *::after {
+      margin: 0;
+      padding: 0;
+
+      box-sizing: inherit;
+
+      text-decoration: none;
+      list-style: none;
+      border: none;
+    }
+
+    /* Container styling */
+    html {
+      display: flex;
+      align-items: center;
+      justify-content: center;
+
+      min-height: 100vh;
+
+      background: #efefef;
+    }
+
+    body {
+      min-width: 20rem;
+
+      background: #fff;
+      box-shadow: 0 0 10px #ddd;
+    }
+
+    @media (max-width: 25rem) {
+        html {
+            align-items: start;
+
+            background: initial;
+        }
+
+        body {
+            min-width: initial;
+            width: 100%;
+            padding-top: 1rem;
+
+            box-shadow: initial;
+        }
+    }
+
+    main {
+      padding: 1.5rem;
+    }
+
+    footer {
+      border-top: 2px dotted #efefef;
+      padding: 1rem;
+      text-align: center;
+    }
+
+    /* General Typography */
+    :root {
+      font-family: system-ui, sans-serif;
+      line-height: 1.4;
+    }
+
+    h1 {
+      font-size: 1.5rem;
+      font-weight: 600;
+      line-height: 1.2;
+      text-align: center;
+    }
+
+    h1 span {
+      font-size: 1.8rem;
+
+      display: block;
+    }
+
+    svg {
+      width: 8rem;
+      height: 8rem;
+
+      display: block;
+      margin: 0 auto 1rem;
+    }
+
+    .cog {
+      animation: rotate 30s linear infinite;
+      transform-origin: 50% 50%;
+    }
+    @keyframes rotate {
+      100% {
+        transform: rotate(360deg);
+      }
+    }
+
+    a {
+      color: #ed8f1b;
+    }
+    footer a:not(:last-child) {
+      margin-right: 0.5em;
+    }
+    </style>
+  </head>
+  <body>
+    <main>
+      <svg viewBox="0 0 1000 1000" xmlns="http://www.w3.org/2000/svg"><g fill="none"><path class="cog" d="M475.28 853.557L408.45 999.43a503.966 503.966 0 0 1-78.883-21.084l15.057-159.725a354.034 354.034 0 0 1-42.828-24.777l-130.73 92.853a510.782 510.782 0 0 1-57.761-57.762l92.853-130.729a354.034 354.034 0 0 1-24.777-42.828L21.655 670.434A503.967 503.967 0 0 1 .57 591.55l145.872-66.831a359.603 359.603 0 0 1-.85-24.72c0-8.31.287-16.553.85-24.72L.57 408.45a503.966 503.966 0 0 1 21.084-78.883l159.725 15.057a354.034 354.034 0 0 1 24.777-42.828l-92.853-130.73a510.782 510.782 0 0 1 57.762-57.761l130.729 92.853a354.034 354.034 0 0 1 42.828-24.777L329.566 21.655A503.967 503.967 0 0 1 408.45.57l66.831 145.872a359.404 359.404 0 0 1 49.44 0L591.55.57a503.966 503.966 0 0 1 78.883 21.084L655.377 181.38a354.034 354.034 0 0 1 42.828 24.777l130.73-92.853a510.782 510.782 0 0 1 57.761 57.762l-92.853 130.729a354.034 354.034 0 0 1 24.777 42.828l159.725-15.057a503.967 503.967 0 0 1 21.084 78.883L853.557 475.28a359.404 359.404 0 0 1 0 49.44l145.873 66.83a503.966 503.966 0 0 1-21.084 78.883L818.62 655.377a354.034 354.034 0 0 1-24.777 42.828l92.853 130.73a510.782 510.782 0 0 1-57.762 57.761l-130.729-92.853a354.034 354.034 0 0 1-42.828 24.777l15.057 159.725a503.967 503.967 0 0 1-78.883 21.084L524.72 853.557a359.404 359.404 0 0 1-49.44 0zM787.356 500c0-158.703-128.653-287.356-287.356-287.356S212.644 341.297 212.644 500 341.297 787.356 500 787.356 787.356 658.703 787.356 500z" fill="#F4B971"/><path stroke="#0BB888" stroke-width="57.471" d="M500 346.743l132.724 76.629v153.256L500 653.257l-132.724-76.629V423.372z"/><circle stroke="#ED8F1B" stroke-width="118.774" cx="500.001" cy="500" r="318.008"/></g></svg>
+      <h1><span>kodos-{{ ansible_user_id }}</span>.codesignd.net</h1>
+    </main>
+
+    <footer>
+      <a href="https://codesignd.com/contact">Contact</a>
+      <a href="https://codesignd.com/legal">Imprint</a>
+    </footer>
+  </body>
+</html>
diff --git a/roles/mail-redirect/tasks/main.yml b/roles/mail-redirect/tasks/main.yml
new file mode 100644
index 0000000..d94f8df
--- /dev/null
+++ b/roles/mail-redirect/tasks/main.yml
@@ -0,0 +1,15 @@
+---
+- name: Set up email redirect
+  copy:
+    content: "{{ mail_redirect_to }}"
+    dest: "{{ ansible_env.HOME }}/.qmail"
+
+- name: Delete catch-all address and local Maildirs
+  file:
+    path: "{{ item }}"
+    state: absent
+  loop:
+    - "{{ ansible_env.HOME }}/.spamfolder"
+    - "{{ ansible_env.HOME }}/.qmail-default"
+    - "{{ ansible_env.HOME }}/Maildir"
+    - "{{ ansible_env.HOME }}/users"
diff --git a/roles/mail/tasks/main.yml b/roles/mail/tasks/main.yml
new file mode 100644
index 0000000..e66bda3
--- /dev/null
+++ b/roles/mail/tasks/main.yml
@@ -0,0 +1,59 @@
+---
+- name: Read existing Uberspace domains
+  command: uberspace mail domain list
+  register: uberspace_mail_domain_result
+  changed_when: false
+
+- name: Add configured domains to Uberspace config
+  shell: "uberspace mail domain add $(idn {{ item }})"
+  when: item not in uberspace_mail_domain_result.stdout_lines
+  loop: "{{ mail_domains.get(ansible_user_id, []) }}"
+
+- name: Delete system Maildir
+  file:
+    path: "{{ ansible_env.HOME }}/Maildir"
+    state: absent
+
+- name: Set up local mail user
+  import_role:
+    name: snapstromegon.uberspace_mail_user
+  vars:
+    user: lukas
+    password: "{{ mail_password }}"
+
+- name: Enable catchall mode
+  import_role:
+    name: snapstromegon.uberspace_mail_catchall
+  vars:
+    user: lukas
+
+- name: Create qdated key
+  command:
+    cmd: qdated-makekey
+    creates: "{{ ansible_env.HOME }}/.qdated-key"
+
+- name: Read qdated key
+  slurp:
+    src: "{{ ansible_env.HOME }}/.qdated-key"
+  register: qdated_key
+  no_log: yes
+
+- name: Register qdated key as fact
+  set_fact:
+    qdated_key: "{{ qdated_key.content | b64decode }}"
+  no_log: yes
+
+- name: Set up .qmail-dated-default file
+  template:
+    src: qmail-dated.j2
+    dest: "{{ ansible_env.HOME }}/.qmail-dated-default"
+
+- name: Create mutt config directory
+  file:
+    path: "{{ ansible_env.HOME }}/.mutt"
+    state: directory
+
+- name: Set up mutt config
+  template:
+    src: muttrc.j2
+    dest: "{{ ansible_env.HOME }}/.mutt/muttrc"
diff --git a/roles/mail/templates/muttrc.j2 b/roles/mail/templates/muttrc.j2
new file mode 100644
index 0000000..d26a978
--- /dev/null
+++ b/roles/mail/templates/muttrc.j2
@@ -0,0 +1,32 @@
+# We use Maildirs, not Mailboxes
+set mbox_type=Maildir
+
+# Cache headers
+set header_cache=~/.cache/mutt_header_cache
+
+# Directory setup
+set folder="~/users/lukas"
+set spoolfile="+/"
+set record="+.Sent"
+set postponed="+.Drafts"
+
+# Load IMAP folders as mailboxes
+mailboxes `echo -n "+ "; find ${maildir:-~/users/lukas} -maxdepth 1 -type d -name ".*" -printf "+'%f' "`
+macro index c "<change-folder>?<toggle-mailboxes>" "open a different folder"
+macro pager c "<change-folder>?<toggle-mailboxes>" "open a different folder"
+
+# Sender
+set from="Lukas Bestle <{{ mail_default_address[ansible_user_id] }}>"
+
+# Sorting
+set sort=threads
+set sort_aux=date-sent
+
+# Better Umlaut support
+unset allow_8bit
+
+# Display formats
+set mask="!^\\.[^.]"
+set date_format="%a, %d. %b %H:%M"
+set index_format="%3C %Z %D %-25.25F (%?l?%4l&%4c?) %s"
+set folder_format="%2C %t %d %t %f"
diff --git a/roles/mail/templates/qmail-dated.j2 b/roles/mail/templates/qmail-dated.j2
new file mode 100644
index 0000000..fd9bb92
--- /dev/null
+++ b/roles/mail/templates/qmail-dated.j2
@@ -0,0 +1,3 @@
+# Email address is valid for 7 days
+|~/.linuxbrew/bin/qdated-check 604800
+{{ ansible_user_id }}-lukas
diff --git a/roles/terminal/files/authorized_keys b/roles/terminal/files/authorized_keys
new file mode 100644
index 0000000..be391d1
--- /dev/null
+++ b/roles/terminal/files/authorized_keys
@@ -0,0 +1,4 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFi5drlM5Uli7GbTZFiKPKnG8RmOyS2eu3c6XkwwJiSk luX@smithers.codesignd.net
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOBEksH8LMO5jf1QsMH3yRdxSmY2XPk8CH9HNsWfsXVt luX@bart.codesignd.net
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIETsPbHqAta4E6j9pm/9E4lLurlPoh+p5zOWiZ9GS5ml luX@maggie.codesignd.net
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIG9J5FMq9ttUcnuqWhYsiKVuols5uD2Ddv7L3Z93nD2W luX@homer.codesignd.net
diff --git a/roles/terminal/files/dotfiles/.composer/vendor/bin/.gitkeep b/roles/terminal/files/dotfiles/.composer/vendor/bin/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/roles/terminal/files/dotfiles/.config/fish/conf.d/pkgs.fish b/roles/terminal/files/dotfiles/.config/fish/conf.d/pkgs.fish
new file mode 100644
index 0000000..440a335
--- /dev/null
+++ b/roles/terminal/files/dotfiles/.config/fish/conf.d/pkgs.fish
@@ -0,0 +1,60 @@
+###
+# Loader for Oh My Fish! packages
+# Loads all packages stored in ~/.config/fish/pkgs/
+#
+# Inspired by https://github.com/jorgebucaran/fisher
+###
+
+set -q pkgs_path; or set -g pkgs_path ~/.config/fish/pkgs
+
+# also search for functions/completions/binaries/manpages within packages
+set fish_function_path $fish_function_path[1] $pkgs_path/.functions $pkgs_path/*/functions $fish_function_path[2..-1]
+set fish_complete_path $fish_complete_path[1] $pkgs_path/*/completions $fish_complete_path[2..-1]
+set -x PATH $pkgs_path/*/bin $PATH
+set -x MANPATH $pkgs_path/*/man $MANPATH
+
+# load package key bindings when needed
+if functions -q fish_user_key_bindings
+    functions -c fish_user_key_bindings fish_user_key_bindings_copy
+end
+function fish_user_key_bindings
+    for file in $pkgs_path/*/key_bindings.fish
+        builtin source $file 2>&1 > /dev/null
+    end
+    if functions -q fish_user_key_bindings_copy
+        fish_user_key_bindings_copy
+    end
+end
+
+# load custom config from packages
+for file in $pkgs_path/*/conf.d/*.fish $pkgs_path/*/init.fish
+    builtin source $file 2> /dev/null
+end
+
+# ensure that the prompt is loaded (doesn't autoload for some reason)
+if test -f $pkgs_path/.functions/fish_prompt.fish
+    builtin source $pkgs_path/.functions/fish_prompt.fish 2> /dev/null
+end
+
+# collect all functions on the top-level of packages into $pkgs_path/.functions
+# (run by Ansible after packages have been updated)
+function _pkgs_collect_functions
+    # clear the functions directory as we rebuild it from scratch
+    if test -d $pkgs_path/.functions
+        command rm -rf $pkgs_path/.functions
+    end
+    command mkdir -p $pkgs_path/.functions
+
+    # consider all fish files in the top-level of each package
+    for src in $pkgs_path/*/*.fish
+        set -l package (command basename (command dirname $src))
+        set -l filename (command basename $src)
+
+        # we don't care about uninstall.fish;
+        # init.fish and key_bindings.fish are dynamically handled on runtime above
+        if not contains $filename {init,key_bindings,uninstall}.fish
+            # create a relative symlink
+            command ln -sf ../$package/$filename $pkgs_path/.functions/$filename
+        end
+    end
+end
diff --git a/roles/terminal/files/dotfiles/.config/fish/config.fish b/roles/terminal/files/dotfiles/.config/fish/config.fish
new file mode 100644
index 0000000..2299655
--- /dev/null
+++ b/roles/terminal/files/dotfiles/.config/fish/config.fish
@@ -0,0 +1,46 @@
+# Environment variables
+# ---------------------
+
+set -x PATH $HOME/bin \
+            $HOME/.composer/vendor/bin \
+            $HOME/.local/bin \
+            $HOME/.linuxbrew/bin \
+            $PATH
+
+set -x MANPATH $HOME/.linuxbrew/share/man \
+                $MANPATH
+
+# language
+set -x LANG de_DE.UTF-8
+
+# editor
+set -x VISUAL "$HOME/.config/fish/pkgs/rmate/rmate -p 64364 -w" # Visual Studio Code (wait mode)
+set -x EDITOR 'nano -w' # nano as fallback editor
+
+set -x XDG_CONFIG_HOME $HOME/.config
+
+# Aliases
+# -------
+
+# Edit file remotely with VS Code
+alias code="$HOME/.config/fish/pkgs/rmate/rmate -p 64364"
+
+# Short ls command
+alias l='ls -la'
+
+# General Settings
+# ----------------
+
+# enforce 24-bit color mode
+# (the requried env var is not transmitted via SSH)
+set -x COLORTERM truecolor
+set -g fish_term24bit 1
+
+# settings for the bobthefish theme
+set -g fish_prompt_pwd_dir_length 0
+set -g theme_color_scheme solarized-dark
+set -g theme_date_format '+%a %d.%m.%y %H:%M:%S'
+set -g theme_display_git_master_branch yes
+set -g theme_show_exit_status yes
+set -g theme_title_use_abbreviated_path no
+set -x VIRTUAL_ENV_DISABLE_PROMPT 1
diff --git a/roles/terminal/files/dotfiles/.config/fish/functions/fish_greeting.fish b/roles/terminal/files/dotfiles/.config/fish/functions/fish_greeting.fish
new file mode 100644
index 0000000..a4f295a
--- /dev/null
+++ b/roles/terminal/files/dotfiles/.config/fish/functions/fish_greeting.fish
@@ -0,0 +1,3 @@
+function fish_greeting
+    welcome
+end
diff --git a/roles/terminal/files/dotfiles/.config/fish/functions/nsreverse.fish b/roles/terminal/files/dotfiles/.config/fish/functions/nsreverse.fish
new file mode 100644
index 0000000..e4dda59
--- /dev/null
+++ b/roles/terminal/files/dotfiles/.config/fish/functions/nsreverse.fish
@@ -0,0 +1,21 @@
+###
+# Looks up the IPv4 address of the given hostname and tries to find the reverse record of that IP
+#
+# Globals:
+#   None
+# Arguments:
+#   $domain string Hostname to look up
+# Returns:
+#   None
+###
+function nsreverse
+	# lookup IP
+	set ip (dig "$argv[1]" A +short); or return 1
+
+	# lookup reverse record
+	set reverse (dig -x "$ip" +short); or return 1
+
+	# output
+	echo -e "\033[1mIPv4:          \033[0;34m $ip\033[0m"
+	echo -e "\033[1mReverse lookup:\033[0;34m $reverse\033[0m"
+end
diff --git a/roles/terminal/files/dotfiles/.config/fish/functions/nsreverse6.fish b/roles/terminal/files/dotfiles/.config/fish/functions/nsreverse6.fish
new file mode 100644
index 0000000..d84c084
--- /dev/null
+++ b/roles/terminal/files/dotfiles/.config/fish/functions/nsreverse6.fish
@@ -0,0 +1,21 @@
+###
+# Looks up the IPv6 address of the given hostname and tries to find the reverse record of that IP
+#
+# Globals:
+#   None
+# Arguments:
+#   $domain string Hostname to look up
+# Returns:
+#   None
+###
+function nsreverse6
+	# lookup IP
+	set ip (dig "$argv[1]" AAAA +short); or return 1
+
+	# lookup reverse record
+	set reverse (dig -x "$ip" +short); or return 1
+
+	# output
+	echo -e "\033[1mIPv6:          \033[0;34m $ip\033[0m"
+	echo -e "\033[1mReverse lookup:\033[0;34m $reverse\033[0m"
+end
diff --git a/roles/terminal/files/dotfiles/.config/fish/pkgs/.gitkeep b/roles/terminal/files/dotfiles/.config/fish/pkgs/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/roles/terminal/files/dotfiles/.config/git/.gitkeep b/roles/terminal/files/dotfiles/.config/git/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/roles/terminal/files/dotfiles/.config/welcome/colossal.flf b/roles/terminal/files/dotfiles/.config/welcome/colossal.flf
new file mode 100644
index 0000000..fa13ba6
--- /dev/null
+++ b/roles/terminal/files/dotfiles/.config/welcome/colossal.flf
@@ -0,0 +1,1136 @@
+flf2a$ 11 8 20 32 13
+Colossal.flf (Jonathon - jon@mq.edu.au)
+8 June 1994
+
+Explanation of first line:
+flf2 - "magic number" for file identification
+a    - should always be `a', for now
+$    - the "hardblank" -- prints as a blank, but can't be smushed
+11   - height of a character
+8    - height of a character, not including descenders
+20   - max line length (excluding comment lines) + a fudge factor
+32   - default smushmode for this font
+13   - number of comment lines
+
+$  $@
+$  $@
+$  $@
+$  $@
+$  $@
+$  $@
+$  $@
+$  $@
+$  $@
+$  $@
+$  $@@
+888$@
+888$@
+888$@
+888$@
+888$@
+Y8P$@
+ " $@
+888$@
+    @
+    @
+    @@
+88 88$@
+8P 8P$@
+"  " $@
+ $  $ @
+ $  $ @
+ $  $ @
+ $  $ @
+ $  $ @
+ $  $ @
+ $  $ @
+ $  $ @@
+  888  888  $@
+  888  888  $@
+888888888888$@
+  888  888  $@
+  888  888  $@
+888888888888$@
+  888  888  $@
+  888  888  $@
+            $@
+            $@
+            $@@
+     88    $@
+ .d88888b. $@
+d88P 88"88b$@
+Y88b.88   $ @
+ "Y88888b.$ @
+     88"88b$@
+Y88b 88.88P$@
+ "Y88888P"$ @
+     88     @
+            @
+            @@
+d88b   d88P$@
+Y88P  d88P $@
+     d88P $ @
+    d88P $  @
+ $ d88P  $  @
+$ d88P   $  @
+$d88P  d88b$@
+d88P   Y88P$@
+            @
+            @
+            @@
+ .d8888b.  $  @
+d88P  "88b $  @
+Y88b. d88P $  @
+ "Y8888P"  $  @
+.d88P88K.d88P$@
+888"  Y888P" $@
+Y88b .d8888b $@
+ "Y8888P" Y88b@
+              @
+              @
+              @@
+d8b$@
+88P$@
+8P $@
+" $ @
+ $  @
+ $  @
+ $  @
+ $  @
+ $  @
+ $  @
+ $  @@
+ $.d88$@
+$d88P"$@
+d88P $ @
+888  $ @
+888  $ @
+Y88b $ @
+$Y88b.$@
+ $"Y88$@
+       @
+       @
+       @@
+88b.$  @
+"Y88b$ @
+  Y88b$@
+   888$@
+   888$@
+  d88P$@
+.d88P$ @
+88P"$  @
+       @
+       @
+       @@
+             @
+      o  $   @
+     d8b  $  @
+    d888b  $ @
+"Y888888888P"@
+  "Y88888P"$ @
+  d88P"Y88b $@
+ dP"     "Yb$@
+             @
+             @
+             @@
+     $  @
+     $  @
+     $  @
+  888  $@
+8888888$@
+  888  $@
+     $  @
+     $  @
+     $  @
+     $  @
+     $  @@
+  $ @
+  $ @
+  $ @
+  $ @
+  $ @
+  $ @
+d8b$@
+88P$@
+8P  @
+"   @
+    @@
+ $  $  @
+ $  $  @
+ $  $  @
+ $  $  @
+ $  $  @
+888888$@
+ $  $  @
+ $  $  @
+ $  $  @
+ $  $  @
+ $  $  @@
+  $ @
+  $ @
+  $ @
+  $ @
+  $ @
+  $ @
+d8b$@
+Y8P$@
+    @
+    @
+    @@
+     $ d88P$@
+    $ d88P $@
+   $ d88P $ @
+  $ d88P $  @
+ $ d88P $   @
+$ d88P $    @
+$d88P $     @
+d88P $      @
+            @
+            @
+            @@
+$.d8888b.$ @
+d88P  Y88b$@
+888    888$@
+888    888$@
+888    888$@
+888    888$@
+Y88b  d88P$@
+$"Y8888P"$ @
+           @
+           @
+           @@
+ d888 $ @
+d8888 $ @
+  888 $ @
+  888 $ @
+  888 $ @
+  888 $ @
+  888 $ @
+8888888$@
+        @
+        @
+        @@
+ .d8888b.$ @
+d88P  Y88b$@
+ $     888$@
+ $   .d88P$@
+ .od888P" $@
+d88P"     $@
+888"      $@
+888888888 $@
+           @
+           @
+           @@
+ .d8888b.$ @
+d88P  Y88b$@
+ $   .d88P$@
+ $  8888" $@
+ $   "Y8b.$@
+888    888$@
+Y88b  d88P$@
+ "Y8888P" $@
+           @
+           @
+           @@
+    d8888 $@
+   d8P888 $@
+  d8P 888 $@
+ d8P  888 $@
+d88   888 $@
+8888888888$@
+      888 $@
+      888 $@
+           @
+           @
+           @@
+888888888$ @
+888      $ @
+888      $ @
+8888888b.$ @
+$    "Y88b$@
+$      888$@
+Y88b  d88P$@
+ "Y8888P"$ @
+           @
+           @
+           @@
+$.d8888b.$ @
+d88P  Y88b$@
+888      $ @
+888d888b.$ @
+888P "Y88b$@
+888    888$@
+Y88b  d88P$@
+$"Y8888P"$ @
+           @
+           @
+           @@
+8888888888$@
+    $ d88P$@
+   $ d88P $@
+  $ d88P $ @
+$88888888$ @
+$ d88P $   @
+$d88P $    @
+d88P $     @
+           @
+           @
+           @@
+ .d8888b.$ @
+d88P  Y88b$@
+Y88b. d88P$@
+ "Y88888" $@
+.d8P""Y8b.$@
+888    888$@
+Y88b  d88P$@
+ "Y8888P" $@
+           @
+           @
+           @@
+$.d8888b.$ @
+d88P  Y88b$@
+888    888$@
+Y88b. d888$@
+$"Y888P888$@
+$      888$@
+Y88b  d88P$@
+ "Y8888P"$ @
+           @
+           @
+           @@
+  $ @
+  $ @
+  $ @
+d8b$@
+Y8P$@
+  $ @
+d8b$@
+Y8P$@
+    @
+    @
+    @@
+  $ @
+  $ @
+  $ @
+d8b @
+Y8P @
+  $ @
+d8b$@
+88P$@
+8P  @
+"   @
+    @@
+ $ d88P$@
+$ d88P $@
+ d88P $ @
+d88P $  @
+Y88b $  @
+ Y88b $ @
+$ Y88b $@
+ $ Y88b$@
+        @
+        @
+        @@
+ $  $  @
+ $  $  @
+ $  $  @
+888888$@
+ $   $ @
+888888$@
+ $  $  @
+ $  $  @
+ $  $  @
+ $  $  @
+ $  $  @@
+Y88b $  @
+ Y88b $ @
+  Y88b $@
+   Y88b$@
+   d88P$@
+  d88P $@
+ d88P $ @
+d88P $  @
+        @
+        @
+        @@
+$.d8888b.$ @
+d88P  Y88b$@
+ $   .d88P$@
+ $ .d88P"$ @
+ $ 888"  $ @
+ $ 888   $ @
+ $       $ @
+ $ 888   $ @
+           @
+           @
+           @@
+$.d8888888b.$ @
+d88P"   "Y88b$@
+888  d8b  888$@
+888  888  888$@
+888  888bd88P$@
+888  Y8888P" $@
+Y88b.     .d8$@
+$"Y88888888P"$@
+              @
+              @
+              @@
+      $d8888$@
+     $d88888$@
+    $d88P888$@
+   $d88P 888$@
+  $d88P  888$@
+ $d88P   888$@
+$d8888888888$@
+d88P     888$@
+             @
+             @
+             @@
+888888b.$  @
+888  "88b$ @
+888  .88P$ @
+8888888K.$ @
+888  "Y88b$@
+888    888$@
+888   d88P$@
+8888888P"$ @
+           @
+           @
+           @@
+$.d8888b.$ @
+d88P  Y88b$@
+888    888$@
+888      $ @
+888      $ @
+888    888$@
+Y88b  d88P$@
+$"Y8888P"$ @
+           @
+           @
+           @@
+8888888b.$ @
+888  "Y88b$@
+888    888$@
+888    888$@
+888    888$@
+888    888$@
+888  .d88P$@
+8888888P"$ @
+           @
+           @
+           @@
+8888888888$@
+888    $   @
+888    $   @
+8888888$   @
+888    $   @
+888    $   @
+888    $   @
+8888888888$@
+           @
+           @
+           @@
+8888888888$@
+888    $   @
+888    $   @
+8888888$   @
+888    $   @
+888    $   @
+888    $   @
+888    $   @
+           @
+           @
+           @@
+$.d8888b.$ @
+d88P  Y88b$@
+888    888$@
+888       $@
+888  88888$@
+888    888$@
+Y88b  d88P$@
+$"Y8888P88$@
+           @
+           @
+           @@
+888    888$@
+888    888$@
+888    888$@
+8888888888$@
+888    888$@
+888    888$@
+888    888$@
+888    888$@
+           @
+           @
+           @@
+8888888$@
+  888 $ @
+  888 $ @
+  888 $ @
+  888 $ @
+  888 $ @
+  888 $ @
+8888888$@
+        @
+        @
+        @@
+  888888$@
+    "88b$@
+     888$@
+     888$@
+     888$@
+     888$@
+     88P$@
+     888$@
+   .d88P$@
+ .d88P"$ @
+888P" $  @@
+888    d8P$ @
+888   d8P $ @
+888  d8P $  @
+888d88K $   @
+8888888b $  @
+888  Y88b $ @
+888   Y88b $@
+888    Y88b$@
+            @
+            @
+            @@
+888   $  @
+888   $  @
+888   $  @
+888   $  @
+888   $  @
+888   $  @
+888   $  @
+88888888$@
+         @
+         @
+         @@
+888b     d888$@
+8888b   d8888$@
+88888b.d88888$@
+888Y88888P888$@
+888 Y888P 888$@
+888  Y8P  888$@
+888   "   888$@
+888       888$@
+              @
+              @
+              @@
+888b    888$@
+8888b   888$@
+88888b  888$@
+888Y88b 888$@
+888 Y88b888$@
+888  Y88888$@
+888   Y8888$@
+888    Y888$@
+            @
+            @
+            @@
+$.d88888b.$ @
+d88P" "Y88b$@
+888     888$@
+888     888$@
+888     888$@
+888     888$@
+Y88b. .d88P$@
+$"Y88888P"$ @
+            @
+            @
+            @@
+8888888b.$ @
+888   Y88b$@
+888    888$@
+888   d88P$@
+8888888P"$ @
+888 $      @
+888 $      @
+888 $      @
+           @
+           @
+           @@
+$.d88888b.$ @
+d88P" "Y88b$@
+888     888$@
+888     888$@
+888     888$@
+888 Y8b 888$@
+Y88b.Y8b88P$@
+$"Y888888" $@
+       Y8b $@
+            @
+            @@
+8888888b.$ @
+888   Y88b$@
+888    888$@
+888   d88P$@
+8888888P"$ @
+888 T88b $ @
+888  T88b$ @
+888   T88b$@
+           @
+           @
+           @@
+$.d8888b.$ @
+d88P  Y88b$@
+Y88b.    $ @
+$"Y888b. $ @
+$   "Y88b.$@
+$     "888$@
+Y88b  d88P$@
+ "Y8888P"$ @
+           @
+           @
+           @@
+88888888888$@
+    888 $   @
+    888 $   @
+    888 $   @
+    888 $   @
+    888 $   @
+    888 $   @
+    888 $   @
+            @
+            @
+            @@
+888     888$@
+888     888$@
+888     888$@
+888     888$@
+888     888$@
+888     888$@
+Y88b. .d88P$@
+$"Y88888P"$ @
+            @
+            @
+            @@
+888     888$@
+888     888$@
+888     888$@
+Y88b   d88P$@
+ Y88b d88P $@
+  Y88o88P $ @
+   Y888P $  @
+    Y8P $   @
+            @
+            @
+            @@
+888       888$@
+888   o   888$@
+888  d8b  888$@
+888 d888b 888$@
+888d88888b888$@
+88888P Y88888$@
+8888P   Y8888$@
+888P     Y888$@
+              @
+              @
+              @@
+Y88b   d88P$@
+ Y88b d88P $@
+  Y88o88P $ @
+   Y888P  $ @
+   d888b  $ @
+  d88888b $ @
+ d88P Y88b $@
+d88P   Y88b$@
+            @
+            @
+            @@
+Y88b   d88P$@
+ Y88b d88P $@
+  Y88o88P $ @
+   Y888P $  @
+    888 $   @
+    888 $   @
+    888 $   @
+    888 $   @
+            @
+            @
+            @@
+8888888888P$@
+    $ d88P $@
+   $ d88P $ @
+  $ d88P $  @
+ $ d88P  $  @
+$ d88P   $  @
+$d88P    $  @
+d8888888888$@
+            @
+            @
+            @@
+8888888$@
+888  $  @
+888  $  @
+888  $  @
+888  $  @
+888  $  @
+888  $  @
+8888888$@
+        @
+        @
+        @@
+Y88b $      @
+$Y88b $     @
+$ Y88b $    @
+ $ Y88b $   @
+  $ Y88b $  @
+   $ Y88b $ @
+    $ Y88b $@
+     $ Y88b$@
+            @
+            @
+            @@
+8888888$@
+ $  888$@
+ $  888$@
+ $  888$@
+ $  888$@
+ $  888$@
+ $  888$@
+8888888$@
+        @
+        @
+        @@
+    o$   @
+   d8b$  @
+  d888b$ @
+ d8P"Y8b$@
+  $    $ @
+  $    $ @
+  $    $ @
+  $    $ @
+  $    $ @
+  $    $ @
+  $    $ @@
+ $     $ @
+ $     $ @
+ $     $ @
+ $     $ @
+ $     $ @
+ $     $ @
+ $     $ @
+88888888$@
+         @
+         @
+         @@
+  d8b$@
+  Y88$@
+   Y8$@
+    Y$@
+    $ @
+   $  @
+  $   @
+  $   @
+  $   @
+  $   @
+  $   @@
+         @
+         @
+         @
+$8888b. $@
+$   "88b$@
+.d888888$@
+888  888$@
+"Y888888$@
+         @
+         @
+         @@
+888 $    @
+888 $    @
+888 $    @
+88888b.$ @
+888 "88b$@
+888  888$@
+888 d88P$@
+88888P"$ @
+         @
+         @
+         @@
+         @
+         @
+         @
+$.d8888b$@
+d88P"  $ @
+888    $ @
+Y88b.  $ @
+$"Y8888P$@
+         @
+         @
+         @@
+     888$@
+     888$@
+     888$@
+$.d88888$@
+d88" 888$@
+888  888$@
+Y88b 888$@
+$"Y88888$@
+         @
+         @
+         @@
+         @
+         @
+         @
+$.d88b.$ @
+d8P  Y8b$@
+88888888$@
+Y8b.$    @
+$"Y8888$ @
+         @
+         @
+         @@
+$.d888$@
+d88P"$ @
+888 $  @
+888888$@
+888 $  @
+888 $  @
+888 $  @
+888 $  @
+       @
+       @
+       @@
+         @
+         @
+         @
+$.d88b.$ @
+d88P"88b$@
+888  888$@
+Y88b 888$@
+$"Y88888$@
+$    888$@
+Y8b d88P$@
+ "Y88P"$ @@
+888 $    @
+888 $    @
+888 $    @
+88888b.$ @
+888 "88b$@
+888  888$@
+888  888$@
+888  888$@
+         @
+         @
+         @@
+d8b$@
+Y8P$@
+$  $@
+888$@
+888$@
+888$@
+888$@
+888$@
+    @
+    @
+    @@
+  $d8b$@
+  $Y8P$@
+ $    $@
+ $8888$@
+ $"888$@
+ $ 888$@
+ $ 888$@
+ $ 888$@
+ $ 888$@
+$ d88P$@
+888P"$ @@
+888 $    @
+888 $    @
+888 $    @
+888  888$@
+888 .88P$@
+888888K$ @
+888 "88b$@
+888  888$@
+         @
+         @
+         @@
+888$@
+888$@
+888$@
+888$@
+888$@
+888$@
+888$@
+888$@
+    @
+    @
+    @@
+              @
+              @
+              @
+88888b.d88b.$ @
+888 "888 "88b$@
+888  888  888$@
+888  888  888$@
+888  888  888$@
+              @
+              @
+              @@
+         @
+         @
+         @
+88888b.$ @
+888 "88b$@
+888  888$@
+888  888$@
+888  888$@
+         @
+         @
+         @@
+         @
+         @
+         @
+$.d88b.$ @
+d88""88b$@
+888  888$@
+Y88..88P$@
+$"Y88P"$ @
+         @
+         @
+         @@
+         @
+         @
+         @
+88888b.$ @
+888 "88b$@
+888  888$@
+888 d88P$@
+88888P"$ @
+888 $    @
+888 $    @
+888 $    @@
+         @
+         @
+         @
+$.d88888$@
+d88" 888$@
+888  888$@
+Y88b 888$@
+$"Y88888$@
+   $ 888$@
+   $ 888$@
+   $ 888$@@
+        @
+        @
+        @
+888d888$@
+888P"$  @
+888 $   @
+888 $   @
+888 $   @
+        @
+        @
+        @@
+         @
+         @
+         @
+.d8888b$ @
+88K   $  @
+"Y8888b.$@
+$    X88$@
+$88888P'$@
+         @
+         @
+         @@
+888 $  @
+888 $  @
+888 $  @
+888888$@
+888 $  @
+888 $  @
+Y88b.$ @
+ "Y888$@
+       @
+       @
+       @@
+         @
+         @
+         @
+888  888$@
+888  888$@
+888  888$@
+Y88b 888$@
+$"Y88888$@
+         @
+         @
+         @@
+         @
+         @
+         @
+888  888$@
+888  888$@
+Y88  88P$@
+$Y8bd8P$ @
+$ Y88P $ @
+         @
+         @
+         @@
+              @
+              @
+              @
+888  888  888$@
+888  888  888$@
+888  888  888$@
+Y88b 888 d88P$@
+$"Y8888888P"$ @
+              @
+              @
+              @@
+         @
+         @
+         @
+888  888$@
+`Y8bd8P'$@
+$ X88K $ @
+.d8""8b.$@
+888  888$@
+         @
+         @
+         @@
+         @
+         @
+         @
+888  888$@
+888  888$@
+888  888$@
+Y88b 888$@
+$"Y88888$@
+$    888$@
+Y8b d88P$@
+$"Y88P"$ @@
+         @
+         @
+         @
+88888888$@
+ $ d88P $@
+$ d88P $ @
+$d88P $  @
+88888888$@
+         @
+         @
+         @@
+ $.d888$@
+$d88P"$ @
+$888  $ @
+.888  $ @
+888(  $ @
+"888  $ @
+$888  $ @
+$Y88b.$ @
+ $"Y888$@
+        @
+        @@
+$ 888 $@
+$ 888 $@
+$ 888 $@
+$ 888 $@
+$     $@
+$ 888 $@
+$ 888 $@
+$ 888 $@
+$ 888 $@
+       @
+       @@
+888b. $ @
+$"Y88b $@
+ $ 888 $@
+ $ 888.$@
+ $ )888$@
+ $ 888"$@
+ $ 888 $@
+$.d88P $@
+888P" $ @
+        @
+        @@
+            @
+            @
+$d888b  d88$@
+d888888888P$@
+88P  Y888P$ @
+            @
+            @
+            @
+            @
+            @
+            @@
+   d8b    d8b@
+   Y8P    Y8P@
+     $d88888$@
+    $d88P888$@
+   $d88P 888$@
+  $d88P  888$@
+ $d888888888$@
+$d88P    888$@
+             @
+             @
+             @@
+ d8b   d8b  @
+ Y8P   Y8P  @
+$.d88888b.$ @
+d88P" "Y88b$@
+888     888$@
+888     888$@
+Y88b. .d88P$@
+$"Y88888P"$ @
+            @
+            @
+            @@
+ d8b   d8b  @
+ Y8P   Y8P  @
+888     888$@
+888     888$@
+888     888$@
+888     888$@
+Y88b. .d88P$@
+$"Y88888P"$ @
+            @
+            @
+            @@
+d8b  d8b @
+Y8P  Y8P @
+         @
+$8888b. $@
+$   "88b$@
+.d888888$@
+888  888$@
+"Y888888$@
+         @
+         @
+         @@
+d8b  d8b @
+Y8P  Y8P @
+         @
+$.d88b.$ @
+d88""88b$@
+888  888$@
+Y88..88P$@
+$"Y88P"$ @
+         @
+         @
+         @@
+d8b  d8b @
+Y8P  Y8P @
+         @
+888  888$@
+888  888$@
+888  888$@
+Y88b 888$@
+$"Y88888$@
+         @
+         @
+         @@
+ .d888b.$  @
+d88" "88b$ @
+888  .88P$ @
+888 888K.$ @
+888  "Y88b$@
+888    888$@
+888   d88P$@
+888 888P"$ @
+888        @
+888        @
+           @@
diff --git a/roles/terminal/files/dotfiles/.config/welcome/summarizers/01-date.sh b/roles/terminal/files/dotfiles/.config/welcome/summarizers/01-date.sh
new file mode 100755
index 0000000..2cb1608
--- /dev/null
+++ b/roles/terminal/files/dotfiles/.config/welcome/summarizers/01-date.sh
@@ -0,0 +1,6 @@
+function dateSummarizer() {
+	echo -n "\033[34m"	
+	date
+}
+
+registerSummarizer "Date" dateSummarizer
diff --git a/roles/terminal/files/dotfiles/.config/welcome/summarizers/02-uptime.sh b/roles/terminal/files/dotfiles/.config/welcome/summarizers/02-uptime.sh
new file mode 100755
index 0000000..7b7afb9
--- /dev/null
+++ b/roles/terminal/files/dotfiles/.config/welcome/summarizers/02-uptime.sh
@@ -0,0 +1,111 @@
+function uptimeSummarizer() {
+	# Get the uptime in seconds depending on the kernel
+	if [[ "$(uname -s)" == 'Darwin' ]]; then
+		# OS X
+		# kern.boottime is an absolute timestamp
+		bootTime="$(sysctl -n kern.boottime | awk '{print $4}' | sed 's/,//g')"
+		currentTime="$(date +%s)"
+		uptime="$(($currentTime - $bootTime))"
+	elif [[ -f /proc/uptime ]]; then
+		# Linux
+		uptime="$(cat /proc/uptime)"
+		uptime="${uptime%%.*}"
+	else
+		# We don't have a handler for that
+		# If you need one, please create an issue at
+		# https://github.com/lukasbestle/my-welcome/issues
+		echo "\033[31mUnsupported environment, can't get uptime. :(\033[0m"
+		exit 1
+	fi
+
+	# Parse into units
+	seconds="$((uptime % 60))"
+	minutes="$((uptime / 60 % 60))"
+	hours="$((  uptime / 60 / 60 % 24))"
+	days="$((   uptime / 60 / 60 / 24 % 30))"
+	months="$(( uptime / 60 / 60 / 24 / 30 % 12))"
+	years="$((  uptime / 60 / 60 / 24 / 30 / 12))"
+
+	# Output depending on the scale of the uptime
+	if [[ years -ge 1 ]]; then
+		outputYears=true
+		outputMonths=true
+		outputDays=true
+	elif [[ months -ge 1 ]]; then
+		outputMonths=true
+		outputDays=true
+	elif [[ days -ge 1 ]]; then
+		outputDays=true
+		outputHours=true
+		outputMinutes=true
+	elif [[ hours -ge 1 ]]; then
+		outputHours=true
+		outputMinutes=true
+	elif [[ minutes -ge 1 ]]; then
+		outputMinutes=true
+		outputSeconds=true
+	else
+		outputSeconds=true
+	fi
+
+	# Output each element
+	output=''
+	if [[ "$outputYears" == true ]]; then
+		output+="\033[34m$years"
+		if [[ "$years" == 1 ]]; then
+			output+=' year\033[0m\n'
+		else
+			output+=' years\033[0m\n'
+		fi
+	fi
+
+	if [[ "$outputMonths" == true ]]; then
+		output+="\033[34m$months"
+		if [[ "$months" == 1 ]]; then
+			output+=' month\033[0m\n'
+		else
+			output+=' months\033[0m\n'
+		fi
+	fi
+
+	if [[ "$outputDays" == true ]]; then
+		output+="\033[34m$days"
+		if [[ "$days" == 1 ]]; then
+			output+=' day\033[0m\n'
+		else
+			output+=' days\033[0m\n'
+		fi
+	fi
+
+	if [[ "$outputHours" == true ]]; then
+		output+="\033[34m$hours"
+		if [[ "$hours" == 1 ]]; then
+			output+=' hour\033[0m\n'
+		else
+			output+=' hours\033[0m\n'
+		fi
+	fi
+
+	if [[ "$outputMinutes" == true ]]; then
+		output+="\033[34m$minutes"
+		if [[ "$minutes" == 1 ]]; then
+			output+=' minute\033[0m\n'
+		else
+			output+=' minutes\033[0m\n'
+		fi
+	fi
+
+	if [[ "$outputSeconds" == true ]]; then
+		output+="\033[34m$seconds"
+		if [[ "$seconds" == 1 ]]; then
+			output+=' second\033[0m\n'
+		else
+			output+=' seconds\033[0m\n'
+		fi
+	fi
+
+	# Replace newlines with a comma
+	echo "Host up for $(echo -ne "$output" | paste -s -d ';' - | sed "s/\;/\, /g")"
+}
+
+registerSummarizer "Uptime" uptimeSummarizer
diff --git a/roles/terminal/files/dotfiles/.config/welcome/summarizers/03-quota.sh b/roles/terminal/files/dotfiles/.config/welcome/summarizers/03-quota.sh
new file mode 100755
index 0000000..69c79bf
--- /dev/null
+++ b/roles/terminal/files/dotfiles/.config/welcome/summarizers/03-quota.sh
@@ -0,0 +1,12 @@
+function quotaSummarizer() {
+	# Get current quota information in MB (integers) and % of total
+	quota_used=$(quota -lgs | grep '/dev/' | sed 's/      \/dev\/[a-z]\+[0-9] \+\([0-9]\+\?\)M.*/\1/')
+	quota_total=$(quota -lgs | grep '/dev/' | sed 's/      \/dev\/[a-z]\+[0-9] \+[0-9]\+\?M \+\([0-9]\+\?\)M.*/\1/')
+	quota_free=$(( $quota_total - $quota_used ))
+	quota_percentage=$(( $quota_used * 100 / $quota_total ))
+
+	echo    "Used \033[34m$quota_used MB\033[0m of \033[34m$quota_total MB\033[0m (\033[34m$quota_percentage %\033[0m)"
+	echo -n "\033[34m$quota_free MB\033[0m available"
+}
+
+registerSummarizer "Quota" quotaSummarizer
diff --git a/roles/terminal/files/dotfiles/.config/welcome/summarizers/04-ram.sh b/roles/terminal/files/dotfiles/.config/welcome/summarizers/04-ram.sh
new file mode 100755
index 0000000..ede3bd7
--- /dev/null
+++ b/roles/terminal/files/dotfiles/.config/welcome/summarizers/04-ram.sh
@@ -0,0 +1,8 @@
+function ramSummarizer() {
+	# Get current RAM usage in MB (integer)
+	ram_used=$(ps -u $USER -o rss= | awk '{rss += $1} END {printf("%0.f", rss / 1000)}')
+
+	echo -n "Used \033[34m$ram_used MB\033[0m"
+}
+
+registerSummarizer "RAM" ramSummarizer
diff --git a/roles/terminal/files/dotfiles/.config/welcome/warners/.gitkeep b/roles/terminal/files/dotfiles/.config/welcome/warners/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/roles/terminal/files/dotfiles/.local/bin/.gitkeep b/roles/terminal/files/dotfiles/.local/bin/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/roles/terminal/handlers/main.yml b/roles/terminal/handlers/main.yml
new file mode 100644
index 0000000..d931365
--- /dev/null
+++ b/roles/terminal/handlers/main.yml
@@ -0,0 +1,3 @@
+---
+- name: Collect fish functions from packages
+  command: fish -c _pkgs_collect_functions
diff --git a/roles/terminal/tasks/main.yml b/roles/terminal/tasks/main.yml
new file mode 100644
index 0000000..ac65675
--- /dev/null
+++ b/roles/terminal/tasks/main.yml
@@ -0,0 +1,58 @@
+---
+- name: Set authorized SSH keys
+  authorized_key:
+    user: "{{ ansible_user_id }}"
+    state: present
+    key: "{{ item }}"
+  with_file: authorized_keys
+
+- name: Get current shell
+  shell: "getent passwd {{ ansible_user_id }} | cut -d: -f7"
+  register: current_shell
+  changed_when: no
+
+- name: Change shell to fish
+  command: chsh --shell /usr/bin/fish
+  when: "current_shell.stdout != '/usr/bin/fish'"
+
+- name: Copy dotfiles to home directory
+  copy:
+    src: dotfiles/
+    dest: "{{ ansible_env.HOME }}/"
+    mode: preserve
+
+- name: Copy Git config to home directory
+  template:
+    src: gitconfig.j2
+    dest: "{{ ansible_env.HOME }}/.config/git/config"
+
+- name: Remove unneeded files
+  file:
+    path: "{{ item }}"
+    state: absent
+  loop:
+    - "{{ ansible_env.HOME }}/.bash_history"
+    - "{{ ansible_env.HOME }}/.bash_logout"
+    - "{{ ansible_env.HOME }}/.bash_profile"
+    - "{{ ansible_env.HOME }}/.bashrc"
+    - "{{ ansible_env.HOME }}/.emacs"
+    - "{{ ansible_env.HOME }}/.zcompdump"
+    - "{{ ansible_env.HOME }}/.zshrc"
+
+- name: Download and update iTerm2 shell integration
+  get_url:
+    url: https://iterm2.com/shell_integration/fish
+    dest: "{{ ansible_env.HOME }}/.config/fish/conf.d/iterm2_integration.fish"
+    force: yes
+
+- name: Download and update Oh My Fish! packages
+  git:
+    repo: "{{ item.value }}"
+    dest: "{{ ansible_env.HOME }}/.config/fish/pkgs/{{ item.key }}"
+  loop: "{{ omf_pkgs | dict2items }}"
+  notify: Collect fish functions from packages
+
+- name: Disable Cron MAILTO
+  cronvar:
+    name: MAILTO
+    value: ""
diff --git a/roles/terminal/templates/gitconfig.j2 b/roles/terminal/templates/gitconfig.j2
new file mode 100644
index 0000000..9c98764
--- /dev/null
+++ b/roles/terminal/templates/gitconfig.j2
@@ -0,0 +1,17 @@
+; user settings
+[user]
+	name = kodos-{{ ansible_user_id }}.codesignd.net
+	email = hostmaster@codesignd.net
+
+; core settings
+[advice]
+	detachedHead = false
+[branch]
+	autoSetupRebase = always
+[core]
+	editor = code -w
+	quotepath = false
+[help]
+	autocorrect = 10
+[push]
+	default = upstream
diff --git a/roles/web/files/home/.config/projectr/.gitkeep b/roles/web/files/home/.config/projectr/.gitkeep
new file mode 100644
index 0000000..e69de29
diff --git a/roles/web/files/home/bin/qdated-generate b/roles/web/files/home/bin/qdated-generate
new file mode 100755
index 0000000..323334c
--- /dev/null
+++ b/roles/web/files/home/bin/qdated-generate
@@ -0,0 +1,5 @@
+#!/bin/bash
+
+for host in ~/.config/qdated/*; do
+    HOME="$host" qdated-now > "$host/current"
+done
diff --git a/roles/web/tasks/main.yml b/roles/web/tasks/main.yml
new file mode 100644
index 0000000..85f0b97
--- /dev/null
+++ b/roles/web/tasks/main.yml
@@ -0,0 +1,102 @@
+---
+- name: Copy config to home directory
+  copy:
+    src: home/
+    dest: "{{ ansible_env.HOME }}/"
+    mode: preserve
+
+- name: Create link at ~/web
+  file:
+    src: /var/www/virtual/{{ ansible_user_id }}
+    dest: "{{ ansible_env.HOME }}/web"
+    state: link
+
+- name: Initialize ~/web/sites
+  file:
+    path: /var/www/virtual/{{ ansible_user_id }}/sites
+    state: directory
+
+- name: Download and update projectr
+  git:
+    repo: https://github.com/lukasbestle/projectr.git
+    dest: "{{ ansible_env.HOME }}/.config/fish/pkgs/projectr"
+
+- name: Set up deploy script
+  template:
+    src: deploy.php.j2
+    dest: /var/www/virtual/{{ ansible_user_id }}/html/deploy.php
+
+- name: Read existing Uberspace domains
+  command: uberspace web domain list
+  register: uberspace_web_domain_result
+  changed_when: no
+
+- name: Add configured domains to Uberspace config
+  shell: "uberspace web domain add $(idn {{ item.key }})"
+  when: item.key not in uberspace_web_domain_result.stdout_lines
+  loop: "{{ web_links.get(ansible_user_id, {}) | dict2items }}"
+
+- name: Set up sites using projectr
+  command:
+    argv:
+      - site_add
+      - "{{ item.key }}"
+    creates: /var/www/virtual/{{ ansible_user_id }}/sites/{{ item.key }}
+  loop: "{{ web_sites.get(ansible_user_id, {}) | dict2items }}"
+
+- name: Set up site origins using projectr (sites with origin)
+  command:
+    argv:
+      - site_origin
+      - "{{ item.key }}"
+      - "{{ item.value }}"
+    creates: /var/www/virtual/{{ ansible_user_id }}/sites/{{ item.key }}/.origin
+  loop: "{{ web_sites.get(ansible_user_id, {}) | dict2items }}"
+  when: item.value != None
+
+- name: Set up site origins using projectr (sites without origin)
+  command:
+    argv:
+      - site_origin
+      - "{{ item.key }}"
+    removes: /var/www/virtual/{{ ansible_user_id }}/sites/{{ item.key }}/.origin
+  loop: "{{ web_sites.get(ansible_user_id, {}) | dict2items }}"
+  when: item.value == None
+
+- name: Deploy sites using projectr (sites with origin)
+  command:
+    argv:
+      - site_deploy
+      - "{{ item.key }}"
+    creates: /var/www/virtual/{{ ansible_user_id }}/sites/{{ item.key }}/current
+  loop: "{{ web_sites.get(ansible_user_id, {}) | dict2items }}"
+  when: item.value != None
+
+- name: Link sites to domains
+  command:
+    argv:
+      - site_link
+      - "{{ item.value.site }}"
+      - "{{ item.key }}"
+      - "{{ item.value.get('path', '') }}"
+    creates: /var/www/virtual/{{ ansible_user_id }}/{{ item.key }}
+  loop: "{{ web_links.get(ansible_user_id, {}) | dict2items }}"
+
+- name: Ensure that qdated directories for all Mail Uberspaces exist
+  file:
+    path: "{{ ansible_env.HOME }}/.config/qdated/{{ hostvars[item].ansible_user_id }}"
+    state: directory
+  loop: "{{ groups.mail }}"
+
+- name: Copy qdated keys from all Mail Uberspaces
+  copy:
+    content: "{{ hostvars[item].qdated_key }}"
+    dest: "{{ ansible_env.HOME }}/.config/qdated/{{ hostvars[item].ansible_user_id }}/.qdated-key"
+  loop: "{{ groups.mail }}"
+
+- name: Set up qdated address generation cronjob
+  cron:
+    name: "qdated generation"
+    hour: "2"
+    minute: "3"
+    job: "{{ ansible_env.HOME }}/bin/qdated-generate"
diff --git a/roles/web/templates/deploy.php.j2 b/roles/web/templates/deploy.php.j2
new file mode 100644
index 0000000..21c602b
--- /dev/null
+++ b/roles/web/templates/deploy.php.j2
@@ -0,0 +1,172 @@
+<?php
+
+/**
+ * projectr
+ * Tools for deployments and project management
+ * 
+ * Gitea frontend for deployments
+ * 
+ * @author Lukas Bestle <project-projectr@lukasbestle.com>
+ * @copyright Copyright 2014 Lukas Bestle
+ * @license MIT
+ * @file webhook.gitea.php
+ */
+
+// 1. Configuration
+// ====================
+
+// Secret used as authentication (you have to set this in the Gitea project settings as well)
+// ATTENTION: Make sure this is long and secure, as anyone could checkout any commit of your projects otherwise
+define('SECRET', '{{ projectr_deploy_secret }}');
+
+// Path where you installed the scripts from the "bin" directory of this repository
+// This is required, as PHP doesn't automatically use the environment and therefore your $PATH from your shell
+define('TOOLKIT_PATH', '/home/{{ ansible_user_id }}/.config/fish/pkgs/projectr/bin');
+
+// 2. Setup
+// ====================
+
+/**
+ * This is an example webhook for Gitea projects.
+ * It's fairly simple to set this script up on your server/Uberspace, here's how:
+ * 
+ * 1. Setup the toolkit, so you can access the tools from your SSH shell (more about that in README.md)
+ * 2. Take a look at the settings above.
+ * 	2.1. Seriously, have you set a secret? Yes? Alright.
+ * 3. Place this script in a directory in ~/web/ (something like "~/web/hooks.example.com")
+ * 4. You should now be able to access https://hooks.example.com/webhook.gitea.php
+ *    This should output "Web hook event (X-Gitea-Event header) is missing from request.".
+ * 
+ * Now you can create projects and let this script deploy them for you:
+ * 
+ * 5. If your project is a private repository:
+ *  5.1. Generate an SSH key by using `ssh-keygen`. The default values are alright for this purpose.
+ *  5.2. Copy the contents of `~/.ssh/id_rsa.pub` to your clipboard and add it as "Deploy Key" in your project's Gitea settings interface.
+ * 6. Create the project on the server by running either `project_add <path> <exact HTTPS clone url from Gitea>#<branch to deploy>` or
+ *                                                       `site_add    <name> <exact HTTPS clone url from Gitea>#<branch to deploy>`.
+ *    It's important to use the exact HTTPS url (not the SSH one) so this script can find the project!
+ * 7. Add the URL (the one you tested in 4.) of the script to your project's web hooks (choose the type "Gitea").
+ *    Make sure to add the secret configured above and select the "POST" method, the "application/json" type and the "Push Events" trigger.
+ * 8. To test if it everything works, push some code to your Gitea repository.
+ * 
+ * Troubleshooting:
+ *  - Use `tail -f <path to project>/logs/*.log`. This should tell you what went wrong.
+ *  - Check if the TOOLKIT_PATH you set above is correct.
+ *  - Check if you set the origin of your project to the correct URL.
+ *  - Open the web hook URL you entered in Gitea in your browser and check if the output is "Web hook event (X-Gitea-Event header) is missing from request.".
+ *  - Click on the pen icon next to your web hook in Gitea's settings interface. You should see a list of "recent deliveries".
+ *    You can find the exact error message from this script in the "Response" tab of the delivery.
+ */
+
+// 3. Done
+// The code starts here
+// ====================
+
+// We are always returning plain text
+header('Content-Type: text/plain');
+
+// Check if a secret has been set
+if (SECRET === '{{ '{{' }} projectr_deploy_secret }}') {
+	http_response_code(500);
+	die('No secret has been set in ' . basename(__FILE__) . ". This script won't work without one.");
+}
+
+// Check which event this is
+if (isset($_SERVER['HTTP_X_GITEA_EVENT']) !== true) {
+	http_response_code(400);
+	die('Web hook event (X-Gitea-Event header) is missing from request.');
+}
+$event = $_SERVER['HTTP_X_GITEA_EVENT'];
+switch ($event) {
+	case 'push':
+		echo "Received push event.\n";
+		break;
+	default:
+		http_response_code(400);
+		die("Received $event event, ignoring.");
+}
+
+// Get the request body
+$input = false;
+switch ($_SERVER['CONTENT_TYPE']) {
+	case 'application/json':
+		echo "Received JSON data in body.\n";
+		$input = file_get_contents('php://input');
+		break;
+	case 'application/x-www-form-urlencoded':
+		echo "Received URL-encoded form data in body.\n";
+		$input = (isset($_POST['payload']) === true)? $_POST['payload'] : '';
+		break;
+	default:
+		http_response_code(400);
+		die("Don't know what to do with {$_SERVER['CONTENT_TYPE']} content type.");
+} 
+if (!$input) {
+	http_response_code(400);
+	die('No POST body sent.');
+}
+
+// Check if the authentication is valid
+if (isset($_SERVER['HTTP_X_GITEA_SIGNATURE']) !== true) {
+	http_response_code(401);
+	die("Secret (X-Gitea-Signature header) is missing from request. Have you set a secret in Gitea's project settings?");
+}
+if (hash_equals(hash_hmac('sha256', $input, SECRET, false), $_SERVER['HTTP_X_GITEA_SIGNATURE']) !== true) {
+	http_response_code(403);
+	die('Secret (X-Gitea-Signature header) is wrong or does not match request body.');
+}
+
+// Parse payload
+$payload = json_decode($input, true);
+if (is_array($payload) !== true) {
+	http_response_code(400);
+	die('Invalid payload (no JSON?).');
+}
+
+// Get some interesting information from the payload
+$url    = $payload['repository']['clone_url'];
+$commit = $payload['after'];
+$ref    = $payload['ref'];
+if (preg_match('{(?:.*/){2}(.*)}', $ref, $matches) !== 1) {
+	http_response_code(400);
+	die('Invalid ref field (does not match regular expression "(?:.*/){2}(.*)").');
+}
+$branch = $matches[1];
+
+// Debug
+echo "Received commit hash \"$commit\" for repository URL \"$url\" (branch \"$branch\").\n";
+
+// Determine the path to the projects file
+$xdgProjectsFile = ($_ENV['XDG_CONFIG_HOME'] ?? ($_SERVER['HOME'] . '/.config')) . '/projectr/projects';
+$projectsFile = is_file($xdgProjectsFile) === true ? $xdgProjectsFile : $_SERVER['HOME'] . '/.projects';
+
+// Open the projects file and iterate through every project
+$listPointer = fopen($projectsFile, 'r');
+$exitCode = 0;
+while (($project = fgets($listPointer)) !== false) {
+	// Trim whitespace
+	$project = trim($project);
+	
+	// Only deployable projects are interesting for us
+	if (is_file($project . '/.origin') !== true || is_file($project . '/.branch') !== true) {
+		continue;
+	}
+	
+	// If there is a .origin and .branch file, check if they match
+	if (trim(file_get_contents($project . '/.origin')) === $url && trim(file_get_contents($project . '/.branch')) === $branch) {
+		// Found the right project
+		echo "Found project at $project, running deploy script.\n";
+		
+		// Run deploy script (in the background, because Gitea doesn't like responses > 5sec by default)
+		passthru('export PATH=' . escapeshellarg(TOOLKIT_PATH) . ':$PATH; project_deploy ' . escapeshellarg($project) . ' ' . escapeshellarg($commit) . ' &> /dev/null &', $exitCode);
+		
+		// If it didn't work, add debug statement
+		if ($exitCode !== 0) {
+			echo "Something didn't work.\n";
+		}
+	}
+}
+
+// Iterated through every project, exit
+http_response_code(($exitCode === 0)? 200 : 500);
+die('All done.');
diff --git a/run.sh b/run.sh
new file mode 100755
index 0000000..59815ef
--- /dev/null
+++ b/run.sh
@@ -0,0 +1,9 @@
+#!/bin/bash
+
+cd "$(dirname "$0")"
+
+if [[ -n "$1" ]]; then
+    ansible-playbook -v --ask-vault-pass site.yml --tags "$1"
+else
+    ansible-playbook -v --ask-vault-pass site.yml
+fi
diff --git a/site.yml b/site.yml
new file mode 100644
index 0000000..75bf9b5
--- /dev/null
+++ b/site.yml
@@ -0,0 +1,46 @@
+---
+- name: General tasks for all Uberspaces
+  hosts: all
+  vars_files:
+    - vars/installs.yml
+  roles:
+    - homebrew
+    - host-site
+    - terminal
+
+- name: Redirect mail from non-mail Uberspaces
+  hosts: "!mail"
+  vars_files:
+    - vars/config.yml
+  roles:
+    - mail-redirect
+
+- name: DAV Uberspaces
+  hosts: dav
+  vars_files:
+    - vars/vault.yml
+  roles:
+    - dav
+
+- name: Git Uberspaces
+  hosts: git
+  vars_files:
+    - vars/vault.yml
+  roles:
+    - git
+
+- name: Mail Uberspaces
+  hosts: mail
+  vars_files:
+    - vars/config.yml
+    - vars/vault.yml
+  roles:
+    - mail
+
+- name: Web Uberspaces
+  hosts: web
+  vars_files:
+    - vars/config.yml
+    - vars/vault.yml
+  roles:
+    - web
diff --git a/vars/config.yml b/vars/config.yml
new file mode 100644
index 0000000..d31335d
--- /dev/null
+++ b/vars/config.yml
@@ -0,0 +1,51 @@
+---
+# Email domains to set up per host
+mail_domains:
+  cddmail1:
+    - lukasbestle.com
+    - lukasbestle.de
+    - bstl.xyz
+  cddmail2:
+    - codesignd.com
+    - codesignd.de
+    - codesignd.net
+    - codesigned.de
+
+# Default sender address per host
+mail_default_address:
+  cddmail1: mail@lukasbestle.com
+  cddmail2: lukas@codesignd.de
+
+# Destination for email redirects from non-mail Uberspaces
+mail_redirect_to: hostmaster@codesignd.net
+
+# Web sites to set up per host (name: origin)
+web_sites:
+  cddweb1:
+    bachelor: null
+    lukasbestle: https://git.codesignd.com/sites/lukasbestle.com.git
+    codesignd: null
+  cddweb2:
+    shareable: null
+    cdn: null
+
+# Domain links to set up per host
+web_links:
+  cddweb1:
+    bachelor.lukasbestle.com:
+      site: bachelor
+    lukasbestle.com:
+      site: lukasbestle
+      path: current/public
+    codesignd.com:
+      site: codesignd
+    codesignd.de:
+      site: codesignd
+  cddweb2:
+    bstl.xyz:
+      site: shareable
+    f.bstl.xyz:
+      site: shareable
+      path: data/files
+    cdn.codesignd.net:
+      site: cdn
diff --git a/vars/installs.yml b/vars/installs.yml
new file mode 100644
index 0000000..a6a2a06
--- /dev/null
+++ b/vars/installs.yml
@@ -0,0 +1,20 @@
+---
+# Homebrew formulae to install on all Uberspaces
+homebrew_formulae:
+  # Helpers
+  - lukasbestle/tap/qdated  # Timestamped email addresses for qmail
+
+  # Shell tools
+  - fasd           # Directory jump tool
+  - figlet         # ASCII fonts
+
+  # Package managers
+  - composer
+
+# Oh My Fish! packages to install and keep updated
+# Key: Short package name; Value: URL to a Git repo
+omf_pkgs:
+  theme-bobthefish: https://github.com/oh-my-fish/theme-bobthefish.git
+  rmate: https://github.com/aurora/rmate.git
+  welcome: https://github.com/lukasbestle/welcome.git
+  z: https://github.com/jethrokuan/z.git
diff --git a/vars/vault.yml b/vars/vault.yml
new file mode 100755
index 0000000..9d18d48
--- /dev/null
+++ b/vars/vault.yml
@@ -0,0 +1,30 @@
+$ANSIBLE_VAULT;1.1;AES256
+66326137613864613264363534623131343633613662326230346136623738633030336166343231
+6363393961646635336163386530393630333337383432330a316634623932626163313866393861
+33366438346438366639623666643661373365666430393862333839393133363063653637343863
+6464663264393931360a363433333139376264613333333130343136366437643162666132373233
+63383136303230643432633165383939653836313338333766626263643232626539383965363163
+65356336656264333037626366663864663137336661346230306661633430616166383063356539
+35396634326331343935366565386436343866643635356337366631313038306462306137623939
+64306266646638313638313766323336353261366166366433336165383230303866633137653264
+32346131343062396533343238343366643963323131356130643737626464323863323437393262
+36346533623137353234393738643266386165666662346636666436336432656439336430653734
+38326162666630633464376464323130633832626665386464306231653161326135323764366435
+63613637376331346265653738373539316531316539646538356463383832323034333963666261
+37373934333139393662353835316438323839316232666263383661313232613839656236623338
+39333261663936626564383665623933353862323932353734393962646636616235626637373062
+38656136323739353935613634653331663137613761373266633332383534333039646162623437
+36333839373066333263643234633462323635643738643731333139633263643335396636396239
+30343964633964353264373437353463613766343033386362663130633030303362646139393563
+36363635343861636564646266626631313262623664363063393231343838306538393263326633
+66343831346438616665666165353661663131373935353438653061373463623266313832656132
+65653561383732653638373638363036626166633838313736313133656438353334396364333964
+62346265636266663239316432313463346536633762343135366233396331313662653263643036
+30353761656662633862346464353631323465613037623332326664343533656439623236343535
+62323831323139653039353237653832646336363832383139393137386531336230383837343038
+38643761643833643231643731323239643734653532626366313033633563383966376537313735
+62653231343830386430653461366437646261623331313734623036353839306539633364613264
+62636637363363393166313035333835353962303263386633316231353362343665303566326332
+62386339646532343766373537623435653462323566386262393832616563333638353933376364
+31653034373964366134356536393935613931326663323335336437386132613733643964643434
+62643265663632663261393836336561623561333333303161646466346332313239