--- - name: create hedgedoc volume folders file: name: "{{ hedgedoc.volume_folder }}/{{ volume }}" state: directory loop: - "db" - "hedgedoc/uploads" loop_control: loop_var: volume - name: copy sso public certificate copy: src: "files/sso/sso.data.coop.pem" dest: "{{ hedgedoc.volume_folder }}/sso.data.coop.pem" mode: "0644" - name: setup hedgedoc docker_compose: project_name: "hedgedoc" pull: "yes" definition: services: database: image: "postgres:10-alpine" environment: POSTGRES_USER: "codimd" POSTGRES_PASSWORD: "{{ postgres_passwords.hedgedoc }}" POSTGRES_DB: "codimd" restart: "unless-stopped" networks: - "hedgedoc" volumes: - "{{ hedgedoc.volume_folder }}/db:/var/lib/postgresql/data" app: image: quay.io/hedgedoc/hedgedoc:1.9.0 environment: CMD_DB_URL: "postgres://codimd:{{ postgres_passwords.hedgedoc }}@hedgedoc_database_1:5432/codimd" CMD_DOMAIN: "{{ hedgedoc.domain }}" CMD_ALLOW_EMAIL_REGISTER: "False" CMD_IMAGE_UPLOAD_TYPE: "filesystem" CMD_EMAIL: "False" CMD_SAML_IDPCERT: "/sso.data.coop.pem" CMD_SAML_IDPSSOURL: "https://sso.data.coop/auth/realms/datacoop/protocol/saml" CMD_SAML_ISSUER: "hedgedoc" CMD_SAML_IDENTIFIERFORMAT: "urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified" CMD_USECDN: "false" CMD_PROTOCOL_USESSL: "true" VIRTUAL_HOST: "{{ hedgedoc.domain }}" LETSENCRYPT_HOST: "{{ hedgedoc.domain }}" LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}" volumes: - "{{ hedgedoc.volume_folder }}/hedgedoc/uploads:/hedgedoc/public/uploads" - "{{ hedgedoc.volume_folder }}/sso.data.coop.pem:/sso.data.coop.pem" restart: "unless-stopped" networks: - "hedgedoc" - "external_services" depends_on: - database networks: hedgedoc: external_services: external: true