From 09b05bf65773d4161c9637e4766096c7f281582f Mon Sep 17 00:00:00 2001 From: reynir Date: Sat, 23 Jul 2022 12:46:26 +0000 Subject: [PATCH] Add new-new.data.coop using unipi! (#99) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This exposes the contents of the git repository at https://git.data.coop/halfd/new-website using the MirageOS unikernel [unipi](https://github.com/roburio/unipi). Co-authored-by: Reynir Björnsson Reviewed-on: https://git.data.coop/data.coop/ansible/pulls/99 --- roles/docker/tasks/services/websites.yml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) diff --git a/roles/docker/tasks/services/websites.yml b/roles/docker/tasks/services/websites.yml index 0d99509..77e0e2a 100644 --- a/roles/docker/tasks/services/websites.yml +++ b/roles/docker/tasks/services/websites.yml @@ -28,6 +28,28 @@ labels: com.ouroboros.enable: "true" +- name: setup new-new data.coop website using unipi + docker_container: + name: new-new.data.coop_website + image: docker.data.coop/unipi:latest + restart_policy: unless-stopped + purge_networks: yes + networks: + - name: external_services + env: + VIRTUAL_HOST: "new-new.{{ data_coop_website.domains|join(',') }}" + LETSENCRYPT_HOST: "new-new.{{ data_coop_website.domains|join(',') }}" + LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}" + # The ssh-key is for read-only only + command: "--remote=git@git.data.coop:halfd/new-website.git#main --ssh-key ed25519:Ag9RekCyC2eow4P/e5crVvSTQ7dTK46WkG0wqEPVJbU= --ssh-authenticator SHA256:l9kdLkb0kJm46pOJ4tCHCtFUaqV1ImbZWMA5oje10fI" + capabilities: + - NET_ADMIN + devices: + - "/dev/net/tun" + labels: + com.ouroboros.enable: "true" + + - name: setup cryptohagen.dk website docker container docker_container: name: cryptohagen_website