forked from data.coop/ansible
Compare commits
7 Commits
Author | SHA1 | Date |
---|---|---|
Víðir Valberg Guðmundsson | 03b12aa32e | |
Víðir Valberg Guðmundsson | 44b5d0830f | |
Víðir Valberg Guðmundsson | f2d9554385 | |
Jesper Hess | d5ff1c4e9d | |
Jesper Hess | 95a4310566 | |
Jesper Hess | 19df47bc55 | |
Jesper Hess | 450041c797 |
|
@ -1,73 +1,58 @@
|
|||
$ANSIBLE_VAULT;1.1;AES256
|
||||
34376131343263336262656463373830643861336631626539643663333239313831626236306530
|
||||
3335623130653432636133356363656465346366303062370a346130326536366638633536613161
|
||||
62623334363537636634373231353564396362343330623562383939373538633066616565306235
|
||||
3332323863353334640a396462313862366362366535383737376333383361303065383937396530
|
||||
38326331396333396263363762346331356431623532343938613834663830393337646666336435
|
||||
66356439333434356165613030306138666163653934386233663362646534303737323030636234
|
||||
31616132613830363136666639386462363135656432373236393034316664363637663336366435
|
||||
64373238633064623735666335636231656231666434383066313336303137333663333031363638
|
||||
31643733336535383338376631656439633962653262356335383638373764353530643234303935
|
||||
62383930393634613530643739643335616164633038326638356135623561326165376530363461
|
||||
37373032393331653261373538633065333662393366666161396638383932393331623766343035
|
||||
30333335663039323931306162313538373334393335306132626336643363323839633761383063
|
||||
35343632363837383132656437303138303764316439343663303964396463363638336533653930
|
||||
39303236353766373131623363653835666439333164366563346164626464633633363163323864
|
||||
65363961393237666433623565343832306663323862666333343665376135646132363466616364
|
||||
62356331666432336661343762333961333634396466333465633164326239386266643230393566
|
||||
36376461373631636630303861313538333834646461663539623738636636626537656438646431
|
||||
38383436393238363038313563633634396335346138626666366437333433383039363332623639
|
||||
31396165346431333838393164616339656634346561313737306562343562323030613266633263
|
||||
61333263653938653034356631333664323630306461346532626533363665363133376232316132
|
||||
61346431383230656134373630653264363430383561313866363235333435633966386266653964
|
||||
33363534343634343232373036633330613038303437333033313061313932373739343663303931
|
||||
34333833386638353436653831623835323032303134366635613735643662636336616464313330
|
||||
36633335613630663233326166633565386238656236633261396235363165656333333235643137
|
||||
32623461663562313533333835396233383330613661646431646365343430626662326638653330
|
||||
38646232386263356566373561353130616539346630613363313163363262356264653233313862
|
||||
34386331363236386534353534616531643264613764343362646366393435383332653664353363
|
||||
62333935363132373434613038353632643336633136656266316466373734646234636638316265
|
||||
62646261396465623561633964313065626361316630353965616233356565343834656563353830
|
||||
38346361336237646331366632633130613330336637326163663463386233643734356165666431
|
||||
61396263656237333138356231306437653337656133663031303031616437633564613733316264
|
||||
63633930353033636235653961393330326635626666626235336334653762373262633739356263
|
||||
32323532333463653937386430663437303238313130643435353739393639303033343865323736
|
||||
35366139643166626364373663333266376133636433653261316566366630396666336637326664
|
||||
30343039633133626435363364346666613732666335313865326234366136366130616334396338
|
||||
61663461623432303930623261336464643830303631396430363637383838616432356634303332
|
||||
61346536313035376139313638393737393136643366366364363862383335353533313534366534
|
||||
61356136366465373530393835613834366665653334376539303462336138646438653039306261
|
||||
36613736323566636634666331396463623439323063356232306631616135623231336439303739
|
||||
65393837653837336235396532323465656463636238643038383363616633383866333633663831
|
||||
61363634356634636265663837306232303362313564323463303363323931396438646337363161
|
||||
61313033343532336563393632373830326631616462616263346363636566663966396330386464
|
||||
62613039323065343838653439303333396536366537313335353834613338623961646235633764
|
||||
30333032323333663530613736313765343364363433366436666134623663653336386632333437
|
||||
64386639636237333138323431333234316432366236613530376234636438356531636630396431
|
||||
63643833366136363962346632616161363565336163313764383030303337346565613939383563
|
||||
65306137633965326534356666346238363137323233336561643333386265613863396338383134
|
||||
35363135303232376364306234323435356330333061613663326563343533636165356537336536
|
||||
61656131343966346365396133666662393930663237643134383963303766306534633034356335
|
||||
37633732393266633965616330643061616664336430643630633033326335643438373737653164
|
||||
34633737303533666335306466306330343233326531343065666138633166383664333130653864
|
||||
37623730333532633936316461333066313065316664383934343731616430366135346138663531
|
||||
33353134333934376663336366663036383630393031303731653332373335333131633136616537
|
||||
33666266373439346633373735643339653333626237623530346436306438396332613863346264
|
||||
30346431393735326566393633626535383538343866653262653330366330623930646631663961
|
||||
38656138313932623131613537376139666137653063313339666333313364343738306439656264
|
||||
32346533646465376135376531383132396337653966393133316436616563613135353863653064
|
||||
31373466616135393036333037623164346539323463333037613030386666396363353364396439
|
||||
39616536646638623739623834363662643566393430623632646434336162316362653434343337
|
||||
36623334303866343533623538663531303366343136636631376334653636313264376330313836
|
||||
66333131343062373138663330313633623166303337306466313362343034316364666666373965
|
||||
36373933343338646333373962623034353631623535306230346663373530346438386334303536
|
||||
62366666646263303764303330353835633163363666303133333730343263613039346162356532
|
||||
37323133613037313430366238313261633165643563666239623730653164666264633964626461
|
||||
31323536623335636333393338333166346336323132373466396432613133613933356232373532
|
||||
30653564323031636231343232646165653163393663663731313033323763663965356466366562
|
||||
33303830656238653164646161366265636566393436323135356630393033316337363361306363
|
||||
30393766636237336466353431616130653961326431323161313234333963643032393061303265
|
||||
33396664336535353164643462303636616265306338333634376664323837303238623638313266
|
||||
37643861343034646532626164353238373031633861623663316638333039643036353932323962
|
||||
39616136653639313232326362663834333363633562646563393561396464383765616230333230
|
||||
39663939326332333362
|
||||
63333365303665346136333263333734363333616230313931356131633966646263316436356536
|
||||
3565366362616366393362636336383565366531333839620a333939613332646665633236343336
|
||||
36633835396234643233643936396565636564343538633838343438353030306433346262393739
|
||||
6339346565653237370a313237653734353130343334306366323633636639383261306166306530
|
||||
32326636653937633233353639663035383437636638653932653639373763623433633431643231
|
||||
34396237653832616638623137666530326466393966323533313261353030343165636330396631
|
||||
62386331323336326665343262363232376131613365393465613334643936326263316137396633
|
||||
63336135356264613461616461316630636533373961373263373165356632643738366338373366
|
||||
36663432386538323836613665646664313330336363633064373337383764663937316261636661
|
||||
38373632316136636337396561373738376466613165653266313434393264646130663938653739
|
||||
36393933326231626466613665373964313661663464383735663765336639663436336261613834
|
||||
39616239366637373462363934656239653731383063373536363338326161633831343031636565
|
||||
61616133333539393464323032636235633934343339356562343234373062353830336138386138
|
||||
31393661303930656334343637646335656565303161363033353762623638323537643863643134
|
||||
39393539393263313836623161633465386338653336633263633336316431666333393565386435
|
||||
64363631316432636637633364646365323838386630626164383266386534316639393961663534
|
||||
65666166653737646336303732333063313932336261323631306661613662643334316566666434
|
||||
37623463646231346461643839386365333431353738626264663535366635623634653431356463
|
||||
32356232383837666466383765353561666236363337666434623335363230363966323362666536
|
||||
62646238633632626162363134373036353234393134626636366565353935333339346431316461
|
||||
38306430663532396132656663313964346434656462373663616639323234306330666664383166
|
||||
38346430613338303136643666613765333636306537346534633162323739343537303039353938
|
||||
38613264666339303436353133323763306134343935396230396639623937376634666133393133
|
||||
32643832313561613138656633306236383933303365626161373366313265626639383662356634
|
||||
65353366613162616366343766333830633930323433643434366635646664636362666636336435
|
||||
39343236636166653736623833386333356533326266633131666262353839306538656335643230
|
||||
37656430663962333666376138326662376436383736643065316163396264663830356337323339
|
||||
31346130613665656438623666363764643466366331303064386237363331383030373036633637
|
||||
35323437383066323962353132383462383631633435306530336666623133306636643835653837
|
||||
36646438623437333566633663613932616163666137313734666137376565626334323539623637
|
||||
33633435303131656538616165643238313433316534616337316464383263633430663662323933
|
||||
35323766303564643237316166646539396266633765653266663861653031346139316561326239
|
||||
63373939363564353563623836373831303862306637323738396434363166653433323431343837
|
||||
65363437623461383936626331636138373035666264363363313034613235643864336365643464
|
||||
39306433333131306136313432646464613565346536353430326264363632316661333632343862
|
||||
37653138666662663632303535623737633765323731633439323664363834333262326461366463
|
||||
36323339643434636134356434353332313639376164373237396562396630353433373136623332
|
||||
62366638623664333765323565393464373333366332623065653034626463313336633932316637
|
||||
36323465623330643731303561336366303337626432356538643561343162326339643735323061
|
||||
61303237306164353339663137386337363166303935363438373733386238636463653536313733
|
||||
39363063393739663030376464616661393638333030633061653466396234656530343762346663
|
||||
36313664316130643837313364656230386539633330363937333132623363633161376633636134
|
||||
33383764356638376135633538646638626130646530386261313964353661656335376230346430
|
||||
37383263646463623166633932376335633536383131343664646336326436316637376661396466
|
||||
31356461656439306436646264626265356561333264323166303165346565376237663835323536
|
||||
35663935393165656365323138346236363161353161333338363632333832636536646139656532
|
||||
61633666306433343332343762373061316134396130653635663435396265363933626138353338
|
||||
38363331396136343065633631626663306537376461643131636532313931356666633331333231
|
||||
61663338313165663734356636323732336434396465316436383961313033313965303833636162
|
||||
36333937623130653062613334353438306137653238356635313132666535643131323763636137
|
||||
39636462393662633765626238636136636637643335373535653436376666326134376264323539
|
||||
39353437303262343664313238306364353964633161366630663233633064313163386338643662
|
||||
63303830643230303334336362653639323463336631323663613433336334383962663664303764
|
||||
33653635626136633530356435383164383865633333353133346564666531303735643664313530
|
||||
63333831343666623364623834396162636439396639343430313064303739636465323937653634
|
||||
33333963326131353335326138326530393938353533383832656335623536643064643762636462
|
||||
6262
|
||||
|
|
|
@ -1,32 +0,0 @@
|
|||
# These are the variables contained in secrets.yml
|
||||
# Secrets are usually 32 characters or more, matching [a-Z0-9]
|
||||
|
||||
postgres_passwords:
|
||||
fider: xxx
|
||||
nextcloud: xxx
|
||||
passit: xxx
|
||||
gitea: xxx
|
||||
matrix: xxx
|
||||
codimd: xxx
|
||||
mailu: xxx
|
||||
ttrss: xxx
|
||||
|
||||
fider_jwt_secret: xxx
|
||||
|
||||
ldap_admin_password: xxx
|
||||
ldap_config_password: xxx
|
||||
|
||||
passit_secret_key: xxx
|
||||
|
||||
docker_password: xxx
|
||||
|
||||
mailu_secret_key: xxx
|
||||
|
||||
drone_secrets:
|
||||
oauth_client_id: xxx
|
||||
oauth_client_secret: xxx
|
||||
rpc_shared_secret: xxx
|
||||
|
||||
restic_secrets:
|
||||
user_secret: xxx
|
||||
encryption_secret: xxx
|
|
@ -23,11 +23,9 @@
|
|||
- docker_registry
|
||||
- drone
|
||||
- websites
|
||||
- ulovliglogning-dk
|
||||
- ouroboros
|
||||
- mailu
|
||||
- portainer
|
||||
# - tt-rss
|
||||
|
||||
smtp_host: "postfix"
|
||||
smtp_port: "587"
|
||||
|
|
|
@ -19,7 +19,6 @@ gitea:
|
|||
|
||||
passit:
|
||||
domain: "passit.{{ base_domain }}"
|
||||
volume_folder: "{{ volume_root_folder }}/passit"
|
||||
|
||||
fider:
|
||||
domain: "feedback.{{ base_domain }}"
|
||||
|
@ -29,9 +28,7 @@ matrix:
|
|||
volume_folder: "{{ volume_root_folder }}/matrix"
|
||||
|
||||
riot:
|
||||
domains:
|
||||
- "riot.{{ base_domain }}"
|
||||
- "element.{{ base_domain }}"
|
||||
domain: "riot.{{ base_domain }}"
|
||||
volume_folder: "{{ volume_root_folder }}/riot"
|
||||
|
||||
privatebin:
|
||||
|
@ -52,25 +49,10 @@ docker_registry:
|
|||
password: "{{ docker_password }}"
|
||||
|
||||
data_coop_website:
|
||||
domains:
|
||||
- "{{ base_domain }}"
|
||||
- "www.{{ base_domain }}"
|
||||
domain: "{{ base_domain }}"
|
||||
|
||||
cryptohagen_website:
|
||||
domains:
|
||||
- "cryptohagen.dk"
|
||||
- "www.cryptohagen.dk"
|
||||
|
||||
ulovliglogning_website:
|
||||
domains:
|
||||
- "ulovliglogning.dk"
|
||||
- "www.ulovliglogning.dk"
|
||||
- "ulovlig-logning.dk"
|
||||
|
||||
cryptoaarhus_website:
|
||||
domains:
|
||||
- "cryptoaarhus.dk"
|
||||
- "www.cryptoaarhus.dk"
|
||||
domain: "cryptohagen.dk"
|
||||
|
||||
drone:
|
||||
domain: "drone.{{ base_domain }}"
|
||||
|
@ -87,6 +69,7 @@ portainer:
|
|||
domain: "portainer.{{ base_domain }}"
|
||||
volume_folder: "{{ volume_root_folder }}/portainer"
|
||||
|
||||
ttrss:
|
||||
domain: rss.{{ base_domain }}
|
||||
volume_folder: "{{ volume_root_folder }}/tt-rss"
|
||||
gluu:
|
||||
domain: "gluu.{{ base_domain }}"
|
||||
volume_folder: "{{ volume_root_folder }}/gluu"
|
||||
|
||||
|
|
|
@ -54,10 +54,6 @@ soft_file_limit: 0
|
|||
# Set to false to disable presence tracking on this homeserver.
|
||||
use_presence: true
|
||||
|
||||
# If set to 'false', forbids any other homeserver to fetch the server's public
|
||||
# rooms directory via federation.
|
||||
allow_public_rooms_over_federation: true
|
||||
|
||||
# The GC threshold parameters to pass to `gc.set_threshold`, if defined
|
||||
#
|
||||
#gc_thresholds: [700, 10, 10]
|
||||
|
@ -415,7 +411,7 @@ uploads_path: "/data/uploads"
|
|||
|
||||
# The largest allowed upload size in bytes
|
||||
#
|
||||
max_upload_size: "50M"
|
||||
max_upload_size: "10M"
|
||||
|
||||
# Maximum number of pixels that will be thumbnailed
|
||||
#
|
||||
|
@ -885,7 +881,7 @@ password_config:
|
|||
|
||||
# Whether to allow non server admins to create groups on this server
|
||||
#
|
||||
enable_group_creation: true
|
||||
enable_group_creation: false
|
||||
|
||||
# If enabled, non server admins can only create groups with local parts
|
||||
# starting with this prefix
|
||||
|
|
|
@ -1,2 +1 @@
|
|||
listen 8008;
|
||||
client_max_body_size 50M; # default is 1M
|
||||
listen 8008;
|
|
@ -1 +0,0 @@
|
|||
client_max_body_size 50M; # default is 1M
|
|
@ -1,7 +1,7 @@
|
|||
{
|
||||
"default_hs_url": "https://{{ matrix.domain }}",
|
||||
"default_is_url": "https://vector.im",
|
||||
"brand": "element.data.coop",
|
||||
"brand": "riot.data.coop",
|
||||
"integrations_ui_url": "https://scalar.vector.im/",
|
||||
"integrations_rest_url": "https://scalar.vector.im/api",
|
||||
"integrations_widgets_urls": [
|
||||
|
|
|
@ -3,6 +3,14 @@
|
|||
docker_network:
|
||||
name: external_services
|
||||
|
||||
- name: setup network for postfix
|
||||
docker_network:
|
||||
name: postfix
|
||||
ipam_options:
|
||||
subnet: '172.16.0.0/16'
|
||||
gateway: 172.16.0.1
|
||||
|
||||
|
||||
- name: setup services
|
||||
include_tasks: "services/{{ item }}.yml"
|
||||
with_items: "{{ services }}"
|
||||
|
|
|
@ -1,51 +1,21 @@
|
|||
---
|
||||
- name: set up drone with docker runner
|
||||
docker_compose:
|
||||
project_name: drone
|
||||
pull: yes
|
||||
definition:
|
||||
version: "3.6"
|
||||
services:
|
||||
drone:
|
||||
container_name: "drone"
|
||||
image: drone/drone:1
|
||||
restart: unless-stopped
|
||||
networks:
|
||||
- external_services
|
||||
- drone
|
||||
volumes:
|
||||
- "{{ drone.volume_folder }}:/data"
|
||||
- "/var/run/docker.sock:/var/run/docker.sock"
|
||||
environment:
|
||||
DRONE_GITEA_SERVER: "https://{{ gitea.domain }}"
|
||||
DRONE_GITEA_CLIENT_ID: "{{ drone_secrets.oauth_client_id }}"
|
||||
DRONE_GITEA_CLIENT_SECRET: "{{ drone_secrets.oauth_client_secret }}"
|
||||
DRONE_GIT_ALWAYS_AUTH: "true"
|
||||
DRONE_SERVER_HOST: "{{ drone.domain }}"
|
||||
DRONE_SERVER_PROTO: "https"
|
||||
DRONE_RPC_SECRET: "{{ drone_secrets.rpc_shared_secret }}"
|
||||
PLUGIN_CUSTOM_DNS: "91.239.100.100"
|
||||
VIRTUAL_HOST: "{{ drone.domain }}"
|
||||
LETSENCRYPT_HOST: "{{ drone.domain }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
|
||||
drone-runner-docker:
|
||||
container_name: "drone-runner-docker"
|
||||
image: "drone/drone-runner-docker:1"
|
||||
restart: unless-stopped
|
||||
networks:
|
||||
- drone
|
||||
volumes:
|
||||
- "/var/run/docker.sock:/var/run/docker.sock"
|
||||
environment:
|
||||
DRONE_RPC_HOST: "{{ drone.domain }}"
|
||||
DRONE_RPC_PROTO: "https"
|
||||
DRONE_RPC_SECRET: "{{ drone_secrets.rpc_shared_secret }}"
|
||||
DRONE_RUNNER_CAPACITY: 2
|
||||
DRONE_RUNNER_NAME: "data.coop_drone_runner"
|
||||
|
||||
networks:
|
||||
drone:
|
||||
external_services:
|
||||
external:
|
||||
name: external_services
|
||||
- name: Drone container
|
||||
docker_container:
|
||||
name: drone
|
||||
image: drone/drone:latest
|
||||
restart_policy: unless-stopped
|
||||
networks:
|
||||
- name: external_services
|
||||
volumes:
|
||||
- "{{ drone.volume_folder }}:/data"
|
||||
- "/var/run/docker.sock:/var/run/docker.sock"
|
||||
env:
|
||||
DRONE_GITEA_SERVER: "https://{{ gitea.domain }}"
|
||||
DRONE_GITEA_ALWAYS_AUTH: "False"
|
||||
DRONE_RUNNER_CAPACITY: "2"
|
||||
DRONE_SERVER_HOST: "{{ drone.domain }}"
|
||||
DRONE_SERVER_PROTO: "https"
|
||||
PLUGIN_CUSTOM_DNS: "91.239.100.100"
|
||||
VIRTUAL_HOST: "{{ drone.domain }}"
|
||||
LETSENCRYPT_HOST: "{{ drone.domain }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
|
|
|
@ -1,13 +1,9 @@
|
|||
---
|
||||
- name: gitea network
|
||||
docker_network:
|
||||
name: gitea
|
||||
|
||||
# old DNS: 138.68.71.153
|
||||
- name: gitea container
|
||||
docker_container:
|
||||
name: gitea
|
||||
image: gitea/gitea:1.12.3
|
||||
image: gitea/gitea:latest
|
||||
restart_policy: unless-stopped
|
||||
networks:
|
||||
- name: gitea
|
||||
|
|
|
@ -0,0 +1,235 @@
|
|||
- name: create gluu volume folders
|
||||
file:
|
||||
name: "{{ gluu.volume_folder }}/{{ volume }}"
|
||||
state: directory
|
||||
loop:
|
||||
- "config-init/db"
|
||||
- "consul/data"
|
||||
- "opendj/config"
|
||||
- "opendj/ldif"
|
||||
- "opendj/logs"
|
||||
- "opendj/db"
|
||||
- "opendj/flag"
|
||||
- "opendj/backup"
|
||||
- "oxauth/custom"
|
||||
- "oxauth/custom/pages"
|
||||
- "oxauth/custom/static"
|
||||
- "oxauth/lib/ext"
|
||||
- "oxauth/logs"
|
||||
- "oxtrust/custom/pages"
|
||||
- "oxtrust/lib/ext"
|
||||
- "oxtrust/logs"
|
||||
- "shared-shibboleth-idp"
|
||||
- "vault/config:/vault/config"
|
||||
- "vault/data:/vault/data"
|
||||
- "vault/logs:/vault/logs"
|
||||
loop_control:
|
||||
loop_var: "volume"
|
||||
|
||||
- name: set up gluu
|
||||
docker_service:
|
||||
project_name: gluu
|
||||
pull: yes
|
||||
definition:
|
||||
version: "2.3"
|
||||
services:
|
||||
consul:
|
||||
image: consul
|
||||
container_name: consul
|
||||
command: agent -server -bootstrap -ui
|
||||
hostname: consul-1
|
||||
environment:
|
||||
- CONSUL_BIND_INTERFACE=eth0
|
||||
- CONSUL_CLIENT_INTERFACE=eth0
|
||||
restart: unless-stopped
|
||||
volumes:
|
||||
- "{{ gluu.volume_folder }}/consul:/consul/data"
|
||||
networks:
|
||||
- "gluu"
|
||||
labels:
|
||||
- "SERVICE_IGNORE=yes"
|
||||
|
||||
vault:
|
||||
container_name: vault
|
||||
image: vault:1.0.1
|
||||
command: vault server -config=/vault/config
|
||||
volumes:
|
||||
- "{{ gluu.volume_folder }}/vault/config:/vault/config"
|
||||
- "{{ gluu.volume_folder }}/vault/data:/vault/data"
|
||||
- "{{ gluu.volume_folder }}/vault/logs:/vault/logs"
|
||||
- "{{ gluu.volume_folder }}/vault/vault_gluu_policy.hcl:/vault/config/policy.hcl"
|
||||
- "{{ gluu.volume_folder }}/vault/gcp_kms_stanza.hcl:/vault/config/stanza.hcl"
|
||||
- "{{ gluu.volume_folder }}/vault/gcp_kms_creds.json:/vault/config/creds.json"
|
||||
cap_add:
|
||||
- IPC_LOCK
|
||||
environment:
|
||||
- VAULT_REDIRECT_INTERFACE=eth0
|
||||
- VAULT_CLUSTER_INTERFACE=eth0
|
||||
- VAULT_ADDR=http://0.0.0.0:8200
|
||||
- VAULT_LOCAL_CONFIG={"backend":{"consul":{"address":"consul:8500","path":"vault/"}},"listener":{"tcp":{"address":"0.0.0.0:8200","tls_disable":1}}}
|
||||
restart: unless-stopped
|
||||
networks:
|
||||
- "gluu"
|
||||
depends_on:
|
||||
- consul
|
||||
labels:
|
||||
- "SERVICE_IGNORE=yes"
|
||||
|
||||
registrator:
|
||||
container_name: registrator
|
||||
image: gluufederation/registrator:dev
|
||||
command: registrator -internal -cleanup -resync 30 -retry-attempts 5 -retry-interval 10 consul://consul:8500
|
||||
volumes:
|
||||
- /var/run/docker.sock:/tmp/docker.sock
|
||||
networks:
|
||||
- "gluu"
|
||||
restart: unless-stopped
|
||||
depends_on:
|
||||
- consul
|
||||
|
||||
nginx:
|
||||
container_name: nginx
|
||||
image: gluufederation/nginx:3.1.5_02
|
||||
environment:
|
||||
- GLUU_CONFIG_CONSUL_HOST=consul
|
||||
- GLUU_SECRET_VAULT_HOST=vault
|
||||
- VIRTUAL_HOST="{{ gluu.domain }}"
|
||||
- LETSENCRYPT_HOST="{{ gluu.domain }}"
|
||||
- LETSENCRYPT_EMAIL="{{ letsencrypt_email }}"
|
||||
ports:
|
||||
- "80"
|
||||
- "443"
|
||||
networks:
|
||||
- "external_services"
|
||||
- "gluu"
|
||||
restart: unless-stopped
|
||||
labels:
|
||||
- "SERVICE_IGNORE=yes"
|
||||
|
||||
ldap:
|
||||
container_name: ldap
|
||||
image: gluufederation/opendj:3.1.5_02
|
||||
environment:
|
||||
- GLUU_CONFIG_CONSUL_HOST=consul
|
||||
- GLUU_SECRET_VAULT_HOST=vault
|
||||
- GLUU_LDAP_INIT=true
|
||||
- GLUU_LDAP_INIT_HOST=ldap
|
||||
- GLUU_LDAP_INIT_PORT=1636
|
||||
- GLUU_OXTRUST_CONFIG_GENERATION=true
|
||||
- GLUU_CACHE_TYPE=NATIVE_PERSISTENCE
|
||||
# - GLUU_CACHE_TYPE=REDIS # don't forget to enable redis service
|
||||
# - GLUU_REDIS_URL=redis:6379
|
||||
# - GLUU_REDIS_TYPE=STANDALONE
|
||||
# the value must match service name `ldap` because other containers
|
||||
# use this value as LDAP hostname
|
||||
- GLUU_CERT_ALT_NAME=ldap
|
||||
volumes:
|
||||
- "{{ gluu.volume_folder }}/opendj/config:/opt/opendj/config"
|
||||
- "{{ gluu.volume_folder }}/opendj/ldif:/opt/opendj/ldif"
|
||||
- "{{ gluu.volume_folder }}/opendj/logs:/opt/opendj/logs"
|
||||
- "{{ gluu.volume_folder }}/opendj/db:/opt/opendj/db"
|
||||
- "{{ gluu.volume_folder }}/opendj/flag:/flag"
|
||||
- "{{ gluu.volume_folder }}/opendj/backup:/opt/opendj/bak"
|
||||
networks:
|
||||
- "gluu"
|
||||
restart: unless-stopped
|
||||
labels:
|
||||
- "SERVICE_IGNORE=yes"
|
||||
|
||||
oxauth:
|
||||
container_name: oxauth
|
||||
image: gluufederation/oxauth:3.1.5_02
|
||||
environment:
|
||||
- GLUU_CONFIG_CONSUL_HOST=consul
|
||||
- GLUU_SECRET_VAULT_HOST=consul
|
||||
- GLUU_LDAP_URL=ldap:1636
|
||||
extra_hosts:
|
||||
- "{{ gluu.domain }}:85.235.225.231"
|
||||
volumes:
|
||||
- "{{ gluu.volume_folder }}/oxauth/custom/pages:/opt/gluu/jetty/oxauth/custom/pages"
|
||||
- "{{ gluu.volume_folder }}/oxauth/custom/static:/opt/gluu/jetty/oxauth/custom/static"
|
||||
- "{{ gluu.volume_folder }}/oxauth/lib/ext:/opt/gluu/jetty/oxauth/lib/ext"
|
||||
- "{{ gluu.volume_folder }}/oxauth/logs:/opt/gluu/jetty/oxauth/logs"
|
||||
networks:
|
||||
- "gluu"
|
||||
mem_limit: 1536M
|
||||
restart: unless-stopped
|
||||
labels:
|
||||
- "SERVICE_NAME=oxauth"
|
||||
- "SERVICE_8080_CHECK_HTTP=/oxauth/.well-known/openid-configuration"
|
||||
- "SERVICE_8080_CHECK_INTERVAL=15s"
|
||||
- "SERVICE_8080_CHECK_TIMEOUT=5s"
|
||||
|
||||
oxtrust:
|
||||
container_name: oxtrust
|
||||
image: gluufederation/oxtrust:3.1.5_02
|
||||
environment:
|
||||
- GLUU_CONFIG_CONSUL_HOST=consul
|
||||
- GLUU_SECRET_VAULT_HOST=vault
|
||||
- GLUU_LDAP_URL=ldap:1636
|
||||
- GLUU_OXAUTH_BACKEND=oxauth:8080
|
||||
extra_hosts:
|
||||
- "{{ gluu.domain }}:85.235.225.231"
|
||||
volumes:
|
||||
- "{{ gluu.volume_folder }}/oxtrust/custom/pages:/opt/gluu/jetty/identity/custom/pages"
|
||||
- "{{ gluu.volume_folder }}/oxtrust/custom/static:/opt/gluu/jetty/identity/custom/static"
|
||||
- "{{ gluu.volume_folder }}/oxtrust/lib/ext:/opt/gluu/jetty/identity/lib/ext"
|
||||
- "{{ gluu.volume_folder }}/oxtrust/logs:/opt/gluu/jetty/identity/logs"
|
||||
- "{{ gluu.volume_folder }}/shared-shibboleth-idp:/opt/shared-shibboleth-idp"
|
||||
networks:
|
||||
- "gluu"
|
||||
mem_limit: 1536M
|
||||
restart: unless-stopped
|
||||
labels:
|
||||
- "SERVICE_NAME=oxtrust"
|
||||
- "SERVICE_8080_CHECK_HTTP=/identity/restv1/scim-configuration"
|
||||
- "SERVICE_8080_CHECK_INTERVAL=15s"
|
||||
- "SERVICE_8080_CHECK_TIMEOUT=5s"
|
||||
|
||||
oxshibboleth:
|
||||
container_name: oxshibboleth
|
||||
image: gluufederation/oxshibboleth:3.1.5_02
|
||||
environment:
|
||||
- GLUU_CONFIG_CONSUL_HOST=consul
|
||||
- GLUU_SECRET_VAULT_HOST=vault
|
||||
- GLUU_LDAP_URL=ldap:1636
|
||||
extra_hosts:
|
||||
- "{{gluu.domain}}:85.235.225.231"
|
||||
volumes:
|
||||
- "{{ gluu.volume_folder }}/volumes/shared-shibboleth-idp:/opt/shared-shibboleth-idp"
|
||||
networks:
|
||||
- "gluu"
|
||||
mem_limit: 1024M
|
||||
restart: unless-stopped
|
||||
labels:
|
||||
- "SERVICE_NAME=oxshibboleth"
|
||||
- "SERVICE_8086_CHECK_HTTP=/idp"
|
||||
- "SERVICE_8086_CHECK_INTERVAL=15s"
|
||||
- "SERVICE_8086_CHECK_TIMEOUT=5s"
|
||||
|
||||
oxpassport:
|
||||
container_name: oxpassport
|
||||
image: gluufederation/oxpassport:3.1.5_02
|
||||
environment:
|
||||
- GLUU_CONFIG_CONSUL_HOST=consul
|
||||
- GLUU_SECRET_VAULT_HOST=vault
|
||||
- GLUU_LDAP_URL=ldap:1636
|
||||
# required by wait-for-it script
|
||||
- GLUU_OXAUTH_BACKEND=oxauth:8080
|
||||
- GLUU_OXTRUST_BACKEND=oxtrust:8080
|
||||
extra_hosts:
|
||||
- "{{gluu.domain}}:85.235.225.231"
|
||||
networks:
|
||||
- "gluu"
|
||||
restart: unless-stopped
|
||||
labels:
|
||||
- "SERVICE_NAME=oxpassport"
|
||||
- "SERVICE_8090_CHECK_HTTP=/passport"
|
||||
- "SERVICE_8090_CHECK_INTERVAL=15s"
|
||||
- "SERVICE_8090_CHECK_TIMEOUT=5s"
|
||||
|
||||
networks:
|
||||
external_services:
|
||||
external: true
|
||||
gluu:
|
||||
name: "gluu"
|
|
@ -38,7 +38,7 @@
|
|||
force: yes
|
||||
|
||||
- name: run mail server containers
|
||||
docker_compose:
|
||||
docker_service:
|
||||
project_name: mail_server
|
||||
pull: yes
|
||||
definition:
|
||||
|
@ -78,7 +78,6 @@
|
|||
- "993:993"
|
||||
- "25:25"
|
||||
- "587:587"
|
||||
- "465:465"
|
||||
networks:
|
||||
- default
|
||||
- external_services
|
||||
|
|
|
@ -46,11 +46,6 @@
|
|||
src: files/configs/matrix/vhost-matrix
|
||||
dest: "{{ nginx.volume_folder }}/vhost/{{ matrix.domain }}"
|
||||
|
||||
- name: upload vhost config for riot domain
|
||||
template:
|
||||
src: files/configs/matrix/vhost-riot
|
||||
dest: "{{ nginx.volume_folder }}/vhost/{{ riot.domains[0] }}"
|
||||
|
||||
- name: upload homeserver.yaml
|
||||
template:
|
||||
src: "files/configs/matrix/homeserver.yaml"
|
||||
|
@ -62,7 +57,7 @@
|
|||
dest: "{{ matrix.volume_folder }}/data/matrix.data.coop.log.config"
|
||||
|
||||
- name: set up matrix and riot
|
||||
docker_compose:
|
||||
docker_service:
|
||||
project_name: matrix
|
||||
pull: yes
|
||||
definition:
|
||||
|
@ -82,18 +77,17 @@
|
|||
|
||||
matrix_app:
|
||||
container_name: matrix
|
||||
image: matrixdotorg/synapse:v1.18.0
|
||||
image: matrixdotorg/synapse:v0.99.2
|
||||
restart: unless-stopped
|
||||
networks:
|
||||
- matrix
|
||||
- external_services
|
||||
- external_services
|
||||
ports:
|
||||
- 8008
|
||||
volumes:
|
||||
volumes:
|
||||
- "{{ matrix.volume_folder }}/data:/data"
|
||||
environment:
|
||||
SYNAPSE_CONFIG_PATH: "/data/homeserver.yaml"
|
||||
SYNAPSE_CACHE_FACTOR: "2"
|
||||
SYNAPSE_LOG_LEVEL: "INFO"
|
||||
VIRTUAL_HOST: "{{ matrix.domain }}"
|
||||
VIRTUAL_PORT: "8008"
|
||||
|
@ -102,7 +96,7 @@
|
|||
|
||||
riot:
|
||||
container_name: riot_app
|
||||
image: avhost/docker-matrix-riot:v1.7.3
|
||||
image: avhost/docker-matrix-riot:v1.0.3
|
||||
restart: unless-stopped
|
||||
networks:
|
||||
- matrix
|
||||
|
@ -110,14 +104,14 @@
|
|||
ports:
|
||||
- 8080
|
||||
volumes:
|
||||
- "{{ riot.volume_folder }}/data:/data"
|
||||
- "{{ riot.volume_folder }}/data:/data"
|
||||
environment:
|
||||
VIRTUAL_HOST: "{{ riot.domains|join(',') }}"
|
||||
VIRTUAL_HOST: "{{ riot.domain }}"
|
||||
VIRTUAL_PORT: "8080"
|
||||
LETSENCRYPT_HOST: "{{ riot.domains|join(',') }}"
|
||||
LETSENCRYPT_HOST: "{{ riot.domain }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
|
||||
networks:
|
||||
networks:
|
||||
external_services:
|
||||
external:
|
||||
name: external_services
|
||||
|
|
|
@ -21,7 +21,5 @@
|
|||
LETSENCRYPT_HOST: "{{ netdata.domain }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
PGID: "999"
|
||||
labels:
|
||||
com.ouroboros.enable: "true"
|
||||
|
||||
|
||||
|
|
|
@ -14,5 +14,5 @@
|
|||
LABELS_ONLY: "true"
|
||||
CLEANUP: "true"
|
||||
LATEST: "true"
|
||||
CRON: "*/10 * * * *"
|
||||
CRON: "*/1 * * * *"
|
||||
|
|
@ -1,47 +1,45 @@
|
|||
---
|
||||
|
||||
- name: setup passit containers
|
||||
docker_compose:
|
||||
project_name: "passit"
|
||||
pull: "yes"
|
||||
definition:
|
||||
version: "3.6"
|
||||
services:
|
||||
- name: passit network
|
||||
docker_network:
|
||||
name: passit
|
||||
|
||||
passit_db:
|
||||
image: "postgres:10"
|
||||
restart: "always"
|
||||
networks:
|
||||
- "passit"
|
||||
volumes:
|
||||
- "{{ passit.volume_folder }}/data:/var/lib/postgresql/data"
|
||||
environment:
|
||||
POSTGRES_USER: "passit"
|
||||
POSTGRES_PASSWORD: "{{ postgres_passwords.passit }}"
|
||||
- name: passit database volume
|
||||
docker_volume:
|
||||
name: passit_db
|
||||
|
||||
passit_app:
|
||||
image: "passit/passit:stable"
|
||||
command: "bin/start.sh"
|
||||
restart: "always"
|
||||
networks:
|
||||
- "passit"
|
||||
- "postfix"
|
||||
- "external_services"
|
||||
environment:
|
||||
DATABASE_URL: "postgres://passit:{{ postgres_passwords.passit }}@passit_db:5432/passit"
|
||||
SECRET_KEY: "{{ passit_secret_key }}"
|
||||
IS_DEBUG: 'False'
|
||||
EMAIL_URL: "smtp://noop@{{ smtp_host }}:{{ smtp_port }}"
|
||||
DEFAULT_FROM_EMAIL: "noreply@{{ passit.domain }}"
|
||||
EMAIL_CONFIRMATION_HOST: "https://{{ passit.domain }}"
|
||||
- name: passit database container
|
||||
docker_container:
|
||||
name: passit_db
|
||||
image: postgres:10
|
||||
state: started
|
||||
restart_policy: always
|
||||
networks:
|
||||
- name: passit
|
||||
volumes:
|
||||
- passit_db:/var/lib/postgresql/data
|
||||
env:
|
||||
POSTGRES_USER: passit
|
||||
POSTGRES_PASSWORD: "{{ postgres_passwords.passit }}"
|
||||
|
||||
VIRTUAL_HOST: "{{ passit.domain }}"
|
||||
LETSENCRYPT_HOST: "{{ passit.domain }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
- name: passit app container
|
||||
docker_container:
|
||||
name: passit
|
||||
image: passit/passit:stable
|
||||
command: bin/start.sh
|
||||
restart_policy: always
|
||||
networks:
|
||||
- name: passit
|
||||
- name: postfix
|
||||
- name: external_services
|
||||
env:
|
||||
DATABASE_URL: "postgres://passit:{{ postgres_passwords.passit }}@passit_db:5432/passit"
|
||||
SECRET_KEY: "{{ passit_secret_key }}"
|
||||
IS_DEBUG: 'False'
|
||||
EMAIL_URL: smtp://noop@{{ smtp_host }}:{{ smtp_port }}
|
||||
DEFAULT_FROM_EMAIL: "noreply@{{ passit.domain }}"
|
||||
EMAIL_CONFIRMATION_HOST: "https://{{ passit.domain }}"
|
||||
|
||||
networks:
|
||||
passit:
|
||||
postfix:
|
||||
external: true
|
||||
external_services:
|
||||
external: true
|
||||
VIRTUAL_HOST: "{{ passit.domain }}"
|
||||
LETSENCRYPT_HOST: "{{ passit.domain }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
|
|
|
@ -8,7 +8,7 @@
|
|||
- name: run portainer
|
||||
docker_container:
|
||||
name: portainer
|
||||
image: portainer/portainer-ce:2.0.1
|
||||
image: portainer/portainer
|
||||
restart_policy: always
|
||||
networks:
|
||||
- name: external_services
|
||||
|
@ -19,6 +19,5 @@
|
|||
- 9001:9000
|
||||
env:
|
||||
VIRTUAL_HOST: "{{ portainer.domain }}"
|
||||
VIRTUAL_PORT: "9000"
|
||||
LETSENCRYPT_HOST: "{{ portainer.domain }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
|
|
|
@ -1,12 +1,5 @@
|
|||
---
|
||||
|
||||
- name: setup network for postfix
|
||||
docker_network:
|
||||
name: postfix
|
||||
ipam_config:
|
||||
- subnet: '172.16.0.0/16'
|
||||
gateway: 172.16.0.1
|
||||
|
||||
- name: setup postfix docker container for outgoing mail
|
||||
docker_container:
|
||||
name: postfix
|
||||
|
|
|
@ -1,38 +0,0 @@
|
|||
---
|
||||
- name: setup restic backup
|
||||
docker_compose:
|
||||
project_name: restic_backup
|
||||
pull: yes
|
||||
definition:
|
||||
version: '3.6'
|
||||
services:
|
||||
restic-backup:
|
||||
image: mazzolino/restic
|
||||
restart: always
|
||||
environment:
|
||||
RUN_ON_STARTUP: "true"
|
||||
BACKUP_CRON: "0 30 3 * * *"
|
||||
RESTIC_REPOSITORY: "rest:https://datacoop:{{ restic_secrets.user_secret }}@restic.graffen.io/datacoop-hevonen"
|
||||
RESTIC_PASSWORD: "{{ restic_secrets.encryption_secret }}"
|
||||
RESTIC_BACKUP_SOURCES: "/mnt/volumes"
|
||||
RESTIC_BACKUP_ARGS: >-
|
||||
--tag datacoop-volumes
|
||||
--exclude='*.tmp'
|
||||
--verbose
|
||||
RESTIC_FORGET_ARGS: >-
|
||||
--keep-last 10
|
||||
--keep-daily 7
|
||||
--keep-weekly 5
|
||||
--keep-monthly 12
|
||||
TZ: Europe/Copenhagen
|
||||
volumes:
|
||||
- /docker-volumes:/mnt/volumes:ro
|
||||
|
||||
restic-prune:
|
||||
image: "mazzolino/restic"
|
||||
environment:
|
||||
RUN_ON_STARTUP: "true"
|
||||
PRUNE_CRON: "0 0 4 * * *"
|
||||
RESTIC_REPOSITORY: "rest:https://datacoop:{{ restic_secrets.user_secret }}@restic.graffen.io/datacoop-hevonen"
|
||||
RESTIC_PASSWORD: "{{ restic_secrets.encryption_secret }}"
|
||||
TZ: Europe/copenhagen
|
|
@ -1,53 +0,0 @@
|
|||
---
|
||||
- name: create tt-rss folders
|
||||
file:
|
||||
name: "{{ ttrss.volume_folder }}/{{ volume }}"
|
||||
state: directory
|
||||
loop:
|
||||
- "config"
|
||||
- "db"
|
||||
loop_control:
|
||||
loop_var: volume
|
||||
|
||||
- name: "set up tt-rss"
|
||||
docker_compose:
|
||||
project_name: "tt-rss"
|
||||
pull: yes
|
||||
definition:
|
||||
version: "3.6"
|
||||
services:
|
||||
ttrss_db:
|
||||
container_name: "ttrss_db"
|
||||
image: "postgres:11"
|
||||
restart: "unless-stopped"
|
||||
networks:
|
||||
- "ttrss"
|
||||
volumes:
|
||||
- "{{ ttrss.volume_folder }}/db:/var/lib/postgresql/data"
|
||||
environment:
|
||||
POSTGRES_USER: "ttrss"
|
||||
POSTGRES_PASSWORD: "{{ postgres_passwords.ttrss }}"
|
||||
|
||||
ttrss_app:
|
||||
container_name: ttrss_app
|
||||
image: "linuxserver/tt-rss"
|
||||
restart: unless-stopped
|
||||
networks:
|
||||
- ttrss
|
||||
- external_services
|
||||
volumes:
|
||||
- "{{ ttrss.volume_folder }}/config:/config"
|
||||
environment:
|
||||
VIRTUAL_HOST: "{{ ttrss.domain }}"
|
||||
LETSENCRYPT_HOST: "{{ ttrss.domain }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
TZ: "Europe/Copenhagen"
|
||||
labels:
|
||||
com.ouroboros.enable: "true"
|
||||
|
||||
networks:
|
||||
external_services:
|
||||
external:
|
||||
name: external_services
|
||||
ttrss:
|
||||
name: "ttrss"
|
|
@ -1,13 +0,0 @@
|
|||
- name: setup ulovliglogning.dk website docker container
|
||||
docker_container:
|
||||
name: ulovliglogning_website
|
||||
restart_policy: unless-stopped
|
||||
image: ulovliglogning/ulovliglogning.dk:latest
|
||||
networks:
|
||||
- name: external_services
|
||||
env:
|
||||
VIRTUAL_HOST: "{{ ulovliglogning_website.domains|join(',') }}"
|
||||
LETSENCRYPT_HOST: "{{ ulovliglogning_website.domains|join(',') }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
labels:
|
||||
com.ouroboros.enable: "true"
|
|
@ -8,25 +8,11 @@
|
|||
networks:
|
||||
- name: external_services
|
||||
env:
|
||||
VIRTUAL_HOST : "{{ data_coop_website.domains|join(',') }}"
|
||||
LETSENCRYPT_HOST: "{{ data_coop_website.domains|join(',') }}"
|
||||
VIRTUAL_HOST : "{{ data_coop_website.domain }}"
|
||||
LETSENCRYPT_HOST: "{{ data_coop_website.domain }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
labels:
|
||||
com.ouroboros.enable: "true"
|
||||
|
||||
- name: setup new data.coop website using hugo
|
||||
docker_container:
|
||||
name: new.data.coop_website
|
||||
image: docker.data.coop/data-coop-website:hugo
|
||||
restart_policy: unless-stopped
|
||||
networks:
|
||||
- name: external_services
|
||||
env:
|
||||
VIRTUAL_HOST : "new.{{ data_coop_website.domains|join(',') }}"
|
||||
LETSENCRYPT_HOST: "new.{{ data_coop_website.domains|join(',') }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
labels:
|
||||
com.ouroboros.enable: "true"
|
||||
com.ouroboros.enable: "true"
|
||||
|
||||
- name: setup cryptohagen.dk website docker container
|
||||
docker_container:
|
||||
|
@ -36,22 +22,8 @@
|
|||
networks:
|
||||
- name: external_services
|
||||
env:
|
||||
VIRTUAL_HOST : "{{ cryptohagen_website.domains|join(',') }}"
|
||||
LETSENCRYPT_HOST: "{{ cryptohagen_website.domains|join(',') }}"
|
||||
VIRTUAL_HOST : "{{ cryptohagen_website.domain }}"
|
||||
LETSENCRYPT_HOST: "{{ cryptohagen_website.domain }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
labels:
|
||||
com.ouroboros.enable: "true"
|
||||
|
||||
- name: setup cryptoaarhus.dk website docker container
|
||||
docker_container:
|
||||
name: cryptoaarhus_website
|
||||
restart_policy: unless-stopped
|
||||
image: docker.data.coop/cryptoaarhus-website
|
||||
networks:
|
||||
- name: external_services
|
||||
env:
|
||||
VIRTUAL_HOST : "{{ cryptoaarhus_website.domains|join(',') }}"
|
||||
LETSENCRYPT_HOST: "{{ cryptoaarhus_website.domains|join(',') }}"
|
||||
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
||||
labels:
|
||||
com.ouroboros.enable: "true"
|
||||
|
|
|
@ -41,7 +41,7 @@ POSTMASTER=admin
|
|||
TLS_FLAVOR=mail
|
||||
|
||||
# Authentication rate limit (per source IP address)
|
||||
AUTH_RATELIMIT=120/minute;1200/hour
|
||||
AUTH_RATELIMIT=10/minute;1000/hour
|
||||
|
||||
# Opt-out of statistics, replace with "True" to opt out
|
||||
DISABLE_STATISTICS=False
|
||||
|
|
|
@ -1,5 +1,5 @@
|
|||
---
|
||||
- name: Install necessary packages via apt
|
||||
- name: Install necessary packages
|
||||
apt:
|
||||
name: "{{ packages }}"
|
||||
vars:
|
||||
|
@ -8,11 +8,4 @@
|
|||
- python3-pip
|
||||
- apparmor
|
||||
- haveged
|
||||
|
||||
- name: Install necessary packages via pip
|
||||
pip:
|
||||
name: "{{ packages }}"
|
||||
vars:
|
||||
packages:
|
||||
- docker
|
||||
- docker-compose
|
||||
|
Loading…
Reference in New Issue