1
0
Fork 0
mirror of https://github.com/DO1JLR/ansible_playbook_servers.git synced 2024-09-14 19:53:56 +02:00
ansible_playbook_servers/host_vars/web01.l3d.space/vars.yml

275 lines
6.3 KiB
YAML
Raw Normal View History

2020-12-23 01:17:14 +01:00
---
2021-01-04 21:52:10 +01:00
postgres_users_no_log: false
2021-11-09 16:40:55 +01:00
local_users:
2020-12-23 01:17:14 +01:00
webwaffel:
- l3d@pinkie.l3d.yt
- l3d@mobile.l3d.yt
- l3d@backup.l3d.yt
- l3d@derpy.l3d.yt
- l3d@backup-rsa.l3d.yt
2021-11-09 16:40:55 +01:00
- l3d@bsns.l3d
2021-01-01 04:50:47 +01:00
webwaffelpodcast:
- l3d@pinkie.l3d.yt
- l3d@mobile.l3d.yt
- l3d@backup.l3d.yt
- l3d@derpy.l3d.yt
- l3d@backup-rsa.l3d.yt
2021-11-09 16:40:55 +01:00
- l3d@bsns.l3d
2021-03-15 20:28:21 +01:00
files:
- l3d@pinkie.l3d.yt
- l3d@mobile.l3d.yt
- l3d@backup.l3d.yt
- l3d@derpy.l3d.yt
- l3d@backup-rsa.l3d.yt
2021-11-09 16:40:55 +01:00
- l3d@bsns.l3d
2021-07-08 01:57:49 +02:00
preview:
- l3d@pinkie.l3d.yt
- l3d@mobile.l3d.yt
- l3d@backup.l3d.yt
- l3d@derpy.l3d.yt
- l3d@backup-rsa.l3d.yt
2021-11-09 16:40:55 +01:00
- l3d@bsns.l3d
2021-11-09 15:21:24 +01:00
see:
- l3d@pinkie.l3d.yt
- l3d@mobile.l3d.yt
- l3d@backup.l3d.yt
- l3d@derpy.l3d.yt
- l3d@backup-rsa.l3d.yt
2021-11-09 16:40:55 +01:00
- l3d@bsns.l3d
2022-01-09 20:20:42 +01:00
winkekatze:
- l3d@pinkie.l3d.yt
- l3d@mobile.l3d.yt
- l3d@backup.l3d.yt
- l3d@derpy.l3d.yt
- l3d@backup-rsa.l3d.yt
- l3d@bsns.l3d
2022-04-26 21:04:03 +02:00
m2:
- l3d@pinkie.l3d.yt
- l3d@mobile.l3d.yt
- l3d@backup.l3d.yt
- l3d@derpy.l3d.yt
- l3d@backup-rsa.l3d.yt
- l3d@bsns.l3d
2022-06-22 03:12:55 +02:00
klima:
- l3d@pinkie.l3d.yt
- l3d@mobile.l3d.yt
- l3d@backup.l3d.yt
- l3d@derpy.l3d.yt
- l3d@backup-rsa.l3d.yt
- l3d@bsns.l3d
2023-03-09 22:12:23 +01:00
roles:
- l3d@pinkie.l3d.yt
- l3d@mobile.l3d.yt
- l3d@backup.l3d.yt
- l3d@derpy.l3d.yt
- l3d@backup-rsa.l3d.yt
- l3d@bsns.l3d
2021-07-08 01:57:49 +02:00
2021-01-28 19:09:43 +01:00
sshd__allowed_users:
- "root"
- "ansible"
- "l3d"
- "webwaffel"
- "webwaffelpodcast"
- "gitea"
2021-03-15 20:44:45 +01:00
- "files"
2021-07-08 01:57:49 +02:00
- "preview"
2021-11-09 15:21:24 +01:00
- 'see'
2022-01-09 20:20:42 +01:00
- 'winkekatze'
2022-04-26 21:04:03 +02:00
- 'm2'
2022-06-22 03:12:55 +02:00
- 'klima'
2023-03-09 22:12:23 +01:00
- 'roles'
2021-01-28 19:09:43 +01:00
sshd__allowed_groups:
- "root"
- "ansible"
- "l3d"
- "webwaffel"
- "webwaffelpodcast"
- "gitea"
2021-03-15 20:44:45 +01:00
- "files"
2021-07-08 01:57:49 +02:00
- "preview"
2021-11-09 15:21:24 +01:00
- 'see'
2022-01-09 20:20:42 +01:00
- 'winkekatze'
2022-04-26 21:04:03 +02:00
- 'm2'
2022-06-22 03:12:55 +02:00
- 'klima'
2023-03-09 22:12:23 +01:00
- 'roles'
2020-12-23 01:17:14 +01:00
2021-11-09 16:40:55 +01:00
local_accounts:
2021-02-18 23:59:46 +01:00
- 'l3d'
- 'webwaffel'
- 'webwaffelpodcast'
2021-11-09 16:40:55 +01:00
- 'files'
- 'preview'
2021-11-09 15:21:24 +01:00
- 'see'
2022-01-09 20:20:42 +01:00
- 'winkekatze'
2022-04-26 21:04:03 +02:00
- 'm2'
2022-06-22 03:12:55 +02:00
- 'klima'
2023-03-09 22:12:23 +01:00
- 'roles'
2020-12-23 01:17:14 +01:00
2023-10-30 02:05:53 +01:00
# acmetool config
acme_reload_services:
- 'nginx'
acme_restart_services:
- 'gitea'
2023-11-25 02:35:52 +01:00
acme_domain_unwant_list: []
2022-06-22 03:12:55 +02:00
# - name: 'example.com'
2021-10-13 01:13:57 +02:00
2020-12-23 01:17:14 +01:00
nginx_sites:
2020-12-24 17:56:40 +01:00
- name: 'c3woc.de'
2020-12-23 01:17:14 +01:00
webroot:
user: 'webwaffel'
2020-12-24 17:56:40 +01:00
- name: 'www.c3woc.de'
2021-01-01 20:54:49 +01:00
- name: 'waffel.tv'
- name: 'www.waffel.tv'
2020-12-24 17:56:40 +01:00
- name: 'c3woc.org'
2021-02-25 00:44:25 +01:00
- name: 'waffel.li'
- name: 'www.waffel.li'
2023-07-18 18:43:26 +02:00
- name: 'www.camp.waffel.li'
2023-08-04 00:45:56 +02:00
- name: '37c3.waffel.li'
- name: 'www.37c3.waffel.li'
2020-12-24 01:29:10 +01:00
- name: 'www.c3woc.org'
2020-12-24 01:36:49 +01:00
- name: 'c3woc.eu'
- name: 'www.c3woc.eu'
2020-12-24 01:41:58 +01:00
- name: 'c3woc.cn'
- name: 'www.c3woc.cn'
2021-01-01 06:02:28 +01:00
- name: 'waffeln.eskalieren.jetzt'
- name: 'waffeln.fehlerfrei.org'
- name: 'www.waffeln.fehlerfrei.org'
2021-01-01 02:52:42 +01:00
- name: 'l3d.space'
- name: 'www.l3d.space'
- name: 'ansible.l3d.space'
2023-03-09 22:12:23 +01:00
webroot:
user: 'roles'
2021-01-01 02:52:42 +01:00
- name: 'www.ansible.l3d.space'
- name: 'l3d.yt'
- name: 'www.l3d.yt'
2021-02-07 05:26:03 +01:00
- name: 'l3d.ch'
- name: 'www.l3d.ch'
- name: 'l3d.me'
- name: 'www.l3d.me'
2021-01-01 04:50:47 +01:00
- name: 'podcast.c3woc.de'
webroot:
user: 'webwaffelpodcast'
2021-01-01 05:07:12 +01:00
- name: 'www.podcast.c3woc.de'
- name: 'podcast.c3woc.org'
- name: 'www.podcast.c3woc.org'
2021-01-01 05:31:58 +01:00
- name: 'podcast.c3woc.eu'
- name: 'www.podcast.c3woc.eu'
2021-01-04 04:21:18 +01:00
- name: 'angel.systems'
2021-01-04 04:34:58 +01:00
- name: 'www.angel.systems'
2021-01-04 04:21:18 +01:00
- name: 'einhornsystem.de'
2021-01-04 04:34:58 +01:00
- name: 'www.einhornsystem.de'
2021-01-04 18:01:23 +01:00
- name: 'backwesen.de'
- name: 'www.backwesen.de'
2023-06-14 02:39:04 +02:00
- name: 'git.l3d.ch'
- name: 'www.git.l3d.ch'
2021-03-15 20:28:21 +01:00
- name: 'files.l3d.ch'
webroot:
user: 'files'
- name: 'www.files.l3d.ch'
2021-07-08 01:57:49 +02:00
- name: 'preview.c3woc.de'
webroot:
user: 'preview'
2021-10-13 00:00:31 +02:00
- name: 'waffelpate.de'
- name: 'www.waffelpate.de'
2021-11-09 14:59:54 +01:00
- name: 'xn--see-br-0xa.se'
2021-11-09 15:21:24 +01:00
webroot:
user: 'see'
2021-11-09 14:59:54 +01:00
- name: 'www.xn--see-br-0xa.se'
2021-11-29 01:40:10 +01:00
- name: 'thelaend.xn--see-br-0xa.se'
- name: 'www.thelaend.xn--see-br-0xa.se'
2023-11-01 17:49:24 +01:00
- name: 'aalen-geekend-23.winkekatze.tv'
webroot:
user: 'winkekatze'
- name: 'www.aalen-geekend-23.winkekatze.tv'
2022-01-09 20:20:42 +01:00
- name: 'winkekatze.tv'
webroot:
user: 'winkekatze'
- name: 'www.winkekatze.tv'
2022-06-22 03:12:55 +02:00
- name: 'klima-streik.de'
webroot:
user: 'klima'
- name: 'www.klima-streik.de'
2023-11-25 02:11:38 +01:00
- name: 'node-exporter.web01.l3d.space'
2023-11-25 02:35:52 +01:00
- name: 'nginx-exporter.web01.l3d.space'
2020-12-24 01:29:10 +01:00
2021-01-02 22:48:07 +01:00
acme_notification_email: "{{ _acme_notification_email }}"
2020-12-31 20:29:38 +01:00
# firewall
2021-01-02 22:48:07 +01:00
fail2ban_destemail: "{{ _fail2ban_destemail }}"
2020-12-31 20:29:38 +01:00
firewall_allowed_tcp_ports:
- "22"
- "80"
- "443"
2021-01-04 18:01:23 +01:00
# gitea settings
2023-06-14 02:39:04 +02:00
gitea_app_name: 'git.l3d.ch'
gitea_http_domain: 'git.l3d.ch'
gitea_root_url: 'https://git.l3d.ch'
2021-01-04 21:52:10 +01:00
gitea_protocol: 'http'
2021-01-04 18:01:23 +01:00
gitea_shell: '/bin/bash'
gitea_lfs_server_enabled: true
2021-01-04 21:52:10 +01:00
gitea_lfs_content_path: "{{ gitea_home }}/data/lfs"
2021-01-04 18:01:23 +01:00
gitea_repository_root: "{{ gitea_home }}/repos"
2021-01-28 19:09:43 +01:00
gitea_ssh_domain: "{{ gitea_http_domain }}"
2021-01-04 18:01:23 +01:00
gitea_start_ssh: "{{ _gitea_start_ssh }}"
2021-01-28 19:09:43 +01:00
gitea_ssh_port: 22
2021-01-29 00:26:12 +01:00
gitea_require_signin: false
2021-03-22 03:27:46 +01:00
gitea_password_check_pwn: true
2023-05-10 00:23:35 +02:00
gitea_actions_enabled: true
2023-08-30 01:21:52 +02:00
gitea_actions_default_actions_url: 'self'
2021-01-04 18:01:23 +01:00
# gitea db
2021-01-04 21:52:10 +01:00
gitea_db_type: mysql
2021-01-04 18:01:23 +01:00
gitea_db_host: "{{ _gitea_db_host }}"
gitea_db_name: "{{ _gitea_db_name }}"
gitea_db_user: "{{ _gitea_db_user }}"
gitea_db_password: "{{ _gitea_db_password }}"
gitea_db_ssl: "{{ _gitea_db_ssl }}"
gitea_db_path: false
2021-02-10 23:26:58 +01:00
# gitea mail
gitea_mailer_enabled: true
2023-01-29 21:10:39 +01:00
gitea_mailer_protocol: 'smtps'
2023-01-26 02:45:29 +01:00
gitea_mailer_smtp_addr: 'mail01.l3d.space'
2023-01-29 21:10:39 +01:00
gitea_mailer_smtp_port: '465'
2023-06-14 02:39:04 +02:00
gitea_mailer_user: 'git@l3d.ch'
2021-02-10 23:26:58 +01:00
gitea_mailer_password: "{{ _gitea_mail_password }}"
2023-06-14 02:39:04 +02:00
gitea_mailer_from: 'git@l3d.ch'
gitea_subject_prefix: 'git'
2023-01-26 02:45:29 +01:00
gitea_mailer_host: 'mail01.l3d.space:465'
# federation
gitea_federation_enabled: true
gitea_federation_share_user_stats: true
2021-02-10 23:26:58 +01:00
2021-01-04 18:01:23 +01:00
# gitea other
gitea_fail2ban_enabled: true
gitea_metrics_enabled: true
gitea_metrics_token: "{{ _gitea_metrics_token }}"
gitea_repo_indexer_enabled: true
2021-01-17 15:54:09 +01:00
gitea_enable_notify_mail: true
2023-01-26 02:45:29 +01:00
gitea_other_show_footer_version: false
gitea_other_show_footer_template_load_time: false
2021-06-03 18:39:42 +02:00
gitea_customize_logo: true
2021-06-04 00:50:37 +02:00
gitea_customize_footer: true
2023-01-29 21:10:39 +01:00
gitea_enable_cors: true
2023-02-01 01:16:59 +01:00
gitea_default_repo_units: 'repo.code,repo.releases,repo.pulls'
gitea_disabled_repo_units: 'repo.wiki,repo.ext_wiki,repo.projects'
gitea_enable_push_create_user: true
2023-05-12 21:07:18 +02:00
gitea_repository_upload_max_size: 30
gitea_attachment_types: '*/*'
gitea_attachment_max_size: 35
2021-01-04 18:01:23 +01:00
# gitea secrets
gitea_disable_git_hooks: "{{ _gitea_disable_git_hooks }}"
gitea_disable_registration: "{{ _gitea_disable_registration }}"
gitea_show_registration_button: "{{ _gitea_show_registration_button }}"
2023-11-25 02:11:38 +01:00
# l3d.nginx_exporter
nginx_exporter_listen_address: '127.0.0.1:9113'
2023-11-25 04:32:26 +01:00
nginx_exporter_scrape_uri: 'https://node-exporter.web01.l3d.space/nginx_status'