65 lines
1.3 KiB
YAML
65 lines
1.3 KiB
YAML
---
|
|
- hosts: all
|
|
|
|
tasks:
|
|
|
|
- name: 'Install additional packages.'
|
|
apt:
|
|
name: '{{ packages }}'
|
|
update_cache: yes
|
|
vars:
|
|
packages:
|
|
- python3-pip
|
|
|
|
- import_role:
|
|
name: yatesr.timezone
|
|
vars:
|
|
timezone: UTC
|
|
|
|
- import_role:
|
|
name: geerlingguy.security
|
|
vars:
|
|
security_ssh_permit_root_login: "yes"
|
|
security_autoupdate_enabled: false
|
|
security_fail2ban_enabled: false
|
|
|
|
- name: 'Install python docker lib.'
|
|
pip:
|
|
name: docker
|
|
|
|
- import_role:
|
|
name: geerlingguy.docker
|
|
vars:
|
|
docker_users:
|
|
- homepage
|
|
|
|
- import_role:
|
|
name: antoiner77.caddy
|
|
vars:
|
|
caddy_config: '{{ lookup("template", "templates/Caddyfile.j2") }}'
|
|
caddy_setcap: True
|
|
caddy_systemd_capabilities_enabled: True
|
|
caddy_systemd_capabilities: "CAP_NET_BIND_SERVICE"
|
|
tags:
|
|
- webserver
|
|
|
|
- import_role:
|
|
name: netdata
|
|
tags:
|
|
- monitoring
|
|
|
|
# Applications
|
|
|
|
- import_role:
|
|
name: docker-app
|
|
vars:
|
|
username: homepage
|
|
extra_groups:
|
|
- www-data
|
|
ssh_keys:
|
|
- '{{ lookup("file", "files/av_id_rsa.pub") }}'
|
|
env:
|
|
DOCKER_PREFIX: homepage
|
|
tags:
|
|
- apps
|