-
Notifications
You must be signed in to change notification settings - Fork 3
/
playbook.yml
124 lines (117 loc) · 5.06 KB
/
playbook.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
---
- name: Prepare local
hosts: localhost
roles:
- role: ansible-modules-bitwarden
- role: setup-cloudflared-credentials
tags:
- config
- name: Set up homelab
hosts: homelab
vars_files:
- config.yml
roles:
- role: ansible-modules-bitwarden
- role: launch-orchestrators
tags:
- config
- orchestration
- role: launch-nomad-jobs
tags:
- config
- service
- role: caddy_ansible.caddy_ansible
caddy_config: "{{ lookup('template', 'templates/Caddyfile.j2') }}"
vars:
HostIp: "{{ HOST_EXTERNAL_IPV4 }}"
tags:
- service
- gateway
- role: setup-binaries
tags:
- config
- role: papanito.cloudflared
caddy_config: "{{ lookup('template', 'templates/Caddyfile.j2') }}"
vars:
cf_systemd_user: root
cf_systemd_group: root
cf_cert_location: ~/.secrets/cert.pem
cf_tunnels:
dietpigw:
tunnel_id: "{{ lookup('bitwarden', 'homelab/secrets/cloudflare/tunnels/1/tunnel_id') }}"
credentials-file: /etc/cloudflared/{{ lookup('bitwarden', 'homelab/secrets/cloudflare/tunnels/1/tunnel_id') }}.json
account_tag: "{{ lookup('bitwarden', 'homelab/secrets/cloudflare/tunnels/1/account_tag') }}"
tunnel_secret: "{{ lookup('bitwarden', 'homelab/secrets/cloudflare/tunnels/1/tunnel_secret') }}"
loglevel: debug
routes:
dns:
- "firefly"
- "bookstack"
- "vikunja"
- "nextcloud"
- "webtrees"
- "audiobookshelf"
- "duplicati"
- "ntfy"
- "cronicle"
- "miniflux"
- "souptik"
- "monica"
- "jellyfin"
- "immich"
- "snibox"
- "ys-api"
- "yspotify"
- "memoet"
- "smepl"
- "chatgpt"
- "xcuzme"
- "linkding"
ingress:
- hostname: "firefly.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8081
- hostname: "bookstack.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8082
- hostname: "vikunja.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8083
- hostname: "nextcloud.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8084
- hostname: "webtrees.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8085
- hostname: "audiobookshelf.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8079
- hostname: "duplicati.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8091
- hostname: "ntfy.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8092
- hostname: "cronicle.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8093
- hostname: "miniflux.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8098
- hostname: "souptik.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8099
- hostname: "monica.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8100
- hostname: "jellyfin.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8101
- hostname: "immich.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8103
- hostname: "snibox.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8104
- hostname: "ys-api.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8105
- hostname: "yspotify.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8106
- hostname: "memoet.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8107
- hostname: "smepl.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8108
- hostname: "chatgpt.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8110
- hostname: "xcuzme.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8111
- hostname: "linkding.{{ lookup('bitwarden', 'homelab/secrets/domain/public/base') }}"
service: http://localhost:8112
- service: http_status:404
tags:
- networking