chore(app): archive removed stacks from app
archived stacks: - actual-budget - ezbookkeeping - opencloud - trilium - vikunja - wikijs
This commit is contained in:
@@ -109,13 +109,6 @@ services:
|
||||
immich-ml:
|
||||
ports:
|
||||
http: "3003"
|
||||
actualbudget:
|
||||
domain:
|
||||
public: "actualbudget"
|
||||
internal: "actualbudget.app"
|
||||
ports:
|
||||
http: "5006"
|
||||
subuid: "101000"
|
||||
paperless:
|
||||
domain:
|
||||
public: "paperless"
|
||||
@@ -124,20 +117,6 @@ services:
|
||||
http: "8001"
|
||||
redis: "6380"
|
||||
subuid: "100999"
|
||||
vikunja:
|
||||
domain:
|
||||
public: "vikunja"
|
||||
internal: "vikunja.app"
|
||||
ports:
|
||||
http: "3456"
|
||||
subuid: "100999"
|
||||
opencloud:
|
||||
domain:
|
||||
public: "opencloud"
|
||||
internal: "opencloud.app"
|
||||
ports:
|
||||
http: "9200"
|
||||
subuid: "100999"
|
||||
manticore:
|
||||
subuid: "100998"
|
||||
affine:
|
||||
@@ -163,13 +142,6 @@ services:
|
||||
ports:
|
||||
http: "9980"
|
||||
subuid: "101000"
|
||||
ezbookkeeping:
|
||||
domain:
|
||||
public: "budget"
|
||||
internal: "budget.app"
|
||||
ports:
|
||||
http: "8003"
|
||||
subuid: "100999"
|
||||
sure:
|
||||
domain:
|
||||
public: "sure"
|
||||
@@ -178,20 +150,6 @@ services:
|
||||
http: "3001"
|
||||
redis: "6383"
|
||||
subuid: "100999"
|
||||
wikijs:
|
||||
domain:
|
||||
public: "wiki"
|
||||
internal: "wiki.app"
|
||||
ports:
|
||||
http: "3002"
|
||||
subuid: "100999"
|
||||
trilium:
|
||||
domain:
|
||||
public: "notes"
|
||||
internal: "notes.app"
|
||||
ports:
|
||||
http: "8004"
|
||||
subuid: "100999"
|
||||
|
||||
version:
|
||||
packages:
|
||||
@@ -222,15 +180,9 @@ version:
|
||||
gitea: "1.26.1"
|
||||
redis: "8.6.3"
|
||||
immich: "v2.7.5"
|
||||
actualbudget: "26.3.0"
|
||||
paperless: "2.20.15"
|
||||
vikunja: "2.2.2"
|
||||
opencloud: "4.0.6"
|
||||
manticore: "25.0.0"
|
||||
affine: "0.26.3"
|
||||
nextcloud: "33.0.3"
|
||||
collabora: "25.04.9.4.1"
|
||||
ezbookkeeping: "1.4.0"
|
||||
sure: "0.7.0-hotfix.2"
|
||||
wikijs: "2.5.314"
|
||||
trilium: "v0.102.2"
|
||||
|
||||
@@ -185,14 +185,6 @@
|
||||
tags: ["site", "immich"]
|
||||
tags: ["site", "immich"]
|
||||
|
||||
- name: Set actual budget
|
||||
ansible.builtin.include_role:
|
||||
name: "app"
|
||||
tasks_from: "services/set_actual-budget"
|
||||
apply:
|
||||
tags: ["site", "actual-budget"]
|
||||
tags: ["site", "actual-budget"]
|
||||
|
||||
- name: Set paperless
|
||||
ansible.builtin.include_role:
|
||||
name: "app"
|
||||
@@ -201,22 +193,6 @@
|
||||
tags: ["site", "paperless"]
|
||||
tags: ["site", "paperless"]
|
||||
|
||||
- name: Set vikunja
|
||||
ansible.builtin.include_role:
|
||||
name: "app"
|
||||
tasks_from: "services/set_vikunja"
|
||||
apply:
|
||||
tags: ["site", "vikunja"]
|
||||
tags: ["site", "vikunja"]
|
||||
|
||||
- name: Set opencloud
|
||||
ansible.builtin.include_role:
|
||||
name: "app"
|
||||
tasks_from: "services/set_opencloud"
|
||||
apply:
|
||||
tags: ["site", "opencloud"]
|
||||
tags: ["site", "opencloud"]
|
||||
|
||||
- name: Set affine
|
||||
ansible.builtin.include_role:
|
||||
name: "app"
|
||||
@@ -241,14 +217,6 @@
|
||||
tags: ["site", "collabora"]
|
||||
tags: ["site", "collabora"]
|
||||
|
||||
- name: Set ezbookkeeping
|
||||
ansible.builtin.include_role:
|
||||
name: "app"
|
||||
tasks_from: "services/set_ezbookkeeping"
|
||||
apply:
|
||||
tags: ["site", "ezbookkeeping"]
|
||||
tags: ["site", "ezbookkeeping"]
|
||||
|
||||
- name: Set sure
|
||||
ansible.builtin.include_role:
|
||||
name: "app"
|
||||
@@ -257,22 +225,6 @@
|
||||
tags: ["site", "sure"]
|
||||
tags: ["site", "sure"]
|
||||
|
||||
- name: Set wiki.js
|
||||
ansible.builtin.include_role:
|
||||
name: "app"
|
||||
tasks_from: "services/set_wikijs"
|
||||
apply:
|
||||
tags: ["site", "wikijs"]
|
||||
tags: ["site", "wikijs"]
|
||||
|
||||
- name: Set trilium
|
||||
ansible.builtin.include_role:
|
||||
name: "app"
|
||||
tasks_from: "services/set_trilium"
|
||||
apply:
|
||||
tags: ["site", "trilium"]
|
||||
tags: ["site", "trilium"]
|
||||
|
||||
- name: Flush handlers right now
|
||||
ansible.builtin.meta: "flush_handlers"
|
||||
|
||||
|
||||
@@ -43,17 +43,6 @@
|
||||
listen: "notification_restart_immich-ml"
|
||||
ignore_errors: true # noqa: ignore-errors
|
||||
|
||||
- name: Restart actual-budget
|
||||
ansible.builtin.systemd:
|
||||
name: "actual-budget.service"
|
||||
state: "restarted"
|
||||
enabled: true
|
||||
scope: "user"
|
||||
daemon_reload: true
|
||||
changed_when: false
|
||||
listen: "notification_restart_actual-budget"
|
||||
ignore_errors: true # noqa: ignore-errors
|
||||
|
||||
- name: Restart paperless
|
||||
ansible.builtin.systemd:
|
||||
name: "paperless.service"
|
||||
@@ -65,29 +54,6 @@
|
||||
listen: "notification_restart_paperless"
|
||||
ignore_errors: true # noqa: ignore-errors
|
||||
|
||||
- name: Restart vikunja
|
||||
ansible.builtin.systemd:
|
||||
name: "vikunja.service"
|
||||
state: "restarted"
|
||||
enabled: true
|
||||
scope: "user"
|
||||
daemon_reload: true
|
||||
changed_when: false
|
||||
listen: "notification_restart_vikunja"
|
||||
ignore_errors: true # noqa: ignore-errors
|
||||
|
||||
- name: Restart opencloud
|
||||
ansible.builtin.systemd:
|
||||
name: "opencloud.service"
|
||||
state: "restarted"
|
||||
enabled: true
|
||||
daemon_reload: true
|
||||
scope: "user"
|
||||
when: is_opencloud_init.stat.exists
|
||||
changed_when: false
|
||||
listen: "notification_restart_opencloud"
|
||||
ignore_errors: true # noqa: ignore-errors
|
||||
|
||||
- name: Restart affine
|
||||
ansible.builtin.systemd:
|
||||
name: "affine.service"
|
||||
@@ -123,17 +89,6 @@
|
||||
listen: "notification_restart_collabora"
|
||||
ignore_errors: true # noqa: ignore-errors
|
||||
|
||||
- name: Restart ezbookkeeping
|
||||
ansible.builtin.systemd:
|
||||
name: "ezbookkeeping.service"
|
||||
state: "restarted"
|
||||
enabled: true
|
||||
scope: "user"
|
||||
daemon_reload: true
|
||||
changed_when: false
|
||||
listen: "notification_restart_ezbookkeeping"
|
||||
ignore_errors: true # noqa: ignore-errors
|
||||
|
||||
- name: Restart sure
|
||||
ansible.builtin.systemd:
|
||||
name: "{{ item }}"
|
||||
@@ -147,25 +102,3 @@
|
||||
changed_when: false
|
||||
listen: "notification_restart_sure"
|
||||
ignore_errors: true # noqa: ignore-errors
|
||||
|
||||
- name: Restart wikijs
|
||||
ansible.builtin.systemd:
|
||||
name: "wikijs.service"
|
||||
state: "restarted"
|
||||
enabled: true
|
||||
scope: "user"
|
||||
daemon_reload: true
|
||||
changed_when: false
|
||||
listen: "notification_restart_wikijs"
|
||||
ignore_errors: true # noqa: ignore-errors
|
||||
|
||||
- name: Restart trilium
|
||||
ansible.builtin.systemd:
|
||||
name: "trilium.service"
|
||||
state: "restarted"
|
||||
enabled: true
|
||||
scope: "user"
|
||||
daemon_reload: true
|
||||
changed_when: false
|
||||
listen: "notification_restart_trilium"
|
||||
ignore_errors: true # noqa: ignore-errors
|
||||
|
||||
@@ -1,35 +0,0 @@
|
||||
---
|
||||
- name: Create actual budget directory
|
||||
ansible.builtin.file:
|
||||
path: "{{ node['home_path'] }}/data/containers/actual-budget"
|
||||
state: "directory"
|
||||
owner: "{{ services['actualbudget']['subuid'] }}"
|
||||
group: "svadmins"
|
||||
mode: "0770"
|
||||
become: true
|
||||
|
||||
- name: Register secret value to podman secret
|
||||
containers.podman.podman_secret:
|
||||
name: "ACTUAL_OPENID_CLIENT_SECRET"
|
||||
data: "{{ hostvars['console']['actualbudget']['oidc']['secret'] }}"
|
||||
state: "present"
|
||||
force: true
|
||||
notify: "notification_restart_actual-budget"
|
||||
no_log: true
|
||||
|
||||
- name: Deploy container file
|
||||
ansible.builtin.template:
|
||||
src: "{{ hostvars['console']['node']['config_path'] }}/services/containers/app/actual-budget/actual-budget.container.j2"
|
||||
dest: "{{ node['home_path'] }}/.config/containers/systemd/actual-budget.container"
|
||||
owner: "{{ ansible_user }}"
|
||||
group: "svadmins"
|
||||
mode: "0644"
|
||||
notify: "notification_restart_actual-budget"
|
||||
|
||||
- name: Enable actual-budget.service
|
||||
ansible.builtin.systemd:
|
||||
name: "actual-budget.service"
|
||||
state: "started"
|
||||
enabled: true
|
||||
daemon_reload: true
|
||||
scope: "user"
|
||||
@@ -1,58 +0,0 @@
|
||||
---
|
||||
- name: Create ezbookkeeping directory
|
||||
ansible.builtin.file:
|
||||
path: "{{ node['home_path'] }}/{{ item }}"
|
||||
state: "directory"
|
||||
owner: "{{ services['ezbookkeeping']['subuid'] }}"
|
||||
group: "svadmins"
|
||||
mode: "0770"
|
||||
loop:
|
||||
- "data/containers/ezbookkeeping"
|
||||
- "data/containers/ezbookkeeping/data"
|
||||
- "containers/ezbookkeeping"
|
||||
- "containers/ezbookkeeping/ssl"
|
||||
become: true
|
||||
|
||||
|
||||
- name: Deploy root certificate
|
||||
ansible.builtin.copy:
|
||||
content: |
|
||||
{{ hostvars['console']['ca']['root']['crt'] }}
|
||||
dest: "{{ node['home_path'] }}/containers/ezbookkeeping/ssl/{{ root_cert_filename }}"
|
||||
owner: "{{ services['ezbookkeeping']['subuid'] }}"
|
||||
group: "svadmins"
|
||||
mode: "0440"
|
||||
become: true
|
||||
notify: "notification_restart_ezbookkeeping"
|
||||
no_log: true
|
||||
|
||||
- name: Register secret value to podman secret
|
||||
containers.podman.podman_secret:
|
||||
name: "{{ item.name }}"
|
||||
data: "{{ item.value }}"
|
||||
state: "present"
|
||||
force: true
|
||||
loop:
|
||||
- name: "EBK_AUTH_OAUTH2_CLIENT_SECRET"
|
||||
value: "{{ hostvars['console']['ezbookkeeping']['oidc']['secret'] }}"
|
||||
- name: "EBK_DATABASE_PASSWD"
|
||||
value: "{{ hostvars['console']['postgresql']['password']['ezbookkeeping'] }}"
|
||||
notify: "notification_restart_ezbookkeeping"
|
||||
no_log: true
|
||||
|
||||
- name: Deploy ezbookkeeping.container file
|
||||
ansible.builtin.template:
|
||||
src: "{{ hostvars['console']['node']['config_path'] }}/services/containers/app/ezbookkeeping/ezbookkeeping.container.j2"
|
||||
dest: "{{ node['home_path'] }}/.config/containers/systemd/ezbookkeeping.container"
|
||||
owner: "{{ ansible_user }}"
|
||||
group: "svadmins"
|
||||
mode: "0644"
|
||||
notify: "notification_restart_ezbookkeeping"
|
||||
|
||||
- name: Enable ezbookkeeping.service
|
||||
ansible.builtin.systemd:
|
||||
name: "ezbookkeeping.service"
|
||||
state: "started"
|
||||
enabled: true
|
||||
daemon_reload: true
|
||||
scope: "user"
|
||||
@@ -1,76 +0,0 @@
|
||||
---
|
||||
- name: Create opencloud directory
|
||||
ansible.builtin.file:
|
||||
path: "{{ node['home_path'] }}/{{ item }}"
|
||||
state: "directory"
|
||||
owner: "{{ services['opencloud']['subuid'] }}"
|
||||
group: "svadmins"
|
||||
mode: "0770"
|
||||
loop:
|
||||
- "data/containers/opencloud"
|
||||
- "containers/opencloud"
|
||||
become: true
|
||||
|
||||
- name: Check data directory empty
|
||||
ansible.builtin.stat:
|
||||
path: "{{ node['home_path'] }}/data/containers/opencloud/.init"
|
||||
become: true
|
||||
register: "is_opencloud_init"
|
||||
|
||||
- name: Initialize opencloud
|
||||
when: not is_opencloud_init.stat.exists
|
||||
block:
|
||||
- name: Execute init command (Including pulling image)
|
||||
containers.podman.podman_container:
|
||||
name: "opencloud_init"
|
||||
image: "docker.io/opencloudeu/opencloud:{{ version['containers']['opencloud'] }}"
|
||||
command: "init"
|
||||
state: "started"
|
||||
rm: true
|
||||
detach: false
|
||||
env:
|
||||
IDM_ADMIN_PASSWORD: "{{ hostvars['console']['opencloud']['admin']['password'] }}"
|
||||
# Verify the certificate (Opencloud to Authelia, authelia uses let's encrypt.)
|
||||
OC_INSECURE: "true"
|
||||
volume:
|
||||
- "{{ node['home_path'] }}/containers/opencloud:/etc/opencloud:rw"
|
||||
- "{{ node['home_path'] }}/data/containers/opencloud:/var/lib/opencloud:rw"
|
||||
no_log: true
|
||||
|
||||
- name: Create .init file
|
||||
ansible.builtin.file:
|
||||
path: "{{ node['home_path'] }}/data/containers/opencloud/.init"
|
||||
state: "touch"
|
||||
mode: "0644"
|
||||
owner: "{{ ansible_user }}"
|
||||
group: "svadmins"
|
||||
|
||||
- name: Deploy configuration files
|
||||
ansible.builtin.template:
|
||||
src: "{{ hostvars['console']['node']['config_path'] }}/services/containers/app/opencloud/etc/{{ item }}.j2"
|
||||
dest: "{{ node['home_path'] }}/containers/opencloud/{{ item }}"
|
||||
owner: "{{ services['opencloud']['subuid'] }}"
|
||||
group: "svadmins"
|
||||
mode: "0640"
|
||||
loop:
|
||||
- "csp.yaml"
|
||||
- "proxy.yaml"
|
||||
become: true
|
||||
notify: "notification_restart_opencloud"
|
||||
|
||||
- name: Deploy container file
|
||||
ansible.builtin.template:
|
||||
src: "{{ hostvars['console']['node']['config_path'] }}/services/containers/app/opencloud/opencloud.container.j2"
|
||||
dest: "{{ node['home_path'] }}/.config/containers/systemd/opencloud.container"
|
||||
owner: "{{ ansible_user }}"
|
||||
group: "svadmins"
|
||||
mode: "0644"
|
||||
notify: "notification_restart_opencloud"
|
||||
|
||||
- name: Enable opencloud.service
|
||||
ansible.builtin.systemd:
|
||||
name: "opencloud.service"
|
||||
state: "started"
|
||||
enabled: true
|
||||
daemon_reload: true
|
||||
scope: "user"
|
||||
@@ -1,38 +0,0 @@
|
||||
---
|
||||
- name: Create trilium directory
|
||||
ansible.builtin.file:
|
||||
path: "{{ node['home_path'] }}/{{ item }}"
|
||||
state: "directory"
|
||||
owner: "{{ services['trilium']['subuid'] }}"
|
||||
group: "svadmins"
|
||||
mode: "0770"
|
||||
loop:
|
||||
- "data/containers/trilium"
|
||||
- "data/containers/trilium/data"
|
||||
become: true
|
||||
|
||||
- name: Register secret value to podman secret
|
||||
containers.podman.podman_secret:
|
||||
name: "TRILIUM_OAUTH_CLIENT_SECRET"
|
||||
data: "{{ hostvars['console']['trilium']['oidc']['secret'] }}"
|
||||
state: "present"
|
||||
force: true
|
||||
notify: "notification_restart_trilium"
|
||||
no_log: true
|
||||
|
||||
- name: Deploy trilium.container file
|
||||
ansible.builtin.template:
|
||||
src: "{{ hostvars['console']['node']['config_path'] }}/services/containers/app/trilium/trilium.container.j2"
|
||||
dest: "{{ node['home_path'] }}/.config/containers/systemd/trilium.container"
|
||||
owner: "{{ ansible_user }}"
|
||||
group: "svadmins"
|
||||
mode: "0644"
|
||||
notify: "notification_restart_trilium"
|
||||
|
||||
- name: Enable trilium.service
|
||||
ansible.builtin.systemd:
|
||||
name: "trilium.service"
|
||||
state: "started"
|
||||
enabled: true
|
||||
daemon_reload: true
|
||||
scope: "user"
|
||||
@@ -1,58 +0,0 @@
|
||||
---
|
||||
- name: Create vikunja directory
|
||||
ansible.builtin.file:
|
||||
path: "{{ node['home_path'] }}/{{ item }}"
|
||||
state: "directory"
|
||||
owner: "{{ services['vikunja']['subuid'] }}"
|
||||
group: "svadmins"
|
||||
mode: "0770"
|
||||
loop:
|
||||
- "data/containers/vikunja"
|
||||
- "containers/vikunja"
|
||||
- "containers/vikunja/ssl"
|
||||
become: true
|
||||
|
||||
- name: Deploy root certificate
|
||||
ansible.builtin.copy:
|
||||
content: |
|
||||
{{ hostvars['console']['ca']['root']['crt'] }}
|
||||
dest: "{{ node['home_path'] }}/containers/vikunja/ssl/{{ root_cert_filename }}"
|
||||
owner: "{{ services['vikunja']['subuid'] }}"
|
||||
group: "svadmins"
|
||||
mode: "0440"
|
||||
become: true
|
||||
notify: "notification_restart_vikunja"
|
||||
no_log: true
|
||||
|
||||
- name: Register secret value to podman secret
|
||||
containers.podman.podman_secret:
|
||||
name: "{{ item.name }}"
|
||||
data: "{{ item.value }}"
|
||||
state: "present"
|
||||
force: true
|
||||
loop:
|
||||
- name: "VIKUNJA_SERVICE_JWTSECRET"
|
||||
value: "{{ hostvars['console']['vikunja']['session_secret'] }}"
|
||||
- name: "VIKUNJA_DATABASE_PASSWORD"
|
||||
value: "{{ hostvars['console']['postgresql']['password']['vikunja'] }}"
|
||||
- name: "VIKUNJA_AUTH_OPENID_PROVIDERS_authelia_CLIENTSECRET"
|
||||
value: "{{ hostvars['console']['vikunja']['oidc']['secret'] }}"
|
||||
notify: "notification_restart_vikunja"
|
||||
no_log: true
|
||||
|
||||
- name: Deploy vikunja.container file
|
||||
ansible.builtin.template:
|
||||
src: "{{ hostvars['console']['node']['config_path'] }}/services/containers/app/vikunja/vikunja.container.j2"
|
||||
dest: "{{ node['home_path'] }}/.config/containers/systemd/vikunja.container"
|
||||
owner: "{{ ansible_user }}"
|
||||
group: "svadmins"
|
||||
mode: "0644"
|
||||
notify: "notification_restart_vikunja"
|
||||
|
||||
- name: Enable vikunja.service
|
||||
ansible.builtin.systemd:
|
||||
name: "vikunja.service"
|
||||
state: "started"
|
||||
enabled: true
|
||||
daemon_reload: true
|
||||
scope: "user"
|
||||
@@ -1,53 +0,0 @@
|
||||
---
|
||||
- name: Create wiki.js directory
|
||||
ansible.builtin.file:
|
||||
path: "{{ node['home_path'] }}/{{ item }}"
|
||||
state: "directory"
|
||||
owner: "{{ services['wikijs']['subuid'] }}"
|
||||
group: "svadmins"
|
||||
mode: "0770"
|
||||
loop:
|
||||
- "data/containers/wikijs"
|
||||
- "data/containers/wikijs/data"
|
||||
- "data/containers/wikijs/export"
|
||||
- "containers/wikijs"
|
||||
- "containers/wikijs/ssl"
|
||||
become: true
|
||||
|
||||
- name: Deploy root certificate
|
||||
ansible.builtin.copy:
|
||||
content: |
|
||||
{{ hostvars['console']['ca']['root']['crt'] }}
|
||||
dest: "{{ node['home_path'] }}/containers/wikijs/ssl/{{ root_cert_filename }}"
|
||||
owner: "{{ services['wikijs']['subuid'] }}"
|
||||
group: "svadmins"
|
||||
mode: "0440"
|
||||
become: true
|
||||
notify: "notification_restart_wikijs"
|
||||
no_log: true
|
||||
|
||||
- name: Register secret value to podman secret
|
||||
containers.podman.podman_secret:
|
||||
name: "WIKIJS_DB_PASS"
|
||||
data: "{{ hostvars['console']['postgresql']['password']['wikijs'] }}"
|
||||
state: "present"
|
||||
force: true
|
||||
notify: "notification_restart_wikijs"
|
||||
no_log: true
|
||||
|
||||
- name: Deploy wikijs.container file
|
||||
ansible.builtin.template:
|
||||
src: "{{ hostvars['console']['node']['config_path'] }}/services/containers/app/wikijs/wikijs.container.j2"
|
||||
dest: "{{ node['home_path'] }}/.config/containers/systemd/wikijs.container"
|
||||
owner: "{{ ansible_user }}"
|
||||
group: "svadmins"
|
||||
mode: "0644"
|
||||
notify: "notification_restart_wikijs"
|
||||
|
||||
- name: Enable wikijs.service
|
||||
ansible.builtin.systemd:
|
||||
name: "wikijs.service"
|
||||
state: "started"
|
||||
enabled: true
|
||||
daemon_reload: true
|
||||
scope: "user"
|
||||
@@ -9,12 +9,9 @@
|
||||
- "gitea"
|
||||
- "immich"
|
||||
- "paperless"
|
||||
- "vikunja"
|
||||
- "affine"
|
||||
- "nextcloud"
|
||||
- "ezbookkeeping"
|
||||
- "sure"
|
||||
- "wikijs"
|
||||
|
||||
- name: Create postgresql directory
|
||||
ansible.builtin.file:
|
||||
|
||||
Reference in New Issue
Block a user