Merge remote-tracking branch 'refs/remotes/origin/main'
This commit is contained in:
commit
bad78681c6
@ -0,0 +1,4 @@
|
||||
ansible_connection: local
|
||||
ansible_user: ladmin
|
||||
ansible_become_user: root
|
||||
ansible_become_method: sudo
|
11
ansible/inventory/host_vars/nuc.balsillie.house/certbot.yaml
Normal file
11
ansible/inventory/host_vars/nuc.balsillie.house/certbot.yaml
Normal file
@ -0,0 +1,11 @@
|
||||
certbot_rfc2136_server: '10.208.240.1'
|
||||
certbot_rfc2136_key_name: 'rndc-house'
|
||||
certbot_rfc2136_key_algorithm: 'hmac-sha256'
|
||||
|
||||
certbot_webserver_type: 'nginx' # 'nginx' or 'apache'
|
||||
certbot_dns_plugin: 'rfc2136'
|
||||
certbot_email: "certbot.kodi00@balsillie.email"
|
||||
certbot_acme_server: "acme-v02.api.letsencrypt.org"
|
||||
|
||||
certbot_domains:
|
||||
- xmr.balsillie.house
|
@ -23,6 +23,7 @@ all:
|
||||
kube00.balsillie.house:
|
||||
lat5420.balsillie.house:
|
||||
lat7490.balsillie.house:
|
||||
nuc.balsillie.house:
|
||||
servers:
|
||||
children:
|
||||
hypervisors:
|
||||
@ -53,6 +54,7 @@ all:
|
||||
lat5420.balsillie.house:
|
||||
sff.balsillie.house:
|
||||
kodi00.balsillie.house:
|
||||
nuc.balsillie.house:
|
||||
windows:
|
||||
hosts:
|
||||
lat7490.balsillie.house:
|
||||
@ -66,6 +68,7 @@ all:
|
||||
sff.balsillie.house:
|
||||
mp00.balsillie.house:
|
||||
kodi00.balsillie.house:
|
||||
nuc.balsillie.house:
|
||||
kodi:
|
||||
hosts:
|
||||
kodi00.balsillie.house:
|
||||
|
@ -6,5 +6,5 @@
|
||||
gather_facts: true
|
||||
become: true
|
||||
roles:
|
||||
- role: aur_repo_host
|
||||
# - role: aur_repo_host
|
||||
- role: nginx
|
||||
|
9
ansible/playbooks/infra/nuc.yaml
Normal file
9
ansible/playbooks/infra/nuc.yaml
Normal file
@ -0,0 +1,9 @@
|
||||
---
|
||||
|
||||
- name: Setup NUC
|
||||
hosts:
|
||||
- nuc.balsillie.house
|
||||
gather_facts: true
|
||||
become: true
|
||||
roles:
|
||||
- role: certbot
|
@ -49,7 +49,7 @@
|
||||
- "{{ item }}"
|
||||
creates: /etc/letsencrypt/live/{{ item }}/fullchain.pem
|
||||
loop: "{{ certbot_domains }}"
|
||||
notify: "{{ certbot_notify }}"
|
||||
notify: "{{ certbot_notify | default(omit) }}"
|
||||
|
||||
- name: Enable certbot renewal
|
||||
ansible.builtin.service:
|
||||
|
Loading…
Reference in New Issue
Block a user