|
|
|
- name: Configure hatoria.banananet.work
|
|
|
|
hosts: hatoria.banananet.work
|
|
|
|
vars:
|
|
|
|
bnet_cloud_domain: "cloud.banananet.work"
|
|
|
|
bnet_cloud_username: "{{ bnet_cloud_domain | domain_to_username }}"
|
|
|
|
roles:
|
|
|
|
- role: nginx/default_server # Would not be configurable otherwise
|
|
|
|
# Git Server
|
|
|
|
- role: server/gitea
|
|
|
|
tags:
|
|
|
|
- git.banananet.work
|
|
|
|
domain: git.banananet.work
|
|
|
|
gitea_system_user: git
|
|
|
|
database_user: gitea
|
|
|
|
- role: server/drone.io/server
|
|
|
|
domain: ci.git.banananet.work
|
|
|
|
bind_port: 12824
|
|
|
|
gitea_server_url: https://git.banananet.work
|
|
|
|
gitea_client_id: "{{ drone_ci_gitea_main_oauth2_client_id }}"
|
|
|
|
gitea_client_secret: "{{ drone_ci_gitea_main_oauth2_client_secret }}"
|
|
|
|
- role: server/drone.io/runner
|
|
|
|
drone_server_host: ci.git.banananet.work
|
|
|
|
# Banananet.work
|
|
|
|
- role: server/static
|
|
|
|
tags:
|
|
|
|
- banananet.work
|
|
|
|
domain: banananet.work
|
|
|
|
repo: git@git.banananet.work:banananetwork/main-static.git
|
|
|
|
- role: nginx/forward
|
|
|
|
tags:
|
|
|
|
- banananet.work
|
|
|
|
domain: www.banananet.work
|
|
|
|
dest: banananet.work
|
|
|
|
# SpotMe Server
|
|
|
|
- role: server/spotme
|
|
|
|
tags:
|
|
|
|
- spotme.banananet.work
|
|
|
|
domain: spotme.banananet.work
|
|
|
|
bind_port: 12820
|
|
|
|
# Firefox Sync Server
|
|
|
|
- role: server/firefox-sync
|
|
|
|
tags:
|
|
|
|
- firefox.banananet.work
|
|
|
|
domain: firefox.banananet.work
|
|
|
|
# RSS Server
|
|
|
|
# TODO Manual initialization of database required
|
|
|
|
- role: server/tt-rss
|
|
|
|
tags:
|
|
|
|
- rss.banananet.work
|
|
|
|
domain: rss.banananet.work
|
|
|
|
# Linx Server
|
|
|
|
- role: server/linx
|
|
|
|
tags:
|
|
|
|
- drop.banananet.work
|
|
|
|
domain: drop.banananet.work
|
|
|
|
bind_port: 12840
|
|
|
|
use_hdd_directory: yes
|
|
|
|
site_name: "BananaNetwork Drop Server"
|
|
|
|
# # Admin Panel
|
|
|
|
# - role: server/php
|
|
|
|
# domain: nvak.banananet.work
|
|
|
|
# repo: PHPMYADMIN # TODO
|
|
|
|
# BananaNetwork Keys
|
|
|
|
# - role: server/node
|
|
|
|
# domain: keys.banananet.work
|
|
|
|
# repo: https://git.banananet.work/banananetwork/keys.git
|
|
|
|
# bind_port: 12822
|
|
|
|
# system_user: keys-banananet-work
|
|
|
|
# Nextcloud Server
|
|
|
|
- role: server/nextcloud
|
|
|
|
tags:
|
|
|
|
- cloud.banananet.work
|
|
|
|
domain: "{{ bnet_cloud_domain }}"
|
|
|
|
system_user: "{{ bnet_cloud_username }}"
|
|
|
|
nextcloud_admin_user: "{{ global_username }}"
|
|
|
|
enabled_apps_list:
|
|
|
|
- accessibility
|
|
|
|
- activity
|
|
|
|
- admin_audit
|
|
|
|
- apporder
|
|
|
|
- bruteforcesettings
|
|
|
|
- calendar
|
|
|
|
- checksum
|
|
|
|
- cloud_federation_api
|
|
|
|
- comments
|
|
|
|
- contacts
|
|
|
|
- contactsinteraction
|
|
|
|
- cospend
|
|
|
|
- dav
|
|
|
|
- deck
|
|
|
|
- external
|
|
|
|
- federatedfilesharing
|
|
|
|
- federation
|
|
|
|
- files
|
|
|
|
- files_automatedtagging
|
|
|
|
- files_external
|
|
|
|
- files_markdown
|
|
|
|
- files_pdfviewer
|
|
|
|
- files_rightclick
|
|
|
|
- files_sharing
|
|
|
|
- files_trashbin
|
|
|
|
- files_versions
|
|
|
|
- files_videoplayer
|
|
|
|
- firstrunwizard
|
|
|
|
- logreader
|
|
|
|
- lookup_server_connector
|
|
|
|
- mail
|
|
|
|
- metadata
|
|
|
|
- nextcloud_announcements
|
|
|
|
- notes
|
|
|
|
- notifications
|
|
|
|
- oauth2
|
|
|
|
- ocdownloader
|
|
|
|
- password_policy
|
|
|
|
- phonetrack
|
|
|
|
- photos
|
|
|
|
- polls
|
|
|
|
- privacy
|
|
|
|
- provisioning_api
|
|
|
|
- quota_warning
|
|
|
|
- ransomware_protection
|
|
|
|
- serverinfo
|
|
|
|
- settings
|
|
|
|
- sharebymail
|
|
|
|
- sociallogin
|
|
|
|
- socialsharing_email
|
|
|
|
- support
|
|
|
|
- suspicious_login
|
|
|
|
- systemtags
|
|
|
|
- tasks
|
|
|
|
- text
|
|
|
|
- theming
|
|
|
|
- twofactor_admin
|
|
|
|
- twofactor_backupcodes
|
|
|
|
- twofactor_gateway
|
|
|
|
- twofactor_nextcloud_notification
|
|
|
|
- twofactor_totp
|
|
|
|
- twofactor_u2f
|
|
|
|
- updatenotification
|
|
|
|
- viewer
|
|
|
|
- workflowengine
|
|
|
|
disabled_apps_list:
|
|
|
|
- encryption
|
|
|
|
- files_readmemd
|
|
|
|
- recommendations
|
|
|
|
- spreed
|
|
|
|
- survey_client
|
|
|
|
- user_ldap
|
|
|
|
# Forum der Schande
|
|
|
|
- role: server/php
|
|
|
|
tags:
|
|
|
|
- forumderschan.de
|
|
|
|
domain: forumderschan.de
|
|
|
|
repo: git@git.banananet.work:strichliste/strichliste-php.git
|
|
|
|
root: html
|
|
|
|
installation_includes:
|
|
|
|
- includes
|
|
|
|
- role: nginx/forward
|
|
|
|
tags:
|
|
|
|
- forumderschan.de
|
|
|
|
domain: www.forumderschan.de
|
|
|
|
dest: forumderschan.de
|
|
|
|
# Monitors
|
|
|
|
- role: misc/tg_monitor_cmd
|
|
|
|
tags: tg-monitor-cmd
|
|
|
|
monitor_name: forumderschan.de-NS
|
|
|
|
description: "NS entries of forumderschan.de"
|
|
|
|
command_str: >-
|
|
|
|
/usr/bin/dig
|
|
|
|
@a.nic.de.
|
|
|
|
forumderschan.de. NS
|
|
|
|
| grep --only-matching --perl-regexp '(?<=\s)(\S+\.)+(?=$)'
|
|
|
|
| sort
|
|
|
|
use_shell: yes
|
|
|
|
# WG Nextcloud
|
|
|
|
- role: server/nextcloud
|
|
|
|
tags:
|
|
|
|
- wg.banananet.work
|
|
|
|
domain: wg.banananet.work
|
|
|
|
nextcloud_admin_user: felix
|
|
|
|
enabled_apps_list:
|
|
|
|
- accessibility
|
|
|
|
- activity
|
|
|
|
- apporder
|
|
|
|
- bruteforcesettings
|
|
|
|
- calendar
|
|
|
|
- checksum
|
|
|
|
- cloud_federation_api
|
|
|
|
- comments
|
|
|
|
- contacts
|
|
|
|
- cookbook
|
|
|
|
- cospend
|
|
|
|
- dav
|
|
|
|
- deck
|
|
|
|
- encryption
|
|
|
|
- external
|
|
|
|
- federatedfilesharing
|
|
|
|
- federation
|
|
|
|
- files
|
|
|
|
- files_automatedtagging
|
|
|
|
- files_external
|
|
|
|
- files_pdfviewer
|
|
|
|
- files_rightclick
|
|
|
|
- files_sharing
|
|
|
|
- files_trashbin
|
|
|
|
- files_versions
|
|
|
|
- files_videoplayer
|
|
|
|
- firstrunwizard
|
|
|
|
- logreader
|
|
|
|
- lookup_server_connector
|
|
|
|
- metadata
|
|
|
|
- nextcloud_announcements
|
|
|
|
- notes
|
|
|
|
- notifications
|
|
|
|
- oauth2
|
|
|
|
- ocdownloader
|
|
|
|
- password_policy
|
|
|
|
- photos
|
|
|
|
- polls
|
|
|
|
- privacy
|
|
|
|
- provisioning_api
|
|
|
|
- quota_warning
|
|
|
|
- ransomware_protection
|
|
|
|
- serverinfo
|
|
|
|
- settings
|
|
|
|
- sharebymail
|
|
|
|
- side_menu
|
|
|
|
- sociallogin
|
|
|
|
- socialsharing_email
|
|
|
|
- support
|
|
|
|
- suspicious_login
|
|
|
|
- systemtags
|
|
|
|
- tasks
|
|
|
|
- text
|
|
|
|
- theming
|
|
|
|
- twofactor_admin
|
|
|
|
- twofactor_backupcodes
|
|
|
|
- twofactor_gateway
|
|
|
|
- twofactor_nextcloud_notification
|
|
|
|
- twofactor_totp
|
|
|
|
- twofactor_u2f
|
|
|
|
- updatenotification
|
|
|
|
- viewer
|
|
|
|
- workflowengine
|
|
|
|
disabled_apps_list:
|
|
|
|
- admin_audit
|
|
|
|
- recommendations
|
|
|
|
- spreed
|
|
|
|
- survey_client
|
|
|
|
- user_ldap
|
|
|
|
# WG Minecraft
|
|
|
|
- role: server/minecraft
|
|
|
|
tags:
|
|
|
|
- mc.wg.banananet.work
|
|
|
|
domain: mc.wg.banananet.work
|
|
|
|
minecraft_version: "1.16.4"
|
|
|
|
minecraft_ram: "16G"
|
|
|
|
minecraft_port: 25566
|
|
|
|
config:
|
|
|
|
difficulty: normal
|
|
|
|
motd: ChaosCraft
|
|
|
|
view-distance: 16
|
|
|
|
# # Stadtpiraten
|
|
|
|
# - role: server/typo3
|
|
|
|
# domain: piraten.dev.banananet.work
|
|
|
|
# - role: server/php
|
|
|
|
# domain: forum.piraten.dev.banananet.work
|
|
|
|
# repo: PHPBB # TODO
|
|
|
|
# version: master
|
|
|
|
# # Stadtpiraten (prod)
|
|
|
|
# - role: nginx/forward
|
|
|
|
# domain: www.stadtpiraten-karlsruhe.de
|
|
|
|
# dest: stadtpiraten-karlsruhe.de
|
|
|
|
# SMD/SFC HST 2020
|
|
|
|
- role: nginx/forward
|
|
|
|
tags:
|
|
|
|
- proj-hst
|
|
|
|
- hst21.banananet.work
|
|
|
|
domain: hst20.banananet.work
|
|
|
|
dest: hst21.banananet.work
|
|
|
|
- role: server/nextcloud
|
|
|
|
tags:
|
|
|
|
- proj-hst
|
|
|
|
- hst21.banananet.work
|
|
|
|
domain: hst21.banananet.work
|
|
|
|
system_user: nc-hst21
|
|
|
|
nextcloud_admin_user: felix
|
|
|
|
enabled_apps_list:
|
|
|
|
- accessibility
|
|
|
|
- activity
|
|
|
|
- apporder
|
|
|
|
- bruteforcesettings
|
|
|
|
- calendar
|
|
|
|
- checksum
|
|
|
|
- cloud_federation_api
|
|
|
|
- comments
|
|
|
|
- contacts
|
|
|
|
- contactsinteraction
|
|
|
|
- cospend
|
|
|
|
- dav
|
|
|
|
- deck
|
|
|
|
- encryption
|
|
|
|
- external
|
|
|
|
- federatedfilesharing
|
|
|
|
- federation
|
|
|
|
- files
|
|
|
|
- files_automatedtagging
|
|
|
|
- files_linkeditor
|
|
|
|
- files_mindmap
|
|
|
|
- files_pdfviewer
|
|
|
|
- files_rightclick
|
|
|
|
- files_sharing
|
|
|
|
- files_trashbin
|
|
|
|
- files_versions
|
|
|
|
- files_videoplayer
|
|
|
|
- firstrunwizard
|
|
|
|
- forms
|
|
|
|
- logreader
|
|
|
|
- lookup_server_connector
|
|
|
|
- mail
|
|
|
|
- maps
|
|
|
|
- metadata
|
|
|
|
- nextcloud_announcements
|
|
|
|
- notes
|
|
|
|
- notifications
|
|
|
|
- oauth2
|
|
|
|
- password_policy
|
|
|
|
- photos
|
|
|
|
- polls
|
|
|
|
- privacy
|
|
|
|
- provisioning_api
|
|
|
|
- quota_warning
|
|
|
|
- ransomware_protection
|
|
|
|
- serverinfo
|
|
|
|
- settings
|
|
|
|
- sharebymail
|
|
|
|
- socialsharing_email
|
|
|
|
- spreed
|
|
|
|
- support
|
|
|
|
- suspicious_login
|
|
|
|
- systemtags
|
|
|
|
- tasks
|
|
|
|
- text
|
|
|
|
- theming
|
|
|
|
- twofactor_admin
|
|
|
|
- twofactor_backupcodes
|
|
|
|
- twofactor_gateway
|
|
|
|
- twofactor_totp
|
|
|
|
- twofactor_u2f
|
|
|
|
- updatenotification
|
|
|
|
- viewer
|
|
|
|
- whiteboard
|
|
|
|
- workflowengine
|
|
|
|
disabled_apps_list:
|
|
|
|
- admin_audit
|
|
|
|
- dashboard
|
|
|
|
- files_external
|
|
|
|
- recommendations
|
|
|
|
- sociallogin
|
|
|
|
- survey_client
|
|
|
|
- user_ldap
|
|
|
|
- user_status
|
|
|
|
- weather_status
|
|
|
|
tasks:
|
|
|
|
- name: Configure custom archive Nextcloud directory on hdd for personal usages
|
|
|
|
tags:
|
|
|
|
- cloud.banananet.work
|
|
|
|
- custom_archive_directory
|
|
|
|
vars:
|
|
|
|
archive_directory: "{{ global_hdd_directory }}/{{ bnet_cloud_domain }}~personal-archive"
|
|
|
|
block:
|
|
|
|
- name: Create archive directory
|
|
|
|
file:
|
|
|
|
state: directory
|
|
|
|
path: "{{ archive_directory }}"
|
|
|
|
owner: "{{ bnet_cloud_username }}"
|
|
|
|
group: "{{ bnet_cloud_username }}"
|
|
|
|
mode: "u=rwx,g=rx,o="
|
|
|
|
register: archive_directory_task
|
|
|
|
- name: Show message to user about path on changes
|
|
|
|
debug:
|
|
|
|
msg: >-
|
|
|
|
Changed custom archive directory: Please ensure you (re-)configure this directory properly on your Nextcloud instance: {{ archive_directory | quote }}
|
|
|
|
when: archive_directory_task.changed
|