mirror of
https://github.com/kevinveenbirkenbach/computer-playbook.git
synced 2024-11-26 06:31:04 +01:00
Renamed server roles
This commit is contained in:
parent
683221dbd1
commit
43d24e9b2f
40
README.md
40
README.md
@ -13,30 +13,30 @@ With this tool you can setup all of the following application on bare metal serv
|
|||||||
|
|
||||||
This software allows to setup the docker following applications:
|
This software allows to setup the docker following applications:
|
||||||
|
|
||||||
- [Nextcloud](./roles/docker-nextcloud/README.md) - Cloud Software
|
- [Nextcloud](./roles/server_docker-nextcloud/README.md) - Cloud Software
|
||||||
- [Akaunting](./roles/docker-akaunting/README.md) - Business Controlling Software
|
- [Akaunting](./roles/server_docker-akaunting/README.md) - Business Controlling Software
|
||||||
- [Big Blue Button](./roles/docker-bigbluebutton/README.md) - Video Conference Software
|
- [Big Blue Button](./roles/server_docker-bigbluebutton/README.md) - Video Conference Software
|
||||||
- [Gitea](./roles/docker-gitea/README.md) - Version Controll Software
|
- [Gitea](./roles/server_docker-gitea/README.md) - Version Controll Software
|
||||||
- [Joomla](./roles/docker-joomla/) - CMS Software
|
- [Joomla](./roles/server_docker-joomla/) - CMS Software
|
||||||
- [Mailu](./roles/docker-mailu/README.md) - Mailsoftware
|
- [Mailu](./roles/server_docker-mailu/README.md) - Mailsoftware
|
||||||
- [Peertube](./roles/docker-peertube/README.md) - Video Platform Software
|
- [Peertube](./roles/server_docker-peertube/README.md) - Video Platform Software
|
||||||
- [pixelfed](./roles/docker-pixelfed/README.md) - Photo Platform Software
|
- [pixelfed](./roles/server_docker-pixelfed/README.md) - Photo Platform Software
|
||||||
- [Wordpress](./roles/docker-wordpress/README.md) - Blog Software
|
- [Wordpress](./roles/server_docker-wordpress/README.md) - Blog Software
|
||||||
- [YOURLS](./roles/docker-yourls/README.md) - URL Shortening Software
|
- [YOURLS](./roles/server_docker-yourls/README.md) - URL Shortening Software
|
||||||
- [Mastodon](./roles/docker-mastodon/README.md) - Micro Blog Software
|
- [Mastodon](./roles/server_docker-mastodon/README.md) - Micro Blog Software
|
||||||
- [Media Wiki](./roles/docker-mediawiki/README.md) - Wiki Software
|
- [Media Wiki](./roles/server_docker-mediawiki/README.md) - Wiki Software
|
||||||
- [MyBB](./roles/docker-mybb/README.md) - Forum Software
|
- [MyBB](./roles/server_docker-mybb/README.md) - Forum Software
|
||||||
|
|
||||||
#### Native Applications
|
#### Native Applications
|
||||||
|
|
||||||
This software shipts the following tools which are natively setup on the server:
|
This software shipts the following tools which are natively setup on the server:
|
||||||
- [Backups Cleanup](./roles/native-backups-cleanup/README.md) - Cleans up old backups
|
- [Backups Cleanup](./roles/server_native-backups-cleanup/README.md) - Cleans up old backups
|
||||||
- [Btrfs Health Check](./roles/native-btrfs-health-check/README.md) - Checks the health of Btrfs file systems
|
- [Btrfs Health Check](./roles/server_native-btrfs-health-check/README.md) - Checks the health of Btrfs file systems
|
||||||
- [Docker Health Check](./roles/native-docker-health-check/) - Checks the health of docker containers
|
- [Docker Health Check](./roles/server_native-docker-health-check/) - Checks the health of docker containers
|
||||||
- [Docker Reverse Proxy](./roles/native-docker-reverse-proxy/README.md) - Docker Reverse Proxy Solution
|
- [Docker Reverse Proxy](./roles/server_native-docker-reverse-proxy/README.md) - Docker Reverse Proxy Solution
|
||||||
- [Docker Volume Backup](./roles/native-docker-volume-backup/) - Backup Solution for Docker Volumes
|
- [Docker Volume Backup](./roles/server_native-docker-volume-backup/) - Backup Solution for Docker Volumes
|
||||||
- [Pull Primary Backups](./roles/native-pull-primary-backups/README.md) - Pulls the backups from another server and stores them
|
- [Pull Primary Backups](./roles/server_native-pull-primary-backups/README.md) - Pulls the backups from another server and stores them
|
||||||
- [Wireguard](./roles/native-wireguard/README.md) - Integrates the server in an wireguard vpn
|
- [Wireguard](./roles/server_native-wireguard/README.md) - Integrates the server in an wireguard vpn
|
||||||
|
|
||||||
### Server Administration
|
### Server Administration
|
||||||
|
|
||||||
|
52
playbook.yml
52
playbook.yml
@ -9,35 +9,35 @@
|
|||||||
hosts: servers
|
hosts: servers
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- system-security
|
- server_system-security
|
||||||
- native-journalctl
|
- server_native-journalctl
|
||||||
- native-disc-space-check
|
- server_native-disc-space-check
|
||||||
- native-free-disc-space
|
- server_native-free-disc-space
|
||||||
- native-btrfs-health-check
|
- server_native-btrfs-health-check
|
||||||
- name: setup standard wireguard hosts
|
- name: setup standard wireguard hosts
|
||||||
hosts: wireguard_hosts
|
hosts: wireguard_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- native-wireguard
|
- server_native-wireguard
|
||||||
- name: setup wireguard hosts behind firewall\nat
|
- name: setup wireguard hosts behind firewall\nat
|
||||||
hosts: wireguard_behind_firewall_hosts
|
hosts: wireguard_behind_firewall_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- native-wireguard-behind-firewall
|
- server_native-wireguard-behind-firewall
|
||||||
|
|
||||||
# Native Webserver Roles
|
# Native Webserver Roles
|
||||||
- name: setup homepages
|
- name: setup homepages
|
||||||
hosts: homepage_hosts
|
hosts: homepage_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: native-homepage
|
- role: server_native-homepage
|
||||||
vars:
|
vars:
|
||||||
domain: "{{top_domain}}"
|
domain: "{{top_domain}}"
|
||||||
- name: setup redirect hosts
|
- name: setup redirect hosts
|
||||||
hosts: redirect_hosts
|
hosts: redirect_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: native-https-redirect
|
- role: server_native-https-redirect
|
||||||
vars:
|
vars:
|
||||||
domain_mappings: "{{redirect_domain_mappings}}"
|
domain_mappings: "{{redirect_domain_mappings}}"
|
||||||
|
|
||||||
@ -46,7 +46,7 @@
|
|||||||
hosts: nextcloud_hosts
|
hosts: nextcloud_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-nextcloud
|
- role: server_docker-nextcloud
|
||||||
vars:
|
vars:
|
||||||
domain: cloud.{{top_domain}}
|
domain: cloud.{{top_domain}}
|
||||||
http_port: 8001
|
http_port: 8001
|
||||||
@ -54,7 +54,7 @@
|
|||||||
hosts: gitea_hosts
|
hosts: gitea_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-gitea
|
- role: server_docker-gitea
|
||||||
vars:
|
vars:
|
||||||
domain: git.{{top_domain}}
|
domain: git.{{top_domain}}
|
||||||
http_port: 8002
|
http_port: 8002
|
||||||
@ -64,7 +64,7 @@
|
|||||||
hosts: wordpress_hosts
|
hosts: wordpress_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-wordpress
|
- role: server_docker-wordpress
|
||||||
vars:
|
vars:
|
||||||
domains: "{{wordpress_domains}}"
|
domains: "{{wordpress_domains}}"
|
||||||
http_port: 8003
|
http_port: 8003
|
||||||
@ -72,7 +72,7 @@
|
|||||||
hosts: mediawiki_hosts
|
hosts: mediawiki_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-mediawiki
|
- role: server_docker-mediawiki
|
||||||
vars:
|
vars:
|
||||||
domain: wiki.{{top_domain}}
|
domain: wiki.{{top_domain}}
|
||||||
http_port: 8004
|
http_port: 8004
|
||||||
@ -80,7 +80,7 @@
|
|||||||
hosts: mybb_hosts
|
hosts: mybb_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-mybb
|
- role: server_docker-mybb
|
||||||
vars:
|
vars:
|
||||||
domain: forum.{{top_domain}}
|
domain: forum.{{top_domain}}
|
||||||
http_port: 8005
|
http_port: 8005
|
||||||
@ -88,12 +88,12 @@
|
|||||||
hosts: turn_server_hosts
|
hosts: turn_server_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-turn-server
|
- role: server_docker-turn-server
|
||||||
- name: setup yourls hosts
|
- name: setup yourls hosts
|
||||||
hosts: yourls_hosts
|
hosts: yourls_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-yourls
|
- role: server_docker-yourls
|
||||||
vars:
|
vars:
|
||||||
domain: s.{{top_domain}}
|
domain: s.{{top_domain}}
|
||||||
http_port: 8006
|
http_port: 8006
|
||||||
@ -101,7 +101,7 @@
|
|||||||
hosts: mailu_hosts
|
hosts: mailu_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-mailu
|
- role: server_docker-mailu
|
||||||
vars:
|
vars:
|
||||||
domain: "mail.{{top_domain}}"
|
domain: "mail.{{top_domain}}"
|
||||||
http_port: 8007
|
http_port: 8007
|
||||||
@ -109,7 +109,7 @@
|
|||||||
hosts: elk_hosts
|
hosts: elk_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-elk
|
- role: server_docker-elk
|
||||||
vars:
|
vars:
|
||||||
domain: "elk.{{top_domain}}"
|
domain: "elk.{{top_domain}}"
|
||||||
http_port: 8008
|
http_port: 8008
|
||||||
@ -117,7 +117,7 @@
|
|||||||
hosts: mastodon_hosts
|
hosts: mastodon_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-mastodon
|
- role: server_docker-mastodon
|
||||||
vars:
|
vars:
|
||||||
domain: "mastodon.{{top_domain}}"
|
domain: "mastodon.{{top_domain}}"
|
||||||
http_port: 8009
|
http_port: 8009
|
||||||
@ -126,7 +126,7 @@
|
|||||||
hosts: pixelfed_hosts
|
hosts: pixelfed_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-pixelfed
|
- role: server_docker-pixelfed
|
||||||
vars:
|
vars:
|
||||||
domain: pixelfed.{{top_domain}}
|
domain: pixelfed.{{top_domain}}
|
||||||
http_port: 8010
|
http_port: 8010
|
||||||
@ -134,7 +134,7 @@
|
|||||||
hosts: peertube_hosts
|
hosts: peertube_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-peertube
|
- role: server_docker-peertube
|
||||||
vars:
|
vars:
|
||||||
domain: peertube.{{top_domain}}
|
domain: peertube.{{top_domain}}
|
||||||
http_port: 8011
|
http_port: 8011
|
||||||
@ -142,14 +142,14 @@
|
|||||||
hosts: bigbluebutton_hosts
|
hosts: bigbluebutton_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-bigbluebutton
|
- role: server_docker-bigbluebutton
|
||||||
vars:
|
vars:
|
||||||
domain: bbb.{{top_domain}}
|
domain: bbb.{{top_domain}}
|
||||||
- name: setup funkwhale hosts
|
- name: setup funkwhale hosts
|
||||||
hosts: funkwhale_hosts
|
hosts: funkwhale_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-funkwhale
|
- role: server_docker-funkwhale
|
||||||
vars:
|
vars:
|
||||||
domain: funkwhale.{{top_domain}}
|
domain: funkwhale.{{top_domain}}
|
||||||
http_port: 8012
|
http_port: 8012
|
||||||
@ -157,7 +157,7 @@
|
|||||||
hosts: roulette_wheel_hosts
|
hosts: roulette_wheel_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-roulette-wheel
|
- role: server_docker-roulette-wheel
|
||||||
vars:
|
vars:
|
||||||
domain: roulette.{{top_domain}}
|
domain: roulette.{{top_domain}}
|
||||||
http_port: 8013
|
http_port: 8013
|
||||||
@ -165,7 +165,7 @@
|
|||||||
hosts: akaunting_hosts
|
hosts: akaunting_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: docker-akaunting
|
- role: server_docker-akaunting
|
||||||
vars:
|
vars:
|
||||||
domain: akaunting.{{top_domain}}
|
domain: akaunting.{{top_domain}}
|
||||||
http_port: 8080
|
http_port: 8080
|
||||||
@ -175,7 +175,7 @@
|
|||||||
hosts: replica_backup_hosts
|
hosts: replica_backup_hosts
|
||||||
become: true
|
become: true
|
||||||
roles:
|
roles:
|
||||||
- role: native-pull-primary-backups
|
- role: server_native-pull-primary-backups
|
||||||
|
|
||||||
## PC services
|
## PC services
|
||||||
- name: general host setup
|
- name: general host setup
|
||||||
|
@ -2,7 +2,7 @@
|
|||||||
community.general.pacman:
|
community.general.pacman:
|
||||||
name:
|
name:
|
||||||
- docker
|
- docker
|
||||||
- docker-compose
|
- server_docker-compose
|
||||||
state: present
|
state: present
|
||||||
|
|
||||||
- name: Adding user {{client_username}} to relevant arduino usergroups
|
- name: Adding user {{client_username}} to relevant arduino usergroups
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role native-epson-multiprinter
|
# role pc_driver-epson-multiprinter
|
||||||
## further information
|
## further information
|
||||||
- https://bernhardsteindl.at/epson-ecotank-et-3600-unter-arch-linux-einrichten/
|
- https://bernhardsteindl.at/epson-ecotank-et-3600-unter-arch-linux-einrichten/
|
||||||
- http://download.ebz.epson.net/dsc/search/01/search/searchModule
|
- http://download.ebz.epson.net/dsc/search/01/search/searchModule
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# native-msi-gs66
|
# pc_driver-msi-perkeyrgb
|
||||||
# further information
|
# further information
|
||||||
- https://github.com/Askannz/msi-perkeyrgb
|
- https://github.com/Askannz/msi-perkeyrgb
|
||||||
- https://wiki.archlinux.org/title/MSI_GS66_11UX
|
- https://wiki.archlinux.org/title/MSI_GS66_11UX
|
@ -2,17 +2,17 @@
|
|||||||
|
|
||||||
## new setup
|
## new setup
|
||||||
```bash
|
```bash
|
||||||
cd /home/administrator/docker-compose/akaunting/
|
cd /home/administrator/server_docker-compose/akaunting/
|
||||||
export COMPOSE_HTTP_TIMEOUT=600
|
export COMPOSE_HTTP_TIMEOUT=600
|
||||||
export DOCKER_CLIENT_TIMEOUT=600
|
export DOCKER_CLIENT_TIMEOUT=600
|
||||||
AKAUNTING_SETUP=true docker-compose -p akaunting up -d
|
AKAUNTING_SETUP=true server_docker-compose -p akaunting up -d
|
||||||
```
|
```
|
||||||
|
|
||||||
Check Webinterface and then execute:
|
Check Webinterface and then execute:
|
||||||
|
|
||||||
```bash
|
```bash
|
||||||
docker-compose down
|
server_docker-compose down
|
||||||
docker-compose -p akaunting up -d
|
server_docker-compose -p akaunting up -d
|
||||||
```
|
```
|
||||||
|
|
||||||
## administration
|
## administration
|
||||||
@ -68,23 +68,23 @@ export COMPOSE_HTTP_TIMEOUT=600
|
|||||||
export DOCKER_CLIENT_TIMEOUT=600
|
export DOCKER_CLIENT_TIMEOUT=600
|
||||||
|
|
||||||
# destroy all containers
|
# destroy all containers
|
||||||
cd /home/administrator/docker-compose/akaunting/ &&
|
cd /home/administrator/server_docker-compose/akaunting/ &&
|
||||||
docker-compose down &&
|
server_docker-compose down &&
|
||||||
docker network prune -f
|
docker network prune -f
|
||||||
|
|
||||||
# delete all volumes
|
# delete all volumes
|
||||||
docker volume rm akaunting_akaunting-data akaunting_akaunting-db akaunting_akaunting-modules
|
docker volume rm akaunting_akaunting-data akaunting_akaunting-db akaunting_akaunting-modules
|
||||||
|
|
||||||
# rebuild containers
|
# rebuild containers
|
||||||
docker-compose pull &&
|
server_docker-compose pull &&
|
||||||
docker-compose build &&
|
server_docker-compose build &&
|
||||||
docker-compose -p akaunting up -d --force-recreate
|
server_docker-compose -p akaunting up -d --force-recreate
|
||||||
|
|
||||||
# recover all volumes
|
# recover all volumes
|
||||||
cd /home/administrator/scripts/docker-volume-backup &&
|
cd /home/administrator/scripts/server_docker-volume-backup &&
|
||||||
bash docker-volume-recover.sh akaunting_akaunting-modules ${machine_id:0:64} "$backup_version" &&
|
bash server_docker-volume-recover.sh akaunting_akaunting-modules ${machine_id:0:64} "$backup_version" &&
|
||||||
bash docker-volume-recover.sh akaunting_akaunting-data ${machine_id:0:64} "$backup_version" &&
|
bash server_docker-volume-recover.sh akaunting_akaunting-data ${machine_id:0:64} "$backup_version" &&
|
||||||
bash docker-volume-recover.sh akaunting_akaunting-db ${machine_id:0:64} "$backup_version" akaunting-db "$akaunting_db_password" akaunting
|
bash server_docker-volume-recover.sh akaunting_akaunting-db ${machine_id:0:64} "$backup_version" akaunting-db "$akaunting_db_password" akaunting
|
||||||
|
|
||||||
```
|
```
|
||||||
|
|
||||||
|
@ -1,7 +1,7 @@
|
|||||||
---
|
---
|
||||||
- name: setup akaunting
|
- name: setup akaunting
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose -p akaunting up -d --force-recreate
|
cmd: server_docker-compose -p akaunting up -d --force-recreate
|
||||||
chdir: "{{docker_compose_akaunting_path}}"
|
chdir: "{{docker_compose_akaunting_path}}"
|
||||||
environment:
|
environment:
|
||||||
#AKAUNTING_SETUP: true
|
#AKAUNTING_SETUP: true
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: register directory
|
- name: register directory
|
||||||
|
@ -1 +1 @@
|
|||||||
docker_compose_akaunting_path: "/home/administrator/docker-compose/akaunting/"
|
docker_compose_akaunting_path: "/home/administrator/server_docker-compose/akaunting/"
|
||||||
|
@ -5,7 +5,7 @@ Role to deploy [BigBlueButton](https://bigbluebutton.org/).
|
|||||||
|
|
||||||
### cleanup
|
### cleanup
|
||||||
```bash
|
```bash
|
||||||
docker-compose down;
|
server_docker-compose down;
|
||||||
docker volume rm bigbluebutton_bigbluebutton bigbluebutton_html5-static bigbluebutton_vol-freeswitch bigbluebutton_vol-kurento bigbluebutton_vol-mediasoup bigbluebutton_database
|
docker volume rm bigbluebutton_bigbluebutton bigbluebutton_html5-static bigbluebutton_vol-freeswitch bigbluebutton_vol-kurento bigbluebutton_vol-mediasoup bigbluebutton_database
|
||||||
```
|
```
|
||||||
|
|
||||||
@ -17,8 +17,8 @@ watch -n 2 "docker ps -a | grep bigbluebutton"
|
|||||||
## further information
|
## further information
|
||||||
- https://github.com/bigbluebutton/docker
|
- https://github.com/bigbluebutton/docker
|
||||||
- https://docs.bigbluebutton.org/greenlight/gl-install.html#setting-bigbluebutton-credentials
|
- https://docs.bigbluebutton.org/greenlight/gl-install.html#setting-bigbluebutton-credentials
|
||||||
- https://goneuland.de/big-blue-button-mit-docker-und-traefik-installieren/
|
- https://goneuland.de/big-blue-button-mit-server_docker-und-traefik-installieren/
|
||||||
- https://github.com/docker/compose/issues/4799
|
- https://github.com/docker/compose/issues/4799
|
||||||
- https://www.cyberciti.biz/faq/linux-command-to-remove-virtual-interfaces-or-network-aliases/
|
- https://www.cyberciti.biz/faq/linux-command-to-remove-virtual-interfaces-or-network-aliases/
|
||||||
- https://www.cyberciti.biz/faq/linux-restart-network-interface/
|
- https://www.cyberciti.biz/faq/linux-restart-network-interface/
|
||||||
- https://stackoverflow.com/questions/53347951/docker-network-not-found
|
- https://stackoverflow.com/questions/53347951/server_docker-network-not-found
|
@ -1,5 +1,5 @@
|
|||||||
---
|
---
|
||||||
- name: create docker-compose.yml for bigbluebutton
|
- name: create server_docker-compose.yml for bigbluebutton
|
||||||
command:
|
command:
|
||||||
cmd: bash ./scripts/generate-compose
|
cmd: bash ./scripts/generate-compose
|
||||||
chdir: "{{docker_compose_bigbluebutton_path}}"
|
chdir: "{{docker_compose_bigbluebutton_path}}"
|
||||||
@ -9,7 +9,7 @@
|
|||||||
listen: setup bigbluebutton
|
listen: setup bigbluebutton
|
||||||
- name: docker compose up bigbluebutton
|
- name: docker compose up bigbluebutton
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose -p bigbluebutton up -d --force-recreate
|
cmd: server_docker-compose -p bigbluebutton up -d --force-recreate
|
||||||
chdir: "{{docker_compose_bigbluebutton_path}}"
|
chdir: "{{docker_compose_bigbluebutton_path}}"
|
||||||
environment:
|
environment:
|
||||||
COMPOSE_HTTP_TIMEOUT: 600
|
COMPOSE_HTTP_TIMEOUT: 600
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -1 +1 @@
|
|||||||
docker_compose_bigbluebutton_path: "/home/administrator/docker-compose/bigbluebutton/"
|
docker_compose_bigbluebutton_path: "/home/administrator/server_docker-compose/bigbluebutton/"
|
@ -1,4 +1,4 @@
|
|||||||
# role docker-elk
|
# role server_docker-elk
|
||||||
|
|
||||||
I decided against using this role for security reasons. I recommend to use another tool if you don't want to pay for keeping your logs save and if you don't want to depend on external servers.
|
I decided against using this role for security reasons. I recommend to use another tool if you don't want to pay for keeping your logs save and if you don't want to depend on external servers.
|
||||||
|
|
||||||
@ -9,5 +9,5 @@ docker restart elk_logstash_1 && docker restart elk_elasticsearch_1 && docker re
|
|||||||
|
|
||||||
## see
|
## see
|
||||||
- https://logz.io/blog/elk-stack-on-docker/
|
- https://logz.io/blog/elk-stack-on-docker/
|
||||||
- https://github.com/kevinveenbirkenbach/docker-elk
|
- https://github.com/kevinveenbirkenbach/server_docker-elk
|
||||||
- https://logz.io/blog/docker-logging/
|
- https://logz.io/blog/server_docker-logging/
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
---
|
---
|
||||||
docker_elk_compose_path: "/srv/github.com/kevinveenbirkenbach/docker-elk/"
|
docker_elk_compose_path: "/srv/github.com/kevinveenbirkenbach/server_docker-elk/"
|
||||||
|
@ -1,7 +1,7 @@
|
|||||||
---
|
---
|
||||||
- name: recreate docker-elk
|
- name: recreate server_docker-elk
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose up -d --force-recreate
|
cmd: server_docker-compose up -d --force-recreate
|
||||||
chdir: "{{docker_elk_compose_path}}"
|
chdir: "{{docker_elk_compose_path}}"
|
||||||
environment:
|
environment:
|
||||||
COMPOSE_HTTP_TIMEOUT: 600
|
COMPOSE_HTTP_TIMEOUT: 600
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -4,7 +4,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: create elasticsearch-sysctl.conf
|
- name: create elasticsearch-sysctl.conf
|
||||||
@ -24,29 +24,29 @@
|
|||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: git pull docker-elk
|
- name: git pull server_docker-elk
|
||||||
git:
|
git:
|
||||||
repo: "https://github.com/kevinveenbirkenbach/docker-elk.git"
|
repo: "https://github.com/kevinveenbirkenbach/server_docker-elk.git"
|
||||||
dest: "{{docker_elk_compose_path}}"
|
dest: "{{docker_elk_compose_path}}"
|
||||||
update: yes
|
update: yes
|
||||||
notify: recreate docker-elk
|
notify: recreate server_docker-elk
|
||||||
|
|
||||||
- name: copy docker-compose.yml
|
- name: copy server_docker-compose.yml
|
||||||
template: src=docker-compose.yml.j2 dest={{docker_elk_compose_path}}docker-compose.yml
|
template: src=server_docker-compose.yml.j2 dest={{docker_elk_compose_path}}server_docker-compose.yml
|
||||||
notify: recreate docker-elk
|
notify: recreate server_docker-elk
|
||||||
|
|
||||||
- name: copy elasticsearch.yml
|
- name: copy elasticsearch.yml
|
||||||
template: src=elasticsearch.yml.j2 dest={{docker_elk_compose_path}}elasticsearch/config/elasticsearch.yml
|
template: src=elasticsearch.yml.j2 dest={{docker_elk_compose_path}}elasticsearch/config/elasticsearch.yml
|
||||||
notify: recreate docker-elk
|
notify: recreate server_docker-elk
|
||||||
|
|
||||||
- name: copy kibana.yml
|
- name: copy kibana.yml
|
||||||
template: src=kibana.yml.j2 dest={{docker_elk_compose_path}}kibana/config/kibana.yml
|
template: src=kibana.yml.j2 dest={{docker_elk_compose_path}}kibana/config/kibana.yml
|
||||||
notify: recreate docker-elk
|
notify: recreate server_docker-elk
|
||||||
|
|
||||||
- name: copy logstash.yml
|
- name: copy logstash.yml
|
||||||
template: src=logstash.yml.j2 dest={{docker_elk_compose_path}}logstash/config/logstash.yml
|
template: src=logstash.yml.j2 dest={{docker_elk_compose_path}}logstash/config/logstash.yml
|
||||||
notify: recreate docker-elk
|
notify: recreate server_docker-elk
|
||||||
|
|
||||||
- name: copy logstash.conf
|
- name: copy logstash.conf
|
||||||
template: src=logstash.conf.j2 dest={{docker_elk_compose_path}}logstash/pipeline/logstash.conf
|
template: src=logstash.conf.j2 dest={{docker_elk_compose_path}}logstash/pipeline/logstash.conf
|
||||||
notify: recreate docker-elk
|
notify: recreate server_docker-elk
|
||||||
|
@ -2,7 +2,7 @@
|
|||||||
## Default Elasticsearch configuration from Elasticsearch base image.
|
## Default Elasticsearch configuration from Elasticsearch base image.
|
||||||
## https://github.com/elastic/elasticsearch/blob/master/distribution/docker/src/docker/config/elasticsearch.yml
|
## https://github.com/elastic/elasticsearch/blob/master/distribution/docker/src/docker/config/elasticsearch.yml
|
||||||
#
|
#
|
||||||
cluster.name: "docker-cluster"
|
cluster.name: "server_docker-cluster"
|
||||||
network.host: 0.0.0.0
|
network.host: 0.0.0.0
|
||||||
|
|
||||||
## X-Pack settings
|
## X-Pack settings
|
||||||
|
@ -5,7 +5,7 @@ This role doesn't work and needs to be implemented
|
|||||||
## cleanup
|
## cleanup
|
||||||
|
|
||||||
```bash
|
```bash
|
||||||
docker-compose down && docker volume rm funkwhale_data
|
server_docker-compose down && docker volume rm funkwhale_data
|
||||||
```
|
```
|
||||||
|
|
||||||
## further information
|
## further information
|
||||||
|
@ -1,8 +1,8 @@
|
|||||||
---
|
---
|
||||||
- name: recreate funkwhale
|
- name: recreate funkwhale
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose -p funkwhale up -d --force-recreate
|
cmd: server_docker-compose -p funkwhale up -d --force-recreate
|
||||||
chdir: /home/administrator/docker-compose/funkwhale/
|
chdir: /home/administrator/server_docker-compose/funkwhale/
|
||||||
environment:
|
environment:
|
||||||
COMPOSE_HTTP_TIMEOUT: 600
|
COMPOSE_HTTP_TIMEOUT: 600
|
||||||
DOCKER_CLIENT_TIMEOUT: 600
|
DOCKER_CLIENT_TIMEOUT: 600
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create {{docker_compose_path}}"
|
- name: "create {{docker_compose_path}}"
|
||||||
@ -12,8 +12,8 @@
|
|||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: add docker-compose.yml
|
- name: add server_docker-compose.yml
|
||||||
template: src=docker-compose.yml.j2 dest={{docker_compose_path}}docker-compose.yml
|
template: src=server_docker-compose.yml.j2 dest={{docker_compose_path}}server_docker-compose.yml
|
||||||
notify: recreate funkwhale
|
notify: recreate funkwhale
|
||||||
|
|
||||||
- name: add .env
|
- name: add .env
|
||||||
|
@ -19,7 +19,7 @@
|
|||||||
|
|
||||||
FUNKWHALE_VERSION={{funkwhale_version}}
|
FUNKWHALE_VERSION={{funkwhale_version}}
|
||||||
|
|
||||||
# End of Docker-only configuration
|
# End of server_docker-only configuration
|
||||||
|
|
||||||
# General configuration
|
# General configuration
|
||||||
# ---------------------
|
# ---------------------
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
docker_compose_path: "/home/administrator/docker-compose/funkwhale/"
|
docker_compose_path: "/home/administrator/server_docker-compose/funkwhale/"
|
||||||
client_max_body_size: "512M"
|
client_max_body_size: "512M"
|
||||||
|
@ -1,11 +1,11 @@
|
|||||||
# role docker-gitea
|
# role server_docker-gitea
|
||||||
|
|
||||||
## update
|
## update
|
||||||
```bash
|
```bash
|
||||||
cd /home/administrator/docker-compose/gitea/
|
cd /home/administrator/server_docker-compose/gitea/
|
||||||
docker-compose down
|
server_docker-compose down
|
||||||
docker-compose pull
|
server_docker-compose pull
|
||||||
docker-compose up -d
|
server_docker-compose up -d
|
||||||
```
|
```
|
||||||
Keep in mind to track and to don't interrupt the update process until the migration is done.
|
Keep in mind to track and to don't interrupt the update process until the migration is done.
|
||||||
|
|
||||||
@ -19,7 +19,7 @@ Keep in mind to track and to don't interrupt the update process until the migrat
|
|||||||
|
|
||||||
## recreate
|
## recreate
|
||||||
```bash
|
```bash
|
||||||
cd /home/administrator/docker-compose/gitea/ && docker-compose -p gitea up -d --force-recreate
|
cd /home/administrator/server_docker-compose/gitea/ && server_docker-compose -p gitea up -d --force-recreate
|
||||||
```
|
```
|
||||||
|
|
||||||
## database access
|
## database access
|
||||||
|
@ -1,8 +1,8 @@
|
|||||||
---
|
---
|
||||||
- name: recreate gitea
|
- name: recreate gitea
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose -p gitea up -d --force-recreate
|
cmd: server_docker-compose -p gitea up -d --force-recreate
|
||||||
chdir: /home/administrator/docker-compose/gitea/
|
chdir: /home/administrator/server_docker-compose/gitea/
|
||||||
environment:
|
environment:
|
||||||
COMPOSE_HTTP_TIMEOUT: 600
|
COMPOSE_HTTP_TIMEOUT: 600
|
||||||
DOCKER_CLIENT_TIMEOUT: 600
|
DOCKER_CLIENT_TIMEOUT: 600
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -3,15 +3,15 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}} https
|
- name: configure {{domain}} https
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create /home/administrator/docker-compose/gitea/"
|
- name: "create /home/administrator/server_docker-compose/gitea/"
|
||||||
file:
|
file:
|
||||||
path: "/home/administrator/docker-compose/gitea/"
|
path: "/home/administrator/server_docker-compose/gitea/"
|
||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: add docker-compose.yml
|
- name: add server_docker-compose.yml
|
||||||
template: src=docker-compose.yml.j2 dest=/home/administrator/docker-compose/gitea/docker-compose.yml
|
template: src=server_docker-compose.yml.j2 dest=/home/administrator/server_docker-compose/gitea/server_docker-compose.yml
|
||||||
notify: recreate gitea
|
notify: recreate gitea
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -2,7 +2,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "docker jenkins"
|
- name: "docker jenkins"
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role docker-joomla
|
# role server_docker-joomla
|
||||||
## delete all data
|
## delete all data
|
||||||
```bash
|
```bash
|
||||||
docker stop joomla_application_1; docker rm -f joomla_application_1; docker volume rm -f joomla-data;
|
docker stop joomla_application_1; docker rm -f joomla_application_1; docker volume rm -f joomla-data;
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "setup joomla"
|
- name: "setup joomla"
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role docker-mailu
|
# role server_docker-mailu
|
||||||
|
|
||||||
## setup
|
## setup
|
||||||
### bugs
|
### bugs
|
||||||
@ -43,7 +43,7 @@ to verify that there aren't port conflicts
|
|||||||
Before you can use Mailu, you must create the primary administrator user account. This should be admin@{{hostname}}. Use the following command, changing PASSWORD to your liking:
|
Before you can use Mailu, you must create the primary administrator user account. This should be admin@{{hostname}}. Use the following command, changing PASSWORD to your liking:
|
||||||
|
|
||||||
```bash
|
```bash
|
||||||
docker-compose -p mailu exec admin flask mailu admin {{admin}} {{hostname}} PASSWORD
|
server_docker-compose -p mailu exec admin flask mailu admin {{admin}} {{hostname}} PASSWORD
|
||||||
```
|
```
|
||||||
|
|
||||||
### cli user management
|
### cli user management
|
||||||
@ -52,7 +52,7 @@ How to manage users is described here: https://mailu.io/master/cli.html
|
|||||||
### Up
|
### Up
|
||||||
|
|
||||||
```bash
|
```bash
|
||||||
docker-compose -p mailu up -d
|
server_docker-compose -p mailu up -d
|
||||||
```
|
```
|
||||||
## debug
|
## debug
|
||||||
|
|
||||||
|
@ -1,8 +1,8 @@
|
|||||||
---
|
---
|
||||||
- name: recreate mailu
|
- name: recreate mailu
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose -p mailu up -d --force-recreate
|
cmd: server_docker-compose -p mailu up -d --force-recreate
|
||||||
chdir: /home/administrator/docker-compose/mailu/
|
chdir: /home/administrator/server_docker-compose/mailu/
|
||||||
environment:
|
environment:
|
||||||
COMPOSE_HTTP_TIMEOUT: 900
|
COMPOSE_HTTP_TIMEOUT: 900
|
||||||
DOCKER_CLIENT_TIMEOUT: 900
|
DOCKER_CLIENT_TIMEOUT: 900
|
||||||
|
@ -1,3 +1,3 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
- native-systemd-email
|
- server_native-systemd-email
|
||||||
|
@ -6,12 +6,12 @@
|
|||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
vars:
|
vars:
|
||||||
client_max_body_size: "31M"
|
client_max_body_size: "31M"
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create /home/administrator/docker-compose/mailu"
|
- name: "create /home/administrator/server_docker-compose/mailu"
|
||||||
file:
|
file:
|
||||||
path: "/home/administrator/docker-compose/mailu"
|
path: "/home/administrator/server_docker-compose/mailu"
|
||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
@ -33,12 +33,12 @@
|
|||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: add docker-compose.yml
|
- name: add server_docker-compose.yml
|
||||||
template: src=docker-compose.yml.j2 dest=/home/administrator/docker-compose/mailu/docker-compose.yml
|
template: src=server_docker-compose.yml.j2 dest=/home/administrator/server_docker-compose/mailu/server_docker-compose.yml
|
||||||
notify: recreate mailu
|
notify: recreate mailu
|
||||||
|
|
||||||
- name: add mailu.env
|
- name: add mailu.env
|
||||||
template: src=mailu.env.j2 dest=/home/administrator/docker-compose/mailu/mailu.env
|
template: src=mailu.env.j2 dest=/home/administrator/server_docker-compose/mailu/mailu.env
|
||||||
notify: recreate mailu
|
notify: recreate mailu
|
||||||
|
|
||||||
- name: add deploy-letsencrypt-mailu.sh
|
- name: add deploy-letsencrypt-mailu.sh
|
||||||
|
@ -114,10 +114,10 @@ WEBSITE=https://{{domain}}
|
|||||||
# Log driver for front service. Possible values:
|
# Log driver for front service. Possible values:
|
||||||
# json-file (default)
|
# json-file (default)
|
||||||
# journald (On systemd platforms, useful for Fail2Ban integration)
|
# journald (On systemd platforms, useful for Fail2Ban integration)
|
||||||
# syslog (Non systemd platforms, Fail2Ban integration. Disables `docker-compose log` for front!)
|
# syslog (Non systemd platforms, Fail2Ban integration. Disables `server_docker-compose log` for front!)
|
||||||
# LOG_DRIVER=json-file
|
# LOG_DRIVER=json-file
|
||||||
|
|
||||||
# Docker-compose project name, this will prepended to containers names.
|
# server_docker-compose project name, this will prepended to containers names.
|
||||||
COMPOSE_PROJECT_NAME=mailu
|
COMPOSE_PROJECT_NAME=mailu
|
||||||
|
|
||||||
# Default password scheme used for newly created accounts and changed passwords
|
# Default password scheme used for newly created accounts and changed passwords
|
||||||
|
@ -1,15 +1,15 @@
|
|||||||
# docker mastodon
|
# docker mastodon
|
||||||
## create configuration
|
## create configuration
|
||||||
```bash
|
```bash
|
||||||
docker-compose run --rm web bundle exec rake mastodon:setup
|
server_docker-compose run --rm web bundle exec rake mastodon:setup
|
||||||
```
|
```
|
||||||
## cleanup
|
## cleanup
|
||||||
```bash
|
```bash
|
||||||
cd /home/administrator/docker-compose/mastodon/
|
cd /home/administrator/server_docker-compose/mastodon/
|
||||||
docker-compose down
|
server_docker-compose down
|
||||||
docker volume rm mastodon_data mastodon_database mastodon_redis
|
docker volume rm mastodon_data mastodon_database mastodon_redis
|
||||||
cd /home/administrator/docker-compose/ &&
|
cd /home/administrator/server_docker-compose/ &&
|
||||||
rm -vR /home/administrator/docker-compose/mastodon
|
rm -vR /home/administrator/server_docker-compose/mastodon
|
||||||
```
|
```
|
||||||
|
|
||||||
## access terminal
|
## access terminal
|
||||||
@ -26,7 +26,7 @@ docker exec -it -u root mastodon-web-1 chown -R 991:991 public
|
|||||||
```
|
```
|
||||||
|
|
||||||
## further information
|
## further information
|
||||||
- https://goneuland.de/mastodon-mit-docker-und-traefik-installieren/
|
- https://goneuland.de/mastodon-mit-server_docker-und-traefik-installieren/
|
||||||
- https://gist.github.com/TrillCyborg/84939cd4013ace9960031b803a0590c4
|
- https://gist.github.com/TrillCyborg/84939cd4013ace9960031b803a0590c4
|
||||||
- https://www.2daygeek.com/linux-command-check-website-is-up-down-alive/
|
- https://www.2daygeek.com/linux-command-check-website-is-up-down-alive/
|
||||||
- https://vitobotta.com/2022/11/07/setting-up-a-personal-mastodon-instance/
|
- https://vitobotta.com/2022/11/07/setting-up-a-personal-mastodon-instance/
|
@ -1,7 +1,7 @@
|
|||||||
---
|
---
|
||||||
- name: recreate mastodon
|
- name: recreate mastodon
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose -p mastodon up -d --force-recreate
|
cmd: server_docker-compose -p mastodon up -d --force-recreate
|
||||||
chdir: "{{docker_compose_mastodon_path}}"
|
chdir: "{{docker_compose_mastodon_path}}"
|
||||||
environment:
|
environment:
|
||||||
COMPOSE_HTTP_TIMEOUT: 600
|
COMPOSE_HTTP_TIMEOUT: 600
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -12,8 +12,8 @@
|
|||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: copy docker-compose.yml
|
- name: copy server_docker-compose.yml
|
||||||
template: src=docker-compose.yml.j2 dest={{docker_compose_mastodon_path}}docker-compose.yml
|
template: src=server_docker-compose.yml.j2 dest={{docker_compose_mastodon_path}}server_docker-compose.yml
|
||||||
notify: recreate mastodon
|
notify: recreate mastodon
|
||||||
|
|
||||||
- name: copy configuration
|
- name: copy configuration
|
||||||
|
@ -6,7 +6,7 @@ map $http_upgrade $connection_upgrade {
|
|||||||
server {
|
server {
|
||||||
server_name {{domain}};
|
server_name {{domain}};
|
||||||
|
|
||||||
{% include 'roles/native-letsencrypt/templates/ssl_header.j2' %}
|
{% include 'roles/server_native-letsencrypt/templates/ssl_header.j2' %}
|
||||||
|
|
||||||
keepalive_timeout 70;
|
keepalive_timeout 70;
|
||||||
sendfile on;
|
sendfile on;
|
||||||
@ -23,7 +23,7 @@ server {
|
|||||||
|
|
||||||
add_header Strict-Transport-Security "max-age=31536000";
|
add_header Strict-Transport-Security "max-age=31536000";
|
||||||
|
|
||||||
{% include 'roles/native-docker-reverse-proxy/templates/proxy_pass.conf.j2' %}
|
{% include 'roles/server_native-docker-reverse-proxy/templates/proxy_pass.conf.j2' %}
|
||||||
|
|
||||||
location /api/v1/streaming {
|
location /api/v1/streaming {
|
||||||
proxy_set_header Host $host;
|
proxy_set_header Host $host;
|
||||||
|
@ -1 +1 @@
|
|||||||
docker_compose_mastodon_path: "/home/administrator/docker-compose/mastodon/"
|
docker_compose_mastodon_path: "/home/administrator/server_docker-compose/mastodon/"
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role docker-mediawiki
|
# role server_docker-mediawiki
|
||||||
## Generate LocalSettings.php
|
## Generate LocalSettings.php
|
||||||
Login to the container:
|
Login to the container:
|
||||||
|
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -2,7 +2,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "docker mediawiki"
|
- name: "docker mediawiki"
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: create data folder
|
- name: create data folder
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role docker-nextcloud
|
# role server_docker-nextcloud
|
||||||
|
|
||||||
## precondition
|
## precondition
|
||||||
|
|
||||||
@ -13,10 +13,10 @@ NEXTCLOUD_APPLICATION_DOCKER_CONTAINER=nextcloud-application-1
|
|||||||
To update the nextcloud container execute the following commands on the server:
|
To update the nextcloud container execute the following commands on the server:
|
||||||
```bash
|
```bash
|
||||||
docker exec -it -u www-data $NEXTCLOUD_APPLICATION_DOCKER_CONTAINER /var/www/html/occ maintenance:mode --on
|
docker exec -it -u www-data $NEXTCLOUD_APPLICATION_DOCKER_CONTAINER /var/www/html/occ maintenance:mode --on
|
||||||
sudo python /home/administrator/scripts/docker-volume-backup/docker-volume-backup.py
|
sudo python /home/administrator/scripts/server_docker-volume-backup/server_docker-volume-backup.py
|
||||||
export COMPOSE_HTTP_TIMEOUT=600
|
export COMPOSE_HTTP_TIMEOUT=600
|
||||||
export DOCKER_CLIENT_TIMEOUT=600
|
export DOCKER_CLIENT_TIMEOUT=600
|
||||||
cd /home/administrator/docker-compose/nextcloud && docker-compose down
|
cd /home/administrator/server_docker-compose/nextcloud && server_docker-compose down
|
||||||
```
|
```
|
||||||
|
|
||||||
Afterwards update the ***nextcloud_version*** variable to the next version and run the this repository with this ansible role.
|
Afterwards update the ***nextcloud_version*** variable to the next version and run the this repository with this ansible role.
|
||||||
@ -55,11 +55,11 @@ and disable the not functioning apps.
|
|||||||
|
|
||||||
## recover latest backup
|
## recover latest backup
|
||||||
```bash
|
```bash
|
||||||
cd /home/administrator/docker-compose/nextcloud &&
|
cd /home/administrator/server_docker-compose/nextcloud &&
|
||||||
docker-compose down &&
|
server_docker-compose down &&
|
||||||
docker exec -i nextcloud_database_1 mysql -u nextcloud -pPASSWORT nextcloud < "/Backups/$(sha256sum /etc/machine-id | head -c 64)/docker-volume-backup/latest/nextcloud_database/sql/backup.sql" &&
|
docker exec -i nextcloud_database_1 mysql -u nextcloud -pPASSWORT nextcloud < "/Backups/$(sha256sum /etc/machine-id | head -c 64)/server_docker-volume-backup/latest/nextcloud_database/sql/backup.sql" &&
|
||||||
cd /home/administrator/scripts/docker-volume-backup &&
|
cd /home/administrator/scripts/server_docker-volume-backup &&
|
||||||
bash ./docker-volume-recover.sh "nextcloud_data" "$(sha256sum /etc/machine-id | head -c 64)"
|
bash ./server_docker-volume-recover.sh "nextcloud_data" "$(sha256sum /etc/machine-id | head -c 64)"
|
||||||
```
|
```
|
||||||
|
|
||||||
## database
|
## database
|
||||||
@ -124,15 +124,15 @@ Until NC24 MariaDB version has to be used.
|
|||||||
- https://help.nextcloud.com/t/solved-manual-lemp-install-php-fpm-timing-out/39070
|
- https://help.nextcloud.com/t/solved-manual-lemp-install-php-fpm-timing-out/39070
|
||||||
|
|
||||||
## further information
|
## further information
|
||||||
- https://github.com/nextcloud/docker/blob/master/.examples/docker-compose/with-nginx-proxy/mariadb/fpm/docker-compose.yml
|
- https://github.com/nextcloud/docker/blob/master/.examples/server_docker-compose/with-nginx-proxy/mariadb/fpm/server_docker-compose.yml
|
||||||
- https://goneuland.de/nextcloud-upgrade-auf-neue-versionen-mittels-docker/
|
- https://goneuland.de/nextcloud-upgrade-auf-neue-versionen-mittels-docker/
|
||||||
- https://help.nextcloud.com/t/cant-start-nextcloud-because-the-version-of-the-data-is-higher-than-the-docker-image-version-and-downgrading-is-not-supported/109438
|
- https://help.nextcloud.com/t/cant-start-nextcloud-because-the-version-of-the-data-is-higher-than-the-server_docker-image-version-and-downgrading-is-not-supported/109438
|
||||||
- https://github.com/nextcloud/docker/issues/1302
|
- https://github.com/nextcloud/docker/issues/1302
|
||||||
- https://help.nextcloud.com/t/update-to-22-failed-with-database-error-updated/120682
|
- https://help.nextcloud.com/t/update-to-22-failed-with-database-error-updated/120682
|
||||||
- https://help.nextcloud.com/t/nc-update-to-21-0-0-beta1-exception-database-error/101124/4
|
- https://help.nextcloud.com/t/nc-update-to-21-0-0-beta1-exception-database-error/101124/4
|
||||||
- https://wolfgang.gassler.org/reset-password-mariadb-mysql-docker/
|
- https://wolfgang.gassler.org/reset-password-mariadb-mysql-docker/
|
||||||
- https://unix.stackexchange.com/questions/478855/ansible-docker-container-and-depends-on
|
- https://unix.stackexchange.com/questions/478855/ansible-server_docker-container-and-depends-on
|
||||||
- https://github.com/gdiepen/docker-convenience-scripts
|
- https://github.com/gdiepen/server_docker-convenience-scripts
|
||||||
- https://help.nextcloud.com/t/several-issues-after-upgrading-to-nextcloud-21/113118/3
|
- https://help.nextcloud.com/t/several-issues-after-upgrading-to-nextcloud-21/113118/3
|
||||||
- https://forum.openmediavault.org/index.php?thread/31782-docker-nextcloud-talk-plugin-and-turnserver/
|
- https://forum.openmediavault.org/index.php?thread/31782-server_docker-nextcloud-talk-plugin-and-turnserver/
|
||||||
- https://help.nextcloud.com/t/nextcloud-talk-im-docker-container-turn-server-auf-docker-host-kein-video/84133/10
|
- https://help.nextcloud.com/t/nextcloud-talk-im-server_docker-container-turn-server-auf-server_docker-host-kein-video/84133/10
|
||||||
|
@ -1,8 +1,8 @@
|
|||||||
---
|
---
|
||||||
- name: recreate nextcloud
|
- name: recreate nextcloud
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose -p nextcloud up -d --force-recreate
|
cmd: server_docker-compose -p nextcloud up -d --force-recreate
|
||||||
chdir: /home/administrator/docker-compose/nextcloud/
|
chdir: /home/administrator/server_docker-compose/nextcloud/
|
||||||
environment:
|
environment:
|
||||||
COMPOSE_HTTP_TIMEOUT: 600
|
COMPOSE_HTTP_TIMEOUT: 600
|
||||||
DOCKER_CLIENT_TIMEOUT: 600
|
DOCKER_CLIENT_TIMEOUT: 600
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -16,12 +16,12 @@
|
|||||||
template: src=templates/nginx.conf.j2 dest=/home/administrator/volumes/docker/nextcloud/nginx.conf
|
template: src=templates/nginx.conf.j2 dest=/home/administrator/volumes/docker/nextcloud/nginx.conf
|
||||||
notify: recreate nextcloud
|
notify: recreate nextcloud
|
||||||
|
|
||||||
- name: "create /home/administrator/docker-compose/nextcloud/"
|
- name: "create /home/administrator/server_docker-compose/nextcloud/"
|
||||||
file:
|
file:
|
||||||
path: "/home/administrator/docker-compose/nextcloud/"
|
path: "/home/administrator/server_docker-compose/nextcloud/"
|
||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: add docker-compose.yml
|
- name: add server_docker-compose.yml
|
||||||
template: src=docker-compose.yml.j2 dest=/home/administrator/docker-compose/nextcloud/docker-compose.yml
|
template: src=server_docker-compose.yml.j2 dest=/home/administrator/server_docker-compose/nextcloud/server_docker-compose.yml
|
||||||
notify: recreate nextcloud
|
notify: recreate nextcloud
|
||||||
|
@ -2,7 +2,7 @@ server
|
|||||||
{
|
{
|
||||||
server_name {{domain}};
|
server_name {{domain}};
|
||||||
|
|
||||||
{% include 'roles/native-letsencrypt/templates/ssl_header.j2' %}
|
{% include 'roles/server_native-letsencrypt/templates/ssl_header.j2' %}
|
||||||
|
|
||||||
# Remove X-Powered-By, which is an information leak
|
# Remove X-Powered-By, which is an information leak
|
||||||
fastcgi_hide_header X-Powered-By;
|
fastcgi_hide_header X-Powered-By;
|
||||||
@ -12,7 +12,7 @@ server
|
|||||||
client_body_buffer_size 400M;
|
client_body_buffer_size 400M;
|
||||||
fastcgi_buffers 64 4K;
|
fastcgi_buffers 64 4K;
|
||||||
|
|
||||||
{% include 'roles/native-docker-reverse-proxy/templates/proxy_pass.conf.j2' %}
|
{% include 'roles/server_native-docker-reverse-proxy/templates/proxy_pass.conf.j2' %}
|
||||||
|
|
||||||
location ^~ /.well-known {
|
location ^~ /.well-known {
|
||||||
rewrite ^/\.well-known/host-meta\.json /public.php?service=host-meta-json last;
|
rewrite ^/\.well-known/host-meta\.json /public.php?service=host-meta-json last;
|
||||||
|
@ -7,10 +7,10 @@ watch -n 2 "docker ps -a | grep peertube"
|
|||||||
|
|
||||||
## clean rebuild
|
## clean rebuild
|
||||||
```bash
|
```bash
|
||||||
cd /home/administrator/docker-compose/peertube/ &&
|
cd /home/administrator/server_docker-compose/peertube/ &&
|
||||||
docker-compose down
|
server_docker-compose down
|
||||||
docker volume rm peertube_assets peertube_config peertube_data peertube_database peertube_redis
|
docker volume rm peertube_assets peertube_config peertube_data peertube_database peertube_redis
|
||||||
docker-compose up -d
|
server_docker-compose up -d
|
||||||
```
|
```
|
||||||
|
|
||||||
## access terminal
|
## access terminal
|
||||||
|
@ -1,7 +1,7 @@
|
|||||||
---
|
---
|
||||||
- name: recreate peertube
|
- name: recreate peertube
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose -p peertube up -d --force-recreate
|
cmd: server_docker-compose -p peertube up -d --force-recreate
|
||||||
chdir: "{{docker_compose_peertube_path}}"
|
chdir: "{{docker_compose_peertube_path}}"
|
||||||
environment:
|
environment:
|
||||||
COMPOSE_HTTP_TIMEOUT: 600
|
COMPOSE_HTTP_TIMEOUT: 600
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -12,8 +12,8 @@
|
|||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: copy docker-compose.yml
|
- name: copy server_docker-compose.yml
|
||||||
template: src=docker-compose.yml.j2 dest={{docker_compose_peertube_path}}docker-compose.yml
|
template: src=server_docker-compose.yml.j2 dest={{docker_compose_peertube_path}}server_docker-compose.yml
|
||||||
notify: recreate peertube
|
notify: recreate peertube
|
||||||
|
|
||||||
- name: copy configuration
|
- name: copy configuration
|
||||||
|
@ -6,7 +6,7 @@ upstream backend {
|
|||||||
server {
|
server {
|
||||||
server_name {{domain}};
|
server_name {{domain}};
|
||||||
|
|
||||||
{% include 'roles/native-letsencrypt/templates/ssl_header.j2' %}
|
{% include 'roles/server_native-letsencrypt/templates/ssl_header.j2' %}
|
||||||
|
|
||||||
##
|
##
|
||||||
# Application
|
# Application
|
||||||
|
@ -1 +1 @@
|
|||||||
docker_compose_peertube_path: "/home/administrator/docker-compose/peertube/"
|
docker_compose_peertube_path: "/home/administrator/server_docker-compose/peertube/"
|
||||||
|
@ -1,26 +1,26 @@
|
|||||||
# role docker-pixelfed
|
# role server_docker-pixelfed
|
||||||
|
|
||||||
## hard cleanup
|
## hard cleanup
|
||||||
```bash
|
```bash
|
||||||
docker-compose down
|
server_docker-compose down
|
||||||
docker volume rm pixelfed_application_data pixelfed_database pixelfed_redis_data
|
docker volume rm pixelfed_application_data pixelfed_database pixelfed_redis_data
|
||||||
```
|
```
|
||||||
|
|
||||||
## update
|
## update
|
||||||
```bash
|
```bash
|
||||||
cd /home/administrator/docker-compose/pixelfed/ &&
|
cd /home/administrator/server_docker-compose/pixelfed/ &&
|
||||||
docker-compose down &&
|
server_docker-compose down &&
|
||||||
docker network prune -f &&
|
docker network prune -f &&
|
||||||
docker-compose pull &&
|
server_docker-compose pull &&
|
||||||
docker-compose build &&
|
server_docker-compose build &&
|
||||||
docker-compose -p pixelfed up -d --force-recreate
|
server_docker-compose -p pixelfed up -d --force-recreate
|
||||||
```
|
```
|
||||||
|
|
||||||
## inspect
|
## inspect
|
||||||
|
|
||||||
```bash
|
```bash
|
||||||
docker-compose ps -a
|
server_docker-compose ps -a
|
||||||
docker-compose logs -f
|
server_docker-compose logs -f
|
||||||
```
|
```
|
||||||
|
|
||||||
## further information
|
## further information
|
||||||
|
@ -1,8 +1,8 @@
|
|||||||
---
|
---
|
||||||
- name: recreate pixelfed
|
- name: recreate pixelfed
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose -p pixelfed up -d --force-recreate
|
cmd: server_docker-compose -p pixelfed up -d --force-recreate
|
||||||
chdir: /home/administrator/docker-compose/pixelfed/
|
chdir: /home/administrator/server_docker-compose/pixelfed/
|
||||||
environment:
|
environment:
|
||||||
COMPOSE_HTTP_TIMEOUT: 600
|
COMPOSE_HTTP_TIMEOUT: 600
|
||||||
DOCKER_CLIENT_TIMEOUT: 600
|
DOCKER_CLIENT_TIMEOUT: 600
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create {{docker_compose_path}}"
|
- name: "create {{docker_compose_path}}"
|
||||||
@ -12,8 +12,8 @@
|
|||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: add docker-compose.yml
|
- name: add server_docker-compose.yml
|
||||||
template: src=docker-compose.yml.j2 dest={{docker_compose_path}}docker-compose.yml
|
template: src=server_docker-compose.yml.j2 dest={{docker_compose_path}}server_docker-compose.yml
|
||||||
notify: recreate pixelfed
|
notify: recreate pixelfed
|
||||||
|
|
||||||
- name: add env
|
- name: add env
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
docker_compose_path: "/home/administrator/docker-compose/pixelfed/"
|
docker_compose_path: "/home/administrator/server_docker-compose/pixelfed/"
|
||||||
client_max_body_size: "512M"
|
client_max_body_size: "512M"
|
||||||
|
@ -1,7 +1,7 @@
|
|||||||
---
|
---
|
||||||
- name: recreate and build roulette-wheel
|
- name: recreate and build roulette-wheel
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose -p roulette-wheel up -d --force-recreate --build
|
cmd: server_docker-compose -p roulette-wheel up -d --force-recreate --build
|
||||||
chdir: "{{docker_compose_path}}"
|
chdir: "{{docker_compose_path}}"
|
||||||
environment:
|
environment:
|
||||||
COMPOSE_HTTP_TIMEOUT: 600
|
COMPOSE_HTTP_TIMEOUT: 600
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -2,6 +2,6 @@
|
|||||||
|
|
||||||
## further information
|
## further information
|
||||||
- https://github.com/p-wojt/roulette-wheel
|
- https://github.com/p-wojt/roulette-wheel
|
||||||
- https://dev.to/ms314006/how-to-package-front-end-projects-into-docker-images-and-use-it-with-webpack-go3
|
- https://dev.to/ms314006/how-to-package-front-end-projects-into-server_docker-images-and-use-it-with-webpack-go3
|
||||||
- https://stackoverflow.com/questions/53178820/dockerfile-to-run-nodejs-static-content-in-docker-container
|
- https://stackoverflow.com/questions/53178820/dockerfile-to-run-nodejs-static-content-in-server_docker-container
|
||||||
- https://stackoverflow.com/questions/43619644/i-am-getting-an-invalid-host-header-message-when-connecting-to-webpack-dev-ser
|
- https://stackoverflow.com/questions/43619644/i-am-getting-an-invalid-host-header-message-when-connecting-to-webpack-dev-ser
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create {{docker_compose_path}}"
|
- name: "create {{docker_compose_path}}"
|
||||||
@ -20,8 +20,8 @@
|
|||||||
notify: recreate and build roulette-wheel
|
notify: recreate and build roulette-wheel
|
||||||
become: true
|
become: true
|
||||||
|
|
||||||
- name: add docker-compose.yml
|
- name: add server_docker-compose.yml
|
||||||
template: src=docker-compose.yml.j2 dest={{docker_compose_path}}docker-compose.yml
|
template: src=server_docker-compose.yml.j2 dest={{docker_compose_path}}server_docker-compose.yml
|
||||||
notify: recreate and build roulette-wheel
|
notify: recreate and build roulette-wheel
|
||||||
|
|
||||||
- name: add Dockerfile
|
- name: add Dockerfile
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
docker_compose_path: "/home/administrator/docker-compose/roulette-wheel/"
|
docker_compose_path: "/home/administrator/server_docker-compose/roulette-wheel/"
|
||||||
app_path: "/home/administrator/docker-compose/roulette-wheel/app/"
|
app_path: "/home/administrator/server_docker-compose/roulette-wheel/app/"
|
@ -1,10 +1,10 @@
|
|||||||
#role docker-turn-server
|
#role server_docker-turn-server
|
||||||
|
|
||||||
May this service needs to be implemented for jitis. It's directly integrated in the docker compose file of role docker-nextcloud
|
May this service needs to be implemented for jitis. It's directly integrated in the docker compose file of role server_docker-nextcloud
|
||||||
|
|
||||||
## see
|
## see
|
||||||
- https://nextcloud-talk.readthedocs.io/en/latest/TURN/
|
- https://nextcloud-talk.readthedocs.io/en/latest/TURN/
|
||||||
- https://hub.docker.com/r/instrumentisto/coturn
|
- https://hub.docker.com/r/instrumentisto/coturn
|
||||||
- https://forum.openmediavault.org/index.php?thread/31782-docker-nextcloud-talk-plugin-and-turnserver/
|
- https://forum.openmediavault.org/index.php?thread/31782-server_docker-nextcloud-talk-plugin-and-turnserver/
|
||||||
- https://markus-blog.de/index.php/2020/11/20/how-to-run-nextcloud-talk-high-performance-backend-with-stun-turnserver-on-ubuntu-with-docker-compose/
|
- https://markus-blog.de/index.php/2020/11/20/how-to-run-nextcloud-talk-high-performance-backend-with-stun-turnserver-on-ubuntu-with-server_docker-compose/
|
||||||
- https://github.com/crazy-max/docker-nextcloud/issues/15
|
- https://github.com/crazy-max/server_docker-nextcloud/issues/15
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role docker-wordpress
|
# role server_docker-wordpress
|
||||||
|
|
||||||
## database
|
## database
|
||||||
|
|
||||||
|
@ -1,8 +1,8 @@
|
|||||||
---
|
---
|
||||||
- name: recreate wordpress
|
- name: recreate wordpress
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose -p wordpress up -d --force-recreate
|
cmd: server_docker-compose -p wordpress up -d --force-recreate
|
||||||
chdir: /home/administrator/docker-compose/wordpress/
|
chdir: /home/administrator/server_docker-compose/wordpress/
|
||||||
environment:
|
environment:
|
||||||
COMPOSE_HTTP_TIMEOUT: 600
|
COMPOSE_HTTP_TIMEOUT: 600
|
||||||
DOCKER_CLIENT_TIMEOUT: 600
|
DOCKER_CLIENT_TIMEOUT: 600
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -7,16 +7,16 @@
|
|||||||
vars:
|
vars:
|
||||||
client_max_body_size: "2M"
|
client_max_body_size: "2M"
|
||||||
domain: "{{item}}"
|
domain: "{{item}}"
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{ item }}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{ item }}.conf
|
||||||
loop: "{{domains}}"
|
loop: "{{domains}}"
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create /home/administrator/docker-compose/wordpress/"
|
- name: "create /home/administrator/server_docker-compose/wordpress/"
|
||||||
file:
|
file:
|
||||||
path: "/home/administrator/docker-compose/wordpress/"
|
path: "/home/administrator/server_docker-compose/wordpress/"
|
||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: add docker-compose.yml
|
- name: add server_docker-compose.yml
|
||||||
template: src=docker-compose.yml.j2 dest=/home/administrator/docker-compose/wordpress/docker-compose.yml
|
template: src=server_docker-compose.yml.j2 dest=/home/administrator/server_docker-compose/wordpress/server_docker-compose.yml
|
||||||
notify: recreate wordpress
|
notify: recreate wordpress
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role docker-yourls
|
# role server_docker-yourls
|
||||||
|
|
||||||
## database
|
## database
|
||||||
|
|
||||||
|
@ -1,8 +1,8 @@
|
|||||||
---
|
---
|
||||||
- name: recreate yourls
|
- name: recreate yourls
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose -p yourls up -d --force-recreate
|
cmd: server_docker-compose -p yourls up -d --force-recreate
|
||||||
chdir: /home/administrator/docker-compose/yourls/
|
chdir: /home/administrator/server_docker-compose/yourls/
|
||||||
environment:
|
environment:
|
||||||
COMPOSE_HTTP_TIMEOUT: 600
|
COMPOSE_HTTP_TIMEOUT: 600
|
||||||
DOCKER_CLIENT_TIMEOUT: 600
|
DOCKER_CLIENT_TIMEOUT: 600
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-docker-reverse-proxy
|
- server_native-docker-reverse-proxy
|
||||||
|
@ -3,15 +3,15 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create /home/administrator/docker-compose/yourls/"
|
- name: "create /home/administrator/server_docker-compose/yourls/"
|
||||||
file:
|
file:
|
||||||
path: "/home/administrator/docker-compose/yourls/"
|
path: "/home/administrator/server_docker-compose/yourls/"
|
||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: add docker-compose.yml
|
- name: add server_docker-compose.yml
|
||||||
template: src=docker-compose.yml.j2 dest=/home/administrator/docker-compose/yourls/docker-compose.yml
|
template: src=server_docker-compose.yml.j2 dest=/home/administrator/server_docker-compose/yourls/server_docker-compose.yml
|
||||||
notify: recreate yourls
|
notify: recreate yourls
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role native-backups-cleanup
|
# role server_native-backups-cleanup
|
||||||
|
|
||||||
Cleans up old backups
|
Cleans up old backups
|
||||||
|
|
||||||
|
@ -1,3 +1,3 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-python-pip
|
- server_native-python-pip
|
||||||
- native-systemd-email
|
- server_native-systemd-email
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-systemd-email
|
- server_native-systemd-email
|
||||||
|
@ -1,3 +1,3 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-nginx
|
- server_native-nginx
|
||||||
- native-systemd-email
|
- server_native-systemd-email
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-systemd-email
|
- server_native-systemd-email
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
# native-docker-compose-restart-unhealthy
|
# server_native-docker-compose-restart-unhealthy
|
||||||
docker-compose restart for containers which are unhealty or excited
|
server_docker-compose restart for containers which are unhealty or excited
|
@ -1,6 +1,6 @@
|
|||||||
#!/bin/python
|
#!/bin/python
|
||||||
#
|
#
|
||||||
# restart docker-compose configurations who have exited or unhealthy containers
|
# restart server_docker-compose configurations who have exited or unhealthy containers
|
||||||
#
|
#
|
||||||
import subprocess
|
import subprocess
|
||||||
import time
|
import time
|
||||||
@ -30,7 +30,7 @@ waiting_time=600
|
|||||||
backup_running=True
|
backup_running=True
|
||||||
while backup_running:
|
while backup_running:
|
||||||
try:
|
try:
|
||||||
bash("systemctl is-active --quiet docker-volume-backup.service")
|
bash("systemctl is-active --quiet server_docker-volume-backup.service")
|
||||||
print("backup is running.")
|
print("backup is running.")
|
||||||
print("trying again in " + str(waiting_time) + " seconds.")
|
print("trying again in " + str(waiting_time) + " seconds.")
|
||||||
time.sleep(waiting_time)
|
time.sleep(waiting_time)
|
||||||
@ -49,6 +49,6 @@ for failed_container in failed_containers:
|
|||||||
filtered_failed_docker_compose_repositories=list(dict.fromkeys(unfiltered_failed_docker_compose_repositories))
|
filtered_failed_docker_compose_repositories=list(dict.fromkeys(unfiltered_failed_docker_compose_repositories))
|
||||||
for filtered_failed_docker_compose_repository in filtered_failed_docker_compose_repositories:
|
for filtered_failed_docker_compose_repository in filtered_failed_docker_compose_repositories:
|
||||||
print("restarting unhealthy container: " + filtered_failed_docker_compose_repository)
|
print("restarting unhealthy container: " + filtered_failed_docker_compose_repository)
|
||||||
print_bash('cd /home/administrator/docker-compose/' + filtered_failed_docker_compose_repository + '/ && docker-compose restart')
|
print_bash('cd /home/administrator/server_docker-compose/' + filtered_failed_docker_compose_repository + '/ && server_docker-compose restart')
|
||||||
|
|
||||||
print("finished restart procedure.")
|
print("finished restart procedure.")
|
@ -1,12 +1,12 @@
|
|||||||
- name: "reload docker-compose-restart-unhealthy.service"
|
- name: "reload server_docker-compose-restart-unhealthy.service"
|
||||||
systemd:
|
systemd:
|
||||||
name: docker-compose-restart-unhealthy.service
|
name: server_docker-compose-restart-unhealthy.service
|
||||||
state: reloaded
|
state: reloaded
|
||||||
enabled: yes
|
enabled: yes
|
||||||
daemon_reload: yes
|
daemon_reload: yes
|
||||||
- name: "restart docker-compose-restart-unhealthy.timer"
|
- name: "restart server_docker-compose-restart-unhealthy.timer"
|
||||||
systemd:
|
systemd:
|
||||||
name: docker-compose-restart-unhealthy.timer
|
name: server_docker-compose-restart-unhealthy.timer
|
||||||
state: restarted
|
state: restarted
|
||||||
enabled: yes
|
enabled: yes
|
||||||
daemon_reload: yes
|
daemon_reload: yes
|
||||||
|
@ -4,19 +4,19 @@
|
|||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: create docker-compose-restart-unhealthy.py
|
- name: create server_docker-compose-restart-unhealthy.py
|
||||||
copy:
|
copy:
|
||||||
src: docker-compose-restart-unhealthy.py
|
src: server_docker-compose-restart-unhealthy.py
|
||||||
dest: "{{docker_docker_compose_restart_unhealthy}}docker-compose-restart-unhealthy.py"
|
dest: "{{docker_docker_compose_restart_unhealthy}}server_docker-compose-restart-unhealthy.py"
|
||||||
|
|
||||||
- name: create docker-compose-restart-unhealthy.service
|
- name: create server_docker-compose-restart-unhealthy.service
|
||||||
template:
|
template:
|
||||||
src: docker-compose-restart-unhealthy.service.j2
|
src: server_docker-compose-restart-unhealthy.service.j2
|
||||||
dest: /etc/systemd/system/docker-compose-restart-unhealthy.service
|
dest: /etc/systemd/system/server_docker-compose-restart-unhealthy.service
|
||||||
notify: reload docker-compose-restart-unhealthy.service
|
notify: reload server_docker-compose-restart-unhealthy.service
|
||||||
|
|
||||||
- name: create docker-compose-restart-unhealthy.timer
|
- name: create server_docker-compose-restart-unhealthy.timer
|
||||||
template:
|
template:
|
||||||
src: docker-compose-restart-unhealthy.timer.j2
|
src: server_docker-compose-restart-unhealthy.timer.j2
|
||||||
dest: "/etc/systemd/system/docker-compose-restart-unhealthy.timer"
|
dest: "/etc/systemd/system/server_docker-compose-restart-unhealthy.timer"
|
||||||
notify: restart docker-compose-restart-unhealthy.timer
|
notify: restart server_docker-compose-restart-unhealthy.timer
|
@ -4,4 +4,4 @@ OnFailure=systemd-email@%n.service
|
|||||||
|
|
||||||
[Service]
|
[Service]
|
||||||
Type=oneshot
|
Type=oneshot
|
||||||
ExecStart=/bin/python {{docker_docker_compose_restart_unhealthy}}docker-compose-restart-unhealthy.py
|
ExecStart=/bin/python {{docker_docker_compose_restart_unhealthy}}server_docker-compose-restart-unhealthy.py
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
[Unit]
|
[Unit]
|
||||||
Description=starts docker-compose-restart-unhealthy.service
|
Description=starts server_docker-compose-restart-unhealthy.service
|
||||||
|
|
||||||
[Timer]
|
[Timer]
|
||||||
OnCalendar={{on_calendar_docker_compose_restart_unhealthy}}
|
OnCalendar={{on_calendar_docker_compose_restart_unhealthy}}
|
||||||
|
@ -1 +1 @@
|
|||||||
docker_docker_compose_restart_unhealthy: "/home/administrator/scripts/docker-compose-restart-unhealthy/"
|
docker_docker_compose_restart_unhealthy: "/home/administrator/scripts/server_docker-compose-restart-unhealthy/"
|
@ -1,12 +1,12 @@
|
|||||||
- name: "reload docker-health-check.service"
|
- name: "reload server_docker-health-check.service"
|
||||||
systemd:
|
systemd:
|
||||||
name: docker-health-check.service
|
name: server_docker-health-check.service
|
||||||
state: reloaded
|
state: reloaded
|
||||||
enabled: yes
|
enabled: yes
|
||||||
daemon_reload: yes
|
daemon_reload: yes
|
||||||
- name: "restart docker-health-check.timer"
|
- name: "restart server_docker-health-check.timer"
|
||||||
systemd:
|
systemd:
|
||||||
name: docker-health-check.timer
|
name: server_docker-health-check.timer
|
||||||
state: restarted
|
state: restarted
|
||||||
enabled: yes
|
enabled: yes
|
||||||
daemon_reload: yes
|
daemon_reload: yes
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- native-systemd-email
|
- server_native-systemd-email
|
||||||
|
@ -4,17 +4,17 @@
|
|||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: create docker-health-check.sh
|
- name: create server_docker-health-check.sh
|
||||||
copy:
|
copy:
|
||||||
src: docker-health-check.sh
|
src: server_docker-health-check.sh
|
||||||
dest: "{{docker_health_check_folder}}docker-health-check.sh"
|
dest: "{{docker_health_check_folder}}server_docker-health-check.sh"
|
||||||
|
|
||||||
- name: create docker-health-check.service
|
- name: create server_docker-health-check.service
|
||||||
template: src=docker-health-check.service.j2 dest=/etc/systemd/system/docker-health-check.service
|
template: src=server_docker-health-check.service.j2 dest=/etc/systemd/system/server_docker-health-check.service
|
||||||
notify: reload docker-health-check.service
|
notify: reload server_docker-health-check.service
|
||||||
|
|
||||||
- name: create docker-health-check.timer
|
- name: create server_docker-health-check.timer
|
||||||
template:
|
template:
|
||||||
src: docker-health-check.timer.j2
|
src: server_docker-health-check.timer.j2
|
||||||
dest: "/etc/systemd/system/docker-health-check.timer"
|
dest: "/etc/systemd/system/server_docker-health-check.timer"
|
||||||
notify: restart docker-health-check.timer
|
notify: restart server_docker-health-check.timer
|
||||||
|
@ -4,4 +4,4 @@ OnFailure=systemd-email@%n.service
|
|||||||
|
|
||||||
[Service]
|
[Service]
|
||||||
Type=oneshot
|
Type=oneshot
|
||||||
ExecStart=/bin/bash {{docker_health_check_folder}}docker-health-check.sh
|
ExecStart=/bin/bash {{docker_health_check_folder}}server_docker-health-check.sh
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
[Unit]
|
[Unit]
|
||||||
Description=starts docker-health-check.service
|
Description=starts server_docker-health-check.service
|
||||||
|
|
||||||
[Timer]
|
[Timer]
|
||||||
OnCalendar={{on_calendar_docker_health_check}}
|
OnCalendar={{on_calendar_docker_health_check}}
|
||||||
|
@ -1 +1 @@
|
|||||||
docker_health_check_folder: "/home/administrator/scripts/docker-health-check/"
|
docker_health_check_folder: "/home/administrator/scripts/server_docker-health-check/"
|
@ -1,4 +1,4 @@
|
|||||||
# role native-docker-reverse-proxy
|
# role server_native-docker-reverse-proxy
|
||||||
|
|
||||||
Uses nginx as an [reverse proxy](https://en.wikipedia.org/wiki/Reverse_proxy) for local docker applications.
|
Uses nginx as an [reverse proxy](https://en.wikipedia.org/wiki/Reverse_proxy) for local docker applications.
|
||||||
|
|
||||||
@ -16,4 +16,4 @@ curl -I {{address}}
|
|||||||
- https://askubuntu.com/questions/1103626/should-i-enable-client-max-body-size-proxy-request-buffering-and-proxy-bufferin
|
- https://askubuntu.com/questions/1103626/should-i-enable-client-max-body-size-proxy-request-buffering-and-proxy-bufferin
|
||||||
- https://serverfault.com/questions/692577/whats-the-difference-between-proxy-buffer-and-proxy-cache-module-in-nginx-confi
|
- https://serverfault.com/questions/692577/whats-the-difference-between-proxy-buffer-and-proxy-cache-module-in-nginx-confi
|
||||||
- https://github.com/sissbruecker/linkding/issues/88
|
- https://github.com/sissbruecker/linkding/issues/88
|
||||||
- https://www.bogotobogo.com/DevOps/Docker/Docker-Compose-Nginx-Reverse-Proxy-Multiple-Containers.php
|
- https://www.bogotobogo.com/DevOps/Docker/server_docker-Compose-Nginx-Reverse-Proxy-Multiple-Containers.php
|
||||||
|
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue
Block a user