kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-08-26 21:45:20 +02:00
Code Issues Packages Projects Releases Wiki Activity

Optimized bbb variables

Browse Source
This commit is contained in:
Kevin Veen-Birkenbach 2025-08-23 19:21:07 +02:00
parent 8b2f0ac47b
commit 6016da6f1f
No known key found for this signature in database
GPG Key ID: 44D8F11FD62F878E
3 changed files with 28 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

38
roles/web-app-bigbluebutton/templates/env.j2
View File

@ -27,17 +27,17 @@ RECORDING_MAX_AGE_DAYS=365
# SECRETS
# ====================================
# important! change these to any random values
SHARED_SECRET={{applications | get_app_conf(application_id, 'credentials.shared_secret', True)}}
ETHERPAD_API_KEY={{applications | get_app_conf(application_id, 'credentials.etherpad_api_key', True)}}
RAILS_SECRET={{applications | get_app_conf(application_id, 'credentials.rails_secret', True)}}
POSTGRESQL_SECRET={{applications | get_app_conf(application_id, 'credentials.postgresql_secret', True)}}
FSESL_PASSWORD={{applications | get_app_conf(application_id, 'credentials.fsesl_password', True)}}
SHARED_SECRET={{ BBB_SHARED_SECRET }}
ETHERPAD_API_KEY={{ BBB_ETHERPAD_API_KEY }}
RAILS_SECRET={{ BBB_RAILS_SECRET }}
POSTGRESQL_SECRET={{ BBB_POSTGRESQL_SECRET }}
FSESL_PASSWORD={{ BBB_FSESL_PASSWORD }}
# ====================================
# CONNECTION
# ====================================
DOMAIN={{ domains | get_domain(application_id) }}
DOMAIN={{ domain }}
EXTERNAL_IPv4={{ networks.internet.ip4 }}
# The following line is not tested and could lead to bugs:
@ -50,8 +50,8 @@ STUN_PORT={{ ports.public.stun[application_id] }}
# TURN SERVER
# uncomment and adjust following two lines to add an external TURN server
TURN_SERVER=turns:{{ domains | get_domain(application_id) }}:{{ ports.public.turn[application_id] }}?transport=tcp
TURN_SECRET={{applications | get_app_conf(application_id, 'credentials.turn_secret', True)}}
TURN_SERVER=turns:{{ domain }}:{{ ports.public.turn[application_id] }}?transport=tcp
TURN_SECRET={{ BBB_TURN_SECRET }}
# Allowed SIP IPs
# due to high traffic caused by bots, by default the SIP port is blocked.
@ -170,21 +170,21 @@ OAUTH2_REDIRECT=
# LDAP_SERVER=ldap.example.com
# LDAP_PORT=389
# LDAP_METHOD=plain
# LDAP_UID={{ldap.user.attributes.id}}
# LDAP_UID={{ ldap.user.attributes.id }}
# LDAP_BASE=dc=example,dc=com
# LDAP_AUTH=simple
# LDAP_BIND_DN=cn=admin,dc=example,dc=com
# LDAP_PASSWORD=password
# LDAP_ROLE_FIELD=ou
# LDAP_FILTER=(&(attr1=value1)(attr2=value2))
LDAP_SERVER="{{ldap.server.domain}}"
LDAP_PORT="{{ldap.server.port}}"
LDAP_SERVER="{{ ldap.server.domain }}"
LDAP_PORT="{{ ldap.server.port }}"
LDAP_METHOD=
LDAP_UID={{ldap.user.attributes.id}}
LDAP_BASE="{{ldap.dn.root}}"
LDAP_BIND_DN="{{ldap.dn.administrator.data}}"
LDAP_UID={{ ldap.user.attributes.id }}
LDAP_BASE="{{ ldap.dn.root }}"
LDAP_BIND_DN="{{ ldap.dn.administrator.data }}"
LDAP_AUTH=password
LDAP_PASSWORD="{{ldap.bind_credential}}"
LDAP_PASSWORD="{{ ldap.bind_credential }}"
LDAP_ROLE_FIELD=
LDAP_FILTER=
{% endif %}
@ -204,15 +204,15 @@ ALLOW_GREENLIGHT_ACCOUNTS=true
# Please refer to your SMTP provider to get the values for the variables below
SMTP_SERVER={{ SYSTEM_EMAIL.HOST }}
SMTP_DOMAIN={{SYSTEM_EMAIL.DOMAIN}}
SMTP_DOMAIN={{ SYSTEM_EMAIL.DOMAIN }}
SMTP_PORT={{ SYSTEM_EMAIL.PORT }}
SMTP_USERNAME={{ users['no-reply'].email }}
SMTP_PASSWORD={{ users['no-reply'].mailu_token }}
SMTP_AUTH=plain
SMTP_OPENSSL_VERIFY_MODE=none
SMTP_STARTTLS_AUTO={{SYSTEM_EMAIL.START_TLS | lower}}
SMTP_STARTTLS={{SYSTEM_EMAIL.START_TLS | lower}}
SMTP_TLS={{SYSTEM_EMAIL.TLS | lower}}
SMTP_STARTTLS_AUTO={{ SYSTEM_EMAIL.START_TLS | lower }}
SMTP_STARTTLS={{ SYSTEM_EMAIL.START_TLS | lower }}
SMTP_TLS={{ SYSTEM_EMAIL.TLS | lower }}
SMTP_SSL_VERIFY=true
SMTP_SENDER={{ users['no-reply'].email }}
SMTP_SENDER_EMAIL={{ users['no-reply'].email }}

8
roles/web-app-bigbluebutton/vars/main.yml
View File

@ -17,3 +17,11 @@ docker_compose_skipp_file_creation: true # Handled in this role
docker_repository_address: "{{ applications | get_app_conf(application_id, 'docker.services.bigbluebutton.repository') }}"
docker_repository_branch: "{{ applications | get_app_conf(application_id, 'docker.services.bigbluebutton.version') }}"
docker_pull_git_repository: true
# BigBlueButton
BBB_SHARED_SECRET: "{{ applications | get_app_conf(application_id, 'credentials.shared_secret') }}"
BBB_ETHERPAD_API_KEY: "{{ applications | get_app_conf(application_id, 'credentials.etherpad_api_key') }}"
BBB_RAILS_SECRET: "{{ applications | get_app_conf(application_id, 'credentials.rails_secret') }}"
BBB_POSTGRESQL_SECRET: "{{ applications | get_app_conf(application_id, 'credentials.postgresql_secret') }}"
BBB_FSESL_PASSWORD: "{{ applications | get_app_conf(application_id, 'credentials.fsesl_password') }}"
BBB_TURN_SECRET: "{{ applications | get_app_conf(application_id, 'credentials.turn_secret') }}"

2
roles/web-app-keycloak/templates/import/realm.json.j2
View File

@ -1446,7 +1446,7 @@
"smtpServer": {
"password": "{{ users['no-reply'].mailu_token }}",
"replyToDisplayName": "",
"starttls": "{{SYSTEM_EMAIL.START_TLS | lower}}",
"starttls": "{{ SYSTEM_EMAIL.START_TLS | lower }}",
"auth": "true",
"port": "{{ SYSTEM_EMAIL.PORT }}",
"replyTo": "",