mirror of
https://github.com/kevinveenbirkenbach/computer-playbook.git
synced 2024-11-10 06:51:04 +01:00
removed server_
This commit is contained in:
parent
7830e1f38e
commit
d0745f3439
@ -82,9 +82,9 @@ docker-compose -p akaunting up -d --force-recreate
|
|||||||
|
|
||||||
# recover all volumes
|
# recover all volumes
|
||||||
cd {{path_administrator_scripts}}docker-volume-backup &&
|
cd {{path_administrator_scripts}}docker-volume-backup &&
|
||||||
bash server_docker-volume-recover.sh akaunting_akaunting-modules ${machine_id:0:64} "$backup_version" &&
|
bash docker-volume-recover.sh akaunting_akaunting-modules ${machine_id:0:64} "$backup_version" &&
|
||||||
bash server_docker-volume-recover.sh akaunting_akaunting-data ${machine_id:0:64} "$backup_version" &&
|
bash docker-volume-recover.sh akaunting_akaunting-data ${machine_id:0:64} "$backup_version" &&
|
||||||
bash server_docker-volume-recover.sh akaunting_akaunting-db ${machine_id:0:64} "$backup_version" akaunting-db "$akaunting_db_password" akaunting
|
bash docker-volume-recover.sh akaunting_akaunting-db ${machine_id:0:64} "$backup_version" akaunting-db "$akaunting_db_password" akaunting
|
||||||
|
|
||||||
```
|
```
|
||||||
|
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: register directory
|
- name: register directory
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# Role: server_docker-attendize
|
# Role: docker-attendize
|
||||||
|
|
||||||
This Ansible role sets up Attendize, an open-source ticket selling and event management platform.
|
This Ansible role sets up Attendize, an open-source ticket selling and event management platform.
|
||||||
|
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -7,13 +7,13 @@
|
|||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template:
|
template:
|
||||||
src: roles/server_native-docker-reverse-proxy/templates/domain.conf.j2
|
src: roles/native-docker-reverse-proxy/templates/domain.conf.j2
|
||||||
dest: /etc/nginx/conf.d/{{domain}}.conf
|
dest: /etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
#- name: configure {{ mail_interface_domain }}.conf
|
#- name: configure {{ mail_interface_domain }}.conf
|
||||||
# template:
|
# template:
|
||||||
# src: roles/server_native-docker-reverse-proxy/templates/domain.conf.j2
|
# src: roles/native-docker-reverse-proxy/templates/domain.conf.j2
|
||||||
# dest: /etc/nginx/conf.d/{{ mail_interface_domain }}.conf
|
# dest: /etc/nginx/conf.d/{{ mail_interface_domain }}.conf
|
||||||
# vars:
|
# vars:
|
||||||
# http_port: "{{ mail_interface_http_port }}"
|
# http_port: "{{ mail_interface_http_port }}"
|
||||||
|
@ -17,8 +17,8 @@ watch -n 2 "docker ps -a | grep bigbluebutton"
|
|||||||
## further information
|
## further information
|
||||||
- https://github.com/bigbluebutton/docker
|
- https://github.com/bigbluebutton/docker
|
||||||
- https://docs.bigbluebutton.org/greenlight/gl-install.html#setting-bigbluebutton-credentials
|
- https://docs.bigbluebutton.org/greenlight/gl-install.html#setting-bigbluebutton-credentials
|
||||||
- https://goneuland.de/big-blue-button-mit-server_docker-und-traefik-installieren/
|
- https://goneuland.de/big-blue-button-mit-docker-und-traefik-installieren/
|
||||||
- https://github.com/docker/compose/issues/4799
|
- https://github.com/docker/compose/issues/4799
|
||||||
- https://www.cyberciti.biz/faq/linux-command-to-remove-virtual-interfaces-or-network-aliases/
|
- https://www.cyberciti.biz/faq/linux-command-to-remove-virtual-interfaces-or-network-aliases/
|
||||||
- https://www.cyberciti.biz/faq/linux-restart-network-interface/
|
- https://www.cyberciti.biz/faq/linux-restart-network-interface/
|
||||||
- https://stackoverflow.com/questions/53347951/server_docker-network-not-found
|
- https://stackoverflow.com/questions/53347951/docker-network-not-found
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_docker-elk
|
# role docker-elk
|
||||||
|
|
||||||
I decided against using this role for security reasons. I recommend to use another tool if you don't want to pay for keeping your logs save and if you don't want to depend on external servers.
|
I decided against using this role for security reasons. I recommend to use another tool if you don't want to pay for keeping your logs save and if you don't want to depend on external servers.
|
||||||
|
|
||||||
@ -9,5 +9,5 @@ docker restart elk_logstash_1 && docker restart elk_elasticsearch_1 && docker re
|
|||||||
|
|
||||||
## see
|
## see
|
||||||
- https://logz.io/blog/elk-stack-on-docker/
|
- https://logz.io/blog/elk-stack-on-docker/
|
||||||
- https://github.com/kevinveenbirkenbach/server_docker-elk
|
- https://github.com/kevinveenbirkenbach/docker-elk
|
||||||
- https://logz.io/blog/server_docker-logging/
|
- https://logz.io/blog/docker-logging/
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
---
|
---
|
||||||
docker_elk_compose_path: "/srv/github.com/kevinveenbirkenbach/server_docker-elk/"
|
docker_elk_compose_path: "/srv/github.com/kevinveenbirkenbach/docker-elk/"
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
---
|
---
|
||||||
- name: recreate server_docker-elk
|
- name: recreate docker-elk
|
||||||
command:
|
command:
|
||||||
cmd: docker-compose up -d --force-recreate
|
cmd: docker-compose up -d --force-recreate
|
||||||
chdir: "{{docker_elk_compose_path}}"
|
chdir: "{{docker_elk_compose_path}}"
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -4,7 +4,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: create elasticsearch-sysctl.conf
|
- name: create elasticsearch-sysctl.conf
|
||||||
@ -24,12 +24,12 @@
|
|||||||
state: directory
|
state: directory
|
||||||
mode: 0755
|
mode: 0755
|
||||||
|
|
||||||
- name: git pull server_docker-elk
|
- name: git pull docker-elk
|
||||||
git:
|
git:
|
||||||
repo: "https://github.com/kevinveenbirkenbach/server_docker-elk.git"
|
repo: "https://github.com/kevinveenbirkenbach/docker-elk.git"
|
||||||
dest: "{{docker_elk_compose_path}}"
|
dest: "{{docker_elk_compose_path}}"
|
||||||
update: yes
|
update: yes
|
||||||
notify: recreate server_docker-elk
|
notify: recreate docker-elk
|
||||||
register: git_result
|
register: git_result
|
||||||
ignore_errors: true
|
ignore_errors: true
|
||||||
|
|
||||||
@ -40,20 +40,20 @@
|
|||||||
|
|
||||||
- name: copy docker-compose.yml
|
- name: copy docker-compose.yml
|
||||||
template: src=docker-compose.yml.j2 dest={{docker_elk_compose_path}}docker-compose.yml
|
template: src=docker-compose.yml.j2 dest={{docker_elk_compose_path}}docker-compose.yml
|
||||||
notify: recreate server_docker-elk
|
notify: recreate docker-elk
|
||||||
|
|
||||||
- name: copy elasticsearch.yml
|
- name: copy elasticsearch.yml
|
||||||
template: src=elasticsearch.yml.j2 dest={{docker_elk_compose_path}}elasticsearch/config/elasticsearch.yml
|
template: src=elasticsearch.yml.j2 dest={{docker_elk_compose_path}}elasticsearch/config/elasticsearch.yml
|
||||||
notify: recreate server_docker-elk
|
notify: recreate docker-elk
|
||||||
|
|
||||||
- name: copy kibana.yml
|
- name: copy kibana.yml
|
||||||
template: src=kibana.yml.j2 dest={{docker_elk_compose_path}}kibana/config/kibana.yml
|
template: src=kibana.yml.j2 dest={{docker_elk_compose_path}}kibana/config/kibana.yml
|
||||||
notify: recreate server_docker-elk
|
notify: recreate docker-elk
|
||||||
|
|
||||||
- name: copy logstash.yml
|
- name: copy logstash.yml
|
||||||
template: src=logstash.yml.j2 dest={{docker_elk_compose_path}}logstash/config/logstash.yml
|
template: src=logstash.yml.j2 dest={{docker_elk_compose_path}}logstash/config/logstash.yml
|
||||||
notify: recreate server_docker-elk
|
notify: recreate docker-elk
|
||||||
|
|
||||||
- name: copy logstash.conf
|
- name: copy logstash.conf
|
||||||
template: src=logstash.conf.j2 dest={{docker_elk_compose_path}}logstash/pipeline/logstash.conf
|
template: src=logstash.conf.j2 dest={{docker_elk_compose_path}}logstash/pipeline/logstash.conf
|
||||||
notify: recreate server_docker-elk
|
notify: recreate docker-elk
|
||||||
|
@ -2,7 +2,7 @@
|
|||||||
## Default Elasticsearch configuration from Elasticsearch base image.
|
## Default Elasticsearch configuration from Elasticsearch base image.
|
||||||
## https://github.com/elastic/elasticsearch/blob/master/distribution/docker/src/docker/config/elasticsearch.yml
|
## https://github.com/elastic/elasticsearch/blob/master/distribution/docker/src/docker/config/elasticsearch.yml
|
||||||
#
|
#
|
||||||
cluster.name: "server_docker-cluster"
|
cluster.name: "docker-cluster"
|
||||||
network.host: 0.0.0.0
|
network.host: 0.0.0.0
|
||||||
|
|
||||||
## X-Pack settings
|
## X-Pack settings
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create {{docker_compose_path}}"
|
- name: "create {{docker_compose_path}}"
|
||||||
|
@ -19,7 +19,7 @@
|
|||||||
|
|
||||||
FUNKWHALE_VERSION={{funkwhale_version}}
|
FUNKWHALE_VERSION={{funkwhale_version}}
|
||||||
|
|
||||||
# End of server_docker-only configuration
|
# End of docker-only configuration
|
||||||
|
|
||||||
# General configuration
|
# General configuration
|
||||||
# ---------------------
|
# ---------------------
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_docker-gitea
|
# role docker-gitea
|
||||||
|
|
||||||
## update
|
## update
|
||||||
```bash
|
```bash
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}} https
|
- name: configure {{domain}} https
|
||||||
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create {{path_docker_compose_folder}}"
|
- name: "create {{path_docker_compose_folder}}"
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -2,7 +2,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "docker jenkins"
|
- name: "docker jenkins"
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_docker-joomla
|
# role docker-joomla
|
||||||
## delete all data
|
## delete all data
|
||||||
```bash
|
```bash
|
||||||
docker stop joomla_application_1; docker rm -f joomla_application_1; docker volume rm -f joomla-data;
|
docker stop joomla_application_1; docker rm -f joomla_application_1; docker volume rm -f joomla-data;
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create {{path_docker_compose_folder}}"
|
- name: "create {{path_docker_compose_folder}}"
|
||||||
|
@ -140,6 +140,6 @@ For instructions on updating your Mailu setup, follow the official [Mailu mainte
|
|||||||
- [Plesk support article on RoundCube connection issue](https://support.plesk.com/hc/en-us/articles/115001264814-Unable-to-log-into-RoundCube-Connection-to-storage-server-failed)
|
- [Plesk support article on RoundCube connection issue](https://support.plesk.com/hc/en-us/articles/115001264814-Unable-to-log-into-RoundCube-Connection-to-storage-server-failed)
|
||||||
- [Gist by marienfressinaud](https://gist.github.com/marienfressinaud/f284a59b18aad395eb0de2d22836ae6b)
|
- [Gist by marienfressinaud](https://gist.github.com/marienfressinaud/f284a59b18aad395eb0de2d22836ae6b)
|
||||||
|
|
||||||
For more information about this role, visit the [GitHub repository](https://github.com/kevinveenbirkenbach/computer-playbook/tree/master/roles/server_docker-mailu).
|
For more information about this role, visit the [GitHub repository](https://github.com/kevinveenbirkenbach/computer-playbook/tree/master/roles/docker-mailu).
|
||||||
|
|
||||||
This README.md was optimized with [Chat-GPT](https://chat.openai.com/share/d1ad5ce7-3aa1-4a14-a959-63393b39374a)
|
This README.md was optimized with [Chat-GPT](https://chat.openai.com/share/d1ad5ce7-3aa1-4a14-a959-63393b39374a)
|
@ -1,3 +1,3 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
- systemd_notifier
|
- systemd_notifier
|
||||||
|
@ -6,7 +6,7 @@
|
|||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
vars:
|
vars:
|
||||||
client_max_body_size: "31M"
|
client_max_body_size: "31M"
|
||||||
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create {{path_docker_compose_files}}mailu"
|
- name: "create {{path_docker_compose_files}}mailu"
|
||||||
|
@ -26,7 +26,7 @@ docker exec -it -u root mastodon-web-1 chown -R 991:991 public
|
|||||||
```
|
```
|
||||||
|
|
||||||
## further information
|
## further information
|
||||||
- https://goneuland.de/mastodon-mit-server_docker-und-traefik-installieren/
|
- https://goneuland.de/mastodon-mit-docker-und-traefik-installieren/
|
||||||
- https://gist.github.com/TrillCyborg/84939cd4013ace9960031b803a0590c4
|
- https://gist.github.com/TrillCyborg/84939cd4013ace9960031b803a0590c4
|
||||||
- https://www.2daygeek.com/linux-command-check-website-is-up-down-alive/
|
- https://www.2daygeek.com/linux-command-check-website-is-up-down-alive/
|
||||||
- https://vitobotta.com/2022/11/07/setting-up-a-personal-mastodon-instance/
|
- https://vitobotta.com/2022/11/07/setting-up-a-personal-mastodon-instance/
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -6,7 +6,7 @@ map $http_upgrade $connection_upgrade {
|
|||||||
server {
|
server {
|
||||||
server_name {{domain}};
|
server_name {{domain}};
|
||||||
|
|
||||||
{% include 'roles/server_native-letsencrypt/templates/ssl_header.j2' %}
|
{% include 'roles/native-letsencrypt/templates/ssl_header.j2' %}
|
||||||
|
|
||||||
keepalive_timeout 70;
|
keepalive_timeout 70;
|
||||||
sendfile on;
|
sendfile on;
|
||||||
@ -23,7 +23,7 @@ server {
|
|||||||
|
|
||||||
add_header Strict-Transport-Security "max-age=31536000";
|
add_header Strict-Transport-Security "max-age=31536000";
|
||||||
|
|
||||||
{% include 'roles/server_native-docker-reverse-proxy/templates/proxy_pass.conf.j2' %}
|
{% include 'roles/native-docker-reverse-proxy/templates/proxy_pass.conf.j2' %}
|
||||||
|
|
||||||
location /api/v1/streaming {
|
location /api/v1/streaming {
|
||||||
proxy_set_header Host $host;
|
proxy_set_header Host $host;
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_docker-mediawiki
|
# role docker-mediawiki
|
||||||
## Generate LocalSettings.php
|
## Generate LocalSettings.php
|
||||||
Login to the container:
|
Login to the container:
|
||||||
|
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -2,7 +2,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "docker mediawiki"
|
- name: "docker mediawiki"
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: create data folder
|
- name: create data folder
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_docker-nextcloud
|
# role docker-nextcloud
|
||||||
|
|
||||||
## precondition
|
## precondition
|
||||||
|
|
||||||
@ -58,7 +58,7 @@ cd {{path_docker_compose_files}}nextcloud &&
|
|||||||
docker-compose down &&
|
docker-compose down &&
|
||||||
docker exec -i nextcloud_database_1 mysql -u nextcloud -pPASSWORT nextcloud < "/Backups/$(sha256sum /etc/machine-id | head -c 64)/docker-volume-backup/latest/nextcloud_database/sql/backup.sql" &&
|
docker exec -i nextcloud_database_1 mysql -u nextcloud -pPASSWORT nextcloud < "/Backups/$(sha256sum /etc/machine-id | head -c 64)/docker-volume-backup/latest/nextcloud_database/sql/backup.sql" &&
|
||||||
cd {{path_administrator_scripts}}docker-volume-backup &&
|
cd {{path_administrator_scripts}}docker-volume-backup &&
|
||||||
bash ./server_docker-volume-recover.sh "nextcloud_data" "$(sha256sum /etc/machine-id | head -c 64)"
|
bash ./docker-volume-recover.sh "nextcloud_data" "$(sha256sum /etc/machine-id | head -c 64)"
|
||||||
```
|
```
|
||||||
|
|
||||||
## database
|
## database
|
||||||
@ -125,13 +125,13 @@ Until NC24 MariaDB version has to be used.
|
|||||||
## further information
|
## further information
|
||||||
- https://github.com/nextcloud/docker/blob/master/.examples/docker-compose/with-nginx-proxy/mariadb/fpm/docker-compose.yml
|
- https://github.com/nextcloud/docker/blob/master/.examples/docker-compose/with-nginx-proxy/mariadb/fpm/docker-compose.yml
|
||||||
- https://goneuland.de/nextcloud-upgrade-auf-neue-versionen-mittels-docker/
|
- https://goneuland.de/nextcloud-upgrade-auf-neue-versionen-mittels-docker/
|
||||||
- https://help.nextcloud.com/t/cant-start-nextcloud-because-the-version-of-the-data-is-higher-than-the-server_docker-image-version-and-downgrading-is-not-supported/109438
|
- https://help.nextcloud.com/t/cant-start-nextcloud-because-the-version-of-the-data-is-higher-than-the-docker-image-version-and-downgrading-is-not-supported/109438
|
||||||
- https://github.com/nextcloud/docker/issues/1302
|
- https://github.com/nextcloud/docker/issues/1302
|
||||||
- https://help.nextcloud.com/t/update-to-22-failed-with-database-error-updated/120682
|
- https://help.nextcloud.com/t/update-to-22-failed-with-database-error-updated/120682
|
||||||
- https://help.nextcloud.com/t/nc-update-to-21-0-0-beta1-exception-database-error/101124/4
|
- https://help.nextcloud.com/t/nc-update-to-21-0-0-beta1-exception-database-error/101124/4
|
||||||
- https://wolfgang.gassler.org/reset-password-mariadb-mysql-docker/
|
- https://wolfgang.gassler.org/reset-password-mariadb-mysql-docker/
|
||||||
- https://unix.stackexchange.com/questions/478855/ansible-server_docker-container-and-depends-on
|
- https://unix.stackexchange.com/questions/478855/ansible-docker-container-and-depends-on
|
||||||
- https://github.com/gdiepen/server_docker-convenience-scripts
|
- https://github.com/gdiepen/docker-convenience-scripts
|
||||||
- https://help.nextcloud.com/t/several-issues-after-upgrading-to-nextcloud-21/113118/3
|
- https://help.nextcloud.com/t/several-issues-after-upgrading-to-nextcloud-21/113118/3
|
||||||
- https://forum.openmediavault.org/index.php?thread/31782-server_docker-nextcloud-talk-plugin-and-turnserver/
|
- https://forum.openmediavault.org/index.php?thread/31782-docker-nextcloud-talk-plugin-and-turnserver/
|
||||||
- https://help.nextcloud.com/t/nextcloud-talk-im-server_docker-container-turn-server-auf-server_docker-host-kein-video/84133/10
|
- https://help.nextcloud.com/t/nextcloud-talk-im-docker-container-turn-server-auf-docker-host-kein-video/84133/10
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -2,7 +2,7 @@ server
|
|||||||
{
|
{
|
||||||
server_name {{domain}};
|
server_name {{domain}};
|
||||||
|
|
||||||
{% include 'roles/server_native-letsencrypt/templates/ssl_header.j2' %}
|
{% include 'roles/native-letsencrypt/templates/ssl_header.j2' %}
|
||||||
|
|
||||||
# Remove X-Powered-By, which is an information leak
|
# Remove X-Powered-By, which is an information leak
|
||||||
fastcgi_hide_header X-Powered-By;
|
fastcgi_hide_header X-Powered-By;
|
||||||
@ -12,7 +12,7 @@ server
|
|||||||
client_body_buffer_size 400M;
|
client_body_buffer_size 400M;
|
||||||
fastcgi_buffers 64 4K;
|
fastcgi_buffers 64 4K;
|
||||||
|
|
||||||
{% include 'roles/server_native-docker-reverse-proxy/templates/proxy_pass.conf.j2' %}
|
{% include 'roles/native-docker-reverse-proxy/templates/proxy_pass.conf.j2' %}
|
||||||
|
|
||||||
location ^~ /.well-known {
|
location ^~ /.well-known {
|
||||||
rewrite ^/\.well-known/host-meta\.json /public.php?service=host-meta-json last;
|
rewrite ^/\.well-known/host-meta\.json /public.php?service=host-meta-json last;
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -6,7 +6,7 @@ upstream backend {
|
|||||||
server {
|
server {
|
||||||
server_name {{domain}};
|
server_name {{domain}};
|
||||||
|
|
||||||
{% include 'roles/server_native-letsencrypt/templates/ssl_header.j2' %}
|
{% include 'roles/native-letsencrypt/templates/ssl_header.j2' %}
|
||||||
|
|
||||||
##
|
##
|
||||||
# Application
|
# Application
|
||||||
|
@ -1,6 +1,6 @@
|
|||||||
# Pixelfed Docker Server Role
|
# Pixelfed Docker Server Role
|
||||||
|
|
||||||
This README details the steps to manage your Pixelfed instance running in a Docker container. This setup is part of the server_docker-pixelfed role within Kevin Veen-Birkenbach's computer-playbook located at [this GitHub repository](https://github.com/kevinveenbirkenbach/computer-playbook/tree/master/roles/server_docker-pixelfed).
|
This README details the steps to manage your Pixelfed instance running in a Docker container. This setup is part of the docker-pixelfed role within Kevin Veen-Birkenbach's computer-playbook located at [this GitHub repository](https://github.com/kevinveenbirkenbach/computer-playbook/tree/master/roles/docker-pixelfed).
|
||||||
|
|
||||||
## Accessing Services
|
## Accessing Services
|
||||||
|
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create {{docker_compose_path}}"
|
- name: "create {{docker_compose_path}}"
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -2,6 +2,6 @@
|
|||||||
|
|
||||||
## further information
|
## further information
|
||||||
- https://github.com/p-wojt/roulette-wheel
|
- https://github.com/p-wojt/roulette-wheel
|
||||||
- https://dev.to/ms314006/how-to-package-front-end-projects-into-server_docker-images-and-use-it-with-webpack-go3
|
- https://dev.to/ms314006/how-to-package-front-end-projects-into-docker-images-and-use-it-with-webpack-go3
|
||||||
- https://stackoverflow.com/questions/53178820/dockerfile-to-run-nodejs-static-content-in-server_docker-container
|
- https://stackoverflow.com/questions/53178820/dockerfile-to-run-nodejs-static-content-in-docker-container
|
||||||
- https://stackoverflow.com/questions/43619644/i-am-getting-an-invalid-host-header-message-when-connecting-to-webpack-dev-ser
|
- https://stackoverflow.com/questions/43619644/i-am-getting-an-invalid-host-header-message-when-connecting-to-webpack-dev-ser
|
@ -3,7 +3,7 @@
|
|||||||
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
command: certbot certonly --agree-tos --email {{administrator_email}} --non-interactive --webroot -w /var/lib/letsencrypt/ -d {{domain}}
|
||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{domain}}.conf
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
- name: "create {{docker_compose_path}}"
|
- name: "create {{docker_compose_path}}"
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_docker-wordpress
|
# role docker-wordpress
|
||||||
|
|
||||||
## database
|
## database
|
||||||
|
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -7,7 +7,7 @@
|
|||||||
vars:
|
vars:
|
||||||
client_max_body_size: "2M"
|
client_max_body_size: "2M"
|
||||||
domain: "{{item}}"
|
domain: "{{item}}"
|
||||||
template: src=roles/server_native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{ item }}.conf
|
template: src=roles/native-docker-reverse-proxy/templates/domain.conf.j2 dest=/etc/nginx/conf.d/{{ item }}.conf
|
||||||
loop: "{{domains}}"
|
loop: "{{domains}}"
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_docker-yourls
|
# role docker-yourls
|
||||||
|
|
||||||
## database
|
## database
|
||||||
|
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-reverse-proxy
|
- native-docker-reverse-proxy
|
||||||
|
@ -4,7 +4,7 @@
|
|||||||
|
|
||||||
- name: configure {{domain}}.conf
|
- name: configure {{domain}}.conf
|
||||||
template:
|
template:
|
||||||
src: "roles/server_native-docker-reverse-proxy/templates/domain.conf.j2"
|
src: "roles/native-docker-reverse-proxy/templates/domain.conf.j2"
|
||||||
dest: "/etc/nginx/conf.d/{{domain}}.conf"
|
dest: "/etc/nginx/conf.d/{{domain}}.conf"
|
||||||
notify: restart nginx
|
notify: restart nginx
|
||||||
|
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_native-backups-consumer
|
# role native-backups-consumer
|
||||||
|
|
||||||
## goal
|
## goal
|
||||||
This script allows to pull backups from a remote server.
|
This script allows to pull backups from a remote server.
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-git
|
- native-git
|
||||||
- systemd_notifier
|
- systemd_notifier
|
||||||
- independent_backups-cleanup-timer
|
- independent_backups-cleanup-timer
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-sshd
|
- native-sshd
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_native-backups-provider-user
|
# role native-backups-provider-user
|
||||||
User for backups
|
User for backups
|
||||||
|
|
||||||
## todo
|
## todo
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_native-backups-provider-host
|
# role native-backups-provider-host
|
||||||
|
|
||||||
## todo
|
## todo
|
||||||
- add full system backup
|
- add full system backup
|
||||||
|
@ -1,3 +1,3 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-backups-provider-user
|
- native-backups-provider-user
|
||||||
- independent_backups-cleanup-timer
|
- independent_backups-cleanup-timer
|
||||||
|
@ -1,3 +1,3 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-nginx
|
- native-nginx
|
||||||
- systemd_notifier
|
- systemd_notifier
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
# server_native-docker-compose-restart-unhealthy
|
# native-docker-compose-restart-unhealthy
|
||||||
docker-compose restart for containers which are unhealty or excited
|
docker-compose restart for containers which are unhealty or excited
|
@ -1 +1 @@
|
|||||||
docker_health_check_folder: "{{path_administrator_scripts}}server_docker-health-check/"
|
docker_health_check_folder: "{{path_administrator_scripts}}docker-health-check/"
|
@ -1,4 +1,4 @@
|
|||||||
# role server_native-docker-reverse-proxy
|
# role native-docker-reverse-proxy
|
||||||
|
|
||||||
Uses nginx as an [reverse proxy](https://en.wikipedia.org/wiki/Reverse_proxy) for local docker applications.
|
Uses nginx as an [reverse proxy](https://en.wikipedia.org/wiki/Reverse_proxy) for local docker applications.
|
||||||
|
|
||||||
|
@ -1,3 +1,3 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker
|
- native-docker
|
||||||
- server_native-https-server
|
- native-https-server
|
||||||
|
@ -6,7 +6,7 @@ server
|
|||||||
client_max_body_size {{ client_max_body_size }};
|
client_max_body_size {{ client_max_body_size }};
|
||||||
{% endif %}
|
{% endif %}
|
||||||
|
|
||||||
{% include 'roles/server_native-letsencrypt/templates/ssl_header.j2' %}
|
{% include 'roles/native-letsencrypt/templates/ssl_header.j2' %}
|
||||||
|
|
||||||
{% include 'proxy_pass.conf.j2' %}
|
{% include 'proxy_pass.conf.j2' %}
|
||||||
|
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-git
|
- native-git
|
||||||
- server_native-backups-provider
|
- native-backups-provider
|
||||||
- systemd_notifier
|
- systemd_notifier
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_native-docker
|
# role native-docker
|
||||||
|
|
||||||
## maintanance
|
## maintanance
|
||||||
|
|
||||||
@ -16,4 +16,4 @@
|
|||||||
- https://forums.docker.com/t/mysql-slow-performance-in-docker/37179/21
|
- https://forums.docker.com/t/mysql-slow-performance-in-docker/37179/21
|
||||||
|
|
||||||
## see
|
## see
|
||||||
- https://stackoverflow.com/questions/37599128/server_docker-how-do-you-disable-auto-restart-on-a-container
|
- https://stackoverflow.com/questions/37599128/docker-how-do-you-disable-auto-restart-on-a-container
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-docker-volume-backup
|
- native-docker-volume-backup
|
||||||
- server_user-administrator
|
- user-administrator
|
||||||
- server_native-docker-health-check
|
- native-docker-health-check
|
||||||
- server_native-docker-compose-restart-unhealthy
|
- native-docker-compose-restart-unhealthy
|
||||||
|
@ -1,3 +1,3 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-https-server
|
- native-https-server
|
||||||
- server_native-git
|
- native-git
|
||||||
|
@ -3,7 +3,7 @@ server
|
|||||||
{
|
{
|
||||||
server_name {{domain}};
|
server_name {{domain}};
|
||||||
|
|
||||||
{% include 'roles/server_native-letsencrypt/templates/ssl_header.j2' %}
|
{% include 'roles/native-letsencrypt/templates/ssl_header.j2' %}
|
||||||
|
|
||||||
charset utf-8;
|
charset utf-8;
|
||||||
|
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-https-server
|
- native-https-server
|
||||||
|
@ -1,5 +1,5 @@
|
|||||||
server {
|
server {
|
||||||
server_name {{domain}};
|
server_name {{domain}};
|
||||||
{% include 'roles/server_native-letsencrypt/templates/ssl_header.j2' %}
|
{% include 'roles/native-letsencrypt/templates/ssl_header.j2' %}
|
||||||
return 301 https://{{target_domain}}$request_uri;
|
return 301 https://{{target_domain}}$request_uri;
|
||||||
}
|
}
|
||||||
|
@ -1,3 +1,3 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-nginx
|
- native-nginx
|
||||||
- server_native-letsencrypt
|
- native-letsencrypt
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_native-journalctl
|
# role native-journalctl
|
||||||
|
|
||||||
# live monitoring
|
# live monitoring
|
||||||
|
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-journalctl-health-check
|
- native-journalctl-health-check
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-certbot-nginx
|
- native-certbot-nginx
|
||||||
|
@ -1,4 +1,4 @@
|
|||||||
# role server_native-nginx
|
# role native-nginx
|
||||||
|
|
||||||
## debug
|
## debug
|
||||||
```bash
|
```bash
|
||||||
@ -11,4 +11,4 @@ journalctl -f -u nginx
|
|||||||
- https://www.nginx.com/blog/performance-tuning-tips-tricks/
|
- https://www.nginx.com/blog/performance-tuning-tips-tricks/
|
||||||
- https://medium.com/pixelpoint/best-practices-for-cache-control-settings-for-your-website-ff262b38c5a2
|
- https://medium.com/pixelpoint/best-practices-for-cache-control-settings-for-your-website-ff262b38c5a2
|
||||||
- https://www.nginx.com/blog/nginx-caching-guide/
|
- https://www.nginx.com/blog/nginx-caching-guide/
|
||||||
- https://meta.discourse.org/t/using-nginx-as-proxy-server-is-very-slow-but-it-is-very-fast-if-using-nginx-in-server_docker-why/168972
|
- https://meta.discourse.org/t/using-nginx-as-proxy-server-is-very-slow-but-it-is-very-fast-if-using-nginx-in-docker-why/168972
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_user-administrator
|
- user-administrator
|
||||||
|
@ -1,7 +1,7 @@
|
|||||||
# role server_native-sshd
|
# role native-sshd
|
||||||
## dependencies
|
## dependencies
|
||||||
This role depends on that a well configured user administrator exist.
|
This role depends on that a well configured user administrator exist.
|
||||||
For this reason this role depends on the role server_user-administrator.
|
For this reason this role depends on the role user-administrator.
|
||||||
A wrong configuration of this role can lead to an lockout of the system which just will be reversal via chroot.
|
A wrong configuration of this role can lead to an lockout of the system which just will be reversal via chroot.
|
||||||
|
|
||||||
## PAM
|
## PAM
|
||||||
|
@ -1,2 +1,2 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_user-administrator
|
- user-administrator
|
||||||
|
@ -1,3 +1,3 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_user-alarm
|
- user-alarm
|
||||||
- server_native-sshd
|
- native-sshd
|
||||||
|
@ -1,3 +1,3 @@
|
|||||||
dependencies:
|
dependencies:
|
||||||
- server_native-sudo
|
- native-sudo
|
||||||
- independent_user-administrator
|
- independent_user-administrator
|
||||||
|
Loading…
Reference in New Issue
Block a user