kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-10-10 02:38:10 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
27b89d8fb6b4da48ce29cdbe22e81aa516e77a5b
computer-playbook/roles/web-app-taiga/tasks/01_administrator.yml
Kevin Veen-Birkenbach 27b89d8fb6 Taiga: refactor service naming & resource limits 
Add CPU/memory/pids limits for taiga, async, front, gateway, events, async-rabbitmq, events-rabbitmq, manager, and protected. Align manager service usage (was taiga-manage) in admin tasks and inits compose. Switch to variable-driven service names (TAIGA_* vars), add container_name patterns, normalize volume mappings via TAIGA_VOLUME_STATIC/MEDIA, fix depends_on to use TAIGA_* vars, and set RabbitMQ hostnames from vars. Remove obsolete Development.md.

Conversation reference: https://chatgpt.com/share/68da83b7-0cb4-800f-9702-d8a2d4ebea71  (replace with this chat’s share link)
2025-09-29 15:04:12 +02:00

39 lines
2.2 KiB
YAML
Raw Blame History

- name: "Create Taiga admin user (idempotent)"
command: >
docker compose
-f {{ TAIGA_DOCKER_COMPOSE_PATH }}
-f {{ TAIGA_DOCKER_COMPOSE_INIT_PATH }}
run --rm {{ TAIGA_MANAGER_SERVICE }}
createsuperuser --noinput
--username {{ TAIGA_SUPERUSER_NAME }}
--email {{ TAIGA_SUPERUSER_EMAIL }}
args:
chdir: "{{ docker_compose.directories.instance }}"
register: taiga_create_admin
changed_when: taiga_create_admin.rc == 0
failed_when: >
taiga_create_admin.rc != 0 and
('already taken' not in (taiga_create_admin.stdout + taiga_create_admin.stderr) | lower) and
('already exists' not in (taiga_create_admin.stdout + taiga_create_admin.stderr) | lower) and
('integrityerror' not in (taiga_create_admin.stdout + taiga_create_admin.stderr) | lower)
no_log: "{{ MASK_CREDENTIALS_IN_LOGS | bool }}"
- name: "Upsert Taiga admin via manage.py shell"
command: >
docker compose
-f {{ TAIGA_DOCKER_COMPOSE_PATH }}
-f {{ TAIGA_DOCKER_COMPOSE_INIT_PATH }}
run --rm
-e DJANGO_SUPERUSER_PASSWORD={{ TAIGA_SUPERUSER_PASSWORD | quote }}
{{ TAIGA_MANAGER_SERVICE }}
shell -c
"from django.contrib.auth import get_user_model; import os; U=get_user_model(); u,created=U.objects.get_or_create(username='{{ TAIGA_SUPERUSER_NAME }}'); changed=bool(created); old=(u.email,u.is_staff,u.is_superuser,u.is_active); u.email='{{ TAIGA_SUPERUSER_EMAIL }}'; u.is_staff=True; u.is_superuser=True; u.is_active=True; changed = changed or old!=(u.email,u.is_staff,u.is_superuser,u.is_active); pwd=os.environ.get('DJANGO_SUPERUSER_PASSWORD'); assert pwd, 'Missing DJANGO_SUPERUSER_PASSWORD'; need_pwd = not u.check_password(pwd); changed = changed or need_pwd; need_pwd and u.set_password(pwd); u.save(); print('CHANGED=1' if changed else 'CHANGED=0')"
args:
chdir: "{{ docker_compose.directories.instance }}"
register: taiga_upsert_admin
when: taiga_create_admin.rc != 0
changed_when: "'CHANGED=1' in ((taiga_upsert_admin.stdout | default('')) + (taiga_upsert_admin.stderr | default('')))"
no_log: "{{ MASK_CREDENTIALS_IN_LOGS | bool }}"
async: "{{ ASYNC_TIME if ASYNC_ENABLED | bool else omit }}"
poll: "{{ ASYNC_POLL if ASYNC_ENABLED | bool else omit }}"
Reference in New Issue View Git Blame Copy Permalink