Init a GitLab server
Some day i'll make up my mind on which server to use, honest!
This commit is contained in:
parent
5ac5e2f8ab
commit
c7bde8b3dd
7 changed files with 50 additions and 0 deletions
|
@ -13,3 +13,4 @@ roles:
|
||||||
name: proxmox-nag-removal
|
name: proxmox-nag-removal
|
||||||
- src: chmduquesne.iptables_persistent
|
- src: chmduquesne.iptables_persistent
|
||||||
- src: rossmcdonald.telegraf
|
- src: rossmcdonald.telegraf
|
||||||
|
- src: geerlingguy.gitlab
|
||||||
|
|
|
@ -15,3 +15,5 @@ pve_hosts:
|
||||||
external_ip: 192.168.2.200
|
external_ip: 192.168.2.200
|
||||||
qbittorrent:
|
qbittorrent:
|
||||||
ip: 10.23.1.21
|
ip: 10.23.1.21
|
||||||
|
gitlab:
|
||||||
|
ip: 10.23.1.43
|
||||||
|
|
|
@ -10,3 +10,4 @@ jellyfin
|
||||||
forrest
|
forrest
|
||||||
qbittorrent
|
qbittorrent
|
||||||
restic
|
restic
|
||||||
|
gitlab
|
||||||
|
|
|
@ -95,3 +95,7 @@
|
||||||
- hosts: restic
|
- hosts: restic
|
||||||
roles:
|
roles:
|
||||||
- restic
|
- restic
|
||||||
|
|
||||||
|
- hosts: gitlab
|
||||||
|
roles:
|
||||||
|
- gitlab
|
||||||
|
|
36
ansible/roles/gitlab/files/gitlab.rb
Normal file
36
ansible/roles/gitlab/files/gitlab.rb
Normal file
|
@ -0,0 +1,36 @@
|
||||||
|
external_url 'https://{{ pve_hosts.gitlab.ip }}' # Obviously temporary
|
||||||
|
nginx['redirect_http_to_https'] = false
|
||||||
|
alertmanager['enable'] = false
|
||||||
|
prometheus_monitoring['enable'] = false
|
||||||
|
grafana['enable'] = false
|
||||||
|
nginx['status'] = {
|
||||||
|
'enable' => false
|
||||||
|
}
|
||||||
|
|
||||||
|
nginx['ssl_certificate'] = "/etc/ssl/certs/ssl-cert-snakeoil.pem"
|
||||||
|
nginx['ssl_certificate_key'] = "/etc/ssl/private/ssl-cert-snakeoil.key"
|
||||||
|
letsencrypt['enable'] = false
|
||||||
|
|
||||||
|
gitlab_rails['time_zone'] = '{{ TZ }}'
|
||||||
|
|
||||||
|
# https://docs.gitlab.com/omnibus/settings/memory_constrained_envs.html
|
||||||
|
puma['worker_processes'] = 2
|
||||||
|
sidekiq['max_concurrency'] = 5
|
||||||
|
gitaly['ruby_max_rss'] = 200_000_000
|
||||||
|
gitaly['cgroups_count'] = 2
|
||||||
|
gitaly['cgroups_mountpoint'] = '/sys/fs/cgroup'
|
||||||
|
gitaly['cgroups_hierarchy_root'] = 'gitaly'
|
||||||
|
gitaly['cgroups_memory_enabled'] = true
|
||||||
|
gitaly['cgroups_memory_limit'] = 250000
|
||||||
|
gitaly['cgroups_cpu_enabled'] = true
|
||||||
|
gitaly['cgroups_cpu_shares'] = 512
|
||||||
|
gitaly['env'] = {
|
||||||
|
'GITALY_COMMAND_SPAWN_MAX_PARALLEL' => '2'
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
gitlab_rails['gitlab_default_theme'] = 2
|
||||||
|
|
||||||
|
nginx['real_ip_header'] = 'X-Forwarded-For'
|
||||||
|
#nginx['real_ip_trusted_addresses'] = ['172.80.0.0/16']
|
||||||
|
#gitlab_rails['trusted_proxies'] = ['172.80.0.0/16']
|
4
ansible/roles/gitlab/tasks/main.yml
Normal file
4
ansible/roles/gitlab/tasks/main.yml
Normal file
|
@ -0,0 +1,4 @@
|
||||||
|
- name: Install and configure GitLab
|
||||||
|
import_role:
|
||||||
|
name: geerlingguy.gitlab
|
||||||
|
become: true
|
2
ansible/roles/gitlab/vars/main.yml
Normal file
2
ansible/roles/gitlab/vars/main.yml
Normal file
|
@ -0,0 +1,2 @@
|
||||||
|
gitlab_config_template: files/gitlab.rb
|
||||||
|
gitlab_create_self_signed_cert: false
|
Loading…
Reference in a new issue