infrastructure/ansible/main.yml
Jake Howard 935b099c4f
All checks were successful
/ terraform (push) Successful in 30s
/ ansible (push) Successful in 1m38s
Decommission upload
It was never really used for anything, and I want to replace it with something better eventually
2023-11-07 21:17:21 +00:00

132 lines
2 KiB
YAML

- hosts: all
roles:
- base
- role: realorangeone.reflector
when: ansible_os_family == 'Archlinux'
- role: paccache
when: ansible_os_family == 'Archlinux'
- hosts: casey
roles:
- gateway
- nebula
- fail2ban_ssh
- hosts:
- pve
- casey
- ingress
- walker
- tang
roles:
- role: geerlingguy.ntp
become: true
vars:
ntp_timezone: "{{ timezone }}"
ntp_manage_config: true
- hosts:
- pve-docker
- forrest
- walker
- renovate
- gitea-runner
- pve-dokku
roles:
- role: geerlingguy.docker
become: true
vars:
docker_install_compose_plugin: "{{ ansible_os_family == 'Debian' }}"
docker_users:
- "{{ me.user }}"
- docker_cleanup
- hosts:
- pve-docker
- forrest
- walker
- pve-dokku
roles:
- db_auto_backup
- hosts:
- pve-docker
- walker
roles:
- traefik
- hosts: pve-docker
roles:
- pve_docker
- yourls
- pve_nebula_route
- privatebin
- vaultwarden
- tandoor
- mastodon
- gitea
- vikunja
- authentik
- hosts: ingress
roles:
- role: nginxinc.nginx # The nginx in debian's repos is very old
become: true
- ingress
- nebula
- hosts: pve
roles:
- role: ironicbadger.proxmox_nag_removal
become: true
- zfs
- pve_nebula_route
- role: ironicbadger.snapraid
become: true
- role: prometheus.prometheus.node_exporter
become: true
- hosts: forrest
roles:
- forrest
- pve_nebula_route
- hosts: qbittorrent
roles:
- qbittorrent
- http_proxy
- hosts: walker
roles:
- nebula
- plausible
- restic
- commento
- website
- remark42
- hosts: jellyfin
roles:
- jellyfin
- hosts: restic
roles:
- restic
- hosts: gitea-runner
roles:
- gitea_runner
- hosts: renovate
roles:
- renovate
- hosts: tang
roles:
- pihole
- role: prometheus.prometheus.node_exporter
become: true
- hosts: pve-dokku
roles:
- dokku