2020-12-26 16:22:59 +01:00
|
|
|
---
|
|
|
|
### mgrote.restic
|
2020-12-26 16:41:52 +01:00
|
|
|
restic_folders_to_backup: "/usr/local /etc /root /var/lib /home"
|
2020-12-26 16:22:59 +01:00
|
|
|
### oefenweb.ufw
|
|
|
|
ufw_rules:
|
|
|
|
- rule: allow
|
|
|
|
to_port: 22
|
|
|
|
protocol: tcp
|
|
|
|
comment: 'ssh'
|
2021-10-06 10:18:23 +02:00
|
|
|
from_ip: 0.0.0.0/0
|
2020-12-26 16:22:59 +01:00
|
|
|
- rule: allow
|
|
|
|
to_port: 3000
|
|
|
|
protocol: tcp
|
|
|
|
comment: 'gitea'
|
2021-10-06 10:18:23 +02:00
|
|
|
from_ip: 0.0.0.0/0
|
2020-12-26 16:22:59 +01:00
|
|
|
- rule: allow
|
|
|
|
to_port: 2222
|
|
|
|
protocol: tcp
|
|
|
|
comment: 'gitea'
|
2021-10-06 10:18:23 +02:00
|
|
|
from_ip: 0.0.0.0/0
|
2021-06-16 21:57:28 +02:00
|
|
|
- rule: allow
|
|
|
|
to_port: 4949
|
|
|
|
protocol: tcp
|
|
|
|
comment: 'munin'
|
|
|
|
from_ip: 192.168.2.144/24
|
2020-12-26 16:22:59 +01:00
|
|
|
### tmaurice.gitea
|
2021-10-11 14:28:47 +02:00
|
|
|
gitea_version: "1.15.4"
|
2020-12-26 16:22:59 +01:00
|
|
|
gitea_app_name: "Gitea"
|
|
|
|
gitea_user: "gitea"
|
|
|
|
gitea_home: "/var/lib/gitea"
|
|
|
|
gitea_repository_root: "{{ gitea_home }}"
|
|
|
|
gitea_user_repo_limit: 300
|
|
|
|
gitea_root_url: https://git.mgrote.net
|
|
|
|
gitea_offline_mode: true
|
|
|
|
gitea_lfs_server_enabled: false
|
|
|
|
gitea_secret_key: "{{ lookup('keepass', 'gitea_secret_key', 'password') }}"
|
|
|
|
gitea_internal_token: "{{ lookup('keepass', 'gitea_internal_token', 'password') }}"
|
|
|
|
gitea_disable_git_hooks: false
|
|
|
|
gitea_show_user_email: false
|
|
|
|
gitea_disable_gravatar: true
|
|
|
|
gitea_enable_captcha: true
|
|
|
|
gitea_only_allow_external_registration: false
|
|
|
|
gitea_enable_notify_mail: false
|
|
|
|
gitea_force_private: false
|
|
|
|
gitea_oauth2_enabled: false
|
|
|
|
gitea_repo_indexer_enabled: true
|
|
|
|
gitea_extra_config: ""
|
2021-05-20 11:44:41 +02:00
|
|
|
gitea_backup_on_upgrade: true
|
2020-12-26 16:22:59 +01:00
|
|
|
|
|
|
|
gitea_mailer_enabled: true
|
|
|
|
gitea_mailer_skip_verify: false
|
|
|
|
gitea_mailer_tls_enabled: true
|
|
|
|
gitea_mailer_host: smtp.strato.de:465
|
|
|
|
gitea_mailer_from: info@mgrote.net
|
|
|
|
gitea_mailer_user: "info@mgrote.net"
|
|
|
|
gitea_mailer_password: "{{ lookup('keepass', 'postfix_absender_passwort', 'password') }}"
|
|
|
|
gitea_mailer_type: smtp
|
|
|
|
|
|
|
|
gitea_db_type: sqlite3
|
|
|
|
gitea_db_path: "{{ gitea_home }}/data/gitea.db" # for sqlite3
|
|
|
|
|
|
|
|
gitea_ssh_listen: 0.0.0.0
|
|
|
|
gitea_ssh_domain: git.mgrote.net
|
|
|
|
gitea_ssh_port: 2222
|
|
|
|
gitea_start_ssh: true
|
|
|
|
|
|
|
|
gitea_http_domain: git.mgrote.net
|
|
|
|
gitea_http_listen: 0.0.0.0
|
|
|
|
gitea_http_port: 3000
|
|
|
|
gitea_disable_http_git: false
|
|
|
|
gitea_protocol: http
|
|
|
|
|
|
|
|
gitea_show_registration_button: false
|
2020-12-26 16:35:10 +01:00
|
|
|
gitea_require_signin: false
|
2020-12-26 16:22:59 +01:00
|
|
|
gitea_disable_registration: true
|
2020-12-27 17:43:16 +01:00
|
|
|
|
|
|
|
gitea_fail2ban_enabled: true
|
|
|
|
gitea_fail2ban_jail_maxretry: 10
|
|
|
|
gitea_fail2ban_jail_findtime: 300
|
|
|
|
gitea_fail2ban_jail_bantime: 300
|