mg
416c36f97c
motd unit house plugins vereinheitlicht aufräumen user vereinheitlicht samba users aufgeräumt aussortiert apc pwr systemd plugin kvm plugins lvm plguin acng plugin munin user chrony fur alle gruppe playbook docker vars playbook firewall munin für alle Co-authored-by: Michael Grote <michael.grote@posteo.de> Reviewed-on: mg/ansible#116 Co-Authored-By: mg <mg@noreply.git.mgrote.net> Co-Committed-By: mg <mg@noreply.git.mgrote.net>
80 lines
2.3 KiB
YAML
80 lines
2.3 KiB
YAML
---
|
|
### mgrote.restic
|
|
restic_folders_to_backup: "/usr/local /etc /root /var/lib /home"
|
|
### oefenweb.ufw
|
|
ufw_rules:
|
|
- rule: allow
|
|
to_port: 22
|
|
protocol: tcp
|
|
comment: 'ssh'
|
|
from_ip: 192.168.2.0/24
|
|
- rule: allow
|
|
to_port: 3000
|
|
protocol: tcp
|
|
comment: 'gitea'
|
|
from_ip: 192.168.2.0/24
|
|
- rule: allow
|
|
to_port: 2222
|
|
protocol: tcp
|
|
comment: 'gitea'
|
|
from_ip: 192.168.2.0/24
|
|
- rule: allow
|
|
to_port: 4949
|
|
protocol: tcp
|
|
comment: 'munin'
|
|
from_ip: 192.168.2.144/24
|
|
### tmaurice.gitea
|
|
gitea_version: "1.13.7"
|
|
gitea_app_name: "Gitea"
|
|
gitea_user: "gitea"
|
|
gitea_home: "/var/lib/gitea"
|
|
gitea_repository_root: "{{ gitea_home }}"
|
|
gitea_user_repo_limit: 300
|
|
gitea_root_url: https://git.mgrote.net
|
|
gitea_offline_mode: true
|
|
gitea_lfs_server_enabled: false
|
|
gitea_secret_key: "{{ lookup('keepass', 'gitea_secret_key', 'password') }}"
|
|
gitea_internal_token: "{{ lookup('keepass', 'gitea_internal_token', 'password') }}"
|
|
gitea_disable_git_hooks: false
|
|
gitea_show_user_email: false
|
|
gitea_disable_gravatar: true
|
|
gitea_enable_captcha: true
|
|
gitea_only_allow_external_registration: false
|
|
gitea_enable_notify_mail: false
|
|
gitea_force_private: false
|
|
gitea_oauth2_enabled: false
|
|
gitea_repo_indexer_enabled: true
|
|
gitea_extra_config: ""
|
|
gitea_backup_on_upgrade: true
|
|
|
|
gitea_mailer_enabled: true
|
|
gitea_mailer_skip_verify: false
|
|
gitea_mailer_tls_enabled: true
|
|
gitea_mailer_host: smtp.strato.de:465
|
|
gitea_mailer_from: info@mgrote.net
|
|
gitea_mailer_user: "info@mgrote.net"
|
|
gitea_mailer_password: "{{ lookup('keepass', 'postfix_absender_passwort', 'password') }}"
|
|
gitea_mailer_type: smtp
|
|
|
|
gitea_db_type: sqlite3
|
|
gitea_db_path: "{{ gitea_home }}/data/gitea.db" # for sqlite3
|
|
|
|
gitea_ssh_listen: 0.0.0.0
|
|
gitea_ssh_domain: git.mgrote.net
|
|
gitea_ssh_port: 2222
|
|
gitea_start_ssh: true
|
|
|
|
gitea_http_domain: git.mgrote.net
|
|
gitea_http_listen: 0.0.0.0
|
|
gitea_http_port: 3000
|
|
gitea_disable_http_git: false
|
|
gitea_protocol: http
|
|
|
|
gitea_show_registration_button: false
|
|
gitea_require_signin: false
|
|
gitea_disable_registration: true
|
|
|
|
gitea_fail2ban_enabled: true
|
|
gitea_fail2ban_jail_maxretry: 10
|
|
gitea_fail2ban_jail_findtime: 300
|
|
gitea_fail2ban_jail_bantime: 300
|