This repository has been archived by the owner on Dec 17, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathserver.yml
66 lines (56 loc) · 1.57 KB
/
server.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
- hosts: server
tasks:
- name: ensure the koma-admin group is present
group:
name: koma-admin
state: present
become: yes
- name: ensure the koma-admins have sudoers permissions
template:
src: sudo-koma-admin
dest: /etc/sudoers.d/koma-admin
validate: '/usr/sbin/visudo -cf %s'
become: yes
- name: ensure the koma-admins are present on the system
include_role:
name: user
vars:
user_name: "{{ admin_name }}"
user_shell: "{{ koma_admins[admin_name].shell | default(omit) }}"
user_ssh_keys: "{{ koma_admins[admin_name].ssh_pubkeys | default(False) }}"
user_password: "{{ koma_admins[admin_name].password | default(omit) }}"
loop: "{{ koma_admins.keys() | list }}"
loop_control:
loop_var: admin_name
- hosts: server
roles:
# Certificate
- role: letsencrypt
letsencrypt_staging: no
letsencrypt_email: [email protected]
letsencrypt_domains:
- die-koma.org
- www.die-koma.org
- 51.die-koma.org
- cloud.die-koma.org
- die-cloud.org
- honigkuchenpferd.cs.uni-paderborn.de
- honigkuchenpferd.cs.upb.de
- komapedia.org
- de.komapedia.org
- www.komapedia.org
- file.komapedia.org
- die-reso.org
- reso.die-orga.org
- koroma.die-orga.org
letsencrypt_use_cert_update_script: yes
- role: shepherd
- role: koma-website
vars:
koma_website_domains:
- die-koma.org
- 51.die-koma.org
- honigkuchenpferd.cs.uni-paderborn.de
- honigkuchenpferd.cs.upb.de
- role: komapedia
- role: nextcloud