adrien/automation
adrien/automation
1
1
Fork 0
Code Issues Pull requests Releases Wiki Activity
automation/deployer/group_vars/all/vars.yml
LUXEY Adrien ad01130979 WIP making synapse work with coturn
2021-01-19 19:44:16 +01:00

208 lines
6.2 KiB
YAML
Raw Blame History

---
encrypted_drive:
command: "/sbin/mount_vault"
password: "{{ vault_encrypted_drive_password }}"
mysql_root_password: "{{ vault_mysql_root_password }}"
adrien_serenity_password: "{{ vault_adrien_serenity_password }}"
www_path: /vault/www
sites_path: /vault/sites
backups_path: /vault/backups
wordpress:
version: 5.4
checksum: sha1:d5f1e6d7cadd72c11d086a2e1ede0a72f23d993e
gitea:
version: 1.13.0
synapse:
version: v1.25.0
drupal:
version: 8.9.7-apache
nextcloud:
version: 19.0.3
checksum: md5:2094204fd0c3471be2ec010a71231da6
postgres:
pg_hba_path: "/etc/postgresql/9.6/main/pg_hba.conf"
sites:
- slug: rdb # Shorthand name to use as directory/file name
# The site URL (without www)
url: rennesdesbois.fr
# Ask nginx to redirect url to www
# Else, we redirect www to url
redirect_to_www: yes
# What kind of site is that?
type: wordpress
# Subnet addresses
subnet_cidr_address: 172.27.1.0/24
subnet_gateway_ip: 172.27.1.1
subnet_nginx_ip: 172.27.1.2
subnet_site_ip: 172.27.1.3
# MySQL
mysql_database: rdb
mysql_username: rdb
mysql_password: "{{ vault_rdb_mysql_password }}"
- slug: arvuhez # Shorthand name to use as directory/file name
# The site URL (without www)
url: arvuhez.org
# Ask nginx to redirect url to www
# Else, we redirect www to url
redirect_to_www: no
# What kind of site is that?
type: wordpress
# Subnet addresses
subnet_cidr_address: 172.27.2.0/24
subnet_gateway_ip: 172.27.2.1
subnet_nginx_ip: 172.27.2.2
subnet_site_ip: 172.27.2.3
# MySQL
mysql_database: arvuhez
mysql_username: arvuhez
mysql_password: "{{ vault_arvuhez_mysql_password }}"
- slug: zinzoscope # Shorthand name to use as directory/file name
# The site URL (without www)
url: zinz.luxeylab.net
# Ask nginx to redirect url to www
# Else, we redirect www to url
redirect_to_www: no
# What kind of site is that?
type: wordpress
# Subnet addresses
subnet_cidr_address: 172.27.3.0/24
subnet_gateway_ip: 172.27.3.1
subnet_nginx_ip: 172.27.3.2
subnet_site_ip: 172.27.3.3
# MySQL
mysql_database: zinzoscope
mysql_username: zinzoscope
mysql_password: "{{ vault_zinzoscope_mysql_password }}"
- slug: lexperimental # Shorthand name to use as directory/file name
# The site URL (without www)
url: lexperimental.fr
# Ask nginx to redirect url to www
# Else, we redirect www to url
redirect_to_www: no
# What kind of site is that?
type: wordpress
# Subnet addresses
subnet_cidr_address: 172.27.4.0/24
subnet_gateway_ip: 172.27.4.1
subnet_nginx_ip: 172.27.4.2
subnet_site_ip: 172.27.4.3
# MySQL
mysql_database: lexperimental
mysql_username: lexperimental
mysql_password: "{{ vault_lexperimental_mysql_password }}"
- slug: mts # Shorthand name to use as directory/file name
# The site URL (without www)
url: editionsmangetasoupe.fr
# Ask nginx to redirect url to www
# Else, we redirect www to url
redirect_to_www: no
# What kind of site is that?
type: drupal
# Subnet addresses
subnet_cidr_address: 172.27.5.0/24
subnet_gateway_ip: 172.27.5.1
subnet_site_ip: 172.27.5.2
# This will allow setting up MySQL
# Configuration on Drupal's side must be done by hand:
# Edit your <drupal_install>/sites/default/settings.php
mysql_database: mts8
mysql_username: mts
mysql_password: "{{ vault_mts_mysql_password }}"
- slug: gitea # Shorthand name to use as directory/file name
# The site URL (without www)
url: git.deuxfleurs.fr
# Ask nginx to redirect url to www
# Else, we redirect www to url
redirect_to_www: no
# What kind of site is that?
type: gitea
# Subnet addresses
subnet_cidr_address: 172.27.6.0/24
subnet_gateway_ip: 172.27.6.1
subnet_site_ip: 172.27.6.2
# User IDs
user_name: git
user_uid: 1007
user_group: git
user_gid: 1006
# MySQL
mysql_database: gitea
mysql_username: gitea
mysql_password: "{{ vault_gitea_mysql_password }}"
- slug: synapse # Shorthand name to use as directory/file name
# The site URL (without www)
url: zinz.dev
# Wanna display custom HTML as landing page? Fill this with its path.
# To keep the defaults, comment line
custom_landing: /vault/www/riot
# What kind of site is that?
type: synapse
# User IDs
user_uid: 33 # www-data
user_gid: 33 # www-data
# Subnet addresses
subnet_cidr_address: 172.27.7.0/24
subnet_gateway_ip: 172.27.7.1
subnet_site_ip: 172.27.7.2
# PostgreSQL
#postgres_host: db
postgres_database: synapse
postgres_username: synapse
postgres_password: "{{ vault_synapse_postgres_password }}"
# SMTP
contact_email: contact@zinz.dev
smtp_host: mail.gandi.net
smtp_port: 587 # Clear: 25, SSL: 465, STARTTLS: 587
smtp_username: contact@zinz.dev
smtp_password: "{{ vault_smtp_contact_at_zinz_dev_password }}"
# Secrets
registration_shared_secret: "{{ vault_synapse_registration_shared_secret }}"
# Others
max_upload_size: 20M
# Coturn server
coturn:
# URL is fixed to "turn.{{ site.url }}" - take that for granted
static_auth_secret : "{{ vault_synapse_coturn_static_auth_secret }}"
listening_port: 3578
min_port: 49152
max_port: 49172
external_ip: 92.243.8.85
# 4 streams per video call, so 12 streams = 3 simultaneous relayed calls per user.
# Set to null if you want to disable quota
user_quota: 12
total_quota: 1200
denied_peer_ips: []
#- '10.0.0.0-10.255.255.255'
#- '172.16.0.0-172.31.255.255'
allowed_peer_ips: []
- slug: cloud # Shorthand name to use as directory/file name
# The site URL (without www)
url: cloud.luxeylab.net
# Ask nginx to redirect url to www
# Else, we redirect www to url
redirect_to_www: no
# What kind of site is that?
type: nextcloud
# Subnet addresses
subnet_cidr_address: 172.27.8.0/24
subnet_gateway_ip: 172.27.8.1
subnet_nginx_ip: 172.27.8.2
subnet_site_ip: 172.27.8.3
# MySQL
mysql_database: cloud
mysql_username: cloud
mysql_password: "{{ vault_cloud_mysql_password }}"
Reference in a new issue View git blame Copy permalink