You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
143 lines
3.3 KiB
YAML
143 lines
3.3 KiB
YAML
---
|
|
|
|
debug: false
|
|
send_status_messages: false
|
|
|
|
docker_enabled: true
|
|
|
|
use_ssl: true
|
|
http_s: "http{{ use_ssl | ternary('s', '', omit) }}"
|
|
|
|
domain: "smardigo.digital"
|
|
stage_server_domain: "{{ inventory_hostname }}.{{ domain }}"
|
|
stage_server_url: "{{ http_s }}://{{ stage_server_domain }}"
|
|
|
|
alertmanager_channel_smardigo: "#monitoring-{{ stage }}"
|
|
|
|
ansible_ssh_host: "{{ stage_server_domain }}"
|
|
|
|
hetzner_server_type: cx11
|
|
hetzner_server_image: ubuntu-20.04
|
|
|
|
# Used for root-access
|
|
hetzner_ssh_keys:
|
|
- ansible@smardigo.digital
|
|
- sven.ketelsen@netgo.de
|
|
- peter.heise@netgo.de
|
|
- claus.paetow@netgo.de
|
|
- alexander.gordon@netgo.de
|
|
|
|
hetzner_server_labels: "stage={{ stage }}"
|
|
|
|
admin_user: "root"
|
|
|
|
sudo_groups: [
|
|
{
|
|
id: "CentOS",
|
|
sudo_group: "wheel",
|
|
},
|
|
{
|
|
id: "RedHat",
|
|
sudo_group: "wheel",
|
|
},
|
|
{
|
|
id: "Ubuntu",
|
|
sudo_group: "sudo",
|
|
},
|
|
]
|
|
sudo_group: "{{ sudo_groups
|
|
| selectattr('id', 'match', '' + ansible_distribution + '' )
|
|
| map(attribute='sudo_group')
|
|
| list
|
|
| first
|
|
| replace('.','-') }}"
|
|
|
|
default_plattform_users:
|
|
- 'nobody'
|
|
- 'vagrant'
|
|
- 'ansible'
|
|
- 'elastic'
|
|
- 'postgres'
|
|
- 'administrator'
|
|
- '{{ admin_user }}'
|
|
|
|
smardigo_plattform_users:
|
|
- 'sven.ketelsen'
|
|
- 'peter.heise'
|
|
- 'claus.paetow'
|
|
- 'alexander.gordon'
|
|
|
|
docker_owner: "{{ admin_user }}"
|
|
docker_group: "{{ admin_user }}"
|
|
service_base_path: '/etc/smardigo'
|
|
|
|
# TODO we need a company email address
|
|
lets_encrypt_email: "sven.ketelsen@netgo.de"
|
|
|
|
http_port: "80"
|
|
https_port: "443"
|
|
|
|
service_port: "8080"
|
|
management_port: "8081"
|
|
|
|
service_port_cadvisor: "8080"
|
|
service_port_elasticsearch: "9200"
|
|
service_port_iam: "8082"
|
|
service_port_webdav: "8080"
|
|
service_port_keycloak: "8080"
|
|
service_port_kibana: "5601"
|
|
service_port_logstash: "5044"
|
|
service_port_mssql: "1433"
|
|
service_port_mysql: "3306"
|
|
service_port_node_exporter: "9100"
|
|
service_port_postgres: "5432"
|
|
service_port_portainer: "9000"
|
|
service_port_pgadmin: "9001"
|
|
service_port_phpmyadmin: "9002"
|
|
service_port_sonarqube: "9000"
|
|
|
|
monitor_port_service: "9081"
|
|
monitor_port_system: "9082"
|
|
monitor_port_docker: "9083"
|
|
monitor_port_elastic: "9084"
|
|
monitor_port_harbor: "9085"
|
|
monitor_port_maria: "9086"
|
|
monitor_port_postgres: "9087"
|
|
monitor_port_awx: "80"
|
|
|
|
admin_port_traefik: "9080"
|
|
|
|
connect_id: "{{ inventory_hostname }}-connect"
|
|
connect_base_url: "{{ connect_id }}.{{ domain }}"
|
|
wordpress_id: "{{ inventory_hostname }}-wordpress"
|
|
wordpress_base_url: "{{ wordpress_id }}.{{ domain }}"
|
|
|
|
filebeat_certificate: "{{ stage }}-elastic-stack-filebeat"
|
|
logstash_certificate: "{{ stage }}-elastic-stack-logstash-01"
|
|
|
|
#reverse_proxy_admin_username: "< see vault >"
|
|
#reverse_proxy_admin_password: "< see vault >"
|
|
|
|
#mattermost_hook_smardigo: "< see vault >"
|
|
#teams_hook_smardigo: "< see vault >"
|
|
|
|
#hetzner_authentication_token: "< see vault >"
|
|
#digitalocean_authentication_token: "< see vault >"
|
|
|
|
#pgadmin4_admin_username: "< see vault >"
|
|
#pgadmin4_admin_password: "< see vault >"
|
|
|
|
#grafana_admin_username: "< see vault >"
|
|
#grafana_admin_password: "< see vault >"
|
|
#grafana_signing_secret: "< see vault >"
|
|
#grafana_user_smardigo_login: "< see vault >"
|
|
#grafana_user_smardigo_password: "< see vault >"
|
|
#grafana_user_guest_login: "< see vault >"
|
|
#grafana_user_guest_password: "< see vault >"
|
|
|
|
#vault_ansible_password: "< see vault >"
|
|
#vault_replicator_user_password: "< see vault >"
|
|
|
|
#mysql_root_username: "< see vault >"
|
|
#mysql_root_password: "< see vault >"
|