-
Notifications
You must be signed in to change notification settings - Fork 19
/
site.yml
128 lines (115 loc) · 3.17 KB
/
site.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
---
- name: Version precheck
hosts: all
gather_facts: False
tags:
- always
pre_tasks:
- name: Verify Ansible meets version requirements.
assert:
that: "ansible_version.full is version_compare('2.8', '>=')"
msg: >
"You must update Ansible to at least 2.8."
# Workaround for https://github.com/ansible/ansible/issues/57529
- hosts: all
- name: node defaults
hosts: all
become: yes
become_method: sudo
tags: [common]
roles:
- utils
- security
- { role: hifis.unattended_upgrades, tags: [ 'unattended_upgrades' ] }
- { role: prometheus.prometheus.node_exporter, tags: [ 'node_exporter' ] }
- { role: motd, tags: [ 'motd' ] }
- name: noisebridge_net
hosts: noisebridge_net
become: yes
become_method: sudo
tags: [noisebridge_net]
roles:
- { role: mediawiki, tags: [ 'mediawiki' ] }
- { role: website, tags: [ 'website' ] }
- { role: safespace, tags: [ 'safespace' ] }
- { role: prometheus.prometheus.blackbox_exporter, tags: [ 'blackbox' ] }
- { role: prometheus.prometheus.prometheus, tags: [ 'prometheus' ] }
- { role: mydumper, tags: [ 'mydumper' ] }
- { role: caddy_ansible.caddy_ansible, tags: [ 'caddy' ] }
- { role: caddy_certs, tags: [ 'caddy_certs' ] }
- name: donate_noisebridge_net
hosts: donate_noisebridge_net
become: yes
become_method: sudo
tags: [donate]
roles:
- donate
- percona
- geerlingguy.mysql
- { role: caddy_ansible.caddy_ansible, tags: [ 'caddy' ] }
- { role: caddy_certs, tags: [ 'caddy_certs' ] }
- { role: pydonate, tags: ['pydonate'] }
- name: List server
hosts: lists_noisebridge_net
become: yes
become_method: sudo
tags: [lists_noisebridge_net]
roles:
- postfix
- mailman
- name: DNS Servers
hosts: dns
become: yes
become_method: sudo
tags: [dns]
roles:
- cloudalchemy.coredns
- name: Space
hosts: space_noisebridge_net
become: yes
become_method: sudo
tags: [space_noisebridge_net]
roles:
- { role: prometheus.prometheus.snmp_exporter, tags: [ 'snmp' ] }
- { role: unifi-poller, tags: [ 'unifi-poller' ] }
- { role: prometheus.prometheus.prometheus, tags: [ 'prometheus' ] }
- { role: grafana.grafana.grafana, tags: [ 'grafana' ] }
- powerpanel
- name: Nextcloud on debian box in space
hosts: cloud
become: yes
become_method: sudo
tags: [cloud]
roles:
- nextcloud-docker
- name: Earl RFID Access
hosts: earl
become: yes
become_method: sudo
tags: [earl]
roles:
- earl
- name: Power monitoring
hosts: smartpi
tags: [smartpi]
roles:
- smartpi
- name: Misc server SCL
hosts: m6_noisebridge_net
become: yes
become_method: sudo
tags: [m6_noisebridge_net]
roles:
- { role: podman, tags: ['podman'] }
- { role: caddy_ansible.caddy_ansible, tags: [ 'caddy' ] }
- { role: caddy_certs, tags: [ 'caddy_certs' ] }
- { role: library-org, tags: [ 'library-org' ] }
- { role: stuff-org, tags: [ 'stuff-org' ] }
- name: Seattle Linode
hosts: m7_noisebridge_net
become: yes
become_method: sudo
tags: [m7_noisebridge_net]
roles:
- { role: caddy_ansible.caddy_ansible, tags: [ 'caddy' ] }
- { role: caddy_certs, tags: [ 'caddy_certs' ] }