Skip to content

Ansible role to install vaultwarden using nginx as proxy and postgres as database

Notifications You must be signed in to change notification settings

stefan0xC/vaultwarden-ansible-podman

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

ansible-vaultwarden

Installs vaultwarden behind an nginx proxy using postgres backend in a (rootfull) podman container.

Requirements

Ansible Collections (especially the community.crypto and containers.podman collection) are required. You should also have a working SMTP server and a domain pointing to your webserver. The firewall ports 80 and 443 should also be open.

Role Variables

  • vaultwarden_acme_account_email is required for the Let's Encrypt certificate. Tip: You can change the ACME certificate service by setting a different vaultwarden_acme_directory.
  • vaultwarden_fqdn is the required full qualified domain name.
  • vaultwarden_smtp_{from,host,user,password} are required for SMTP configuration.
  • vaultwarden_admin_token can be set to enable the Vaultwarden Admin Panel.
  • the rest should be reasonable defaults but YMMV (you can adapt the playbook to your needs)

Example Playbook

---
- name: install vaultwarden
  hosts: vaultwarden.example.com
  become: yes
  vars:
    vaultwarden_acme_account_email: vaultwarden@example.com
    vaultwarden_admin_token: "VAULTWARDEN_ADMIN_TOKEN"
    vaultwarden_fqdn: "vaultwarden.example.com"
    vaultwarden_smtp_from: vaultwarden@example.com
    vaultwarden_smtp_host: mail.example.com
    vaultwarden_smtp_password: SMTP_PASSWORD
    vaultwarden_smtp_user: vaultwarden
  roles:
    - stefan0xc.vaultwarden_ansible_podman

License

MIT

Author Information

Stefan Melmuk

About

Ansible role to install vaultwarden using nginx as proxy and postgres as database

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages