CCCHH/ansible-infra
CCCHH/ansible-infra
18
0
Fork 0
Code Issues 5 Pull requests Wiki Activity

Provide secrets for engelsystem VM from pass

Browse source
This commit is contained in:
June 2023-07-29 01:46:30 +02:00 committed by julian
parent f695afa981
commit a12b38b284
2 changed files with 3 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
inventories/z9/host_vars/engelsystem.yaml
View file

@ -1,4 +1,4 @@
docker_compose__compose_file_content: "{{ lookup('ansible.builtin.file', 'configs/engelsystem/compose.yaml') }}" docker_compose__compose_file_content: "{{ lookup('ansible.builtin.template', 'configs/engelsystem/compose.yaml.j2') }}"
docker_compose__configuration_files: [] docker_compose__configuration_files: []
cert__acme_account_email: j+letsencrypt-ccchh@jsts.xyz cert__acme_account_email: j+letsencrypt-ccchh@jsts.xyz

5
playbooks/files/configs/engelsystem/compose.yaml → playbooks/templates/configs/engelsystem/compose.yaml.j2
View file

@ -18,9 +18,8 @@ services:
MAIL_HOST: send-only-mailserver.ccchh.net MAIL_HOST: send-only-mailserver.ccchh.net
MAIL_PORT: 465 MAIL_PORT: 465
MAIL_ENCRYPTION: tls MAIL_ENCRYPTION: tls
# MAIL_USERNAME and MAIL_PASSWORD are loaded from env file MAIL_USERNAME: aes
env_file: MAIL_PASSWORD: {{ lookup("community.general.passwordstore", "vm-secrets/engelsystem/MAIL_PASSWORD", create=false, missing="error") }}
- engelsystem_secrets.env # Must be managed by the admin manually. Not managed by Ansible.
ports: ports:
- "5080:80" - "5080:80"
networks: networks: