myLimbo/casa
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

clean up

Browse Source
This commit is contained in:
Márcio Fernandes
2024-12-29 21:49:33 +00:00
parent d46a44783e
commit 63afc5a60d
21 changed files with 0 additions and 458 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.actrc
View File

@@ -1,2 +0,0 @@
-P vlan-casa_continous-deploy=git.limbosolutions.com/kb/gitea/act-runner_ansible:0.2.11
-W .gitea

42
.gitea/workflows/host.yml
View File

@@ -1,42 +0,0 @@
# name: deploy host
# on:
# push:
# paths:
# - "ansible/**"
# - ".gitea/workflows/**host**.yml"
# jobs:
# Deploy:
# runs-on: "vlan-casa_continous-deploy"
# steps:
# - name: Checkout code
# uses: actions/checkout@v2
# - name: setup ssh
# run: |
# echo "${{ secrets.HOST_ANSIBLE_PRIVATE_KEY }}" > ${GITHUB_WORKSPACE}/ssh-key &&
# chmod 600 ${GITHUB_WORKSPACE}/ssh-key
# - name: setup Ansible Inventory file
# run: |
# cat >> ansible/inventory.yml << 'END'
# all:
# hosts:
# homesrv01:
# ansible_host: ${{secrets.HOST_ANSIBLE_HOST}}
# ansible_user: ${{secrets.HOST_ANSIBLE_REMOTE_USER }}
# ansible_become_pass: "${{secrets.HOST_ANSIBLE_BECOME_PASS}}"
# END
# - name: Run Ansible Playbook
# run: |
# cd ${GITHUB_WORKSPACE}
# export ANSIBLE_HOST_KEY_CHECKING=False; ansible-playbook ansible/site.yml --private-key ${GITHUB_WORKSPACE}/ssh-key

13
.gitea/workflows/services.nginx.yml
View File

@@ -1,13 +0,0 @@
# name: Portainer stack nginx
# on:
# push:
# paths:
# - "services/nginx/**"
# - ".gitea/workflows/**nginx**.yml"
# jobs:
# deploy:
# runs-on: "vlan-casa_continous-deploy"
# steps:
# - name: Portainer stack nginx webhook
# run: |
# curl -X POST "${{secrets.PORTAINER_NGINX_WEBHOOK_URL}}"

13
.gitea/workflows/services.wyoming.yml
View File

@@ -1,13 +0,0 @@
# name: Portainer stack wyoming
# on:
# push:
# paths:
# - "services/wyoming/**"
# - ".gitea/workflows/**wyoming**.yml"
# jobs:
# deploy:
# runs-on: "vlan-casa_continous-deploy"
# steps:
# - name: Portainer stack wyoming webhook
# run: |
# curl -X POST "${{secrets.PORTAINER_WYOMING_WEBHOOK_URL}}" --insecure

15
.gitea/workflows/services.zigbee2mqtt.yml
View File

@@ -1,15 +0,0 @@
# refactoring required stopped using portainer!
# for now using vscode with docker context connected to server and docker compose up
# name: Portainer stack zigbee2mqtt
# on:
# push:
# paths:
# - "services/zigbee2mqtt/**"
# - ".gitea/workflows/**zigbee2mqtt**.yml"
# jobs:
# deploy:
# runs-on: "vlan-casa_continous-deploy"
# steps:
# - name: Portainer stack zigbee2mqtt webhook
# run: |
# curl -X POST "${{secrets.PORTAINER_ZIGBEE2MQTT_WEBHOOK_URL}}"

28
README.md
View File

@@ -26,9 +26,6 @@ The server itself is on its own vlan (Vlan: homesrv) but requires communication
- [Operating System](#operating-system)
- [Development, Maintenance and Deployment](#development-maintenance-and-deployment)
- [Docker context](#docker-context)
- [Ansible roles](#ansible-roles)
- [myInfra.dev.homesrv01.core](#myinfradevhomesrv01core)
- [myInfra.dev.homesrv01](#myinfradevhomesrv01)
- [docker](#docker)
- [rclone plugin](#rclone-plugin)
@@ -194,31 +191,6 @@ Using visual studio code, docker, ansible and gitea actions.
docker context create homesrv01 --docker host=ssh://admin@homesrv01.dev.lan
```
## Ansible roles
### myInfra.dev.homesrv01.core
- ssh server
- admin user
- git package
- curl package
```bash
#execute local
sudo ansible-playbook --connection=local --inventory 127.0.0.1, --limit 127.0.0.1 ansible/core.yml
```
### myInfra.dev.homesrv01
[Requires myInfra stack](#myinfra-stack).
- daily auto update script
```bash
#execute local
sudo ansible-playbook --connection=local --inventory 127.0.0.1, --limit 127.0.0.1 ansible/site.yml
```
```bash
# check auto update scripts logs
journalctl -r -t auto-update

6
ansible/core.yml
View File

@@ -1,6 +0,0 @@
- name: homesrv01 core playbook
hosts: all
roles:
- myInfra.dev.homesrv01.core
- myInfra.ssh

27
ansible/roles/myInfra.dev.homesrv01.core/.gitignore vendored
View File

@@ -1,27 +0,0 @@
# Ansible Tower ignore list
# Ansible runtime and backups
*.original
*.tmp
*.bkp
*.retry
*.*~
# Tower runtime roles
roles/**
!roles/myInfra.dev.homesrv01
!roles/requirements.yml
# Try tyo avoid any plain-text passwords
*pwd*
*pass*
*password*
*.txt
# Exclude all binaries
*.bin
*.jar
*.tar
*.zip
*.gzip
*.tgz

0
ansible/roles/myInfra.dev.homesrv01.core/README.md
View File

60
ansible/roles/myInfra.dev.homesrv01.core/meta/main.yml
View File

@@ -1,60 +0,0 @@
galaxy_info:
author: your name
description: your role description
company: your company (optional)
# If the issue tracker for your role is not on github, uncomment the
# next line and provide a value
# issue_tracker_url: http://example.com/issue/tracker
# Choose a valid license ID from https://spdx.org - some suggested licenses:
# - BSD-3-Clause (default)
# - MIT
# - GPL-2.0-or-later
# - GPL-3.0-only
# - Apache-2.0
# - CC-BY-4.0
license: license (GPL-2.0-or-later, MIT, etc)
min_ansible_version: 2.1
# If this a Container Enabled role, provide the minimum Ansible Container version.
# min_ansible_container_version:
#
# Provide a list of supported platforms, and for each platform a list of versions.
# If you don't wish to enumerate all versions for a particular platform, use 'all'.
# To view available platforms and versions (or releases), visit:
# https://galaxy.ansible.com/api/v1/platforms/
#
# platforms:
# - name: Fedora
# versions:
# - all
# - 25
# - name: SomePlatform
# versions:
# - all
# - 1.0
# - 7
# - 99.99
galaxy_tags: []
# List tags for your role here, one per line. A tag is a keyword that describes
# and categorizes the role. Users find roles by searching for tags. Be sure to
# remove the '[]' above, if you add tags to this list.
#
# NOTE: A tag is limited to a single word comprised of alphanumeric characters.
# Maximum 20 tags per role.
# dependencies:
# - role: myInfra.ssh
# - role: myInfra.docker.portainer
# - role: myInfra.docker.promtail
# - role: myInfra.docker.telegraf
# - role: myInfra.dev.homesrv01.core
# List your role dependencies here, one per line. Be sure to remove the '[]' above,
# if you add dependencies to this list.

20
ansible/roles/myInfra.dev.homesrv01.core/tasks/main.yml
View File

@@ -1,20 +0,0 @@
---
- name: admin user - setup
become: true
ansible.builtin.user:
name: admin
shell: /bin/bash
groups: sudo,docker
append: yes
- name: Install/Update Packages
become: true
ansible.builtin.package:
name:
- git
- curl
state: latest

27
ansible/roles/myInfra.dev.homesrv01/.gitignore vendored
View File

@@ -1,27 +0,0 @@
# Ansible Tower ignore list
# Ansible runtime and backups
*.original
*.tmp
*.bkp
*.retry
*.*~
# Tower runtime roles
roles/**
!roles/myInfra.dev.homesrv01
!roles/requirements.yml
# Try tyo avoid any plain-text passwords
*pwd*
*pass*
*password*
*.txt
# Exclude all binaries
*.bin
*.jar
*.tar
*.zip
*.gzip
*.tgz

0
ansible/roles/myInfra.dev.homesrv01/README.md
View File

60
ansible/roles/myInfra.dev.homesrv01/meta/main.yml
View File

@@ -1,60 +0,0 @@
galaxy_info:
author: your name
description: your role description
company: your company (optional)
# If the issue tracker for your role is not on github, uncomment the
# next line and provide a value
# issue_tracker_url: http://example.com/issue/tracker
# Choose a valid license ID from https://spdx.org - some suggested licenses:
# - BSD-3-Clause (default)
# - MIT
# - GPL-2.0-or-later
# - GPL-3.0-only
# - Apache-2.0
# - CC-BY-4.0
license: license (GPL-2.0-or-later, MIT, etc)
min_ansible_version: 2.1
# If this a Container Enabled role, provide the minimum Ansible Container version.
# min_ansible_container_version:
#
# Provide a list of supported platforms, and for each platform a list of versions.
# If you don't wish to enumerate all versions for a particular platform, use 'all'.
# To view available platforms and versions (or releases), visit:
# https://galaxy.ansible.com/api/v1/platforms/
#
# platforms:
# - name: Fedora
# versions:
# - all
# - 25
# - name: SomePlatform
# versions:
# - all
# - 1.0
# - 7
# - 99.99
galaxy_tags: []
# List tags for your role here, one per line. A tag is a keyword that describes
# and categorizes the role. Users find roles by searching for tags. Be sure to
# remove the '[]' above, if you add tags to this list.
#
# NOTE: A tag is limited to a single word comprised of alphanumeric characters.
# Maximum 20 tags per role.
# dependencies:
# - role: myInfra.dev.homesrv01.core
# - role: myInfra.docker.portainer
# - role: myInfra.docker.promtail
# - role: myInfra.docker.telegraf
# - role: myInfra.dev.homesrv01.core
# List your role dependencies here, one per line. Be sure to remove the '[]' above,
# if you add dependencies to this list.

11
ansible/roles/myInfra.dev.homesrv01/tasks/main.yml
View File

@@ -1,11 +0,0 @@
# ---
# - name: docker - media volume
# community.docker.docker_volume:
# name: media
# driver: local
# driver_options:
# type: none
# device: /mnt/media

27
ansible/roles/myInfra.ssh/.gitignore vendored
View File

@@ -1,27 +0,0 @@
# Ansible Tower ignore list
# Ansible runtime and backups
*.original
*.tmp
*.bkp
*.retry
*.*~
# Tower runtime roles
roles/**
!roles/myInfra.dev.homesrv01
!roles/requirements.yml
# Try tyo avoid any plain-text passwords
*pwd*
*pass*
*password*
*.txt
# Exclude all binaries
*.bin
*.jar
*.tar
*.zip
*.gzip
*.tgz

0
ansible/roles/myInfra.ssh/README.md
View File

11
ansible/roles/myInfra.ssh/handlers/main.yml
View File

@@ -1,11 +0,0 @@
---
- name: SSH - Restart Service
become: true
ansible.builtin.service:
daemon_reload: true
name: ssh
enabled: true
state: restarted

60
ansible/roles/myInfra.ssh/meta/main.yml
View File

@@ -1,60 +0,0 @@
galaxy_info:
author: your name
description: your role description
company: your company (optional)
# If the issue tracker for your role is not on github, uncomment the
# next line and provide a value
# issue_tracker_url: http://example.com/issue/tracker
# Choose a valid license ID from https://spdx.org - some suggested licenses:
# - BSD-3-Clause (default)
# - MIT
# - GPL-2.0-or-later
# - GPL-3.0-only
# - Apache-2.0
# - CC-BY-4.0
license: license (GPL-2.0-or-later, MIT, etc)
min_ansible_version: 2.1
# If this a Container Enabled role, provide the minimum Ansible Container version.
# min_ansible_container_version:
#
# Provide a list of supported platforms, and for each platform a list of versions.
# If you don't wish to enumerate all versions for a particular platform, use 'all'.
# To view available platforms and versions (or releases), visit:
# https://galaxy.ansible.com/api/v1/platforms/
#
# platforms:
# - name: Fedora
# versions:
# - all
# - 25
# - name: SomePlatform
# versions:
# - all
# - 1.0
# - 7
# - 99.99
galaxy_tags: []
# List tags for your role here, one per line. A tag is a keyword that describes
# and categorizes the role. Users find roles by searching for tags. Be sure to
# remove the '[]' above, if you add tags to this list.
#
# NOTE: A tag is limited to a single word comprised of alphanumeric characters.
# Maximum 20 tags per role.
# dependencies:
# - role: myInfra.journald
# - role: myInfra.docker.portainer
# - role: myInfra.docker.promtail
# - role: myInfra.docker.telegraf
# - role: myInfra.dev.homesrv01.core
# List your role dependencies here, one per line. Be sure to remove the '[]' above,
# if you add dependencies to this list.

30
ansible/roles/myInfra.ssh/tasks/main.yml
View File

@@ -1,30 +0,0 @@
---
- name: Install/Update openssh-server
become: true
ansible.builtin.package:
name:
- openssh-server
state: latest
- name: SSH - Setup & Config
copy:
dest: /etc/ssh/sshd_config.d/10-myLimbo.conf
content: |
###################################################################
# maintained by myInfra.dev.homesrv01 ansible role
# https://git.limbosolutions.com/marcio.fernandes/homesrv01.dev.lan
####################################################################
PermitRootLogin no
PasswordAuthentication no
notify:
- SSH - Restart Service

6
ansible/site.yml
View File

@@ -1,6 +0,0 @@
- name: Homesrv01 playbook
hosts: all
roles:
- myInfra.dev.homesrv01.core
- myInfra.ssh
- myInfra.dev.homesrv01