Nik Afiq
83f46c9748
feat(gitea): create PersistentVolume and PersistentVolumeClaim for Gitea feat(gitea): add script to create Gitea runner registration token secret feat(gitea): deploy Gitea Actions runner with Docker socket access feat(media): deploy JDownloader with Ingress configuration feat(media): set up Jellyfin media server with NFS and Ingress feat(media): configure qBittorrent deployment with Ingress feat(monitoring): add Grafana Loki datasource ConfigMap feat(monitoring): create Grafana admin credentials secret feat(monitoring): define PersistentVolumes for monitoring stack feat(network): implement DDNS CronJob for Porkbun DNS updates feat(network): create secret for Porkbun DDNS API credentials feat(network): set up Glances service and Ingress for Debian node fix(network): patch Pi-hole DNS services with external IPs feat(network): configure Traefik dashboard Ingress with Authentik auth feat(network): set up Watch Party service and Ingress for Mac Mini refactor(values): update Helm values files for various services
36 lines
798 B
YAML
36 lines
798 B
YAML
---
|
|
# Part of role: common
|
|
# Called by: ansible/playbooks/bootstrap-minisforum.yaml
|
|
# Description: Default variables for the common role including user, packages, firewall ports, and data directories.
|
|
|
|
username: nik
|
|
timezone: Asia/Tokyo
|
|
|
|
base_packages:
|
|
- curl
|
|
- git
|
|
- htop
|
|
- vim
|
|
- wget
|
|
- unzip
|
|
- ca-certificates
|
|
- gnupg
|
|
- lsb-release
|
|
- nfs-common
|
|
|
|
ufw_allowed_ports:
|
|
- { port: 430, proto: tcp, comment: SSH }
|
|
- { port: 80, proto: tcp, comment: HTTP }
|
|
- { port: 443, proto: tcp, comment: HTTPS }
|
|
- { port: 6443, proto: tcp, comment: K3s API server }
|
|
- { port: 10250, proto: tcp, comment: Kubelet }
|
|
- { port: 8472, proto: udp, comment: Flannel VXLAN }
|
|
|
|
data_dirs:
|
|
- /data/gitea
|
|
- /data/jellyfin
|
|
- /data/pihole
|
|
- /data/dashy
|
|
- /data/glances
|
|
- /data/traefik
|