systemd_mounts: diskstation_git: share: 192.168.1.10:/volume1/git mount: /mnt/diskstation/git type: nfs options: - " " automount: true backup_disk: share: /dev/sda1 mount: /mnt/backup type: ntfs-3g options: - uid=1024 - guid=100 automount: true systemd_mounts_enabled: - diskstation_git - backup_disk syncthing_address: "{{inventory_hostname}}:8384" syncthing_gui_user: "{{user.name}}" syncthing_gui_password: $2a$10$nJZ8YN/1mB84Cbi79BKka.6SFMAKF.CBwyCNJDA9qUgXdkcuBilx2 notification_mail: "{{ user.mail }}" ssmtp_mailhub: smtp.{{ domain.name }}:587 ssmtp_hostname: "{{ domain.name }}" ssmtp_auth_user: "{{ user.mail }}" ssmtp_auth_pass: "{{ vault_default_password }}" rsynclocations: - name: backup nas location: /mnt/backup readonly: "no" rsynchostalloawed: 192.168.1.10 fail2ban_destmail: "{{ user.mail }}" fail2ban_sendmail: "{{ user.mail }}" Gandi_API_KEYS: "{{ vault_gandi_API_Keys }}" Gandi_Domain: "{{ domain.name }}" Gandi_Record: www nginx_vhosts: - listen: "80" server_name: "localhost" root: "/usr/share/nginx/html/" error_page: "404 /404/404.html" filename: "default.conf" state: "present" template: "{{ nginx_vhost_template }}" extra_parameters: | error_page 500 502 503 504 /50x.html; location = /50x.html { root /usr/share/nginx/html; } location =/ { rewrite ^ /starter; } location / { index index.php index.html index.htm ; default_type text/html; } location ~ \.php$ { # try_files $uri =404; fastcgi_split_path_info ^(.+\.php)(/.+)$; fastcgi_pass unix:/run/php-fpm/php-fpm.sock; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; fastcgi_read_timeout 800; fastcgi_index index.php; include fastcgi_params; } nginx_realIP_Proxy: 192.168.1.10/24 php_extention_enable: - iconv - mysqli - pdo_mysql - soap mysql_root_password: "{{ vault_mysql_root }}" mysql_root_password_update: true mysql_databases: - name: gitea collation: utf8mb4_unicode_ci encoding: utf8mb4 # Users. mysql_users: - name: gitea host: localhost password: "{{ vault_mysql_gitea }}" priv: gitea.*:ALL - name: dump host: localhost password: "{{ vault_mysql_dump }}" priv: "*.*:SELECT,SHOW DATABASES" ttrss_db_password: "{{ vault_mysql_ttrss }}" ttrss_log_destination: "" bind_listen_ipv4: ['any'] bind_allow_query: ['any'] bind_zone_master_server_ip: 192.168.1.10 bind_zone_domains: - name: ducamps.win hostmaster_email: "vincent@ducamps.win" - name: 1.168.192.in-addr.arpa hostmaster_email: "vincent@ducamps.win" bind_forwarders: - '1.1.1.1' - '80.67.169.40' bind_recursion: true bind_allow_recursion: - "192.168.1.0/24" gitea_http_listen: 0.0.0.0 gitea_db_type: mysql gitea_db_host: localhost:3306 gitea_db_name: gitea gitea_db_user: gitea gitea_db_password: "{{ vault_mysql_gitea }}" gitea_ssh_domain: "{{ansible_hostname}}" gitea_start_ssh: false gitea_ssh_port: 22