consul_client_addr: "0.0.0.0" consul_datacenter: "homelab" consul_backup_location: "/mnt/diskstation/git/backup/consul" consul_ansible_group: all consul_bootstrap_expect: 3 consul_systemd_resolved_enable: true nomad_docker_allow_caps: - NET_ADMIN - NET_BROADCAST - NET_RAW nomad_vault_enabled: true nomad_vault_address: "http://active.vault.service.consul:8200" nomad_vault_role: "nomad-cluster" nomad_vault_token: "{{ lookup('hashi_vault','secret=secrets/data/ansible/hashistack:nomad_vault_token') }}" nomad_bootstrap_expect: 3 notification_mail: "{{inventory_hostname}}@{{ domain.name }}" msmtp_mailhub: smtp.{{ domain.name }} msmtp_auth_user: "{{ user.mail }}" msmtp_auth_pass: "{{ lookup('hashi_vault','secret=secrets/data/ansible/other:email') }}" system_user: - name: drone-deploy home: /home/drone-deploy shell: /bin/bash privatekey: - keyname: id_gitea key: "{{lookup('hashi_vault', 'secret=secrets/data/ansible/privatekey:gitea')}}" authorized_keys: - ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDUaK+pQlosmopbZfucll9UdqDOTaODOBwoxRwkJEk1i drone@oscar - name: ansible home: /home/ansible shell: /bin/bash - name: root home: /root privatekey: - keyname: id_gitea key: "{{lookup('hashi_vault', 'secret=secrets/data/ansible/privatekey:gitea')}}"