mirror of
https://github.com/ChristianLempa/boilerplates.git
synced 2024-11-22 00:03:16 +01:00
Merge branch 'main' into fix_issue_137
This commit is contained in:
commit
d24dfac89f
@ -16,4 +16,4 @@
|
||||
systemd:
|
||||
state: restarted
|
||||
daemon_reload: yes
|
||||
name: fail2ban
|
||||
name: fail2ban
|
||||
|
@ -14,4 +14,4 @@
|
||||
state: present
|
||||
regexp: '^%sudo'
|
||||
line: '%sudo ALL=(ALL) NOPASSWD: ALL'
|
||||
validate: /usr/sbin/visudo -cf %s
|
||||
validate: /usr/sbin/visudo -cf %s
|
||||
|
@ -16,4 +16,4 @@
|
||||
volumes:
|
||||
- /var/run/docker.sock:/var/run/docker.sock
|
||||
- portainer-data:/data
|
||||
restart_policy: unless-stopped
|
||||
restart_policy: unless-stopped
|
||||
|
@ -14,4 +14,4 @@
|
||||
volumes:
|
||||
- /var/run/docker.sock:/var/run/docker.sock
|
||||
- /etc/traefik:/etc/traefik
|
||||
restart_policy: unless-stopped
|
||||
restart_policy: unless-stopped
|
||||
|
@ -31,4 +31,4 @@
|
||||
- docker-buildx-plugin
|
||||
- docker-scan-plugin
|
||||
- docker-compose-plugin
|
||||
update_cache: yes
|
||||
update_cache: yes
|
||||
|
@ -1,2 +1,2 @@
|
||||
[defaults]
|
||||
timeout = 25
|
||||
timeout = 25
|
||||
|
@ -1 +1 @@
|
||||
{{ join_output.stdout }}
|
||||
{{ join_output.stdout }}
|
||||
|
@ -8,4 +8,4 @@
|
||||
name: zsh
|
||||
state: present
|
||||
update_cache: true
|
||||
become: true
|
||||
become: true
|
||||
|
@ -10,4 +10,4 @@
|
||||
dangling: false
|
||||
networks: false
|
||||
volumes: false
|
||||
builder_cache: false
|
||||
builder_cache: false
|
||||
|
@ -10,4 +10,4 @@
|
||||
register: reboot_required
|
||||
- debug:
|
||||
msg: "Reboot is required"
|
||||
when: reboot_required.stat.exists
|
||||
when: reboot_required.stat.exists
|
||||
|
@ -5,4 +5,4 @@
|
||||
tasks:
|
||||
- name: reboot machine
|
||||
reboot:
|
||||
reboot_timeout: 3600
|
||||
reboot_timeout: 3600
|
||||
|
@ -11,4 +11,4 @@
|
||||
headers:
|
||||
Content-Type: application/json
|
||||
status_code: 204
|
||||
# when: your-condition
|
||||
# when: your-condition
|
||||
|
@ -0,0 +1 @@
|
||||
|
@ -23,4 +23,4 @@
|
||||
yum:
|
||||
name: '*'
|
||||
state: latest
|
||||
exclude: kernel*
|
||||
exclude: kernel*
|
||||
|
@ -16,7 +16,7 @@ services:
|
||||
restart: unless-stopped
|
||||
semaphore:
|
||||
container_name: ansiblesemaphore
|
||||
image: semaphoreui/semaphore:v2.8.90
|
||||
image: semaphoreui/semaphore:v2.9.45
|
||||
user: "${UID}:${GID}"
|
||||
ports:
|
||||
- 3000:3000
|
||||
@ -40,4 +40,4 @@ services:
|
||||
- ./config/:/etc/semaphore:rw
|
||||
restart: unless-stopped
|
||||
depends_on:
|
||||
- mysql
|
||||
- mysql
|
||||
|
@ -0,0 +1 @@
|
||||
|
@ -1,7 +1,7 @@
|
||||
---
|
||||
services:
|
||||
bind9:
|
||||
image: ubuntu/bind9:latest
|
||||
image: ubuntu/bind9:9.18-23.10_edge
|
||||
container_name: bind9
|
||||
ports:
|
||||
- "53:53"
|
||||
@ -9,4 +9,4 @@ services:
|
||||
- /etc/bind/:/etc/bind/
|
||||
- /var/cache/bind:/var/cache/bind
|
||||
- /var/lib/bind:/var/lib/bind
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -13,4 +13,4 @@ services:
|
||||
- /:/source
|
||||
ports:
|
||||
- 8200:8200
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -0,0 +1 @@
|
||||
|
@ -2,7 +2,7 @@
|
||||
services:
|
||||
refactr-runner:
|
||||
container_name: factory-runnerpool-prod-1
|
||||
image: refactr/runner-pool
|
||||
image: refactr/runner-pool:v0.144.0
|
||||
user: root
|
||||
volumes:
|
||||
- /var/run/docker.sock:/var/run/docker.sock
|
||||
|
@ -4,10 +4,10 @@ volumes:
|
||||
driver: local
|
||||
services:
|
||||
grafana:
|
||||
image: grafana/grafana-oss:latest
|
||||
image: grafana/grafana-oss:10.3.3
|
||||
container_name: grafana
|
||||
ports:
|
||||
- "3000:3000"
|
||||
volumes:
|
||||
- grafana-data:/var/lib/grafana
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -11,4 +11,4 @@ services:
|
||||
ports:
|
||||
- 80:80
|
||||
- 443:443
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -9,4 +9,4 @@ services:
|
||||
# devices:
|
||||
# - /dev/ttyACMO # (optional) Add serial devices to the container
|
||||
privileged: true
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -79,4 +79,4 @@ services:
|
||||
logo: "assets/tools/sample2.png"
|
||||
subtitle: "Another application"
|
||||
tag: "app"
|
||||
url: "#"
|
||||
url: "#"
|
||||
|
@ -5,4 +5,4 @@
|
||||
body #app .card.green {
|
||||
background-color: #006600;
|
||||
color: #00ff00;
|
||||
}
|
||||
}
|
||||
|
@ -61,4 +61,4 @@ services:
|
||||
logo: "assets/tools/pingdom.png"
|
||||
subtitle: "Pingdom public reports overview"
|
||||
tag: "CI"
|
||||
url: "https://www.pingdom.com/"
|
||||
url: "https://www.pingdom.com/"
|
||||
|
@ -7,4 +7,4 @@ services:
|
||||
- "8080:8080"
|
||||
volumes:
|
||||
- /etc/homer/assets/:/www/assets
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -27,4 +27,4 @@ services:
|
||||
- MYSQL_PASSWORD=$MYSQL_PASSWORD
|
||||
- MYSQL_DATABASE=$MYSQL_DATABASE
|
||||
- MYSQL_USER=$MYSQL_USER
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -27,4 +27,4 @@ services:
|
||||
- MYSQL_USER=npm
|
||||
- MYSQL_PASSWORD=npm
|
||||
volumes:
|
||||
- nginxproxymanager-db:/var/lib/mysql
|
||||
- nginxproxymanager-db:/var/lib/mysql
|
||||
|
@ -7,4 +7,4 @@ services:
|
||||
pid: host
|
||||
restart: unless-stopped
|
||||
volumes:
|
||||
- /:/host:ro,rslave
|
||||
- /:/host:ro,rslave
|
||||
|
@ -11,4 +11,4 @@ services:
|
||||
- NVIDIA_DRIVER_CAPABILITIES=all
|
||||
ports:
|
||||
- 9400:9400
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -13,4 +13,4 @@ services:
|
||||
- /usr/bin/nvidia-smi:/usr/bin/nvidia-smi
|
||||
- /usr/lib/x86_64-linux-gnu/libnvidia-ml.so:/usr/lib/x86_64-linux-gnu/libnvidia-ml.so
|
||||
- /usr/lib/x86_64-linux-gnu/libnvidia-ml.so.1:/usr/lib/x86_64-linux-gnu/libnvidia-ml.so.1
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -36,4 +36,4 @@ services:
|
||||
- passbolt-data-gpg:/etc/passbolt/gpg
|
||||
- passbolt-data-jwt:/etc/passbolt/jwt
|
||||
command: ["/usr/bin/wait-for.sh", "-t", "0", "passbolt-db:3306", "--", "/docker-entrypoint.sh"]
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -16,4 +16,4 @@ services:
|
||||
volumes:
|
||||
- etcd:/etc/pihole
|
||||
- dnsmasq:/etc/dnsmasq.d
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -12,4 +12,4 @@ services:
|
||||
- /var/lib/docker/volumes:/var/lib/docker/volumes
|
||||
networks:
|
||||
- portainer-agent_default
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -13,4 +13,4 @@ services:
|
||||
volumes:
|
||||
- /var/run/docker.sock:/var/run/docker.sock
|
||||
- portainer-data:/data
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -4,7 +4,7 @@ volumes:
|
||||
driver: local
|
||||
services:
|
||||
prometheus:
|
||||
image: prom/prometheus:v2.37.9
|
||||
image: prom/prometheus:v2.50.0
|
||||
container_name: prometheus
|
||||
ports:
|
||||
- 9090:9090
|
||||
|
@ -33,4 +33,4 @@ services:
|
||||
- 80:80 # optional
|
||||
depends_on:
|
||||
- mariadb
|
||||
restart: unless-stopped
|
||||
restart: unless-stopped
|
||||
|
@ -51,4 +51,4 @@ app_service:
|
||||
# apps:
|
||||
# - name: "yourapp"
|
||||
# uri: "http://your-app-url"
|
||||
# insecure_skip_verify: false
|
||||
# insecure_skip_verify: false
|
||||
|
@ -5,7 +5,7 @@
|
||||
# external: true
|
||||
services:
|
||||
traefik:
|
||||
image: traefik:v2.10.5
|
||||
image: traefik:v2.11.0
|
||||
container_name: traefik
|
||||
ports:
|
||||
- 80:80
|
||||
|
@ -23,4 +23,4 @@ jobs:
|
||||
key: ${{ secrets.your-private-ssh-key }}
|
||||
source: './config/*'
|
||||
target: '/target/path/'
|
||||
strip_components: 1 # remove the top level directory
|
||||
strip_components: 1 # remove the top level directory
|
||||
|
@ -513,4 +513,4 @@ startupapicheck:
|
||||
helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
|
||||
|
||||
# Automount API credentials for a Service Account.
|
||||
automountServiceAccountToken: true
|
||||
automountServiceAccountToken: true
|
||||
|
@ -9,4 +9,4 @@ spec:
|
||||
name: ssl-issuer
|
||||
kind: ClusterIssuer
|
||||
dnsNames:
|
||||
- your-hostname
|
||||
- your-hostname
|
||||
|
@ -3,4 +3,4 @@ kind: ClusterIssuer
|
||||
metadata:
|
||||
name: selfsigned-issuer
|
||||
spec:
|
||||
selfSigned: {}
|
||||
selfSigned: {}
|
||||
|
@ -6,4 +6,4 @@ metadata:
|
||||
# ---
|
||||
# namespace: your-namespace
|
||||
spec:
|
||||
selfSigned: {}
|
||||
selfSigned: {}
|
||||
|
@ -11,4 +11,4 @@ stringData:
|
||||
# api-key: your-api-key
|
||||
# - or -
|
||||
# Token:
|
||||
# api-token: your-api-token
|
||||
# api-token: your-api-token
|
||||
|
@ -25,4 +25,4 @@ data:
|
||||
return 401;
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
|
@ -29,4 +29,4 @@ spec:
|
||||
name: nginx-http-cm
|
||||
- name: nginx-http-vol
|
||||
hostPath:
|
||||
path: /var/nginxserver
|
||||
path: /var/nginxserver
|
||||
|
@ -12,4 +12,4 @@ spec:
|
||||
protocol: TCP
|
||||
name: http
|
||||
selector:
|
||||
app: nginx-http
|
||||
app: nginx-http
|
||||
|
@ -14,4 +14,4 @@ spec:
|
||||
service:
|
||||
name: portainer
|
||||
port:
|
||||
number: 9000
|
||||
number: 9000
|
||||
|
@ -0,0 +1 @@
|
||||
|
@ -9,4 +9,4 @@ spec:
|
||||
name: ssl-issuer
|
||||
kind: ClusterIssuer
|
||||
dnsNames:
|
||||
- your-hostname
|
||||
- your-hostname
|
||||
|
@ -30,4 +30,4 @@ spec:
|
||||
# volumes:
|
||||
# - name: mysql-vol
|
||||
# hostPath:
|
||||
# path: /var/mysql-data
|
||||
# path: /var/mysql-data
|
||||
|
@ -4,4 +4,4 @@ metadata:
|
||||
name: mysql-secret
|
||||
type: Opaque
|
||||
stringData:
|
||||
root-pass: test123
|
||||
root-pass: test123
|
||||
|
@ -25,4 +25,4 @@ data:
|
||||
return 401;
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
|
@ -29,4 +29,4 @@ spec:
|
||||
name: nginx-http-cm
|
||||
- name: nginx-http-vol
|
||||
hostPath:
|
||||
path: /var/nginxserver
|
||||
path: /var/nginxserver
|
||||
|
@ -12,4 +12,4 @@ spec:
|
||||
protocol: TCP
|
||||
name: http
|
||||
selector:
|
||||
app: nginx-http
|
||||
app: nginx-http
|
||||
|
@ -9,4 +9,4 @@ stringData:
|
||||
...
|
||||
-----END CERTIFICATE-----
|
||||
server-key.pem: |
|
||||
|
||||
|
||||
|
@ -16,4 +16,4 @@ spec:
|
||||
protocol: TCP
|
||||
name: https
|
||||
selector:
|
||||
app: nginx-https
|
||||
app: nginx-https
|
||||
|
@ -15,4 +15,4 @@ spec:
|
||||
service:
|
||||
name: your-service-name # The name of the service
|
||||
port:
|
||||
number: 80 # Service Portnumber
|
||||
number: 80 # Service Portnumber
|
||||
|
@ -1,4 +1,4 @@
|
||||
apiVersion: v1
|
||||
kind: Namespace
|
||||
metadata:
|
||||
name: your-namespace
|
||||
name: your-namespace
|
||||
|
@ -8,4 +8,4 @@ spec:
|
||||
storageClassName: civo-volume
|
||||
resources:
|
||||
requests:
|
||||
storage: 1Gi
|
||||
storage: 1Gi
|
||||
|
@ -24,4 +24,4 @@ spec:
|
||||
volumes:
|
||||
- name: civo
|
||||
persistentVolumeClaim:
|
||||
claimName: civo
|
||||
claimName: civo
|
||||
|
@ -24,4 +24,4 @@ spec:
|
||||
volumes:
|
||||
- name: local
|
||||
hostPath:
|
||||
path: /var/nginxserver
|
||||
path: /var/nginxserver
|
||||
|
@ -10,4 +10,4 @@ spec:
|
||||
storageClassName: nfs
|
||||
nfs:
|
||||
server: 192.168.1.7
|
||||
path: "/srv/nfs"
|
||||
path: "/srv/nfs"
|
||||
|
@ -8,4 +8,4 @@ spec:
|
||||
storageClassName: nfs
|
||||
resources:
|
||||
requests:
|
||||
storage: 100Mi
|
||||
storage: 100Mi
|
||||
|
@ -29,4 +29,4 @@ spec:
|
||||
# - name: http
|
||||
# port: 80
|
||||
# targetPort: 30001
|
||||
# protocol: TCP # optional protocol
|
||||
# protocol: TCP # optional protocol
|
||||
|
@ -32,4 +32,4 @@ spec:
|
||||
# - hosts:
|
||||
# - your-hostname.com # Your hostname
|
||||
# secretName: your-secret # Your TLS Secret
|
||||
# ---
|
||||
# ---
|
||||
|
@ -18,4 +18,4 @@ spec:
|
||||
# (Optional) TLS Passthrough
|
||||
# tls:
|
||||
# passthrough: true
|
||||
# ---
|
||||
# ---
|
||||
|
@ -1 +1 @@
|
||||
datasource_list: [ConfigDrive, NoCloud]
|
||||
datasource_list: [ConfigDrive, NoCloud]
|
||||
|
@ -1 +1 @@
|
||||
datasource_list: [ConfigDrive, NoCloud]
|
||||
datasource_list: [ConfigDrive, NoCloud]
|
||||
|
@ -0,0 +1 @@
|
||||
|
@ -1 +1 @@
|
||||
datasource_list: [ConfigDrive, NoCloud]
|
||||
datasource_list: [ConfigDrive, NoCloud]
|
||||
|
@ -1 +1 @@
|
||||
datasource_list: [ConfigDrive, NoCloud]
|
||||
datasource_list: [ConfigDrive, NoCloud]
|
||||
|
@ -0,0 +1 @@
|
||||
|
@ -43,4 +43,4 @@ resource "helm_release" "traefik" {
|
||||
name = "tlsOptions.default.minVersion"
|
||||
value = "VersionTLS12"
|
||||
}
|
||||
}
|
||||
}
|
||||
|
@ -4,4 +4,4 @@ resource "kubectl_manifest" "your-manifest-file" {
|
||||
# Put your Manifest-file Content right here...
|
||||
# ...
|
||||
YAML
|
||||
}
|
||||
}
|
||||
|
@ -38,4 +38,4 @@ resource "kubernetes_deployment" "your-deployment" {
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
|
@ -36,4 +36,4 @@ resource "kubernetes_ingress_v1" "your-ingress" {
|
||||
# hosts = ["your-domain"]
|
||||
# }
|
||||
}
|
||||
}
|
||||
}
|
||||
|
@ -12,4 +12,4 @@ resource "kubernetes_secret" "cloudflare_api_key_secret" {
|
||||
}
|
||||
|
||||
type = "Opaque"
|
||||
}
|
||||
}
|
||||
|
@ -16,4 +16,4 @@ resource "kubernetes_service" "your-service" {
|
||||
|
||||
type = "ClusterIP"
|
||||
}
|
||||
}
|
||||
}
|
||||
|
@ -1,3 +1,3 @@
|
||||
proxmox_api_url = "https://0.0.0.0:8006/api2/json" # Your Proxmox IP Address
|
||||
proxmox_api_token_id = "terraform@pam!terraform" # API Token ID
|
||||
proxmox_api_token_secret = "your-api-token-secret"
|
||||
proxmox_api_token_secret = "your-api-token-secret"
|
||||
|
@ -46,4 +46,4 @@ resource "proxmox_vm_qemu" "your-vm" {
|
||||
# sshkeys = <<EOF
|
||||
# #YOUR-PUBLIC-SSH-KEY
|
||||
# EOF
|
||||
}
|
||||
}
|
||||
|
@ -12,4 +12,4 @@ resource "civo_instance" "server" {
|
||||
# notes = "this is a note for the server"
|
||||
# initial_user = "user"
|
||||
# sshkey_id = data.civo_ssh_key.sshkey.id
|
||||
}
|
||||
}
|
||||
|
@ -37,4 +37,4 @@ provider "civo" {
|
||||
token = var.civo_token
|
||||
# (optional) change the defaullt region
|
||||
# region = "FRA1"
|
||||
}
|
||||
}
|
||||
|
@ -76,4 +76,4 @@ resource "time_sleep" "wait_for_clusterissuer" {
|
||||
]
|
||||
|
||||
create_duration = "30s"
|
||||
}
|
||||
}
|
||||
|
@ -73,4 +73,4 @@ provider "kubectl" {
|
||||
provider "cloudflare" {
|
||||
email = var.cloudflare_email
|
||||
api_key = var.cloudflare_api_key
|
||||
}
|
||||
}
|
||||
|
@ -44,4 +44,4 @@ resource "helm_release" "traefik" {
|
||||
value = "true"
|
||||
}
|
||||
|
||||
}
|
||||
}
|
||||
|
@ -21,4 +21,4 @@ resource "docker_container" "nginx" {
|
||||
internal = 80
|
||||
external = 8000
|
||||
}
|
||||
}
|
||||
}
|
||||
|
@ -35,4 +35,4 @@ Vagrant.configure("2") do |config|
|
||||
end
|
||||
end
|
||||
|
||||
end
|
||||
end
|
||||
|
Loading…
Reference in New Issue
Block a user