From 08fb8594794f0a493fa9dc8e895652859b097406 Mon Sep 17 00:00:00 2001 From: Jan Beilicke Date: Sat, 14 Sep 2024 10:39:34 +0200 Subject: [PATCH] Adds support to provision trusted_proxies --- defaults/main.yml | 1 + tasks/main.yml | 18 +++++++++++++----- 2 files changed, 14 insertions(+), 5 deletions(-) diff --git a/defaults/main.yml b/defaults/main.yml index 9dbe9b1..fe3716d 100644 --- a/defaults/main.yml +++ b/defaults/main.yml @@ -8,6 +8,7 @@ nextcloud_mariadb_password: nextcloud nextcloud_admin_user: admin nextcloud_admin_password: mynextcloud nextcloud_trusted_domains: localhost +nextcloud_trusted_proxies: [ '172.18.0.0/16' ] virtual_host: localhost letsencrypt_host: letsencrypt_email: diff --git a/tasks/main.yml b/tasks/main.yml index 97754f4..5644ca4 100644 --- a/tasks/main.yml +++ b/tasks/main.yml @@ -134,27 +134,35 @@ - name: "docker-compose: Set overwriteprotocol using occ" shell: chdir: /home/{{ docker_user }}/nextcloud/ - cmd: docker-compose exec -u www-data nextcloud-app /bin/sh -c './occ config:system:set overwriteprotocol --value="{{ nextcloud_overwrite_protocol }}"' + cmd: docker-compose exec -T -u www-data nextcloud-app ./occ config:system:set overwriteprotocol --value="{{ nextcloud_overwrite_protocol }}" - name: "docker-compose: Set overwrite.cli.url using occ" shell: chdir: /home/{{ docker_user }}/nextcloud/ - cmd: docker-compose exec -u www-data nextcloud-app /bin/sh -c './occ config:system:set overwrite.cli.url --value="{{ nextcloud_overwrite_cli_url }}"' + cmd: docker-compose exec -T -u www-data nextcloud-app /bin/sh -c './occ config:system:set overwrite.cli.url --value="{{ nextcloud_overwrite_cli_url }}"' - name: "docker-compose: Set overwritehost using occ" shell: chdir: /home/{{ docker_user }}/nextcloud/ - cmd: docker-compose exec -u www-data nextcloud-app /bin/sh -c './occ config:system:set overwritehost --value="{{ nextcloud_overwrite_host }}"' + cmd: docker-compose exec -T -u www-data nextcloud-app /bin/sh -c './occ config:system:set overwritehost --value="{{ nextcloud_overwrite_host }}"' + +- name: "docker-compose: Set trusted_proxies using occ" + shell: + chdir: /home/{{ docker_user }}/nextcloud/ + cmd: docker-compose exec -T -u www-data nextcloud-app /bin/sh -c './occ config:system:set trusted_proxies {{ idx }} --value="{{ item }}"' + loop: "{{ nextcloud_trusted_proxies }}" + loop_control: + index_var: idx - name: "docker-compose: Fix ownership of /var/www/html" shell: chdir: /home/{{ docker_user }}/nextcloud/ - cmd: "docker-compose exec --user root nextcloud-app /bin/sh -c 'chown -R www-data: /var/www/html'" + cmd: "docker-compose exec -T --user root nextcloud-app /bin/sh -c 'chown -R www-data: /var/www/html'" - name: "docker-compose: Install Nextcloud apps (will not fail)" shell: chdir: /home/{{ docker_user }}/nextcloud/ - cmd: docker-compose exec -u www-data nextcloud-app /bin/sh -c './occ app:install "{{ item }}"' + cmd: docker-compose exec -T -u www-data nextcloud-app /bin/sh -c './occ app:install "{{ item }}"' loop: "{{ nextcloud_app_list_to_install }}" when: nextcloud_app_list_to_install | count failed_when: false