Merge pull request 'Ansible should use libssh for persistent connections' (#5 ) from feature/ansible-use-libssh-for-persistent-connections into master

Reviewed-on: #5
Ansible should use libssh for persistent connections
2024-09-14 10:50:08 +02:00 · 2024-09-14 10:50:14 +02:00 · 2024-09-14 10:35:52 +02:00 · 2024-09-14 10:35:44 +02:00 · 2023-12-09 19:13:44 +01:00 · 2023-12-09 19:11:43 +01:00
8 changed files with 61 additions and 47 deletions
--- a/README.md
+++ b/README.md
@ -25,6 +25,7 @@ The main goals of this project are:
 - [ONLYOFFICE Document Server](https://www.onlyoffice.com/) (integrates with Nextcloud)
 - [Collabora Online Development Edition](https://www.collaboraoffice.com/code/) (integrates with Nextcloud)
 - [Cryptpad](https://cryptpad.fr/)
+- [Coturn TURN/STUN server](https://github.com/coturn/coturn)

 ### WIP

--- a/ansible.cfg
+++ b/ansible.cfg
@ -19,3 +19,6 @@ ssh_args = -o ControlMaster=auto -o ControlPersist=600s -o ServerAliveInterval=6
 control_path = %(directory)s/%%h-%%r
 pipelining = True
 timeout = 10
+
+[persistent_connection]
+ssh_type = libssh
--- a/coturn.yml
+++ b/coturn.yml
@ -0,0 +1,7 @@
+---
+# coturn TURN server
+
+- hosts: coturn
+  become: true
+  roles:
+    - jotbe.coturn-docker
--- a/docker.yml
+++ b/docker.yml
@ -3,7 +3,9 @@

 - hosts: docker
  become: true
+  pre_tasks:
+    - name: Install pip packages for Docker
+      ansible.builtin.pip: 
+        name: "{{ pip_install_packages }}"
  roles:
-    - geerlingguy.pip
-    - geerlingguy.docker
    - jotbe.traefik-docker
--- a/group_vars/docker.yml
+++ b/group_vars/docker.yml
@ -1,11 +1,6 @@
-pip_package: python3-pip
+#pip_package: python3-pip
 pip_install_packages:
-  - name: docker
-  - name: docker-compose
-docker_edition: "ce"
-docker_version: "19.03.5"
-docker_package: "docker-{{ docker_edition }}"
-docker_package_state: present
-docker_compose_version: "1.25.0"
+  - docker
+  - docker-compose
 docker_users:
  - deploy
--- a/group_vars/vagrant.yml
+++ b/group_vars/vagrant.yml
@ -16,14 +16,11 @@ firewall_allowed_udp_ports:
 users:
  - deploy
 sudoers: []
-docker_user: deploy
-cryptpad_install_user: "{{ docker_user }}"
 cryptpad_virtual_host: pad.satt.local
 cryptpad_safe_virtual_host: pad-sandbox.satt.local
 cryptpad_admin_email: admin@example.tld
 cryptpad_block_daily_check: yes
-nextcloud_install_user: "{{ docker_user }}"
-nextcloud_mariadb_root_password: password
+mariadb_root_password: password
 nextcloud_mariadb_user: nextcloud
 nextcloud_mariadb_password: password
 nextcloud_admin_user: admin
@ -34,18 +31,15 @@ nextcloud_overwrite_host: nextcloud.satt.local
 nextcloud_overwrite_protocol: http
 nextcloud_enable_restic_compose_backup: False
 nextcloud_virtual_host: nextcloud.satt.local
-collabora_install_user: "{{ docker_user }}"
 collabora_virtual_host: collabora.satt.local
 collabora_domain_regex_pattern: nextcloud\.satt\.local
 collabora_admin_user: admin
 collabora_admin_password: password
-onlyoffice_install_user: "{{ docker_user }}"
 onlyoffice_virtual_host: documentserver.satt.local
 onlyoffice_allow_origin_list: "{{ nextcloud_overwrite_cli_url }}"
 onlyoffice_jwt_enabled: "true"
 onlyoffice_jwt_secret: topsecrettoken
 onlyoffice_jwt_header: Authorization
-jitsi_install_user: "{{ docker_user }}"
 jitsi_public_url: https://jitsi.satt.local
 jitsi_docker_host_address: "{{ ansible_host }}"
 jitsi_exposed_http_port: 8000
@ -55,10 +49,11 @@ jitsi_enable_letsencrypt: False
 jitsi_virtual_host: jitsi.satt.local
 jitsi_jvb_stun_servers: meet-jit-si-turnrelay.jitsi.net:443
 jitsi_web_channel_last_n: 2
-traefik_install_user: "{{ docker_user }}"
-traefik_expose_internally: True
-traefik_expose_externally: False
-traefik_enable_acme: False
-traefik_use_acme_staging: False
-traefik_dns_challenge_provider: False
+docker_user: deploy
+traefik:
+  expose_internally: True
+  expose_externally: False
+  enable_acme: False
+  use_acme_staging: False
+  dns_challenge_provider: False

--- a/requirements.yml
+++ b/requirements.yml
@ -1,25 +1,35 @@
- geerlingguy.firewall
- geerlingguy.pip
- geerlingguy.docker
+collections:
+  - community.docker

- name: jotbe.common
+roles:
+  - geerlingguy.firewall
+  - geerlingguy.pip
+  # - geerlingguy.docker
+
+  - name: jotbe.common
    src: https://git.jotbe.io/jotbe/ansible-role-common.git
    scm: git
- name: jotbe.traefik-docker
+  - name: jotbe.traefik-docker
    src: https://git.jotbe.io/jotbe/ansible-role-traefik-docker.git
    scm: git
- name: jotbe.nextcloud-docker
+  - name: jotbe.nextcloud-docker
+    version: v1.0.2
    src: https://git.jotbe.io/jotbe/ansible-role-nextcloud-docker.git
    scm: git
- name: jotbe.jitsi-docker
+  - name: jotbe.coturn-docker
+    src: https://git.jotbe.io/jotbe/ansible-role-coturn-docker.git
+    scm: git
+  - name: jotbe.jitsi-docker
+    version: v1.0.0
    src: https://git.jotbe.io/jotbe/ansible-role-jitsi-docker.git
    scm: git
- name: jotbe.collabora-online-docker
+  - name: jotbe.collabora-online-docker
+    version: v1.0.0
    src: https://git.jotbe.io/jotbe/ansible-role-collabora-online-docker.git
    scm: git
- name: jotbe.onlyoffice-document-server-docker
+  - name: jotbe.onlyoffice-document-server-docker
    src: https://git.jotbe.io/jotbe/ansible-role-onlyoffice-document-server-docker.git
    scm: git
- name: jotbe.cryptpad-docker
+  - name: jotbe.cryptpad-docker
    src: https://git.jotbe.io/jotbe/ansible-role-cryptpad-docker.git
    scm: git
--- a/site.yml
+++ b/site.yml
@ -5,5 +5,6 @@
 - import_playbook: docker.yml
 - import_playbook: nextcloud.yml
 - import_playbook: collabora-online.yml
+- import_playbook: coturn.yml
 - import_playbook: jitsi.yml
 - import_playbook: cryptpad.yml
Author	SHA1	Message	Date
Jan Beilicke	a7d28c6b9b	Merge pull request 'Ansible should use libssh for persistent connections' (#5 ) from feature/ansible-use-libssh-for-persistent-connections into master Reviewed-on: #5	2024-09-14 10:50:08 +02:00
Jan Beilicke	b95aa3bc89	Ansible should use libssh for persistent connections	2024-09-14 10:50:14 +02:00
Jan Beilicke	321cf7d992	Merge pull request 'Removes pinned docker version to align with docker-compose' (#4 ) from feature/remove-docker-version into master Reviewed-on: #4	2024-09-14 10:35:52 +02:00
Jan Beilicke	1026ff5c29	Removes pinned docker version to align with docker-compose	2024-09-14 10:35:44 +02:00
Jan Beilicke	a99b5922ab	Merge pull request 'Simplifies docker provisioning, fixes issue with docker 7.0.0 pip packages through downgrade' (#3 ) from change/use-community-docker into master Reviewed-on: #3	2023-12-09 19:13:44 +01:00
Jan Beilicke	f4877cea21	Simplifies docker provisioning, fixes issue with docker 7.0 pip packages through downgrade	2023-12-09 19:11:43 +01:00
Jan Beilicke	44ebdef575	Use Ansible role Jitsi v1.0.0	2023-10-30 01:03:04 +01:00
Jan Beilicke	0d65488f34	Use Ansible role Collabora v1.0.0	2023-10-29 23:05:17 +01:00
Jan Beilicke	1217fc0fa4	Use Ansible role Nextcloud 1.0.2	2023-10-29 21:58:28 +01:00
Jan Beilicke	ff802c6f71	Use Ansible role Nextcloud v1.0.1	2023-10-29 19:42:04 +01:00
Jan Beilicke	18b6ebd7aa	Uses ansible-role-nextcloud-docker v1.0.0	2023-10-29 11:42:03 +01:00
Jan Beilicke	e64a056966	Merge pull request 'feature/coturn-docker' (#2 ) from feature/coturn-docker into master Reviewed-on: #2	2022-10-03 20:00:35 +00:00
Jan Beilicke	3a89a87f08	Added scm to coturn repo	2022-10-03 21:58:11 +02:00
Jan Beilicke	5ef0b58131	Added coturn	2022-10-03 21:56:46 +02:00