ansible
/
homelab
1
0
Fork 0
Code Issues 33 Pull Requests Projects 1 Releases Wiki Activity

Compare commits

base: ansible:main
Branches Tags
ansible:main
...
compare: ansible:d70dc99f89027da5bf9a40850f56eb517ecf0f2a
Branches Tags
ansible:main

5 Commits
main ... d70dc99f89

Author SHA1 Message Date
Lukáš Kucharczyk d70dc99f89
portainer: add nginx-internal network 2021-06-20 22:32:51 +02:00
Lukáš Kucharczyk ec6256ad16
portainer: require one_factor 2021-06-20 22:29:41 +02:00
Lukáš Kucharczyk 8934fb8855
portainer: add nginx conf 2021-06-20 22:29:25 +02:00
Lukáš Kucharczyk 6f5140f0e6
portainer: add main task 2021-06-20 22:29:11 +02:00
Lukáš Kucharczyk b9f88564f7
portainer: add role to playbook 2021-06-20 22:28:48 +02:00
4 changed files with 36 additions and 0 deletions
Show Stats Expand all files Collapse all files

1
playbook.yml
View File

@ -3,6 +3,7 @@
roles: roles:
- docker - docker
- nginx - nginx
- portainer
- jellyfin - jellyfin
- openldap - openldap
- postgres - postgres

2
roles/authelia/templates/configuration.yml.j2
View File

@ -29,6 +29,8 @@ access_control:
rules: rules:
- domain: "*.{{ base_domain }}" - domain: "*.{{ base_domain }}"
policy: bypass policy: bypass
- domain: portainer.{{ base_domain }}
policy: one_factor
name: authelia_session name: authelia_session
secret: somerandomsecret secret: somerandomsecret
expiration: 1h expiration: 1h

13
roles/portainer/tasks/main.yml Normal file
View File

@ -0,0 +1,13 @@
- name: run container
docker_container:
name: 'portainer'
image: portainer/portainer-ce
networks:
- name: nginx-internal
- name: bridge
volumes:
- "/var/run/docker.sock:/var/run/docker.sock"
ports:
- "8000:8000"
- "9000:9000"
state: started

20
roles/portainer/templates/portainer.conf.j2 Normal file
View File

@ -0,0 +1,20 @@
server {
listen 80;
server_name portainer.{{ base_domain }};
return 301 https://$host$request_uri;
}
server {
server_name portainer.{{ base_domain }};
listen 443 ssl http2;
include /etc/nginx/snippets/authelia-endpoint.conf;
location / {
include /etc/nginx/snippets/proxy.conf;
include /etc/nginx/snippets/authelia-auth.conf;
set $upstream http://portainer:9000; # This example assumes a Docker deployment
proxy_pass $upstream;
}
}