status-im
/
infra-template
mirror of https://github.com/status-im/infra-template.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

minor updates after infra-shards 

1. add consul certs
2. don't fix ansible roles version
3. README to update infra-repos
This commit is contained in:
Anton Iakimov 2023-10-05 14:02:30 +02:00
parent be8917fe20
commit 8372392ef1
No known key found for this signature in database
GPG Key ID: DEA1FE58DD8BF7FA
3 changed files with 7 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
README.md
View File

@ -17,6 +17,8 @@
> - Extend `ansible/group_vars/all.yml` > - Extend `ansible/group_vars/all.yml`
> - Or add a dedicated `group_vars` file > - Or add a dedicated `group_vars` file
> - Create the `ansible/main.yml` playbook > - Create the `ansible/main.yml` playbook
>- Github
> - Add to `infra-repos/variables.tf`
# Repo Usage # Repo Usage

3
ansible/group_vars/all.yml
View File

@ -4,6 +4,9 @@ bootstrap__root_pass: '{{lookup("bitwarden", "root-pass")}}'
# Consul # Consul
bootstrap__consul_encryption_key: '{{lookup("bitwarden", "consul/cluster", field="encryption-key")}}' bootstrap__consul_encryption_key: '{{lookup("bitwarden", "consul/cluster", field="encryption-key")}}'
bootstarp__consul_agent_acl_token: '{{lookup("bitwarden", "consul/acl-tokens", field="agent-default")}}' bootstarp__consul_agent_acl_token: '{{lookup("bitwarden", "consul/acl-tokens", field="agent-default")}}'
bootstrap__consul_certs_ca_crt: '{{lookup("bitwarden", "consul/certs", file="ca.pem")}}'
bootstrap__consul_certs_client_crt: '{{lookup("bitwarden", "consul/certs", file="client.pem")}}'
bootstrap__consul_certs_client_key: '{{lookup("bitwarden", "consul/certs", file="client-key.pem")}}'
# SSHGuard # SSHGuard
bootstrap__sshguard_whitelist_extra: ['{{lookup("bitwarden", "sshguard/whitelist", field="jakubgs-home")}}'] bootstrap__sshguard_whitelist_extra: ['{{lookup("bitwarden", "sshguard/whitelist", field="jakubgs-home")}}']
# Wireguard # Wireguard

6
ansible/requirements.yml
View File

@ -1,30 +1,24 @@
--- ---
- name: infra-role-bootstrap-linux - name: infra-role-bootstrap-linux
src: git@github.com:status-im/infra-role-bootstrap-linux.git src: git@github.com:status-im/infra-role-bootstrap-linux.git
version: 50eda0808cceaaad2a5c5cdb4493935f2e3a637d
scm: git scm: git
- name: infra-role-wireguard - name: infra-role-wireguard
src: git@github.com:status-im/infra-role-wireguard.git src: git@github.com:status-im/infra-role-wireguard.git
version: b711bbabd2dc3d9ce8b1c3a6e5bc785901db9d09
scm: git scm: git
- name: open-ports - name: open-ports
src: git@github.com:status-im/infra-role-open-ports.git src: git@github.com:status-im/infra-role-open-ports.git
version: 24dc30dbdf85e6758cb6924074b2f7a0f4541524
scm: git scm: git
- name: swap-file - name: swap-file
src: git@github.com:status-im/infra-role-swap-file.git src: git@github.com:status-im/infra-role-swap-file.git
version: 3fb0fb8d313ab388df1b38d516e2ff88b72a2cf7
scm: git scm: git
- name: consul-service - name: consul-service
src: git@github.com:status-im/infra-role-consul-service.git src: git@github.com:status-im/infra-role-consul-service.git
version: 2b3d4e53856d6cc91ae5c5a342fd12f2bb96aa88
scm: git scm: git
- name: systemd-timer - name: systemd-timer
src: git@github.com:status-im/infra-role-systemd-timer.git src: git@github.com:status-im/infra-role-systemd-timer.git
version: c6bbc3d1b4b0ba603d82fa06cd17297d12523182
scm: git scm: git