furion/ansible_bxlife
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

initial push

Browse Source
This commit is contained in:
suu
2025-03-12 13:55:27 +01:00
commit 9f90c494ea
88 changed files with 2343 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

100
roles/deploy-docker/templates/bacula.yml Normal file
View File

@@ -0,0 +1,100 @@
version: '3.1'
services:
db:
image: eftechcombr/bacula:15.0.2-catalog
restart: unless-stopped
environment:
POSTGRES_PASSWORD: bacula
POSTGRES_USER: bacula
POSTGRES_DB: bacula
volumes:
- ./pgdata:/var/lib/postgresql/data:rw
ports:
- 5432:5432
#
bacula-dir:
image: eftechcombr/bacula:15.0.2-director
restart: unless-stopped
volumes:
- ./etc:/opt/bacula/etc:ro
depends_on:
- db
ports:
- 9101:9101
#
bacula-sd:
image: eftechcombr/bacula:15.0.2-storage
restart: unless-stopped
depends_on:
- bacula-dir
- db
volumes:
- ./etc:/opt/bacula/etc:ro
ports:
- 9103:9103
#
bacula-fd:
image: eftechcombr/bacula:15.0.2-client
restart: unless-stopped
depends_on:
- bacula-sd
- bacula-dir
- db
volumes:
- ./etc:/opt/bacula/etc:ro
ports:
- 9102:9102
baculum-api:
image: eftechcombr/baculum:15.0.2-api
restart: unless-stopped
depends_on:
- db
- bacula-dir
volumes:
- ./etc/bconsole.conf:/opt/bacula/etc/bconsole.conf:ro
- ./etc/baculum:/etc/baculum:rw
ports:
- 9096:9096
#
baculum-web:
image: eftechcombr/baculum:15.0.2-web
restart: unless-stopped
depends_on:
- baculum-api
volumes:
- ./etc/bconsole.conf:/opt/bacula/etc/bconsole.conf:ro
- ./etc/baculum:/etc/baculum:rw
ports:
- 9095:9095
#
#volumes:
# pgdata:
#
# gmail:
# image: eftechcombr/postfix:gmail
# restart: unless-stopped
# depends_on:
# - bacula-dir
# # ports:
# # - 30025:25
# environment:
# GMAIL_USER: xxxxxxxx
# GMAIL_PASS: xxxxxxxx
#
# smtp2tg:
# image: b3vis/docker-smtp2tg
# restart: unless-stopped
# volumes:
# - ./etc/smtp2tg.toml:/config/smtp2tg.toml:ro
# # ports:
# # - "31025:25"
# depends_on:
# - bacula-dir
#
#
#volumes:
# pgdata:

28
roles/deploy-docker/templates/bitwarden.yml Normal file
View File

@@ -0,0 +1,28 @@
---
version: '3.1'
services:
Bitwarden:
image: vaultwarden/server:latest
container_name: {{ name_docker }}
hostname: {{ name_docker }}
restart: always
environment:
- SIGNUPS_ALLOWED=true
- ADMIN_TOKEN=fhBMPCHo0TUNDB
- SHOW_PASSWORD_HINT=true
- DOMAIN=https://password.{{ domaine_ext }}
- SMTP_HOST=ssl0.ovh.net
- SMTP_FROM=contact@{{ domaine_ext }}
- SMTP_FROM_NAME=RedFrontier Password Manager (Bitwarden)
- SMTP_SECURITY=force_tls
# ("starttls", "force_tls", "off") Enable a secure connection. Default is "starttls" (Explicit - ports 587 or 25), "force_tls" (Implicit - port 465) or "off", no encryption (port 25)
- SMTP_PORT=465
# Ports 587 (submission) and 25 (smtp) are standard without encryption and with encryption via STARTTLS (Explicit TLS). Port 465 (submissions) is used for encrypted submission (Implicit TLS).
- SMTP_USERNAME=contact@{{ domaine_ext }}
- SMTP_PASSWORD=Jemeqq3dw@louovh
- SMTP_TIMEOUT=15
ports:
- 9091:80
- 9092:3012
volumes:
- ./:/data

51
roles/deploy-docker/templates/bookstack.yml Normal file
View File

@@ -0,0 +1,51 @@
version: "3"
services:
bookstack:
image: linuxserver/bookstack:latest
container_name: {{ name_docker }}
hostname: {{ name_docker }}
volumes:
- ./config:/config
environment:
- APP_URL=https://wiki.{{domaine_ext}}
- PGID=1000
- PUID=1000
- DB_HOST=bookstack-db
- DB_DATABASE=bookstack
- DB_USERNAME=bxlife
- DB_PASSWORD=3aslZpYfZ0j8nEbz
- DISCORD_APP_ID=1294769940171067413
- DISCORD_APP_SECRET=UdI8nbpOzk9LuAV2qxn6sMVdOI_XptZ3
- APP_LANG=fr
- APP_THEME="custom"
# - MAIL_ENCRYPTION=
# - MAIL_FROM_NAME=
# - MAIL_FROM=
# - MAIL_PORT=
# - MAIL_PASSWORD=
# - MAIL_USERNAME=
# - MAIL_HOST=
- FILE_UPLOAD_SIZE_LIMIT=999
- APP_DEFAULT_DARK_MODE=true
- ALLOWED_IFRAME_SOURCES="*"
ports:
- 10003:443
- 10004:80
restart: always
depends_on:
- bookstack-db
bookstack-db:
image: mariadb:10.3
container_name: bookstack-db
environment:
- PUID=1000
- PGID=1000
- MYSQL_ROOT_PASSWORD=g6u3h9QWAGE9Q8
- TZ=Europe/Paris
- MYSQL_DATABASE=bookstack
- MYSQL_USER=bxlife
- MYSQL_PASSWORD=3aslZpYfZ0j8nEbz
volumes:
- ./mysql:/var/lib/mysql
restart: always

12
roles/deploy-docker/templates/cloudflare-ddns.yml Normal file
View File

@@ -0,0 +1,12 @@
version: '3'
services:
cloudflare-ddns-server:
container_name: CloudFlare-DDNS-SERVEUR
hostname: CloudFlare-DDNS-SERVER
image: oznu/cloudflare-ddns:latest
restart: always
environment:
- API_KEY=pI56QZrEywuFBB5mAAdz-d-4WCjP-_5-R0fYesjQ
- ZONE={{domaine_ext}}
- SUBDOMAIN=server
- PROXIED=false

20
roles/deploy-docker/templates/codeserver.yml Normal file
View File

@@ -0,0 +1,20 @@
version: "3.1"
services:
codeserver:
image: linuxserver/code-server:latest
environment:
- PUID=1000
- PGID=1000
- TZ=Europe/Paris
- PASSWORD=caabda9758f649bb01572c7b
volumes:
- ./config:/config
ports:
- 4850:8443
restart: always
healthcheck:
test: curl -f http://localhost:8443/ || exit 1
interval: 60s
retries: 5
start_period: 20s
timeout: 10s

20
roles/deploy-docker/templates/dolibarr.yml Normal file
View File

@@ -0,0 +1,20 @@
version: "3"
services:
mariadb:
image: mariadb:latest
environment:
MYSQL_ROOT_PASSWORD: 5XgEvqxdAUTA6f
MYSQL_DATABASE: dolibarr
web:
image: tuxgasy/dolibarr
environment:
DOLI_DB_HOST: mariadb
DOLI_DB_USER: root
DOLI_DB_PASSWORD: 5XgEvqxdAUTA6f
DOLI_DB_NAME: dolibarr
DOLI_URL_ROOT: 'http://0.0.0.0'
PHP_INI_DATE_TIMEZONE: 'Europe/Paris'
ports:
- "80:80"
links:
- mariadb

20
roles/deploy-docker/templates/duplicati.yml Normal file
View File

@@ -0,0 +1,20 @@
version: "3.9"
services:
duplicati:
image: linuxserver/duplicati
container_name: duplicati
restart: always
ports:
- 8200:8200 # Interface web accessible sur http://localhost:8200
environment:
- PUID=1000
- PGID=1000
- TZ=Europe/Paris
- SETTINGS_ENCRYPTION_KEY=nyfNRe229zQTGVVh # 🔐 Ajoute une clé de chiffrement
- DUPLICATI__WEB__AUTHENTICATION__USERNAME=bxlife
- DUPLICATI__WEB__AUTHENTICATION__PASSWORD=LhjlWfTa3ahuOg9J
volumes:
- /:/host_root:ro # Accès en lecture seule à tout l'hôte
- ./backups:/source # Dossier où sont stockés les backups locaux
- ./duplicati:/config # Configuration et base de données Duplicati

14
roles/deploy-docker/templates/filebrowser.yml Normal file
View File

@@ -0,0 +1,14 @@
version: "3"
services:
file_browser:
image: filebrowser/filebrowser:latest
container_name: {{ name_docker }}
hostname: {{ name_docker }}
environment:
- PUID=1000
- PGID=1000
volumes:
- /:/srv
ports:
- 8963:80
restart: always

36
roles/deploy-docker/templates/firefly.yml Normal file
View File

@@ -0,0 +1,36 @@
version: "3"
services:
firefly:
image: fireflyiii/core:latest
container_name: Firefly
volumes:
- ./app:/var/www/html/storage/upload
environment:
- APP_URL=https://budget.{{ domaine_ext }}
- TRUSTED_PROXIES=**
- APP_KEY=azertyuiopqsdfghjklmwxcvbn123456
- DB_HOST=firefly-db
- DB_PORT=3306
- DB_CONNECTION=mysql
- DB_DATABASE=firefly
- DB_USERNAME=bxlife
- DB_PASSWORD=YKo9iG2&CsSb3fKNTm%UosVeC
ports:
- 17555:8080
restart: always
depends_on:
- firefly-db
firefly-db:
image: mariadb:10.5.21
container_name: firefly_db
environment:
- PUID=1000
- PGID=1000
- MYSQL_ROOT_PASSWORD=YFEyHkb7tizo9h
- TZ=Europe/Paris
- MYSQL_DATABASE=firefly
- MYSQL_USER=bxlife
- MYSQL_PASSWORD=YKo9iG2&CsSb3fKNTm%UosVeC
volumes:
- ./config/mysql:/var/lib/mysql
restart: unless-stopped

50
roles/deploy-docker/templates/fivem.yml Normal file
View File

@@ -0,0 +1,50 @@
version: "3.9"
services:
fivem:
image: spritsail/fivem:13227
container_name: fivem
environment:
- NO_LICENSE_KEY=1
- NO_DEFAULT_CONFIG=1
- PUID=0
- PGID=0
volumes:
- ./config:/config
- ./txData:/txData
ports:
- '40120:40120'
- '30120:30120'
- '30120:30120/udp'
restart: always
depends_on:
- fivem-db
fivem-db:
image: mariadb:10.11.6
container_name: fivem_db
environment:
- PUID=0
- PGID=0
- MYSQL_ROOT_PASSWORD=tdDgrdv6cs2J0D
- TZ=Europe/Paris
- MYSQL_DATABASE=hardb
- MYSQL_USER=har-admin
- MYSQL_PASSWORD=Xu22DW2SUwfGFv
#- MYSQL_ALLOW_EMPTY_PASSWORD=yes
command:
--sql_mode=NO_ZERO_IN_DATE,NO_ZERO_DATE,NO_ENGINE_SUBSTITUTION
ports:
- 3306:3306
volumes:
- ./mysql:/var/lib/mysql
# - ./mysql/my.cnf:/etc/mysql/my.cnf
restart: always
phpmyadmin:
image: phpmyadmin
restart: always
ports:
- 8080:80
environment:
- PMA_ARBITRARY=1
- UPLOAD_LIMIT=100M
depends_on:
- fivem-db

62
roles/deploy-docker/templates/gitea.yml Normal file
View File

@@ -0,0 +1,62 @@
version: "3.9"
services:
db:
image: postgres
container_name: Gitea-DB
hostname: gitea-db
security_opt:
- no-new-privileges:true
healthcheck:
test: ["CMD", "pg_isready", "-q", "-d", "gitea", "-U", "osmf15Ox8vsF9jqW"]
timeout: 45s
interval: 10s
retries: 10
user: 0:0
volumes:
- ./db:/var/lib/postgresql/data:rw
environment:
- POSTGRES_DB=gitea
- POSTGRES_USER=osmf15Ox8vsF9jqW
- POSTGRES_PASSWORD=6PLjxG0mXGAfNrK4rUT7wrlzQJ9r4IOq
restart: on-failure:5
web:
image: gitea/gitea:latest
container_name: Gitea
hostname: gitea
security_opt:
- no-new-privileges:true
healthcheck:
test: wget --no-verbose --tries=1 --spider http://localhost:3000/ || exit 1
ports:
- 3052:3000
- '2222:22'
volumes:
- ./data:/data
- /etc/TZ:/etc/TZ:ro
- /etc/localtime:/etc/localtime:ro
environment:
- USER_UID=1000
- USER_GID=1000
- GITEA__database__DB_TYPE=postgres
- GITEA__database__HOST=gitea-db:5432
- GITEA__database__NAME=gitea
- GITEA__database__USER=osmf15Ox8vsF9jqW
- GITEA__database__PASSWD=6PLjxG0mXGAfNrK4rUT7wrlzQJ9r4IOq
- ROOT_URL=https://git.{{domaine_ext}}
restart: on-failure:5
depends_on:
- db
runner:
image: gitea/act_runner:nightly
environment:
CONFIG_FILE: /config.yaml
GITEA_INSTANCE_URL: "https://git.{{domaine_ext}}"
GITEA_RUNNER_REGISTRATION_TOKEN: "2D0IxOHijNQVrMhKav8nGNpyJlF8qia51fy1Lwch"
GITEA_RUNNER_NAME: "runner_prod"
GITEA_RUNNER_LABELS: "runner_prod"
volumes:
- ./runner/config.yaml:/config.yaml
#- /home/ubuntu/redm/txData/RexshackRedMBuild_000214.base:/data/redm
- ./runner/data:/data
- /var/run/docker.sock:/var/run/docker.sock

16
roles/deploy-docker/templates/heimdall.yml Normal file
View File

@@ -0,0 +1,16 @@
version: "3"
services:
heimdall:
image: linuxserver/heimdall:latest
container_name: heimdall
environment:
- PUID=1000
- PGID=1000
- TZ=Europe/Paris
- APP_URL=https://panel.{{ domaine_ext }}
volumes:
- ./data:/config
ports:
- 9705:80
- 9706:443
restart: always

36
roles/deploy-docker/templates/nginx.yml Normal file
View File

@@ -0,0 +1,36 @@
version: '3'
services:
nginx:
image: 'jc21/nginx-proxy-manager:latest'
container_name: {{ name_docker }}
hostname: {{ name_docker }}
restart: always
ports:
- '80:80'
- '81:81'
- '443:443'
environment:
DB_MYSQL_HOST: "nginx-db"
DB_MYSQL_PORT: 3306
DB_MYSQL_USER: "bxlife"
DB_MYSQL_PASSWORD: "dKGLhPrlaYOWAOZ0"
DB_MYSQL_NAME: "nginx"
volumes:
- ./data:/data
- ./letsencrypt:/etc/letsencrypt
depends_on:
- nginx-db
nginx-db:
image: mariadb:latest
container_name: nginx-db
environment:
- PUID=1000
- PGID=1000
- MYSQL_ROOT_PASSWORD=xv4gv5k8qGXlrUUl
- TZ={{s_tz}}
- MYSQL_DATABASE=nginx
- MYSQL_USER=bxlife
- MYSQL_PASSWORD=dKGLhPrlaYOWAOZ0
volumes:
- ./config/mysql:/var/lib/mysql
restart: unless-stopped

94
roles/deploy-docker/templates/planka.yml Normal file
View File

@@ -0,0 +1,94 @@
version: '3'
services:
planka:
image: ghcr.io/plankanban/planka:latest
restart: on-failure
volumes:
- ./user-avatars:/app/public/user-avatars
- ./project-background-images:/app/public/project-background-images
- ./attachments:/app/private/attachments
ports:
- 20145:1337
environment:
- BASE_URL=https://planka.{{ domaine_ext }}
- DATABASE_URL=postgresql://postgres@postgres/planka
- SECRET_KEY=2ZNQf7B0072PS4
# - TRUST_PROXY=1
# - TOKEN_EXPIRES_IN=365 # In days
# related: https://github.com/knex/knex/issues/2354
# As knex does not pass query parameters from the connection string we
# have to use environment variables in order to pass the desired values, e.g.
# - PGSSLMODE=<value>
# Configure knex to accept SSL certificates
# - KNEX_REJECT_UNAUTHORIZED_SSL_CERTIFICATE=false
- DEFAULT_ADMIN_EMAIL=info@bruxelleslife.com # Do not remove if you want to prevent this user from being edited/deleted
- DEFAULT_ADMIN_PASSWORD=FHOHozginO95jx
- DEFAULT_ADMIN_NAME=bxlife
- DEFAULT_ADMIN_USERNAME=bxlife
# - SHOW_DETAILED_AUTH_ERRORS=false # Set to true to show more detailed authentication error messages. It should not be enabled without a rate limiter for security reasons.
# - ALLOW_ALL_TO_CREATE_PROJECTS=true
# - OIDC_ISSUER=
# - OIDC_CLIENT_ID=
# - OIDC_CLIENT_SECRET=
# - OIDC_ID_TOKEN_SIGNED_RESPONSE_ALG=
# - OIDC_USERINFO_SIGNED_RESPONSE_ALG=
# - OIDC_SCOPES=openid email profile
# - OIDC_RESPONSE_MODE=fragment
# - OIDC_USE_DEFAULT_RESPONSE_MODE=true
# - OIDC_ADMIN_ROLES=admin
# - OIDC_CLAIMS_SOURCE=userinfo
# - OIDC_EMAIL_ATTRIBUTE=email
# - OIDC_NAME_ATTRIBUTE=name
# - OIDC_USERNAME_ATTRIBUTE=preferred_username
# - OIDC_ROLES_ATTRIBUTE=groups
# - OIDC_IGNORE_USERNAME=true
# - OIDC_IGNORE_ROLES=true
# - OIDC_ENFORCED=true
# Email Notifications (https://nodemailer.com/smtp/)
- SMTP_HOST=mail.bruxelleslife.com
- SMTP_PORT=465
- SMTP_NAME=Bruxelles Life Mail
- SMTP_SECURE=true
- SMTP_USER=info@bruxelleslife.com
- SMTP_PASSWORD=vX6@kTScdN94MTJ
- SMTP_FROM="Bruxelles Life" <info@bruxelleslife.com>
- SMTP_TLS_REJECT_UNAUTHORIZED=false
# Optional fields: accessToken, events, excludedEvents
# - |
# WEBHOOKS=[{
# "url": "http://localhost:3001",
# "accessToken": "notaccesstoken",
# "events": ["cardCreate", "cardUpdate", "cardDelete"],
# "excludedEvents": ["notificationCreate", "notificationUpdate"]
# }]
# - SLACK_BOT_TOKEN=
# - SLACK_CHANNEL_ID=
# - GOOGLE_CHAT_WEBHOOK_URL=
depends_on:
postgres:
condition: service_healthy
postgres:
image: postgres:14-alpine
restart: on-failure
volumes:
- ./db-data:/var/lib/postgresql/data
environment:
- POSTGRES_DB=planka
- POSTGRES_HOST_AUTH_METHOD=trust
healthcheck:
test: ["CMD-SHELL", "pg_isready -U postgres -d planka"]
interval: 10s
timeout: 5s
retries: 5

14
roles/deploy-docker/templates/portainer.yml Normal file
View File

@@ -0,0 +1,14 @@
version: '3'
services:
portainer:
image: 'portainer/portainer-ce:latest'
container_name: {{ name_docker }}
hostname: {{ name_docker }}
restart: always
network_mode: bridge
ports:
- '8000:8000'
- '9000:9000'
volumes:
- /var/run/docker.sock:/var/run/docker.sock
- ./:/data

16
roles/deploy-docker/templates/postgressemaphore.yml Normal file
View File

@@ -0,0 +1,16 @@
version: "3.9"
name: postgressemaphore
services:
db:
image: postgres
container_name: postgressemaphore_db
hostname: postgressemaphore_db
restart: always
volumes:
- ./db:/var/lib/postgresql/data
environment:
POSTGRES_DB: semaphore
POSTGRES_USER: semaphore
POSTGRES_PASSWORD: TANee5sqeFsgSQf7
ports:
- '5433:5432'

10
roles/deploy-docker/templates/rainloop.yml Normal file
View File

@@ -0,0 +1,10 @@
version: '3'
services:
rainloop:
image: wernerfred/docker-rainloop:latest
container_name: rainloop
restart: always
ports:
- 8088:80
volumes:
- ./:/rainloop/data

12
roles/deploy-docker/templates/uptimekuma.yml Normal file
View File

@@ -0,0 +1,12 @@
version: '3.3'
services:
uptime-kuma:
image: louislam/uptime-kuma:latest
container_name: {{ name_docker }}
hostname: {{ name_docker }}
volumes:
- ./uptimekuma:/app/data
- /var/run/docker.sock:/var/run/docker.sock
ports:
- 10028:3001
restart: always