kris/homelab
kris/homelab
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Add reverse proxy settings for Gitea and Bitwarden

Browse Source
This commit is contained in:
Kris Lamoureux 2022-05-28 00:18:15 -04:00
parent 3a92921932
commit eccd6b7874
Signed by: kris
GPG Key ID: 3EDA9C3441EDA925
7 changed files with 22 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
roles/bitwarden/defaults/main.yml
View File

@ -1,5 +1,6 @@
bitwarden_name: bitwarden bitwarden_name: bitwarden
bitwarden_root: "/var/lib/{{ bitwarden_name }}" bitwarden_root: "/var/lib/{{ bitwarden_name }}"
bitwarden_database: "{{ bitwarden_name }}" bitwarden_database: "{{ bitwarden_name }}"
bitwarden_realips: "172.16.0.0/12"
bitwarden_standalone: false bitwarden_standalone: false
bitwarden_production: false bitwarden_production: false

6
roles/bitwarden/tasks/main.yml
View File

@ -65,6 +65,12 @@
when: not bitwarden_standalone when: not bitwarden_standalone
notify: rebuild_bitwarden notify: rebuild_bitwarden
- name: Define reverse proxy servers
lineinfile:
path: "{{ bitwarden_root }}/bwdata/config.yml"
line: "- {{ bitwarden_realips }}"
insertafter: "^real_ips"
- name: Install Bitwarden systemd service - name: Install Bitwarden systemd service
template: template:
src: bitwarden.service.j2 src: bitwarden.service.j2

4
roles/gitea/defaults/main.yml
View File

@ -14,5 +14,9 @@ gitea_dbhost: host.docker.internal
gitea_dbname: "{{ gitea_name }}" gitea_dbname: "{{ gitea_name }}"
gitea_dbuser: "{{ gitea_name }}" gitea_dbuser: "{{ gitea_name }}"
# proxy settings
gitea_proxy_limit: "1"
gitea_trusted_proxies: "172.16.0.0/12"
# host # host
gitea_root: "{{ docker_compose_root }}/{{ gitea_name }}" gitea_root: "{{ docker_compose_root }}/{{ gitea_name }}"

5
roles/gitea/handlers/main.yml Normal file
View File

@ -0,0 +1,5 @@
- name: Restart Gitea
service:
name: "{{ docker_compose_service }}@{{ gitea_name }}"
state: restarted
listen: restart_gitea

2
roles/gitea/tasks/main.yml
View File

@ -73,11 +73,13 @@
template: template:
src: docker-compose.yml.j2 src: docker-compose.yml.j2
dest: "{{ gitea_root }}/docker-compose.yml" dest: "{{ gitea_root }}/docker-compose.yml"
notify: restart_gitea
- name: Install Gitea's docker-compose variables - name: Install Gitea's docker-compose variables
template: template:
src: compose-env.j2 src: compose-env.j2
dest: "{{ gitea_root }}/.env" dest: "{{ gitea_root }}/.env"
notify: restart_gitea
- name: Start and enable Gitea service - name: Start and enable Gitea service
service: service:

2
roles/gitea/templates/compose-env.j2
View File

@ -10,6 +10,8 @@ gitea_dbhost={{ gitea_dbhost }}
gitea_dbname={{ gitea_dbname }} gitea_dbname={{ gitea_dbname }}
gitea_dbuser={{ gitea_dbuser }} gitea_dbuser={{ gitea_dbuser }}
gitea_dbpass={{ gitea_dbpass }} gitea_dbpass={{ gitea_dbpass }}
gitea_proxy_limit={{ gitea_proxy_limit }}
gitea_trusted_proxies={{ gitea_trusted_proxies }}
{% if not gitea_signup %} {% if not gitea_signup %}
gitea_disable_registration=true gitea_disable_registration=true
{% else %} {% else %}

2
roles/gitea/templates/docker-compose.yml.j2
View File

@ -20,6 +20,8 @@ services:
- GITEA__database__NAME=${gitea_dbname} - GITEA__database__NAME=${gitea_dbname}
- GITEA__database__USER=${gitea_dbuser} - GITEA__database__USER=${gitea_dbuser}
- GITEA__database__PASSWD=${gitea_dbpass} - GITEA__database__PASSWD=${gitea_dbpass}
- GITEA__security__REVERSE_PROXY_LIMIT=${gitea_proxy_limit}
- GITEA__security__REVERSE_PROXY_TRUSTED_PROXIES=${gitea_trusted_proxies}
- GITEA__service__DISABLE_REGISTRATION=${gitea_disable_registration} - GITEA__service__DISABLE_REGISTRATION=${gitea_disable_registration}
volumes: volumes:
- {{ gitea_volume }}:/data - {{ gitea_volume }}:/data