vps/env.yml

domain: viyurz.fr
timezone: "Europe/Paris"
host_uid: 1000
docker_projects_dir: "{{ ansible_env['HOME'] }}/docker-projects"

# UID shift for mapping between host & containers
uid_shift: 99999


cifs_host: "{{ cifs_credentials['username'] }}.your-storagebox.de"

cifs_mounts:
  backups:
    src: "//{{ cifs_host }}/backup/backups"
    path: /mnt/storagebox/backups 
    uid: 0
    gid: "{{ host_uid }}"
    file_mode: 640
    dir_mode: 750
  storagebox:
    src: "//{{ cifs_host }}/backup"
    path: /mnt/storagebox
    uid: 0
    gid: 0
    file_mode: 640
    dir_mode: 751
  syncthing:
    src: "//{{ cifs_host }}/backup/syncthing"
    path: /mnt/storagebox/syncthing
    uid: "{{ users['syncthing'] + uid_shift }}"
    gid: "{{ users['syncthing'] + uid_shift }}"
    file_mode: 640
    dir_mode: 750


projects:
  - coturn
  - element
  - etebase
  - hedgedoc
  - homepage
  - reverse-proxy
  - searxng
  - synapse
  - syncthing
  - vaultwarden


# Ports exposed to host
ports:
  coturn_listening: 3478
  coturn_tls_listening: 5349
  coturn_relay_min: 49152
  coturn_relay_max: 49172
  element: 8084
  etebase: 3735
  hedgedoc: 8086
  homepage: 8082
  searxng: 8083
  synapse: 8008
  syncthing_discosrv: 8443
  syncthing_webui: 8384
  syncthing_tcp: 5432
  syncthing_udp: 22000
  vaultwarden: 8081


# UID in containers
users:
  coturn: 666
  etebase: 373
  hedgedoc: 1004
  hedgedoc_mysql: 1005
  homepage: 101
  searxng: 977
  searxng_redis: 999
  synapse: 991
  synapse_postgres: 70
  syncthing: 1001
  syncthing_discosrv: 1002
  vaultwarden: 1000


volumes:
  coturn_tls_certificate_file: "/etc/letsencrypt/live/turn.{{ domain }}/fullchain.pem"
  coturn_tls_certificate_key_file: "/etc/letsencrypt/live/turn.{{ domain }}/privkey.pem"
  etebase_datadir: /mnt/etebasedata
  hedgedoc_mysql_datadir: /mnt/hedgedoc/mysql-data
  hedgedoc_configdir: /mnt/hedgedoc/config
  synapse_datadir: /mnt/synapsedata
  synapse_postgres_datadir: /mnt/synapsepgdata
  syncthing_datadir: "{{ cifs_mounts['syncthing']['path'] }}"
  vaultwarden_datadir: /mnt/vwdata


# Service-specific variables
reverse_proxy:
  ssl_certificate_file: "/etc/letsencrypt/live/{{ domain }}/fullchain.pem"
  ssl_certificate_key_file: "/etc/letsencrypt/live/{{ domain }}/privkey.pem"
  ssl_trusted_certificate_file: "/etc/letsencrypt/live/{{ domain }}/chain.pem"
  resolver: "185.12.64.12 [a01:4ff:ff00::add:2] [2a01:4ff:ff00::add:1]"


synapse:
  max_upload_size: 50M
The Great Ansible Update. 2024-02-17 19:01:04 +01:00			`domain: viyurz.fr`
			`timezone: "Europe/Paris"`
			`host_uid: 1000`
			`docker_projects_dir: "{{ ansible_env['HOME'] }}/docker-projects"`

			`# UID shift for mapping between host & containers`
			`uid_shift: 99999`


			`cifs_host: "{{ cifs_credentials['username'] }}.your-storagebox.de"`

			`cifs_mounts:`
			`backups:`
			`src: "//{{ cifs_host }}/backup/backups"`
			`path: /mnt/storagebox/backups`
			`uid: 0`
			`gid: "{{ host_uid }}"`
			`file_mode: 640`
			`dir_mode: 750`
			`storagebox:`
			`src: "//{{ cifs_host }}/backup"`
			`path: /mnt/storagebox`
			`uid: 0`
			`gid: 0`
			`file_mode: 640`
			`dir_mode: 751`
			`syncthing:`
			`src: "//{{ cifs_host }}/backup/syncthing"`
			`path: /mnt/storagebox/syncthing`
			`uid: "{{ users['syncthing'] + uid_shift }}"`
			`gid: "{{ users['syncthing'] + uid_shift }}"`
			`file_mode: 640`
			`dir_mode: 750`


			`projects:`
			`- coturn`
			`- element`
			`- etebase`
			`- hedgedoc`
			`- homepage`
			`- reverse-proxy`
			`- searxng`
			`- synapse`
			`- syncthing`
			`- vaultwarden`


			`# Ports exposed to host`
			`ports:`
			`coturn_listening: 3478`
			`coturn_tls_listening: 5349`
			`coturn_relay_min: 49152`
			`coturn_relay_max: 49172`
			`element: 8084`
			`etebase: 3735`
			`hedgedoc: 8086`
			`homepage: 8082`
			`searxng: 8083`
			`synapse: 8008`
			`syncthing_discosrv: 8443`
			`syncthing_webui: 8384`
			`syncthing_tcp: 5432`
			`syncthing_udp: 22000`
			`vaultwarden: 8081`


			`# UID in containers`
			`users:`
			`coturn: 666`
			`etebase: 373`
			`hedgedoc: 1004`
			`hedgedoc_mysql: 1005`
			`homepage: 101`
			`searxng: 977`
			`searxng_redis: 999`
			`synapse: 991`
			`synapse_postgres: 70`
			`syncthing: 1001`
			`syncthing_discosrv: 1002`
			`vaultwarden: 1000`


			`volumes:`
			`coturn_tls_certificate_file: "/etc/letsencrypt/live/turn.{{ domain }}/fullchain.pem"`
			`coturn_tls_certificate_key_file: "/etc/letsencrypt/live/turn.{{ domain }}/privkey.pem"`
			`etebase_datadir: /mnt/etebasedata`
			`hedgedoc_mysql_datadir: /mnt/hedgedoc/mysql-data`
			`hedgedoc_configdir: /mnt/hedgedoc/config`
			`synapse_datadir: /mnt/synapsedata`
			`synapse_postgres_datadir: /mnt/synapsepgdata`
			`syncthing_datadir: "{{ cifs_mounts['syncthing']['path'] }}"`
			`vaultwarden_datadir: /mnt/vwdata`


			`# Service-specific variables`
			`reverse_proxy:`
			`ssl_certificate_file: "/etc/letsencrypt/live/{{ domain }}/fullchain.pem"`
			`ssl_certificate_key_file: "/etc/letsencrypt/live/{{ domain }}/privkey.pem"`
			`ssl_trusted_certificate_file: "/etc/letsencrypt/live/{{ domain }}/chain.pem"`
			`resolver: "185.12.64.12 [a01:4ff:ff00::add:2] [2a01:4ff:ff00::add:1]"`


			`synapse:`
			`max_upload_size: 50M`