add dav server
This commit is contained in:
parent
c985ffd089
commit
2969ee0cf8
6 changed files with 91 additions and 0 deletions
22
README.md
22
README.md
|
|
@ -1 +1,23 @@
|
||||||
# Ansible scripts for our private Intel NUC servers
|
# Ansible scripts for our private Intel NUC servers
|
||||||
|
|
||||||
|
## TODO
|
||||||
|
|
||||||
|
### nsd
|
||||||
|
|
||||||
|
https://github.com/The-Kube-Way/nsd
|
||||||
|
Maybe put zone files in a data directory.
|
||||||
|
KSK in ansible vault.
|
||||||
|
Then in ansible role:
|
||||||
|
- Generate ZSK if needed
|
||||||
|
- Sign role if needed
|
||||||
|
- ZSK key roll over
|
||||||
|
|
||||||
|
### reverse proxy + certbot
|
||||||
|
|
||||||
|
nginx? HA-proxy? Traefik?
|
||||||
|
Enable reverse proxy rules if service is enabled.
|
||||||
|
Should probably start creating a seperate cert for each subdomain.
|
||||||
|
|
||||||
|
### Git server
|
||||||
|
|
||||||
|
GitLab? Gitea?
|
||||||
|
|
|
||||||
4
playbooks/radicale.yml
Normal file
4
playbooks/radicale.yml
Normal file
|
|
@ -0,0 +1,4 @@
|
||||||
|
- name: Install Radicale
|
||||||
|
hosts: nucs
|
||||||
|
roles:
|
||||||
|
- radicale
|
||||||
11
roles/radicale/files/docker-compose.yml
Normal file
11
roles/radicale/files/docker-compose.yml
Normal file
|
|
@ -0,0 +1,11 @@
|
||||||
|
version: '3'
|
||||||
|
services:
|
||||||
|
radicale:
|
||||||
|
restart: always
|
||||||
|
image: mailu/radicale:1.9
|
||||||
|
ports:
|
||||||
|
- '0.0.0.0:5232:5232'
|
||||||
|
volumes:
|
||||||
|
- /data/radicale:/var/lib/radicale
|
||||||
|
- /apps/radicale/config:/radicale
|
||||||
|
command: radicale -S -C /radicale/radicale.conf
|
||||||
24
roles/radicale/files/radicale.conf
Normal file
24
roles/radicale/files/radicale.conf
Normal file
|
|
@ -0,0 +1,24 @@
|
||||||
|
[server]
|
||||||
|
hosts = 0.0.0.0:5232, [::]:5232
|
||||||
|
ssl = False
|
||||||
|
|
||||||
|
[encoding]
|
||||||
|
request = utf-8
|
||||||
|
stock = utf-8
|
||||||
|
|
||||||
|
[auth]
|
||||||
|
realm = Radicale - Password Required
|
||||||
|
type = htpasswd
|
||||||
|
htpasswd_filename = /radicale/users
|
||||||
|
htpasswd_encryption = md5
|
||||||
|
|
||||||
|
[rights]
|
||||||
|
type = owner_only
|
||||||
|
|
||||||
|
[storage]
|
||||||
|
type = multifilesystem
|
||||||
|
filesystem_folder = /data
|
||||||
|
|
||||||
|
[logging]
|
||||||
|
|
||||||
|
[headers]
|
||||||
1
roles/radicale/files/users
Normal file
1
roles/radicale/files/users
Normal file
|
|
@ -0,0 +1 @@
|
||||||
|
pim:$apr1$GUiTihkS$dDCkaUxFx/O86m6NCy/yQ.
|
||||||
29
roles/radicale/tasks/main.yml
Normal file
29
roles/radicale/tasks/main.yml
Normal file
|
|
@ -0,0 +1,29 @@
|
||||||
|
- name: Create Radicale app directory
|
||||||
|
file:
|
||||||
|
path: /apps/radicale
|
||||||
|
state: directory
|
||||||
|
- name: Copy docker-compose.yml file
|
||||||
|
copy:
|
||||||
|
src: "{{ role_path }}/files/docker-compose.yml"
|
||||||
|
dest: /apps/radicale/docker-compose.yml
|
||||||
|
- name: Create Radicale config directory
|
||||||
|
file:
|
||||||
|
path: /apps/radicale/config
|
||||||
|
state: directory
|
||||||
|
- name: Copy radicale.conf
|
||||||
|
copy:
|
||||||
|
src: "{{ role_path }}/files/radicale.conf"
|
||||||
|
dest: /apps/radicale/config/radicale.conf
|
||||||
|
- name: Copy users file
|
||||||
|
copy:
|
||||||
|
src: "{{ role_path }}/files/users"
|
||||||
|
dest: /apps/radicale/config/users
|
||||||
|
- name: Create Radicale data directory
|
||||||
|
file:
|
||||||
|
path: /data/radicale
|
||||||
|
state: directory
|
||||||
|
- name: Start Docker Compose
|
||||||
|
docker_compose:
|
||||||
|
project_src: /apps/radicale
|
||||||
|
pull: true
|
||||||
|
remove_orphans: true
|
||||||
Reference in a new issue