move hedgedoc to nfs
fix database user passwords
This commit is contained in:
parent
932b930567
commit
aba119e127
4 changed files with 29 additions and 33 deletions
|
|
@ -1,6 +1,6 @@
|
|||
- name: Create database user
|
||||
postgresql_user:
|
||||
name: swarm
|
||||
name: "{{ database_name }}"
|
||||
password: "{{ database_password }}"
|
||||
become: true
|
||||
become_user: postgres
|
||||
|
|
@ -8,7 +8,7 @@
|
|||
- name: Create database
|
||||
postgresql_db:
|
||||
name: "{{ database_name }}"
|
||||
owner: swarm
|
||||
owner: "{{ database_name }}"
|
||||
become: true
|
||||
become_user: postgres
|
||||
|
||||
|
|
@ -16,7 +16,7 @@
|
|||
postgresql_privs:
|
||||
type: database
|
||||
database: "{{ database_name }}"
|
||||
role: swarm
|
||||
role: "{{ database_name }}"
|
||||
grant_option: no
|
||||
privs: all
|
||||
become: true
|
||||
|
|
@ -28,7 +28,7 @@
|
|||
dest: /etc/postgresql/15/main/pg_hba.conf
|
||||
contype: host
|
||||
databases: "{{ database_name }}"
|
||||
users: swarm
|
||||
users: "{{ database_name }}"
|
||||
address: all
|
||||
create: true
|
||||
become: true
|
||||
|
|
|
|||
|
|
@ -4,32 +4,19 @@ version: '3'
|
|||
networks:
|
||||
traefik:
|
||||
external: true
|
||||
hedgedoc:
|
||||
|
||||
volumes:
|
||||
uploads:
|
||||
driver_opts:
|
||||
type: "nfs"
|
||||
o: "addr=192.168.30.10,nolock,soft,rw"
|
||||
device: ":/mnt/data/hedgedoc/uploads"
|
||||
|
||||
services:
|
||||
hedgedoc-db:
|
||||
image: postgres:13.4-alpine
|
||||
environment:
|
||||
- POSTGRES_USER=hedgedoc
|
||||
- POSTGRES_PASSWORD=password
|
||||
- POSTGRES_DB=hedgedoc
|
||||
volumes:
|
||||
- type: bind
|
||||
source: /mnt/data/hedgedoc/database
|
||||
target: /var/lib/postgresql/data
|
||||
networks:
|
||||
hedgedoc:
|
||||
aliases:
|
||||
- database
|
||||
deploy:
|
||||
placement:
|
||||
constraints:
|
||||
- "node.labels.hedgedoc == true"
|
||||
|
||||
hedgedoc-app:
|
||||
image: quay.io/hedgedoc/hedgedoc:1.9.7
|
||||
environment:
|
||||
- CMD_DB_URL=postgres://hedgedoc:password@database:5432/hedgedoc
|
||||
- CMD_DB_URL=postgres://hedgedoc:{{ database_passwords.hedgedoc }}@192.168.30.10:5432/hedgedoc
|
||||
- CMD_DOMAIN=md.pim.kunis.nl
|
||||
- CMD_PORT=3000
|
||||
- CMD_URL_ADDPORT=false
|
||||
|
|
@ -38,18 +25,14 @@ services:
|
|||
- CMD_PROTOCOL_USESSL=true
|
||||
- CMD_SESSION_SECRET={{ session_secret }}
|
||||
volumes:
|
||||
- type: bind
|
||||
source: /mnt/data/hedgedoc/uploads
|
||||
- type: volume
|
||||
source: uploads
|
||||
target: /hedgedoc/public/uploads
|
||||
depends_on:
|
||||
- hedgedoc-db
|
||||
volume:
|
||||
nocopy: true
|
||||
networks:
|
||||
- traefik
|
||||
- hedgedoc
|
||||
deploy:
|
||||
placement:
|
||||
constraints:
|
||||
- "node.labels.hedgedoc == true"
|
||||
labels:
|
||||
- traefik.enable=true
|
||||
- traefik.http.routers.hedgedoc.entrypoints=websecure
|
||||
|
|
|
|||
|
|
@ -1,3 +1,6 @@
|
|||
- name: asdfasdf
|
||||
debug:
|
||||
msg: "{{ lookup('template', '{{ role_path }}/docker-stack.yml.j2') | from_yaml }}"
|
||||
- name: Deploy Docker stack
|
||||
docker_stack:
|
||||
name: hedgedoc
|
||||
|
|
|
|||
Reference in a new issue