phil/ansible
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Added gotosocial and added an attempted fix for the authentik redis nonsense

Browse Source
This commit is contained in:
Phil 2024-08-15 09:28:42 -06:00
parent 6b36a66dcc
commit bff9f62093
7 changed files with 69 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
roles/docker/files/Caddyfile
View File

@ -15,6 +15,6 @@ bookmarks.thesatelliteoflove.com {
reverse_proxy hoarder-web-1:3000 reverse_proxy hoarder-web-1:3000
} }
ai.thesatelliteoflove.com { social.thesatelliteoflove.com {
reverse_proxy open-webui:8080 reverse_proxy gotosocial:8080
} }

2
roles/docker/files/gitea-compose.yml
View File

@ -14,7 +14,7 @@ services:
ports: ports:
- 222:22 - 222:22
extra_hosts: extra_hosts:
- 'auth.thesatelliteoflove.com:172.20.0.6' - 'auth.thesatelliteoflove.com:172.20.0.2'
volumes: volumes:
gitea: gitea:

2
roles/docker/tasks/gitea.yml
View File

@ -1,4 +1,4 @@
- name: make caddy directories - name: make gitea directories
ansible.builtin.file: ansible.builtin.file:
path: "{{ item}}" path: "{{ item}}"
state: directory state: directory

19
roles/docker/tasks/gotosocial.yml Normal file
View File

@ -0,0 +1,19 @@
- name: make gotosocial directories
ansible.builtin.file:
path: "{{ item}}"
state: directory
loop:
- /opt/stacks/gotosocial
- name: Template out the compose file
ansible.builtin.template:
src: gotosocial-compose.yml.j2
dest: /opt/stacks/gotosocial/compose.yml
owner: root
mode: 644
- name: deploy gotosocial stack
community.docker.docker_compose_v2:
project_src: /opt/stacks/gotosocial
files:
- compose.yml

5
roles/docker/tasks/main.yml
View File

@ -70,5 +70,6 @@
- name: Install authentik - name: Install authentik
import_tasks: authentik.yml import_tasks: authentik.yml
#- name: Install openwebui - name: Install gotosocial
# import_tasks: openwebui.yml import_tasks: gotosocial.yml

14
roles/docker/templates/authentik-compose.yml.j2
View File

@ -18,7 +18,7 @@ services:
POSTGRES_DB: ${PG_DB:-authentik} POSTGRES_DB: ${PG_DB:-authentik}
env_file: env_file:
- .env - .env
redis: trout:
image: docker.io/library/redis:alpine image: docker.io/library/redis:alpine
command: --save 60 1 --loglevel warning command: --save 60 1 --loglevel warning
restart: unless-stopped restart: unless-stopped
@ -29,13 +29,13 @@ services:
retries: 5 retries: 5
timeout: 3s timeout: 3s
volumes: volumes:
- redis:/data - trout:/data
server: server:
image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2024.6.3} image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2024.6.3}
restart: unless-stopped restart: unless-stopped
command: server command: server
environment: environment:
AUTHENTIK_REDIS__HOST: redis AUTHENTIK_REDIS__HOST: trout
AUTHENTIK_POSTGRESQL__HOST: postgresql AUTHENTIK_POSTGRESQL__HOST: postgresql
AUTHENTIK_POSTGRESQL__USER: ${PG_USER:-authentik} AUTHENTIK_POSTGRESQL__USER: ${PG_USER:-authentik}
AUTHENTIK_POSTGRESQL__NAME: ${PG_DB:-authentik} AUTHENTIK_POSTGRESQL__NAME: ${PG_DB:-authentik}
@ -50,13 +50,13 @@ services:
- "${COMPOSE_PORT_HTTPS:-9443}:9443" - "${COMPOSE_PORT_HTTPS:-9443}:9443"
depends_on: depends_on:
- postgresql - postgresql
- redis - trout
worker: worker:
image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2024.6.3} image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2024.6.3}
restart: unless-stopped restart: unless-stopped
command: worker command: worker
environment: environment:
AUTHENTIK_REDIS__HOST: redis AUTHENTIK_REDIS__HOST: trout
AUTHENTIK_POSTGRESQL__HOST: postgresql AUTHENTIK_POSTGRESQL__HOST: postgresql
AUTHENTIK_POSTGRESQL__USER: ${PG_USER:-authentik} AUTHENTIK_POSTGRESQL__USER: ${PG_USER:-authentik}
AUTHENTIK_POSTGRESQL__NAME: ${PG_DB:-authentik} AUTHENTIK_POSTGRESQL__NAME: ${PG_DB:-authentik}
@ -77,12 +77,12 @@ services:
- .env - .env
depends_on: depends_on:
- postgresql - postgresql
- redis - trout
volumes: volumes:
database: database:
driver: local driver: local
redis: trout:
driver: local driver: local
networks: networks:

36
roles/docker/templates/gotosocial-compose.yml.j2 Normal file
View File

@ -0,0 +1,36 @@
version: "3.3"
services:
gotosocial:
image: superseriousbusiness/gotosocial:0.16.0
container_name: gotosocial
user: 1000:1000
extra_hosts:
- 'auth.thesatelliteoflove.com:172.20.0.2'
environment:
GTS_HOST: social.thesatelliteoflove.com
GTS_DB_TYPE: sqlite
GTS_DB_ADDRESS: /gotosocial/storage/sqlite.db
GTS_LETSENCRYPT_ENABLED: "false"
GTS_LETSENCRYPT_EMAIL_ADDRESS: ""
GTS_TRUSTED_PROXIES: "172.20.0.2"
GTS_ACCOUNT_DOMAIN: thesatelliteoflove.com
GTS_OIDC_ENABLED: "true"
GTS_OIDC_IDP_NAME: "Authentik"
GTS_OIDC_ISSUER: https://auth.thesatelliteoflove.com/application/o/gotosocial/
GTS_OIDC_CLIENT_ID: {{ gts_oidc_client_id }}
GTS_OIDC_CLIENT_SECRET: {{ gts_oidc_client_secret }}
GTS_OIDC_LINK_EXISTING: "true"
TZ: UTC
volumes:
- gotosocial:/gotosocial/storage
restart: "always"
volumes:
gotosocial:
driver: local
networks:
default:
external: true
name: lava