1
0
forked from infra/ansible
infra/site.yml

175 lines
3.8 KiB
YAML

---
- name: Apply common settings
hosts: all
roles:
- common
- root_keys
- name: Setup unattended updates
hosts: [sulis.binary.kitchen, nabia.binary.kitchen, epona.binary.kitchen, pizza.binary.kitchen, pancake.binary.kitchen, knoedel.binary.kitchen, bob.binary.kitchen, lasagne.binary.kitchen, tschunk.binary.kitchen, bowle.binary.kitchen, beryllium.binary-kitchen.net, boron.binary-kitchen.net, carbon.binary-kitchen.net, nitrogen.binary-kitchen.net, oxygen.binary-kitchen.net, fluorine.binary-kitchen.net, neon.binary-kitchen.net, sodium.binary-kitchen.net, magnesium.binary-kitchen.net, aluminium.binary-kitchen.net, krypton.binary-kitchen.net, yttrium.binary-kitchen.net, zirconium.binary-kitchen.net, molybdenum.binary-kitchen.net, technetium.binary-kitchen.net, ruthenium.binary-kitchen.net, rhodium.binary-kitchen.net, palladium.binary-kitchen.net, argentum.binary-kitchen.net, cadmium.binary-kitchen.net, barium.binary-kitchen.net]
roles:
- uau
- name: Setup Proxmox VE SSL
hosts: [salat.binary.kitchen, wurst.binary.kitchen, weizen.binary.kitchen]
roles:
- pvessl
- name: Setup infrastructure servers
hosts: [bacon.binary.kitchen, aveta.binary.kitchen, aeron.binary.kitchen]
roles:
- dns_intern
- dhcpd
- slapd
- radius
- name: Setup shell servers
hosts: [sulis.binary.kitchen, oxygen.binary-kitchen.net]
roles:
- sssd
- member_sw
- name: Setup monitoring server
hosts: nabia.binary.kitchen
roles:
- icinga
- librenms
- prometheus
- name: Setup netbox server
hosts: epona.binary.kitchen
roles:
- netbox
- name: Setup XRDP server
hosts: pancake.binary.kitchen
roles:
- xrdp_apphost
- name: Setup SIP-DECT OMM server
hosts: knoedel.binary.kitchen
roles:
- omm
- name: Setup gitea runner server
hosts: bob.binary.kitchen
roles:
- act_runner
- name: Setup strichliste server
hosts: tschunk.binary.kitchen
roles:
- strichliste
- name: Setup file and backup server
hosts: bowle.binary.kitchen
roles:
- fileserver
- pbs
- name: Setup doorlock server
hosts: lock-auweg.binary.kitchen
roles:
- doorlock
- name: Setup ldap server
hosts: helium.binary-kitchen.net
roles:
- slapd
- bk_dss
- name: Setup mail server
hosts: lithium.binary-kitchen.net
roles:
- mail
- name: Setup web server
hosts: beryllium.binary-kitchen.net
roles:
- web
- name: Setup gitea server
hosts: boron.binary-kitchen.net
roles:
- gitea
- name: Setup jabber server
hosts: carbon.binary-kitchen.net
roles:
- prosody
- name: Setup nextcloud server
hosts: nitrogen.binary-kitchen.net
roles:
- nextcloud
- name: Setup web server (dockerized)
hosts: fluorine.binary-kitchen.net
roles:
- authentik
- 23b
- hedgedoc
- vaultwarden
- name: Setup authoritative dns server
hosts: neon.binary-kitchen.net
roles:
- dns_extern
- name: Setup matrix server
hosts: sodium.binary-kitchen.net
roles:
- matrix
- heisenbridge
- name: Setup turn server
hosts: magnesium.binary-kitchen.net
roles:
- coturn
- name: Setup zammad server
hosts: aluminium.binary-kitchen.net
roles:
- zammad
- name: Setup jitsi server
hosts: zirconium.binary-kitchen.net
roles:
- jitsi
- name: Setup zelle server
hosts: molybdenum.binary-kitchen.net
roles:
- grafana
- name: Setup minecraft server
hosts: ruthenium.binary-kitchen.net
roles:
- web_mc
- name: Setup event pretix server
hosts: rhodium.binary-kitchen.net
roles:
- pretix
- name: Setup event pretalx server
hosts: palladium.binary-kitchen.net
roles:
- pretalx
- name: Setup event netbox server
hosts: cadmium.binary-kitchen.net
roles:
# - netbox
- name: Setup event web server
hosts: argentum.binary-kitchen.net
roles:
- event_web
- name: Setup WorkAdventure server
hosts: barium.binary-kitchen.net
roles:
- workadventure