tudattr/ansible
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

refactor(k3s): enhance cluster setup and enable ArgoCD apps

Browse Source 
Signed-off-by: Tuan-Dat Tran <tuan-dat.tran@tudattr.dev>
This commit is contained in:
Tuan-Dat Tran
2025-07-22 07:23:09 +02:00
parent e1a2248154
commit 976cad51e2
38 changed files with 401 additions and 234 deletions
Download Patch File Download Diff File Expand all files Collapse all files

92
vars/group_vars/docker/docker.yml
View File

@@ -78,7 +78,7 @@ services:
- VERSION=docker
- name: jellyfin
vm:
- docker-host01
- docker-host11
container_name: jellyfin
image: jellyfin/jellyfin:10.10
volumes:
@@ -108,7 +108,7 @@ services:
environment:
- name: hass
vm:
- docker-host01
- docker-host11
container_name: homeassistant
image: "ghcr.io/home-assistant/home-assistant:stable"
privileged: true
@@ -284,7 +284,7 @@ services:
external: "{{ services_external_http.pdf }}"
- name: git
vm:
- docker-host01
- docker-host11
container_name: gitea
image: gitea/gitea:1.23-rootless
volumes:
@@ -408,9 +408,9 @@ services:
- QBT_WEBUI_PORT="8082"
- name: cadvisor
vm:
- docker-host12
- docker-host10
- docker-host01
- docker-host11
- docker-host12
container_name: cadvisor
image: gcr.io/cadvisor/cadvisor:v0.52.1
ports:
@@ -432,7 +432,7 @@ services:
external: /var/lib/docker
- name: karakeep
vm:
- docker-host01
- docker-host11
container_name: karakeep
image: ghcr.io/karakeep-app/karakeep:0.23.2
ports:
@@ -460,43 +460,43 @@ services:
openai_key: "{{ vault_docker.karakeep.openai_key }}"
- name: chrome
version: 123
- name: keycloak
vm:
- docker-host01
container_name: keycloak
image: quay.io/keycloak/keycloak:26.2
depends_on:
- keycloak-postgres
ports:
- name: "http"
internal: 8080
external: "{{ services_external_http.keycloak }}"
volumes:
- name: "config"
internal: /opt/keycloak/data/import/homelab-realm.json
external: "{{ docker.directories.local }}/keycloak/homelab-realm.json"
- name: "config"
internal: /opt/keycloak/data/import/master-realm.json
external: "{{ docker.directories.local }}/keycloak/master-realm.json"
command:
- "start"
- "--import-realm"
environment:
- KC_DB=postgres
- KC_DB_URL=jdbc:postgresql://keycloak-postgres:5432/keycloak
- KC_DB_USERNAME={{ keycloak_config.database.username }}
- KC_DB_PASSWORD={{ keycloak_config.database.password }}
- KC_HOSTNAME=keycloak.{{ internal_domain }}
- KC_HTTP_ENABLED=true
- KC_HTTP_RELATIVE_PATH=/
- KC_PROXY=edge
- KC_PROXY_HEADERS=xforwarded
- KC_HOSTNAME_URL=https://keycloak.{{ internal_domain }}
- KC_HOSTNAME_ADMIN_URL=https://keycloak.{{ internal_domain }}
- KC_BOOTSTRAP_ADMIN_USERNAME=serviceadmin-{{ keycloak_admin_hash }}
- KC_BOOTSTRAP_ADMIN_PASSWORD={{ vault_docker.keycloak.admin.password }}
sub_service:
- name: postgres
version: 17
username: "{{ keycloak_config.database.username }}"
password: "{{ keycloak_config.database.password }}"
# - name: keycloak
# vm:
# - docker-host11
# container_name: keycloak
# image: quay.io/keycloak/keycloak:26.2
# depends_on:
# - keycloak-postgres
# ports:
# - name: "http"
# internal: 8080
# external: "{{ services_external_http.keycloak }}"
# volumes:
# - name: "config"
# internal: /opt/keycloak/data/import/homelab-realm.json
# external: "{{ docker.directories.local }}/keycloak/homelab-realm.json"
# - name: "config"
# internal: /opt/keycloak/data/import/master-realm.json
# external: "{{ docker.directories.local }}/keycloak/master-realm.json"
# command:
# - "start"
# - "--import-realm"
# environment:
# - KC_DB=postgres
# - KC_DB_URL=jdbc:postgresql://keycloak-postgres:5432/keycloak
# - KC_DB_USERNAME={{ keycloak_config.database.username }}
# - KC_DB_PASSWORD={{ keycloak_config.database.password }}
# - KC_HOSTNAME=keycloak.{{ internal_domain }}
# - KC_HTTP_ENABLED=true
# - KC_HTTP_RELATIVE_PATH=/
# - KC_PROXY=edge
# - KC_PROXY_HEADERS=xforwarded
# - KC_HOSTNAME_URL=https://keycloak.{{ internal_domain }}
# - KC_HOSTNAME_ADMIN_URL=https://keycloak.{{ internal_domain }}
# - KC_BOOTSTRAP_ADMIN_USERNAME=serviceadmin-{{ keycloak_admin_hash }}
# - KC_BOOTSTRAP_ADMIN_PASSWORD={{ vault_docker.keycloak.admin.password }}
# sub_service:
# - name: postgres
# version: 17
# username: "{{ keycloak_config.database.username }}"
# password: "{{ keycloak_config.database.password }}"