Network
/
2024
9
0
Fork 0
Code Issues 33 Pull Requests Packages Projects Releases Wiki Activity

Update README

This commit is contained in:
Albert Stefanov 2024-05-01 16:18:26 +03:00
parent 6cc9946aec
commit ca536c4ee6
1 changed files with 5 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
automation/ansible/README.md
View File

@ -1,32 +1,17 @@
# OpenFest Infra -- Ansible Playbooks
# OpenFest 2024 -- Ansible Playbooks
## General Variables
### Global/Group
| Name | Description |
|-----------------|-------------------------------------------------|
| global_ssh_keys | Keys of people authorized to access _all_ hosts |
| Name | Description |
|-----------------|----------------------------------------------------------|
| global_root_ssh_key_urls | Keys of people authorized to access _all_ hosts |
### Host
| Name | Description |
|--------------------|---------------------------------------------------------------|
| ssh_keys['root'] | Users authorized to run commands as root |
| ssh_keys[username] | Authorized keys for a specific user |
| ssh_keys['*'] | Authorized keys for all non-root users provisioned by ansible |
| root_ssh_key_urls | Keys of people authorized to access _this_ host |
## Secret and not-so-secret Variables (grouped by service)
### Keycloak
| Name | Description |
|---------------------------|----------------------------------------------------------------------|
| keycloak_hostname | Passed as the [Public URL](https://www.keycloak.org/server/hostname) |
| keycloak_db_password | PostgreSQL DB Password |
| keycloak_db_ansible_host | PostgreSQL DB Host (in inventory), for provisioning the database |
| keycloak_podman_user_name | Owner of the keycloak container |
| keycloak_podman_user_home | `{{ keycloak_podman_user_name }}`'s home directory |
| keycloak_data_dir | Used for the volumes / bind mounts |
| keycloak_listen_address | Where to bind on the host (for using a reverse proxy) |