2021-02-20 14:56:54 +00:00
|
|
|
# sophie's miniserver
|
|
|
|
|
# mostly unmanaged
|
|
|
|
|
|
|
|
|
|
nodes['htz-cloud.miniserver'] = {
|
|
|
|
|
'groups': {
|
|
|
|
|
'debian-buster',
|
|
|
|
|
'webserver',
|
|
|
|
|
},
|
2021-03-21 10:44:52 +00:00
|
|
|
'bundles': set(),
|
2021-02-20 14:56:54 +00:00
|
|
|
'metadata': {
|
|
|
|
|
'interfaces': {
|
|
|
|
|
'eth0': {
|
|
|
|
|
'ips': {
|
|
|
|
|
'157.90.20.62',
|
|
|
|
|
'2a01:4f8:c2c:840f::1/64',
|
|
|
|
|
},
|
|
|
|
|
'gateway4': '172.31.1.1',
|
|
|
|
|
'gateway6': 'fe80::1',
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
'apt': {
|
|
|
|
|
'packages': {
|
2021-02-20 17:12:17 +00:00
|
|
|
'mosh': {},
|
2021-02-20 14:56:54 +00:00
|
|
|
'weechat': {},
|
|
|
|
|
'weechat-core': {},
|
|
|
|
|
'weechat-curses': {},
|
|
|
|
|
'weechat-perl': {},
|
|
|
|
|
'weechat-plugins': {},
|
|
|
|
|
'weechat-python': {},
|
|
|
|
|
'weechat-ruby': {},
|
|
|
|
|
},
|
2021-02-20 17:12:17 +00:00
|
|
|
'repos': {
|
|
|
|
|
'weechat': {
|
|
|
|
|
'items': {
|
|
|
|
|
'deb https://weechat.org/debian {os_release} main',
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
2021-02-20 14:56:54 +00:00
|
|
|
},
|
|
|
|
|
'backups': {
|
|
|
|
|
'exclude_from_backups': True,
|
|
|
|
|
},
|
2021-02-20 16:32:09 +00:00
|
|
|
'icinga_options': {
|
2021-05-04 15:34:22 +00:00
|
|
|
'exclude_from_monitoring': True,
|
2021-04-02 11:40:10 +00:00
|
|
|
'vars.notification.sms': False,
|
2021-02-20 16:32:09 +00:00
|
|
|
},
|
2021-02-20 17:12:17 +00:00
|
|
|
'iptables': {
|
|
|
|
|
'custom_rules': [
|
|
|
|
|
'iptables_both -A INPUT -p udp --dport 60000:61000 -j ACCEPT', # mosh
|
|
|
|
|
'iptables_both -A INPUT -p tcp --dport 9001 -j ACCEPT', # weechat
|
|
|
|
|
|
|
|
|
|
],
|
|
|
|
|
},
|
2021-02-20 15:50:42 +00:00
|
|
|
'letsencrypt': {
|
|
|
|
|
'concat_and_deploy': {
|
|
|
|
|
'sophie-weechat': {
|
|
|
|
|
'match_domain': 'i.sophies-kitchen.eu',
|
|
|
|
|
'target': '/home/sophie/.weechat/ssl/relay.pem',
|
|
|
|
|
'chown': 'sophie:sophie',
|
|
|
|
|
'chmod': '0440',
|
|
|
|
|
'commands': [
|
|
|
|
|
'echo \'core.weechat */relay sslcertkey\' >> /home/sophie/.weechat/weechat_fifo'
|
|
|
|
|
],
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
'domains': {
|
|
|
|
|
'i.sophies-kitchen.eu': set(),
|
2021-03-13 12:31:28 +00:00
|
|
|
'webdump.sophies-kitchen.eu': set(),
|
2021-02-20 15:50:42 +00:00
|
|
|
},
|
|
|
|
|
},
|
2021-02-20 14:56:54 +00:00
|
|
|
'nginx': {
|
|
|
|
|
'vhosts': {
|
2021-03-13 12:31:28 +00:00
|
|
|
'webdump.sophies-kitchen.eu': {
|
2021-02-20 16:32:09 +00:00
|
|
|
'webroot_config': {
|
|
|
|
|
'owner': 'sophie',
|
|
|
|
|
'group': 'sophie',
|
|
|
|
|
'mode': '0755',
|
|
|
|
|
},
|
2021-03-13 12:31:28 +00:00
|
|
|
'extras': True,
|
2021-02-20 14:56:54 +00:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
'vm': {
|
|
|
|
|
'cpu': 2,
|
|
|
|
|
'ram': 4,
|
2021-03-11 21:27:30 +00:00
|
|
|
},
|
|
|
|
|
'users': {
|
|
|
|
|
'sophie': {
|
|
|
|
|
'ssh_pubkey': [
|
|
|
|
|
"ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDILcYrMQNRVXAm5L+7No1ZumqfCyRc1QZmTY3O7Q8hsE4+fCAvwsWm2aSMfLL3NnIl8Nm1Rixzic5jdYKYNIY3SlX1wvTB+MhGb2eyVSd7c/Y98aCLSlDkQ2sebjpdA1FoJOeGD3qxqDwj0+KckXU2ZaSSQY7CxVsjH65UxCHqVAg+6uLdNbj7j850s1B9NXVXef+sBQ5jUngXxnqQWwNh2Mn8auwumkeEG4SYf96wyFkLvmBitOng/GyLWl9YPnXXHHDnatcVipy7y34qw4CQ4P84anecbA+Bqr9IcxBW6qYmYgRKEnAcmEfjQd+BI1gCLB1BBEmb/qp+mVLd4tOh sophie@carbon"
|
|
|
|
|
],
|
|
|
|
|
},
|
|
|
|
|
},
|
2021-02-20 14:56:54 +00:00
|
|
|
},
|
|
|
|
|
}
|
