init
This commit is contained in:
Tiara Rodney
commit
883f31932e
169 changed files with 5676 additions and 0 deletions
35
ansible/README.md
Normal file
35
ansible/README.md
Normal file
|
|
@ -0,0 +1,35 @@
|
|||
Install collection dependencies:
|
||||
|
||||
ansible-galaxy collection install -r requirements.yml
|
||||
|
||||
Run setup:
|
||||
|
||||
ansible-playbook -i inventories/prod/hosts.ini playbooks/setup.yml
|
||||
|
||||
Run backup:
|
||||
|
||||
ansible-playbook -i inventories/prod/hosts.ini playbooks/backup.yml
|
||||
|
||||
Run restore:
|
||||
|
||||
ansible-playbook -i inventories/prod/hosts.ini playbooks/restore.yml
|
||||
|
||||
Manual backup:
|
||||
|
||||
ansible-playbook -i inventories/prod/hosts.ini playbooks/backup.yml
|
||||
|
||||
Automated backups run via systemd timer (bi-weekly by default).
|
||||
|
||||
Vault variables (inventories/prod/group_vars/all/vault.yml):
|
||||
|
||||
vault_kellnr_admin_pwd: "..."
|
||||
vault_pg_password: "..."
|
||||
vault_secret_key: "random-long-django-secret"
|
||||
vault_restic_password: "..."
|
||||
vault_accounts_ssh_pubkey: "ssh-ed25519 ..."
|
||||
vault_accounts_ssh_private_key: |
|
||||
-----BEGIN OPENSSH PRIVATE KEY-----
|
||||
...
|
||||
vault_rclone_proton_username: "user@proton.me"
|
||||
vault_rclone_proton_password: "rclone-obscured-password"
|
||||
vault_rclone_proton_2fa: "TOTP-SECRET"
|
||||
Loading…
Add table
Add a link
Reference in a new issue