35 lines
975 B
Markdown
35 lines
975 B
Markdown
Install collection dependencies:
|
|
|
|
ansible-galaxy collection install -r requirements.yml
|
|
|
|
Run setup:
|
|
|
|
ansible-playbook -i inventories/prod/hosts.ini playbooks/setup.yml
|
|
|
|
Run backup:
|
|
|
|
ansible-playbook -i inventories/prod/hosts.ini playbooks/backup.yml
|
|
|
|
Run restore:
|
|
|
|
ansible-playbook -i inventories/prod/hosts.ini playbooks/restore.yml
|
|
|
|
Manual backup:
|
|
|
|
ansible-playbook -i inventories/prod/hosts.ini playbooks/backup.yml
|
|
|
|
Automated backups run via systemd timer (bi-weekly by default).
|
|
|
|
Vault variables (inventories/prod/group_vars/all/vault.yml):
|
|
|
|
vault_kellnr_admin_pwd: "..."
|
|
vault_pg_password: "..."
|
|
vault_secret_key: "random-long-django-secret"
|
|
vault_restic_password: "..."
|
|
vault_accounts_ssh_pubkey: "ssh-ed25519 ..."
|
|
vault_accounts_ssh_private_key: |
|
|
-----BEGIN OPENSSH PRIVATE KEY-----
|
|
...
|
|
vault_rclone_proton_username: "user@proton.me"
|
|
vault_rclone_proton_password: "rclone-obscured-password"
|
|
vault_rclone_proton_2fa: "TOTP-SECRET"
|