Coornhert
c481ebf9e7
- Forgejo + Redis Docker stack (wetgit-forgejo role) - FastAPI + Celery systemd services (wetgit-app role) - Nginx vhosts voor git.wetgit.nl en api.wetgit.nl (wetgit-nginx role) - SSL via Let's Encrypt (certbot webroot) - Backup script (forgejo dump, geen downtime) - Codeberg mirror script - Cron jobs voor backup/mirror/log cleanup - Ansible vault voor secrets (encrypted) Geïsoleerd van dt-platform: eigen poorten, users, directories.
27 lines
687 B
YAML
27 lines
687 B
YAML
---
|
|
# WetGIT - Nederlandse wetgeving als code
|
|
#
|
|
# Usage:
|
|
# ansible-playbook ansible/site.yml
|
|
# ansible-playbook ansible/site.yml --tags forgejo
|
|
# ansible-playbook ansible/site.yml --tags app
|
|
# ansible-playbook ansible/site.yml --tags nginx
|
|
# ansible-playbook ansible/site.yml --check (dry-run)
|
|
#
|
|
# NOTE: This server is shared with dt-platform.
|
|
# This playbook only manages WetGIT resources.
|
|
# System-level config (users, packages, firewall) is managed by dt-platform.
|
|
|
|
- name: Deploy WetGIT
|
|
hosts: wetgit
|
|
become: yes
|
|
|
|
roles:
|
|
- role: wetgit-forgejo
|
|
tags: [forgejo, docker]
|
|
|
|
- role: wetgit-app
|
|
tags: [app]
|
|
|
|
- role: wetgit-nginx
|
|
tags: [nginx]
|