seasharp/role_podman_nextcloud
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

docker-compose work

Browse Source
This commit is contained in:
Mike Holloway 2025-11-30 20:26:08 -05:00
parent dcefb84c05
commit de09bd9533
3 changed files with 26 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
tasks/certificates_certbot.yml
View File

@ -1,14 +1,14 @@
- name: Create certbot certs - name: Create certbot certs
copy: copy:
remote_src: true remote_src: true
src: "/etc/letsencrypt/live/nextcloud.equilibrateit.com/privkey.pem" src: "/etc/letsencrypt/live/nextcloud.equilibrateit.test/privkey.pem"
dest: "/home/nextcloud/nginx/certs/{{ inventory_hostname }}.key" dest: "/home/nextcloud/nginx/certs/{{ inventory_hostname }}.key"
owner: 100999 owner: 100999
group: 100999 group: 100999
- copy: - copy:
remote_src: true remote_src: true
src: "/etc/letsencrypt/live/nextcloud.equilibrateit.com/fullchain.pem" src: "/etc/letsencrypt/live/nextcloud.equilibrateit.test/fullchain.pem"
dest: "/home/nextcloud/nginx/certs/{{ inventory_hostname }}.crt" dest: "/home/nextcloud/nginx/certs/{{ inventory_hostname }}.crt"
owner: 100999 owner: 100999
group: 100999 group: 100999

2
tasks/files.yml
View File

@ -22,4 +22,4 @@
- name: Create Compose File - name: Create Compose File
template: template:
src: "docker-compose.yml.j2" src: "docker-compose.yml.j2"
dest: "/home/{{ user.name }}/" dest: "/home/{{ user.name }}/docker-compose.yml"

36
templates/docker-compose.yml.j2
View File

@ -2,22 +2,32 @@ version: '3.6'
services: services:
step: nextcloud:
image: smallstep/step-ca:latest image: nextcloud:stable-fpm
environment: restart: always
DOCKER_STEPCA_INIT_NAME: "test-eqit" ports:
DOCKER_STEPCA_INIT_DNS_NAMES: "test-eqit.lan" - 9000:9000
DOCKER_STEPCA_INIT_ACME: "true" env:
DOCKER_STEPCA_INIT_REMOTE_MANAGEMENT: "false" - VIRTUAL_PROTO: "http"
DOCKER_STEPCA_INIT_PASSWORD_FILE: "/home/step/.stepca.secret" - VIRTUAL_HOST: "{{ inventory_hostname | default('ansible_undefined_fact') }}"
- LETSENCRYPT_HOST: "{{ inventory_hostname | default('ansible_undefined_fact') }}"
networks: networks:
default: default:
aliases: aliases:
- "test-eqit.lan" - "test-eqit.lan"
volumes: volumes:
- ~/stepca/data:/home/step - ~/webroot:/var/www/html
restart: always
# env_file: ".env"
#volumes: nginx-proxy:
# acme: restart: unless-stopped
ports:
- 8080:8080
- 8443:8443
image: nginxproxy/nginx-proxy:1.9-alpine
environment:
HTTP_PORT: 8080
HTTPS_PORT: 8443
volumes:
- /run/user/1000/podman/podman.sock:/tmp/docker.sock:ro
- /home/nextcloud/nginx/certs:/etc/nginx/certs
- /home/nextcloud/nginx/challenges:/usr/share/nginx/html