bitwarden

playbooks/reconfigure_router.yml

@@ -0,0 +1,29 @@
+- hosts: router
+  name: Switch destination
+  ignore_unreachable: false
+  tasks:
+    - name: Get ruleset
+      command: nvram get vts_rulelist
+      when: inventory_hostname in groups['router']
+      register: ruleset
+    - name: Print the gateway for each host when defined
+      ansible.builtin.debug:
+        msg: "var is {{ ruleset.stdout }}"
+    - name: initialize variables
+      set_fact:                
+        regexp: "\\g<1>{{ DESTINATION }}\\3"
+    - set_fact:
+        app_path: "{{ ruleset.stdout | regex_replace('(\\<MAIL_SERVER\\>[0-9,]{1,}\\>)([0-9.]{1,})(\\>[0-9a-zA-Z\\s-]{0,}\\>TCP\\>)', regexp) | regex_replace('(\\<WEB_SERVER\\>[0-9,]{1,}\\>)([0-9.]{1,})(\\>[0-9a-zA-Z\\s-]{0,}\\>TCP\\>)', regexp) }}"
+    - name: Print the gateway for each host when defined
+      ansible.builtin.debug:
+        msg: "var is {{ app_path }}"
+    - name: Set ruleset
+      command: nvram set vts_rulelist={{ app_path }}
+      when: inventory_hostname in groups['router']
+
+    - name: Commit ruleset
+      command: nvram commit
+      when: inventory_hostname in groups['router']
+    - name: Commit ruleset
+      command: service restart_firewall
+      when: inventory_hostname in groups['router']

playbooks/sync_all.yaml

@@ -22,9 +22,10 @@
         - mail.sectorq.eu
         - pw.sectorq.eu
         - semaphore.sectorq.eu
+        - kestra.sectorq.eu
       when: inventory_hostname in groups['raspberrypi5']
     - name: Get relevant configs
-      ansible.builtin.shell: 'egrep -l  "# auth.sectorq.eu|# ha.sectorq.eu|# pw.sectorq.eu|# semaphore.sectorq.eu|# sectorq.eu|# gitlab.sectorq.eu|# ha.sectorq.eu" /share/docker_data/nginx/data/nginx/proxy_host/*'
+      ansible.builtin.shell: 'egrep -l  "# kestra.sectorq.eu|# auth.sectorq.eu|# ha.sectorq.eu|# pw.sectorq.eu|# semaphore.sectorq.eu|# sectorq.eu|# gitlab.sectorq.eu|# ha.sectorq.eu" /share/docker_data/nginx/data/nginx/proxy_host/*'
       ignore_errors: yes
       become: yes
       register: result
@@ -51,6 +52,7 @@
         - Portainer
         - Roundcube
         - Authentik
+        - Kestra
       when: inventory_hostname in groups['raspberrypi5']
     - name: Changing heimdall background
       ansible.builtin.shell: sqlite3 /share/docker_data/heimdall/config/www/app.sqlite  "UPDATE setting_user SET uservalue = 'backgrounds/TRN2Ydr5dyVAkWvCq4xqR5bQ6iyv5XaKvM1r84sJ.jpg' WHERE user_id = (SELECT id FROM users WHERE username = 'jaydee')"

playbooks/sync_container_data.yaml

@@ -3,7 +3,7 @@
   become: true
   when: inventory_hostname in groups['raspberrypi5']
 - name: Syncing all
-  ansible.builtin.shell: 'rsync -avh --delete /share/docker_data/{authentik,mailu2,ha,gitlab,semaphore,webhub,nginx,heimdall} root@192.168.77.238:/share/docker_data/ --exclude="home-assistant.log*" --exclude="gitlab/logs/*"'
+  ansible.builtin.shell: 'rsync -avh --delete /share/docker_data/{kestra,authentik,mailu2,ha,gitlab,semaphore,webhub,nginx,heimdall} root@192.168.77.238:/share/docker_data/ --exclude="home-assistant.log*" --exclude="gitlab/logs/*"'
   #ansible.builtin.shell: 'rsync -avh --delete /share/docker_data/{mailu2,webhub,nginx,heimdall} root@192.168.77.238:/share/docker_data/ --exclude="home-assistant.log*" --exclude="gitlab/logs/*"'
   #ansible.builtin.shell: 'ls -la'
   when: inventory_hostname in groups['nas']