Skip to content

Commit

Permalink
Add Vaultwarden
Browse files Browse the repository at this point in the history
  • Loading branch information
@Mayurifag
Mayurifag committed May 6, 2024
1 parent e86345c commit fc32066
Show file tree
Hide file tree
Showing 6 changed files with 40 additions and 0 deletions.
1 change: 1 addition & 0 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -109,6 +109,7 @@ Host mayurifag-prod
| SFTPGo | <https://sftp.mayurifag.local> | 8080 |
| Shadowsocks-rust | <https://ss.mayurifag.local/xray> (uses TLS) | 1080 |
| Syncthing [WebUI] | <https://st.mayurifag.local> | 8384 |
| Vaultwarden | <http://pw.mayurifag.local> | 80 |
| Wallabag | <http://wallabag.mayurifag.local> | 80 |
| Watchtower | - | - |
| Webdav [SFTPGo] | <http://webdav.mayurifag.ru> | 10080 |
Expand Down
3 changes: 3 additions & 0 deletions group_vars/all.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -96,6 +96,9 @@ navidrome_spotify_id: "change_it"
navidrome_spotify_secret: "change_it"
navidrome_password_encryption_key: "change_it"

vaultwarden_enabled: true
vaultwarden_subdomain: "pw"

portainer_enabled: true
portainer_subdomain: "portainer"

Expand Down
3 changes: 3 additions & 0 deletions inventories/sample/group_vars/sample.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -92,6 +92,9 @@ navidrome_spotify_id: "change_it"
navidrome_spotify_secret: "change_it"
navidrome_password_encryption_key: "change_it"

vaultwarden_enabled: true
vaultwarden_subdomain: "pw"

portainer_enabled: true
portainer_subdomain: "portainer"

Expand Down
5 changes: 5 additions & 0 deletions provisioning.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -144,6 +144,11 @@
- navidrome
when: (navidrome_enabled | default(False))

- role: vaultwarden
tags:
- vaultwarden
when: (vaultwarden_enabled | default(False))

- role: geerlingguy.security

- role: cheatsheet
7 changes: 7 additions & 0 deletions roles/vaultwarden/defaults/main.yml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,7 @@
---
vaultwarden_enabled: true
vaultwarden_available_externally: "true"

vaultwarden_subdomain: "pw"

vaultwarden_data_directory: "{{ docker_home }}/vaultwarden"
21 changes: 21 additions & 0 deletions roles/vaultwarden/tasks/main.yml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
---
- name: Create Vaultwarden Directories
file:
path: "{{ item }}"
state: directory
with_items:
- "{{ vaultwarden_data_directory }}/"

- name: Vaultwarden Docker Container
docker_container:
name: vaultwarden
image: vaultwarden/server:1.30.5-alpine
pull: true
volumes:
- "{{ vaultwarden_data_directory }}/:/data/"
restart_policy: unless-stopped
labels:
traefik.enable: "{{ vaultwarden_available_externally }}"
traefik.http.routers.vaultwarden.rule: "Host(`{{ vaultwarden_subdomain }}.{{ server_hostname }}`)"
traefik.http.services.vaultwarden.loadbalancer.server.port: "80"
traefik.http.routers.vaultwarden.middlewares: "my-headers@file"

0 comments on commit fc32066

Please sign in to comment.