Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- cat playbooks/group_vars/all.yml
- ---
- default_ssh_keys:
- - "{{ lookup('file', 'files/ssh_keys/vagrant.pub') }}" # Vagrant
- - "{{ lookup('file', 'files/ssh_keys/id_rsa.pub') }}" # Host
- default_use_debian_repo: yes # If yes, use only Debian official repo for provisioning tasks
- default_user: deploy
- default_group: deploy
- default_celery_options: "--loglevel=INFO --without-gossip --without-mingle --without-heartbeat --soft-time-limit=60 --time-limit=300"
- users:
- - username: "{{ default_user }}"
- name: "{{ default_user }}"
- groups: ["{{ irma_server_group }}", 'sudo']
- uid: 1010
- ssh_key: "{{ default_ssh_keys }}"
- sudo_users:
- - { name: "{{ default_user }}", nopasswd: yes }
- ## IRMA specific infrastructure
- irma_environment: production # Can be (development, test)
- irma_user: irma
- irma_group: irma
- irma_server_group: irma-server
- irma_cert_group: irma-cert
- irma_configurations:
- brain_addr: 10.255.10.32
- rabbitmq:
- brain:
- vhost: mqbrain
- user: brain
- password: brain
- frontend:
- vhost: mqfrontend
- user: frontend
- password: frontend
- probe:
- vhost: mqprobe
- user: probe
- password: probe
- ftpd:
- frontend:
- username: frontend
- password: frontend
- probe:
- username: probe
- password: probe
- postgresql:
- frontend:
- username: irma
- password: irma
- db_name: irma-frontend
- # Deployment
- irma_deployment_code_version: "{{ 'local' if vagrant_share|default(false) else irma_release|default('HEAD') }}"
- irma_deployment_release_name: "{{ lookup('pipe', 'date +%Y%m%d%H%M%S') }}"
- ## UFW
- ufw_login: on
- ufw_applications:
- - { name: "OpenSSH" }
- ## OpenSSH server config
- sshd:
- AcceptEnv: LANG
- IgnoreRhost: yes
- LogLevel: INFO
- PermitEmptyPasswords: no
- PermitRootLogin: no
- Protocol: 2
- X11Forwarding: no
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
