|
|
|
@ -2,9 +2,26 @@
|
|
|
|
|
|
|
|
|
|
- hosts: all |
|
|
|
|
vars: |
|
|
|
|
nftables_tcp_dports: "22, 80, 443" |
|
|
|
|
nginx_letsencrypt_email: "le@hazardous.org" |
|
|
|
|
nginx_hosts: [ |
|
|
|
|
{ |
|
|
|
|
default: true, |
|
|
|
|
domain_name: "globaleaks-host.hazardous.org", |
|
|
|
|
reverse_hosts: [ |
|
|
|
|
{ |
|
|
|
|
protocol: "http", |
|
|
|
|
path: "/", |
|
|
|
|
host: "127.0.0.1", |
|
|
|
|
port: "8443" |
|
|
|
|
} |
|
|
|
|
] |
|
|
|
|
} |
|
|
|
|
] |
|
|
|
|
roles: |
|
|
|
|
- ansible-debian-nftables |
|
|
|
|
- ansible-debian-baseline |
|
|
|
|
- ansible-debian-ntp |
|
|
|
|
- ansible-podman-host |
|
|
|
|
- ansible-globaleaks-podman |
|
|
|
|
- ansible-nginx-letsencrypt |
|
|
|
|