Mirrors/ansible-nas
2
0
Fork 0
mirror of https://github.com/davestephens/ansible-nas synced 2025-01-12 11:38:47 +00:00
Code Issues Projects Releases Packages Wiki Activity

Bitwarden starts/stops

Browse source
This commit is contained in:
David Stephens 2022-08-28 16:32:18 +01:00
parent 3adcf026a1
commit b8fcfd30c0
4 changed files with 75 additions and 51 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
nas.yml
View file

@ -52,7 +52,6 @@
- role: bitwarden
tags:
- bitwarden
when: (bitwarden_enabled | default(False))
- role: booksonic
tags:
@ -459,7 +458,7 @@
when: (znc_enabled | default(False))
post_tasks:
- name: Clean up stopped applications
- name: Clean up stopped applications # noqa no-changed-when
command: /bin/true
notify: "stop disabled applications"
tags:

4
roles/bitwarden/defaults/main.yml
View file

@ -20,3 +20,7 @@ bitwarden_allow_signups: false
# specs
bitwarden_memory: 1g
bitwarden_backup_memory: 1g
# docker
bitwarden_container_name: bitwarden
bitwarden_backup_container_name: bitwarden-backup

18
roles/bitwarden/handlers/main.yml Normal file
View file

@ -0,0 +1,18 @@
---
- name: Stop Bitwarden
docker_container:
name: "{{ bitwarden_container_name }}"
state: absent
when: bitwarden_enabled is false
listen:
- "stop bitwarden"
- "stop disabled applications"
- name: Stop Bitwarden Backup
docker_container:
name: "{{ bitwarden_backup_container_name }}"
state: absent
when: bitwarden_enabled is false
listen:
- "stop bitwarden"
- "stop disabled applications"

101
roles/bitwarden/tasks/main.yml
View file

@ -1,52 +1,55 @@
---
- name: Create Bitwarden Directories
file:
path: "{{ item }}"
state: directory
mode: "0755"
with_items:
- "{{ bitwarden_data_directory }}"
- name: Bitwarden
block:
- name: Create Bitwarden Directories
file:
path: "{{ item }}"
state: directory
mode: "0755"
with_items:
- "{{ bitwarden_data_directory }}"
- name: Bitwarden Docker Container
docker_container:
name: bitwarden
image: bitwardenrs/server:latest
pull: true
ports:
- "{{ bitwarden_port_a }}:80"
- "{{ bitwarden_port_b }}:3012"
volumes:
- "{{ bitwarden_data_directory }}:/data:rw"
env:
SIGNUPS_ALLOWED: "{{ bitwarden_allow_signups }}"
ADMIN_TOKEN: "{{ bitwarden_admin_token }}"
LOG_FILE: "/data/bitwarden.log"
WEBSOCKET_ENABLED: "true"
labels:
traefik.enable: "{{ bitwarden_available_externally | string }}"
traefik.http.routers.bitwarden.rule: "Host(`{{ bitwarden_hostname }}.{{ ansible_nas_domain }}`)"
traefik.http.routers.bitwarden.tls.certresolver: "letsencrypt"
traefik.http.routers.bitwarden.tls.domains[0].main: "{{ ansible_nas_domain }}"
traefik.http.routers.bitwarden.tls.domains[0].sans: "*.{{ ansible_nas_domain }}"
traefik.http.routers.bitwarden.service: "bitwarden"
traefik.http.routers.bitwarden.middlewares: "bitwarden-ipwhitelist@docker"
traefik.http.services.bitwarden.loadbalancer.server.port: "80"
traefik.http.routers.bitwarden-ws.rule: "Host(`{{ bitwarden_hostname }}.{{ ansible_nas_domain }}`) && Path(`/notifications/hub`)"
traefik.http.routers.bitwarden-ws.tls.certresolver: "letsencrypt"
traefik.http.routers.bitwarden-ws.tls.domains[0].main: "{{ ansible_nas_domain }}"
traefik.http.routers.bitwarden-ws.tls.domains[0].sans: "*.{{ ansible_nas_domain }}"
traefik.http.routers.bitwarden-ws.service: "bitwarden-ws"
traefik.http.routers.bitwarden-ws.middlewares: "bitwarden-ipwhitelist@docker"
traefik.http.services.bitwarden-ws.loadbalancer.server.port: "3012"
traefik.http.middlewares.bitwarden-ipwhitelist.ipwhitelist.sourcerange: "{{ bitwarden_ip_whitelist }}"
memory: "{{ bitwarden_memory }}"
restart_policy: unless-stopped
- name: Bitwarden Docker Container
docker_container:
name: "{{ bitwarden_container_name }}"
image: bitwardenrs/server:latest
pull: true
ports:
- "{{ bitwarden_port_a }}:80"
- "{{ bitwarden_port_b }}:3012"
volumes:
- "{{ bitwarden_data_directory }}:/data:rw"
env:
SIGNUPS_ALLOWED: "{{ bitwarden_allow_signups }}"
ADMIN_TOKEN: "{{ bitwarden_admin_token }}"
LOG_FILE: "/data/bitwarden.log"
WEBSOCKET_ENABLED: "true"
labels:
traefik.enable: "{{ bitwarden_available_externally | string }}"
traefik.http.routers.bitwarden.rule: "Host(`{{ bitwarden_hostname }}.{{ ansible_nas_domain }}`)"
traefik.http.routers.bitwarden.tls.certresolver: "letsencrypt"
traefik.http.routers.bitwarden.tls.domains[0].main: "{{ ansible_nas_domain }}"
traefik.http.routers.bitwarden.tls.domains[0].sans: "*.{{ ansible_nas_domain }}"
traefik.http.routers.bitwarden.service: "bitwarden"
traefik.http.routers.bitwarden.middlewares: "bitwarden-ipwhitelist@docker"
traefik.http.services.bitwarden.loadbalancer.server.port: "80"
traefik.http.routers.bitwarden-ws.rule: "Host(`{{ bitwarden_hostname }}.{{ ansible_nas_domain }}`) && Path(`/notifications/hub`)"
traefik.http.routers.bitwarden-ws.tls.certresolver: "letsencrypt"
traefik.http.routers.bitwarden-ws.tls.domains[0].main: "{{ ansible_nas_domain }}"
traefik.http.routers.bitwarden-ws.tls.domains[0].sans: "*.{{ ansible_nas_domain }}"
traefik.http.routers.bitwarden-ws.service: "bitwarden-ws"
traefik.http.routers.bitwarden-ws.middlewares: "bitwarden-ipwhitelist@docker"
traefik.http.services.bitwarden-ws.loadbalancer.server.port: "3012"
traefik.http.middlewares.bitwarden-ipwhitelist.ipwhitelist.sourcerange: "{{ bitwarden_ip_whitelist }}"
memory: "{{ bitwarden_memory }}"
restart_policy: unless-stopped
- name: Bitwarden Backup Container
docker_container:
name: bitwarden-backup
image: bruceforce/bw_backup:latest
pull: true
restart_policy: unless-stopped
volumes_from: bitwarden
memory: "{{ bitwarden_backup_memory }}"
- name: Bitwarden Backup Container
docker_container:
name: "{{ bitwarden_backup_container_name }}"
image: bruceforce/bw_backup:latest
pull: true
restart_policy: unless-stopped
volumes_from: bitwarden
memory: "{{ bitwarden_backup_memory }}"
when: bitwarden_enabled is true