ansible-nas/roles/portainer/tasks/main.yml
2023-11-13 00:20:21 +01:00

41 lines
1.7 KiB
YAML

---
- name: Start Portainer
block:
- name: Create Portainer Directories
ansible.builtin.file:
path: "{{ item }}"
state: directory
with_items:
- "{{ portainer_data_directory }}"
- name: Portainer Docker Container
community.docker.docker_container:
name: "{{ portainer_container_name }}"
image: "{{ portainer_image_name }}:{{ portainer_image_version }}"
pull: true
volumes:
- "{{ portainer_data_directory }}:/data:rw"
- "/var/run/docker.sock:/var/run/docker.sock:ro"
- "/etc/timezone:/etc/timezone:ro"
ports:
- "{{ portainer_port }}:9443"
restart_policy: unless-stopped
memory: "{{ portainer_memory }}"
labels:
traefik.enable: "{{ portainer_available_externally | string }}"
traefik.http.routers.portainer.rule: "Host(`{{ portainer_hostname }}.{{ ansible_nas_domain }}`)"
traefik.http.routers.portainer.tls.certresolver: "letsencrypt"
traefik.http.routers.portainer.tls.domains[0].main: "{{ ansible_nas_domain }}"
traefik.http.routers.portainer.tls.domains[0].sans: "*.{{ ansible_nas_domain }}"
traefik.http.services.portainer.loadbalancer.server.port: "9443"
traefik.http.routers.portainer.middlewares: "portainer-ipwhitelist@docker"
traefik.http.middlewares.portainer-ipwhitelist.ipwhitelist.sourcerange: "{{ portainer_ip_whitelist }}"
when: portainer_enabled is true
- name: Stop Portainer
block:
- name: Stop Portainer
community.docker.docker_container:
name: "{{ portainer_container_name }}"
state: absent
when: portainer_enabled is false