mash-playbook/setup.yml

- name: "Set up a self-hosted server"
  hosts: "{{ target if target is defined else 'mash_servers' }}"
  become: true

  roles:
    # This role has no tasks at all
    - role: galaxy/com.devture.ansible.role.playbook_help

    # This role has no tasks at all
    - role: galaxy/com.devture.ansible.role.systemd_docker_base

    - when: mash_playbook_docker_installation_enabled | bool
      role: galaxy/geerlingguy.docker
      vars:
        docker_install_compose: false
      tags:
        - setup-docker
        - setup-all
        - install-docker
        - install-all

    - when: devture_docker_sdk_for_python_installation_enabled | bool
      role: galaxy/com.devture.ansible.role.docker_sdk_for_python
      tags:
        - setup-docker
        - setup-all
        - install-docker
        - install-all

    - when: devture_timesync_installation_enabled | bool
      role: galaxy/com.devture.ansible.role.timesync
      tags:
        - setup-timesync
        - setup-all
        - install-timesync
        - install-all

    - role: mash/playbook_base

    - role: galaxy/swap

    - when: system_security_ssh_enabled | bool
      role: galaxy/ssh

    - when: system_security_fail2ban_enabled | bool
      role: galaxy/fail2ban

    # This role exposes various tags (setup-postgres, setup-all, upgrade-postgres, import-postgres, etc.), so we don't tag it here.
    - role: galaxy/com.devture.ansible.role.postgres

    - role: galaxy/com.devture.ansible.role.postgres_backup

    - role: galaxy/mongodb

    - role: galaxy/com.devture.ansible.role.container_socket_proxy

    - role: galaxy/com.devture.ansible.role.traefik

    - role: galaxy/adguard_home

    - role: galaxy/appsmith

    - role: galaxy/authentik

    - role: galaxy/backup_borg

    - role: galaxy/collabora_online

    - role: galaxy/docker_registry
    - role: galaxy/docker_registry_browser
    - role: galaxy/docker_registry_purger

    - role: galaxy/firezone

    - role: galaxy/focalboard

    - role: galaxy/funkwhale

    - role: galaxy/gitea

    - role: galaxy/gotosocial

    - role: galaxy/grafana

    - role: galaxy/mariadb

    - role: galaxy/miniflux

    - role: galaxy/mrs

    - role: galaxy/healthchecks

    - role: galaxy/infisical

    - role: galaxy/hubsite

    - role: galaxy/influxdb

    - role: galaxy/jitsi

    - role: galaxy/keycloak

    - role: galaxy/lago

    - role: galaxy/mobilizon

    - role: galaxy/navidrome

    - role: galaxy/netbox

    - role: galaxy/nextcloud

    - role: galaxy/owncast

    - role: galaxy/peertube

    - role: galaxy/postgis

    - role: galaxy/prometheus
    - role: galaxy/prometheus_node_exporter
    - role: galaxy/prometheus_blackbox_exporter
    - role: galaxy/prometheus_postgres_exporter

    - role: galaxy/radicale

    - role: galaxy/redmine

    - role: galaxy/redis

    - role: galaxy/soft_serve

    - role: galaxy/syncthing

    - role: galaxy/telegraf

    - role: galaxy/vaultwarden

    - role: galaxy/uptime_kuma

    - role: galaxy/wg_easy

    - role: galaxy/com.devture.ansible.role.woodpecker_ci_server
    - role: galaxy/com.devture.ansible.role.woodpecker_ci_agent

    - role: galaxy/auxiliary

    - when: devture_systemd_service_manager_enabled | bool
      role: galaxy/com.devture.ansible.role.systemd_service_manager

    # This is pretty much last, because we want it to better serve as a "last known good configuration".
    # See: https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2217#issuecomment-1301487601
    - when: devture_playbook_state_preserver_enabled | bool
      role: galaxy/com.devture.ansible.role.playbook_state_preserver
      tags:
        - setup-all
        - install-all

    - role: galaxy/com.devture.ansible.role.playbook_runtime_messages
Initial commit 2023-03-15 10:58:12 +02:00			`- name: "Set up a self-hosted server"`
			`hosts: "{{ target if target is defined else 'mash_servers' }}"`
			`become: true`

			`roles:`
			`# This role has no tasks at all`
			`- role: galaxy/com.devture.ansible.role.playbook_help`

			`# This role has no tasks at all`
			`- role: galaxy/com.devture.ansible.role.systemd_docker_base`

			`- when: mash_playbook_docker_installation_enabled \| bool`
			`role: galaxy/geerlingguy.docker`
			`vars:`
			`docker_install_compose: false`
			`tags:`
			`- setup-docker`
			`- setup-all`
			`- install-docker`
			`- install-all`

			`- when: devture_docker_sdk_for_python_installation_enabled \| bool`
			`role: galaxy/com.devture.ansible.role.docker_sdk_for_python`
			`tags:`
			`- setup-docker`
			`- setup-all`
			`- install-docker`
			`- install-all`

			`- when: devture_timesync_installation_enabled \| bool`
			`role: galaxy/com.devture.ansible.role.timesync`
			`tags:`
			`- setup-timesync`
			`- setup-all`
			`- install-timesync`
			`- install-all`

			`- role: mash/playbook_base`

add system/swap role 2023-03-18 13:24:46 +02:00			`- role: galaxy/swap`

activate ssh and fail2ban roles only when enabled 2023-03-18 22:47:41 +02:00			`- when: system_security_ssh_enabled \| bool`
			`role: galaxy/ssh`
add sshd management 2023-03-18 21:50:27 +02:00
activate ssh and fail2ban roles only when enabled 2023-03-18 22:47:41 +02:00			`- when: system_security_fail2ban_enabled \| bool`
			`role: galaxy/fail2ban`
add fail2ban 2023-03-18 22:04:44 +02:00
Initial commit 2023-03-15 10:58:12 +02:00			`# This role exposes various tags (setup-postgres, setup-all, upgrade-postgres, import-postgres, etc.), so we don't tag it here.`
			`- role: galaxy/com.devture.ansible.role.postgres`

Add Postgres Backup 2023-03-17 16:40:08 +02:00			`- role: galaxy/com.devture.ansible.role.postgres_backup`

Add support for MongoDB 2023-06-02 17:25:58 +03:00			`- role: galaxy/mongodb`

Initial commit 2023-03-15 10:58:12 +02:00			`- role: galaxy/com.devture.ansible.role.container_socket_proxy`

			`- role: galaxy/com.devture.ansible.role.traefik`

Add Adguard Home service 2023-03-24 18:01:21 +02:00			`- role: galaxy/adguard_home`

Add Appsmith support 2023-04-17 09:42:47 +03:00			`- role: galaxy/appsmith`

Add authentik 2023-04-19 12:29:15 +02:00			`- role: galaxy/authentik`

Add backup borg 2023-05-01 09:12:29 +02:00			`- role: galaxy/backup_borg`

Add Collabora Online support 2023-03-17 14:25:31 +02:00			`- role: galaxy/collabora_online`

Add Docker Registry service 2023-03-18 19:27:24 +02:00			`- role: galaxy/docker_registry`
Add Docker Registry Browser service 2023-03-19 09:14:12 +02:00			`- role: galaxy/docker_registry_browser`
Add Docker Registry Purger service 2023-03-19 10:04:10 +02:00			`- role: galaxy/docker_registry_purger`
Add Docker Registry service 2023-03-18 19:27:24 +02:00
feat: Add firezone VPN 2023-03-24 09:58:39 +01:00			`- role: galaxy/firezone`

Add Focalboard service 2023-03-20 08:40:15 +02:00			`- role: galaxy/focalboard`

Bump funkwhale role version 2023-04-02 19:13:35 +02:00			`- role: galaxy/funkwhale`
Add funkwhale 2023-04-02 18:19:58 +02:00
Add Gitea and Woodpecker CI support 2023-03-16 18:26:06 +02:00			`- role: galaxy/gitea`

Lay foundation for GoToSocial 2023-03-24 13:11:13 +01:00			`- role: galaxy/gotosocial`

Add Grafana service 2023-03-20 19:14:45 +02:00			`- role: galaxy/grafana`

Add MariaDB support 2023-04-10 13:44:48 +03:00			`- role: galaxy/mariadb`

Initial commit 2023-03-15 10:58:12 +02:00			`- role: galaxy/miniflux`

add Matrix Rooms Search API 2023-04-12 13:49:51 +03:00			`- role: galaxy/mrs`

Add Healthecks support 2023-04-11 17:39:02 +03:00			`- role: galaxy/healthchecks`

Add support for Infisical 2023-06-02 17:50:15 +03:00			`- role: galaxy/infisical`

feat: Add hubsite Hubsite is will provide you with a simple, static site that shows an overview of the available services. It is written for this project but kept externally to enable reuse 2023-03-19 21:10:42 +01:00			`- role: galaxy/hubsite`

Initial influxdb commit 2023-06-29 00:51:46 +02:00			`- role: galaxy/influxdb`

Add Jitsi support 2023-04-02 16:39:59 +03:00			`- role: galaxy/jitsi`

			`- role: galaxy/keycloak`

Fix role name in setup.yml (lago -> galaxy/lago) 2023-04-14 09:07:11 +03:00			`- role: galaxy/lago`
Add Lago support 2023-04-14 08:58:46 +03:00
Add mobilizon + postgis (WIP) 2023-04-05 17:01:58 +02:00			`- role: galaxy/mobilizon`

Add Navidrome support 2023-03-29 11:42:39 +03:00			`- role: galaxy/navidrome`

Add NetBox service and redo Redis integration for PeerTube 2023-03-26 17:13:57 +03:00			`- role: galaxy/netbox`

Add Nextcloud support 2023-03-17 11:39:04 +02:00			`- role: galaxy/nextcloud`

Add owncast 2023-03-29 13:13:17 +02:00			`- role: galaxy/owncast`

Fix peertube role include 2023-03-17 15:48:15 +02:00			`- role: galaxy/peertube`
Add PeerTube and Redis support 2023-03-17 15:43:45 +02:00
Add mobilizon + postgis (WIP) 2023-04-05 17:01:58 +02:00			`- role: galaxy/postgis`

Add Prometheus service 2023-03-20 17:54:01 +02:00			`- role: galaxy/prometheus`
Prometheus Node Exporter 2023-03-18 00:13:30 +02:00			`- role: galaxy/prometheus_node_exporter`
Add Prometheus service 2023-03-20 17:54:01 +02:00			`- role: galaxy/prometheus_blackbox_exporter`
Switch role 2023-05-17 10:32:47 +02:00			`- role: galaxy/prometheus_postgres_exporter`
Prometheus Node Exporter 2023-03-18 00:13:30 +02:00
Initial commit 2023-03-15 10:58:12 +02:00			`- role: galaxy/radicale`

Redmine 2023-03-17 23:27:52 +02:00			`- role: galaxy/redmine`

Add PeerTube and Redis support 2023-03-17 15:43:45 +02:00			`- role: galaxy/redis`

add Soft Serve 2023-03-28 16:02:22 +03:00			`- role: galaxy/soft_serve`

Add Syncthing support 2023-03-23 11:32:59 +02:00			`- role: galaxy/syncthing`

Add Telegraf 2023-06-29 10:46:34 +02:00			`- role: galaxy/telegraf`

Add initial Vaultwarden support Absorbed from the https://github.com/spantaleev/vaultwarden-docker-ansible-deploy Ansible playbook. The `vaultwarden_backup` role hasn't been migrated over yet. 2023-03-16 12:05:21 +02:00			`- role: galaxy/vaultwarden`

Initial commit 2023-03-15 10:58:12 +02:00			`- role: galaxy/uptime_kuma`

Add support for WireGuard Easy 2023-04-29 09:30:26 +03:00			`- role: galaxy/wg_easy`

Add Gitea and Woodpecker CI support 2023-03-16 18:26:06 +02:00			`- role: galaxy/com.devture.ansible.role.woodpecker_ci_server`
			`- role: galaxy/com.devture.ansible.role.woodpecker_ci_agent`

Rename aux role directory to auxiliary to work around problems on NTFS Related to: - https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/2738 - https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2739 - https://github.com/mother-of-all-self-hosting/mash-playbook/pull/40 2023-06-16 09:00:43 +03:00			`- role: galaxy/auxiliary`
Add AUX role 2023-03-20 11:03:59 +02:00
Initial commit 2023-03-15 10:58:12 +02:00			`- when: devture_systemd_service_manager_enabled \| bool`
			`role: galaxy/com.devture.ansible.role.systemd_service_manager`

			`# This is pretty much last, because we want it to better serve as a "last known good configuration".`
			`# See: https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2217#issuecomment-1301487601`
			`- when: devture_playbook_state_preserver_enabled \| bool`
			`role: galaxy/com.devture.ansible.role.playbook_state_preserver`
			`tags:`
			`- setup-all`
			`- install-all`

			`- role: galaxy/com.devture.ansible.role.playbook_runtime_messages`