bubbles/homelab_flarum
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 1 Wiki Activity

It works, mariadb setup untested

Browse Source
This commit is contained in:
Dak Thompson 2024-03-06 11:39:48 -06:00
parent dfbd35725a
commit cdb1dd558e
9 changed files with 170 additions and 19 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.gitignore vendored
View File

@ -1,8 +1,6 @@
.idea/ .idea/
*.iml *.iml
terraform/.secrets terraform/.secrets
terraform_ghost/.secrets
terraform/.tunnel
**/*.tfplan **/*.tfplan
**/*.tfstate* **/*.tfstate*
**/.terraform.lock.hcl **/.terraform.lock.hcl

19
group_vars/all/vault.yml
View File

@ -1,10 +1,11 @@
$ANSIBLE_VAULT;1.1;AES256 $ANSIBLE_VAULT;1.1;AES256
66313862303134613964336532616465383364643134316563653537323236353132616161623730 64373166313661333439396231393635313637376338396133616439306261336132346266313661
3763626335633066393138346662363334393735663231640a656137633834326237663162363339 3565633934333833333632626664393362326139653466650a356433383231346135363931393432
30343661373936646337653133623263346665383538643164653534646232613862346234373438 61373565366466316661333035633866333163616261383931356638303231363561386636623438
3863653739373862350a383937623630303236376333373562656437663566623361653863623764 6230653739643830380a323964383161643334353938646634613366393631633666333431636231
62373931356462303138363634346663313665303162333533636265623166386637653434633636 66613264373739643439666530313736313864616331333234346161376534336337613234323466
30646337373865323330363839346437643164376231613033643331633031643865356266383766 31633438363434316162663930366163336534303062386538313739666266373939656263373466
64326536303762653839633431653831303637353235383033336337303437333264396138613835 62383863316563373331393762336563333838383231656634366137396637646630626662346262
38633464373665666562616439646436373637373339393334346366336435366636663035653862 30653566303564356337653839643865656162323339663162386436343932373765333166646130
3831 36613261626238626130633834333762643333303138643934363566313665373634313634376239
3037636237393031623932373765616564363235346234366630

9
hosts.yml Normal file
View File

@ -0,0 +1,9 @@
---
all:
hosts:
server1:
ansible_become_pass: "{{ server1_become_pass }}"
server2:
ansible_become_pass: "{{ server2_become_pass }}"
vars:
ansible_user: zoe

2
roles/flarum/files/composer_installer.sh
View File

@ -11,7 +11,7 @@ then
exit 1 exit 1
fi fi
php composer-setup.php --quiet --install-dir /usr/bin php composer-setup.php --quiet --install-dir=/usr/bin --filename=composer
RESULT=$? RESULT=$?
rm composer-setup.php rm composer-setup.php
exit $RESULT exit $RESULT

30
roles/flarum/files/nginx.conf
View File

@ -15,9 +15,37 @@ server {
ssl_certificate /etc/nginx/flarum.bubblesthebunny.com/fullchain.pem; ssl_certificate /etc/nginx/flarum.bubblesthebunny.com/fullchain.pem;
ssl_certificate_key /etc/nginx/flarum.bubblesthebunny.com/privkey.pem; ssl_certificate_key /etc/nginx/flarum.bubblesthebunny.com/privkey.pem;
root /home/flarum/flarum/public root /var/www/flarum/public;
index index.php index.html index.htm;
location ~ \.php$ {
include fastcgi_params;
# fastcgi_param GATEWAY_INTERFACE CGI/1.1;
# fastcgi_param SERVER_SOFTWARE nginx;
# fastcgi_param QUERY_STRING $query_string;
# fastcgi_param REQUEST_METHOD $request_method;
# fastcgi_param CONTENT_TYPE $content_type;
# fastcgi_param CONTENT_LENGTH $content_length;
# fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
# fastcgi_param SCRIPT_NAME $fastcgi_script_name;
# fastcgi_param REQUEST_URI $request_uri;
# fastcgi_param DOCUMENT_URI $document_uri;
# fastcgi_param DOCUMENT_ROOT /home/flarum/flarum/public;
# fastcgi_param SERVER_PROTOCOL $server_protocol;
# fastcgi_param REMOTE_ADDR $remote_addr;
# fastcgi_param REMOTE_PORT $remote_port;
# fastcgi_param SERVER_ADDR $server_addr;
# fastcgi_param SERVER_PORT $server_port;
# fastcgi_param SERVER_NAME $server_name;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_split_path_info ^(.+\.php)(/.+)$;
add_header x-debug $document_root$fastcgi_script_name always;
fastcgi_pass 127.0.0.1:9000;
}
# Pass requests that don't refer directly to files in the filesystem to index.php # Pass requests that don't refer directly to files in the filesystem to index.php
location / { location / {
index index.php;
try_files $uri $uri/ /index.php?$query_string; try_files $uri $uri/ /index.php?$query_string;
} }

4
roles/flarum/tasks/add_to_cloudflare_tunnel.yml
View File

@ -2,8 +2,8 @@
- name: Add Cloudflare Tunnel route - name: Add Cloudflare Tunnel route
become: yes become: yes
lineinfile: lineinfile:
path: /etc/cloudflared/config.yaml path: /etc/cloudflared/config.yml
regexp: "- hostname: flarum\.bubblesthebunny\.com[\W]*service: https:\/\/localhost:8544" regexp: "- hostname: flarum\\.bubblesthebunny\\.com[\\W]*service: https:\\/\\/localhost:8544"
line: |- line: |-
- hostname: flarum.bubblesthebunny.com - hostname: flarum.bubblesthebunny.com
service: https://localhost:8544 service: https://localhost:8544

81
roles/flarum/tasks/main.yml
View File

@ -16,27 +16,100 @@
- name: Create Flarum install dir - name: Create Flarum install dir
become: yes become: yes
file: file:
path: /home/flarum/flarum path: /var/www/flarum
state: directory state: directory
owner: flarum owner: flarum
group: flarum group: flarum
mode: 0750
- name: Install PHP - name: Install PHP
become: yes become: yes
zypper: zypper:
name: php81 name: php81
state: latest state: latest
- name: Install PHP-FPM
become: yes
zypper:
name: php81-fpm
state: latest
- name: Install PHP OpenSSL
become: yes
zypper:
name: php81-openssl
state: latest
- name: Install PHP Phar
become: yes
zypper:
name: php81-phar
state: latest
- name: Install PHP iconv
become: yes
zypper:
name: php81-iconv
state: latest
- name: Install PHP mbstring
become: yes
zypper:
name: php81-mbstring
state: latest
- name: Install PHP PDO
become: yes
zypper:
name: php81-pdo
state: latest
- name: Install PHP FileInfo
become: yes
zypper:
name: php81-fileinfo
state: latest
- name: Install PHP DOM
become: yes
zypper:
name: php81-dom
state: latest
- name: Install PHP Curl
become: yes
zypper:
name: php81-curl
state: latest
- name: Install PHP GD
become: yes
zypper:
name: php81-gd
state: latest
- name: Install PHP pdo_mysql
become: yes
zypper:
name: php81-pdo-mysql
state: latest
- name: Install PHP tokenizer
become: yes
zypper:
name: php81-tokenizer
state: latest
- name: Install Composer - name: Install Composer
become: yes become: yes
script: script:
command: composer_installer.sh cmd: composer_installer.sh
creates: /usr/bin/composer - name: Update sudoers
become: yes
community.general.sudoers:
name: zoe-do-as-flarum
state: present
user: zoe
runas: flarum
commands: ALL
- name: Create Flarum project - name: Create Flarum project
become: yes become: yes
become_user: flarum become_user: flarum
community.general.composer: community.general.composer:
command: create-project command: create-project
arguments: flarum/flarum . arguments: flarum/flarum .
working-dir: /home/flarum/flarum working_dir: /var/www/flarum
- name: Start fpm
become: yes
systemd:
name: php-fpm
state: restarted
- name: Setup Nginx - name: Setup Nginx
import_tasks: setup_nginx.yml import_tasks: setup_nginx.yml
- name: Add to CloudflareD tunnel - name: Add to CloudflareD tunnel

37
roles/flarum/tasks/setup_mariadb.yml Normal file
View File

@ -0,0 +1,37 @@
---
- name: Update sudoers
become: yes
community.general.sudoers:
name: zoe-do-as-mysql
state: present
user: zoe
runas: mysql
commands: ALL
- name: Install MariaDB Server
become: yes
package:
name: mariadb
state: latest
- name: Start MariaDB server
become: yes
systemd:
name: mariadb
enabled: yes
state: started
- name: Update root password for MariaDB
become: yes
become_user: mysql
mysql_user:
name: flarum_user
login_user: mysql
# login_password: "{{ mariadb_root_pass }}"
password: "{{ flarum_db_pass }}"
state: present
priv: "*.*:ALL"
- name: Create flarum database
become: yes
become_user: mysql
mysql_db:
name: flarum
login_user: flarum_user
login_password: "{{ flarum_db_pass }}"

5
roles/flarum/tasks/setup_nginx.yml
View File

@ -20,6 +20,11 @@
owner: nginx owner: nginx
group: nginx group: nginx
mode: 0640 mode: 0640
- name: Add Nginx user to Flarum group
become: yes
user:
name: nginx
groups: flarum
- name: Copy nginx.conf - name: Copy nginx.conf
become: yes become: yes
copy: copy: