mirror/ infrastructure
1
1
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/infrastructure.git synced 2024-06-02 09:36:03 +02:00
Code Issues

borg-client: Adapt for FQDN 

Signed-off-by: Florian Pritz <bluewind@xinu.at>
This commit is contained in:
Florian Pritz 2017-09-06 20:43:44 +02:00
parent 4f047cf5e6
commit 891e729c8d
8 changed files with 15 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
host_vars/apollo.archlinux.org
View File

@ -11,3 +11,9 @@ ipv6_gateway: "fe80::1"
filesystem: btrfs
zabbix_agent_server: "127.0.0.1"
# FIXME: this should probably be configured another way. maybe the
# mysql/postgres roles should deploy the credentials themselves
postgres_backup_dir: "/var/lib/postgres/backup"
mysql_backup_dir: "/root/backup-mysql"
mysql_backup_defaults: "/root/.backup-my.cnf"

1
host_vars/soyuz.archlinux.org
View File

@ -9,3 +9,4 @@ ipv6_gateway: "fe80::1"
default_qdisc: "fq"
tcp_congestion_control: "bbr"
filesystem: btrfs
postgres_backup_dir: "/var/lib/postgres/backup"

2
playbooks/apollo.yml
View File

@ -22,7 +22,7 @@
- { role: tools, tags: ['tools'] }
- { role: sshd, tags: ['sshd'] }
- { role: root_ssh, tags: ['root_ssh'] }
- { role: borg-client, backup_host: "borg@vostok.archlinux.org", backup_dir: "/backup/apollo", postgres_backup_dir: "/var/lib/postgres/backup", mysql_backup_dir: "/root/backup-mysql", mysql_backup_defaults: "/root/.backup-my.cnf", tags: ["borg"] }
- { role: borg-client, tags: ["borg"] }
- { role: nginx, letsencrypt_validation_dir: "/var/lib/letsencrypt", tags: ["nginx"] }
- { role: planet, planet_domain: "planet.archlinux.org", planet_dir: "/srv/http/planet", tags: ["planet"] }
- { role: spampd, tags: ["mail", "spampd"] }

2
playbooks/orion.yml
View File

@ -11,7 +11,7 @@
- { role: tools, tags: ['tools'] }
- { role: sshd, tags: ['sshd'] }
- { role: root_ssh, tags: ['root_ssh'] }
- { role: borg-client, backup_host: "borg@vostok.archlinux.org", backup_dir: "/backup/orion", postgres_backup_dir: None, tags: ['borg'] }
- { role: borg-client, tags: ['borg'] }
- { role: opendkim, dkim_selector: orion, tags: ['mail'] }
- { role: dovecot, tags: ['mail', "dovecot"] }
- { role: spampd, tags: ["mail", "spampd"] }

2
playbooks/soyuz.yml
View File

@ -8,7 +8,7 @@
- { role: tools, tags: ['tools'] }
- { role: sshd, tags: ['sshd'] }
- { role: root_ssh, tags: ['root_ssh'] }
- { role: borg-client, backup_host: "borg@vostok.archlinux.org", backup_dir: "/backup/soyuz", postgres_backup_dir: "/var/lib/postgres/backup", tags: ['borg'] }
- { role: borg-client, tags: ['borg'] }
- { role: opendkim, dkim_selector: soyuz, tags: ['mail'] }
- { role: postfix, postfix_server: false, tags: ["mail", "postfix"] }
- { role: archusers, tags: ['archusers'] }

2
playbooks/vostok.yml
View File

@ -8,4 +8,4 @@
- tools
- sshd
- { role: root_ssh, tags: ['root_ssh'] }
- { role: borg-server, backup_dir: "/backup", backup_clients: ["orion", "apollo", "soyuz"] }
- { role: borg-server, backup_dir: "/backup", backup_clients: "{{groups['borg-clients']}}", tags: ["borg"] }

4
roles/borg-client/defaults/main.yml
View File

@ -1,4 +1,6 @@
---
postgres_backup_dir: ''
backup_host: "borg@vostok.archlinux.org"
backup_dir: "/backup/{{inventory_hostname}}"
postgres_backup_dir: None
mysql_backup_dir: ''
mysql_backup_defaults: ''

2
roles/borg-server/tasks/main.yml
View File

@ -16,7 +16,7 @@
- name: fetch ssh keys
command: cat /root/.ssh/id_rsa.pub
register: ssh_keys
delegate_to: "{{ groups[item][0] }}"
delegate_to: "{{ item }}"
with_items: "{{ backup_clients }}"
- name: allow certain clients to connect