GregoryDosh
0c2dec049d
All checks were successful
Version Bump Galaxy.yml / Version Bump Galaxy.yml (push) Successful in 4s
37 lines
2.9 KiB
YAML
37 lines
2.9 KiB
YAML
# SPDX-License-Identifier: AGPL-3.0-or-later
|
|
# SPDX-FileCopyrightText: 2025 Dosh LLC
|
|
---
|
|
# renovate: datasource=forgejo-releases depName=dosh-llc/bin-caddy versioning=loose
|
|
CADDY_VERSION: v2.10.2-3-ae05a7
|
|
CADDY_BIN_AMD64_URL: "https://git.auengun.net/dosh-llc/bin-caddy/releases/download/{{ CADDY_VERSION }}/caddy-{{ 'freebsd' if ansible_os_family == 'FreeBSD' else 'linux' }}-amd64"
|
|
CADDY_BIN_ARM64_URL: "https://git.auengun.net/dosh-llc/bin-caddy/releases/download/{{ CADDY_VERSION }}/caddy-{{ 'freebsd' if ansible_os_family == 'FreeBSD' else 'linux' }}-arm64"
|
|
CADDY_BIN_USER_NAME: "root"
|
|
CADDY_BIN_GROUP_NAME: "{{ 'wheel' if ansible_os_family == 'FreeBSD' else 'root' }}"
|
|
CADDY_BIN_INSTALL: true
|
|
CADDY_SERVICE_SYSTEMD_INSTALL: true
|
|
CADDY_CADDYFILE_AUTHENTIK_AUTH_PROXY: "{{ role_path }}/templates/etc/caddy/authentik_auth_proxy.j2"
|
|
CADDY_CADDYFILE_AUTHENTIK_AUTH_PROXY_SKIP_AUTH_MATCHER: "not path /api*"
|
|
CADDY_CADDYFILE_AUTHENTIK_AUTH_PROXY_COPY_HEADERS: "X-Authentik-Username X-Authentik-Groups X-Authentik-Email X-Authentik-Name X-Authentik-Uid X-Authentik-Jwt X-Authentik-Meta-Jwks X-Authentik-Meta-Outpost X-Authentik-Meta-Provider X-Authentik-Meta-App X-Authentik-Meta-Version authorization"
|
|
CADDY_CADDYFILE_BASIC_RATELIMIT: "{{ role_path }}/templates/etc/caddy/basic_ratelimit.j2"
|
|
CADDY_CADDYFILE_CORS: "{{ role_path }}/templates/etc/caddy/cors.j2"
|
|
CADDY_CADDYFILE_CORS_ALLOW_HEADERS: "Authorization, Cache-Control, Content-Type"
|
|
CADDY_CADDYFILE_CORS_ALLOW_METHODS: "GET, POST, PUT, PATCH, DELETE, OPTIONS"
|
|
CADDY_CADDYFILE_GLOBALS: "{{ role_path }}/templates/etc/caddy/globals.j2"
|
|
CADDY_ENVFILE: "{{ role_path }}/templates/etc/caddy/envfile.j2"
|
|
CADDY_CONFIG_GLOBALS_DISABLE_HTTP: true
|
|
CADDY_CADDYFILE_TLS_INTERNAL_CA: "{{ role_path }}/templates/etc/caddy/tls_internal_ca.j2"
|
|
CADDY_CADDYFILE_TLS_DNS_CLOUDFLARE_LETSENCRYPT: "{{ role_path }}/templates/etc/caddy/tls_dns_cloudflare_letsencrypt.j2"
|
|
CADDY_CADDYFILE_LOCAL_SRC: "{{ role_path }}/templates/etc/caddy/Caddyfile.j2"
|
|
CADDY_CADDYFILE_REDIRECT_BAD_ACTORS: "{{ role_path }}/templates/etc/caddy/redirect_bad_actors.j2"
|
|
CADDY_CADDYFILE_ROBOTS_TXT: "{{ role_path }}/templates/etc/caddy/robots.txt.j2"
|
|
CADDY_CADDYFILE_SECURITY_TXT: "{{ role_path }}/templates/etc/caddy/security.txt.j2"
|
|
CADDY_CADDYFILE_WELLKNOWN_SECURITY: "{{ role_path }}/templates/etc/caddy/wellknown_security.j2"
|
|
CADDY_CADDYFILE_WS: "{{ role_path }}/templates/etc/caddy/ws.j2"
|
|
CADDY_INSTALL_PATH: "/bin/caddy"
|
|
CADDY_CONFIG_PATH: "{{ '/usr/local' if ansible_os_family == 'FreeBSD' else '' }}/etc/caddy"
|
|
CADDY_USER_NAME: "{{ 'www' if ansible_os_family == 'FreeBSD' else 'caddy' }}"
|
|
CADDY_GROUP_NAME: "{{ 'www' if ansible_os_family == 'FreeBSD' else 'caddy' }}"
|
|
CADDY_ROOT_CA: "{{ role_path }}/templates/etc/caddy/ca-root.crt"
|
|
|
|
CF_API_TOKEN: "{{ lookup('ansible.builtin.env', 'CF_API_TOKEN') }}"
|
|
STEP_CERTS_ACME_CA_PROVISIONER: "{{ lookup('ansible.builtin.env', 'STEP_CERTS_ACME_CA_PROVISIONER') }}"
|