homelab/ansible-collection
0
0
Fork 0
Code Issues 1 Pull requests 1 Releases 159 Activity Actions
ansible-collection/roles/caddy/defaults/main.yml

41 lines
2.7 KiB
YAML
Raw Permalink Blame History

# Ansible Roles for managing Auengun.net Infrastructure & Testing/Learning.
# Source available at git.auengun.net/homelab/ansible-collection
# Copyright (C) 2023 GregoryDosh
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU Affero General Public License as
# published by the Free Software Foundation, either version 3 of the
# License, or (at your option) any later version.
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU Affero General Public License for more details.
# You should have received a copy of the GNU Affero General Public License
# along with this program. If not, see <https://www.gnu.org/licenses/>.
# SPDX-License-Identifier: AGPL-3.0-or-later
# SPDX-FileCopyrightText: 2023 GregoryDosh
---
# renovate: datasource=gitea-releases depName=homelab/bin-caddy versioning=loose
CADDY_VERSION: v2.10.2-110-af62
CADDY_BIN_AMD64_URL: "https://git.auengun.net/homelab/bin-caddy/releases/download/{{ CADDY_VERSION }}/caddy-linux-amd64"
CADDY_BIN_ARM64_URL: "https://git.auengun.net/homelab/bin-caddy/releases/download/{{ CADDY_VERSION }}/caddy-linux-arm64"
CADDY_CADDYFILE_BASIC_RATELIMIT: "{{ role_path }}/templates/basic_ratelimit.j2"
CADDY_CADDYFILE_CORS: "{{ role_path }}/templates/cors.j2"
CADDY_CADDYFILE_CORS_ALLOW_HEADERS: "Authorization, Cache-Control, Content-Type"
CADDY_CADDYFILE_CORS_ALLOW_METHODS: "GET, POST, PUT, PATCH, DELETE, OPTIONS"
CADDY_CADDYFILE_AUTHENTIK_AUTH_PROXY: "{{ role_path }}/templates/authentik_auth_proxy.j2"
CADDY_CADDYFILE_AUTHENTIK_AUTH_PROXY_SKIP_AUTH_MATCHER: "not path /api*"
CADDY_CADDYFILE_AUTHENTIK_AUTH_PROXY_COPY_HEADERS: "X-Authentik-Username X-Authentik-Groups X-Authentik-Email X-Authentik-Name X-Authentik-Uid X-Authentik-Jwt X-Authentik-Meta-Jwks X-Authentik-Meta-Outpost X-Authentik-Meta-Provider X-Authentik-Meta-App X-Authentik-Meta-Version authorization"
CADDY_CADDYFILE_GLOBALS: "{{ role_path }}/templates/globals.j2"
CADDY_CADDYFILE_LOCAL_SRC: "{{ role_path }}/templates/Caddyfile.j2"
CADDY_CADDYFILE_REDIRECT_BAD_ACTORS: "{{ role_path }}/templates/redirect_bad_actors.j2"
CADDY_CADDYFILE_ROBOTS_TXT: "{{ role_path }}/templates/robots.txt.j2"
CADDY_CADDYFILE_SECURITY_TXT: "{{ role_path }}/templates/security.txt.j2"
CADDY_CADDYFILE_WELLKNOWN_SECURITY: "{{ role_path }}/templates/wellknown_security.j2"
CADDY_CADDYFILE_WS: "{{ role_path }}/templates/ws.j2"
CADDY_INSTALL_PATH: "/bin/caddy"
CADDY_ROOT_CA: "{{ role_path }}/templates/ca-root.crt"
STEP_CERTS_ACME_CA_PROVISIONER: "{{ lookup('ansible.builtin.env', 'STEP_CERTS_ACME_CA_PROVISIONER') }}"
Reference in a new issue View git blame Copy permalink