Move docker folder and delete hedgedoc user
All checks were successful
continuous-integration/drone/push Build is passing
All checks were successful
continuous-integration/drone/push Build is passing
This commit is contained in:
parent
3f3d619694
commit
a1cac6b8a3
1
TODO.md
1
TODO.md
@ -6,6 +6,7 @@
|
||||
- [x] Make it inaccessible to anyone but root (`-rw------`)
|
||||
- [x] Add [Drone runner](https://docs.drone.io/runner/docker/installation/linux/)
|
||||
- [ ] Figure out how to dependably store `.env` files (Ansible vault? Something else?)
|
||||
- [ ] In vault, seperate from other config
|
||||
- [x] Check out docker swarm and current best practices for Ansible
|
||||
- [x] Use Gitea instead of GitLab
|
||||
- [ ] Add drone exec runner for Nix builds with shared `/nix`
|
||||
|
||||
@ -8,7 +8,7 @@
|
||||
name: "{{ item.name }}"
|
||||
uid: "{{ item.uid }}"
|
||||
create_home: false
|
||||
state: present
|
||||
state: "{{ item.state }}"
|
||||
loop:
|
||||
- name: jupyter
|
||||
uid: 42000
|
||||
@ -24,7 +24,7 @@
|
||||
state: present
|
||||
- name: hedgedoc
|
||||
uid: 10000
|
||||
state: present
|
||||
state: absent
|
||||
# All services that are behind Caddy need to be in this network
|
||||
- name: Create Caddy network
|
||||
become: true
|
||||
@ -34,7 +34,7 @@
|
||||
- name: Upload docker configuration
|
||||
become: true
|
||||
ansible.builtin.copy:
|
||||
src: ../../docker
|
||||
src: ../../docker/docker
|
||||
dest: /etc/pbri
|
||||
# Files should inaccessible to non-root users.
|
||||
mode: u=rw,g=,o=
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user