ansible-role-mastodon/defaults/main.yml

---
mastodon_initial_setup: false
mastodon_owner: MyUser
mastodon_owner_email: myemail@example.org
mastodon_environment: production
mastodon_repo: https://github.com/mastodon/mastodon.git
mastodon_secret_key_base: "{{ vault_mastodon_secret_key_base }}"
mastodon_otp_secret: "{{ vault_mastodon_otp_secret }}"
mastodon_paperclip_secret: "{{ vault_mastodon_paperclip_secret }}"
mastodon_db: mastodon
mastodon_db_login_unix_socket: db
mastodon_db_port: 5432
mastodon_db_password: "{{ vault_mastodon_db_password }}"
mastodon_host: mastodon.example.com
mastodon_web_domain: example.com
mastodon_alternate_domains: ''
mastodon_authorized_fetch: 'false'
mastodon_limited_federation: 'false'
mastodon_bare_installation: false
mastodon_composer_folder: /opt/mastodon
mastodon_docker_image: "moritzheiber/mastodon-docker"
mastodon_docker_network: "mastodon_network"
mastodon_version: "v4.1.5" 
mastodon_allow_prerelease: "false"
mastodon_user: "mastodon"
mastodon_home: "/home/{{ mastodon_user }}"
mastodon_db_user: "{{ mastodon_user }}"
mastodon_path: "live"
mastodon_nginx_symlink: "/var/www/html/mastodon"

redis_pass: "{{ vault_mastodon_redis_password }}"
redis_host: redis
redis_port: 6379
redis_volatile: true
redis_cache_host: redis-volatile
redis_cache_port: 6379

vapid_public_key: "{{ vault_mastodon_vapid_public_key }}"
vapid_private_key: "{{ vault_mastodon_vapid_private_key }}"

smtp_from_address: mastodon-admin@example.com
smtp_server: mail.example.com
smtp_port: 465
smtp_password: "{{ vault_mastodon_admin_mail_password }}"

allow_hidden_services: false
#Use HTTP only for Vagrant testing or for reverse proxy purposes.
use_http: true
nginx_reverse_proxy: false

es_enabled: 'true'
es_host: localhost
es_port: 19200
es_user: elastic
es_pass: "{{ vault_mastodon_es_pass }}"
es_version: 7.17.7

ansible_python_interpreter: "/usr/bin/python2"

single_user_mode: 'false'

docker_command: docker
docker_daemon_settings:
  log-driver: journald
  storage-driver: zfs

install_python_packages:
  - package: "docker"

uninstall_python_packages:
  - package: "docker-py"

install_packages:
  - package: "docker-ce"
  #- package: "python-pip-whl"
  #- package: "python-setuptools"
  - package: docker-compose


uninstall_packages:
  # - package: "docker-engine"
  # - package: "docker"
  - package: "docker.io"
  # - package: "docker-ce"
  # - package: "docker-ce-cli"
  # - package: "dockerio"

run_preflight_checks: "true"
node_major_version: "16"
os_family: "{{ ansible_os_family|lower }}"
#Please list a valid name of the tag from Mastodon's Github.
#Accepted format is "vX.X.XrcX"
disable_hsts: "false"
disable_letsencrypt: "false"
#Nginx will listen to every IP/Domain with this directive. Useful for reverse proxy or testing only.
nginx_catch_all: "false"
self_signed_cert_location: /etc/ssl/certs
self_signed_key_location: /etc/ssl/private
media_remove_schedule: 'Sat *-*-* 00:10:00'
preview_cards_remove_schedule: 'Sat *-*-* 00:20:00'
search_deploy_schedule: 'Sat *-*-* 03:00:00'

s3_enabled: 'false'
s3_bucket: ''
aws_access_key_id: ''
aws_secret_access_key: '' 
s3_alias_host: ''

limited_federation_mode: 'false'
disabllow_unauthenticated_api_access: 'false'

web_concurrency: 2
max_threads: 5
default_locale: en

ubuntu_codename: "{{ ansible_distribution_release }}"

packages:
  - package: "autoconf"
  - package: "bison"
  - package: "build-essential"
  - package: "curl"
  - package: "cron"
  - package: "ffmpeg"
  - package: "file"
  - package: "g++"
  - package: "gcc"
  - package: "git"
  - package: "imagemagick"
  - package: "libffi-dev"
  - package: "libgdbm-dev"
  - package: "libicu-dev"
  - package: "libidn11-dev"
  - package: "libncurses5-dev"
  - package: "libpq-dev"
  - package: "libprotobuf-dev"
  - package: "libreadline-dev"
  - package: "libssl-dev"
  - package: "libxml2-dev"
  - package: "libxslt1-dev"
  - package: "libyaml-dev"
  - package: "nginx"
  - package: "nodejs"
  - package: "pkg-config"
  - package: "protobuf-compiler"
  - package: "sudo"
  - package: "systemd"
  - package: "ufw"
  - package: "unattended-upgrades"
  - package: "yarn"
  - package: "zlib1g-dev"
  - package: "libssl-dev"

postgres:
  packages:
    - package: "libpq-dev"
    - package: "postgresql"
    - package: "postgresql-contrib"
    - package: "python3-psycopg2"
    - package: "sudo"
    #Ansible can't set permissions on temporary files Ansible needs
    #to create when becoming an unprivileged user when running as unprivileged user
    #https://docs.ansible.com/ansible-core/2.12/user_guide/become.html#risks-of-becoming-an-unprivileged-user
    - package: "acl"

redis:
  packages:
    - package: "redis-server"
    - package: "redis-tools"
adapt code from mastodon-ansible 2022-11-19 10:10:57 +01:00			`---`
use alternate setup 2022-11-19 21:55:50 +01:00			`mastodon_initial_setup: false`
			`mastodon_owner: MyUser`
			`mastodon_owner_email: myemail@example.org`
Add more variables to configuration file 2022-11-24 08:57:12 +01:00			`mastodon_environment: production`
set default repo to upstream 2023-07-31 07:32:59 +02:00			`mastodon_repo: https://github.com/mastodon/mastodon.git`
Add podman option 2022-11-19 11:23:23 +01:00			`mastodon_secret_key_base: "{{ vault_mastodon_secret_key_base }}"`
			`mastodon_otp_secret: "{{ vault_mastodon_otp_secret }}"`
Handle secrets 2022-11-19 19:06:51 +01:00			`mastodon_paperclip_secret: "{{ vault_mastodon_paperclip_secret }}"`
organize and update defaults 2023-07-09 16:33:58 +02:00			`mastodon_db: mastodon`
			`mastodon_db_login_unix_socket: db`
			`mastodon_db_port: 5432`
			`mastodon_db_password: "{{ vault_mastodon_db_password }}"`
adapt code from mastodon-ansible 2022-11-19 10:10:57 +01:00			`mastodon_host: mastodon.example.com`
Add more app options 2022-11-22 13:23:26 +01:00			`mastodon_web_domain: example.com`
			`mastodon_alternate_domains: ''`
			`mastodon_authorized_fetch: 'false'`
			`mastodon_limited_federation: 'false'`
organize and update defaults 2023-07-09 16:33:58 +02:00			`mastodon_bare_installation: false`
			`mastodon_composer_folder: /opt/mastodon`
			`mastodon_docker_image: "moritzheiber/mastodon-docker"`
			`mastodon_docker_network: "mastodon_network"`
Use mastodon version for docker 2023-07-31 07:32:22 +02:00			`mastodon_version: "v4.1.5"`
organize and update defaults 2023-07-09 16:33:58 +02:00			`mastodon_allow_prerelease: "false"`
			`mastodon_user: "mastodon"`
			`mastodon_home: "/home/{{ mastodon_user }}"`
			`mastodon_db_user: "{{ mastodon_user }}"`
			`mastodon_path: "live"`
			`mastodon_nginx_symlink: "/var/www/html/mastodon"`

sort variables 2023-07-09 17:01:08 +02:00			`redis_pass: "{{ vault_mastodon_redis_password }}"`
			`redis_host: redis`
			`redis_port: 6379`
variable to contorl if redis volatile is present 2023-07-31 08:14:40 +02:00			`redis_volatile: true`
sort variables 2023-07-09 17:01:08 +02:00			`redis_cache_host: redis-volatile`
			`redis_cache_port: 6379`
organize and update defaults 2023-07-09 16:33:58 +02:00
			`vapid_public_key: "{{ vault_mastodon_vapid_public_key }}"`
			`vapid_private_key: "{{ vault_mastodon_vapid_private_key }}"`

			`smtp_from_address: mastodon-admin@example.com`
			`smtp_server: mail.example.com`
			`smtp_port: 465`
			`smtp_password: "{{ vault_mastodon_admin_mail_password }}"`

add optional sections for hidden services and redis volatile 2023-07-31 08:17:51 +02:00			`allow_hidden_services: false`
Add variables 2022-11-19 10:28:06 +01:00			`#Use HTTP only for Vagrant testing or for reverse proxy purposes.`
adapt code from mastodon-ansible 2022-11-19 10:10:57 +01:00			`use_http: true`
add option to deploy nginx reverse proxy 2023-07-31 10:54:47 +02:00			`nginx_reverse_proxy: false`
organize and update defaults 2023-07-09 16:33:58 +02:00
			`es_enabled: 'true'`
			`es_host: localhost`
			`es_port: 19200`
			`es_user: elastic`
			`es_pass: "{{ vault_mastodon_es_pass }}"`
			`es_version: 7.17.7`

Add variables 2022-11-19 10:28:06 +01:00			`ansible_python_interpreter: "/usr/bin/python2"`
organize and update defaults 2023-07-09 16:33:58 +02:00
			`single_user_mode: 'false'`
Add variables 2022-11-19 10:28:06 +01:00
unify containers 2022-11-19 16:31:16 +01:00			`docker_command: docker`
Add systemd units 2022-11-20 19:55:08 +01:00			`docker_daemon_settings:`
			`log-driver: journald`
organize and update defaults 2023-07-09 16:33:58 +02:00			`storage-driver: zfs`

Add variables 2022-11-19 10:28:06 +01:00			`install_python_packages:`
			`- package: "docker"`

			`uninstall_python_packages:`
			`- package: "docker-py"`

			`install_packages:`
chang eto docker-ce 2022-11-19 17:48:40 +01:00			`- package: "docker-ce"`
remove whl and setuptools 2023-02-07 22:03:01 +01:00			`#- package: "python-pip-whl"`
			`#- package: "python-setuptools"`
change to docker compose 2022-11-19 12:38:14 +01:00			`- package: docker-compose`
add missing packages 2022-11-19 12:03:09 +01:00
Add variables 2022-11-19 10:28:06 +01:00
change to docker.io package 2022-11-19 17:36:25 +01:00			`uninstall_packages:`
unify containers 2022-11-19 16:31:16 +01:00			`# - package: "docker-engine"`
			`# - package: "docker"`
chang eto docker-ce 2022-11-19 17:48:40 +01:00			`- package: "docker.io"`
			`# - package: "docker-ce"`
unify containers 2022-11-19 16:31:16 +01:00			`# - package: "docker-ce-cli"`
			`# - package: "dockerio"`
Add variables 2022-11-19 10:28:06 +01:00
			`run_preflight_checks: "true"`
			`node_major_version: "16"`
			`os_family: "{{ ansible_os_family\|lower }}"`
			`#Please list a valid name of the tag from Mastodon's Github.`
			`#Accepted format is "vX.X.XrcX"`
			`disable_hsts: "false"`
			`disable_letsencrypt: "false"`
			`#Nginx will listen to every IP/Domain with this directive. Useful for reverse proxy or testing only.`
			`nginx_catch_all: "false"`
			`self_signed_cert_location: /etc/ssl/certs`
			`self_signed_key_location: /etc/ssl/private`
Add systemd units 2022-11-20 19:55:08 +01:00			`media_remove_schedule: 'Sat --* 00:10:00'`
			`preview_cards_remove_schedule: 'Sat --* 00:20:00'`
			`search_deploy_schedule: 'Sat --* 03:00:00'`
Add variables 2022-11-19 10:28:06 +01:00
change env template 2022-11-19 17:17:16 +01:00			`s3_enabled: 'false'`
			`s3_bucket: ''`
			`aws_access_key_id: ''`
			`aws_secret_access_key: ''`
			`s3_alias_host: ''`

Added more variables for the application 2022-11-20 19:18:50 +01:00			`limited_federation_mode: 'false'`
			`disabllow_unauthenticated_api_access: 'false'`

			`web_concurrency: 2`
			`max_threads: 5`
			`default_locale: en`
change env template 2022-11-19 17:17:16 +01:00
Add variables 2022-11-19 10:28:06 +01:00			`ubuntu_codename: "{{ ansible_distribution_release }}"`

			`packages:`
			`- package: "autoconf"`
			`- package: "bison"`
			`- package: "build-essential"`
			`- package: "curl"`
			`- package: "cron"`
			`- package: "ffmpeg"`
			`- package: "file"`
			`- package: "g++"`
			`- package: "gcc"`
			`- package: "git"`
			`- package: "imagemagick"`
			`- package: "libffi-dev"`
			`- package: "libgdbm-dev"`
			`- package: "libicu-dev"`
			`- package: "libidn11-dev"`
			`- package: "libncurses5-dev"`
			`- package: "libpq-dev"`
			`- package: "libprotobuf-dev"`
			`- package: "libreadline-dev"`
			`- package: "libssl-dev"`
			`- package: "libxml2-dev"`
			`- package: "libxslt1-dev"`
			`- package: "libyaml-dev"`
			`- package: "nginx"`
			`- package: "nodejs"`
			`- package: "pkg-config"`
			`- package: "protobuf-compiler"`
			`- package: "sudo"`
			`- package: "systemd"`
			`- package: "ufw"`
			`- package: "unattended-upgrades"`
			`- package: "yarn"`
			`- package: "zlib1g-dev"`
			`- package: "libssl-dev"`

			`postgres:`
			`packages:`
			`- package: "libpq-dev"`
			`- package: "postgresql"`
			`- package: "postgresql-contrib"`
			`- package: "python3-psycopg2"`
			`- package: "sudo"`
			`#Ansible can't set permissions on temporary files Ansible needs`
			`#to create when becoming an unprivileged user when running as unprivileged user`
			`#https://docs.ansible.com/ansible-core/2.12/user_guide/become.html#risks-of-becoming-an-unprivileged-user`
			`- package: "acl"`

			`redis:`
			`packages:`
			`- package: "redis-server"`
			`- package: "redis-tools"`