---
mastodon_initial_setup: false

mastodon_owner: MyUser
mastodon_owner_email: myemail@example.org

redis_pass: "{{ vault_mastodon_redis_password }}"
mastodon_secret_key_base: "{{ vault_mastodon_secret_key_base }}"
mastodon_otp_secret: "{{ vault_mastodon_otp_secret }}"
mastodon_paperclip_secret: "{{ vault_mastodon_paperclip_secret }}"
vapid_public_key: "{{ vault_mastodon_vapid_public_key }}"
vapid_private_key: "{{ vault_mastodon_vapid_private_key }}"
smtp_from_address: mastodon-admin@example.com
smtp_server: mail.example.com
mastodon_host: mastodon.example.com
#Use HTTP only for Vagrant testing or for reverse proxy purposes.
use_http: true
ansible_python_interpreter: "/usr/bin/python2"
mastodon_docker_image: "moritzheiber/mastodon-docker"
mastodon_docker_network: "mastodon_network"

docker_command: docker
install_python_packages:
  - package: "docker"

uninstall_python_packages:
  - package: "docker-py"

install_packages:
  - package: "docker-ce"
  - package: "python-pip-whl"
  - package: "python-setuptools"
  - package: docker-compose


uninstall_packages:
  # - package: "docker-engine"
  # - package: "docker"
  - package: "docker.io"
  # - package: "docker-ce"
  # - package: "docker-ce-cli"
  # - package: "dockerio"

run_preflight_checks: "true"
node_major_version: "16"
os_family: "{{ ansible_os_family|lower }}"
#Please list a valid name of the tag from Mastodon's Github.
#Accepted format is "vX.X.XrcX"
mastodon_version: "latest" 
mastodon_allow_prerelease: "false"
mastodon_user: "mastodon"
mastodon_home: "/home/{{ mastodon_user }}"
mastodon_db_user: "{{ mastodon_user }}"
mastodon_db_password: "{{ vault_mastodon_db_password }}"
mastodon_path: "live"
mastodon_db: "{{ mastodon_user }}_instance"
mastodon_db_port: 5432
mastodon_nginx_symlink: "/var/www/html/mastodon"
disable_hsts: "false"
disable_letsencrypt: "false"
#Nginx will listen to every IP/Domain with this directive. Useful for reverse proxy or testing only.
nginx_catch_all: "false"
redis_host: 127.0.0.1
redis_port: 6379
db_host: 127.0.0.1 # /var/run/postgresql
self_signed_cert_location: /etc/ssl/certs
self_signed_key_location: /etc/ssl/private
mastodon_composer_folder: /opt/mastodon

es_enabled: 'false'
es_host: localhost
es_port: 9200
es_user: elastic
es_pass: "{{ vault_mastodon_es_pass }}"
es_version: 7.17.7

s3_enabled: 'false'
s3_bucket: ''
aws_access_key_id: ''
aws_secret_access_key: '' 
s3_alias_host: ''


ubuntu_codename: "{{ ansible_distribution_release }}"
mastodon_db_login_unix_socket: 127.0.0.1 # "/var/run/postgresql"

packages:
  - package: "autoconf"
  - package: "bison"
  - package: "build-essential"
  - package: "curl"
  - package: "cron"
  - package: "ffmpeg"
  - package: "file"
  - package: "g++"
  - package: "gcc"
  - package: "git"
  - package: "imagemagick"
  - package: "libffi-dev"
  - package: "libgdbm-dev"
  - package: "libicu-dev"
  - package: "libidn11-dev"
  - package: "libncurses5-dev"
  - package: "libpq-dev"
  - package: "libprotobuf-dev"
  - package: "libreadline-dev"
  - package: "libssl-dev"
  - package: "libxml2-dev"
  - package: "libxslt1-dev"
  - package: "libyaml-dev"
  - package: "nginx"
  - package: "nodejs"
  - package: "pkg-config"
  - package: "protobuf-compiler"
  - package: "sudo"
  - package: "systemd"
  - package: "ufw"
  - package: "unattended-upgrades"
  - package: "yarn"
  - package: "zlib1g-dev"
  - package: "libssl-dev"

postgres:
  packages:
    - package: "libpq-dev"
    - package: "postgresql"
    - package: "postgresql-contrib"
    - package: "python3-psycopg2"
    - package: "sudo"
    #Ansible can't set permissions on temporary files Ansible needs
    #to create when becoming an unprivileged user when running as unprivileged user
    #https://docs.ansible.com/ansible-core/2.12/user_guide/become.html#risks-of-becoming-an-unprivileged-user
    - package: "acl"

redis:
  packages:
    - package: "redis-server"
    - package: "redis-tools"