mirror of
https://github.com/FAUSheppy/no-secrets-athq-ansible
synced 2025-12-06 09:01:38 +01:00
207 lines
7.6 KiB
YAML
207 lines
7.6 KiB
YAML
---
|
|
checks:
|
|
extra_sheppy_pubkeys:
|
|
nsca_server: 192.168.122.107
|
|
ldap_server: 192.168.122.112
|
|
nsca_password: HISTORY_PURGED_SECRET
|
|
RSYSLOG_SERVER: internal.monitoring.atlantishq.de
|
|
influxdb_telegraf_password: HISTORY_PURGED_SECRET
|
|
|
|
icinga_api_user: "mobile"
|
|
icinga_api_pass: "HISTORY_PURGED_SECRET"
|
|
icinga_api_url: "https://192.168.122.107:5665"
|
|
icinga_web_url: "https://icinga.atlantishq.de/"
|
|
|
|
ldap_password: flanigan
|
|
ldap_dc: "atlantishq"
|
|
ldap_org: "atlantishq de"
|
|
ldap_suffix: "dc=atlantishq,dc=de"
|
|
ldap_bind_dn: "cn=Manager,dc=atlantishq,dc=de"
|
|
ldap_user_dn: "ou=People,dc=atlantishq,dc=de"
|
|
ldap_group_dn: "ou=groups,dc=atlantishq,dc=de"
|
|
ldap_connection_url: ldap://192.168.122.112
|
|
|
|
extra_root_keys:
|
|
- "# no extra keys"
|
|
|
|
smtp_internal_host: mail.atlantishq.de
|
|
smtp_internal_host_port: 8025
|
|
smtp_service_user: noreply
|
|
smtp_service_pass: HISTORY_PURGED_SECRET
|
|
|
|
pki_domain: pki.atlantishq.de
|
|
|
|
# overwritten in monitoring master group var
|
|
monitoring_master: false
|
|
|
|
async_icinga_static_services:
|
|
- { "name" : "backup_ths", "timeout" : "3d", "owner" : "sheppy", "token" : "HISTORY_PURGED_SECRET" }
|
|
- { "name" : "ths_auftragsdatenbank", "timeout" : "5h", "owner" : "sheppy", "token" : "HISTORY_PURGED_SECRET" }
|
|
- { "name" : "backup_private_daten", "timeout" : "3d", "owner" : "sheppy", "token" : "HISTORY_PURGED_SECRET" }
|
|
- { "name" : "apt_atlantis_laptop", "timeout" : "30d", "owner" : "sheppy", "token" : "HISTORY_PURGED_SECRET" }
|
|
- { "name" : "apt_atlantis_pc", "timeout" : "30d", "owner" : "sheppy", "token" : "HISTORY_PURGED_SECRET" }
|
|
- { "name" : "backup_atlantis_laptop", "timeout" : "30d", "owner" : "sheppy", "token" : "HISTORY_PURGED_SECRET" }
|
|
- { "name" : "backup_ths_server", "timeout" : "30d", "owner" : "sheppy", "token" : "HISTORY_PURGED_SECRET" }
|
|
- { "name" : "backup_ths_storrage_box", "timeout" : "30d", "owner" : "sheppy", "token" : "HISTORY_PURGED_SECRET" }
|
|
- { "name" : "backup_kathi_laptop", "timeout" : "30d", "owner" : "kathi", "token" : "HISTORY_PURGED_SECRET" }
|
|
- { "name" : "backup_kathi_server", "timeout" : "30d", "owner" : "kathi", "token" : "HISTORY_PURGED_SECRET" }
|
|
- { "name" : "mail_atlantishq", "timeout" : "1h", "owner" : "sheppy", "token" : "HISTORY_PURGED_SECRET" }
|
|
- { "name" : "ths_caldav_backup", "timeout" : "2d", "owner" : "sheppy", "token" : "HISTORY_PURGED_SECRET" }
|
|
- { "name" : "slapd_backup", "timeout" : "2d", "owner" : "sheppy", "token" : "HISTORY_PURGED_SECRET" }
|
|
|
|
keycloak_admin_password: 20Dino00
|
|
keycloak_postgres_password: HISTORY_PURGED_SECRET
|
|
keycloak_address: keycloak.atlantishq.de
|
|
|
|
harbor_http_secret: HISTORY_PURGED_SECRET
|
|
harbor_core_secret: HISTORY_PURGED_SECRET
|
|
harbor_jobservice_secret: HISTORY_PURGED_SECRET
|
|
harbor_postgres_pass: HISTORY_PURGED_SECRET
|
|
harbor_registry_user: harbor
|
|
harbor_registry_password: HISTORY_PURGED_SECRET
|
|
harbor_admin_password: 20Dino00
|
|
|
|
keycloak_clients:
|
|
python-flask-picture-factory:
|
|
party_secret : "HISTORY_PURGED_SECRET"
|
|
client_id: z_images
|
|
client_secret: "HISTORY_PURGED_SECRET"
|
|
redirect_uris:
|
|
- "https://images.atlantishq.de/*"
|
|
- "https://images.athq.de/*"
|
|
- "https://images.potaris.de/*"
|
|
description: "Images Factory"
|
|
keycloak_id: "00000000-0000-0000-0000-000000000001"
|
|
groups: "images"
|
|
master_address: "https://images.atlantishq.de"
|
|
skips:
|
|
- "/m/"
|
|
- "/media/"
|
|
- "/image/"
|
|
- "/images/"
|
|
- "/picture/"
|
|
- "/pictures/"
|
|
|
|
simple-log-server:
|
|
party_secret : "HISTORY_PURGED_SECRET"
|
|
client_id: z_sls
|
|
client_secret: "HISTORY_PURGED_SECRET"
|
|
redirect_uris:
|
|
- "https://sls.atlantishq.de/*"
|
|
description: "Simple Log Server"
|
|
keycloak_id: "00000000-0000-0000-0000-000000000002"
|
|
groups: "monitoring"
|
|
master_address: "https://sls.atlantishq.de"
|
|
skips:
|
|
- "/submit"
|
|
|
|
soundlib-interface:
|
|
party_secret : "HISTORY_PURGED_SECRET"
|
|
client_id: z_soundlib
|
|
client_secret: "HISTORY_PURGED_SECRET"
|
|
redirect_uris:
|
|
- "https://sounds.atlantishq.de/*"
|
|
description: "Soundlib interface"
|
|
keycloak_id: "00000000-0000-0000-0000-000000000003"
|
|
groups: "soundlib"
|
|
master_address: "https://sounds.atlantishq.de"
|
|
skips:
|
|
|
|
pki:
|
|
party_secret : "HISTORY_PURGED_SECRET"
|
|
client_id: z_hashicorp_vault
|
|
client_secret: "HISTORY_PURGED_SECRET"
|
|
redirect_uris:
|
|
- "https://pki.atlantishq.de/*"
|
|
description: "PKI Vault"
|
|
keycloak_id: "00000000-0000-0000-0000-000000000004"
|
|
groups: "pki"
|
|
master_address: "https://pki.atlantishq.de"
|
|
skips:
|
|
|
|
cert-manager:
|
|
party_secret : "HISTORY_PURGED_SECRET"
|
|
client_id: z_cert_manager
|
|
client_secret: "HISTORY_PURGED_SECRET"
|
|
redirect_uris:
|
|
- "https://vpn.atlantishq.de/*"
|
|
description: "AtlantisHQ Certificate Manager"
|
|
keycloak_id: "00000000-0000-0000-0000-000000000005"
|
|
groups: "pki"
|
|
master_address: "https://vpn.atlantishq.de"
|
|
skips:
|
|
|
|
tmnf-replay-server:
|
|
party_secret : "HISTORY_PURGED_SECRET"
|
|
client_id: z_trackmania
|
|
client_secret: "HISTORY_PURGED_SECRET"
|
|
redirect_uris:
|
|
- "https://trackmania.atlantishq.de/*"
|
|
description: "AtlantisHQ Trackmania Replays"
|
|
keycloak_id: "00000000-0000-0000-0000-000000000006"
|
|
groups: "trackmania"
|
|
master_address: "https://trackmania.atlantishq.de"
|
|
skips:
|
|
- "/open-info"
|
|
|
|
atlantis-hub:
|
|
party_secret : "HISTORY_PURGED_SECRET"
|
|
client_id: z_atlantishub
|
|
client_secret: "HISTORY_PURGED_SECRET"
|
|
redirect_uris:
|
|
- "https://hub.atlantishq.de/*"
|
|
description: "AtlantisHQ Hub"
|
|
keycloak_id: "00000000-0000-0000-0000-000000000007"
|
|
groups:
|
|
master_address: "https://hub.atlantishq.de"
|
|
skips:
|
|
|
|
paperless:
|
|
party_secret : "HISTORY_PURGED_SECRET"
|
|
client_id: z_paperless
|
|
client_secret: "HISTORY_PURGED_SECRET"
|
|
redirect_uris:
|
|
- "https://paperless.atlantishq.de/*"
|
|
description: "AtlantisHQ Paperless Archiving"
|
|
keycloak_id: "00000000-0000-0000-0000-000000000008"
|
|
groups: "paperless"
|
|
master_address: "https://paperless.atlantishq.de"
|
|
skips:
|
|
|
|
icinga:
|
|
party_secret : "HISTORY_PURGED_SECRET"
|
|
client_id: z_icinga
|
|
client_secret: "HISTORY_PURGED_SECRET"
|
|
redirect_uris:
|
|
- "https://icinga.atlantishq.de/*"
|
|
description: "Icinga Web"
|
|
keycloak_id: "00000000-0000-0000-0000-000000000009"
|
|
groups: "monitoring,icinga"
|
|
master_address: "https://icinga.atlantishq.de"
|
|
skips:
|
|
|
|
grafana:
|
|
party_secret : "HISTORY_PURGED_SECRET"
|
|
client_id: z_grafana
|
|
client_secret: "HISTORY_PURGED_SECRET"
|
|
redirect_uris:
|
|
- "https://stats.atlantishq.de/*"
|
|
description: "Grafana"
|
|
keycloak_id: "00000000-0000-0000-0000-000000000010"
|
|
groups: "monitoring"
|
|
master_address: "https://stats.atlantishq.de"
|
|
skips:
|
|
|
|
async-icinga:
|
|
party_secret : "HISTORY_PURGED_SECRET"
|
|
client_id: z_async_icinga
|
|
client_secret: "HISTORY_PURGED_SECRET"
|
|
redirect_uris:
|
|
- "https://async-icinga.atlantishq.de/*"
|
|
description: "Icinga Web"
|
|
keycloak_id: "00000000-0000-0000-0000-000000000011"
|
|
groups: "monitoring,icinga"
|
|
master_address: "https://async-icinga.atlantishq.de"
|
|
skips:
|
|
- "/report"
|