Ben Vincent
2ab2cd1399
- refactor sonarr locations to generalised locations - set locations to be deep merged - updated hiera_include statements for media and media subroles - added eyaml entries for all ldap credentials
57 lines
1.6 KiB
YAML
57 lines
1.6 KiB
YAML
---
|
|
hiera_include:
|
|
- sonarr
|
|
- profiles::nginx::ldapauth
|
|
|
|
# manage sonarr
|
|
sonarr::params::user: sonarr
|
|
sonarr::params::group: media
|
|
sonarr::params::manage_group: false
|
|
sonarr::params::archive_version: 4.0.5
|
|
sonarr::params::port: 8000
|
|
|
|
# additional altnames
|
|
profiles::pki::vault::alt_names:
|
|
- sonarr.main.unkin.net
|
|
- sonarr.service.consul
|
|
- sonarr.query.consul
|
|
- "sonarr.service.%{facts.country}-%{facts.region}.consul"
|
|
|
|
# manage a simple nginx reverse proxy
|
|
profiles::nginx::simpleproxy::nginx_vhost: 'sonarr.query.consul'
|
|
profiles::nginx::simpleproxy::nginx_aliases:
|
|
- sonarr.main.unkin.net
|
|
- sonarr.service.consul
|
|
- sonarr.query.consul
|
|
- "sonarr.service.%{facts.country}-%{facts.region}.consul"
|
|
profiles::nginx::simpleproxy::proxy_port: 8000
|
|
profiles::nginx::simpleproxy::proxy_host: 127.0.0.1
|
|
profiles::nginx::simpleproxy::proxy_path: '/'
|
|
profiles::nginx::simpleproxy::use_default_location: false
|
|
nginx::client_max_body_size: 20M
|
|
|
|
ldap_binddn: 'cn=svc_sonarr,ou=services,ou=users,dc=main,dc=unkin,dc=net'
|
|
ldap_template: '(memberOf=ou=sonarr_access,ou=groups,dc=main,dc=unkin,dc=net)'
|
|
|
|
# configure consul service
|
|
consul::services:
|
|
sonarr:
|
|
service_name: 'sonarr'
|
|
tags:
|
|
- 'media'
|
|
- 'sonarr'
|
|
address: "%{facts.networking.ip}"
|
|
port: 443
|
|
checks:
|
|
- id: 'sonarr_http_check'
|
|
name: 'Sonarr HTTP Check'
|
|
http: "https://%{facts.networking.fqdn}:443/consul/health"
|
|
method: 'GET'
|
|
tls_skip_verify: true
|
|
interval: '10s'
|
|
timeout: '1s'
|
|
profiles::consul::client::node_rules:
|
|
- resource: service
|
|
segment: sonarr
|
|
disposition: write
|