Commit 8a241ba
Changed files (4)
roles
mirror-mirror
tasks
roles/mirror-mirror/tasks/main.yml
@@ -1,21 +1,27 @@
---
- name: optional software directories
file:
- path: "{{ item }}"
+ path: "{{ item.path }}"
state: directory
- owner: ubuntu
- group: ubuntu
+ owner: "{{ item.owner }}"
+ group: "{{ item.group }}"
mode: '0755'
become: True
loop:
- - /opt/
- - /opt/mirror-mirror/
+ - path: /opt/
+ owner: ubuntu
+ group: ubuntu
+ - path: /opt/mirror-mirror/
+ owner: nobody
+ group: nogroup
- name: download software binaries
get_url:
url: "{{ item.url }}"
dest: "{{ item.dest }}"
mode: "{{ item.mode }}"
+ owner: nobody
+ group: nogroup
loop:
- url: https://github.com/ajpatri/mirror-mirror/releases/download/v0.1/mirror-mirror-v0.1-linux-amd64
dest: /opt/mirror-mirror/mirror-mirror
roles/mirror-mirror/templates/mirror-mirror.service.j2
@@ -5,6 +5,7 @@ Documentation=https://github.com/ajpatri/mirror-mirror
[Service]
ExecStart=/opt/mirror-mirror/mirror-mirror -host {{ mm.address }} -port {{ mm.port }}
Restart=on-failure
+User=nobody
RestartSec=5
[Install]
roles/mirror-mirror/templates/mirror-mirror.yaml.j2
@@ -2,7 +2,7 @@
http:
routers:
mirror-mirror:
- rule: "Host(`{{ mm.domain }}`)"
+ rule: "Host(`{{ mm.subdomain }}.{{ traefik.domain }}`)"
service: "mirror-mirror"
entryPoints:
- "websecure"
main.yml
@@ -22,6 +22,7 @@
version: 2.2.0
checksum: sha256:eddea0507ad715c723662e7c10fdab554eb64379748278cd2d09403063e3e32f
acme_http_resolver: "tmc-acme-http"
+ domain: "trustme.click"
dirs:
log: "/var/log/traefik"
config: "/etc/traefik"
@@ -31,9 +32,14 @@
# mirror-mirror
mm:
- domain: "ip.trustme.click"
+ subdomain: "ip"
address: 127.0.0.1
port: 28103 # = 0x6d6d = mm (ascii)
+ proxy:
+ subdomain: "proxy"
+ address: 127.0.0.1
+ port: 8080
+
gather_facts: True