Whitespace fixing.
Gitea Branch PR & Ansible Deployment / Check and Create PR (push) Successful in 47s
Gitea Branch PR & Ansible Deployment / Ansible Dry Run (lunafreya) (push) Failing after 1m48s
Gitea Branch PR & Ansible Deployment / Ansible Dry Run (ultima) (push) Failing after 5m52s
Gitea Branch PR & Ansible Deployment / Ansible Dry Run (rinoa) (push) Failing after 8m16s
Gitea Branch PR & Ansible Deployment / Ansible Dry Run (aranea) (push) Successful in 9m25s
Gitea Branch PR & Ansible Deployment / Ansible Dry Run (rikku) (push) Successful in 9m31s
Gitea Branch PR & Ansible Deployment / PR Merge (push) Has been skipped
Gitea Branch PR & Ansible Deployment / Ansible Config Deployment (aranea) (push) Has been skipped
Gitea Branch PR & Ansible Deployment / Ansible Config Deployment (lunafreya) (push) Has been skipped
Gitea Branch PR & Ansible Deployment / Ansible Config Deployment (rikku) (push) Has been skipped
Gitea Branch PR & Ansible Deployment / Ansible Config Deployment (rinoa) (push) Has been skipped
Gitea Branch PR & Ansible Deployment / Ansible Config Deployment (ultima) (push) Has been skipped

This commit is contained in:
2026-07-13 12:25:21 -04:00
parent 7e4c380a30
commit 6156d07013
34 changed files with 96 additions and 96 deletions
@@ -5,7 +5,7 @@ description: "Backup of all databases from MariaDB container"
schedule: "30 23 * * *"
env:
MARIADB_ROOT_PASSWORD: {{ vault.kv2_field('env','MARIADB_ENVIRONMENT_MYSQL_ROOT_PASSWORD', vault_engine_mount_point) }}
MARIADB_ROOT_PASSWORD: \{\{ vault.kv2_field\('env', 'MARIADB_ENVIRONMENT_MYSQL_ROOT_PASSWORD', vault_engine_mount_point) }}
steps:
- name: list-all-databases
@@ -9,7 +9,7 @@ http:
session_ttl: 720h
users:
- name: admin
password: {{ vault.kv2_field('env','ADGUARD_BCRYPT', vault_engine_mount_point) }}
password: \{\{ vault.kv2_field\('env', 'ADGUARD_BCRYPT', vault_engine_mount_point) }}
auth_attempts: 5
block_auth_min: 15
http_proxy: ""
@@ -9,7 +9,7 @@ http:
session_ttl: 720h
users:
- name: admin
password: {{ vault.kv2_field('env','ADGUARD_BCRYPT', vault_engine_mount_point) }}
password: \{\{ vault.kv2_field\('env', 'ADGUARD_BCRYPT', vault_engine_mount_point) }}
auth_attempts: 5
block_auth_min: 15
http_proxy: ""
@@ -1,6 +1,6 @@
{% import 'app-configs/_macros/hashivault_kv2.j2' as vault %}
urls:
- gotify://gotify/{{ vault.kv2_field('env','APPRISE_GOTIFY_TOKEN', vault_engine_mount_point) }}
- hassio://192.168.1.252/{{ vault.kv2_field('env','APPRISE_HA_TOKEN', vault_engine_mount_point) }}
- mailto://postal-smtp:{{ vault.kv2_field('env','POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}@postal-smtp:25?from=noreply@trez.wtf
- gotify://gotify/\{\{ vault.kv2_field\('env', 'APPRISE_GOTIFY_TOKEN', vault_engine_mount_point) }}
- hassio://192.168.1.252/\{\{ vault.kv2_field\('env', 'APPRISE_HA_TOKEN', vault_engine_mount_point) }}
- mailto://postal-smtp:\{\{ vault.kv2_field\('env', 'POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}@postal-smtp:25?from=noreply@trez.wtf
@@ -64,11 +64,11 @@ authentication_backend:
mail: mail
display_name: displayName
user: uid=authelia,ou=people,dc=trez,dc=wtf
password: '{{ vault.kv2_field('env','AUTHELIA_AUTH_BIND_LDAP_PASSWORD', vault_engine_mount_point) }}'
password: '\{\{ vault.kv2_field\('env', 'AUTHELIA_AUTH_BIND_LDAP_PASSWORD', vault_engine_mount_point) }}'
refresh_interval: 5m
identity_validation:
reset_password:
jwt_secret: '{{ vault.kv2_field('env','AUTHELIA_JWT_SECRET', vault_engine_mount_point) }}'
jwt_secret: '\{\{ vault.kv2_field\('env', 'AUTHELIA_JWT_SECRET', vault_engine_mount_point) }}'
password_policy:
standard:
enabled: true
@@ -112,7 +112,7 @@ access_control:
policy: bypass
session:
name: authelia_session
secret: '{{ vault.kv2_field('env','AUTHELIA_SESSION_SECRET', vault_engine_mount_point) }}'
secret: '\{\{ vault.kv2_field\('env', 'AUTHELIA_SESSION_SECRET', vault_engine_mount_point) }}'
expiration: 1h
inactivity: 5m
remember_me: 1M
@@ -124,12 +124,12 @@ session:
port: 6379
database_index: 0
storage:
encryption_key: '{{ vault.kv2_field('env','AUTHELIA_STORAGE_ENCRYPTION_KEY', vault_engine_mount_point) }}'
encryption_key: '\{\{ vault.kv2_field\('env', 'AUTHELIA_STORAGE_ENCRYPTION_KEY', vault_engine_mount_point) }}'
postgres:
address: 'tcp://authelia-pg:5432'
database: authelia
username: authelia
password: '{{ vault.kv2_field('env','AUTHELIA_STORAGE_POSTGRES_PASSWORD', vault_engine_mount_point) }}'
password: '\{\{ vault.kv2_field\('env', 'AUTHELIA_STORAGE_POSTGRES_PASSWORD', vault_engine_mount_point) }}'
timeout: '5s'
regulation:
max_retries: 3
@@ -140,8 +140,8 @@ notifier:
smtp:
address: 'smtp://postal-smtp:25'
timeout: '5s'
username: '{{ vault.kv2_field('env','POSTAL_SMTP_AUTH_USER', vault_engine_mount_point) }}'
password: '{{ vault.kv2_field('env','POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}'
username: '\{\{ vault.kv2_field\('env', 'POSTAL_SMTP_AUTH_USER', vault_engine_mount_point) }}'
password: '\{\{ vault.kv2_field\('env', 'POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}'
sender: "Authelia <noreply@trez.wtf>"
identifier: 'localhost'
subject: "[Authelia] {title}"
@@ -151,7 +151,7 @@ notifier:
disable_html_emails: false
identity_providers:
oidc:
hmac_secret: '{{ vault.kv2_field('env','AUTHELIA_OIDC_HMAC_SECRET', vault_engine_mount_point) }}'
hmac_secret: '\{\{ vault.kv2_field\('env', 'AUTHELIA_OIDC_HMAC_SECRET', vault_engine_mount_point) }}'
jwks:
- key: |
{{ lookup("community.hashi_vault.vault_kv2_get", "env", engine_mount_point="rinoa-docker", url=vault_addr, token=vault_token)["secret"]["AUTHELIA_OIDC_JWKS_KEY"] | replace("\\n", "\n") | indent(10) }}
@@ -166,7 +166,7 @@ identity_providers:
clients:
- client_id: 'netbird'
client_name: 'NetBird'
client_secret: '{{ vault.kv2_field('env','AUTHELIA_NETBIRD_CLIENT_SECRET', vault_engine_mount_point) }}'
client_secret: '\{\{ vault.kv2_field\('env', 'AUTHELIA_NETBIRD_CLIENT_SECRET', vault_engine_mount_point) }}'
public: false
authorization_policy: 'two_factor'
redirect_uris:
@@ -3,4 +3,4 @@
url: http://0.0.0.0:8080
login: localhost
password: {{ vault.kv2_field('env','CROWDSEC_LOCAL_API_KEY', vault_engine_mount_point) }}
password: \{\{ vault.kv2_field\('env', 'CROWDSEC_LOCAL_API_KEY', vault_engine_mount_point) }}
@@ -2,5 +2,5 @@
url: https://api.crowdsec.net/
login: {{ vault.kv2_field('env','CROWDSEC_ONLINE_PASSWORD', vault_engine_mount_point) }}
password: {{ vault.kv2_field('env','CROWDSEC_ONLINE_PASSWORD', vault_engine_mount_point) }}
login: \{\{ vault.kv2_field\('env', 'CROWDSEC_ONLINE_PASSWORD', vault_engine_mount_point) }}
password: \{\{ vault.kv2_field\('env', 'CROWDSEC_ONLINE_PASSWORD', vault_engine_mount_point) }}
+4 -4
View File
@@ -2,14 +2,14 @@
EXPLO_SYSTEM: subsonic
SYSTEM_URL: http://navidrome:4533
SYSTEM_USERNAME: {{ vault.kv2_field('env','NAVIDROME_USERNAME', vault_engine_mount_point) }}
SYSTEM_PASSWORD: {{ vault.kv2_field('env','NAVIDROME_PASSWORD', vault_engine_mount_point) }}
SYSTEM_USERNAME: \{\{ vault.kv2_field\('env', 'NAVIDROME_USERNAME', vault_engine_mount_point) }}
SYSTEM_PASSWORD: \{\{ vault.kv2_field\('env', 'NAVIDROME_PASSWORD', vault_engine_mount_point) }}
DOWNLOAD_DIR: /downloads
PLAYLIST_DIR: /playlists
LISTENBRAINZ_USER: Trez.One
YOUTUBE_API_KEY: {{ vault.kv2_field('env','YOUTUBE_DATA_API_V3_KEY', vault_engine_mount_point) }}
YOUTUBE_API_KEY: \{\{ vault.kv2_field\('env', 'YOUTUBE_DATA_API_V3_KEY', vault_engine_mount_point) }}
SLSKD_URL: http://gluetun:5030
SLSK_API_KEY: {{ vault.kv2_field('env','SLSKD_API_KEY', vault_engine_mount_point) }}
SLSK_API_KEY: \{\{ vault.kv2_field\('env', 'SLSKD_API_KEY', vault_engine_mount_point) }}
DOWNLOAD_SERVICES:
# Assign a custom path to yt-dlp
# YTDLP_PATH=
+3 -3
View File
@@ -9,7 +9,7 @@ compression_level = 10
rpc_bind_addr = "[::]:3901"
rpc_public_addr = "localhost:3901"
rpc_secret = "{{ vault.kv2_field('env','GARAGE_RPC_SECRET', vault_engine_mount_point) }}"
rpc_secret = "\{\{ vault.kv2_field\('env', 'GARAGE_RPC_SECRET', vault_engine_mount_point) }}"
[s3_api]
s3_region = "us-east-fh-pln"
@@ -22,5 +22,5 @@ root_domain = ".garage.trez.wtf"
[admin]
api_bind_addr = "[::]:3903"
admin_token = "{{ vault.kv2_field('env','GARAGE_ADMIN_TOKEN', vault_engine_mount_point) }}"
metrics_token = "{{ vault.kv2_field('env','GARAGE_METRICS_TOKEN', vault_engine_mount_point) }}"
admin_token = "\{\{ vault.kv2_field\('env', 'GARAGE_ADMIN_TOKEN', vault_engine_mount_point) }}"
metrics_token = "\{\{ vault.kv2_field\('env', 'GARAGE_METRICS_TOKEN', vault_engine_mount_point) }}"
@@ -9,7 +9,7 @@
"host" : "mariadb",
"port" : 3306,
"user" : "ghost",
"password" : "{{ vault.kv2_field('env','GHOST_DB_PASSWORD', vault_engine_mount_point) }}",
"password" : "\{\{ vault.kv2_field\('env', 'GHOST_DB_PASSWORD', vault_engine_mount_point) }}",
"database" : "ghost_db"
}
},
@@ -21,8 +21,8 @@
"port": 25,
"secure": false,
"auth": {
"user": "{{ vault.kv2_field('env','POSTAL_SMTP_AUTH_USER', vault_engine_mount_point) }}",
"pass": "{{ vault.kv2_field('env','POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}"
"user": "\{\{ vault.kv2_field\('env', 'POSTAL_SMTP_AUTH_USER', vault_engine_mount_point) }}",
"pass": "\{\{ vault.kv2_field\('env', 'POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}"
}
}
},
+5 -5
View File
@@ -27,7 +27,7 @@ DISABLE_SSH = false
SSH_PORT = 22
SSH_LISTEN_PORT = 22
LFS_START_SERVER = true
LFS_JWT_SECRET = {{ vault.kv2_field('env','GITEA_LFS_JWT_SECRET', vault_engine_mount_point) }}
LFS_JWT_SECRET = \{\{ vault.kv2_field\('env', 'GITEA_LFS_JWT_SECRET', vault_engine_mount_point) }}
OFFLINE_MODE = true
[database]
@@ -36,7 +36,7 @@ DB_TYPE = postgres
HOST = gitea-db:5432
NAME = gitea
USER = gitea
PASSWD = {{ vault.kv2_field('env','GITEA_PG_DB_PASSWORD', vault_engine_mount_point) }}
PASSWD = \{\{ vault.kv2_field\('env', 'GITEA_PG_DB_PASSWORD', vault_engine_mount_point) }}
LOG_SQL = false
SCHEMA =
SSL_MODE = disable
@@ -70,7 +70,7 @@ INSTALL_LOCK = true
SECRET_KEY =
REVERSE_PROXY_LIMIT = 1
REVERSE_PROXY_TRUSTED_PROXIES = *
INTERNAL_TOKEN = {{ vault.kv2_field('env','GITEA_INTERNAL_TOKEN', vault_engine_mount_point) }}
INTERNAL_TOKEN = \{\{ vault.kv2_field\('env', 'GITEA_INTERNAL_TOKEN', vault_engine_mount_point) }}
PASSWORD_HASH_ALGO = pbkdf2
[service]
@@ -89,7 +89,7 @@ NO_REPLY_ADDRESS = noreply@trez.wtf
PATH = /data/git/lfs
[mailer]
PASSWD = {{ vault.kv2_field('env','POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}
PASSWD = \{\{ vault.kv2_field\('env', 'POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}
PROTOCOL = smtp
ENABLED = true
FROM = '"Gitea" <noreply@trez.wtf>'
@@ -112,7 +112,7 @@ DEFAULT_MERGE_STYLE = merge
DEFAULT_TRUST_MODEL = committer
[oauth2]
JWT_SECRET = {{ vault.kv2_field('env','GITEA_OAUTH2_JWT_SECRET', vault_engine_mount_point) }}
JWT_SECRET = \{\{ vault.kv2_field\('env', 'GITEA_OAUTH2_JWT_SECRET', vault_engine_mount_point) }}
[ui]
THEMES = gitea-auto,catppuccin-blue-auto,catppuccin-flamingo-auto,catppuccin-green-auto,catppuccin-lavender-auto,catppuccin-mauve-auto,catppuccin-peach-auto,catppuccin-pink-auto,catppuccin-red-auto,catppuccin-rosewater-auto,catppuccin-sapphire-auto,catppuccin-sky-auto,catppuccin-teal-auto,catppuccin-yellow-auto,catppuccin-maroon-auto
@@ -9,7 +9,7 @@ gitea:
# Created access token for the user that shall be used as bot account.
# User needs "Read project" permissions with access to "Pull Requests"
token:
value: "{{ vault.kv2_field('env','GITEA_SONARQUBE_BOT_GITEA_TOKEN', vault_engine_mount_point) }}"
value: "\{\{ vault.kv2_field\('env', 'GITEA_SONARQUBE_BOT_GITEA_TOKEN', vault_engine_mount_point) }}"
# # or path to file containing the plain text secret
# file: /path/to/gitea/token
@@ -18,7 +18,7 @@ gitea:
# The bot looks for `X-Gitea-Signature` header containing the sha256 hmac hash of the plain text secret. If the header
# exists and no webhookSecret is defined here, the bot will ignore the request, because it cannot be validated.
webhook:
secret: "{{ vault.kv2_field('env','GITEA_SONARQUBE_BOT_GITEA_WEBHOOK_SECRET', vault_engine_mount_point) }}"
secret: "\{\{ vault.kv2_field\('env', 'GITEA_SONARQUBE_BOT_GITEA_WEBHOOK_SECRET', vault_engine_mount_point) }}"
# # or path to file containing the plain text secret
# secretFile: /path/to/gitea/webhook/secret
@@ -35,7 +35,7 @@ sonarqube:
# Created access token for the user that shall be used as bot account.
# User needs "Browse on project" permissions
token:
value: "{{ vault.kv2_field('env','GITEA_SONARQUBE_BOT_SQUBE_TOKEN', vault_engine_mount_point) }}"
value: "\{\{ vault.kv2_field\('env', 'GITEA_SONARQUBE_BOT_SQUBE_TOKEN', vault_engine_mount_point) }}"
# # or path to file containing the plain text secret
# file: /path/to/sonarqube/token
@@ -45,7 +45,7 @@ sonarqube:
# If the header exists and no webhookSecret is defined here, the bot will ignore the request, because it cannot be
# validated.
webhook:
secret: "{{ vault.kv2_field('env','GITEA_SONARQUBE_BOT_SQUBE_WEBHOOK_SECRET', vault_engine_mount_point) }}"
secret: "\{\{ vault.kv2_field\('env', 'GITEA_SONARQUBE_BOT_SQUBE_WEBHOOK_SECRET', vault_engine_mount_point) }}"
# # or path to file containing the plain text secret
# secretFile: /path/to/sonarqube/webhook/secret
+2 -2
View File
@@ -30,7 +30,7 @@
type: customapi
url: http://192.168.1.252:3000/api/v1/gethomepage/stats
headers:
Authorization: Basic {{ vault.kv2_field('env','PATCHMON_API_BASE64_CREDS', vault_engine_mount_point) }}
Authorization: Basic \{\{ vault.kv2_field\('env', 'PATCHMON_API_BASE64_CREDS', vault_engine_mount_point) }}
mappings:
- field: total_hosts
label: Total Hosts
@@ -48,7 +48,7 @@
widget:
type: homeassistant
url: http://192.168.1.252:8123
key: {{ vault.kv2_field('env','HOMEPAGE_HOME_ASSISTANT_API_KEY', vault_engine_mount_point) }}
key: \{\{ vault.kv2_field\('env', 'HOMEPAGE_HOME_ASSISTANT_API_KEY', vault_engine_mount_point) }}
- Media Library:
- Audiomuse:
+1 -1
View File
@@ -6,7 +6,7 @@
# https://gethomepage.dev/en/configs/settings
providers:
openweathermap: {{ vault.kv2_field('env','HOMEPAGE_OPENWEATHERMAP_API_KEY', vault_engine_mount_point) }}
openweathermap: \{\{ vault.kv2_field\('env', 'HOMEPAGE_OPENWEATHERMAP_API_KEY', vault_engine_mount_point) }}
# weatherapi: weatherapiapikey
title: Rinoa Dashboard (trez.WTF)
headerStyle: underlined
+6 -6
View File
@@ -15,7 +15,7 @@ db:
host: invidious-db
port: 5432
dbname: invidious
password: {{ vault.kv2_field('env','INVID_PG_DB_PASSWORD', vault_engine_mount_point) }}
password: \{\{ vault.kv2_field\('env', 'INVID_PG_DB_PASSWORD', vault_engine_mount_point) }}
##
## Database configuration using a single URI. This is an
@@ -88,7 +88,7 @@ check_tables: true
invidious_companion:
- private_url: "http://invidious-companion:8282"
# # Uncomment for advanced reverse proxy configuration (see above).
- public_url: https://invid.{{ vault.kv2_field('env','MY_TLD', vault_engine_mount_point) }}/companion
- public_url: https://invid.\{\{ vault.kv2_field\('env', 'MY_TLD', vault_engine_mount_point) }}/companion
##
## API key for Invidious companion, used for securing the communication
@@ -103,7 +103,7 @@ invidious_companion:
## Accepted values: a string (of length 16)
## Default: <none>
##
invidious_companion_key: {{ vault.kv2_field('env','INVID_COMPANION_KEY', vault_engine_mount_point) }}
invidious_companion_key: \{\{ vault.kv2_field\('env', 'INVID_COMPANION_KEY', vault_engine_mount_point) }}
#########################################
#
@@ -271,8 +271,8 @@ https_only: false
## Accepted values: String
## Default: <none>
##
po_token: {{ vault.kv2_field('env','INVID_PO_TOKEN', vault_engine_mount_point) }}
visitor_data: {{ vault.kv2_field('env','INVID_VISITOR_DATA', vault_engine_mount_point) }}
po_token: \{\{ vault.kv2_field\('env', 'INVID_PO_TOKEN', vault_engine_mount_point) }}
visitor_data: \{\{ vault.kv2_field\('env', 'INVID_VISITOR_DATA', vault_engine_mount_point) }}
# -----------------------------
# Logging
@@ -532,7 +532,7 @@ jobs:
## Accepted values: a string
## Default: <none>
##
hmac_key: {{ vault.kv2_field('env','INVID_HMAC_KEY', vault_engine_mount_point) }}
hmac_key: \{\{ vault.kv2_field\('env', 'INVID_HMAC_KEY', vault_engine_mount_point) }}
##
## List of video IDs where the "download" widget must be
@@ -3,7 +3,7 @@
# IN application vars
IN_APP_URL=https://biz.trez.wtf
IN_APP_KEY={{ vault.kv2_field('env','IN_APP_KEY', vault_engine_mount_point) }}
IN_APP_KEY=\{\{ vault.kv2_field\('env', 'IN_APP_KEY', vault_engine_mount_point) }}
IN_APP_DEBUG=true
IN_REQUIRE_HTTPS=false
IN_PHANTOMJS_PDF_GENERATION=false
@@ -18,7 +18,7 @@ IN_DB_HOST=mariadb
IN_DB_PORT=3306
IN_DB_DATABASE=invoice_ninja
IN_DB_USERNAME=ininja
IN_DB_PASSWORD={{ vault.kv2_field('env','IN_MYSQL_PASSWORD', vault_engine_mount_point) }}
IN_DB_PASSWORD=\{\{ vault.kv2_field\('env', 'IN_MYSQL_PASSWORD', vault_engine_mount_point) }}
# Create initial user
# Default to these values if empty
@@ -31,8 +31,8 @@ IN_PASSWORD=
IN_MAIL_MAILER=log
IN_MAIL_HOST=postal-smtp
IN_MAIL_PORT=25
IN_MAIL_USERNAME={{ vault.kv2_field('env','POSTAL_SMTP_AUTH_USER', vault_engine_mount_point) }}
IN_MAIL_PASSWORD={{ vault.kv2_field('env','POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}
IN_MAIL_USERNAME=\{\{ vault.kv2_field\('env', 'POSTAL_SMTP_AUTH_USER', vault_engine_mount_point) }}
IN_MAIL_PASSWORD=\{\{ vault.kv2_field\('env', 'POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}
IN_MAIL_ENCRYPTION=null
IN_MAIL_FROM_ADDRESS='noreply@trez.wtf'
IN_MAIL_FROM_NAME='Treasured IT'
+1 -1
View File
@@ -7,7 +7,7 @@
<SslPort>6868</SslPort>
<EnableSsl>False</EnableSsl>
<LaunchBrowser>True</LaunchBrowser>
<ApiKey>{{ vault.kv2_field('env','LIDARR_API_KEY', vault_engine_mount_point) }}</ApiKey>
<ApiKey>\{\{ vault.kv2_field\('env', 'LIDARR_API_KEY', vault_engine_mount_point) }}</ApiKey>
<AuthenticationMethod>Forms</AuthenticationMethod>
<Branch>master</Branch>
<LogLevel>trace</LogLevel>
+6 -6
View File
@@ -3,11 +3,11 @@
{
"lidarr_address": "http://lidarr:8686",
"lidarr_api_key": "{{ vault.kv2_field('env','LIDARR_API_KEY', vault_engine_mount_point) }}",
"spotify_client_secret": "{{ vault.kv2_field('env','YOUR_SPOTIFY_SECRET', vault_engine_mount_point) }}",
"lidarr_api_key": "\{\{ vault.kv2_field\('env', 'LIDARR_API_KEY', vault_engine_mount_point) }}",
"spotify_client_secret": "\{\{ vault.kv2_field\('env', 'YOUR_SPOTIFY_SECRET', vault_engine_mount_point) }}",
"root_folder_path": "/data/media/music",
"spotify_client_id": "{{ vault.kv2_field('env','YOUR_SPOTIFY_ID', vault_engine_mount_point) }}",
"spotify_client_secret": "{{ vault.kv2_field('env','YOUR_SPOTIFY_SECRET', vault_engine_mount_point) }}",
"spotify_client_id": "\{\{ vault.kv2_field\('env', 'YOUR_SPOTIFY_ID', vault_engine_mount_point) }}",
"spotify_client_secret": "\{\{ vault.kv2_field\('env', 'YOUR_SPOTIFY_SECRET', vault_engine_mount_point) }}",
"fallback_to_top_result": false,
"lidarr_api_timeout": 120.0,
"quality_profile_id": 1,
@@ -17,8 +17,8 @@
"app_name": "lidify",
"app_rev": "0.09",
"app_url": "lidify.trez.wtf",
"last_fm_api_key": "{{ vault.kv2_field('env','LASTFM_API_KEY', vault_engine_mount_point) }}",
"last_fm_api_secret": "{{ vault.kv2_field('env','LASTFM_API_SECRET', vault_engine_mount_point) }}",
"last_fm_api_key": "\{\{ vault.kv2_field\('env', 'LASTFM_API_KEY', vault_engine_mount_point) }}",
"last_fm_api_secret": "\{\{ vault.kv2_field\('env', 'LASTFM_API_SECRET', vault_engine_mount_point) }}",
"mode": "LastFM",
"auto_start": false,
"auto_start_delay": 60
+1 -1
View File
@@ -44,7 +44,7 @@ global_keywords:
- fatal
notifications:
apprise:
url: gotify://gotify/{{ vault.kv2_field('env','APPRISE_GOTIFY_TOKEN', vault_engine_mount_point) }} # Any Apprise-compatible URL (https://github.com/caronc/apprise/wiki)
url: gotify://gotify/\{\{ vault.kv2_field\('env', 'APPRISE_GOTIFY_TOKEN', vault_engine_mount_point) }} # Any Apprise-compatible URL (https://github.com/caronc/apprise/wiki)
# settings are optional because they all have default values
settings:
log_level: INFO # DEBUG, INFO, WARNING, ERROR
@@ -5,7 +5,7 @@ scheduler:
retention: 14 # Retains 14 local backups
timeout: 60 # Operation timeout: 60 minutes
target:
uri: mongodb://root:{{ vault.kv2_field('env','MONGO_INITDB_ROOT_PASSWORD', vault_engine_mount_point) }}@mongodb:27017/admin?replicaSet=rinoa
uri: mongodb://root:\{\{ vault.kv2_field\('env', 'MONGO_INITDB_ROOT_PASSWORD', vault_engine_mount_point) }}@mongodb:27017/admin?replicaSet=rinoa
noGzip: false # Disable gzip compression (false means compression is enabled)
retry:
@@ -23,8 +23,8 @@ validation:
smtp:
server: postal-stmp
port: 25
username: {{ vault.kv2_field('env','POSTAL_SMTP_AUTH_USER', vault_engine_mount_point) }}
password: {{ vault.kv2_field('env','POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}
username: \{\{ vault.kv2_field\('env', 'POSTAL_SMTP_AUTH_USER', vault_engine_mount_point) }}
password: \{\{ vault.kv2_field\('env', 'POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}
from: noreply@trez.wtf
to:
- charish.patel@trez.wtf
+1 -1
View File
@@ -1 +1 @@
{{ vault.kv2_field('env','MONGODB_REPLICA_SET_KEY', vault_engine_mount_point) }}
\{\{ vault.kv2_field\('env', 'MONGODB_REPLICA_SET_KEY', vault_engine_mount_point) }}
@@ -32,8 +32,8 @@
"name": "lastfmSource",
"clients": ["ListenBrainzClient", "malojaClient"],
"data": {
"apiKey": "{{ vault.kv2_field('env','LASTFM_API_KEY', vault_engine_mount_point) }}",
"secret": "{{ vault.kv2_field('env','LASTFM_API_SECRET', vault_engine_mount_point) }}",
"apiKey": "\{\{ vault.kv2_field\('env', 'LASTFM_API_KEY', vault_engine_mount_point) }}",
"secret": "\{\{ vault.kv2_field\('env', 'LASTFM_API_SECRET', vault_engine_mount_point) }}",
"redirectUri": "https://scrobble.trez.wtf/lastfm/callback"
}
},
@@ -43,7 +43,7 @@
"name": "listenBrainzSource",
"clients": ["lastFmClient", "malojaClient"],
"data": {
"token": "{{ vault.kv2_field('env','MALOJA_LISTENBRAINZ_TOKEN', vault_engine_mount_point) }}",
"token": "\{\{ vault.kv2_field\('env', 'MALOJA_LISTENBRAINZ_TOKEN', vault_engine_mount_point) }}",
"username": "Trez.One"
}
},
@@ -55,7 +55,7 @@
"data": {
"url": "http://navidrome:4533",
"user": "admin",
"password": "{{ vault.kv2_field('env','NAVIDROME_PASSWORD', vault_engine_mount_point) }}"
"password": "\{\{ vault.kv2_field\('env', 'NAVIDROME_PASSWORD', vault_engine_mount_point) }}"
}
}
],
@@ -66,8 +66,8 @@
"enabled": true,
"name": "lastFmClient",
"data": {
"apiKey": "{{ vault.kv2_field('env','LASTFM_API_KEY', vault_engine_mount_point) }}",
"secret": "{{ vault.kv2_field('env','LASTFM_API_SECRET', vault_engine_mount_point) }}",
"apiKey": "\{\{ vault.kv2_field\('env', 'LASTFM_API_KEY', vault_engine_mount_point) }}",
"secret": "\{\{ vault.kv2_field\('env', 'LASTFM_API_SECRET', vault_engine_mount_point) }}",
"redirectUri": "https://scrobble.trez.wtf/lastfm/callback"
}
},
@@ -76,7 +76,7 @@
"enabled": true,
"name": "ListenBrainzClient",
"data": {
"token": "{{ vault.kv2_field('env','MALOJA_LISTENBRAINZ_TOKEN', vault_engine_mount_point) }}",
"token": "\{\{ vault.kv2_field\('env', 'MALOJA_LISTENBRAINZ_TOKEN', vault_engine_mount_point) }}",
"username": "Trez.One"
}
},
@@ -86,7 +86,7 @@
"name": "malojaClient",
"data": {
"url": "http://maloja:42010",
"apiKey": "{{ vault.kv2_field('env','MALOJA_API_KEY', vault_engine_mount_point) }}"
"apiKey": "\{\{ vault.kv2_field\('env', 'MALOJA_API_KEY', vault_engine_mount_point) }}"
}
}
],
@@ -96,7 +96,7 @@
"name": "Gotify",
"type": "gotify",
"url": "http://gotify",
"token": "{{ vault.kv2_field('env','MULTI_SCROBBLER_GOTIFY_TOKEN', vault_engine_mount_point) }}",
"token": "\{\{ vault.kv2_field\('env', 'MULTI_SCROBBLER_GOTIFY_TOKEN', vault_engine_mount_point) }}",
"priorities": {
"info": 5,
"warn": 7,
+4 -4
View File
@@ -18,13 +18,13 @@ web_server:
main_db:
host: mariadb
username: postal
password: {{ vault.kv2_field('env','POSTAL_MYSQL_PASSWORD', vault_engine_mount_point) }}
password: \{\{ vault.kv2_field\('env', 'POSTAL_MYSQL_PASSWORD', vault_engine_mount_point) }}
database: postal
message_db:
host: mariadb
username: postal
password: {{ vault.kv2_field('env','POSTAL_MYSQL_PASSWORD', vault_engine_mount_point) }}
password: \{\{ vault.kv2_field\('env', 'POSTAL_MYSQL_PASSWORD', vault_engine_mount_point) }}
prefix: postal
smtp_server:
@@ -52,11 +52,11 @@ smtp:
host: postal-smtp
port: 25
username: rinoa/postal-smtp
password: "{{ vault.kv2_field('env','POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}"
password: "\{\{ vault.kv2_field\('env', 'POSTAL_SMTP_AUTH_PASSWORD', vault_engine_mount_point) }}"
from_name: Postal @ Rinoa
from_address: noreply@trez.wtf
rails:
# This is generated automatically by the config initialization. It should be a random
# string unique to your installation.
secret_key: "{{ vault.kv2_field('env','POSTAL_RAILS_SECRET_KEY', vault_engine_mount_point) }}"
secret_key: "\{\{ vault.kv2_field\('env', 'POSTAL_RAILS_SECRET_KEY', vault_engine_mount_point) }}"
+1 -1
View File
@@ -7,7 +7,7 @@
<SslPort>6969</SslPort>
<EnableSsl>False</EnableSsl>
<LaunchBrowser>True</LaunchBrowser>
<ApiKey>{{ vault.kv2_field('env','PROWLARR_API_KEY', vault_engine_mount_point) }}</ApiKey>
<ApiKey>\{\{ vault.kv2_field\('env', 'PROWLARR_API_KEY', vault_engine_mount_point) }}</ApiKey>
<AuthenticationMethod>Forms</AuthenticationMethod>
<AuthenticationRequired>Enabled</AuthenticationRequired>
<Branch>master</Branch>
@@ -25,7 +25,7 @@ qbt:
# Pass environment variables to the config via !ENV tag
host: qbittorrentvpn:8080
user: admin
pass: {{ vault.kv2_field('env','DELUGEVPN_PASSWORD', vault_engine_mount_point) }}
pass: \{\{ vault.kv2_field\('env', 'DELUGEVPN_PASSWORD', vault_engine_mount_point) }}
settings:
force_auto_tmm: False # Will force qBittorrent to enable Automatic Torrent Management for each torrent.
@@ -222,4 +222,4 @@ apprise:
# Mandatory to fill out the url of your apprise API endpoint
api_url: http://apprise-api:8000
# Mandatory to fill out the notification url/urls based on the notification services provided by apprise. https://github.com/caronc/apprise/wiki
notify_url: gotify://gotify/{{ vault.kv2_field('env','APPRISE_GOTIFY_TOKEN', vault_engine_mount_point) }}
notify_url: gotify://gotify/\{\{ vault.kv2_field\('env', 'APPRISE_GOTIFY_TOKEN', vault_engine_mount_point) }}
+2 -2
View File
@@ -3,9 +3,9 @@
{
"radarr_address": "http://radarr:7878",
"radarr_api_key": "{{ vault.kv2_field('env','RADARR_API_KEY', vault_engine_mount_point) }}",
"radarr_api_key": "\{\{ vault.kv2_field\('env', 'RADARR_API_KEY', vault_engine_mount_point) }}",
"root_folder_path": "/data/media/movies",
"tmdb_api_key": "{{ vault.kv2_field('env','TMDB_API_KEY', vault_engine_mount_point) }}",
"tmdb_api_key": "\{\{ vault.kv2_field\('env', 'TMDB_API_KEY', vault_engine_mount_point) }}",
"fallback_to_top_result": false,
"radarr_api_timeout": 120.0,
"quality_profile_id": 1,
+1 -1
View File
@@ -8,7 +8,7 @@
<SslCertPath></SslCertPath>
<Port>7878</Port>
<UrlBase></UrlBase>
<ApiKey>{{ vault.kv2_field('env','RADARR_API_KEY', vault_engine_mount_point) }}</ApiKey>
<ApiKey>\{\{ vault.kv2_field\('env', 'RADARR_API_KEY', vault_engine_mount_point) }}</ApiKey>
<AuthenticationMethod>Forms</AuthenticationMethod>
<UpdateMechanism>Docker</UpdateMechanism>
<SslPort>9898</SslPort>
+4 -4
View File
@@ -22,7 +22,7 @@ host = 0.0.0.0
port = 8080
https_port = 8090
username = thetrezuredone
password = {{ vault.kv2_field('env','SABNZBDVPN_PASSWORD', vault_engine_mount_point) }}
password = \{\{ vault.kv2_field\('env', 'SABNZBDVPN_PASSWORD', vault_engine_mount_point) }}
bandwidth_max = 1000M
cache_limit = 1G
web_dir = Glitter
@@ -33,7 +33,7 @@ https_chain = ""
enable_https = 1
inet_exposure = 0
local_ranges = ,
api_key = {{ vault.kv2_field('env','SABNZBDVPN_API_KEY', vault_engine_mount_point) }}
api_key = \{\{ vault.kv2_field\('env', 'SABNZBDVPN_API_KEY', vault_engine_mount_point) }}
nzb_key = 3c0fa874bb2748b58c1bd7512e649946
permissions = 775
download_dir = /storage/downloads/incomplete
@@ -342,7 +342,7 @@ host = news.newshosting.com
port = 563
timeout = 60
username = thetrezuredone
password = {{ vault.kv2_field('env','SLSK_USER_PASSWORD', vault_engine_mount_point) }}
password = \{\{ vault.kv2_field\('env', 'SLSK_USER_PASSWORD', vault_engine_mount_point) }}
connections = 8
ssl = 1
ssl_verify = 3
@@ -363,7 +363,7 @@ host = news.easynews.com
port = 443
timeout = 60
username = TrezOne
password = {{ vault.kv2_field('env','SABNZBDVPN_EASYNEWS_PASSWORD', vault_engine_mount_point) }}
password = \{\{ vault.kv2_field\('env', 'SABNZBDVPN_EASYNEWS_PASSWORD', vault_engine_mount_point) }}
connections = 60
ssl = 0
ssl_verify = 3
+1 -1
View File
@@ -51,7 +51,7 @@ server:
limiter: false
public_instance: false
secret_key: {{ vault.kv2_field('env','SEARXNG_SECRET_KEY', vault_engine_mount_point) }} # Is overwritten by ${SEARXNG_SECRET}
secret_key: \{\{ vault.kv2_field\('env', 'SEARXNG_SECRET_KEY', vault_engine_mount_point) }} # Is overwritten by ${SEARXNG_SECRET}
image_proxy: true
http_protocol_version: "1.0"
method: "POST"
@@ -16,8 +16,8 @@
endpoint should be https://storage.googleapis.com/<bucket-name>/data/
-->
<endpoint>http://minio:9000/signoz/data</endpoint>
<access_key_id>{{ vault.kv2_field('env','SIGNOZ_S3_ACCESS_KEY', vault_engine_mount_point) }}</access_key_id>
<secret_access_key>{{ vault.kv2_field('env','SIGNOZ_S3_SECRET_KEY', vault_engine_mount_point) }}</secret_access_key>
<access_key_id>\{\{ vault.kv2_field\('env', 'SIGNOZ_S3_ACCESS_KEY', vault_engine_mount_point) }}</access_key_id>
<secret_access_key>\{\{ vault.kv2_field\('env', 'SIGNOZ_S3_SECRET_KEY', vault_engine_mount_point) }}</secret_access_key>
<!-- In case of S3, uncomment the below configuration in case you want to read
AWS credentials from the Environment variables if they exist. -->
<!-- <use_environment_credentials>true</use_environment_credentials> -->
+1 -1
View File
@@ -8,7 +8,7 @@
<SslPort>9898</SslPort>
<UrlBase></UrlBase>
<BindAddress>*</BindAddress>
<ApiKey>{{ vault.kv2_field('env','SONARR_API_KEY', vault_engine_mount_point) }}</ApiKey>
<ApiKey>\{\{ vault.kv2_field\('env', 'SONARR_API_KEY', vault_engine_mount_point) }}</ApiKey>
<AuthenticationMethod>Forms</AuthenticationMethod>
<UpdateMechanism>Docker</UpdateMechanism>
<LaunchBrowser>True</LaunchBrowser>
+2 -2
View File
@@ -3,10 +3,10 @@
{
"sonarr_address": "http://192.168.1.2:8989",
"sonarr_api_key": "{{ vault.kv2_field('env','SONARR_API_KEY', vault_engine_mount_point) }}",
"sonarr_api_key": "\{\{ vault.kv2_field\('env', 'SONARR_API_KEY', vault_engine_mount_point) }}",
"root_folder_path": "/data/media/shows",
"tvdb_api_key": "",
"tmdb_api_key": "{{ vault.kv2_field('env','TMDB_API_KEY', vault_engine_mount_point) }}",
"tmdb_api_key": "\{\{ vault.kv2_field\('env', 'TMDB_API_KEY', vault_engine_mount_point) }}",
"fallback_to_top_result": false,
"sonarr_api_timeout": 120.0,
"quality_profile_id": 1,
+2 -2
View File
@@ -2,7 +2,7 @@
[Lidarr]
api_key = {{ vault.kv2_field('env','LIDARR_API_KEY', vault_engine_mount_point) }}
api_key = \{\{ vault.kv2_field\('env', 'LIDARR_API_KEY', vault_engine_mount_point) }}
host_url = http://lidarr:8686
#This should be the path mounted in lidarr that points to your slskd download directory.
#If Lidarr is not running in Docker then this may just be the same dir as Slskd is using below.
@@ -10,7 +10,7 @@ download_dir = /storage
[Slskd]
#Api key from Slskd. Need to set this up manually. See link to Slskd docs above.
api_key = {{ vault.kv2_field('env','SLSKD_API_KEY', vault_engine_mount_point) }}
api_key = \{\{ vault.kv2_field\('env', 'SLSKD_API_KEY', vault_engine_mount_point) }}
host_url = http://gluetun:5030
#Slskd download directory. Should have set it up when installing Slskd.
download_dir = /app/downloads
+3 -3
View File
@@ -198,15 +198,15 @@ rooms:
web:
authentication:
username: slskd
password: {{ vault.kv2_field('env','SLSKD_WEB_PASSSWORD', vault_engine_mount_point) }}
password: \{\{ vault.kv2_field\('env', 'SLSKD_WEB_PASSSWORD', vault_engine_mount_point) }}
api_keys:
my_api_key:
key: {{ vault.kv2_field('env','SLSKD_API_KEY', vault_engine_mount_point) }}
key: \{\{ vault.kv2_field\('env', 'SLSKD_API_KEY', vault_engine_mount_point) }}
role: readwrite
cidr: 0.0.0.0/0,::/0
soulseek:
address: vps.slsknet.org
port: 2271
username: Trez.One
password: {{ vault.kv2_field('env','SLSK_USER_PASSWORD', vault_engine_mount_point) }}
password: \{\{ vault.kv2_field\('env', 'SLSK_USER_PASSWORD', vault_engine_mount_point) }}
diagnostic_level: Info