Skip to content

Commit

Permalink
Add tailnet setup
Browse files Browse the repository at this point in the history
  • Loading branch information
hellais committed Nov 12, 2024
1 parent a7f86fb commit d2ea36e
Show file tree
Hide file tree
Showing 5 changed files with 15 additions and 4 deletions.
4 changes: 4 additions & 0 deletions ansible/group_vars/prod/vars.yml
Original file line number Diff line number Diff line change
@@ -1,3 +1,7 @@
prometheus_metrics_password: "{{ lookup('amazon.aws.aws_secret', 'oonidevops/ooni_services/prometheus_metrics_password', profile='oonidevops_user_prod') }}"
tailscale_authkey: "{{ lookup('amazon.aws.aws_secret', 'oonidevops/tailscale_authkey_devops', profile='oonidevops_user_prod') }}"
tailscale_tags:
- "devops-prod"
tailscale_oauth_ephemeral: false
admin_usernames: [ art, mehul ]
non_admin_usernames: [ ]
2 changes: 2 additions & 0 deletions ansible/playbook.yml
Original file line number Diff line number Diff line change
Expand Up @@ -28,13 +28,15 @@
- data2.htz-fsn.prod.ooni.nu
become: true
roles:
- tailnet
- oonidata_clickhouse

- name: Deploy oonidata clickhouse hosts (hdd backed)
hosts:
- data3.htz-fsn.prod.ooni.nu
become: true
roles:
- tailnet
- oonidata_clickhouse
vars:
clickhouse_data_directory: /data/clickhouse
Expand Down
5 changes: 5 additions & 0 deletions ansible/requirements.yml
Original file line number Diff line number Diff line change
Expand Up @@ -2,3 +2,8 @@
- src: nginxinc.nginx
- src: geerlingguy.certbot
- src: geerlingguy.node_exporter
- src: artis3n.tailscale
- src: https://github.com/idealista/clickhouse_role
scm: git
version: 3.5.1
name: idealista.clickhouse_role
4 changes: 0 additions & 4 deletions ansible/roles/oonidata_clickhouse/meta/requirements.yml

This file was deleted.

4 changes: 4 additions & 0 deletions ansible/roles/tailnet/tasks/main.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
- ansible.builtin.include_role:
name: artis3n.tailscale
tags:
- tailnet

0 comments on commit d2ea36e

Please sign in to comment.