forked from bitlair/ansible
35 lines
964 B
YAML
35 lines
964 B
YAML
---
|
|
root_access:
|
|
- blackdragon
|
|
- ak
|
|
- foobar
|
|
- polyfloyd
|
|
nodejs_version: 22.x
|
|
thelounge_version: "4.4.3"
|
|
thelounge_ldap_url: ldaps://ldap.bitlair.nl
|
|
thelounge_ldap_filter: (objectClass=inetOrgPerson)
|
|
thelounge_ldap_base: ou=Members,dc=bitlair,dc=nl
|
|
chat_hostname: chat.bitlair.nl
|
|
|
|
acme_domains:
|
|
- "{{ chat_hostname }}"
|
|
|
|
nginx_sites:
|
|
- server_name: "{{ chat_hostname }}"
|
|
config:
|
|
- |-
|
|
location / {
|
|
proxy_pass http://127.0.0.1:9000/;
|
|
proxy_http_version 1.1;
|
|
proxy_set_header Connection "upgrade";
|
|
proxy_set_header Upgrade $http_upgrade;
|
|
proxy_set_header X-Forwarded-For $remote_addr;
|
|
proxy_set_header X-Forwarded-Proto $scheme;
|
|
|
|
# by default nginx times out connections in one minute
|
|
proxy_read_timeout 1d;
|
|
}
|
|
|
|
group_nft_input:
|
|
- "tcp dport { http, https } accept # Allow web-traffic from world"
|
|
- "tcp dport 113 accept # Allow identd from world"
|