hcaptcha

dns setup
fix yammllint warning and random space from weird line wrapping
2024-03-29 18:36:00 -04:00 · 2024-03-29 17:05:03 -04:00 · 2024-03-27 18:08:02 -04:00
5 changed files with 35 additions and 2 deletions
--- a/.yamllint
+++ b/.yamllint
@ -24,7 +24,7 @@ rules:
  indentation: enable
  key-duplicates: enable
  key-ordering: disable
-  line-length: enable
+  line-length: disable
  new-line-at-end-of-file: enable
  new-lines: enable
  octal-values: disable
--- a/group_vars/hatecomputers-club.yml
+++ b/group_vars/hatecomputers-club.yml
@ -0,0 +1,10 @@
+---
+
+hatecomputers_club_oauth2_scope: "openid,email,profile"
+hatecomputers_club_oauth2_auth_url: "https://auth.hatecomputers.club/ui/oauth2"
+hatecomputers_club_oauth2_token_url: >
+  https://auth.hatecomputers.club/oauth2/token
+hatecomputers_club_oauth2_user_info_uri: >
+ https://auth.hatecomputers.club/oauth2/openid/{{ hatecomputers_club_oauth2_client_id }}/userinfo
+hatecomputers_club_oauth2_redirect_uri: "https://hatecomputers.club/auth"
+hatecomputers_intra_bind_address: "{{ lookup('community.general.dig', inventory_hostname) }}"
--- a/playbooks/roles/hatecomputers-club/tasks/main.yml
+++ b/playbooks/roles/hatecomputers-club/tasks/main.yml
@ -16,6 +16,15 @@
    group: root
    mode: 0700

+- name: Allow dns from rfc1918 networks
+  loop: "{{ rfc1918_networks }}"
+  community.general.ufw:
+    port: 53
+    rule: allow
+    from: "{{ item }}"
+    state: "enabled"
+    proto: "udp"
+
 - name: Enable hatecomputers-club
  ansible.builtin.systemd_service:
    state: restarted
--- a/playbooks/roles/hatecomputers-club/templates/docker-compose.yml.j2
+++ b/playbooks/roles/hatecomputers-club/templates/docker-compose.yml.j2
@ -2,13 +2,23 @@
 version: '3'

 services:
-  kanidm:
+  server:
    image: git.hatecomputers.club/hatecomputers/hatecomputers.club:latest
    restart: always
    ports:
      - 127.0.0.1:9696:8080
+      - {{ hatecomputers_intra_bind_address }}:53:8053/udp
    environment:
      - CLOUDFLARE_TOKEN={{ cloudflare_api_token }}
      - CLOUDFLARE_ZONE={{ cloudflare_zone_id }}
+      - OAUTH_SCOPES={{ hatecomputers_club_oauth2_scope }}
+      - OAUTH_AUTH_URL={{ hatecomputers_club_oauth2_auth_url }} 
+      - OAUTH_TOKEN_URL={{ hatecomputers_club_oauth2_token_url }} 
+      - OAUTH_CLIENT_ID={{ hatecomputers_club_oauth2_client_id }}
+      - OAUTH_CLIENT_SECRET={{ hatecomputers_club_oauth2_client_secret }}
+      - OAUTH_REDIRECT_URI={{ hatecomputers_club_oauth2_redirect_uri }}
+      - OAUTH_USER_INFO_URI={{ hatecomputers_club_oauth2_user_info_uri }} 
+      - HCAPTCHA_SITE_KEY={{ hcaptcha_site_key }}
+      - HCAPTCHA_SECRET={{ hcaptcha_secret }}
    volumes:
      - ./db:/app/db
--- a/secrets.txt
+++ b/secrets.txt
@ -10,3 +10,7 @@ gitea_internal_token
 drone_gitea_client_id
 drone_gitea_client_secret
 drone_rpc_secret
+hatecomputers_club_oauth2_client_id
+hatecomputers_club_oauth2_client_secret
+hcaptcha_site_key
+hcaptcha_secret
Author	SHA1	Message	Date
Elizabeth Hunt	50f053e7db	hcaptcha	2024-03-29 18:36:00 -04:00
Elizabeth Hunt	5e87f20ab8	dns setup	2024-03-29 17:05:03 -04:00
Elizabeth Hunt	566db7ed84	fix yammllint warning and random space from weird line wrapping	2024-03-27 18:08:02 -04:00