Small config and lint fixes

2026-03-08 21:27:19 +00:00 · 2026-03-08 21:27:19 +00:00 · 00cf26efa7
commit 00cf26efa7
parent c0da6037de
27 changed files with 80 additions and 70 deletions
--- a/collections/ansible_collections/adhdgirl/minilab/roles/adguardhome/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/adguardhome/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -35,6 +35,6 @@
        pull: policy

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/adguardhome_sync/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/adguardhome_sync/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -40,6 +40,6 @@
        pull: policy

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/arr/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/arr/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -84,6 +84,6 @@
        - "whisparr"

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/authentik/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/authentik/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -43,6 +43,6 @@
        pull: policy

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/caddy/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/caddy/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -44,6 +44,6 @@
        recreate: always

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/caddy/templates/Caddyfile.j2
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/caddy/templates/Caddyfile.j2
@ -67,7 +67,7 @@ termix.local.cobb.lgbt {
    reverse_proxy 10.69.2.52:8082
 }
 frigate.local.cobb.lgbt {
-    reverse_proxy 10.69.10.13:8971 {
+    reverse_proxy 10.69.12.11:8971 {
        transport http {
            tls_insecure_skip_verify
        }
--- a/collections/ansible_collections/adhdgirl/minilab/roles/cloudflared/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/cloudflared/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -41,6 +41,6 @@
        pull: policy

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/coder/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/coder/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -43,7 +43,7 @@
        pull: policy

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
 # code: language=ansible
--- a/collections/ansible_collections/adhdgirl/minilab/roles/common/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/common/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -42,7 +42,7 @@
    #   ansible.builtin.import_tasks: general/software.yaml

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
 # code: language=ansible
--- a/collections/ansible_collections/adhdgirl/minilab/roles/common/tasks/users.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/common/tasks/users.yaml
@ -25,6 +25,7 @@
  ansible.builtin.user:
    name: "{{ user_name }}"
    password: "{{ common_user_password | string | password_hash('sha512') }}"
+    update_password: on_create
  when: common_user_exists.state is undefined or common_user_exists.state != 'present'
 - name: Adjust shell for Debian hosts
  tags: settings,users,debian
@ -65,21 +66,19 @@
  with_fileglob:
    - "users/{{ user_name }}/*.pub"
 - name: Check if docker group exists
-  ansible.builtin.group:
-    name: "docker"
-  check_mode: true
+  ansible.builtin.getent:
+    database: group
  register: common_docker_group_exists
 - name: If docker group exists, add {{ user_name }}
  ansible.builtin.user:
    name: "{{ user_name }}"
    append: true
    groups: docker
-  when: common_docker_group_exists is defined and common_docker_group_exists.state == 'present'
+  when: (['docker'] | intersect(common_docker_group_exists['ansible_facts']['getent_group'] | list)) | length > 0
 - name: Add user to lxc_share
  ansible.builtin.user:
    name: "{{ user_name }}"
    append: true
    groups: lxc_shares
  when: inventory_hostname == 'nemetona'
-
 # code: language=ansible
--- a/collections/ansible_collections/adhdgirl/minilab/roles/docker/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/docker/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Fetch distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -17,7 +17,7 @@
      when: ansible_facts["distribution"] == 'Alpine'

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
 # code: language=ansible
--- a/collections/ansible_collections/adhdgirl/minilab/roles/frigate/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/frigate/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -41,6 +41,6 @@
        pull: policy

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/frigate/vars/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/frigate/vars/main.yaml
@ -1,35 +1,35 @@
 ---
 frigate_rtsp_passwd: !vault |
-          $ANSIBLE_VAULT;1.1;AES256
-          32303838626238633166343130626263383237356566363830656432373637626237366162396131
-          3439633565626161303538353462636363323961656462300a323338383533386136376638376230
-          31363135633230333637366438346331656632353565323837356330363934656232333063646264
-          3561646234623133330a323731336437383438633630393065343363306636343634663162656539
-          3162
-frigate_image_tag: 0.16.4
+  $ANSIBLE_VAULT;1.1;AES256
+  32303838626238633166343130626263383237356566363830656432373637626237366162396131
+  3439633565626161303538353462636363323961656462300a323338383533386136376638376230
+  31363135633230333637366438346331656632353565323837356330363934656232333063646264
+  3561646234623133330a323731336437383438633630393065343363306636343634663162656539
+  3162
+frigate_image_tag: 0.17.0
 frigate_reolink_ip: 10.69.12.20
 frigate_reolink_username: frigate
 frigate_reolink_password_url_enc: !vault |
-          $ANSIBLE_VAULT;1.1;AES256
-          31633133663532656633373437663437356132326362356465356164323636323133343366373630
-          3935373839346332613063396332646662396530633062370a393335643564393132373066346662
-          62393062366539346534633537326330393064323963663439343465623433613932613564643763
-          3439313635643061610a336262636638373937356466313634363637336334333564626664386138
-          63633830396161393234343962326438393362366335336333616362616661333331343961643030
-          3433666330366433333033653265613930646535636433333939
+  $ANSIBLE_VAULT;1.1;AES256
+  31633133663532656633373437663437356132326362356465356164323636323133343366373630
+  3935373839346332613063396332646662396530633062370a393335643564393132373066346662
+  62393062366539346534633537326330393064323963663439343465623433613932613564643763
+  3439313635643061610a336262636638373937356466313634363637336334333564626664386138
+  63633830396161393234343962326438393362366335336333616362616661333331343961643030
+  3433666330366433333033653265613930646535636433333939
 frigate_reolink_password: !vault |
-          $ANSIBLE_VAULT;1.1;AES256
-          32366339623732363766316561336262626233396161366631663238653335336433616432633265
-          6431636661316131356461313562663833643434383034380a666663383564326539353834363531
-          35376261663933626663376139373262663866633164666234646662346365373936663536316161
-          3364383165646461350a656366633363366230613430353662393934336132306464663631623865
-          33343734653131653230373330613731383363306434383865633536313564363166
+  $ANSIBLE_VAULT;1.1;AES256
+  32366339623732363766316561336262626233396161366631663238653335336433616432633265
+  6431636661316131356461313562663833643434383034380a666663383564326539353834363531
+  35376261663933626663376139373262663866633164666234646662346365373936663536316161
+  3364383165646461350a656366633363366230613430353662393934336132306464663631623865
+  33343734653131653230373330613731383363306434383865633536313564363166
 frigate_mqtt_ip: 10.69.2.13
 frigate_mqtt_username: adhdgirl
 frigate_mqtt_password: !vault |
-          $ANSIBLE_VAULT;1.1;AES256
-          30306563313434653464633363316636313435386536343362656135343832636262633736343961
-          3863356661616263653337346563363238656363373332650a386234666430626462666463366331
-          32666132366264633830333036303766393564366635313865343635363631336164396133393139
-          3839646237353961390a386431363630653666356139663739633864613366363138653233393835
-          3634
+  $ANSIBLE_VAULT;1.1;AES256
+  30306563313434653464633363316636313435386536343362656135343832636262633736343961
+  3863356661616263653337346563363238656363373332650a386234666430626462666463366331
+  32666132366264633830333036303766393564366635313865343635363631336164396133393139
+  3839646237353961390a386431363630653666356139663739633864613366363138653233393835
+  3634
--- a/collections/ansible_collections/adhdgirl/minilab/roles/immich/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/immich/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -41,6 +41,6 @@
        pull: policy

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/ntfy/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/ntfy/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -50,6 +50,6 @@
        pull: policy

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/postgresql/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/postgresql/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -34,12 +34,12 @@
    - name: Ensure administrative user has proper permissions
      community.general.postgresql_membership:
        group: pg_read_all_data
-        target_role: {{ postgresql_root_user }}
+        target_role: { { postgresql_root_user } }
        state: present
    - name: Allow hosts on internal network to access the database
      community.general.postgresql_set:
        name: listen_address
-        value: '10.69.0.0/16'
+        value: "10.69.0.0/16"
      notify: Restart Postgres
    - name: Allow hosts on internal network to access the database
      community.general.postgresql_pg_hba:
@ -71,6 +71,6 @@
        role: "{{ item.owner }}"

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/readeck/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/readeck/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -43,6 +43,6 @@
        pull: policy

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/service_share/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/service_share/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -36,6 +36,6 @@
        mode: "0600"

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/termix/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/termix/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -33,6 +33,6 @@
        pull: policy

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
--- a/collections/ansible_collections/adhdgirl/minilab/roles/unifi-controller/tasks/main.yaml
+++ b/collections/ansible_collections/adhdgirl/minilab/roles/unifi-controller/tasks/main.yaml
@ -1,6 +1,6 @@
 ---
 - name: Load distro-specific variables
-  ansible.builtin.include_vars: '{{ item }}'
+  ansible.builtin.include_vars: "{{ item }}"
  tags: always
  with_first_found:
    - files:
@ -43,7 +43,7 @@
        pull: policy

  rescue:
-    - name: Set that this task failed
+    - name: Set that this task failed # noqa: var-naming[no-role-prefix]
      ansible.builtin.set_fact:
        task_failed: true
 # code: language=ansible
--- a/inventory/host_vars/adguardpi.yaml
+++ b/inventory/host_vars/adguardpi.yaml
@ -1,2 +1,3 @@
 ---
 server_name: adguardpi
+ansible_python_interpreter: /usr/bin/python3
--- a/inventory/host_vars/emosen.yaml
+++ b/inventory/host_vars/emosen.yaml
@ -0,0 +1,3 @@
+---
+server_name: emosen
+ansible_python_interpreter: /usr/bin/python3
--- a/inventory/host_vars/fifi.yaml
+++ b/inventory/host_vars/fifi.yaml
@ -1,2 +1,3 @@
 ---
 server_name: fifi
+ansible_python_interpreter: /usr/bin/python3
--- a/inventory/host_vars/knivi.yaml
+++ b/inventory/host_vars/knivi.yaml
@ -1,2 +1,3 @@
 ---
 server_name: knivi
+ansible_python_interpreter: /usr/bin/python3
--- a/inventory/host_vars/reir.yaml
+++ b/inventory/host_vars/reir.yaml
@ -1,2 +1,3 @@
 ---
 server_name: reir
+ansible_python_interpreter: /usr/bin/python3
--- a/inventory/host_vars/trady.yaml
+++ b/inventory/host_vars/trady.yaml
@ -1,3 +1,3 @@
 ---
 server_name: trady
-
+ansible_python_interpreter: /usr/bin/python3
--- a/inventory/hosts.yaml
+++ b/inventory/hosts.yaml
@ -24,7 +24,9 @@ all:
    ida:
      ansible_host: 10.69.2.53
    curren:
-      ansible_host: 10.69.10.13
+      ansible_host: 10.69.12.11
+    emosen:
+      ansible_host: 10.69.10.20
  children:
    alpine:
      hosts:
@ -32,6 +34,7 @@ all:
        stephanie:
        nemetona:
        ida:
+        emosen:
    debian:
      hosts:
        adguardpi:
@ -51,6 +54,7 @@ all:
        stephanie:
        nemetona:
        curren:
+        ida:
    unifi_controller:
      hosts:
        # pump: