Sync

.vscode/settings.json

@@ -1,3 +1,3 @@
 {
-  "ansible.python.interpreterPath": "/home/annika/ansible/minilab/.venv/bin/python"
+  "ansible.python.interpreterPath": "/workspace/dev/ansible/minilab/.venv/bin/python"
 }

README.md

@@ -1,4 +1,4 @@
-# Adhdgirl Minilab Ansible Project
+an# Adhdgirl Minilab Ansible Project
 
 ## To Get Machines Added
 

collections/ansible_collections/adhdgirl/minilab/roles/authentik/tasks/main.yaml

@@ -30,8 +30,8 @@
         mode: u=rw,g=r,o=r
     - name: Ensure environment file is available on the server
       tags: docker,authentik,settings
-      ansible.builtin.copy:
-        src: .env
+      ansible.builtin.template:
+        src: env.j2
         dest: /opt/authentik/.env
         owner: root
         group: root

collections/ansible_collections/adhdgirl/minilab/roles/authentik/templates/env.j2

@@ -0,0 +1,16 @@
+PG_PASS={{ authentik_pg_pass }}
+AUTHENTIK_TAG=2025.4.0
+AUTHENTIK_SECRET_KEY={{authentik_secret_key}}
+# SMTP Host Emails are sent to
+AUTHENTIK_EMAIL__HOST=smtp.sendgrid.net
+AUTHENTIK_EMAIL__PORT=587
+# Optionally authenticate (don't add quotation marks to your password)
+AUTHENTIK_EMAIL__USERNAME={{ authentik_email__username }}
+AUTHENTIK_EMAIL__PASSWORD={{ authentik_email__password }}
+# Use StartTLS
+AUTHENTIK_EMAIL__USE_TLS=true
+# Use SSL
+AUTHENTIK_EMAIL__USE_SSL=false
+AUTHENTIK_EMAIL__TIMEOUT=10
+# Email address authentik will send from, should have a correct @domain
+AUTHENTIK_EMAIL__FROM=authentik@moosenet.work

collections/requirements.yml

@@ -1,7 +0,0 @@
----
-collections:
-  - name: community.general
-  - name: ansible.posix
-  # - name: ansibleguy.nftables
-  #   version: 1.0.3
-  - name: community.docker

inventory/group_vars/all.yaml

@@ -1,6 +1,5 @@
 ---
-#ansible_user: ansible
-ansible_ssh_private_key_file: /home/annika/ansible/minilab/ansible_ed25519
+ansible_ssh_private_key_file: ./ansible_ed25519
 debian_derivatives:
   - "Debian"
   - "Pop!_OS"

inventory/host_vars/nemetona.yaml

@@ -0,0 +1,2 @@
+---
+server_name: nemetona

inventory/hosts.yaml

@@ -17,11 +17,14 @@ all:
       ansible_host: 10.69.11.5
     stephanie:
       ansible_host: 10.69.11.51
+    nemetona:
+      ansible_host: 10.69.11.52
   children:
     alpine:
       hosts:
         adguard:
         stephanie:
+        nemetona:
     debian:
       hosts:
         maxim:
@@ -36,6 +39,7 @@ all:
         pump:
         trady:
         stephanie:
+        nemetona:
     unifi_controller:
       hosts:
         pump:
@@ -45,3 +49,6 @@ all:
     coder:
       hosts:
         stephanie:
+    authentik:
+      hosts:
+        nemetona:

minilab.yaml

@@ -10,6 +10,12 @@
       community.general.apk:
         update_cache: true
       when: ansible_distribution == "Alpine"
+    - name: Update package cache (Debian, and derivatives)
+      tags: always
+      ansible.builtin.apt:
+        update_cache: true
+      changed_when: false
+      when: ansible_distribution in debian_derivatives
 
 - name: Common tasks for all hosts
   hosts: all
@@ -35,3 +41,9 @@
   become: true
   roles:
     - adhdgirl.minilab.coder
+- name: Configure authentik
+  hosts: authentik
+  tags: docker,authentik
+  become: true
+  roles:
+    - adhdgirl.minilab.authentik