servers/setup.yml

# common stuff
- name: Get NetBox and other data
  hosts: '*'
  gather_facts: false
  roles:
    - facts

- name: Set up base system
  hosts: '*'
  roles:
    - { role: alpine, when: ansible_distribution == 'Alpine' }
    - { role: debian, when: ansible_distribution == 'Debian' }
    - { role: windows, when: ansible_os_family == 'Windows' }

# hosts
- hosts: ceph-*
  roles:
    - frr
    - telegraf
    - ceph

- hosts: mgmt-gw
  roles:
    - radvd # we are router for mgmt networks

- hosts: proxmox-backup
  roles:
    - proxmox-backup
    - frr

- hosts: pve-rc-*, pve-lab-*
  roles:
    - proxmox
    - frr

# virtual machines
- hosts: bookstack
  roles:
    - nginx
    - nginx-php

- hosts: dhcp
  roles:
    - dnsmasq

- hosts: doc
  roles:
    - dokuwiki

- hosts: git
  roles:
    - forgejo

- hosts: git-runner
  roles:
    - forgejo-runner
  vars:
    git_host: git

- hosts: kanboard
  roles:
    - kanboard

- hosts: matrix
  roles:
    - postgres
    - synapse
  vars:
    user: synapse

- hosts: monitor
  roles:
    - influxdb
    - grafana

- hosts: netbox
  roles:
    - postgres
    - netbox
  vars:
    user: netbox

- hosts: unifi
  roles:
    - unifi

- hosts: vrata
  roles:
    - ocserv

- hosts: web-front
  roles:
    - reverse-proxy

- hosts: zid
  roles:
    - opensmtpd
    - friwall

- hosts: rilec
  roles:
    - postgres
    - rilec
  vars:
    user: apis
    ldap_server: ldap://dcv1fri1.fri1.uni-lj.si:389
    tls_domains: ['apis-rilec-php.fri1.uni-lj.si', "apis-rilec.fri1.uni-lj.si"]