hogweed1/ansible-repo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

now we goin to set-up root-ca
Some checks failed
Gitea Actions Demo / Explore-Gitea-Actions (push) Has been cancelled
Details

Browse Source
This commit is contained in:
hogweed1
2026-05-15 19:35:08 +10:00
parent c48280deea
commit 1025809015
6 changed files with 124 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

54
.continue/mcpServers/arango.json Normal file
View File

@@ -0,0 +1,54 @@
// mcpServers:
// - name: arangodb
// type: sse
// url: "http://192.168.0.113:3001/sse"
{
"mcpServers": {
"arango-lxc": {
"type": "sse",
"url": "http://192.168.0.113:3001/sse"
}
}
}
// {
// // "ui": {
// // "approveToolsAutomatically": true
// // },
// // {
// // "name": "arango-lxc",
// // "type": "sse",
// // "url": "http://192.168.0.113:3001/sse"
// "arango-lxc": {
// "type": "sse",
// "url": "http://192.168.0.113:3001/sse"
// // ,
// //"tools": true
// }
// }
// // name: arango
// // version: 0.0.1
// // schema: v1
// // # schema: https://modelcontextprotocol.io
// // # transport: streamable-http
// // # url: "http://192.168.0.113:3001/sse"
// // mcpServers:
// // - name: arango-lxc
// // #version: 1.0.0
// // #schema: https://modelcontextprotocol.io
// // #transport: streamable-http
// // type: sse
// // url: "http://192.168.0.113:3001
// // # mcpServers:
// // # - name: arango-lxc
// // # version: 1.0.0
// // # schema: https://modelcontextprotocol.io
// // # transport: streamable-http
// // # type: sse
// // # url: "http://192.168.0.113:3001/sse"

45
config.json Normal file
View File

@@ -0,0 +1,45 @@
// {
// "models": [
// {
// //"apiBase": "http://gpu-slut.guaranteedstruggle.host:3100/ollama/",
// "apiBase": "http://localhost:11434/",
// //"title": "Qwen3-Coder-30B-A3B-Instruct-1M-Unsloth",
// "title": "llama3.1:8b",
// "provider": "ollama",
// //"model": "codestral:22b",
// //"model": "danielsheep/Qwen3-Coder-30B-A3B-Instruct-1M-Unsloth:UD-IQ3_XXS",
// "model": "llama3.1:8b",
// "apiKey": "YXNkZjphc2Rm"
// }
// ],
// // "mcpServers": [
// // {
// // "name": "arango-lxc",
// // "type": "sse",
// // "url": "http://192.168.0.113:3001/sse"
// // }
// // ],
// "customCommands": [
// {
// "name": "test",
// "prompt": "{{{ input }}}\n\nWrite a comprehensive set of unit tests for the selected code. It should setup, run tests that check for correctness including important edge cases, and teardown. Ensure that the tests are complete and sophisticated. Give the tests just as chat output, don't edit any file.",
// "description": "Write unit tests for highlighted code"
// },
// {
// "name": "logs-py",
// "prompt": "{{{ input }}}\n\nWrite a comprehensive logging for the selected code. It should help understanding what happend and how many items were affected. If in code there're possibility for errors then also log error count",
// "description": "Write unit tests for highlighted code"
// }
// ],
// "tabAutocompleteModel": {
// //"title": "Qwen3-Coder-30B-A3B-Instruct-1M-Unsloth",
// "title": "llama3.1:8b",
// "provider": "ollama",
// // "model": "danielsheep/Qwen3-Coder-30B-A3B-Instruct-1M-Unsloth:UD-IQ3_XXS"
// "model": "llama3.1:8b"
// },
// "embeddingsProvider": {
// "provider": "transformers.js"
// },
// "docs": []
// }

2
environments/just-created/hosts.yml
View File

@@ -27,7 +27,7 @@ lxc: # keys must be unique, i.e. only one 'hosts' per group
#harbor.guaranteedstruggle.host: #harbor.guaranteedstruggle.host:
#gpu-slut.guaranteedstruggle.host: #gpu-slut.guaranteedstruggle.host:
#gemini-slut.guaranteedstruggle.host: #gemini-slut.guaranteedstruggle.host:
root-ca.guaranteedstruggle.host: #root-ca.guaranteedstruggle.host:
#etcd.guaranteedstruggle.host: #etcd.guaranteedstruggle.host:
#prometheus.guaranteedstruggle.host: #prometheus.guaranteedstruggle.host:

3
environments/proxmoxes/hosts.yml
View File

@@ -97,3 +97,6 @@ lxc:
# # pg.just-for-me.internal: # # pg.just-for-me.internal:
# # grafana.just-for-me.internal: # # grafana.just-for-me.internal:
# # price-loader.just-for-me.internal: # # price-loader.just-for-me.internal:
#gpu-slut.guaranteedstruggle.host:
root-ca.guaranteedstruggle.host:

1
playbooks/_common-setup.yml
View File

@@ -24,3 +24,4 @@
- import_playbook: resolvconf.yml - import_playbook: resolvconf.yml
- import_playbook: users.yml - import_playbook: users.yml
- import_playbook: exporters.yml - import_playbook: exporters.yml
- import_playbook: pmc314-ca.yml

19
playbooks/pmc314-ca.yml Normal file
View File

@@ -0,0 +1,19 @@
---
- name: Install root CA certificate on Debian nodes
hosts: all
become: true
tasks:
- name: Copy root CA certificate to trust store
ansible.builtin.get_url:
url: http://example.lan
dest: /usr/local/share/ca-certificates/pmc314_root-ca.crt
owner: root
group: root
mode: '0644'
# Игнорируем ошибку недоверенного SSL при первом подключении
validate_certs: false
register: ca_cert_downloaded
- name: Update CA certificates certificates store
ansible.builtin.command: update-ca-certificates
when: ca_cert_downloaded.changed