michaelschiemer/deployment/ansible/inventory/production.yml

---
all:
  hosts:
    production:
      ansible_host: 94.16.110.151
      ansible_user: deploy
      ansible_python_interpreter: /usr/bin/python3
      ansible_ssh_private_key_file: ~/.ssh/production

  vars:
    # Docker Registry
    # Use localhost for internal access (registry only binds to 127.0.0.1:5000)
    # External access via Traefik: registry.michaelschiemer.de
    docker_registry: localhost:5000
    docker_registry_url: localhost:5000
    # Registry credentials (can be overridden via -e or vault)
    # Defaults are set here, can be overridden by extra vars or vault
    docker_registry_username_default: 'admin'
    docker_registry_password_default: 'registry-secure-password-2025'

    # Application Configuration
    app_name: framework
    app_domain: michaelschiemer.de
    app_image: "{{ docker_registry }}/{{ app_name }}"

    # Docker Stack
    stack_name: app
    compose_file: /home/deploy/docker-compose.prod.yml

    # Deployment Paths
    deploy_user_home: /home/deploy
    app_base_path: "{{ deploy_user_home }}/app"
    secrets_path: "{{ deploy_user_home }}/secrets"
    backups_path: "{{ deploy_user_home }}/backups"

    # Health Check
    health_check_url: "https://{{ app_domain }}/health"
    health_check_retries: 10
    health_check_delay: 10

    # Rollback Configuration
    max_rollback_versions: 5
    rollback_timeout: 300