michael/michaelschiemer
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
a96bd41326678374f6db079422ed86a4e6d8564c
michaelschiemer/deployment/ansible/playbooks
History
Michael Schiemer bb7cf35e54
Some checks failed
Security Vulnerability Scan / Check for Dependency Changes (push) Successful in 29s
Details
Security Vulnerability Scan / Composer Security Audit (push) Has been skipped
Details
🚀 Build & Deploy Image / Determine Build Necessity (push) Failing after 11m3s
Details
🚀 Build & Deploy Image / Build Runtime Base Image (push) Has been cancelled
Details
🚀 Build & Deploy Image / Run Tests & Quality Checks (push) Has been cancelled
Details
🚀 Build & Deploy Image / Build Docker Image (push) Has been cancelled
Details
🚀 Build & Deploy Image / Auto-deploy to Staging (push) Has been cancelled
Details
🚀 Build & Deploy Image / Auto-deploy to Production (push) Has been cancelled
Details
fix(ansible): Prevent Traefik and Gitea restart loops 
- Set traefik_auto_restart: false in group_vars to prevent automatic restarts after config deployment
- Set traefik_ssl_restart: false to prevent automatic restarts during SSL certificate setup
- Set gitea_auto_restart: false to prevent automatic restarts when healthcheck fails
- Modify traefik/tasks/ssl.yml to only restart if explicitly requested or acme.json was created
- Modify traefik/tasks/config.yml to respect traefik_auto_restart flag
- Modify gitea/tasks/restart.yml to respect gitea_auto_restart flag
- Add verify-traefik-fix.yml playbook to monitor Traefik stability

This fixes the issue where Traefik was restarting every minute due to
automatic restart mechanisms triggered by config deployments and health checks.
The restart loops caused 504 Gateway Timeouts for Gitea and other services.

Fixes: Traefik restart loop causing service unavailability
2025-11-08 23:25:38 +01:00
..
deploy
fix: staging deployment configuration and redis secrets handling
2025-11-03 00:15:43 +01:00
tasks
chore: Update deployment configuration and documentation
2025-10-31 21:11:11 +01:00
check-after-grafana-access.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
check-and-restart-gitea.yml
feat: Add Ansible playbook to check and restart Gitea
2025-11-08 17:03:22 +01:00
check-docker-compose-logs.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
check-entrypoint-execution.yml
refactor: improve logging system and add deployment fixes
2025-11-02 01:37:49 +01:00
check-git-logs.yml
chore: Update deployment configuration and documentation
2025-10-31 21:11:11 +01:00
check-gitea-bad-gateway.yml
feat: update deployment configuration and encrypted env loader
2025-11-02 20:38:06 +01:00
check-grafana-after-test.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
check-latest-grafana-access.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
check-php-files-and-workers.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
check-phpfpm-config.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
check-production-status.yml
feat: add PHP ini management system and update infrastructure configs
2025-11-02 15:29:41 +01:00
check-redis-connection.yml
feat: add Redis connection diagnostics, VPN routing fixes, and Traefik middleware updates
2025-11-02 15:58:30 +01:00
check-staging-500-error.yml
feat: add PHP ini management system and update infrastructure configs
2025-11-02 15:29:41 +01:00
check-staging-logs.yml
chore: sync staging workspace
2025-11-01 19:02:09 +01:00
check-staging-php-logs.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
check-staging-redis-connection.yml
feat: add Redis connection diagnostics, VPN routing fixes, and Traefik middleware updates
2025-11-02 15:58:30 +01:00
check-staging-redis-env-file.yml
feat: add Redis connection diagnostics, VPN routing fixes, and Traefik middleware updates
2025-11-02 15:58:30 +01:00
check-staging-status.yml
fix: improve Redis connection error messages and add staging troubleshooting playbooks
2025-11-02 02:16:12 +01:00
check-traefik-gitea-config.yml
feat: update deployment configuration and encrypted env loader
2025-11-02 20:38:06 +01:00
check-vpn-routing-status.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
check-vpn-test-from-client.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
debug-grafana-403.yml
feat: add PHP ini management system and update infrastructure configs
2025-11-02 15:29:41 +01:00
debug-staging-redis-secrets.yml
fix: staging deployment configuration and redis secrets handling
2025-11-03 00:15:43 +01:00
deploy-application-code.yml
fix: Add retry logic to git operations in deploy-application-code.yml
2025-11-08 17:34:59 +01:00
deploy-image.yml
fix: Wait for Docker socket and login to registry before compose up
2025-11-08 16:53:22 +01:00
deploy-traefik-config.yml
feat: Add playbook to deploy Traefik configuration files
2025-11-08 19:01:28 +01:00
deploy-update.yml
feat(deployment): update semaphore configuration and deployment workflows
2025-11-02 20:46:18 +01:00
diagnose-staging-502.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
diagnose-staging-logs.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
diagnose-vpn-routing.yml
feat: add Redis connection diagnostics, VPN routing fixes, and Traefik middleware updates
2025-11-02 15:58:30 +01:00
fix-gitea-actions-config.yml
chore: Update deployment configuration and documentation
2025-10-31 21:11:11 +01:00
fix-gitea-actions-url.yml
chore: Update deployment configuration and documentation
2025-10-31 21:11:11 +01:00
fix-gitea-runner-config.yml
docs: Add documentation and playbooks for fixing Gitea runner configuration
2025-11-08 17:25:22 +01:00
fix-gitea-traefik-dynamic-config.yml
feat: update deployment configuration and encrypted env loader
2025-11-02 20:38:06 +01:00
fix-gitea-traefik-labels.yml
feat: update deployment configuration and encrypted env loader
2025-11-02 20:38:06 +01:00
fix-grafana-vpn-access.yml
feat: add Redis connection diagnostics, VPN routing fixes, and Traefik middleware updates
2025-11-02 15:58:30 +01:00
fix-grafana-vpn-routing.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
fix-nginx-upstream.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
fix-phpfpm-config.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
fix-sites-available-default.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
fix-staging-502-quick.yml
refactor: improve logging system and add deployment fixes
2025-11-02 01:37:49 +01:00
fix-staging-502-verify.yml
fix: improve Redis connection error messages and add staging troubleshooting playbooks
2025-11-02 02:16:12 +01:00
fix-staging-complete.yml
chore: sync staging workspace
2025-11-01 19:02:09 +01:00
fix-staging-compose-secrets.yml
fix: staging deployment configuration and redis secrets handling
2025-11-03 00:15:43 +01:00
fix-staging-issues.yml
chore: sync staging workspace
2025-11-01 19:02:09 +01:00
fix-staging-secrets-permissions.yml
fix: staging deployment configuration and redis secrets handling
2025-11-03 00:15:43 +01:00
fix-traefik-config.yml
feat: add PHP ini management system and update infrastructure configs
2025-11-02 15:29:41 +01:00
generate-wireguard-client.yml
refactor(deployment): Remove WireGuard VPN dependency and restore public service access
2025-11-05 12:48:25 +01:00
install-composer-dependencies.yml
fix: Don't start containers in install-composer-dependencies playbook
2025-11-08 15:35:22 +01:00
monitor-grafana-access-live.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
monitor-grafana-client-ip.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
monitor-grafana-live-now.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
monitor-grafana-live-with-firewall.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
monitor-live-grafana-access.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
quick-staging-logs-check.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
README-WIREGUARD.md
refactor(deployment): Remove WireGuard VPN dependency and restore public service access
2025-11-05 12:48:25 +01:00
README.md
test: CI/CD pipeline staging test - Redis aktiviert, Bad Gateway dokumentiert
2025-11-07 20:54:44 +01:00
register-gitea-runner.yml
feat: Add Ansible playbooks to fix Gitea runner configuration
2025-11-08 17:14:19 +01:00
remove-framework-production-stack.yml
chore: Update deployment configuration and documentation
2025-10-31 21:11:11 +01:00
remove-temporary-grafana-ip.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
restart-traefik.yml
fix: Use internal healthcheck instead of HTTP ping endpoint
2025-11-08 18:53:07 +01:00
rollback.yml
chore: Update deployment configuration and documentation
2025-10-31 21:11:11 +01:00
setup-gitea-repository.yml
test: CI/CD pipeline staging test - Repository Setup automatisiert
2025-11-07 20:17:35 +01:00
setup-gitea-runner-ci.yml
chore: Update deployment configuration and documentation
2025-10-31 21:11:11 +01:00
setup-infrastructure.yml
feat: add PHP ini management system and update infrastructure configs
2025-11-02 15:29:41 +01:00
setup-local-secrets.yml
feat(local-secrets): introduce unified local secrets management and documentation
2025-11-04 11:06:21 +01:00
setup-production-secrets.yml
feat: update deployment configuration and encrypted env loader
2025-11-02 20:38:06 +01:00
setup-ssl-certificates.yml
chore: Update deployment configuration and documentation
2025-10-31 21:11:11 +01:00
setup-wireguard-host.yml
refactor(deployment): Remove WireGuard VPN dependency and restore public service access
2025-11-05 12:48:25 +01:00
sync-code.yml
chore: Update deployment configuration and documentation
2025-10-31 21:11:11 +01:00
sync-stacks.yml
ci: setup CI/CD pipeline with Gitea Actions and secrets configuration
2025-10-31 01:31:44 +01:00
system-maintenance.yml
feat: add system maintenance automation
2025-11-01 19:56:42 +01:00
test-fastcgi-directly.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
test-grafana-vpn-access.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
test-grafana-vpn-final.yml
chore: update VPN routing configuration and add Grafana VPN documentation
2025-11-02 18:10:04 +01:00
test-redis-connection-direct.yml
feat: add Redis connection diagnostics, VPN routing fixes, and Traefik middleware updates
2025-11-02 15:58:30 +01:00
test-staging-container-access.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
troubleshoot.yml
chore: Update deployment configuration and documentation
2025-10-31 21:11:11 +01:00
update-gitea-config.yml
test: CI/CD pipeline staging test - Redis aktiviert, Bad Gateway dokumentiert
2025-11-07 20:54:44 +01:00
verify-traefik-fix.yml
fix(ansible): Prevent Traefik and Gitea restart loops
2025-11-08 23:25:38 +01:00
view-staging-logs-readable.yml
chore: update staging branch with current changes
2025-11-02 00:05:26 +01:00
wireguard-routing.yml
refactor(deployment): Remove WireGuard VPN dependency and restore public service access
2025-11-05 12:48:25 +01:00

README.md

Ansible Playbooks - Übersicht

Verfügbare Playbooks

Infrastructure Setup

  • setup-infrastructure.yml - Deployed alle Stacks (Traefik, PostgreSQL, Redis, Registry, Gitea, Monitoring, Production)
  • setup-production-secrets.yml - Deployed Secrets zu Production
  • setup-ssl-certificates.yml - SSL Certificate Setup
  • setup-wireguard-host.yml - WireGuard VPN Setup
  • sync-stacks.yml - Synchronisiert Stack-Konfigurationen zum Server

Deployment & Updates

  • rollback.yml - Rollback zu vorheriger Version
  • backup.yml - Erstellt Backups von PostgreSQL, Application Data, Gitea, Registry
  • deploy-image.yml - Docker Image Deployment (wird von CI/CD Workflows verwendet)

Maintenance

  • system-maintenance.yml - System-Updates, Unattended-Upgrades, Docker-Pruning
  • troubleshoot.yml - Unified Troubleshooting mit Tags
  • update-gitea-config.yml - Aktualisiert Gitea-Konfiguration und startet neu

WireGuard

  • generate-wireguard-client.yml - Generiert WireGuard Client-Config
  • wireguard-routing.yml - Konfiguriert WireGuard Routing

Initial Deployment

  • sync-application-code.yml - Rsync-basiertes Code-Sync für Initial Deployment (synchronisiert Code vom lokalen Repository zum Server)
  • deploy-application-code.yml - Git-basiertes Code-Deployment (für CI/CD und zukünftige Deployments)
  • install-composer-dependencies.yml - Installiert Composer Dependencies im PHP Container
  • build-initial-image.yml - Build und Push des initialen Docker Images (für erstes Deployment)

Code Deployment

  • sync-application-code.yml - Rsync-basiertes Code-Sync (Initial Deployment)
  • deploy-application-code.yml - Git-basiertes Code-Deployment (CI/CD)
  • deploy-image.yml - Docker Image Deployment zu Application Stack

Troubleshooting & Diagnostics

  • check-container-logs.yml - Container Logs prüfen (queue-worker, web, scheduler)
  • check-container-status.yml - Container Status prüfen
  • check-final-status.yml - Finale Status-Prüfung aller Container
  • fix-container-issues.yml - Container-Probleme beheben (Composer Dependencies, Permissions)
  • fix-web-container.yml - Web Container Permissions beheben
  • recreate-containers-with-env.yml - Container mit env_file neu erstellen
  • sync-and-recreate-containers.yml - Docker Compose sync und Container recreate

CI/CD & Development

  • setup-gitea-runner-ci.yml - Gitea Runner CI Setup
  • setup-gitea-initial-config.yml - Gitea Initial Setup (automatisiert via app.ini + CLI)
  • setup-gitea-repository.yml - Erstellt Repository in Gitea und konfiguriert Git-Remote (automatisiert via API)
  • update-gitea-config.yml - Aktualisiert Gitea-Konfiguration (Cache, Connection Pooling) zur Behebung von Performance-Problemen
  • install-docker.yml - Docker Installation auf Server

Entfernte/Legacy Playbooks

Die folgenden Playbooks wurden entfernt, da sie nicht mehr benötigt werden:

  • build-and-push.yml - Wird durch CI/CD Pipeline ersetzt
  • remove-framework-production-stack.yml - Temporäres Playbook
  • remove-temporary-grafana-ip.yml - Temporäres Playbook

Verwendung

cd deployment/ansible
ansible-playbook -i inventory/production.yml playbooks/<playbook>.yml
Reference in New Issue View Git Blame Copy Permalink