engineering/ansible_role_proxy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: engineering:fix-buildargs
Branches Tags
engineering:main engineering:fix-buildargs engineering:3-test-and-tag engineering:1-basic-role-task
engineering:latest engineering:v3.6.10
..
compare: engineering:1-basic-role-task
Branches Tags
engineering:main engineering:fix-buildargs engineering:3-test-and-tag engineering:1-basic-role-task
engineering:latest engineering:v3.6.10

1 Commits
fix-builda ... 1-basic-ro

Author SHA1 Message Date
Luciano Giacchetta
f9f5ee29ea feat: add basic proxy role 2026-01-19 18:06:16 -03:00
9 changed files with 4 additions and 200 deletions
Expand all files Collapse all files

77
.gitea/workflows/update-traefik-version.yml
View File

@@ -1,77 +0,0 @@
#SPDX-License-Identifier: GPL-3.0-only
---
name: Update Traefik Version
on:
schedule:
- cron: '0 6 * * 1' # Every Monday at 06:00 UTC
workflow_dispatch:
pull_request:
branches:
- main
jobs:
update-version:
runs-on: fedora-latest
steps:
- name: Add ~/.local/bin to PATH
run: echo "$HOME/.local/bin" >> "$GITEA_PATH"
- name: Checkout
uses: actions/checkout@v6
with:
path: ansible_role_proxy
- name: Check versions
id: check
working-directory: ansible_role_proxy
run: |
LATEST=$(curl -sf https://api.github.com/repos/traefik/traefik/releases/latest | jq -r '.tag_name')
CURRENT=$(grep "^traefik_version:" defaults/main.yml | sed "s/traefik_version: '//;s/'//")
echo "latest=$LATEST" >> "$GITHUB_OUTPUT"
if [ "$LATEST" = "$CURRENT" ]; then
echo "needs_update=false" >> "$GITHUB_OUTPUT"
echo "Already on latest: $CURRENT"
else
echo "needs_update=true" >> "$GITHUB_OUTPUT"
echo "Update available: $CURRENT -> $LATEST"
fi
- name: Install Molecule
if: steps.check.outputs.needs_update == 'true'
run: pip install ansible molecule molecule-plugins[podman]
- name: Install Ansible collections
if: steps.check.outputs.needs_update == 'true'
run: ansible-galaxy collection install containers.podman
- name: Update traefik_version
if: steps.check.outputs.needs_update == 'true'
working-directory: ansible_role_proxy
run: |
sed -i "s/^traefik_version: '.*'$/traefik_version: '${{ steps.check.outputs.latest }}'/" defaults/main.yml
UPDATED=$(grep "^traefik_version:" defaults/main.yml | sed "s/traefik_version: '//;s/'//")
if [ "$UPDATED" != "${{ steps.check.outputs.latest }}" ]; then
echo "::error::Failed to update traefik_version (expected '${{ steps.check.outputs.latest }}', got '$UPDATED')"
exit 1
fi
echo "Verified: traefik_version updated to $UPDATED"
- name: Run Molecule tests
if: steps.check.outputs.needs_update == 'true'
working-directory: ansible_role_proxy
run: molecule test
- name: Commit and push
if: steps.check.outputs.needs_update == 'true' && github.ref == 'refs/heads/main'
working-directory: ansible_role_proxy
run: |
git config user.name "giabot"
git config user.email "bot@mail.gianet.us"
git remote set-url origin "https://giabot:${{ secrets.GITEA_TOKEN }}@gianet.us/engineering/ansible_role_reverse.git"
git add defaults/main.yml
git commit -m "patch: update traefik_version to ${{ steps.check.outputs.latest }}"
git tag "${{ steps.check.outputs.latest }}"
git tag -f latest
git push origin main "${{ steps.check.outputs.latest }}"
git push -f origin latest

6
defaults/main.yml
View File

@@ -3,7 +3,7 @@
## Install configuration ## Install configuration
traefik_name: 'traefik' traefik_name: 'traefik'
traefik_version: 'v3.6.10' traefik_version: 'v3.6.7'
traefik_opt: '/opt/{{ traefik_name }}' traefik_opt: '/opt/{{ traefik_name }}'
traefik_etc: '/etc/{{ traefik_name }}' traefik_etc: '/etc/{{ traefik_name }}'
traefik_url: 'https://github.com/{{ traefik_name }}/{{ traefik_name }}/releases/download/{{ traefik_version }}/{{ traefik_name }}_{{ traefik_version }}' traefik_url: 'https://github.com/{{ traefik_name }}/{{ traefik_name }}/releases/download/{{ traefik_version }}/{{ traefik_name }}_{{ traefik_version }}'
@@ -84,8 +84,8 @@ traefik_metrics_prometheus_buckets:
- 5.0 - 5.0
traefik_metrics_prometheus_manualRouting: 'false' traefik_metrics_prometheus_manualRouting: 'false'
traefik_metrics_prometheus_entryPoint: 'traefik' traefik_metrics_prometheus_entryPoint: 'traefik'
# traefik_metrics_prometheus_headerLabels: traefik_metrics_prometheus_headerLabels:
# useragent: User-Agent useragent: User-Agent
### Routing configuration ### Routing configuration
# Remove '{}' before adding your own configurations. # Remove '{}' before adding your own configurations.

1
meta/main.yml
View File

@@ -1,6 +1,5 @@
galaxy_info: galaxy_info:
role_name: "ansible_role_proxy" role_name: "ansible_role_proxy"
namespace: "gianet"
author: "Luciano Giacchetta" author: "Luciano Giacchetta"
description: "Complete Proxy Server Role" description: "Complete Proxy Server Role"
company: "Giacchetta Networks LLC" company: "Giacchetta Networks LLC"

14
molecule/default/Dockerfile
View File

@@ -1,14 +0,0 @@
ARG MOLECULE_DISTRO=docker.io/library/debian:stable
FROM ${MOLECULE_DISTRO}
RUN apt-get update && \
apt-get install -y --no-install-recommends \
python3 \
systemd \
systemd-sysv \
dbus \
ca-certificates && \
apt-get clean && \
rm -rf /var/lib/apt/lists/*
CMD ["/usr/sbin/init"]

6
molecule/default/converge.yml
View File

@@ -1,6 +0,0 @@
#SPDX-License-Identifier: GPL-3.0-only
---
- name: Converge
hosts: all
roles:
- role: ansible_role_proxy

72
molecule/default/molecule.yml
View File

@@ -1,72 +0,0 @@
#SPDX-License-Identifier: GPL-3.0-only
---
dependency:
name: galaxy
options:
requirements-file: molecule/default/requirements.yml
driver:
name: podman
platforms:
- name: debian-stable
image: docker.io/library/debian:stable
pre_build_image: false
dockerfile: Dockerfile
buildargs:
MOLECULE_DISTRO: docker.io/library/debian:stable
privileged: true
systemd: always
command: /usr/sbin/init
- name: debian-oldstable
image: docker.io/library/debian:oldstable
pre_build_image: false
dockerfile: Dockerfile
buildargs:
MOLECULE_DISTRO: docker.io/library/debian:oldstable
privileged: true
systemd: always
command: /usr/sbin/init
- name: ubuntu-latest
image: docker.io/library/ubuntu:latest
pre_build_image: false
dockerfile: Dockerfile
buildargs:
MOLECULE_DISTRO: docker.io/library/ubuntu:latest
privileged: true
systemd: always
command: /usr/sbin/init
- name: ubuntu-jammy
image: docker.io/library/ubuntu:jammy
pre_build_image: false
dockerfile: Dockerfile
buildargs:
MOLECULE_DISTRO: docker.io/library/ubuntu:jammy
privileged: true
systemd: always
command: /usr/sbin/init
provisioner:
name: ansible
env:
ANSIBLE_ROLES_PATH: "${MOLECULE_PROJECT_DIRECTORY}/.."
playbooks:
converge: converge.yml
verify: verify.yml
scenario:
test_sequence:
- dependency
- destroy
- syntax
- create
- converge
- idempotence
- verify
- destroy
verifier:
name: ansible

4
molecule/default/requirements.yml
View File

@@ -1,4 +0,0 @@
#SPDX-License-Identifier: GPL-3.0-only
---
collections:
- name: containers.podman

23
molecule/default/verify.yml
View File

@@ -1,23 +0,0 @@
#SPDX-License-Identifier: GPL-3.0-only
---
- name: Verify
hosts: all
tasks:
- name: Check traefik binary
ansible.builtin.stat:
path: /opt/traefik/traefik
register: traefik_binary
- name: Assert traefik binary is executable
ansible.builtin.assert:
that:
- traefik_binary.stat.exists
- traefik_binary.stat.executable
- name: Gather service facts
ansible.builtin.service_facts:
- name: Assert traefik service is present
ansible.builtin.assert:
that:
- "'traefik.service' in ansible_facts.services"

1
tests/ansible_role_reverse Symbolic link
View File

@@ -0,0 +1 @@
../../ansible_role_reverse