Merge branch 'main' of github.com:t4d-gmbh/WebServerSetup

Author: j-i-l

.ansible-lint

@@ -0,0 +1,29 @@
+---
+# Ansible-lint configuration
+
+# Skip rules that conflict with this project's conventions
+skip_list:
+  - role-name  # Roles use camelCase (hardenServer, etc.)
+  - name[casing]  # Allow flexible task naming
+  - yaml[truthy]  # Allow 'yes'/'no' in addition to 'true'/'false'
+  - var-naming  # Variables don't follow role-prefix convention (pre-existing)
+  - fqcn  # Modules not using fully qualified names yet (pre-existing)
+  - key-order  # Task key ordering is flexible
+  - schema[galaxy]  # Collection name uses PascalCase (pre-existing)
+  - galaxy  # No changelog/runtime yet
+
+# Warn but don't fail on these
+warn_list:
+  - command-instead-of-module
+  - no-changed-when
+  - yaml[line-length]
+  - risky-file-permissions
+  - no-handler
+  - name[missing]
+  - package-latest
+  - jinja[spacing]
+
+# Exclude molecule/test artifacts from linting
+exclude_paths:
+  - .cache/
+  - .github/

.github/workflows/compound-analytics-stack.yml

@@ -0,0 +1,46 @@
+---
+name: "Compound - R Analytics Stack"
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - "roles/docker/**"
+      - "roles/authentik/**"
+      - "roles/opencpu/**"
+      - "tests/compound-docker-auth-opencpu/**"
+  pull_request:
+    branches: [main]
+    paths:
+      - "roles/docker/**"
+      - "roles/authentik/**"
+      - "roles/opencpu/**"
+      - "tests/compound-docker-auth-opencpu/**"
+  schedule:
+    - cron: "0 6 1 * *"
+  workflow_dispatch:
+
+jobs:
+  molecule:
+    name: Molecule
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.12"
+
+      - name: Install dependencies
+        run: |
+          pip install ansible-core molecule molecule-plugins[docker] docker
+          ansible-galaxy collection install -r requirements.yml
+
+      - name: Run Molecule tests
+        run: molecule test
+        working-directory: tests/compound-docker-auth-opencpu
+        env:
+          PY_COLORS: "1"
+          ANSIBLE_FORCE_COLOR: "1"

.github/workflows/compound-django-stack.yml

@@ -0,0 +1,54 @@
+---
+name: "Compound - Django Stack"
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - "roles/hardenServer/**"
+      - "roles/postgresqlSetup/**"
+      - "roles/certbot/**"
+      - "roles/nginxWebServer/**"
+      - "roles/installWebApp/**"
+      - "roles/celerySetup/**"
+      - "roles/gunicornSetup/**"
+      - "tests/compound-django-stack/**"
+  pull_request:
+    branches: [main]
+    paths:
+      - "roles/hardenServer/**"
+      - "roles/postgresqlSetup/**"
+      - "roles/certbot/**"
+      - "roles/nginxWebServer/**"
+      - "roles/installWebApp/**"
+      - "roles/celerySetup/**"
+      - "roles/gunicornSetup/**"
+      - "tests/compound-django-stack/**"
+  schedule:
+    - cron: "0 6 1 * *"
+  workflow_dispatch:
+
+jobs:
+  molecule:
+    name: Molecule
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.12"
+
+      - name: Install dependencies
+        run: |
+          pip install ansible-core molecule molecule-plugins[docker] docker
+          ansible-galaxy collection install -r requirements.yml
+
+      - name: Run Molecule tests
+        run: molecule test
+        working-directory: tests/compound-django-stack
+        env:
+          PY_COLORS: "1"
+          ANSIBLE_FORCE_COLOR: "1"

.github/workflows/compound-full-stack.yml

@@ -0,0 +1,50 @@
+---
+name: "Compound - Full Stack"
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - "roles/basic_config/**"
+      - "roles/docker/**"
+      - "roles/traefik/**"
+      - "roles/authentik/**"
+      - "roles/opencpu/**"
+      - "tests/compound-full-stack/**"
+  pull_request:
+    branches: [main]
+    paths:
+      - "roles/basic_config/**"
+      - "roles/docker/**"
+      - "roles/traefik/**"
+      - "roles/authentik/**"
+      - "roles/opencpu/**"
+      - "tests/compound-full-stack/**"
+  schedule:
+    - cron: "0 6 1 * *"
+  workflow_dispatch:
+
+jobs:
+  molecule:
+    name: Molecule
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.12"
+
+      - name: Install dependencies
+        run: |
+          pip install ansible-core molecule molecule-plugins[docker] docker
+          ansible-galaxy collection install -r requirements.yml
+
+      - name: Run Molecule tests
+        run: molecule test
+        working-directory: tests/compound-full-stack
+        env:
+          PY_COLORS: "1"
+          ANSIBLE_FORCE_COLOR: "1"

.github/workflows/compound-vpn-stack.yml

@@ -0,0 +1,46 @@
+---
+name: "Compound - VPN Stack"
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - "roles/docker/**"
+      - "roles/authentik/**"
+      - "roles/headscale/**"
+      - "tests/compound-docker-auth-headscale/**"
+  pull_request:
+    branches: [main]
+    paths:
+      - "roles/docker/**"
+      - "roles/authentik/**"
+      - "roles/headscale/**"
+      - "tests/compound-docker-auth-headscale/**"
+  schedule:
+    - cron: "0 6 1 * *"
+  workflow_dispatch:
+
+jobs:
+  molecule:
+    name: Molecule
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.12"
+
+      - name: Install dependencies
+        run: |
+          pip install ansible-core molecule molecule-plugins[docker] docker
+          ansible-galaxy collection install -r requirements.yml
+
+      - name: Run Molecule tests
+        run: molecule test
+        working-directory: tests/compound-docker-auth-headscale
+        env:
+          PY_COLORS: "1"
+          ANSIBLE_FORCE_COLOR: "1"

.github/workflows/molecule-authentik.yml

@@ -0,0 +1,40 @@
+---
+name: "Molecule - authentik"
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - "roles/authentik/**"
+  pull_request:
+    branches: [main]
+    paths:
+      - "roles/authentik/**"
+  schedule:
+    - cron: "0 6 1 * *"
+  workflow_dispatch:
+
+jobs:
+  molecule:
+    name: Molecule
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.12"
+
+      - name: Install dependencies
+        run: |
+          pip install ansible-core molecule molecule-plugins[docker] docker
+          ansible-galaxy collection install -r requirements.yml
+
+      - name: Run Molecule tests
+        run: molecule test
+        working-directory: roles/authentik
+        env:
+          PY_COLORS: "1"
+          ANSIBLE_FORCE_COLOR: "1"

.github/workflows/molecule-basic_config.yml

@@ -0,0 +1,40 @@
+---
+name: "Molecule - basic_config"
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - "roles/basic_config/**"
+  pull_request:
+    branches: [main]
+    paths:
+      - "roles/basic_config/**"
+  schedule:
+    - cron: "0 6 1 * *"
+  workflow_dispatch:
+
+jobs:
+  molecule:
+    name: Molecule
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.12"
+
+      - name: Install dependencies
+        run: |
+          pip install ansible-core molecule molecule-plugins[docker] docker
+          ansible-galaxy collection install -r requirements.yml
+
+      - name: Run Molecule tests
+        run: molecule test
+        working-directory: roles/basic_config
+        env:
+          PY_COLORS: "1"
+          ANSIBLE_FORCE_COLOR: "1"

.github/workflows/molecule-celerySetup.yml

@@ -0,0 +1,40 @@
+---
+name: "Molecule - celerySetup"
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - "roles/celerySetup/**"
+  pull_request:
+    branches: [main]
+    paths:
+      - "roles/celerySetup/**"
+  schedule:
+    - cron: "0 6 1 * *"
+  workflow_dispatch:
+
+jobs:
+  molecule:
+    name: Molecule
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.12"
+
+      - name: Install dependencies
+        run: |
+          pip install ansible-core molecule molecule-plugins[docker] docker
+          ansible-galaxy collection install -r requirements.yml
+
+      - name: Run Molecule tests
+        run: molecule test
+        working-directory: roles/celerySetup
+        env:
+          PY_COLORS: "1"
+          ANSIBLE_FORCE_COLOR: "1"

.github/workflows/molecule-certbot.yml

@@ -0,0 +1,40 @@
+---
+name: "Molecule - certbot"
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - "roles/certbot/**"
+  pull_request:
+    branches: [main]
+    paths:
+      - "roles/certbot/**"
+  schedule:
+    - cron: "0 6 1 * *"
+  workflow_dispatch:
+
+jobs:
+  molecule:
+    name: Molecule
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.12"
+
+      - name: Install dependencies
+        run: |
+          pip install ansible-core molecule molecule-plugins[docker] docker
+          ansible-galaxy collection install -r requirements.yml
+
+      - name: Run Molecule tests
+        run: molecule test
+        working-directory: roles/certbot
+        env:
+          PY_COLORS: "1"
+          ANSIBLE_FORCE_COLOR: "1"