Add(module): add girasol module

Add(module): add amap module Add(module): add common lib and services Add(module): add base structure for keycloak Add(module): add base structure for rocket Add(module): add n8n and windmill modules Add(docker): add install docker script in common module Add(template): add root for aldon.fr and mathieu.wiki in traefik.service template
2026-04-21 16:52:41 +02:00
parent 905cc8b43d
commit a56911b896
65 changed files with 1893 additions and 23 deletions
--- a/modules/apps/gateway/cloud-init/service.yaml
+++ b/modules/apps/gateway/cloud-init/service.yaml
@@ -24,6 +24,9 @@ packages:
  - curl
  - nginx

+mounts:
+  - [ "192.168.1.12:/main/backups", "/backups", "nfs", "defaults,_netdev,x-systemd.requires=network-online.target", "0", "0" ]
+
 write_files:
  - path: /opt/environment/.env
    permissions: "0644"
@@ -33,6 +36,14 @@ write_files:
    permissions: "0755"
    content: |
      ${install-traefik-script}
+  - path: /opt/gateway/install-docker.sh
+    permissions: "0755"
+    content: |
+      ${install-docker-script}
+  - path: /opt/gateway/install-crowdsec.sh
+    permissions: "0755"
+    content: |
+      ${install-crowdsec-script}
  - path: /etc/systemd/system/traefik.service
    permissions: "0755"
    content: |
@@ -40,15 +51,47 @@ write_files:
  - path: /usr/share/nginx/error-pages/502.html
    permissions: "0644"
    content: |
-      {nginx-error-502}
+      ${nginx-error-502}
  - path: /etc/nginx/sites-available/default
    permissions: "0644"
    content: |
-      {nginx-error-configuration}
+      ${nginx-error-configuration}
+  - path: /usr/local/bin/restore-backup.sh
+    permissions: "0755"
+    content: |
+      ${restore-backup-script}
+  - path: /etc/systemd/system/restore-backup.service
+    permissions: "0644"
+    content: |
+      ${restore-backup-service}
+  - path: /usr/local/bin/backup.sh
+    permissions: "0755"
+    content: | 
+      ${create-backup-script}
+  - path: /etc/systemd/system/create-backup.timer
+    permissions: "0644"
+    content: |
+      ${create-backup-timer}
+  - path: /etc/systemd/system/create-backup.service
+    permissions: "0644"
+    content: |
+      ${create-backup-service}
+
+bootcmd:
+  - hostnamectl set-hostname ${hostname}
+
 runcmd:
+  # Backup setup
+  - mkdir -p /backups
+  - mount -t nfs ${proxmox_host_ip}:/main/backups /backups
+  - systemctl enable --now create-backup.timer
+  # Crowdsec / Terraform setup
+  - /opt/gateway/install-docker.sh
+  - /opt/gateway/install-crowdsec.sh
  - /opt/gateway/install-traefik.sh
  - ln -s /etc/nginx/sites-available/default /etc/nginx/sites-enabled
  - systemctl start nginx.service
+  - systemctl start restore-backup

 final_message: |
  Base system ready for ${hostname}