add newsfeed.fyi

group_vars/newsfeed.yml

@@ -0,0 +1,45 @@
+---
+container_user: containers
+container_uid: 1001
+container_group: "{{ container_user }}"
+container_gid: "{{ container_uid }}"
+
+backups: containers
+
+global_env_vars:
+  - PUID={{ container_uid }}
+  - PGID={{ container_gid }}
+  - TZ=America/Los_Angeles
+
+firewall_ports:
+  - 80/tcp
+  - 443/tcp
+
+container_networks:
+  - name: newsfeed
+    driver: bridge
+    subnet: 172.21.10.0/24
+    ip_range: 172.21.10.0/24
+    gateway: 172.21.10.1
+
+containers:
+  - name: swag
+    active: true
+    image: linuxserver/swag
+    cap_add:
+      - NET_ADMIN # required for fail2ban to modify iptables
+    ports:
+      - 80:80
+      - 443:443
+    volumes:
+      - /opt/swag:/config
+    restart: unless-stopped
+    include_global_env_vars: true
+    environment:
+      - URL=newsfeed.fyi
+      - VALIDATION=http
+      - SUBDOMAINS=,
+      - EMAIL=certbot@blainestory.com
+    mem_limit: 100m
+    networks:
+      - newsfeed

hosts.ini

@@ -36,6 +36,9 @@ warchildstory.com
 [shareunderware]
 shareunderware.com
 
+[newsfeed]
+newsfeed.fyi
+
 [k8s]
 worker1
 worker2

plays/nodes/newsfeed.yml

@@ -0,0 +1,12 @@
+---
+- hosts: newsfeed
+  gather_facts: true
+  become: true
+  vars_files:
+    - "{{ inventory_dir }}/vars/vault.yaml"
+  roles:
+    - linode
+    - dnf-automatic
+    - docker
+    - statusservices
+    - cloud-backups