infra/pretalx.yml

---

- hosts: pretalx
  become: true
  tasks:
    - name: Basic setup
      include_role: name=common
    - name: Update apt cache
      apt:
        update_cache: true
    - name: Install dependencies
      package:
        name: 
          - acl
          - cron
          - nginx
          - python3-pip
        state: latest
    - name: Remove nginx default site
      file:
        name: "/etc/nginx/sites-enabled/default"
        state: absent
    - name: Prepare Let's Encrypt configuration
      file:
        name: "/etc/nginx/snippets/letsencrypt-cfp.pycon.fr.conf"
        state: touch
- hosts: pretalx
  become: true
  roles:
    - anxs.postgresql
    - pretalx
    - nginx
  vars:
    nginx_owner: pretalx
    nginx_domain: cfp.pycon.fr
    nginx_certificates: [cfp.pycon.fr]
    pretalx_domain: "cfp.pycon.fr"
    pretalx_git_version: "v2024.1.0"
    pretalx_admin_mail: "president@afpy.org"
    pretalx_mail_from: "noreply@afpy.org"
    pretalx_mail_host: "mail.gandi.net"
    pretalx_mail_port: 465
    pretalx_mail_tls: "False"
    pretalx_mail_ssl: "True"
    pretalx_mail_user: "cfp@pycon.fr"
    pretalx_mail_password: !vault |
          $ANSIBLE_VAULT;1.1;AES256
          66393662376362313833356630353764323934666561316337356531663761343239373663643137
          3939306166383561396136303637653961613830636639310a396237393764396566313436663062
          35326135326334613363353633623034613063326239663232663033646335363930333763326131
          3731396233613339330a663330616134633937366136613932393361363434616433663765373063
          30353439616663633734656230353736656633653532373665653237656263376536
    postgresql_databases:
      - name: "{{ pretalx_database_name }}"
        owner: "{{ pretalx_database_user }}"
    postgresql_users:
      - name: "{{ pretalx_database_user }}"
        pass: "{{ pretalx_database_password }}"
    postgresql_locale: "C.UTF-8"
    postgresql_ctype: "C.UTF-8"
    pretalx_database_password: !vault |
          $ANSIBLE_VAULT;1.1;AES256
          31336432383663353535613030653335333439633131663464623062386261626562613736333863
          3334633665363363663536663532613066396434623265610a613031396434393837616461616265
          38653530333030323636633235326366313632663939363234643736376164333137643930326538
          3232626539333630390a663137393538333861313964323836646664363338373638633835633835
          36303735303665643231666133333839313865376466616564373361653262353564303238343230
          3130343830336162356531303862363963613336653630633830
    pretalx_secret_key: !vault |
          $ANSIBLE_VAULT;1.1;AES256
          66343230623535386434396234623361366436393732626139356539336261636437373130303937
          3465346362306435303964653364373137333664646363310a373639616539343561616261663863
          66633438376366336265653965336264636562376538386430326265633863616238623338613735
          3131663931386236630a366239653864323663323435623630376234653239373832623033613036
          38616435383036623065333832383437326438613932363739636534383432306562306164643364
          6662346530626638613532623962306662303232626266643861
    pretalx_redis: "redis://127.0.0.1:6379/0"
    pretalx_nginx: true
    pretalx_nginx_path: "/etc/nginx/sites-enabled/"
    pretalx_nginx_force_https: true
    pretalx_nginx_http_only: false
    pretalx_admin_email: "{{ vault_pretalx_admin_email }}"
    pretalx_admin_password: "{{ vault_pretalx_admin_password }}"
    pretalx_orga_name: "AFPy"
    pretalx_orga_slug: "afpy"