--- # ============================================================================= # Group Variables - All Hosts # ============================================================================= # # Maps vault secrets to role variables and sets common overrides. # Vault variables (prefixed with vault_) are stored encrypted in vault.yml. # # HOW TO USE: # 1. Create the vault: ansible-vault create group_vars/all/vault.yml # 2. Add your secrets to the vault (see vault.yml.example) # 3. The mappings below will reference those vault variables # # See: https://docs.ansible.com/ansible/latest/playbook_guide/playbooks_variables.html # ============================================================================= # ============================================================================= # Gitea Server Configuration # ============================================================================= # Used by: roles/gitea # Domain configuration gitea_domain: "{{ vault_gitea_domain }}" gitea_ssh_domain: "{{ gitea_domain }}" gitea_root_url: "https://{{ gitea_domain }}" # Database credentials gitea_db_password: "{{ vault_gitea_db_password }}" # ACME/TLS configuration gitea_acme_email: "{{ vault_gitea_acme_email | default('') }}" # ============================================================================= # Act Runner Configuration # ============================================================================= # Used by: roles/act_runner # Gitea instance URL (e.g., "https://git.example.com") gitea_instance_url: "{{ vault_gitea_instance_url }}" # Registration token from Gitea admin panel # Get it from: {{ gitea_instance_url }}/-/admin/actions/runners act_runner_token: "{{ vault_act_runner_token }}" # Package registry hostname (usually same as Gitea host, without https://) gitea_registry: "{{ vault_gitea_registry }}" # Service account username for package registry authentication gitea_actions_user: "{{ vault_gitea_actions_user }}" # Personal Access Token (PAT) for package registry # Create at: {{ gitea_instance_url }}/user/settings/applications gitea_packages_token: "{{ vault_gitea_packages_token }}"