gnunux/dataset
1
0
Fork 0
forked from stove/dataset
Code Issues Pull requests Projects Releases Wiki Activity

docs for application services

Browse source
This commit is contained in:
egarette@silique.fr 2022-12-24 13:01:51 +01:00
parent 1de8353ac5
commit 8b39e07aa4
124 changed files with 3005 additions and 1102 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
README.md
View file

@ -1,2 +1,3 @@
# dataset # dataset
[This dataset application services](seed/README.md)

67
seed/README.md Normal file
View file

@ -0,0 +1,67 @@
# Application services
- [apache](apache/README.md): Apache as web server
- base:
- [base](base/README.md): Base of all application services
- [base-debian](base-debian/README.md): Base information of a Debian server
- [base-debian-bullseye](base-debian-bullseye/README.md): Base information of a Debian Bulleye server
- [base-fedora](base-fedora/README.md): Base information of a Fedora
- [base-fedora-35](base-fedora-35/README.md): Base information of a Fedora 35
- [base-fedora-36](base-fedora-36/README.md): Base information of a Fedora 36
- [base-fedora-37](base-fedora-37/README.md): Base information of a Fedora 37
- [base-machine](base-machine/README.md): Base information for a machine
- dns:
- [dns-external](dns-external/README.md): DNS client with resolution on all zones (especially outside)
- [dns-local](dns-local/README.md): DNS client with access to local zones
- [dotclear](dotclear/README.md): Dotclear an open-source web publishing software
- [dovecot](dovecot/README.md): Postfix and Dovecot as mail servers (Submission and IMAP)
- [galette](galette/README.md): Galette, a membership management web application towards non profit organizations
- [gitea](gitea/README.md): Gitea, a community managed lightweight code hosting solution
- [host-systemd-machined](host-systemd-machined/README.md): Host with machine started in Systemd Machined environment
- [imap-client](imap-client/README.md): Application service needs interact with an IMAP server
- ldap:
- [ldap-client](ldap-client/README.md): Application service needs interact with a LDAP server
- [ldap-client-debian](ldap-client-debian/README.md): LDAP client for Fedora
- [ldap-client-fedora](ldap-client-fedora/README.md): LDAP client for Fedora
- [lemonldap](lemonldap/README.md): LemonLDAP, a Web Single Sign On and Access Management
- [letsencrypt](letsencrypt/README.md): Let's encrypt, a nonprofit Certificate Authority providing TLS certificates
- [mailman](mailman/README.md): GNU Mailman, managing electronic mail discussion and e-newsletter lists
- mariadb:
- [mariadb](mariadb/README.md): MariaDB, a relational database
- [mariadb-client](mariadb-client/README.md): Application service needs interact with a MariaDB server
- [nextcloud](nextcloud/README.md): Nextcloud, Online collaboration platform
- nginx:
- [nginx-common](nginx-common/README.md): Nginx common configuration
- [nginx-https](nginx-https/README.md): Nginx as HTTPS web site
- [nginx-reverse-proxy](nginx-reverse-proxy/README.md): Nginx as reverse proxy
- [nginx-static](nginx-static/README.md): Nginx as static web site
- [nsd](nsd/README.md): NSD, an authoritative DNS name server
- [oauth2-client](oauth2-client/README.md): Application service needs interact with a Oauth2 server
- [odoo](odoo/README.md): Odoo, an ERP and CRM
- [openldap](openldap/README.md): OpenLDAP, a LDAP server
- [peertube](peertube/README.md): Peertube, a federated (ActivityPub) video streaming platform
- php:
- [php](php/README.md): PHP, a popular general-purpose scripting language
- [php-fpm](php-fpm/README.md): PHP FPM
- [piwigo](piwigo/README.md): Piwigo, a photo management software
- postfix:
- [postfix-lmtp-relay](postfix-lmtp-relay/README.md): Postfix, the mail server, as LMTP relay
- [postfix-relay](postfix-relay/README.md): Postfix, the mail server, as relay
- postgresql:
- [postgresql](postgresql/README.md): Postgresql, a database
- [postgresql-client](postgresql-client/README.md): Application service needs interact with a Postgresql server
- [provider-systemd-machined](provider-systemd-machined/README.md): Machine started in Systemd Machined environment
- redis:
- [redis](redis/README.md): Redis, an in-memory data structure store
- [redis-client](redis-client/README.md): Application service needs interact with a Redis server
- relay:
- [relay-lmtp-client](relay-lmtp-client/README.md): Application service needs interact with a Postfix server with LMTP protocol
- [relay-mail-client](relay-mail-client/README.md): Client SMTP
- [reverse-proxy-client](reverse-proxy-client/README.md): Application service needs interact with a a reverse proxy server
- [roundcube](roundcube/README.md): Roundcube, a webmail
- [sensmotdire](sensmotdire/README.md): Sens Mot Dire, a french conjugaison service
- [speedtest-rs](speedtest-rs/README.md): Speedtest-rs, a very lightweight Speedtest
- [systemd](systemd/README.md): Systemd, a system and service manager
- [unbound](unbound/README.md): Unbound, a validating, recursive, caching DNS resolver
- [vaultwarden](vaultwarden/README.md): Vaultwarden, a password manager
- [znc](znc/README.md): ZNC, a bouncer IRC

39
seed/apache/README.md Normal file
View file

@ -0,0 +1,39 @@
---
gitea: none
include_toc: true
---
# apache
[All applications services for this dataset.](../README.md)
## Description
Apache as web server.
[For more informations](https://httpd.apache.org/)
## Dependances
- [reverse-proxy-client](../reverse-proxy-client/README.md)
## Variables
### Général (*general*)
#### Apache (*general.apache*)
Paramètrage avancé du serveur web Apache
| Description | Help | Type | Values |
|-----------------------------------------------------------------------------------------------------------------------------------|-------------------|-------------------------------------------------------------------------------------------------------------------------|----------|
| **Temps d'attente des entrées/sorties avant de considérer qu'une requête a échoué** (*[apache_timeout](dictionaries/20_web.xml)*) | Temps en secondes | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 300 |
| **Autoriser les connexions persistantes** (*[apache_keepalive](dictionaries/20_web.xml)*) | | [boolean](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | True |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Used by
- [nextcloud](../nextcloud/README.md)

3
seed/apache/applicationservice.yml
View file

@ -1,4 +1,5 @@
format: '0.1' format: '0.1'
description: Apache configuration description: Apache as web server
website: https://httpd.apache.org/
depends: depends:
- reverse-proxy-client - reverse-proxy-client

28
seed/base-debian-bullseye/README.md Normal file
View file

@ -0,0 +1,28 @@
---
gitea: none
include_toc: true
---
# base-debian-bullseye
[All applications services for this dataset.](../README.md)
## Description
Base information of a Debian Bulleye server.
[For more informations](https://www.debian.org/)
## Dependances
- [base-debian](../base-debian/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Used by
- [odoo](../odoo/README.md)
- [mailman](../mailman/README.md)
- [lemonldap](../lemonldap/README.md)

3
seed/base-debian-bullseye/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Information de base d'un serveur Debian Buster description: Base information of a Debian Bulleye server
website: https://www.debian.org/
depends: depends:
- base-debian - base-debian
distribution: true distribution: true

26
seed/base-debian/README.md Normal file
View file

@ -0,0 +1,26 @@
---
gitea: none
include_toc: true
---
# base-debian
[All applications services for this dataset.](../README.md)
## Description
Base information of a Debian server.
[For more informations](https://www.debian.org/)
## Dependances
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Used by
- [ldap-client-debian](../ldap-client-debian/README.md)
- [base-debian-bullseye](../base-debian-bullseye/README.md)

4
seed/base-debian/applicationservice.yml
View file

@ -1,5 +1,5 @@
format: '0.1' format: '0.1'
description: Information de base d'un serveur Debian description: Base information of a Debian server
website: https://www.debian.org/
depends: depends:
- base-machine
- systemd - systemd

26
seed/base-fedora-35/README.md Normal file
View file

@ -0,0 +1,26 @@
---
gitea: none
include_toc: true
---
# base-fedora-35
[All applications services for this dataset.](../README.md)
## Description
Base information of a Fedora 35.
[For more informations](https://getfedora.org/)
## Dependances
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Used by
- [postfix-relay](../postfix-relay/README.md)

3
seed/base-fedora-35/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Information de base d'un serveur fedora version 35 description: Base information of a Fedora 35
website: https://getfedora.org/
depends: depends:
- base-fedora - base-fedora
distribution: true distribution: true

45
seed/base-fedora-36/README.md Normal file
View file

@ -0,0 +1,45 @@
---
gitea: none
include_toc: true
---
# base-fedora-36
[All applications services for this dataset.](../README.md)
## Description
Base information of a Fedora 36.
[For more informations](https://getfedora.org/)
## Dependances
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Used by
- [galette](../galette/README.md)
- [nginx-static](../nginx-static/README.md)
- [postgresql](../postgresql/README.md)
- [peertube](../peertube/README.md)
- [piwigo](../piwigo/README.md)
- [dovecot](../dovecot/README.md)
- [unbound](../unbound/README.md)
- [redis](../redis/README.md)
- [nsd](../nsd/README.md)
- [dotclear](../dotclear/README.md)
- [speedtest-rs](../speedtest-rs/README.md)
- [nginx-reverse-proxy](../nginx-reverse-proxy/README.md)
- [sensmotdire](../sensmotdire/README.md)
- [roundcube](../roundcube/README.md)
- [znc](../znc/README.md)
- [vaultwarden](../vaultwarden/README.md)
- [mariadb](../mariadb/README.md)
- [nextcloud](../nextcloud/README.md)
- [openldap](../openldap/README.md)
- [gitea](../gitea/README.md)

3
seed/base-fedora-36/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Information de base d'un serveur fedora version 36 description: Base information of a Fedora 36
website: https://getfedora.org/
depends: depends:
- base-fedora - base-fedora
distribution: true distribution: true

22
seed/base-fedora-37/README.md Normal file
View file

@ -0,0 +1,22 @@
---
gitea: none
include_toc: true
---
# base-fedora-37
[All applications services for this dataset.](../README.md)
## Description
Base information of a Fedora 37.
[For more informations](https://getfedora.org/)
## Dependances
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)

6
seed/base-fedora-37/applicationservice.yml Normal file
View file

@ -0,0 +1,6 @@
format: '0.1'
description: Base information of a Fedora 37
website: https://getfedora.org/
depends:
- base-fedora
distribution: true

30
seed/base-fedora/README.md
View file

@ -1 +1,29 @@
Inspired by: https://pagure.io/fedora-kickstarts/tree/main ---
gitea: none
include_toc: true
---
# base-fedora
[All applications services for this dataset.](../README.md)
## Description
Base information of a Fedora.
[For more informations](https://getfedora.org/)
## Dependances
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Used by
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora-35](../base-fedora-35/README.md)
- [letsencrypt](../letsencrypt/README.md)
- [ldap-client-fedora](../ldap-client-fedora/README.md)
- [base-fedora-37](../base-fedora-37/README.md)

4
seed/base-fedora/applicationservice.yml
View file

@ -1,5 +1,5 @@
format: '0.1' format: '0.1'
description: Information de base d'un serveur Fedora description: Base information of a Fedora
website: https://getfedora.org/
depends: depends:
- base-machine
- systemd - systemd

1
seed/base-fedora/infos.md Normal file
View file

@ -0,0 +1 @@
Inspired by: https://pagure.io/fedora-kickstarts/tree/main

33
seed/base-machine/README.md Normal file
View file

@ -0,0 +1,33 @@
---
gitea: none
include_toc: true
---
# base-machine
[All applications services for this dataset.](../README.md)
## Description
Base information for a machine.
## Dependances
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Variables
### Machine (*machine*)
| Description | Type |
|-----------------------------------------------------------------|------------------------------------------------------------------------------------------------------------------------|
| Data disk size (*[data_disk_size](extras/machine/00_base.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Used by
- [systemd](../systemd/README.md)

17
seed/base/README.md Normal file
View file

@ -0,0 +1,17 @@
---
gitea: none
include_toc: true
---
# base
[All applications services for this dataset.](../README.md)
## Description
Base of all application services.
## Used by
- [host-systemd-machined](../host-systemd-machined/README.md)
- [base-machine](../base-machine/README.md)

2
seed/base/applicationservice.yml
View file

@ -1,2 +1,2 @@
format: '0.1' format: '0.1'
description: Base description: Base of all application services

38
seed/dns-external/README.md Normal file
View file

@ -0,0 +1,38 @@
---
gitea: none
include_toc: true
---
# dns-external
[All applications services for this dataset.](../README.md)
## Description
DNS client with resolution on all zones (especially outside).
## Variables
### Général (*general*)
#### network (*general.network*)
| Description | Values | Supplier |
|-------------------------------------------------------------|----------|-------------|
| *[**dns_is_only_local**](dictionaries/14-dns-external.xml)* | False | |
| *[dns_client_address](dictionaries/14-dns-external.xml)* | | ExternalDNS |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Used by
- [postfix-relay](../postfix-relay/README.md)
- [peertube](../peertube/README.md)
- [unbound](../unbound/README.md)
- [znc](../znc/README.md)
## Linked to
- [unbound](../unbound/README.md)

2
seed/dns-external/applicationservice.yml
View file

@ -1,2 +1,2 @@
format: '0.1' format: '0.1'
description: Configuration du client DNS externe description: DNS client with resolution on all zones (especially outside)

20
seed/dns-local/README.md Normal file
View file

@ -0,0 +1,20 @@
---
gitea: none
include_toc: true
---
# dns-local
[All applications services for this dataset.](../README.md)
## Description
DNS client with access to local zones.
## Used by
- [base-machine](../base-machine/README.md)
## Linked to
- [nsd](../nsd/README.md)

2
seed/dns-local/applicationservice.yml
View file

@ -1,2 +1,2 @@
format: '0.1' format: '0.1'
description: Configuration du client DNS local description: DNS client with access to local zones

43
seed/dotclear/README.md Normal file
View file

@ -0,0 +1,43 @@
---
gitea: none
include_toc: true
---
# dotclear
[All applications services for this dataset.](../README.md)
## Description
Dotclear an open-source web publishing software.
[For more informations](https://dotclear.org)
## Dependances
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [postgresql-client](../postgresql-client/README.md)
- [nginx-https](../nginx-https/README.md)
- [nginx-common](../nginx-common/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
- [php-fpm](../php-fpm/README.md)
- [php](../php/README.md)
## Variables
### Général (*general*)
#### Dotclear (*general.dotclear*)
| Description | Type |
|----------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------|
| **Adresse courriel de l'administrateur** (*[admin_mail_from](dictionaries/40_dotclear.xml)*) | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
- [+]: variable is multiple
- **bold**: variable is mandatory

8
seed/dotclear/applicationservice.yml Normal file
View file

@ -0,0 +1,8 @@
format: '0.1'
description: Dotclear an open-source web publishing software
website: https://dotclear.org
depends:
- base-fedora-36
- postgresql-client
- nginx-https
- php-fpm

95
seed/dovecot/README.md Normal file
View file

@ -0,0 +1,95 @@
---
gitea: none
include_toc: true
---
# dovecot
[All applications services for this dataset.](../README.md)
## Description
Postfix and Dovecot as mail servers (Submission and IMAP).
[For more informations](https://www.dovecot.org/)
## Dependances
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [relay-lmtp-client](../relay-lmtp-client/README.md)
- [relay-mail-client](../relay-mail-client/README.md)
- [ldap-client-fedora](../ldap-client-fedora/README.md)
- [ldap-client](../ldap-client/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [oauth2-client](../oauth2-client/README.md)
- [nginx-https](../nginx-https/README.md)
- [nginx-common](../nginx-common/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
## Variables
### Général (*general*)
#### network (*general.network*)
| Description | Values |
|---------------------------------------------------------|--------------|
| *[**incoming_ports**](dictionaries/26_dovecot.xml)* [+] | 587<br />993 |
#### annuaire (*general.annuaire*)
##### client (*general.annuaire.client*)
| Description | Values |
|----------------------------------------------------------|----------|
| *[**ldapclient_family**](dictionaries/26_dovecot.xml)* | all |
| *[**ldap_key_file_owner**](dictionaries/26_dovecot.xml)* | dovecot |
| *[**ldap_key_file_group**](dictionaries/26_dovecot.xml)* | postfix |
#### Mail domain (*general.mail*)
This a family is a leadership.
| Description | Type | Supplier |
|---------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|---------------|
| **Domaine de courriel géré localement** (*[mail_domains](dictionaries/26_dovecot.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | LMTP:criteria |
| *[**imap_domainname**](dictionaries/26_dovecot.xml)* | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
| *[**submission_domainname**](dictionaries/26_dovecot.xml)* | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
#### IMAP mail server (*general.dovecot*)
| Description | Type | Provider |
|----------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|------------|
| **Adresse interne du serveur IMAP** (*[imap_internal_address](dictionaries/26_dovecot.xml)*) | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | IMAP |
#### revprox (*general.revprox*)
##### revprox_client (*general.revprox.revprox_client*)
| Description |
|----------------------------------------------------------------------|
| *[revprox_client_external_domainnames](dictionaries/26_dovecot.xml)* |
| *[revprox_client_web_address](dictionaries/26_dovecot.xml)* |
#### nginx (*general.nginx*)
| Description | Values |
|-------------------------------------------------|---------------|
| *[**nginx_root**](dictionaries/26_dovecot.xml)* | /var/www/html |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Linked to
- [imap-client](../imap-client/README.md)

3
seed/dovecot/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Postfix et Dovecot description: Postfix and Dovecot as mail servers (Submission and IMAP)
website: https://www.dovecot.org/
depends: depends:
- base-fedora-36 - base-fedora-36
- relay-lmtp-client - relay-lmtp-client

44
seed/galette/README.md Normal file
View file

@ -0,0 +1,44 @@
---
gitea: none
include_toc: true
---
# galette
[All applications services for this dataset.](../README.md)
## Description
Galette, a membership management web application towards non profit organizations.
[For more informations](https://galette.eu/)
## Dependances
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [mariadb-client](../mariadb-client/README.md)
- [nginx-https](../nginx-https/README.md)
- [nginx-common](../nginx-common/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
- [php-fpm](../php-fpm/README.md)
- [php](../php/README.md)
## Variables
### Machine (*machine*)
| Description | Values |
|-----------------------------------------------------|----------|
| *[**var_size**](extras/machine/20_sensmotdire.xml)* | 256 |
| *[**add_tmp**](extras/machine/20_sensmotdire.xml)* | False |
| *[**add_srv**](extras/machine/20_sensmotdire.xml)* | False |
| *[**add_swap**](extras/machine/20_sensmotdire.xml)* | False |
- [+]: variable is multiple
- **bold**: variable is mandatory

8
seed/galette/applicationservice.yml Normal file
View file

@ -0,0 +1,8 @@
format: '0.1'
description: Galette, a membership management web application towards non profit organizations
website: https://galette.eu/
depends:
- base-fedora-36
- mariadb-client
- nginx-https
- php-fpm

88
seed/gitea/README.md Normal file
View file

@ -0,0 +1,88 @@
---
gitea: none
include_toc: true
---
# gitea
[All applications services for this dataset.](../README.md)
## Description
Gitea, a community managed lightweight code hosting solution.
[For more informations](https://gitea.io/)
## Dependances
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [postgresql-client](../postgresql-client/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
- [relay-mail-client](../relay-mail-client/README.md)
- [redis-client](../redis-client/README.md)
- [oauth2-client](../oauth2-client/README.md)
## Variables
### Général (*general*)
#### network (*general.network*)
| Description | Values |
|---------------------------------------------------|----------|
| *[**incoming_ports**](dictionaries/31_gitea.xml)* | 2222 |
#### Redis (*general.redis*)
| Description | Values |
|-----------------------------------------------------------|----------|
| *[**redis_client_key_owner**](dictionaries/31_gitea.xml)* | gitea |
#### Gitea (*general.gitea*)
Git forge Gitea
| Description | Values | Type |
|-----------------------------------------------------------------------------------------------------------|----------------------------------|------------------------------------------------------------------------------------------------------------------------|
| **Titre de la forge** (*[gitea_title](dictionaries/31_gitea.xml)*) | Gitea: Git avec une tasse de thé | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| **Les courriels sont envoyés à partir de cet adresse** (*[gitea_mail_sender](dictionaries/31_gitea.xml)*) | | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
#### revprox (*general.revprox*)
| Description | Values |
|--------------------------------------------------------------|----------|
| *[**revprox_client_port**](dictionaries/31_gitea.xml)* | 3000 |
| *[**revprox_client_cert_owner**](dictionaries/31_gitea.xml)* | gitea |
| *[**revprox_client_cert_group**](dictionaries/31_gitea.xml)* | gitea |
##### revprox_client (*general.revprox.revprox_client*)
| Description | Values |
|------------------------------------------------------------------|----------|
| *[**revprox_client_local_location**](dictionaries/31_gitea.xml)* | / |
#### oauth2_client (*general.oauth2_client*)
| Description | Values |
|-----------------------------------------------------------------------|----------------------|
| *[**oauth2_is_client_application**](dictionaries/31_gitea.xml)* | True |
| *[**oauth2_client_name**](dictionaries/31_gitea.xml)* | Forge |
| *[**oauth2_client_description**](dictionaries/31_gitea.xml)* | Forge logiciel Gitea |
| *[**oauth2_client_category**](dictionaries/31_gitea.xml)* | Développement |
| *[**oauth2_client_logo**](dictionaries/31_gitea.xml)* | silique_note.png |
| *[**oauth2_client_token_signature_algo**](dictionaries/31_gitea.xml)* | RS256 |
##### external (*general.oauth2_client.external*)
| Description |
|-------------------------------------------------------|
| *[oauth2_client_external](dictionaries/31_gitea.xml)* |
- [+]: variable is multiple
- **bold**: variable is mandatory

3
seed/gitea/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Gitea description: Gitea, a community managed lightweight code hosting solution
website: https://gitea.io/
depends: depends:
- base-fedora-36 - base-fedora-36
- postgresql-client - postgresql-client

59
seed/host-systemd-machined/README.md Normal file
View file

@ -0,0 +1,59 @@
---
gitea: none
include_toc: true
---
# host-systemd-machined
[All applications services for this dataset.](../README.md)
## Description
Host with machine started in Systemd Machined environment.
[For more informations](https://www.freedesktop.org/wiki/Software/systemd/machined/)
## Dependances
- [base](../base/README.md)
## Variables
### Général (*general*)
| Description | Type | Provider | Values |
|-----------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------|-------------------------|----------|
| **Nom du répertoire comprenant les descriptions d'installation** (*[host_install_dir](dictionaries/21-machined.xml)*) | [filename](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | global:host_install_dir | |
| **Ajustement de la mémoire virtuelle** (*[vm_swappiness](dictionaries/21-machined.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | 60 |
#### network (*general.network*)
| Description |
|---------------------------------------------------------------------------------------|
| **Nom de l'interface de sortie** (*[output_interface](dictionaries/21-machined.xml)*) |
##### interfaces (*general.network.interfaces*)
This a family is a leadership.
| Description | Type | Choices |
|-----------------------------------------------------------------------------------------------|------------------------------------------------------------------------------------------------------------------------|----------------|
| **Nom de l'interface** (*[interface_names](dictionaries/21-machined.xml)*) [+] | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
| **Type de la carte** (*[interface_type](dictionaries/21-machined.xml)*) | [choice](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | dhcp<br />ipv4 |
| **IP au format CIDR de l'interface** (*[interface_ip](dictionaries/21-machined.xml)*) | [cidr](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
| **IP de la route par défaut** (*[interface_gateway](dictionaries/21-machined.xml)*) | [ip](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
| **IP des serveurs DNS** (*[interface_domain_name_servers](dictionaries/21-machined.xml)*) [+] | [ip](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
### Machined (*machined*)
| Description | Type | Provider |
|-----------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|------------|
| Machines started in this host (*[machines](extras/machined/00-machined.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | Host |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Linked to
- [provider-systemd-machined](../provider-systemd-machined/README.md)

3
seed/host-systemd-machined/applicationservice.yml
View file

@ -1,4 +1,5 @@
format: '0.1' format: '0.1'
description: Configure Systemd Machined description: Host with machine started in Systemd Machined environment
website: https://www.freedesktop.org/wiki/Software/systemd/machined/
depends: depends:
- base - base

34
seed/imap-client/README.md Normal file
View file

@ -0,0 +1,34 @@
---
gitea: none
include_toc: true
---
# imap-client
[All applications services for this dataset.](../README.md)
## Description
Application service needs interact with an IMAP server.
## Variables
### Général (*general*)
#### Client SMTP (*general.imap*)
| Description | Type | Supplier |
|----------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|------------|
| **Nom de domaine du serveur IMAP** (*[imap_address](dictionaries/21_imap_client.xml)*) | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | IMAP |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Used by
- [roundcube](../roundcube/README.md)
## Linked to
- [dovecot](../dovecot/README.md)

2
seed/imap-client/applicationservice.yml
View file

@ -1,2 +1,2 @@
format: '0.1' format: '0.1'
description: Client IMAP description: Application service needs interact with an IMAP server

26
seed/ldap-client-debian/README.md Normal file
View file

@ -0,0 +1,26 @@
---
gitea: none
include_toc: true
---
# ldap-client-debian
[All applications services for this dataset.](../README.md)
## Description
LDAP client for Fedora.
## Dependances
- [ldap-client](../ldap-client/README.md)
- [base-debian](../base-debian/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Used by
- [odoo](../odoo/README.md)
- [lemonldap](../lemonldap/README.md)

29
seed/ldap-client-fedora/README.md Normal file
View file

@ -0,0 +1,29 @@
---
gitea: none
include_toc: true
---
# ldap-client-fedora
[All applications services for this dataset.](../README.md)
## Description
LDAP client for Fedora.
## Dependances
- [ldap-client](../ldap-client/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Used by
- [piwigo](../piwigo/README.md)
- [dovecot](../dovecot/README.md)
- [roundcube](../roundcube/README.md)
- [nextcloud](../nextcloud/README.md)
- [openldap](../openldap/README.md)

47
seed/ldap-client/README.md Normal file
View file

@ -0,0 +1,47 @@
---
gitea: none
include_toc: true
---
# ldap-client
[All applications services for this dataset.](../README.md)
## Description
Application service needs interact with a LDAP server.
## Variables
### Général (*general*)
#### Annuaire OpenLDAP (*general.annuaire*)
##### Serveur (*general.annuaire.server*)
| Description | Type | Supplier |
|----------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|------------|
| **Nom DNS du serveur LDAP** (*[ldap_server_address](dictionaries/21_ldap-client.xml)*) | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | LDAP |
##### Client (*general.annuaire.client*)
| Description | Type | Supplier |
|----------------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------|--------------|
| Nom de la famille LDAP (*[ldapclient_family](dictionaries/21_ldap-client.xml)*) | [unix_user](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | LDAP:family |
| **Base DN de l'annuaire** (*[ldapclient_base_dn](dictionaries/21_ldap-client.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | LDAP:base_dn |
| **Base DN de l'annuaire des utilisateurs** (*[ldapclient_search_dn](dictionaries/21_ldap-client.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
| **Base DN de l'annuaire des groupes** (*[ldapclient_group_dn](dictionaries/21_ldap-client.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
| **Base DN de l'annuaire des utilisateurs n'appartenant à une famille** (*[ldapclient_user_dn](dictionaries/21_ldap-client.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Used by
- [ldap-client-debian](../ldap-client-debian/README.md)
- [ldap-client-fedora](../ldap-client-fedora/README.md)
## Linked to
- [openldap](../openldap/README.md)

2
seed/ldap-client/applicationservice.yml
View file

@ -1,2 +1,2 @@
format: '0.1' format: '0.1'
description: LDAP client description: Application service needs interact with a LDAP server

87
seed/lemonldap/README.md Normal file
View file

@ -0,0 +1,87 @@
---
gitea: none
include_toc: true
---
# lemonldap
[All applications services for this dataset.](../README.md)
## Description
LemonLDAP, a Web Single Sign On and Access Management.
[For more informations](https://lemonldap-ng.org/)
## Dependances
- [base-debian-bullseye](../base-debian-bullseye/README.md)
- [base-debian](../base-debian/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [ldap-client-debian](../ldap-client-debian/README.md)
- [ldap-client](../ldap-client/README.md)
- [base-debian](../base-debian/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
- [relay-mail-client](../relay-mail-client/README.md)
- [nginx-common](../nginx-common/README.md)
## Variables
### Général (*general*)
#### nginx (*general.nginx*)
| Description | Values |
|---------------------------------------------------------------|----------|
| *[**nginx_default_https**](dictionaries/70_lemonldap_ng.xml)* | False |
#### LemonLDAP (*general.lemonldap*)
Configuration de la solution d'authentification unique LemonLDAP::NG
| Description | Type | Values |
|------------------------------------------------------------------------------------------------------------------------------------|------------------------------------------------------------------------------------------------------------------------|----------|
| **Nombre de processus dédié à LemonLdap (équivalent au nombre de processeurs)** (*[lemon_proc](dictionaries/70_lemonldap_ng.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 1 |
| **Courriel de l'administrateur** (*[lemon_mail_admin](dictionaries/70_lemonldap_ng.xml)*) | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
#### annuaire (*general.annuaire*)
##### client (*general.annuaire.client*)
| Description | Values |
|-------------------------------------------------------------|----------|
| *[**ldapclient_family**](dictionaries/70_lemonldap_ng.xml)* | all |
### Oauth2 (*oauth2*)
| Description | Type | Provider | Supplier |
|------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|------------|--------------|
| Remote clients needing to verify OAuth2 account (*[remotes](extras/oauth2/00_oauth2.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | OAuth2 | |
| Remote clients (*[clients](extras/oauth2/00_oauth2.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | OAuth2Client |
#### OAuth2 for (*oauth2.oauth2_*)
This a dynamic family generated from the variable "oauth2.remotes".
##### external_ (*oauth2.oauth2_.external_*)
This a family is a leadership.
| Description | Provider |
|--------------------------------------------------------------------|-----------------|
| Remote external for (*[hosts_](extras/oauth2/00_oauth2.xml)*) [+] | OAuth2:external |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Linked to
- [oauth2-client](../oauth2-client/README.md)

3
seed/lemonldap/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: LemonLDAP description: LemonLDAP, a Web Single Sign On and Access Management
website: https://lemonldap-ng.org/
depends: depends:
- base-debian-bullseye - base-debian-bullseye
- ldap-client-debian - ldap-client-debian

51
seed/letsencrypt/README.md
View file

@ -1,34 +1,41 @@
# Gestion Let's encrypt ---
gitea: none
include_toc: true
---
## Fonctionnement du service application # letsencrypt
Ce service gère le téléchargement et la mise à disposition des certificats Let's encrypt. [All applications services for this dataset.](../README.md)
Le certificat doit être disponible avant l'installation de la machine de destination. ## Description
C'est pourquoi ce le certificat est téléchargement grâce au défi DNS-1.
Il faut donc installer certbot + python3-certbot-dns-xxx (sur une Fedora), par exemple pour OVH "python3-certbot-dns-ovh". Let's encrypt, a nonprofit Certificate Authority providing TLS certificates.
Attention, en utilisant ce service vous acceptez les conditions d'utilisation de Let's Encrypt ! [For more informations](https://letsencrypt.org/)
## Utiliser Let's encrypt dans une machine ## Dependances
Dans applicationservice.yml ajouter la dépendance "letsencrypt". - [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
Sur la machine installer Certb ## Variables
## Configurer Let's encrypt ### Général (*general*)
``` #### Défi DNS pour Let's encrypt (*general.letsencrypt*)
rougail.letsencrypt.domain_names": ["nom de domaine"],
rougail.letsencrypt.authority_cn": {"0": "nom de domaine"},
rougail.letsencrypt.authority_name": {"0": "NomAutorité"},
rougail.letsencrypt.plugin_name": {"0": "ovh"},
rougail.letsencrypt.credential_filename": {"0": "/home/user/ovh.ini"},
rougail.letsencrypt.email": {"0": "gnunux@gnunux.info"}
```
## Exemple avec OVH This a family is a leadership.
Installation du greffon Certbot : https://certbot-dns-ovh.readthedocs.io/en/stable/ | Description | Type |
Création d'une clef d'API : https://eu.api.ovh.com/createToken/ |-----------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|
| Nom des domaines (*[domain_names](dictionaries/20-letsencrypt.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| **Nom du greffon de mise à jour DNS du domaine** (*[plugin_name](dictionaries/20-letsencrypt.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| **Nom du fichier de configuration du greffin** (*[credential_filename](dictionaries/20-letsencrypt.xml)*) | [filename](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| **Courriel associé au certificat** (*[email](dictionaries/20-letsencrypt.xml)*) | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
- [+]: variable is multiple
- **bold**: variable is mandatory

3
seed/letsencrypt/applicationservice.yml
View file

@ -1,4 +1,5 @@
format: '0.1' format: '0.1'
description: Let's encrypt description: Let's encrypt, a nonprofit Certificate Authority providing TLS certificates
website: https://letsencrypt.org/
depends: depends:
- base-fedora - base-fedora

34
seed/letsencrypt/infos.md Normal file
View file

@ -0,0 +1,34 @@
# Gestion Let's encrypt
## Fonctionnement du service application
Ce service gère le téléchargement et la mise à disposition des certificats Let's encrypt.
Le certificat doit être disponible avant l'installation de la machine de destination.
C'est pourquoi ce le certificat est téléchargement grâce au défi DNS-1.
Il faut donc installer certbot + python3-certbot-dns-xxx (sur une Fedora), par exemple pour OVH "python3-certbot-dns-ovh".
Attention, en utilisant ce service vous acceptez les conditions d'utilisation de Let's Encrypt !
## Utiliser Let's encrypt dans une machine
Dans applicationservice.yml ajouter la dépendance "letsencrypt".
Sur la machine installer Certb
## Configurer Let's encrypt
```
rougail.letsencrypt.domain_names": ["nom de domaine"],
rougail.letsencrypt.authority_cn": {"0": "nom de domaine"},
rougail.letsencrypt.authority_name": {"0": "NomAutorité"},
rougail.letsencrypt.plugin_name": {"0": "ovh"},
rougail.letsencrypt.credential_filename": {"0": "/home/user/ovh.ini"},
rougail.letsencrypt.email": {"0": "gnunux@gnunux.info"}
```
## Exemple avec OVH
Installation du greffon Certbot : https://certbot-dns-ovh.readthedocs.io/en/stable/
Création d'une clef d'API : https://eu.api.ovh.com/createToken/

93
seed/mailman/README.md Normal file
View file

@ -0,0 +1,93 @@
---
gitea: none
include_toc: true
---
# mailman
[All applications services for this dataset.](../README.md)
## Description
GNU Mailman, managing electronic mail discussion and e-newsletter lists.
[For more informations](https://www.list.org)
## Dependances
- [base-debian-bullseye](../base-debian-bullseye/README.md)
- [base-debian](../base-debian/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [postgresql-client](../postgresql-client/README.md)
- [relay-lmtp-client](../relay-lmtp-client/README.md)
- [relay-mail-client](../relay-mail-client/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
- [nginx-https](../nginx-https/README.md)
- [nginx-common](../nginx-common/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
- [oauth2-client](../oauth2-client/README.md)
## Variables
### Général (*general*)
#### Gestionnaire de liste (*general.mailman*)
| Description | Type |
|-------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|
| Courriel du gestionnaire de liste du site (*[mailman_mail_owner](dictionaries/31_mailman.xml)*) | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| **Nom de domaine des listes** (*[mailman_domains](dictionaries/31_mailman.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
#### oauth2_client (*general.oauth2_client*)
| Description | Values |
|-------------------------------------------------------------------------|-------------------------------|
| *[**oauth2_is_client_application**](dictionaries/31_mailman.xml)* | True |
| *[**oauth2_client_name**](dictionaries/31_mailman.xml)* | Liste de distribution |
| *[**oauth2_client_description**](dictionaries/31_mailman.xml)* | Liste de distribution Mailman |
| *[**oauth2_client_category**](dictionaries/31_mailman.xml)* | Développement |
| *[**oauth2_client_logo**](dictionaries/31_mailman.xml)* | silique_email.png |
| *[**oauth2_client_token_signature_algo**](dictionaries/31_mailman.xml)* | RS256 |
##### external (*general.oauth2_client.external*)
| Description |
|---------------------------------------------------------|
| *[oauth2_client_external](dictionaries/31_mailman.xml)* |
#### nginx (*general.nginx*)
| Description | Values |
|-------------------------------------------------|------------------------------|
| *[**nginx_root**](dictionaries/31_mailman.xml)* | /usr/share/webapps/postorius |
#### postgresql (*general.postgresql*)
| Description | Values |
|----------------------------------------------------------|----------|
| *[**pg_client_key_owner**](dictionaries/31_mailman.xml)* | list |
### Mailman (*mailman*)
#### Listes du domaine (*mailman.list_*)
This a dynamic family generated from the variable "general.mailman.mailman_domains".
| Description | Type |
|-------------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------|
| **Nom des listes** (*[name_](extras/mailman/20_mailman.xml)*) [+] | [unix_user](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
### Machine (*machine*)
| Description | Values |
|-------------------------------------------------|----------|
| *[**var_size**](extras/machine/20_mailman.xml)* | 256 |
| *[**add_tmp**](extras/machine/20_mailman.xml)* | False |
| *[**add_swap**](extras/machine/20_mailman.xml)* | False |
- [+]: variable is multiple
- **bold**: variable is mandatory

5
seed/mailman/applicationservice.yml
View file

@ -1,7 +1,8 @@
format: '0.1' format: '0.1'
description: Gestionnaire de liste de diffusion Mailman description: GNU Mailman, managing electronic mail discussion and e-newsletter lists
website: https://www.list.org
depends: depends:
- base-fedora-35 - base-debian-bullseye
- postgresql-client - postgresql-client
- relay-lmtp-client - relay-lmtp-client
- reverse-proxy-client - reverse-proxy-client

0
seed/mailman/templates/postorius-settings.py → seed/mailman/templates/mailman-web.py
View file

2
seed/mailman/templates/sysuser-mailman.conf
View file

@ -1,2 +0,0 @@
g mailman 41 -
u mailman 41:41 "Mailman, the mailing-list manager" /srv/mailman/lib /sbin/nologin

38
seed/mariadb-client/README.md Normal file
View file

@ -0,0 +1,38 @@
---
gitea: none
include_toc: true
---
# mariadb-client
[All applications services for this dataset.](../README.md)
## Description
Application service needs interact with a MariaDB server.
[For more informations](https://mariadb.org/)
## Variables
### Général (*general*)
#### MariaDB (*general.mariadb*)
| Description | Type | Supplier |
|-----------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|------------|
| **Nom de domaine du serveur MariaDB** (*[mariadb_client_server_domainname](dictionaries/20_mariadb.xml)*) | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | MariaDB |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Used by
- [galette](../galette/README.md)
- [piwigo](../piwigo/README.md)
- [sensmotdire](../sensmotdire/README.md)
## Linked to
- [mariadb](../mariadb/README.md)

3
seed/mariadb-client/applicationservice.yml
View file

@ -1,2 +1,3 @@
format: '0.1' format: '0.1'
description: Mariadb client description: Application service needs interact with a MariaDB server
website: https://mariadb.org/

39
seed/mariadb/README.md Normal file
View file

@ -0,0 +1,39 @@
---
gitea: none
include_toc: true
---
# mariadb
[All applications services for this dataset.](../README.md)
## Description
MariaDB, a relational database.
[For more informations](https://mariadb.org/)
## Dependances
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Variables
### Accounts (*accounts*)
| Description | Type | Provider |
|--------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|------------|
| Remote clients needing an account (*[remotes](extras/accounts/00_accounts.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | MariaDB |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Linked to
- [mariadb-client](../mariadb-client/README.md)

3
seed/mariadb/applicationservice.yml
View file

@ -1,4 +1,5 @@
format: '0.1' format: '0.1'
description: Mariadb description: MariaDB, a relational database
website: https://mariadb.org/
depends: depends:
- base-fedora-36 - base-fedora-36

70
seed/nextcloud/README.md Normal file
View file

@ -0,0 +1,70 @@
---
gitea: none
include_toc: true
---
# nextcloud
[All applications services for this dataset.](../README.md)
## Description
Nextcloud, Online collaboration platform.
[For more informations](https://nextcloud.com/)
## Dependances
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [postgresql-client](../postgresql-client/README.md)
- [ldap-client-fedora](../ldap-client-fedora/README.md)
- [ldap-client](../ldap-client/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [redis-client](../redis-client/README.md)
- [oauth2-client](../oauth2-client/README.md)
- [relay-mail-client](../relay-mail-client/README.md)
- [apache](../apache/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
- [php-fpm](../php-fpm/README.md)
- [php](../php/README.md)
## Variables
### Général (*general*)
#### Nextcloud (*general.nextcloud*)
| Description | Type |
|---------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|
| *[**nextcloud_mail_admin**](dictionaries/31_nextcloud.xml)* | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| Nom de domaine du serveur hebergeant le répertoire .well-known (*[nextcloud_well_known_server](dictionaries/31_nextcloud.xml)*) | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
#### oauth2_client (*general.oauth2_client*)
| Description | Values |
|---------------------------------------------------------------------|---------------------------------------|
| *[**oauth2_is_client_application**](dictionaries/31_nextcloud.xml)* | True |
| *[**oauth2_client_name**](dictionaries/31_nextcloud.xml)* | Collaboration |
| *[**oauth2_client_description**](dictionaries/31_nextcloud.xml)* | Plateforme de collaboration Nextcloud |
| *[**oauth2_client_category**](dictionaries/31_nextcloud.xml)* | Diffusion |
| *[**oauth2_client_logo**](dictionaries/31_nextcloud.xml)* | silique_folder.png |
#### php (*general.php*)
| Description | Values |
|--------------------------------------------------------------------|----------|
| *[**php_enable_output_buffering**](dictionaries/31_nextcloud.xml)* | False |
| *[**php_disable_pcntl**](dictionaries/31_nextcloud.xml)* | False |
- [+]: variable is multiple
- **bold**: variable is mandatory

3
seed/nextcloud/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Nextcloud description: Nextcloud, Online collaboration platform
website: https://nextcloud.com/
depends: depends:
- base-fedora-36 - base-fedora-36
- postgresql-client - postgresql-client

38
seed/nginx-common/README.md Normal file
View file

@ -0,0 +1,38 @@
---
gitea: none
include_toc: true
---
# nginx-common
[All applications services for this dataset.](../README.md)
## Description
Nginx common configuration.
[For more informations](https://nginx.org/)
## Variables
### Général (*general*)
#### NGINX (*general.nginx*)
Paramétrage global de NGINX
| Description | Help | Type | Values | Choices |
|-------------------------------------------------------------------------------------------------------------------------|---------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|----------|---------------------|
| Nom de domaine du serveur mandataire inverse par défaut (*[nginx_default](dictionaries/21_nginx.xml)*) | Si un client accède au serveur avec un nom de domaine non déclaré, le flux est redirigé vers ce domaine | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| **Longueur maximum pour un nom de domaine** (*[nginx_hash_bucket_size](dictionaries/21_nginx.xml)*) | | [choice](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 128 | 128<br />64<br />32 |
| **Taille maximale des données reçues par la méthode POST (en Mo)** (*[nginx_post_max_size](dictionaries/21_nginx.xml)*) | | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 32 | |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Used by
- [nginx-reverse-proxy](../nginx-reverse-proxy/README.md)
- [nginx-https](../nginx-https/README.md)
- [lemonldap](../lemonldap/README.md)

1
seed/nginx-common/applicationservice.yml
View file

@ -1,2 +1,3 @@
format: '0.1' format: '0.1'
description: Nginx common configuration description: Nginx common configuration
website: https://nginx.org/

32
seed/nginx-https/README.md Normal file
View file

@ -0,0 +1,32 @@
---
gitea: none
include_toc: true
---
# nginx-https
[All applications services for this dataset.](../README.md)
## Description
Nginx as HTTPS web site.
[For more informations](https://nginx.org/)
## Dependances
- [nginx-common](../nginx-common/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
## Used by
- [odoo](../odoo/README.md)
- [galette](../galette/README.md)
- [nginx-static](../nginx-static/README.md)
- [mailman](../mailman/README.md)
- [peertube](../peertube/README.md)
- [piwigo](../piwigo/README.md)
- [dovecot](../dovecot/README.md)
- [dotclear](../dotclear/README.md)
- [sensmotdire](../sensmotdire/README.md)
- [roundcube](../roundcube/README.md)

1
seed/nginx-https/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Nginx as HTTPS web site description: Nginx as HTTPS web site
website: https://nginx.org/
depends: depends:
- nginx-common - nginx-common
- reverse-proxy-client - reverse-proxy-client

67
seed/nginx-reverse-proxy/README.md Normal file
View file

@ -0,0 +1,67 @@
---
gitea: none
include_toc: true
---
# nginx-reverse-proxy
[All applications services for this dataset.](../README.md)
## Description
Nginx as reverse proxy.
[For more informations](https://nginx.org/)
## Dependances
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [nginx-common](../nginx-common/README.md)
## Variables
### Général (*general*)
#### network (*general.network*)
| Description | Values |
|-------------------------------------------------------|-------------|
| *[**incoming_ports**](dictionaries/25_nginx.xml)* [+] | 80<br />443 |
#### NGINX (*general.nginx*)
Paramétrage global de NGINX
| Description | Values |
|--------------------------------------------------------|----------|
| *[**nginx_default**](dictionaries/25_nginx.xml)* | |
| *[**nginx_default_http**](dictionaries/25_nginx.xml)* | True |
| *[**nginx_default_https**](dictionaries/25_nginx.xml)* | True |
### Machine (*machine*)
| Description | Values |
|-------------------------------------------------------|----------|
| *[**var_size**](extras/machine/20_reverse_proxy.xml)* | 256 |
| *[**add_tmp**](extras/machine/20_reverse_proxy.xml)* | False |
| *[**add_srv**](extras/machine/20_reverse_proxy.xml)* | False |
| *[**add_swap**](extras/machine/20_reverse_proxy.xml)* | False |
### Nginx (*nginx*)
| Description | Type | Provider |
|--------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|--------------|
| Nom des domaines dans le serveur mandataire inverse (*[remotes](extras/nginx/00-nginx.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | ReverseProxy |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Linked to
- [reverse-proxy-client](../reverse-proxy-client/README.md)

1
seed/nginx-reverse-proxy/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Nginx as reverse proxy description: Nginx as reverse proxy
website: https://nginx.org/
depends: depends:
- base-fedora-36 - base-fedora-36
- nginx-common - nginx-common

1
seed/nginx-reverse-proxy/templates/ca.crt
View file

@ -1 +0,0 @@
%%nginx_chain[%%rougail_index]

40
seed/nginx-static/README.md Normal file
View file

@ -0,0 +1,40 @@
---
gitea: none
include_toc: true
---
# nginx-static
[All applications services for this dataset.](../README.md)
## Description
Nginx as static web site.
[For more informations](https://nginx.org/)
## Dependances
- [nginx-https](../nginx-https/README.md)
- [nginx-common](../nginx-common/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Variables
### Général (*general*)
#### nginx (*general.nginx*)
| Description | Values |
|------------------------------------------------------|-------------|
| *[**nginx_root**](dictionaries/22_nginx_static.xml)* | /srv/static |
- [+]: variable is multiple
- **bold**: variable is mandatory

3
seed/nginx-static/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Nginx with static web site description: Nginx as static web site
website: https://nginx.org/
depends: depends:
- nginx-https - nginx-https
- base-fedora-36 - base-fedora-36

71
seed/nsd/README.md Normal file
View file

@ -0,0 +1,71 @@
---
gitea: none
include_toc: true
---
# nsd
[All applications services for this dataset.](../README.md)
## Description
NSD, an authoritative DNS name server.
[For more informations](https://www.nlnetlabs.nl/projects/nsd/about/)
## Dependances
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Variables
### Général (*general*)
#### network (*general.network*)
| Description |
|-------------------------------------|
| *[ip_dns](dictionaries/20_nsd.xml)* |
#### Serveur DNS (*general.dns_server*)
| Description | Type | Supplier |
|-------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|-------------|
| Nom de domaine du résolveur DNS associé (*[nsd_resolver](dictionaries/20_nsd.xml)*) | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | ExternalDNS |
#### Zone DNS (*general.dns_zone*)
| Description | Type |
|--------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|
| Zones DNS (*[nsd_zones](dictionaries/20_nsd.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
#### Zone DNS reverse (*general.dns_reverses*)
This a family is a leadership.
| Description | Type |
|------------------------------------------------------------------------------------------|------------------------------------------------------------------------------------------------------------------------------|
| Réseau pour la résolution reverse (*[nsd_reverse_network](dictionaries/20_nsd.xml)*) [+] | [network_cidr](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
### Machine (*machine*)
| Description | Values |
|---------------------------------------------|----------|
| *[**var_size**](extras/machine/20_nsd.xml)* | 256 |
| *[**add_tmp**](extras/machine/20_nsd.xml)* | False |
| *[**add_srv**](extras/machine/20_nsd.xml)* | False |
| *[**add_swap**](extras/machine/20_nsd.xml)* | False |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Linked to
- [dns-local](../dns-local/README.md)
- [unbound](../unbound/README.md)

3
seed/nsd/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Configuration du serveur faisant autorité NSD description: NSD, an authoritative DNS name server
website: https://www.nlnetlabs.nl/projects/nsd/about/
service: true service: true
depends: depends:
- base-fedora-36 - base-fedora-36

56
seed/oauth2-client/README.md Normal file
View file

@ -0,0 +1,56 @@
---
gitea: none
include_toc: true
---
# oauth2-client
[All applications services for this dataset.](../README.md)
## Description
Application service needs interact with a Oauth2 server.
## Variables
### Général (*general*)
#### OAuth2 client (*general.oauth2_client*)
| Description | Type | Supplier | Values | Provider |
|-----------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------------------------------|--------------------|----------|------------------------------|
| **OAuth2 server domain name** (*[oauth2_client_server_domainname](dictionaries/30_oauth2_client.xml)*) | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | OAuth2 | | |
| **OAuth2 client is an application** (*[oauth2_is_client_application](dictionaries/30_oauth2_client.xml)*) | [boolean](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | False | |
| **OAuth2 client name** (*[oauth2_client_name](dictionaries/30_oauth2_client.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | OAuth2:name | | |
| **OAuth2 client description** (*[oauth2_client_description](dictionaries/30_oauth2_client.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | OAuth2:description | | |
| OAuth2 URL to valid login (*[oauth2_client_login](dictionaries/30_oauth2_client.xml)*) | [web_address](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | OAuth2:login | | |
| **OAuth2 category** (*[oauth2_client_category](dictionaries/30_oauth2_client.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | OAuth2:category | Défaut | |
| **OAuth2 logo** (*[oauth2_client_logo](dictionaries/30_oauth2_client.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | OAuth2:logo | demo.png | |
| Remote clients (*[oauth2_clients](dictionaries/30_oauth2_client.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | | OAuth2Client |
| **OAuth2 server domain name** (*[oauth2_server_domainname](dictionaries/30_oauth2_client.xml)*) | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | | OAuth2Client:external_domain |
##### external (*general.oauth2_client.external*)
| Description | Type | Supplier | Values |
|------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------------------------------|-----------------|----------|
| **OAuth2 client external** (*[oauth2_client_external](dictionaries/30_oauth2_client.xml)*) [+] | [web_address](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | OAuth2:external | |
| **OAuth2 family** (*[oauth2_client_family](dictionaries/30_oauth2_client.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | OAuth2:family | users |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Used by
- [odoo](../odoo/README.md)
- [mailman](../mailman/README.md)
- [peertube](../peertube/README.md)
- [piwigo](../piwigo/README.md)
- [dovecot](../dovecot/README.md)
- [roundcube](../roundcube/README.md)
- [nextcloud](../nextcloud/README.md)
- [gitea](../gitea/README.md)
## Linked to
- [lemonldap](../lemonldap/README.md)

2
seed/oauth2-client/applicationservice.yml
View file

@ -1,2 +1,2 @@
format: '0.1' format: '0.1'
description: Oauth2 client description: Application service needs interact with a Oauth2 server

96
seed/odoo/README.md Normal file
View file

@ -0,0 +1,96 @@
---
gitea: none
include_toc: true
---
# odoo
[All applications services for this dataset.](../README.md)
## Description
Odoo, an ERP and CRM.
[For more informations](https://www.odoo.com/fr)
## Dependances
- [base-debian-bullseye](../base-debian-bullseye/README.md)
- [base-debian](../base-debian/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [postgresql-client](../postgresql-client/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
- [relay-mail-client](../relay-mail-client/README.md)
- [ldap-client-debian](../ldap-client-debian/README.md)
- [ldap-client](../ldap-client/README.md)
- [base-debian](../base-debian/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [oauth2-client](../oauth2-client/README.md)
- [nginx-https](../nginx-https/README.md)
- [nginx-common](../nginx-common/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
## Variables
### Général (*general*)
#### Odoo (*general.odoo*)
| Description | Type | Values | Choices |
|-------------------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------|--------------------------------------------|
| **Adresse courriel de l'administrateur** (*[odoo_admin_email](dictionaries/40_odoo.xml)*) | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| **Nom** (*[odoo_company_name](dictionaries/40_odoo.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| **Adresse** (*[odoo_company_street](dictionaries/40_odoo.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| **Ville** (*[odoo_company_city](dictionaries/40_odoo.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| **Code postal** (*[odoo_company_zip](dictionaries/40_odoo.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| **Numéro TVA** (*[odoo_company_vat](dictionaries/40_odoo.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| **Registre de la société** (*[odoo_company_registry](dictionaries/40_odoo.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| Numéro de téléphone (*[odoo_company_phone](dictionaries/40_odoo.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| Numéro de téléphone mobile (*[odoo_company_mobile](dictionaries/40_odoo.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| **Adresse courriel** (*[odoo_company_email](dictionaries/40_odoo.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| **Site internet** (*[odoo_company_website](dictionaries/40_odoo.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| **Chemin du logo** (*[odoo_company_logo](dictionaries/40_odoo.xml)*) | [filename](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| **Pied de page des documents** (*[odoo_company_footer](dictionaries/40_odoo.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | | |
| **Agencement des documents** (*[odoo_company_layout](dictionaries/40_odoo.xml)*) | [choice](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | standard | standard<br />bold<br />boxed<br />striped |
| **Liste des applications à activer** (*[odoo_addons](dictionaries/40_odoo.xml)*) [+] | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | base<br />l10n_fr<br />l10n_fr_fec<br />account<br />hr<br />hr_contract<br />sale_management | |
#### postgresql (*general.postgresql*)
| Description | Values |
|-------------------------------------------------------|----------|
| *[**pg_client_key_owner**](dictionaries/40_odoo.xml)* | odoo |
#### oauth2_client (*general.oauth2_client*)
| Description | Values |
|----------------------------------------------------------------|------------------|
| *[**oauth2_is_client_application**](dictionaries/40_odoo.xml)* | True |
| *[**oauth2_client_name**](dictionaries/40_odoo.xml)* | ERP |
| *[**oauth2_client_description**](dictionaries/40_odoo.xml)* | ERP Odoo |
| *[**oauth2_client_category**](dictionaries/40_odoo.xml)* | Entreprise |
| *[**oauth2_client_logo**](dictionaries/40_odoo.xml)* | silique_note.png |
##### external (*general.oauth2_client.external*)
| Description |
|----------------------------------------------------------|
| *[oauth2_client_external](dictionaries/40_odoo.xml)* [+] |
| *[oauth2_client_family](dictionaries/40_odoo.xml)* [+] |
#### annuaire (*general.annuaire*)
##### client (*general.annuaire.client*)
| Description | Values |
|-------------------------------------------------------|----------|
| *[**ldap_key_file_owner**](dictionaries/40_odoo.xml)* | odoo |
- [+]: variable is multiple
- **bold**: variable is mandatory

3
seed/odoo/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Odoo description: Odoo, an ERP and CRM
website: https://www.odoo.com/fr
depends: depends:
- base-debian-bullseye - base-debian-bullseye
- postgresql-client - postgresql-client

131
seed/openldap/README.md
View file

@ -1,12 +1,125 @@
slapcat -b cn=config -o ldif-wrap=no > /tmp/config.ldif ---
gitea: none
include_toc: true
---
Supprimé dans chaque entrée les lignes suivantes : # openldap
structuralObjectClass: olcMdbConfig [All applications services for this dataset.](../README.md)
entryUUID: 410ce868-f846-103b-8f45-a3349ac8bd80
creatorsName: cn=config
createTimestamp: 20211223141332Z
entryCSN: 20211223141332.369257Z#000000#000#000000
modifiersName: cn=config
modifyTimestamp: 20211223141332Z
## Description
OpenLDAP, a LDAP server.
[For more informations](https://www.openldap.org/)
## Dependances
- [ldap-client-fedora](../ldap-client-fedora/README.md)
- [ldap-client](../ldap-client/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Variables
### Général (*general*)
#### annuaire (*general.annuaire*)
##### server (*general.annuaire.server*)
| Description | Type | Values |
|------------------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------|------------------------------------------------------------------------------------------------------------------------------------------------------|
| **Schémas LDAP additionnel** (*[ldap_schemas](dictionaries/21_openldap-server.xml)*) [+] | [filename](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | /etc/openldap/schema/cosine.ldif<br />/etc/openldap/schema/inetorgperson.ldif<br />/etc/openldap/schema/nis.ldif<br />/etc/openldap/schema/misc.ldif |
###### Limites (*general.annuaire.server.limits*)
| Description | Type | Values |
|-----------------------------------------------------------------------------------------------------------------------|------------------------------------------------------------------------------------------------------------------------|----------|
| **Niveau de log** (*[ldap_loglevel](dictionaries/21_openldap-server.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 0 |
| **Nombre maximum d'entrées à retourner lors d'une requête** (*[ldap_sizelimit](dictionaries/21_openldap-server.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 5000 |
| **Temps de réponse maximum à une requête (en secondes)** (*[ldap_timelimit](dictionaries/21_openldap-server.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 3600 |
###### DB environment (*general.annuaire.server.db_environment*)
| Description | Type | Values |
|--------------------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------|-------------------|
| **Quantité de Giga-octets à utiliser pour le cache HDB** (*[db_cache_size_g](dictionaries/21_openldap-server.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 0 |
| **Quantité d'octets à utiliser pour le cache HDB** (*[db_cache_size_o](dictionaries/21_openldap-server.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 268435456 |
| **Nombre de fichiers ou écrire le cache HDB** (*[db_cache_chunks](dictionaries/21_openldap-server.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 1 |
| **Quantité de fichier de cache mis en cache mémoire** (*[db_log_region_max](dictionaries/21_openldap-server.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 262144 |
| **Quantité d'informations de journalisation conservé jusqu'à rotation** (*[db_log_max](dictionaries/21_openldap-server.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 10485760 |
| **Quantité d'informations de journalisation du cache reporté sur le disque** (*[db_log_bsize](dictionaries/21_openldap-server.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 2097152 |
| **Répertoire de conservation des informations de journalisation** (*[db_log_directory](dictionaries/21_openldap-server.xml)*) | [filename](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | /srv/openldap/log |
| **Nombre d'objet qui peuvent être verrouillés simultanément ** (*[db_lk_max_objects](dictionaries/21_openldap-server.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 5000 |
| **Nombre de verrous maximal** (*[db_lk_max](dictionaries/21_openldap-server.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 5000 |
| **Nombre de verroulleur maximal** (*[db_lk_max_lockers](dictionaries/21_openldap-server.xml)*) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 5000 |
##### client (*general.annuaire.client*)
| Description |
|-------------------------------------------------------------------------------------------------------|
| *[ldapclient_user](dictionaries/21_openldap-server.xml)* |
| **Base DN** (*[ldapclient_base_dn](dictionaries/21_openldap-server.xml)*) |
| **Base DN de l'annuaire des utilisateurs** (*[ldap_account_dn](dictionaries/21_openldap-server.xml)*) |
| *[ldapclient_search_dn](dictionaries/21_openldap-server.xml)* |
### Machine (*machine*)
| Description | Values |
|-------------------------------------------------|----------|
| *[**var_size**](extras/machine/20_unbound.xml)* | 256 |
| *[**add_tmp**](extras/machine/20_unbound.xml)* | False |
| *[**add_swap**](extras/machine/20_unbound.xml)* | False |
### Accounts (*accounts*)
| Description | Type | Provider |
|------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|------------|
| Serveurs distant ayant un compte (*[remotes](extras/accounts/00_account.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | LDAP |
| Familles (*[families](extras/accounts/00_account.xml)*) [+] | [unix_user](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
#### Gestion des utilisateurs (*accounts.users*)
This a family is a leadership.
| Description | Type |
|-------------------------------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------|
| Adresse courriel du compte (*[ldap_user_mail](extras/accounts/00_account.xml)*) [+] | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| Aliases du mail (*[ldap_user_aliases](extras/accounts/00_account.xml)*) [+] | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| **Nom de compte** (*[ldap_user_uid](extras/accounts/00_account.xml)*) | [unix_user](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| **Prénom** (*[ldap_user_sn](extras/accounts/00_account.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| **Nom de famille** (*[ldap_user_gn](extras/accounts/00_account.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
#### Gestion de la famille (*accounts.family_*)
This a dynamic family generated from the variable "accounts.families".
##### Gestion des utilisateurs de la famille (*accounts.family_.users_*)
This a family is a leadership.
| Description | Type |
|-----------------------------------------------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------|
| Adresse courriel du compte de la famille (*[ldap_user_mail_](extras/accounts/00_account.xml)*) [+] | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| Aliases du mail de la famille (*[ldap_user_aliases_](extras/accounts/00_account.xml)*) [+] | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| **Nom de compte de la famille ** (*[ldap_user_uid_](extras/accounts/00_account.xml)*) | [unix_user](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| **Prénom de la famille ** (*[ldap_user_sn_](extras/accounts/00_account.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| **Nom de famille de la famille ** (*[ldap_user_gn_](extras/accounts/00_account.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Linked to
- [ldap-client](../ldap-client/README.md)

3
seed/openldap/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: OpenLDAP server description: OpenLDAP, a LDAP server
website: https://www.openldap.org/
depends: depends:
- ldap-client-fedora - ldap-client-fedora
- base-fedora-36 - base-fedora-36

12
seed/openldap/infos.md Normal file
View file

@ -0,0 +1,12 @@
slapcat -b cn=config -o ldif-wrap=no > /tmp/config.ldif
Supprimé dans chaque entrée les lignes suivantes :
structuralObjectClass: olcMdbConfig
entryUUID: 410ce868-f846-103b-8f45-a3349ac8bd80
creatorsName: cn=config
createTimestamp: 20211223141332Z
entryCSN: 20211223141332.369257Z#000000#000#000000
modifiersName: cn=config
modifyTimestamp: 20211223141332Z

85
seed/peertube/README.md Normal file
View file

@ -0,0 +1,85 @@
---
gitea: none
include_toc: true
---
# peertube
[All applications services for this dataset.](../README.md)
## Description
Peertube, a federated (ActivityPub) video streaming platform.
[For more informations](https://www.openldap.org/)
## Dependances
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [dns-external](../dns-external/README.md)
- [postgresql-client](../postgresql-client/README.md)
- [relay-mail-client](../relay-mail-client/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
- [redis-client](../redis-client/README.md)
- [nginx-https](../nginx-https/README.md)
- [nginx-common](../nginx-common/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
- [oauth2-client](../oauth2-client/README.md)
## Variables
### Général (*general*)
#### network (*general.network*)
| Description | Values |
|------------------------------------------------------|----------|
| *[**outgoing_ports**](dictionaries/30_peertube.xml)* | 443 |
#### peertube (*general.peertube*)
| Description | Type | Values |
|------------------------------------------------------------------------------------------------------------|------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------|
| **Adresse courriel de l'administrateur Peertube** (*[peertube_admin_email](dictionaries/30_peertube.xml)*) | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
| **Description courte de l'instance** (*[peertube_short_description](dictionaries/30_peertube.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | PeerTube, an ActivityPub-federated video streaming platform using P2P directly in your web browser. |
| **Description de l'instance** (*[peertube_description](dictionaries/30_peertube.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | Welcome to this PeerTube instance! |
#### oauth2_client (*general.oauth2_client*)
| Description | Values |
|--------------------------------------------------------------------|-----------------------------------------|
| *[**oauth2_is_client_application**](dictionaries/30_peertube.xml)* | True |
| *[**oauth2_client_name**](dictionaries/30_peertube.xml)* | Vidéo |
| *[**oauth2_client_description**](dictionaries/30_peertube.xml)* | Plateforme de partage de vidéo Peertube |
| *[**oauth2_client_category**](dictionaries/30_peertube.xml)* | Réseaux sociaux |
| *[**oauth2_client_logo**](dictionaries/30_peertube.xml)* | silique_video.png |
##### external (*general.oauth2_client.external*)
| Description |
|----------------------------------------------------------|
| *[oauth2_client_external](dictionaries/30_peertube.xml)* |
#### nginx (*general.nginx*)
| Description | Values |
|--------------------------------------------------|---------------------|
| *[**nginx_root**](dictionaries/30_peertube.xml)* | /usr/share/peertube |
#### revprox (*general.revprox*)
##### revprox_client (*general.revprox.revprox_client*)
| Description | Values |
|--------------------------------------------------------------------|----------|
| *[**revprox_client_location**](dictionaries/30_peertube.xml)* | / |
| *[**revprox_client_max_body_size**](dictionaries/30_peertube.xml)* | 12G |
- [+]: variable is multiple
- **bold**: variable is mandatory

3
seed/peertube/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Peertube description: Peertube, a federated (ActivityPub) video streaming platform
website: https://www.openldap.org/
depends: depends:
- base-fedora-36 - base-fedora-36
- dns-external - dns-external

40
seed/php-fpm/README.md Normal file
View file

@ -0,0 +1,40 @@
---
gitea: none
include_toc: true
---
# php-fpm
[All applications services for this dataset.](../README.md)
## Description
PHP FPM.
## Dependances
- [php](../php/README.md)
## Variables
### Général (*general*)
#### nginx (*general.nginx*)
| Description | Type | Values |
|-------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------|----------|
| *[**php_fpm_user**](dictionaries/20_phpfpm.xml)* | [unix_user](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | root |
| *[**php_fpm_installed**](dictionaries/20_phpfpm.xml)* | [boolean](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | True |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Used by
- [galette](../galette/README.md)
- [piwigo](../piwigo/README.md)
- [dotclear](../dotclear/README.md)
- [sensmotdire](../sensmotdire/README.md)
- [roundcube](../roundcube/README.md)
- [nextcloud](../nextcloud/README.md)

44
seed/php/README.md Normal file
View file

@ -0,0 +1,44 @@
---
gitea: none
include_toc: true
---
# php
[All applications services for this dataset.](../README.md)
## Description
PHP, a popular general-purpose scripting language.
[For more informations](https://secure.php.net/)
## Variables
### Général (*general*)
#### PHP (*general.php*)
Paramètrage avancé de PHP
| Description | Help | Type | Values |
|-----------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------------------------------------------------------|-------------------------------------------------------------------------------------------------------------------------|--------------|
| **Taille maximale des données reçues par la méthode POST** (*[php_post_max_size](dictionaries/20_php.xml)*) | Valeur en Mo | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 32 |
| **Taille maximale d'un fichier à charger** (*[php_upload_max_filesize](dictionaries/20_php.xml)*) | Valeur en Mo | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 16 |
| **Temps maximal d'exécution d'un script** (*[php_max_execution_time](dictionaries/20_php.xml)*) | Valeur en secondes | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 30 |
| **Durée maximale pour analyser les données d'entrée** (*[php_max_input_time](dictionaries/20_php.xml)*) | Valeur en secondes | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 60 |
| **Taille mémoire maximale qu'un script est autorisé à allouer** (*[php_memory_limit](dictionaries/20_php.xml)*) | Valeur en Mo | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 512 |
| **Affichage des erreurs à l'écran** (*[php_display_errors](dictionaries/20_php.xml)*) | | [boolean](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | False |
| **Durée de vie des données sur le serveur** (*[php_session_gc_maxlifetime](dictionaries/20_php.xml)*) | Valeur en secondes | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 3600 |
| **Activer la directive de configuration browscap** (*[php_browscap](dictionaries/20_php.xml)*) | La directive de configuration browscap permet d'obtenir plus d'information sur les capacités du navigateur client grâce à la fonction get_browser() | [boolean](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | False |
| **Fuseau horaire** (*[time_zone](dictionaries/20_php.xml)*) | | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | Europe/Paris |
| **Activer les tampons de sortie** (*[php_enable_output_buffering](dictionaries/20_php.xml)*) | | [boolean](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | True |
| **Désactiver PCNTL** (*[php_disable_pcntl](dictionaries/20_php.xml)*) | | [boolean](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | True |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Used by
- [php-fpm](../php-fpm/README.md)

5
seed/php/applicationservice.yml
View file

@ -1,4 +1,3 @@
format: '0.1' format: '0.1'
description: PHP configuration description: PHP, a popular general-purpose scripting language
depends: website: https://secure.php.net/
- redis-client

71
seed/piwigo/README.md Normal file
View file

@ -0,0 +1,71 @@
---
gitea: none
include_toc: true
---
# piwigo
[All applications services for this dataset.](../README.md)
## Description
Piwigo, a photo management software.
[For more informations](http://piwigo.org/)
## Dependances
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [mariadb-client](../mariadb-client/README.md)
- [ldap-client-fedora](../ldap-client-fedora/README.md)
- [ldap-client](../ldap-client/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [redis-client](../redis-client/README.md)
- [oauth2-client](../oauth2-client/README.md)
- [relay-mail-client](../relay-mail-client/README.md)
- [nginx-https](../nginx-https/README.md)
- [nginx-common](../nginx-common/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
- [php-fpm](../php-fpm/README.md)
- [php](../php/README.md)
## Variables
### Général (*general*)
| Description | Type | Values |
|------------------------------------------------------------------------------------------------------|------------------------------------------------------------------------------------------------------------------------|----------------------|
| **Adresse courriel de l'administrateur Piwigo** (*[piwigo_admin_email](dictionaries/31_piwigo.xml)*) | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
| **Titre de l'album** (*[piwigo_title](dictionaries/31_piwigo.xml)*) | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | Album photographique |
#### Piwigo users (*general.users*)
This a family is a leadership.
| Description | Type |
|-----------------------------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------|
| **Utilisateur ayant un album** (*[piwigo_users](dictionaries/31_piwigo.xml)*) [+] | [unix_user](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
| **Adresse courriel** (*[piwigo_email](dictionaries/31_piwigo.xml)*) | [mail](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
#### oauth2_client (*general.oauth2_client*)
| Description | Values |
|------------------------------------------------------------------|-----------------------------|
| *[**oauth2_is_client_application**](dictionaries/31_piwigo.xml)* | True |
| *[**oauth2_client_name**](dictionaries/31_piwigo.xml)* | Album |
| *[**oauth2_client_description**](dictionaries/31_piwigo.xml)* | Album photographique Piwigo |
| *[**oauth2_client_category**](dictionaries/31_piwigo.xml)* | Diffusion |
| *[**oauth2_client_logo**](dictionaries/31_piwigo.xml)* | silique_image.png |
- [+]: variable is multiple
- **bold**: variable is mandatory

6
seed/piwigo/applicationservice.yml
View file

@ -1,9 +1,11 @@
format: '0.1' format: '0.1'
description: Nextcloud description: Piwigo, a photo management software
website: http://piwigo.org/
depends: depends:
- base-fedora-35 - base-fedora-36
- mariadb-client - mariadb-client
- ldap-client-fedora - ldap-client-fedora
- redis-client
- oauth2-client - oauth2-client
- relay-mail-client - relay-mail-client
- nginx-https - nginx-https

10
seed/pleroma/applicationservice.yml
View file

@ -1,10 +0,0 @@
format: '0.1'
description: Pleroma
depends:
- base-fedora-36
- postgresql-client
- relay-mail-client
- reverse-proxy-client
- redis-client
- nginx-common
- oauth2-client

70
seed/pleroma/dictionaries/30_pleroma.xml
View file

@ -1,70 +0,0 @@
<?xml version='1.0' encoding='UTF-8'?>
<rougail version="0.10">
<services>
<service name="peertube" target="multi-user">
<override/>
<file engine="none" source="sysuser-peertube.conf">/sysusers.d/0peertube.conf</file>
<file engine="none" source="tmpfile-peertube.conf">/tmpfiles.d/0peertube.conf</file>
<file>/etc/peertube/production.yaml</file>
<file engine="none">/etc/pam.d/login</file>
<file source="nginx.peertube.conf">/etc/nginx/sites-enabled/peertube.conf</file>
</service>
</services>
<variables>
<family name="peertube">
<variable name="peertube_admin_email" type="mail" description="Adresse courriel de l'administrateur Peertube" mandatory="True"/>
<variable name="peertube_short_description" type="string" description="Description courte de l'instance">
<value>PeerTube, an ActivityPub-federated video streaming platform using P2P directly in your web browser.</value>
</variable>
<variable name="peertube_description" type="string" description="Description de l'instance">
<value>Welcome to this PeerTube instance!</value>
</variable>
</family>
<family name="oauth2_client">
<variable name="oauth2_is_client_application" redefine='True'>
<value>True</value>
</variable>
<variable name="oauth2_client_name" redefine='True'>
<value>Vidéo</value>
</variable>
<variable name="oauth2_client_description" redefine='True'>
<value>Plateforme de partage de vidéo Peertube</value>
</variable>
<variable name="oauth2_client_category" redefine='True'>
<value>Réseaux sociaux</value>
</variable>
<variable name="oauth2_client_logo" redefine='True'>
<value>silique_video.png</value>
</variable>
<family name="external">
<variable name="oauth2_client_external" redefine="True" remove_fill="True"/>
</family>
</family>
<family name="nginx" description="Reverse proxy">
<family name="revprox_client" description="Point d'entré des clients" leadership="True">
<variable name="revprox_client_location" redefine="True">
<value>/</value>
</variable>
<variable name="revprox_client_max_body_size" redefine="True">
<value>12G</value>
</variable>
</family>
</family>
</variables>
<constraints>
<fill name="calc_oauth2_client_external">
<param type="variable">revprox_client_external_domainnames</param>
<param type="variable">revprox_client_location</param>
<param>plugins/auth-openid-connect/0.0.7/auth/openid-connect</param>
<target>oauth2_client_external</target>
</fill>
<fill name="calc_value">
<param type="boolean">True</param>
<param name="default" type="boolean">False</param>
<param name="condition" type="variable">revprox_client_location</param>
<param name="expected">/socket.io</param>
<target>revprox_client_is_websocket</target>
</fill>
</constraints>
</rougail>

4
seed/pleroma/manual/image/postinstall/pleroma.sh
View file

@ -1,4 +0,0 @@
#!/bin/bash
# https://docs-develop.pleroma.social/backend/installation/otp_en/
arch="$(uname -m)";if [ "$arch" = "x86_64" ];then arch="amd64";elif [ "$arch" = "armv7l" ];then arch="arm";elif [ "$arch" = "aarch64" ];then arch="arm64";else echo "Unsupported arch: $arch">&2;fi;if getconf GNU_LIBC_VERSION>/dev/null;then libc_postfix="";elif [ "$(ldd 2>&1|head -c 9)" = "musl libc" ];then libc_postfix="-musl";elif [ "$(find /lib/libc.musl*|wc -l)" ];then libc_postfix="-musl";else echo "Unsupported libc">&2;fi;echo "$arch$libc_postfix"

2
seed/pleroma/manual/image/preinstall/pleroma.sh
View file

@ -1,2 +0,0 @@
PKG="$PKG ffmpeg"
FUSION=true

17
seed/pleroma/templates/login
View file

@ -1,17 +0,0 @@
# File from util-linux-*.x86_64 (not installed)
#%PAM-1.0
auth substack system-auth
auth include postlogin
account required pam_nologin.so
account include system-auth
password include system-auth
# pam_selinux.so close should be the first session rule
session required pam_selinux.so close
session required pam_loginuid.so
# pam_selinux.so open should only be followed by sessions to be executed in the user context
session required pam_selinux.so open
session required pam_namespace.so
session optional pam_keyinit.so force revoke
session include system-auth
session include postlogin
-session optional pam_ck_connector.so

271
seed/pleroma/templates/nginx.peertube.conf
View file

@ -1,271 +0,0 @@
# GNUNUX /usr/share/peertube/support/nginx/peertube
# Minimum Nginx version required: 1.13.0 (released Apr 25, 2017)
# Please check your Nginx installation features the following modules via 'nginx -V':
# STANDARD HTTP MODULES: Core, Proxy, Rewrite, Access, Gzip, Headers, HTTP/2, Log, Real IP, SSL, Thread Pool, Upstream, AIO Multithreading.
# THIRD PARTY MODULES: None.
# GNUNUX server {
# GNUNUX listen 80;
# GNUNUX listen [::]:80;
# GNUNUX server_name ${WEBSERVER_HOST};
# GNUNUX
# GNUNUX location /.well-known/acme-challenge/ {
# GNUNUX default_type "text/plain";
# GNUNUX root /var/www/certbot;
# GNUNUX }
# GNUNUX location / { return 301 https://$host$request_uri; }
# GNUNUX }
upstream %%domain_name_eth0 {
# GNUNUX server ${PEERTUBE_HOST};
server localhost:9000;
}
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name %%domain_name_eth0;
# GNUNUX access_log /var/log/nginx/peertube.access.log; # reduce I/0 with buffer=10m flush=5m
# GNUNUX error_log /var/log/nginx/peertube.error.log;
##
# Certificates
# you need a certificate to run in production. see https://letsencrypt.org/
##
# GNUNUX ssl_certificate /etc/letsencrypt/live/${WEBSERVER_HOST}/fullchain.pem;
# GNUNUX ssl_certificate_key /etc/letsencrypt/live/${WEBSERVER_HOST}/privkey.pem;
#>GNUNUX
ssl_client_certificate %%revprox_ca_file;
ssl_certificate %%revprox_client_cert_file;
ssl_certificate_key %%revprox_client_key_file;
#<GNUNUX
# GNUNUX location ^~ '/.well-known/acme-challenge' {
# GNUNUX default_type "text/plain";
# GNUNUX root /var/www/certbot;
# GNUNUX }
##
# Security hardening (as of Nov 15, 2020)
# based on Mozilla Guideline v5.6
##
ssl_protocols TLSv1.2 TLSv1.3;
ssl_prefer_server_ciphers on;
ssl_ciphers ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256; # add ECDHE-RSA-AES256-SHA if you want compatibility with Android 4
ssl_session_timeout 1d; # defaults to 5m
ssl_session_cache shared:SSL:10m; # estimated to 40k sessions
ssl_session_tickets off;
ssl_stapling on;
ssl_stapling_verify on;
# HSTS (https://hstspreload.org), requires to be copied in 'location' sections that have add_header directives
#add_header Strict-Transport-Security "max-age=63072000; includeSubDomains";
##
# Application
##
location @api {
# proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host %%revprox_client_external_domainname;
# proxy_set_header X-Real-IP $remote_addr;
client_max_body_size 100k; # default is 1M
proxy_connect_timeout 10m;
proxy_send_timeout 10m;
proxy_read_timeout 10m;
send_timeout 10m;
proxy_pass http://%%domain_name_eth0;
}
location / {
try_files /dev/null @api;
}
location = /api/v1/videos/upload-resumable {
client_max_body_size 0;
proxy_request_buffering off;
try_files /dev/null @api;
}
location = /api/v1/videos/upload {
limit_except POST HEAD { deny all; }
# This is the maximum upload size, which roughly matches the maximum size of a video file.
# Note that temporary space is needed equal to the total size of all concurrent uploads.
# This data gets stored in /var/lib/nginx by default, so you may want to put this directory
# on a dedicated filesystem.
client_max_body_size 12G; # default is 1M
add_header X-File-Maximum-Size 8G always; # inform backend of the set value in bytes before mime-encoding (x * 1.4 >= client_max_body_size)
try_files /dev/null @api;
}
location ~ ^/api/v1/(videos|video-playlists|video-channels|users/me) {
client_max_body_size 6M; # default is 1M
add_header X-File-Maximum-Size 4M always; # inform backend of the set value in bytes before mime-encoding (x * 1.4 >= client_max_body_size)
try_files /dev/null @api;
}
##
# Websocket
##
location @api_websocket {
proxy_http_version 1.1;
# proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host %%revprox_client_external_domainname;
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header Upgrade $http_upgrade;
# proxy_set_header Connection "upgrade";
proxy_pass http://%%domain_name_eth0;
}
location /socket.io {
try_files /dev/null @api_websocket;
}
location /tracker/socket {
# Peers send a message to the tracker every 15 minutes
# Don't close the websocket before then
proxy_read_timeout 15m; # default is 60s
try_files /dev/null @api_websocket;
}
##
# Performance optimizations
# For extra performance please refer to https://github.com/denji/nginx-tuning
##
# GNUNUX root /var/www/peertube/storage;
root /usr/share/peertube;
# Enable compression for JS/CSS/HTML, for improved client load times.
# It might be nice to compress JSON/XML as returned by the API, but
# leaving that out to protect against potential BREACH attack.
gzip on;
gzip_vary on;
gzip_types # text/html is always compressed by HttpGzipModule
text/css
application/javascript
font/truetype
font/opentype
application/vnd.ms-fontobject
image/svg+xml;
gzip_min_length 1000; # default is 20 bytes
gzip_buffers 16 8k;
gzip_comp_level 2; # default is 1
client_body_timeout 30s; # default is 60
client_header_timeout 10s; # default is 60
send_timeout 10s; # default is 60
keepalive_timeout 10s; # default is 75
resolver_timeout 10s; # default is 30
reset_timedout_connection on;
proxy_ignore_client_abort on;
tcp_nopush on; # send headers in one piece
tcp_nodelay on; # don't buffer data sent, good for small data bursts in real time
# If you have a small /var/lib partition, it could be interesting to store temp nginx uploads in a different place
# See https://nginx.org/en/docs/http/ngx_http_core_module.html#client_body_temp_path
#client_body_temp_path /var/www/peertube/storage/nginx/;
# Bypass PeerTube for performance reasons. Optional.
# Should be consistent with client-overrides assets list in /server/controllers/client.ts
location ~ ^/client/(assets/images/(icons/icon-36x36\.png|icons/icon-48x48\.png|icons/icon-72x72\.png|icons/icon-96x96\.png|icons/icon-144x144\.png|icons/icon-192x192\.png|icons/icon-512x512\.png|logo\.svg|favicon\.png|default-playlist\.jpg|default-avatar-account\.png|default-avatar-video-channel\.png))$ {
add_header Cache-Control "public, max-age=31536000, immutable"; # Cache 1 year
# GNUNUX root /var/www/peertube;
root /usr/share/peertube;
try_files /storage/client-overrides/$1 /peertube-latest/client/dist/$1 @api;
}
# Bypass PeerTube for performance reasons. Optional.
location ~ ^/client/(.*\.(js|css|png|svg|woff2|otf|ttf|woff|eot))$ {
add_header Cache-Control "public, max-age=31536000, immutable"; # Cache 1 year
# GNUNUX alias /var/www/peertube/client/dist/$1;
alias /usr/share/peertube/client/dist/$1;
}
# Bypass PeerTube for performance reasons. Optional.
location ~ ^/static/(thumbnails|avatars)/ {
root /srv/peertube;
if ($request_method = 'OPTIONS') {
add_header Access-Control-Allow-Origin '*';
add_header Access-Control-Allow-Methods 'GET, OPTIONS';
add_header Access-Control-Allow-Headers 'Range,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';
add_header Access-Control-Max-Age 1728000; # Preflight request can be cached 20 days
add_header Content-Type 'text/plain charset=UTF-8';
add_header Content-Length 0;
return 204;
}
add_header Access-Control-Allow-Origin '*';
add_header Access-Control-Allow-Methods 'GET, OPTIONS';
add_header Access-Control-Allow-Headers 'Range,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';
add_header Cache-Control "public, max-age=7200"; # Cache response 2 hours
rewrite ^/static/(.*)$ /$1 break;
try_files $uri @api;
}
# Bypass PeerTube for performance reasons. Optional.
location ~ ^/static/(webseed|redundancy|streaming-playlists)/ {
root /srv/peertube;
limit_rate_after 5M;
# Clients usually have 4 simultaneous webseed connections, so the real limit is 3MB/s per client
set $peertube_limit_rate 800k;
# Increase rate limit in HLS mode, because we don't have multiple simultaneous connections
if ($request_uri ~ -fragmented.mp4$) {
set $peertube_limit_rate 5M;
}
# Use this line with nginx >= 1.17.0
#limit_rate $peertube_limit_rate;
# Or this line if your nginx < 1.17.0
set $limit_rate $peertube_limit_rate;
if ($request_method = 'OPTIONS') {
add_header Access-Control-Allow-Origin '*';
add_header Access-Control-Allow-Methods 'GET, OPTIONS';
add_header Access-Control-Allow-Headers 'Range,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';
add_header Access-Control-Max-Age 1728000; # Preflight request can be cached 20 days
add_header Content-Type 'text/plain charset=UTF-8';
add_header Content-Length 0;
return 204;
}
if ($request_method = 'GET') {
add_header Access-Control-Allow-Origin '*';
add_header Access-Control-Allow-Methods 'GET, OPTIONS';
add_header Access-Control-Allow-Headers 'Range,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type';
# Don't spam access log file with byte range requests
access_log off;
}
# Enabling the sendfile directive eliminates the step of copying the data into the buffer
# and enables direct copying data from one file descriptor to another.
sendfile on;
sendfile_max_chunk 1M; # prevent one fast connection from entirely occupying the worker process. should be > 800k.
aio threads;
rewrite ^/static/webseed/(.*)$ /videos/$1 break;
rewrite ^/static/(.*)$ /$1 break;
try_files $uri @api;
}
}

5
seed/pleroma/templates/peertube.service
View file

@ -1,5 +0,0 @@
[Service]
Environment=PGPASSFILE=/usr/local/lib/secrets/postgresql.pass
ExecStartPost=+/usr/bin/timeout 90 sh -c 'while ! /usr/bin/psql --set=sslmode=verify-full -h %%pg_client_server_domainname -U %%pg_client_username %%pg_client_database -c "SELECT * FROM plugin;"; do sleep 1; done'
ExecStartPost=+/usr/bin/psql --set=sslmode=verify-full -h %%pg_client_server_domainname -U %%pg_client_username %%pg_client_database -c "DELETE FROM plugin;"
ExecStartPost=+/usr/bin/psql --set=sslmode=verify-full -h %%pg_client_server_domainname -U %%pg_client_username %%pg_client_database -c "INSERT INTO plugin (name, type, version, enabled, uninstalled, \"peertubeEngine\", description, homepage, settings, \"createdAt\", \"updatedAt\") VALUES ('auth-openid-connect', '1', '0.0.7', true, false, '>=2.2.0', 'Add OpenID connect support to login form in PeerTube.', 'https://framagit.org/framasoft/peertube/official-plugins/tree/master/peertube-plugin-auth-openid-connect', '{\"scope\": \"openid email profile\", \"client-id\": \"%%oauth2_client_id\", \"discover-url\": \"https://%%oauth2_client_server_domainname/.well-known/openid-configuration\", \"client-secret\": \"%%oauth2_client_secret\", \"mail-property\": \"email\", \"auth-display-name\": \"OpenID Connect\", \"username-property\": \"nickname\", \"signature-algorithm\": \"%%oauth2_client_token_signature_algo\", \"display-name-property\": \"email\"}', '2022-04-05 18:12:34.832+02', '2022-04-05 18:12:34.832+02')"

638
seed/pleroma/templates/production.yaml
View file

@ -1,638 +0,0 @@
%compiler-settings
commentStartToken = §
%end compiler-settings
listen:
hostname: 'localhost'
port: 9000
# Correspond to your reverse proxy server_name/listen configuration (i.e., your public PeerTube instance URL)
webserver:
https: true
hostname: '%%revprox_client_external_domainname'
port: 443
rates_limit:
api:
# 50 attempts in 10 seconds
window: 10 seconds
max: 50
login:
# 15 attempts in 5 min
window: 5 minutes
max: 15
signup:
# 2 attempts in 5 min (only succeeded attempts are taken into account)
window: 5 minutes
max: 2
ask_send_email:
# 3 attempts in 5 min
window: 5 minutes
max: 3
# Proxies to trust to get real client IP
# If you run PeerTube just behind a local proxy (nginx), keep 'loopback'
# If you run PeerTube behind a remote proxy, add the proxy IP address (or subnet)
trust_proxy:
- 'loopback'
# Your database name will be database.name OR 'peertube'+database.suffix
database:
hostname: '%%pg_client_server_domainname'
port: 5432
ssl: true
suffix: '_prod'
name: '%%pg_client_database'
username: '%%pg_client_username'
password: '%%pg_client_password'
pool:
max: 5
# Redis server for short time storage
# You can also specify a 'socket' path to a unix socket but first need to
# comment out hostname and port
redis:
hostname: '%%redis_client_server_domainname'
port: 6379
auth: '%%redis_client_password'
db: 0
# SMTP server to send emails
smtp:
# smtp or sendmail
transport: smtp
# Path to sendmail command. Required if you use sendmail transport
sendmail: null
hostname: '%%smtp_relay_address'
port: 25 # If you use StartTLS: 587
username: '%%smtp_relay_user'
password: '%%smtp_relay_password'
tls: false # If you use StartTLS: false
disable_starttls: false
ca_file: '%%smtp_ca_file' # Used for self signed certificates
from_address: '%%peertube_admin_email'
email:
body:
signature: 'PeerTube'
subject:
prefix: '[PeerTube]'
# Update default PeerTube values
# Set by API when the field is not provided and put as default value in client
defaults:
# Change default values when publishing a video (upload/import/go Live)
publish:
download_enabled: true
comments_enabled: true
# public = 1, unlisted = 2, private = 3, internal = 4
privacy: 1
# CC-BY = 1, CC-SA = 2, CC-ND = 3, CC-NC = 4, CC-NC-SA = 5, CC-NC-ND = 6, Public Domain = 7
# You can also choose a custom licence value added by a plugin
# No licence by default
licence: null
p2p:
# Enable P2P by default
# Can be enabled/disabled by anonymous users and logged in users
webapp:
enabled: true
embed:
enabled: true
# From the project root directory
storage:
tmp: '/srv/peertube/tmp/' # Use to download data (imports etc), store uploaded files before and during processing...
bin: '/srv/peertube/bin/'
avatars: '/srv/peertube/avatars/'
videos: '/srv/peertube/videos/'
streaming_playlists: '/srv/peertube/streaming-playlists/'
redundancy: '/srv/peertube/redundancy/'
logs: '/srv/peertube/logs/'
previews: '/srv/peertube/previews/'
thumbnails: '/srv/peertube/thumbnails/'
torrents: '/srv/peertube/torrents/'
captions: '/srv/peertube/captions/'
cache: '/srv/peertube/cache/'
plugins: '/usr/share/peertube_plugins/'
# Overridable client files in client/dist/assets/images:
# - logo.svg
# - favicon.png
# - default-playlist.jpg
# - default-avatar-account.png
# - default-avatar-video-channel.png
# - and icons/*.png (PWA)
# Could contain for example assets/images/favicon.png
# If the file exists, peertube will serve it
# If not, peertube will fallback to the default file
client_overrides: '/srv/peertube/client-overrides/'
object_storage:
enabled: false
# Without protocol, will default to HTTPS
endpoint: '' # 's3.amazonaws.com' or 's3.fr-par.scw.cloud' for example
region: 'us-east-1'
credentials:
# You can also use AWS_ACCESS_KEY_ID env variable
access_key_id: ''
# You can also use AWS_SECRET_ACCESS_KEY env variable
secret_access_key: ''
# Maximum amount to upload in one request to object storage
max_upload_part: 2GB
streaming_playlists:
bucket_name: 'streaming-playlists'
# Allows setting all buckets to the same value but with a different prefix
prefix: '' # Example: 'streaming-playlists:'
# Base url for object URL generation, scheme and host will be replaced by this URL
# Useful when you want to use a CDN/external proxy
base_url: '' # Example: 'https://mirror.example.com'
# Same settings but for webtorrent videos
videos:
bucket_name: 'videos'
prefix: ''
base_url: ''
log:
level: 'info' # 'debug' | 'info' | 'warn' | 'error'
rotation:
enabled : false # Enabled by default, if disabled make sure that 'storage.logs' is pointing to a folder handled by logrotate
max_file_size: 12MB
max_files: 20
anonymize_ip: false
log_ping_requests: true
prettify_sql: false
trending:
videos:
interval_days: 7 # Compute trending videos for the last x days
algorithms:
enabled:
- 'best' # adaptation of Reddit's 'Best' algorithm (Hot minus History)
- 'hot' # adaptation of Reddit's 'Hot' algorithm
- 'most-viewed' # default, used initially by PeerTube as the trending page
- 'most-liked'
default: 'most-viewed'
# Cache remote videos on your server, to help other instances to broadcast the video
# You can define multiple caches using different sizes/strategies
# Once you have defined your strategies, choose which instances you want to cache in admin -> manage follows -> following
redundancy:
videos:
check_interval: '1 hour' # How often you want to check new videos to cache
strategies: # Just uncomment strategies you want
# -
# size: '10GB'
# # Minimum time the video must remain in the cache. Only accept values > 10 hours (to not overload remote instances)
# min_lifetime: '48 hours'
# strategy: 'most-views' # Cache videos that have the most views
# -
# size: '10GB'
# # Minimum time the video must remain in the cache. Only accept values > 10 hours (to not overload remote instances)
# min_lifetime: '48 hours'
# strategy: 'trending' # Cache trending videos
# -
# size: '10GB'
# # Minimum time the video must remain in the cache. Only accept values > 10 hours (to not overload remote instances)
# min_lifetime: '48 hours'
# strategy: 'recently-added' # Cache recently added videos
# min_views: 10 # Having at least x views
# Other instances that duplicate your content
remote_redundancy:
videos:
# 'nobody': Do not accept remote redundancies
# 'anybody': Accept remote redundancies from anybody
# 'followings': Accept redundancies from instance followings
accept_from: 'anybody'
csp:
enabled: false
report_only: true # CSP directives are still being tested, so disable the report only mode at your own risk!
report_uri:
security:
# Set the X-Frame-Options header to help to mitigate clickjacking attacks
frameguard:
enabled: true
tracker:
# If you disable the tracker, you disable the P2P aspect of PeerTube
enabled: true
# Only handle requests on your videos
# If you set this to false it means you have a public tracker
# Then, it is possible that clients overload your instance with external torrents
private: true
# Reject peers that do a lot of announces (could improve privacy of TCP/UDP peers)
reject_too_many_announces: false
history:
videos:
# If you want to limit users videos history
# -1 means there is no limitations
# Other values could be '6 months' or '30 days' etc (PeerTube will periodically delete old entries from database)
max_age: -1
views:
videos:
# PeerTube creates a database entry every hour for each video to track views over a period of time
# This is used in particular by the Trending page
# PeerTube could remove old remote video views if you want to reduce your database size (video view counter will not be altered)
# -1 means no cleanup
# Other values could be '6 months' or '30 days' etc (PeerTube will periodically delete old entries from database)
remote:
max_age: '30 days'
# PeerTube buffers local video views before updating and federating the video
local_buffer_update_interval: '30 minutes'
ip_view_expiration: '1 hour'
plugins:
# The website PeerTube will ask for available PeerTube plugins and themes
# This is an unmoderated plugin index, so only install plugins/themes you trust
index:
enabled: false
check_latest_versions_interval: '12 hours' # How often you want to check new plugins/themes versions
url: 'https://packages.joinpeertube.org'
federation:
videos:
federate_unlisted: false
# Add a weekly job that cleans up remote AP interactions on local videos (shares, rates and comments)
# It removes objects that do not exist anymore, and potentially fix their URLs
cleanup_remote_interactions: true
peertube:
check_latest_version:
# Check and notify admins of new PeerTube versions
enabled: false
# You can use a custom URL if your want, that respect the format behind https://joinpeertube.org/api/v1/versions.json
url: 'https://joinpeertube.org/api/v1/versions.json'
webadmin:
configuration:
edition:
# Set this to false if you don't want to allow config edition in the web interface by instance admins
allowed: false
###############################################################################
#
# From this point, all the following keys can be overridden by the web interface
# (local-production.json file). If you need to change some values, prefer to
# use the web interface because the configuration will be automatically
# reloaded without any need to restart PeerTube
#
# /!\ If you already have a local-production.json file, the modification of the
# following keys will have no effect /!\
#
###############################################################################
cache:
previews:
size: 500 # Max number of previews you want to cache
captions:
size: 500 # Max number of video captions/subtitles you want to cache
torrents:
size: 500 # Max number of video torrents you want to cache
admin:
# Used to generate the root user at first startup
# And to receive emails from the contact form
email: '%%peertube_admin_email'
contact_form:
enabled: true
signup:
enabled: false
limit: 10 # When the limit is reached, registrations are disabled. -1 == unlimited
minimum_age: 16 # Used to configure the signup form
requires_email_verification: false
filters:
cidr: # You can specify CIDR ranges to whitelist (empty = no filtering) or blacklist
whitelist: []
blacklist: []
user:
# Default value of maximum video bytes the user can upload (does not take into account transcoded files)
# Byte format is supported ("1GB" etc)
# -1 == unlimited
video_quota: -1
video_quota_daily: -1
video_channels:
max_per_user: 20 # Allows each user to create up to 20 video channels.
# If enabled, the video will be transcoded to mp4 (x264) with `faststart` flag
# In addition, if some resolutions are enabled the mp4 video file will be transcoded to these new resolutions
# Please, do not disable transcoding since many uploaded videos will not work
transcoding:
enabled: true
# Allow your users to upload .mkv, .mov, .avi, .wmv, .flv, .f4v, .3g2, .3gp, .mts, m2ts, .mxf, .nut videos
allow_additional_extensions: true
# If a user uploads an audio file, PeerTube will create a video by merging the preview file and the audio file
allow_audio_files: true
# Amount of threads used by ffmpeg for 1 transcoding job
threads: 1
# Amount of transcoding jobs to execute in parallel
concurrency: 1
# Choose the transcoding profile
# New profiles can be added by plugins
# Available in core PeerTube: 'default'
profile: 'default'
resolutions: # Only created if the original video has a higher resolution, uses more storage!
0p: false # audio-only (creates mp4 without video stream, always created when enabled)
144p: false
240p: false
360p: false
480p: false
720p: false
1080p: false
1440p: false
2160p: false
# Generate videos in a WebTorrent format (what we do since the first PeerTube release)
# If you also enabled the hls format, it will multiply videos storage by 2
# If disabled, breaks federation with PeerTube instances < 2.1
webtorrent:
enabled: false
# /!\ Requires ffmpeg >= 4.1
# Generate HLS playlists and fragmented MP4 files. Better playback than with WebTorrent:
# * Resolution change is smoother
# * Faster playback in particular with long videos
# * More stable playback (less bugs/infinite loading)
# If you also enabled the webtorrent format, it will multiply videos storage by 2
hls:
enabled: true
live:
enabled: false
# Limit lives duration
# -1 == unlimited
max_duration: -1 # For example: '5 hours'
# Limit max number of live videos created on your instance
# -1 == unlimited
max_instance_lives: 20
# Limit max number of live videos created by a user on your instance
# -1 == unlimited
max_user_lives: 3
# Allow your users to save a replay of their live
# PeerTube will transcode segments in a video file
# If the user daily/total quota is reached, PeerTube will stop the live
# /!\ transcoding.enabled (and not live.transcoding.enabled) has to be true to create a replay
allow_replay: true
# Your firewall should accept traffic from this port in TCP if you enable live
rtmp:
enabled: true
port: 1935
rtmps:
enabled: false
port: 1936
# Absolute path
key_file: ''
# Absolute path
cert_file: ''
# Allow to transcode the live streaming in multiple live resolutions
transcoding:
enabled: true
threads: 2
# Choose the transcoding profile
# New profiles can be added by plugins
# Available in core PeerTube: 'default'
profile: 'default'
resolutions:
144p: false
240p: false
360p: false
480p: false
720p: false
1080p: false
1440p: false
2160p: false
import:
# Add ability for your users to import remote videos (from YouTube, torrent...)
videos:
# Amount of import jobs to execute in parallel
concurrency: 1
# Classic HTTP or all sites supported by youtube-dl https://rg3.github.io/youtube-dl/supportedsites.html
http:
# We recommend to use a HTTP proxy if you enable HTTP import to prevent private URL access from this server
# See https://docs.joinpeertube.org/maintain-configuration?id=security for more information
enabled: true
youtube_dl_release:
# Direct download URL to youtube-dl binary
# Github releases API is also supported
# Examples:
# * https://api.github.com/repos/ytdl-org/youtube-dl/releases
# * https://api.github.com/repos/yt-dlp/yt-dlp/releases
url: 'https://yt-dl.org/downloads/latest/youtube-dl'
# youtube-dl binary name
# yt-dlp is also supported
name: 'youtube-dl'
# Path to the python binary to execute for youtube-dl or yt-dlp
python_path: '/usr/bin/python3'
# IPv6 is very strongly rate-limited on most sites supported by youtube-dl
force_ipv4: false
# Magnet URI or torrent file (use classic TCP/UDP/WebSeed to download the file)
torrent:
# We recommend to only enable magnet URI/torrent import if you trust your users
# See https://docs.joinpeertube.org/maintain-configuration?id=security for more information
enabled: false
auto_blacklist:
# New videos automatically blacklisted so moderators can review before publishing
videos:
of_users:
enabled: false
# Instance settings
instance:
name: 'PeerTube'
short_description: '%%peertube_short_description'
description: '%%peertube_description' # Support markdown
terms: 'No terms for now.' # Support markdown
code_of_conduct: '' # Supports markdown
# Who moderates the instance? What is the policy regarding NSFW videos? Political videos? etc
moderation_information: '' # Supports markdown
# Why did you create this instance?
creation_reason: '' # Supports Markdown
# Who is behind the instance? A single person? A non profit?
administrator: '' # Supports Markdown
# How long do you plan to maintain this instance?
maintenance_lifetime: '' # Supports Markdown
# How will you pay the PeerTube instance server? With your own funds? With users donations? Advertising?
business_model: '' # Supports Markdown
# If you want to explain on what type of hardware your PeerTube instance runs
# Example: '2 vCore, 2GB RAM...'
hardware_information: '' # Supports Markdown
# What are the main languages of your instance? To interact with your users for example
# Uncomment or add the languages you want
# List of supported languages: https://peertube.cpy.re/api/v1/videos/languages
languages:
# - en
# - es
- fr
# You can specify the main categories of your instance (dedicated to music, gaming or politics etc)
# Uncomment or add the category ids you want
# List of supported categories: https://peertube.cpy.re/api/v1/videos/categories
categories:
# - 1 # Music
# - 2 # Films
# - 3 # Vehicles
# - 4 # Art
# - 5 # Sports
# - 6 # Travels
# - 7 # Gaming
# - 8 # People
# - 9 # Comedy
# - 10 # Entertainment
# - 11 # News & Politics
# - 12 # How To
# - 13 # Education
# - 14 # Activism
# - 15 # Science & Technology
# - 16 # Animals
# - 17 # Kids
# - 18 # Food
default_client_route: '/videos/trending'
# Whether or not the instance is dedicated to NSFW content
# Enabling it will allow other administrators to know that you are mainly federating sensitive content
# Moreover, the NSFW checkbox on video upload will be automatically checked by default
is_nsfw: false
# By default, `do_not_list` or `blur` or `display` NSFW videos
# Could be overridden per user with a setting
default_nsfw_policy: 'do_not_list'
customizations:
javascript: '' # Directly your JavaScript code (without <script> tags). Will be eval at runtime
css: '' # Directly your CSS code (without <style> tags). Will be injected at runtime
# Robot.txt rules. To disallow robots to crawl your instance and disallow indexation of your site, add `/` to `Disallow:`
robots: |
User-agent: *
Disallow:
# Security.txt rules. To discourage researchers from testing your instance and disable security.txt integration, set this to an empty string
securitytxt:
'# If you would like to report a security issue\n# you may report it to:\nContact: https://github.com/Chocobozzz/PeerTube/blob/develop/SECURITY.md\nContact: mailto:'
services:
# Cards configuration to format video in Twitter
twitter:
username: '@Chocobozzz' # Indicates the Twitter account for the website or platform on which the content was published
# If true, a video player will be embedded in the Twitter feed on PeerTube video share
# If false, we use an image link card that will redirect on your PeerTube instance
# Change it to `true`, and then test on https://cards-dev.twitter.com/validator to see if you are whitelisted
whitelisted: false
followers:
instance:
# Allow or not other instances to follow yours
enabled: true
# Whether or not an administrator must manually validate a new follower
manual_approval: false
followings:
instance:
# If you want to automatically follow back new instance followers
# If this option is enabled, use the mute feature instead of deleting followings
# /!\ Don't enable this if you don't have a reactive moderation team /!\
auto_follow_back:
enabled: false
# If you want to automatically follow instances of the public index
# If this option is enabled, use the mute feature instead of deleting followings
# /!\ Don't enable this if you don't have a reactive moderation team /!\
auto_follow_index:
enabled: false
# Host your own using https://framagit.org/framasoft/peertube/instances-peertube#peertube-auto-follow
index_url: ''
theme:
default: 'default'
broadcast_message:
enabled: false
message: '' # Support markdown
level: 'info' # 'info' | 'warning' | 'error'
dismissable: false
search:
# Add ability to fetch remote videos/actors by their URI, that may not be federated with your instance
# If enabled, the associated group will be able to "escape" from the instance follows
# That means they will be able to follow channels, watch videos, list videos of non followed instances
remote_uri:
users: true
anonymous: false
# Use a third party index instead of your local index, only for search results
# Useful to discover content outside of your instance
# If you enable search_index, you must enable remote_uri search for users
# If you do not enable remote_uri search for anonymous user, your instance will redirect the user on the origin instance
# instead of loading the video locally
search_index:
enabled: false
# URL of the search index, that should use the same search API and routes
# than PeerTube: https://docs.joinpeertube.org/api-rest-reference.html
# You should deploy your own with https://framagit.org/framasoft/peertube/search-index,
# and can use https://search.joinpeertube.org/ for tests, but keep in mind the latter is an unmoderated search index
url: ''
# You can disable local search, so users only use the search index
disable_local_search: false
# If you did not disable local search, you can decide to use the search index by default
is_default_search: false
# PeerTube client/interface configuration
client:
videos:
miniature:
# By default PeerTube client displays author username
prefer_author_display_name: false
menu:
login:
# If you enable only one external auth plugin
# You can automatically redirect your users on this external platform when they click on the login button
redirect_on_single_external_auth: false

2
seed/pleroma/templates/sysuser-peertube.conf
View file

@ -1,2 +0,0 @@
g peertube 982 -
u peertube 983:982 "Peertube Server" /usr/share/peertube /sbin/nologin

1
seed/pleroma/templates/tmpfile-peertube.conf
View file

@ -1 +0,0 @@
d /srv/peertube/ 750 peertube nginx - -

34
seed/postfix-lmtp-relay/README.md Normal file
View file

@ -0,0 +1,34 @@
---
gitea: none
include_toc: true
---
# postfix-lmtp-relay
[All applications services for this dataset.](../README.md)
## Description
Postfix, the mail server, as LMTP relay.
[For more informations](http://www.postfix.org/)
## Variables
### Lmtp (*lmtp*)
| Description | Type | Provider |
|-------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|------------|
| LMTP remote server (*[server_lmtp](extras/lmtp/00-lmtp.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | LMTP |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Used by
- [postfix-relay](../postfix-relay/README.md)
## Linked to
- [relay-lmtp-client](../relay-lmtp-client/README.md)

3
seed/postfix-lmtp-relay/applicationservice.yml
View file

@ -1,2 +1,3 @@
format: '0.1' format: '0.1'
description: Postfix as LMTP relay description: Postfix, the mail server, as LMTP relay
website: http://www.postfix.org/

59
seed/postfix-relay/README.md Normal file
View file

@ -0,0 +1,59 @@
---
gitea: none
include_toc: true
---
# postfix-relay
[All applications services for this dataset.](../README.md)
## Description
Postfix, the mail server, as relay.
[For more informations](http://www.postfix.org/)
## Dependances
- [base-fedora-35](../base-fedora-35/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
- [dns-external](../dns-external/README.md)
- [postfix-lmtp-relay](../postfix-lmtp-relay/README.md)
## Variables
### Général (*general*)
#### network (*general.network*)
| Description | Values |
|-----------------------------------------------------|----------|
| *[**outgoing_ports**](dictionaries/30_postfix.xml)* | 25 |
| *[**incoming_ports**](dictionaries/30_postfix.xml)* | 25 |
#### Postfix mail server (*general.postfix*)
| Description | Type | Provider |
|--------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|------------|
| **Nom de domaine extérieur du serveur de courriel** (*[postfix_mail_hostname](dictionaries/30_postfix.xml)*) | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | |
| Authentification sur le relai SMTP (*[postfix_relay_authentifications](dictionaries/30_postfix.xml)*) [+] | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | SMTP |
##### Local server authentification (*general.postfix.local_authentification_*)
This a dynamic family generated from the variable "general.postfix.postfix_relay_authentifications".
| Description | Type | Provider |
|-------------------------------------------------------------------|------------------------------------------------------------------------------------------------------------------------|---------------|
| *[local_authentification_password_](dictionaries/30_postfix.xml)* | [secret](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | SMTP:password |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Linked to
- [relay-mail-client](../relay-mail-client/README.md)

3
seed/postfix-relay/applicationservice.yml
View file

@ -1,5 +1,6 @@
format: '0.1' format: '0.1'
description: Postfix as relay description: Postfix, the mail server, as relay
website: http://www.postfix.org/
depends: depends:
- base-fedora-35 - base-fedora-35
- dns-external - dns-external

29
seed/postgresql-client/README.md Normal file
View file

@ -0,0 +1,29 @@
---
gitea: none
include_toc: true
---
# postgresql-client
[All applications services for this dataset.](../README.md)
## Description
Application service needs interact with a Postgresql server.
[For more informations](https://www.postgresql.org)
## Used by
- [odoo](../odoo/README.md)
- [mailman](../mailman/README.md)
- [peertube](../peertube/README.md)
- [dotclear](../dotclear/README.md)
- [roundcube](../roundcube/README.md)
- [vaultwarden](../vaultwarden/README.md)
- [nextcloud](../nextcloud/README.md)
- [gitea](../gitea/README.md)
## Linked to
- [postgresql](../postgresql/README.md)

3
seed/postgresql-client/applicationservice.yml
View file

@ -1,2 +1,3 @@
format: '0.1' format: '0.1'
description: Postgresql client description: Application service needs interact with a Postgresql server
website: https://www.postgresql.org

72
seed/postgresql/README.md Normal file
View file

@ -0,0 +1,72 @@
---
gitea: none
include_toc: true
---
# postgresql
[All applications services for this dataset.](../README.md)
## Description
Postgresql, a database.
[For more informations](https://www.postgresql.org)
## Dependances
- [base-fedora-36](../base-fedora-36/README.md)
- [base-fedora](../base-fedora/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Variables
### Général (*general*)
#### PostgreSQL (*general.postgresql*)
Paramétrage du serveur de gestion de bases de données PostgreSQL
| Description | Help | Type | Values | Choices |
|-----------------------------------------------------------------------------------------------------------------------------|-------------------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------|------------------------------------|--------------------|
| **Nombre maximum de connexions** (*[pg_max_connections](dictionaries/22_postgresql.xml)*) | Nombre maximum de connexions concurrentes au serveur de base de données | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 100 | |
| **Délai de connexion maximum (en secondes)** (*[pg_authentication_timeout](dictionaries/22_postgresql.xml)*) | Temps maximum pour terminer l'authentification du client | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 60 | |
| **Emplacement de la clé SSL du serveur PostgreSQL** (*[pg_server_key](dictionaries/22_postgresql.xml)*) | | [filename](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | /etc/postgresql/12/main/server.key | |
| **Emplacement du certificat du serveur PostgreSQL** (*[pg_server_cert](dictionaries/22_postgresql.xml)*) | | [filename](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | /etc/postgresql/12/main/server.crt | |
| **Activer le VACUUM automatique** (*[pg_autovacuum](dictionaries/22_postgresql.xml)*) | | [boolean](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | True | |
| **Mémoire tampon allouée aux opérations de tri et tables de hash** (*[pg_work_mem](dictionaries/22_postgresql.xml)*) | Quantité de mémoire allouée à chaque opération avant écriture sur le disque (par défaut : 4MB) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 4 | |
| **Unité de la mémoire tampon** (*[pg_work_mem_unit](dictionaries/22_postgresql.xml)*) | | [choice](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | MB | MB<br />kB |
| **Mémoire tampon allouée pour les opérations de maintenance** (*[pg_maintenance_work_mem](dictionaries/22_postgresql.xml)*) | Quantité de mémoire allouée à chaque opération avant écriture sur le disque (par défaut : 64MB, minimum: 1024kB) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 64 | |
| **Unité de la mémoire tampon** (*[pg_maintenance_work_mem_unit](dictionaries/22_postgresql.xml)*) | | [choice](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | MB | MB<br />kB |
| **Mémoire tampon allouée pour les journaux** (*[pg_wal_buffers](dictionaries/22_postgresql.xml)*) | Quantité de mémoire allouée avant écriture sur le disque (par défaut : -1, soit 1/32ème de la valeur de shared_buffers) | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | -1 | |
| **Limite douce du Write Ahead Log** (*[pg_max_wal_size](dictionaries/22_postgresql.xml)*) | Limite douce pour le Write Ahead Log | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 1 | |
| **Unité de la limite douce du Write Ahead Log** (*[pg_max_wal_size_unit](dictionaries/22_postgresql.xml)*) | | [choice](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | GB | GB<br />MB<br />kB |
| **Quantité de mémoire pour les buffers partagés** (*[pg_shared_buffers](dictionaries/22_postgresql.xml)*) | Quantité de mémoire que le serveur de bases de données utilise comme mémoire partagée | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 128 | |
| **Unité de la quantité de mémoire pour les buffers partagés** (*[pg_shared_buffers_unit](dictionaries/22_postgresql.xml)*) | | [choice](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | MB | MB<br />kB |
| **Taille du cache** (*[pg_effective_cache_size](dictionaries/22_postgresql.xml)*) | Initialise l'estimation faite par le planificateur pour le nombre de bloc de 8ko réelle du cache disque disponible pour une requête | [number](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | 4 | |
| **Unité de la taille du cache** (*[pg_effective_cache_size_unit](dictionaries/22_postgresql.xml)*) | | [choice](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | GB | MB<br />kB<br />GB |
### Accounts (*accounts*)
| Description | Type | Provider |
|--------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------------------|------------|
| Remote clients needing an account (*[remotes](extras/accounts/00_accounts.xml)*) [+] | [domainname](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | Postgresql |
#### Account for (*accounts.remote_*)
This a dynamic family generated from the variable "accounts.remotes".
| Description | Type |
|-----------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------|
| **Remote IP** (*[remote_ip_](extras/accounts/00_accounts.xml)*) | [ip](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Linked to
- [postgresql-client](../postgresql-client/README.md)

3
seed/postgresql/applicationservice.yml
View file

@ -1,4 +1,5 @@
format: '0.1' format: '0.1'
description: Postgresql description: Postgresql, a database
website: https://www.postgresql.org
depends: depends:
- base-fedora-36 - base-fedora-36

47
seed/provider-systemd-machined/README.md Normal file
View file

@ -0,0 +1,47 @@
---
gitea: none
include_toc: true
---
# provider-systemd-machined
[All applications services for this dataset.](../README.md)
## Description
Machine started in Systemd Machined environment.
[For more informations](https://www.freedesktop.org/wiki/Software/systemd/machined/)
## Dependances
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
## Variables
### Général (*general*)
| Description | Type | Values |
|-----------------------------------------------------------------------------------------------------------|--------------------------------------------------------------------------------------------------------------------------|---------------------------------|
| **Nom du répertoire racine des données** (*[container_srv_path](dictionaries/16-machined.xml)*) | [filename](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | /var/lib/risotto/srv |
| **Nom du répertoire racine des configurations** (*[container_config_path](dictionaries/16-machined.xml)*) | [filename](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | /var/lib/risotto/configurations |
| **Nom du répertoire racine des journaux** (*[container_journal_path](dictionaries/16-machined.xml)*) | [filename](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | /var/lib/risotto/journals |
| *[**use_systemd_repart**](dictionaries/16-machined.xml)* | [string](https://cloud.silique.fr/gitea/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | False |
#### network (*general.network*)
| Description | Values | Supplier |
|-------------------------------------------------------------------|----------|--------------------|
| *[**netwokd_interface_name_type**](dictionaries/16-machined.xml)* | host | |
| *[zones_list](dictionaries/16-machined.xml)* | | Host:machine_zones |
- [+]: variable is multiple
- **bold**: variable is mandatory
## Linked to
- [host-systemd-machined](../host-systemd-machined/README.md)

3
seed/provider-systemd-machined/applicationservice.yml
View file

@ -1,4 +1,5 @@
format: '0.1' format: '0.1'
description: Information for Systemd Machined description: Machine started in Systemd Machined environment
website: https://www.freedesktop.org/wiki/Software/systemd/machined/
depends: depends:
- systemd - systemd

Some files were not shown because too many files have changed in this diff Show more