maddox/clustered-fucks
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
clustered-fucks/playbooks/collect-env-templates.yml
Maddox ecac3c8949 Add compose file management infrastructure 
- collect-compose.yml: Fetches all compose files from docker_hosts
- collect-env-templates.yml: Creates .env.example with secrets redacted
- deploy-compose.yml: Pushes compose files to hosts (with optional restart)
- diff-compose.yml: Shows differences before deploying

Collected 23 compose files from 7 hosts:
- replicant: 12 stacks (arr-stack, mealie, portainer, etc)
- docker666: 4 stacks (unifi, gluetun, uptime, utils)
- databases: 3 stacks (postgres, forgejo, utils)
- download-stack: 2 stacks (download-stack, utils)
- media-transcode: 1 stack (utils)
- network-services: 1 stack (utils)
- immich: 1 stack (utils)
2026-01-23 19:11:23 +00:00

40 lines
1.2 KiB
YAML
Raw Blame History

---
- name: Collect .env files as templates (with secrets redacted)
hosts: docker_hosts
become: yes
gather_facts: no
tasks:
- name: Set appdata path
set_fact:
appdata_path: "{{ docker_appdata | default('/home/docker/appdata') }}"
- name: Find all .env files
find:
paths: "{{ appdata_path }}"
patterns: ".env"
recurse: yes
depth: 3
hidden: yes
register: env_files
- name: Read and redact .env files
shell: |
cat "{{ item.path }}" | sed -E 's/(PASSWORD|SECRET|KEY|TOKEN|API_KEY)=.*/\1=REDACTED/gi'
loop: "{{ env_files.files }}"
loop_control:
label: "{{ item.path | dirname | basename }}/.env"
register: redacted_envs
changed_when: false
- name: Save as .env.example
delegate_to: localhost
become: no
copy:
content: "{{ item.stdout }}"
dest: "{{ playbook_dir }}/../compose-files/{{ inventory_hostname }}/{{ item.item.path | dirname | basename }}/.env.example"
mode: '0644'
loop: "{{ redacted_envs.results }}"
loop_control:
label: "{{ item.item.path | dirname | basename }}/.env.example"
when: item.stdout | length > 0
Reference in a new issue View git blame Copy permalink