style: add Ansible-managed headers

Signed-off-by: Matej Focko <me@mfocko.xyz>
2024-11-15 16:50:11 +01:00 · 2024-11-15 16:50:11 +01:00 · d0fc1cd3d6
commit d0fc1cd3d6
parent 02b44273db
27 changed files with 54 additions and 0 deletions
--- a/roles/certbot/templates/certbot.container
+++ b/roles/certbot/templates/certbot.container
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 [Unit]
 Description=Certbot renewal
--- a/roles/certbot/templates/certbot.timer
+++ b/roles/certbot/templates/certbot.timer
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 [Unit]
 Description=Run certbot once a week
--- a/roles/certbot/templates/cli.ini
+++ b/roles/certbot/templates/cli.ini
@ -1,3 +1,5 @@
 ; {{ ansible_managed }}
 email = {{ certbot_email }}
 agree-tos = true
--- a/roles/certbot/templates/porkbun.ini
+++ b/roles/certbot/templates/porkbun.ini
@ -1,2 +1,4 @@
 ; {{ ansible_managed }}
 dns_porkbun_key={{ porkbun_apikey }}
 dns_porkbun_secret={{ porkbun_secretapikey }}
--- a/roles/cockpit/templates/cockpit.conf
+++ b/roles/cockpit/templates/cockpit.conf
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 [WebService]
 Origins = https://cockpit.{{ host_fqdn }} wss://cockpit.{{ host_fqdn }}
 ProtocolHeader = X-Forwarded-Proto
--- a/roles/ddns/templates/ddns.container
+++ b/roles/ddns/templates/ddns.container
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 [Unit]
 Description=DDNS Update
--- a/roles/ddns/templates/ddns.ini
+++ b/roles/ddns/templates/ddns.ini
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 DOMAIN={{ ddns_domain }}
 SUBDOMAINS={{ ','.join(ddns_subdomains) }}
 APIKEY={{ porkbun_apikey }}
--- a/roles/forgejo/templates/forgejo.container
+++ b/roles/forgejo/templates/forgejo.container
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 [Unit]
 Description=Forgejo
--- a/roles/forgejo/templates/forgejo.network
+++ b/roles/forgejo/templates/forgejo.network
@ -1,2 +1,4 @@
 # {{ ansible_managed }}
 [Network]
 NetworkName=forgejo
--- a/roles/forgejo/templates/forgejo.volume
+++ b/roles/forgejo/templates/forgejo.volume
@ -1,2 +1,4 @@
 # {{ ansible_managed }}
 [Volume]
 VolumeName=forgejo-data
--- a/roles/nginx/files/nginx.conf
+++ b/roles/nginx/files/nginx.conf
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 # For more information on configuration, see:
 #   * Official English Documentation: http://nginx.org/en/docs/
 #   * Official Russian Documentation: http://nginx.org/ru/docs/
--- a/roles/nginx/files/proxy.conf
+++ b/roles/nginx/files/proxy.conf
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 proxy_set_header Host $http_host;
 proxy_set_header X-Real-IP $remote_addr;
 proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
--- a/roles/nginx/templates/http.conf
+++ b/roles/nginx/templates/http.conf
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 http {
    log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
                      '$status $body_bytes_sent "$http_referer" '
--- a/roles/nginx/templates/me.conf
+++ b/roles/nginx/templates/me.conf
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 server {
 	include		ssl.conf;
 	include		fastcgi.conf;
--- a/roles/nginx/templates/reverse_proxy.conf
+++ b/roles/nginx/templates/reverse_proxy.conf
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 upstream {{ proxy_domain }} {
 	server {{ proxy_upstream }};
 }
--- a/roles/nginx/templates/ssl.conf
+++ b/roles/nginx/templates/ssl.conf
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 listen       443 ssl http2;
 ssl_certificate      /etc/letsencrypt/live/{{ nginx_certname }}/fullchain.pem;
--- a/roles/sshd/files/10-ca.conf
+++ b/roles/sshd/files/10-ca.conf
@ -1 +1,3 @@
 # {{ ansible_managed }}
 TrustedUserCAKeys /etc/ssh/sshd_config.d/trusted-user-ca-keys.pem
--- a/roles/sshd/templates/10-harden.conf
+++ b/roles/sshd/templates/10-harden.conf
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 # Port
 Port {{ sshd_port }}
--- a/roles/sshd/templates/10-signed-host-key.conf
+++ b/roles/sshd/templates/10-signed-host-key.conf
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 HostCertificate /etc/ssh/sshd_config.d/ssh_host_rsa_key-cert.pub
 HostCertificate /etc/ssh/sshd_config.d/ssh_host_ecdsa_key-cert.pub
 HostCertificate /etc/ssh/sshd_config.d/ssh_host_ed25519_key-cert.pub
--- a/roles/thelounge/templates/thelounge.container
+++ b/roles/thelounge/templates/thelounge.container
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 [Unit]
 Description=The Lounge
--- a/roles/thelounge/templates/thelounge.volume
+++ b/roles/thelounge/templates/thelounge.volume
@ -1,2 +1,4 @@
 # {{ ansible_managed }}
 [Volume]
 VolumeName=thelounge-data
--- a/roles/tmpfiles/templates/user.conf
+++ b/roles/tmpfiles/templates/user.conf
@ -1 +1,3 @@
 # {{ ansible_managed }}
 d /var/tmp/{{ target_user }} 0740 {{ target_user }} {{ target_group }} {{ tmpfiles_retention }}
--- a/roles/vaultwarden/templates/vaultwarden.container
+++ b/roles/vaultwarden/templates/vaultwarden.container
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 [Unit]
 Description=Vaultwarden
--- a/roles/vaultwarden/templates/vaultwarden.ini
+++ b/roles/vaultwarden/templates/vaultwarden.ini
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 DATABASE_URL=postgresql://{{ vaultwarden_db_user }}:{{ vaultwarden_db_pass | urlencode }}@{{ vaultwarden_db_host }}/{{ vaultwarden_db_name }}
 DOMAIN=https://{{ vaultwarden_address }}
--- a/roles/vaultwarden/templates/vaultwarden.network
+++ b/roles/vaultwarden/templates/vaultwarden.network
@ -1,2 +1,4 @@
 # {{ ansible_managed }}
 [Network]
 NetworkName=vaultwarden
--- a/roles/vaultwarden/templates/vaultwarden.volume
+++ b/roles/vaultwarden/templates/vaultwarden.volume
@ -1,2 +1,4 @@
 # {{ ansible_managed }}
 [Volume]
 VolumeName=vaultwarden-data
--- a/roles/wg/templates/wg.conf
+++ b/roles/wg/templates/wg.conf
@ -1,3 +1,5 @@
 # {{ ansible_managed }}
 [Interface]
 # Assign the static IP
 Address = {{ address }}
`@ -1 +1,3 @@`
		`# {{ ansible_managed }}`

	`TrustedUserCAKeys /etc/ssh/sshd_config.d/trusted-user-ca-keys.pem`	`TrustedUserCAKeys /etc/ssh/sshd_config.d/trusted-user-ca-keys.pem`
`@ -1 +1,3 @@`
		`# {{ ansible_managed }}`

	`d /var/tmp/{{ target_user }} 0740 {{ target_user }} {{ target_group }} {{ tmpfiles_retention }}`	`d /var/tmp/{{ target_user }} 0740 {{ target_user }} {{ target_group }} {{ tmpfiles_retention }}`