feat: Add Nginx web admin interface port.

2025-09-04 06:04:14 +02:00 · 2025-09-04 06:04:14 +02:00 · fcd034e277
commit fcd034e277
parent 2085414adf
3 changed files with 52 additions and 2 deletions
--- a/playbooks/roles/common/tasks/main.yml
+++ b/playbooks/roles/common/tasks/main.yml
@ -43,3 +43,16 @@
    sysctl_file: /etc/sysctl.d/99-wireguard-sysctl.conf
    reload: true
  become: true
+
+- name: Create podman group if it does not exist
+  ansible.builtin.group:
+    name: podman
+    state: present
+  become: true
+
+- name: Add ansible_user to podman group
+  ansible.builtin.user:
+    name: "{{ ansible_user }}"
+    groups: podman
+    append: true
+  become: true
--- a/playbooks/roles/network/tasks/main.yml
+++ b/playbooks/roles/network/tasks/main.yml
@ -56,7 +56,7 @@
  become: true

 - name: Stop and remove existing Podman Compose services and volumes
-  ansible.builtin.shell: podman-compose -f /opt/podman-compose/network/podman-compose.yml down --rmi all --volumes
+  ansible.builtin.shell: podman-compose -f /opt/podman-compose/network/podman-compose.yml down --volumes
  args:
    chdir: "/opt/podman-compose/network"
  ignore_errors: true
@ -109,6 +109,14 @@
    immediate: true
  become: true

+- name: Allow Nginx Proxy Manager Admin UI port
+  ansible.posix.firewalld:
+    port: 9900/tcp
+    permanent: true
+    state: enabled
+    immediate: true
+  become: true
+
 - name: Test Nginx HTTP accessibility
  ansible.builtin.shell: curl -f http://localhost:80
  register: nginx_curl_test
@ -136,5 +144,20 @@
 - name: Display Wireguard nc test result
  debug:
    var: wireguard_nc_test.stdout
+  tags:
+    - debug
+
+- name: Test Wireguard Admin UI accessibility
+  ansible.builtin.shell: curl -f http://localhost:51821
+  register: wireguard_admin_curl_test
+  changed_when: false
+  failed_when: wireguard_admin_curl_test.rc != 0
+  become: true # Run as root
+  tags:
+    - debug
+
+- name: Display Wireguard Admin UI curl test result
+  debug:
+    var: wireguard_admin_curl_test.stdout
  tags:
    - debug
--- a/playbooks/roles/portainer/tasks/main.yml
+++ b/playbooks/roles/portainer/tasks/main.yml
@ -12,7 +12,6 @@
    ports:
      - "9000:9000"
    volumes:
-      - "/run/podman/podman.sock:/run/podman/podman.sock"
      - "portainer_data:/data"
    restart_policy: unless-stopped
    healthcheck:
@ -36,3 +35,18 @@
    state: enabled
    immediate: true
  become: true
+
+- name: Test Portainer UI accessibility
+  ansible.builtin.shell: curl -f http://localhost:9000
+  register: portainer_curl_test
+  changed_when: false
+  failed_when: portainer_curl_test.rc != 0
+  become: true # Run as root
+  tags:
+    - debug
+
+- name: Display Portainer curl test result
+  debug:
+    var: portainer_curl_test.stdout
+  tags:
+    - debug