homeassistant

Ansible role that deploys a supervised home assistant installation on my homeassistant device.

3.4 KB•YML

main.yml

3.4 KB • 85 lines • yaml

1---
2# ==============================================================================
3# HOME ASSISTANT SUPERVISED ROLE DEFAULTS
4# ==============================================================================
5
6# Feature flags
7homeassistant_install_supervisor: true
8homeassistant_configure_network: true
9homeassistant_install_os_agent: true
10homeassistant_validate_installation: true
11
12# Home Assistant configuration
13homeassistant_machine_type: qemux86-64  # Options: qemux86-64, qemuarm-64, generic-x86-64
14homeassistant_data_share: /usr/share/hassio
15
16# OS-Agent configuration
17homeassistant_os_agent_version: latest  # Use 'latest' or specific version like '1.7.2'
18homeassistant_os_agent_arch: "{{ 'amd64' if ansible_architecture == 'x86_64' else 'aarch64' }}"
19
20# Network configuration
21homeassistant_manage_networking: true
22homeassistant_network_interface: "{{ ansible_default_ipv4.interface }}"
23
24# Installation URLs and paths
25homeassistant_supervisor_deb_url: "https://github.com/home-assistant/supervised-installer/releases/latest/download/homeassistant-supervised.deb"
26homeassistant_os_agent_base_url: "https://github.com/home-assistant/os-agent/releases"
27
28# System dependencies
29homeassistant_system_packages:
30  - network-manager
31  - systemd-resolved
32  - curl
33  - lsb-release
34  - udisks2
35  - apparmor
36  - jq
37  - wget
38  - ca-certificates
39  - gnupg
40
41# Cleanup settings
42homeassistant_cleanup_downloads: true
43
44# Service timeouts (seconds)
45homeassistant_service_start_timeout: 300
46
47# ==============================================================================
48# DOCKER SETTINGS
49# ==============================================================================
50homeassistant_docker_base_path: /docker
51homeassistant_docker_owner: "{{ ansible_user }}"
52homeassistant_docker_group: users
53
54# ==============================================================================
55# NGINX PROXY MANAGER CONFIGURATION
56# ==============================================================================
57homeassistant_npm_enabled: true
58homeassistant_npm_container_name: npm
59homeassistant_npm_http_port: 80
60homeassistant_npm_https_port: 443
61homeassistant_npm_admin_port: 81
62
63# NPM network (from vault)
64homeassistant_npm_network_name: proxy_net
65homeassistant_npm_network_subnet: "{{ vault_homeassistant.npm_network_subnet | default('172.30.0.0/24') }}"
66homeassistant_npm_network_gateway: "{{ vault_homeassistant.npm_network_gateway | default('172.30.0.1') }}"
67homeassistant_npm_ip: "{{ vault_homeassistant.npm_ip | default('172.30.0.10') }}"
68
69# ==============================================================================
70# CROWDSEC CONFIGURATION
71# ==============================================================================
72homeassistant_crowdsec_enabled: true
73homeassistant_crowdsec_container_name: crowdsec
74homeassistant_crowdsec_instance_name: "homeassistant-npm"
75
76# CrowdSec LAPI connection (from vault â OPNsense firewall)
77homeassistant_crowdsec_lapi_host: "{{ vault_homeassistant.crowdsec_lapi_host | default('') }}"
78homeassistant_crowdsec_lapi_port: "{{ vault_homeassistant.crowdsec_lapi_port | default('8080') }}"
79
80# CrowdSec credentials (from vault)
81# The agent must be registered on the OPNsense LAPI first:
82#   cscli machines add homeassistant-npm --password <password> --url http://<firewall>:8080
83homeassistant_crowdsec_agent_password: "{{ vault_homeassistant.crowdsec_agent_password | default('') }}"
84homeassistant_crowdsec_enroll_key: "{{ vault_homeassistant.crowdsec_enroll_key | default('') }}"
85

1--- 2# ============================================================================== 3# HOME ASSISTANT SUPERVISED ROLE DEFAULTS 4# ============================================================================== 5 6# Feature flags 7homeassistant_install_supervisor: true 8homeassistant_configure_network: true 9homeassistant_install_os_agent: true 10homeassistant_validate_installation: true 11 12# Home Assistant configuration 13homeassistant_machine_type: qemux86-64 # Options: qemux86-64, qemuarm-64, generic-x86-64 14homeassistant_data_share: /usr/share/hassio 15 16# OS-Agent configuration 17homeassistant_os_agent_version: latest # Use 'latest' or specific version like '1.7.2' 18homeassistant_os_agent_arch: "{{ 'amd64' if ansible_architecture == 'x86_64' else 'aarch64' }}" 19 20# Network configuration 21homeassistant_manage_networking: true 22homeassistant_network_interface: "{{ ansible_default_ipv4.interface }}" 23 24# Installation URLs and paths 25homeassistant_supervisor_deb_url: "https://github.com/home-assistant/supervised-installer/releases/latest/download/homeassistant-supervised.deb" 26homeassistant_os_agent_base_url: "https://github.com/home-assistant/os-agent/releases" 27 28# System dependencies 29homeassistant_system_packages: 30 - network-manager 31 - systemd-resolved 32 - curl 33 - lsb-release 34 - udisks2 35 - apparmor 36 - jq 37 - wget 38 - ca-certificates 39 - gnupg 40 41# Cleanup settings 42homeassistant_cleanup_downloads: true 43 44# Service timeouts (seconds) 45homeassistant_service_start_timeout: 300 46 47# ============================================================================== 48# DOCKER SETTINGS 49# ============================================================================== 50homeassistant_docker_base_path: /docker 51homeassistant_docker_owner: "{{ ansible_user }}" 52homeassistant_docker_group: users 53 54# ============================================================================== 55# NGINX PROXY MANAGER CONFIGURATION 56# ============================================================================== 57homeassistant_npm_enabled: true 58homeassistant_npm_container_name: npm 59homeassistant_npm_http_port: 80 60homeassistant_npm_https_port: 443 61homeassistant_npm_admin_port: 81 62 63# NPM network (from vault) 64homeassistant_npm_network_name: proxy_net 65homeassistant_npm_network_subnet: "{{ vault_homeassistant.npm_network_subnet | default('172.30.0.0/24') }}" 66homeassistant_npm_network_gateway: "{{ vault_homeassistant.npm_network_gateway | default('172.30.0.1') }}" 67homeassistant_npm_ip: "{{ vault_homeassistant.npm_ip | default('172.30.0.10') }}" 68 69# ============================================================================== 70# CROWDSEC CONFIGURATION 71# ============================================================================== 72homeassistant_crowdsec_enabled: true 73homeassistant_crowdsec_container_name: crowdsec 74homeassistant_crowdsec_instance_name: "homeassistant-npm" 75 76# CrowdSec LAPI connection (from vault â OPNsense firewall) 77homeassistant_crowdsec_lapi_host: "{{ vault_homeassistant.crowdsec_lapi_host | default('') }}" 78homeassistant_crowdsec_lapi_port: "{{ vault_homeassistant.crowdsec_lapi_port | default('8080') }}" 79 80# CrowdSec credentials (from vault) 81# The agent must be registered on the OPNsense LAPI first: 82# cscli machines add homeassistant-npm --password <password> --url http://<firewall>:8080 83homeassistant_crowdsec_agent_password: "{{ vault_homeassistant.crowdsec_agent_password | default('') }}" 84homeassistant_crowdsec_enroll_key: "{{ vault_homeassistant.crowdsec_enroll_key | default('') }}" 85