diff --git a/inventory/production.yml b/inventory/production.yml index de3d72e..5a8f1e4 100644 --- a/inventory/production.yml +++ b/inventory/production.yml @@ -83,9 +83,6 @@ peertubeservers: hosts: pt1.dmz.mateu.be: -peertuberunners: - hosts: - phpservers: hosts: web[1:3].dmz.mateu.be: diff --git a/playbooks/peertube_runner.yml b/playbooks/peertube_runner.yml deleted file mode 100644 index ed61e46..0000000 --- a/playbooks/peertube_runner.yml +++ /dev/null @@ -1,9 +0,0 @@ ---- - -- name: Deploy peertube runner - hosts: peertuberunners - gather_facts: true - diff: true - roles: - - nodejs - - peertube_runner diff --git a/roles/peertube_runner/handlers/main.yml b/roles/peertube_runner/handlers/main.yml deleted file mode 100644 index 51bb2d4..0000000 --- a/roles/peertube_runner/handlers/main.yml +++ /dev/null @@ -1,7 +0,0 @@ ---- - -- name: Restart PeerTube Runner - ansible.builtin.systemd_service: - name: prunner - state: restarted - daemon_reload: true diff --git a/roles/peertube_runner/tasks/main.yml b/roles/peertube_runner/tasks/main.yml deleted file mode 100644 index 6147be1..0000000 --- a/roles/peertube_runner/tasks/main.yml +++ /dev/null @@ -1,55 +0,0 @@ ---- - -- name: Install prerequisites - ansible.builtin.package: - name: ffmpeg - state: present - update_cache: true - -- name: Install peertube-runner via npm - community.general.npm: - name: "@peertube/peertube-runner" - state: latest - global: true - -- name: Create PeerTube Runner user - ansible.builtin.user: - comment: PeerTube Runner - home: "{{ peertube_runner_homedir }}" - name: prunner - password: '!' - shell: /bin/bash - state: present - -- name: Create PeerTube Runner dir struct - ansible.builtin.file: - path: "{{ peertube_runner_configdir }}" - owner: prunner - group: prunner - mode: "0o750" - state: directory - -- name: Create PeerTube Runner config file - ansible.builtin.template: - src: config.toml.j2 - dest: "{{ peertube_runner_configdir }}config.toml" - owner: prunner - group: prunner - mode: "0o640" - notify: Restart PeerTube Runner - -- name: Put systemd PeerTube Runner service - ansible.builtin.template: - src: prunner.service.j2 - dest: /etc/systemd/system/prunner.service - owner: root - group: root - mode: "0o644" - notify: Restart PeerTube Runner - -- name: Start PeerTube Runner service - ansible.builtin.systemd_service: - name: prunner - state: started - enabled: true - daemon_reload: true diff --git a/roles/peertube_runner/templates/config.toml.j2 b/roles/peertube_runner/templates/config.toml.j2 deleted file mode 100644 index 1c737d1..0000000 --- a/roles/peertube_runner/templates/config.toml.j2 +++ /dev/null @@ -1,15 +0,0 @@ -[jobs] -concurrency = 2 - -[ffmpeg] -threads = 0 -nice = 20 - -[transcription] -engine = "whisper-ctranslate2" -model = "small" - -[[registeredInstances]] -url = "https://p.nintendojo.fr" -runnerToken = "{{ peertube_runner_token }}" -runnerName = "pt-runner1" diff --git a/roles/peertube_runner/templates/prunner.service.j2 b/roles/peertube_runner/templates/prunner.service.j2 deleted file mode 100644 index 733e35a..0000000 --- a/roles/peertube_runner/templates/prunner.service.j2 +++ /dev/null @@ -1,32 +0,0 @@ -[Unit] -Description=PeerTube runner daemon -After=network.target - -[Service] -Type=simple -Environment=NODE_ENV=production -User=prunner -Group=prunner -ExecStart=peertube-runner server -WorkingDirectory={{ peertube_runner_homedir }} -SyslogIdentifier=prunner -Restart=always - -; Some security directives. -; Mount /usr, /boot, and /etc as read-only for processes invoked by this service. -ProtectSystem=full -; Sets up a new /dev mount for the process and only adds API pseudo devices -; like /dev/null, /dev/zero or /dev/random but not physical devices. Disabled -; by default because it may not work on devices like the Raspberry Pi. -PrivateDevices=false -; Ensures that the service process and all its children can never gain new -; privileges through execve(). -NoNewPrivileges=true -; This makes /home, /root, and /run/user inaccessible and empty for processes invoked -; by this unit. Make sure that you do not depend on data inside these folders. -ProtectHome=true -; Drops the sys admin capability from the daemon. -CapabilityBoundingSet=~CAP_SYS_ADMIN - -[Install] -WantedBy=multi-user.target diff --git a/roles/peertube_runner/vars/main.yml b/roles/peertube_runner/vars/main.yml deleted file mode 100644 index 37a60de..0000000 --- a/roles/peertube_runner/vars/main.yml +++ /dev/null @@ -1,4 +0,0 @@ ---- - -peertube_runner_homedir: /srv/prunner/ -peertube_runner_configdir: "{{ peertube_runner_homedir }}.config/peertube-runner-nodejs/default/"