Infrastructure

This repository contains the infrastructure code and documentation for deploying and managing my personnal services.

Inventory

See documentation/inventory.md

Services

Name	Description	Access	Server	Deployment	Status
Accueil	Services homepage	Public	Bruxelles	TrueNAS Apps
Bitwarden	Password manager (Vaultwarden)	Public	Bruxelles	TrueNAS Apps
Nuage	Cloud storage and collaboration (Nextcloud)	Public	Bruxelles	TrueNAS Apps
Galerie	Photo management (Immich)	Public	Bruxelles	TrueNAS Apps
Automatisation	Workflow automation (n8n)	Private	Bruxelles	TrueNAS Apps
Maison	Home automation (Home Assistant)	Public	Bruxelles	TrueNAS Apps
Médiathèque	Media server (Jellyfin)	Public	Bruxelles	TrueNAS Apps
Téléchargement	Download manager (qBittorrent)	Private	Bruxelles	Ansible
Matrix	Matrix server (Synapse)	Public	Bruxelles	Ansible
Archive	Document management (Paperless-ngx)	Private	Bruxelles	TrueNAS Apps
Statistiques	Analytics (Umami)	Public	Bruxelles	TrueNAS Apps
Notes	Documentation (Docmost)	Private	Bruxelles	Ansible
Mini Train Store	Business management (Odoo)	Public	Bruxelles	TrueNAS Apps
Git	Git forge (Gitea)	Private	Bruxelles	TrueNAS Apps
Finances	Personal finance manager (Firefly III)	Private	Bruxelles	TrueNAS Apps
Importateur finances	Finance data importer (Firefly III importer)	Private	Bruxelles	TrueNAS Apps
Recettes	Recipe manager (Mealie)	Private	Bruxelles	TrueNAS Apps
Portefolio Alix	Personal portfolio (GitHub Pages)	Public	-	-
Radarr	Movie collection manager	Private	Bruxelles	TrueNAS Apps
Sonarr	TV show collection manager	Private	Bruxelles	TrueNAS Apps
Prowlarr	Indexer manager	Private	Bruxelles	TrueNAS Apps
Bazarr	Subtitle manager	Private	Bruxelles	TrueNAS Apps
Jellyseerr	Media request manager	Private	Bruxelles	TrueNAS Apps
Wakapi	Coding time tracker	Public	Bruxelles	Ansible
Proxy Bruxelles	Reverse proxy (Nginx Proxy Manager)	Private	Bruxelles	TrueNAS Apps
DNS dynamique Bruxelles	Dynamic DNS updater	Private	Bruxelles	TrueNAS Apps
Bruxelles console	Server management (TrueNAS)	Private	Bruxelles	TrueNAS Apps
Conteneurs Bruxelles	Container management (Portainer)	Private	Bruxelles	TrueNAS Apps
État	Service status page	Public	Bruxelles	TrueNAS Apps	-
VPN	Virtual private network (Tailscale/Headscale)	Public	Luxembourg	Ansible
VPN console	VPN administration console	Public	Luxembourg	Ansible
Matrix	Decentralized communication platform	Public	Luxembourg	Ansible	-
Status (dera.page)	Service status page	Public	Luxembourg	Ansible	-

Deployment

Deploy a service playbook with Ansible:

ansible-playbook -i inventory.yml --ask-become-pass services/<service_name>/deploy.yml

Structure

The repository is organized by service, with each service containing all its related files:

services/
  <service_name>/
    deploy.yml          # Ansible playbook
    compose.yml         # Docker Compose file
    config.yml          # Service configuration
    ...
vault/                  # Private submodule with encrypted secrets
deployments/            # Deployment-specific files
documentation/          # Documentation

Vault

Source the vault password file path:

source source.sh

Then edit or view vault files with:

ansible-vault edit vault/...
ansible-vault view vault/...