[antifarben]

Woah! Podman? Adguardhome? grafana? Loki? NGINX? rclone? Vaultwarde? Your setup sounds a lot of what I want to achieve!

You're not using an OIDC provider like KanIDM or so? Is your Ansible repo on GitHub?

[ghostfoxgod]

I have plans of looking into OIDC setup soon-ish, right now I don't have any specific need for it but just for learning purposes I'll be setting it up soon.

Also I'm planning to write about Ansible as well in future.

[antifarben]

May I ask why you have Podman _and_ Docker roles? And do you have the setup published on GitHub or GitLab or so?

[ghostfoxgod]

I have Podman running in one server and Docker in another, Podman was for testing something out so I created a role for that as well.

The repo is private on GitHub as of now, I would have to re-check everything once if I accidentally did not leak any secrets at some point of time when I was still learning about Ansible. So it will be sometime before I make it a public repo.

Meanwhile, if you are looking for something specific then let me know, I will try to cover that topic in depth in some blog post.

[orev]

If the secrets are on GitHub, private repo or not, they’re already leaked. Secrets should never be stored on any external service.