From 1a862ff3f552b319867b9558aa6112ff44efc831 Mon Sep 17 00:00:00 2001
From: Alpha Chen <alpha@kejadlen.dev>
Date: Sun, 15 Dec 2019 18:47:14 -0800
Subject: [PATCH] [ansible] add syncthing to on-fire-within

---
 ansible/on-fire-within/hass-io.yml |  4 ++
 ansible/on-fire-within/main.yml    | 73 ++++++++++++++++++------------
 ansible/syncthing/Dockerfile       | 11 +++++
 3 files changed, 60 insertions(+), 28 deletions(-)
 create mode 100644 ansible/syncthing/Dockerfile

diff --git a/ansible/on-fire-within/hass-io.yml b/ansible/on-fire-within/hass-io.yml
index 30070c1..3e125d3 100644
--- a/ansible/on-fire-within/hass-io.yml
+++ b/ansible/on-fire-within/hass-io.yml
@@ -19,6 +19,10 @@
           - jq
           - network-manager
           - socat
+
+          # https://www.home-assistant.io/integrations/bluetooth_tracker/
+          - bluetooth
+          - libbluetooth-dev
         update_cache: yes
     - service:
         name: ModemManager
diff --git a/ansible/on-fire-within/main.yml b/ansible/on-fire-within/main.yml
index 774ac07..3e1db64 100644
--- a/ansible/on-fire-within/main.yml
+++ b/ansible/on-fire-within/main.yml
@@ -77,9 +77,37 @@
         dest: /etc/traefik/traefik.toml
         mode: 0600
 
+    # TODO This should really go after the docker_compose task, since it
+    # depends on the network that docker-compose makes. We should create the
+    # network first so we can do this, and set the services to use that network
+    # specifically.
+    - name: traefik dynamic configuration
+      block:
+        # - shell: ip -4 addr show docker0 | grep -Po 'inet \K[\d.]+' | head -n 1
+        - shell: docker network inspect on-fire-within_default | jq --raw-output .[0].IPAM.Config[0].Gateway
+          register: docker_ip_result
+        - set_fact:
+            docker_ip: "{{ docker_ip_result.stdout | trim }}"
+        - copy:
+            content: |
+              [http.routers]
+                [http.routers.hassio]
+                  rule = "Host(`{{ traefik.host_rules.hassio }}`)"
+                  service = "hassio"
+                  [http.routers.hassio.tls]
+                    certResolver = "le"
+
+              [http.services]
+                [http.services.hassio.loadBalancer]
+                  [[http.services.hassio.loadBalancer.servers]]
+                    url = "http://{{ docker_ip }}:8123/"
+            dest: /etc/traefik/dynamic_conf.toml
+            mode: 0600
+
     - name: docker all the things!
       docker_compose:
         project_name: on-fire-within
+        pull: yes
         definition:
           version: '2'
           services:
@@ -88,7 +116,7 @@
               container_name: ddclient
               volumes:
                 - /etc/ddclient:/etc/ddclient
-              restart: always
+              restart: unless-stopped
             pihole:
               image: pihole/pihole:latest
               container_name: pihole
@@ -111,7 +139,21 @@
                 - traefik.http.routers.pihole.tls=true
                 - traefik.http.routers.pihole.tls.certresolver=le
                 - traefik.http.services.pihole.loadbalancer.server.port=80
-              restart: always
+              restart: unless-stopped
+            syncthing:
+              image: kejadlen/syncthing:latest
+              container_name: syncthing
+              ports:
+                - 22000:22000/tcp
+                - 21027:21027/udp
+              volumes:
+                - /etc/syncthing:/etc/syncthing
+              labels:
+                - traefik.enable=true
+                - traefik.http.routers.syncthing.rule=Host(`{{ traefik.host_rules.syncthing }}`)
+                - traefik.http.routers.syncthing.tls=true
+                - traefik.http.routers.syncthing.tls.certresolver=le
+                - traefik.http.services.syncthing.loadbalancer.server.port=8384
             traefik:
               image: traefik:latest
               container_name: traefik
@@ -130,32 +172,7 @@
                 - traefik.http.routers.traefik.tls.certresolver=le
                 - traefik.http.routers.traefik.middlewares=auth
                 - traefik.http.routers.traefik.service=api@internal
-              restart: always
-
-    - name: get docker ip
-      block:
-        # - shell: ip -4 addr show docker0 | grep -Po 'inet \K[\d.]+' | head -n 1
-        - shell: docker network inspect on-fire-within_default | jq --raw-output .[0].IPAM.Config[0].Gateway
-          register: docker_ip_result
-        - set_fact:
-            docker_ip: "{{ docker_ip_result.stdout | trim }}"
-
-    - name: traefik dynamic configuration
-      copy:
-        content: |
-          [http.routers]
-            [http.routers.hassio]
-              rule = "Host(`{{ traefik.host_rules.hassio }}`)"
-              service = "hassio"
-              [http.routers.hassio.tls]
-                certResolver = "le"
-
-          [http.services]
-            [http.services.hassio.loadBalancer]
-              [[http.services.hassio.loadBalancer.servers]]
-                url = "http://{{ docker_ip }}:8123/"
-        dest: /etc/traefik/dynamic_conf.toml
-        mode: 0600
+              restart: unless-stopped
 
   handlers:
     - name: restart ddclient
diff --git a/ansible/syncthing/Dockerfile b/ansible/syncthing/Dockerfile
new file mode 100644
index 0000000..02ffe50
--- /dev/null
+++ b/ansible/syncthing/Dockerfile
@@ -0,0 +1,11 @@
+FROM armhf/alpine
+
+RUN apk update && apk upgrade && \
+    apk add curl
+
+RUN curl --location --remote-name https://github.com/syncthing/syncthing/releases/download/v1.3.2/syncthing-linux-arm-v1.3.2.tar.gz && \
+    tar xvz < syncthing-linux-arm-v1.3.2.tar.gz && \
+    mv syncthing-linux-arm-v1.3.2/syncthing /usr/sbin && \
+    mkdir /etc/syncthing
+
+ENTRYPOINT [ "syncthing", "-gui-address=0.0.0.0:8384", "-home=/etc/syncthing" ]