From 3c07b1b99892b41742f4a659cb033b4ca565ce5a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Tom=C3=A1s=20Limpinho?= <53994778+TomasLimpinho@users.noreply.github.com> Date: Wed, 12 Nov 2025 20:14:43 +0000 Subject: [PATCH] jellyfin --- playbook.yml | 3 +- roles/jellyfin/files/jellyfin-deployment.yaml | 56 +++++++++++++++++ roles/jellyfin/files/jellyfin-nfs-csi.yaml | 23 +++++++ roles/jellyfin/files/jellyfin-pvcs.yaml | 60 +++++++++++++++++++ roles/jellyfin/files/jellyfin-service.yaml | 22 +++++++ roles/jellyfin/tasks/main.yml | 51 ++++++++++++++++ roles/jellyfin/vars/main.yml | 4 ++ roles/sonarr/tasks/main.yml | 2 +- 8 files changed, 219 insertions(+), 2 deletions(-) create mode 100644 roles/jellyfin/files/jellyfin-deployment.yaml create mode 100644 roles/jellyfin/files/jellyfin-nfs-csi.yaml create mode 100644 roles/jellyfin/files/jellyfin-pvcs.yaml create mode 100644 roles/jellyfin/files/jellyfin-service.yaml create mode 100644 roles/jellyfin/tasks/main.yml create mode 100644 roles/jellyfin/vars/main.yml diff --git a/playbook.yml b/playbook.yml index 9b23731..a1e31a0 100644 --- a/playbook.yml +++ b/playbook.yml @@ -24,4 +24,5 @@ - cloudflared - qbittorrent - prowlarr - - sonarr \ No newline at end of file + - sonarr + - jellyfin \ No newline at end of file diff --git a/roles/jellyfin/files/jellyfin-deployment.yaml b/roles/jellyfin/files/jellyfin-deployment.yaml new file mode 100644 index 0000000..4e2facb --- /dev/null +++ b/roles/jellyfin/files/jellyfin-deployment.yaml @@ -0,0 +1,56 @@ +apiVersion: apps/v1 +kind: Deployment +metadata: + name: jellyfin + namespace: stack-arr +spec: + replicas: 1 + selector: + matchLabels: + app: jellyfin + template: + metadata: + labels: + app: jellyfin + spec: + imagePullSecrets: + - name: regcred + containers: + - name: jellyfin + image: lscr.io/linuxserver/jellyfin:10.11.2 + securityContext: + capabilities: + add: + - NET_ADMIN + ports: + - containerPort: 8096 + name: webui + - containerPort: 8920 + name: webuihttps + - containerPort: 1900 + name: dlnaudp + - containerPort: 7359 + name: discoveryudp + env: + - name: PUID + value: "1013" + - name: PGID + value: "1013" + - name: TZ + value: 'Etc/UTC' + volumeMounts: + - name: config + mountPath: /config + - name: videos + mountPath: /videos + volumes: + - name: config + persistentVolumeClaim: + claimName: jellyfin-config-pvc + - name: videos + persistentVolumeClaim: + claimName: jellyfin-videos-pvc + + + + diff --git a/roles/jellyfin/files/jellyfin-nfs-csi.yaml b/roles/jellyfin/files/jellyfin-nfs-csi.yaml new file mode 100644 index 0000000..4b1c055 --- /dev/null +++ b/roles/jellyfin/files/jellyfin-nfs-csi.yaml @@ -0,0 +1,23 @@ +apiVersion: storage.k8s.io/v1 +kind: StorageClass +metadata: + name: jellyfin-nfs-csi + namespace: stack-arr +provisioner: nfs.csi.k8s.io +parameters: + server: 192.168.1.22 + share: /mnt/fenix-main-nas-pool-0/data/k8s-Volumes/k8s-cluster-iac-deployed/stack-arr/jellyfin +allowVolumeExpansion: true +reclaimPolicy: Retain +--- +apiVersion: storage.k8s.io/v1 +kind: StorageClass +metadata: + name: jellyfin-videos-nfs-csi + namespace: stack-arr +provisioner: nfs.csi.k8s.io +parameters: + server: 192.168.1.22 + share: /mnt/fenix-main-nas-pool-0/data/Filmes_e_Series +allowVolumeExpansion: true +reclaimPolicy: Retain \ No newline at end of file diff --git a/roles/jellyfin/files/jellyfin-pvcs.yaml b/roles/jellyfin/files/jellyfin-pvcs.yaml new file mode 100644 index 0000000..bab1df8 --- /dev/null +++ b/roles/jellyfin/files/jellyfin-pvcs.yaml @@ -0,0 +1,60 @@ +apiVersion: v1 +kind: PersistentVolume +metadata: + name: jellyfin-config-pv + namespace: stack-arr +spec: + capacity: + storage: 2Gi + storageClassName: jellyfin-nfs-csi + accessModes: + - ReadWriteOnce + persistentVolumeReclaimPolicy: Retain + nfs: + server: 192.168.1.22 + path: /mnt/fenix-main-nas-pool-0/data/k8s-Volumes/k8s-cluster-iac-deployed/stack-arr/jellyfin/config +--- +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: jellyfin-config-pvc + namespace: stack-arr +spec: + storageClassName: jellyfin-nfs-csi + accessModes: + - ReadWriteOnce + volumeName: jellyfin-config-pv + resources: + requests: + storage: 2Gi +--- +apiVersion: v1 +kind: PersistentVolume +metadata: + name: jellyfin-videos-pv + namespace: stack-arr +spec: + capacity: + storage: 150Gi + storageClassName: jellyfin-videos-nfs-csi + accessModes: + - ReadWriteOnce + persistentVolumeReclaimPolicy: Retain + nfs: + server: 192.168.1.22 + path: /mnt/fenix-main-nas-pool-0/data/Filmes_e_Series +--- +apiVersion: v1 +kind: PersistentVolumeClaim +metadata: + name: jellyfin-videos-pvc + namespace: stack-arr +spec: + storageClassName: jellyfin-videos-nfs-csi + accessModes: + - ReadWriteOnce + volumeName: jellyfin-videos-pv + resources: + requests: + storage: 150Gi +--- \ No newline at end of file diff --git a/roles/jellyfin/files/jellyfin-service.yaml b/roles/jellyfin/files/jellyfin-service.yaml new file mode 100644 index 0000000..e045dcf --- /dev/null +++ b/roles/jellyfin/files/jellyfin-service.yaml @@ -0,0 +1,22 @@ +apiVersion: v1 +kind: Service +metadata: + name: jellyfin-service + namespace: stack-arr +spec: + ports: + - port: 8096 + targetPort: 8096 + name: webui + - port: 8920 + targetPort: 8920 + name: webuihttps + - port: 1900 + targetPort: 1900 + name: dlnaudp + - port: 7359 + targetPort: 7359 + name: discoveryudp + selector: + app: jellyfin + type: ClusterIP \ No newline at end of file diff --git a/roles/jellyfin/tasks/main.yml b/roles/jellyfin/tasks/main.yml new file mode 100644 index 0000000..73ed0d7 --- /dev/null +++ b/roles/jellyfin/tasks/main.yml @@ -0,0 +1,51 @@ +- name: Remover o diretório /tmp/stack-arr/jellyfin/kubernetes-files + ansible.builtin.file: + path: /tmp/stack-arr/jellyfin/kubernetes-files + state: absent + +- name: Criar diretório temporário no remoto + file: + path: /tmp/stack-arr/jellyfin/kubernetes-files + state: directory + mode: '0755' + +- name: Copy file with owner and permissions + ansible.builtin.copy: + src: ../files + dest: /tmp/stack-arr/jellyfin/kubernetes-files + owner: fenix + group: root + mode: '0644' + + +#- name: Obter várias notas do Bitwarden +# shell: | +# echo "unlock" +# BW_SESSION=$(bw unlock {{ bw_password }} --raw) +# echo "get item" +# bw get item "{{ item.id }}" --session $BW_SESSION | jq -r '.notes' > {{ item.dest }} +# loop: +# - { id: "iac.ansible.stackarr.jellyfin.secret", dest: "/tmp/stack-arr/jellyfin/kubernetes-files/files/jelly-secret.yaml" } +# args: +# executable: /bin/bash +# environment: +# BW_PASSWORD: "{{ BW_PASSWORD }}" + + +- name: Listar conteúdo do diretório remoto + shell: ls -l /tmp/stack-arr/jellyfin/kubernetes-files/files + register: resultado_ls + + +- name: Mostrar resultado do ls + debug: + var: resultado_ls.stdout_lines + + +- name: Aplicar o stolon + become: yes + become_user: fenix + shell: | + kubectl apply -f /tmp/stack-arr/jellyfin/kubernetes-files/files/ + environment: + KUBECONFIG: /home/fenix/.kube/config \ No newline at end of file diff --git a/roles/jellyfin/vars/main.yml b/roles/jellyfin/vars/main.yml new file mode 100644 index 0000000..c8fe60b --- /dev/null +++ b/roles/jellyfin/vars/main.yml @@ -0,0 +1,4 @@ +bw_password: "{{ lookup('env', 'BW_PASSWORD') }}" +VAULTWARDEN_LINK: "{{ lookup('env', 'VAULTWARDEN_LINK') }}" +BW_CLIENTID: "{{ lookup('env', 'BW_CLIENTID') }}" +BW_CLIENTSECRET : "{{ lookup('env', 'BW_CLIENTSECRET') }}" \ No newline at end of file diff --git a/roles/sonarr/tasks/main.yml b/roles/sonarr/tasks/main.yml index 63fa852..a72bdaa 100644 --- a/roles/sonarr/tasks/main.yml +++ b/roles/sonarr/tasks/main.yml @@ -25,7 +25,7 @@ echo "get item" bw get item "{{ item.id }}" --session $BW_SESSION | jq -r '.notes' > {{ item.dest }} loop: - - { id: "iac.ansible.stackarr.sonarr.secret", dest: "/tmp/stack-arr/sonarr/kubernetes-files/files/sonnar-secret.yaml" } + - { id: "iac.ansible.stackarr.sonarr.secret", dest: "/tmp/stack-arr/sonarr/kubernetes-files/files/sonarr-secret.yaml" } args: executable: /bin/bash environment: