Digitalboard/digitalboard.core
6
2
Fork 0
Code Pull requests 1 Releases Packages Activity Actions
digitalboard.core/roles/collabora/README.md
Simon Bärlocher 3236ca332f
docs(collection): document all roles and fix metadata drift 
Replace ansible-galaxy init placeholders across the collection and
correct documentation that drifted from the code, after a multi-agent
review of every role README against its defaults, tasks and templates.

Collection level:
- README: role table for all 16 roles, requirements and role-ordering
- galaxy.yml: declare community.docker and community.general deps,
  real description/tags/urls; normalize license to MIT-0
- meta/runtime.yml: requires_ansible '>=2.15.0'
- plugins/README: document the homarr_layout filter and
  garage_credentials lookup instead of scaffold boilerplate

Per-role meta/main.yml and README for the placeholder roles
(389ds, authentik, authentik_outpost_ldap, base, collabora, drawio,
garage, homarr, httpbin, keycloak, nextcloud, opencloud, traefik).

Correctness fixes found during review:
- keycloak: wrong domain default, drop invented keycloak_cert_resolver,
  document the provisioning feature
- garage: root_domain is .s3.<first-entry>, not the bare domain
- opnform: jwt/front_api secrets use `openssl rand -hex 32`; align the
  validation fail_msg in tasks/main.yml accordingly
- send: S3 example references garage_s3_domains[0] (was singular)
- opencloud: document required opencloud_wopi_domain

License normalized to MIT-0 across galaxy.yml, role meta and READMEs to
match the SPDX headers.
2026-05-27 23:12:24 +02:00

1.5 KiB
Raw Blame History

collabora

Deploys Collabora Online (CODE, collabora/code) via Docker Compose behind Traefik. Collabora is the WOPI backend that renders office documents for Nextcloud and OpenCloud.

The role templates coolwsd.xml to declare which WOPI hosts may call Collabora and which origins may embed it in an iframe.

Role variables

Variable Default Description
collabora_domains [office.local.test] FQDNs the router accepts; first is canonical.
collabora_image collabora/code:latest Container image.
collabora_port 9980 Container port Traefik forwards to.
collabora_traefik_network proxy Docker network shared with Traefik.
collabora_use_ssl true Enable the TLS resolver on the router.
collabora_ssl_verification true Verify TLS on WOPI callbacks (false for self-signed).
collabora_allowed_domains [nextcloud.local.test] WOPI hosts allowed to call Collabora (regex).
collabora_frame_ancestors [nextcloud.local.test] Origins allowed to embed Collabora in an iframe.
collabora_extra_hosts [] Extra host:ip entries for in-container DNS.

Example

- hosts: services
  become: true
  roles:
    - role: digitalboard.core.collabora
      vars:
        collabora_domains:
          - "office.example.com"
        collabora_allowed_domains:
          - "cloud.example.com"
        collabora_frame_ancestors:
          - "cloud.example.com"

License

MIT-0