Digitalboard/reference-ansible
6
1
Fork 0
Code Pull requests Activity Actions

feat(talk/turn/signaling/hpb): add role for Talk with backend services

Browse source
This commit is contained in:
Tobias Wüst 2026-05-22 01:07:39 +02:00
parent 1ddd5d9eb9
commit 6ebd5dc9ab
8 changed files with 204 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

29
inventories/demo-gymburgdorf/host_vars/application/nextcloud_talk_snippet.yml Normal file
View file

@ -0,0 +1,29 @@
# Append-only excerpt: add this to the existing nextcloud.yml on the application host.
# Demo layout: TURN + HPB are collocated on the `turn` host, so both secrets
# live under playbooks/secrets/turn/.
nextcloud_enable_talk: true
# HPB / signaling server registration
# secret value must match talk_backend_secret deployed to the turn host
nextcloud_talk_signaling_servers:
- server: "https://signaling.digitalboard.ch"
secret: "{{ lookup('file', playbook_dir ~ '/secrets/turn/talk_backend_secret') }}"
verify: true
nextcloud_talk_signaling_servers_removed: []
# TURN registration
# secret value must match coturn_static_auth_secret deployed to the turn host.
# Port 5349 matches coturn_tls_listening_port default; change to 443 if you
# overrode coturn_tls_listening_port: 443 on the turn host.
nextcloud_talk_turn_servers:
- schemes: "turn,turns"
server: "stun.digitalboard.ch:5349"
protocols: "udp,tcp"
secret: "{{ lookup('file', playbook_dir ~ '/secrets/turn/coturn_static_auth_secret') }}"
# Optional: plain STUN entries
nextcloud_talk_stun_servers:
- "stun.digitalboard.ch:3478"
nextcloud_talk_stun_servers_removed: []