fix(ansible): resolve docker binding and coturn task errors

Author: onelrian

configuration/ansible/inventory/terraform_inventory.yaml

@@ -1,43 +1,65 @@
 all:
   vars:
     # NetBird Configuration
-    netbird_domain: "vpn.example.com"
+    netbird_domain: "ec2-16-171-59-171.eu-north-1.compute.amazonaws.com"
     netbird_version: "latest"
-    relay_auth_secret: "CHANGE_ME"
-    coturn_password: "CHANGE_ME"
-    netbird_encryption_key: "CHANGE_ME"
+    coturn_version: "latest"
+    caddy_version: "latest"
+    docker_compose_version: "v2.24.0"
+    netbird_log_level: "info"
+    relay_auth_secret: "b&{iWS+B}X>9IpiG#XS(2pLBGSX{vmFW"
+    netbird_encryption_key: "J1tVwuoWBOxGIpXY25tO82WhzzPQWHFGxv0Il6Zw2R0="
+    coturn_password: "[HlY!rSbtF?gpu(6Ya}=F0=jt0D%wBdY"
+
+    # Paths
+    netbird_data_dir: "/var/lib/netbird"
+    netbird_config_dir: "/etc/netbird"
 
     # Database Configuration
     database_type: "sqlite"
     database_engine: "sqlite"
     database_dsn: "/var/lib/netbird/store.db"
     database_endpoint: "local"
+    db_host: "local"
+    db_port: 0
+    db_name: ""
+    db_user: ""
+    db_password: ""
+    db_sslmode: "require"
     sqlite_database_path: "/var/lib/netbird/store.db"
 
     # Keycloak Configuration
-    keycloak_url: "https://keycloak.example.com/auth"
+    keycloak_url: "https://keycloak.net.observe.camer.digital/auth"
     keycloak_realm: "netbird"
     keycloak_client_id: "netbird-client"
-    keycloak_client_secret: "CHANGE_ME"
-    keycloak_oidc_endpoint: "https://keycloak.example.com/auth/realms/netbird/.well-known/openid-configuration"
+    keycloak_backend_client_id: "netbird-backend"
+    keycloak_backend_client_secret: "wahUSWrKpszPenDxQMHxgZiYSquyz265"
+    keycloak_oidc_endpoint: "https://keycloak.net.observe.camer.digital/auth/realms/netbird/.well-known/openid-configuration"
 
+    # Relay & STUN Addresses
+    relay_addresses: ["rels://16.171.59.171:33080"]
+    stun_addresses: ["stun://16.171.59.171:3478"]
+
     # Ansible Connection
-    ansible_user: "ubuntu"
     ansible_ssh_private_key_file: "~/.ssh/private_key"
 
   children:
     management:
       hosts:
-        net:
-          ansible_host: 1.2.3.4
-          private_ip: 10.0.0.1
+        netbird-all-in-one:
+          ansible_host: 16.171.59.171
+          private_ip: 16.171.59.171
+          ansible_user: ubuntu
     reverse_proxy:
       hosts:
-        net:
-          ansible_host: 1.2.3.4
-          private_ip: 10.0.0.1
+        netbird-all-in-one:
+          ansible_host: 16.171.59.171
+          private_ip: 16.171.59.171
+          ansible_user: ubuntu
     relay:
       hosts:
-        net:
-          ansible_host: 1.2.3.4
-          private_ip: 10.0.0.1
+        netbird-all-in-one:
+          ansible_host: 16.171.59.171
+          private_ip: 16.171.59.171
+          ansible_user: ubuntu
+          relay_domain: 16.171.59.171

configuration/ansible/roles/common/tasks/main.yml

@@ -1,4 +1,13 @@
 ---
+- name: Wipe all existing Docker repository configurations
+  ansible.builtin.shell: |
+    rm -f /etc/apt/sources.list.d/*docker*
+    sed -i '/download.docker.com/d' /etc/apt/sources.list
+  args:
+    executable: /bin/bash
+  register: cleanup_docker
+  changed_when: true
+
 - name: Install dependencies
   ansible.builtin.apt:
     name:

configuration/ansible/roles/netbird-coturn/defaults/main.yml

@@ -1,6 +1,8 @@
 ---
-coturn_version: \"4.6.2\"
-coturn_port: 3478
+coturn_version: latest
 coturn_min_port: 49152
 coturn_max_port: 65535
-coturn_realm: \"{{ netbird_domain }}\"
+coturn_port: 3478
+coturn_realm: "{{ netbird_domain }}"
+coturn_password: ""
+netbird_domain: ""

configuration/ansible/roles/netbird-coturn/tasks/main.yml

@@ -1,7 +1,7 @@
 ---
 - name: Create Coturn configuration directory
   ansible.builtin.file:
-    path: \"/etc/coturn\"
+    path: "/etc/coturn"
     state: directory
     owner: root
     group: root
@@ -19,9 +19,9 @@
 - name: Allow Coturn ports (UFW)
   community.general.ufw:
     rule: allow
-    port: \"{{ item.port }}\"
-    proto: \"{{ item.proto }}\"
-    comment: \"{{ item.comment }}\"
+    port: "{{ item.port }}"
+    proto: "{{ item.proto }}"
+    comment: "{{ item.comment }}"
   loop:
     - { port: '3478', proto: 'udp', comment: 'Coturn STUN/TURN UDP' }
     - { port: '3478', proto: 'tcp', comment: 'Coturn STUN/TURN TCP' }
@@ -30,13 +30,13 @@
 - name: Run Coturn container
   community.docker.docker_container:
     name: coturn
-    image: \"coturn/coturn:{{ coturn_version }}\"
+    image: "coturn/coturn:{{ coturn_version }}"
     restart_policy: unless-stopped
     network_mode: host
     volumes:
       - /etc/coturn/turnserver.conf:/etc/coturn/turnserver.conf:ro
-    command: [\"-c\", \"/etc/coturn/turnserver.conf\"]
-    log_driver: \"json-file\"
+    command: ["-c", "/etc/coturn/turnserver.conf"]
+    log_driver: "json-file"
     log_options:
-      max-size: \"500m\"
-      max-file: \"2\"
+      max-size: "500m"
+      max-file: "2"

configuration/ansible/roles/netbird-dashboard/defaults/main.yml

@@ -0,0 +1,6 @@
+---
+netbird_version: latest
+netbird_domain: ""
+keycloak_url: ""
+keycloak_realm: ""
+keycloak_client_id: ""

configuration/ansible/roles/netbird-dashboard/tasks/main.yml

@@ -24,7 +24,7 @@
       AUTH_SILENT_REDIRECT_URI: "https://{{ netbird_domain }}/nb-silent-auth"
       LETSENCRYPT_DOMAIN: "none"
     ports:
-      - "{{ private_ip }}:8080:80"
+      - "8080:80"
     log_driver: "json-file"
     log_options:
       max-size: "500m"

configuration/ansible/roles/netbird-management/defaults/main.yml

@@ -0,0 +1,5 @@
+---
+netbird_data_dir: /var/lib/netbird
+netbird_config_dir: /etc/netbird
+netbird_version: latest
+netbird_log_level: info

configuration/ansible/roles/netbird-management/handlers/main.yml

@@ -2,4 +2,5 @@
 - name: Restart NetBird Management
   community.docker.docker_container:
     name: netbird-management
-    state: restarted
+    state: started
+    restart: true

configuration/ansible/roles/netbird-management/tasks/main.yml

@@ -38,9 +38,9 @@
     networks:
       - name: netbird
     ports:
-      - "{{ private_ip }}:8081:80"
-      - "{{ private_ip }}:10000:10000"
-      - "{{ private_ip }}:9000:9000"
+      - "8081:80"
+      - "10000:10000"
+      - "9000:9000"
     volumes:
       - "{{ netbird_data_dir }}:/var/lib/netbird"
       - "{{ netbird_config_dir }}:/etc/netbird"

configuration/ansible/roles/netbird-management/templates/management.json.j2

@@ -1,8 +1,14 @@
 {
   "Stuns": [
+    {% for addr in stun_addresses %}
+    {
+      "URI": "{{ addr }}"
+    }{{ "," if not loop.last else "" }}
+    {% else %}
     {
       "URI": "stun:{{ netbird_domain }}:3478"
     }
+    {% endfor %}
   ],
   "Relay": {
     "Addresses": {{ relay_addresses | to_json }},