ansible-gitea-management/vars/common.yml

---
gitea_web_install: "httpd"
gitea_web_username: "{% if gitea_web_install == 'httpd' %}apache{% else %}{{ gitea_web_install }}{% endif %}"
gitea_web_config: "true"
gitea_web_config_certs_internal: "false"
gitea_web_config_certs_external: "false"
gitea_themes: "auto,gitea,arc-green,gitea-blue,gitea-modern,carbonred,darkred,pitchblack"
gitea_basename: "git.resf.org"
gitea_automation_user: "rockyautomation"
gitea_raise_memlock_nofile_limits: "true"
gitea_net_cap: "true"
gitea_server_admin: "infrastructure@rockylinux.org"

# Certs issued by FreeIPA Only
ipa_getcert_requested_hostnames:
  - name: "{{ ansible_fqdn }}"
    owner: "{{ gitea_web_username }}"
    key_location: "/etc/pki/tls/private/{{ gitea_basename }}.key"
    cert_location: "/etc/pki/tls/certs/{{ gitea_basename }}.crt"
    postcmd: "/bin/systemctl reload httpd"
    cnames:
      - "{{ gitea_basename }}"
...