Releases: ahembree/ansible-hms-docker
Version 1.5
Converts the giant 1000+ line Compose file to individual compose files for each service. This allows for better management of individual container configs.
Adds Wizarr container
Fixes Traefik variable conversion from previous variable name.
What's Changed
Full Changelog: 1.4...1.5
Contributors
Assets 2
1.4
Version 1.4
Major Changes for Existing Installations
You will need to update the paths to your media within your apps (Plex, Sonarr, Radarr, etc).
This only matters for existing installs.
Folder mount paths to containers were modified to be identical across all containers. This means the paths defined in your app configs that point to your media may no longer exist in the container.
To fix, follow the steps outlined under "Version 0.2" here: https://github.com/ahembree/ansible-hms-docker/blob/master/docs/Release%20Notes.md#verison-02
Huge thanks to @xavpitz
New Containers
Add containers by @ahembree in #96
Add media servers by @ahembree in #75
Add readarr container by @ahembree in #64
- Readarr
- Jellyfin
- Emby
- Maintainerr
- Unpackerr
- Lidarr
- Autobrr
- Speedtest-Tracker
- Recyclarr
- tinyMediaManager
- PASTA
- Netdata
What's Changed
Improvements
- Inventory migration by @ahembree in #92
- This means the playbook now supports multiple hosts defined in 1 inventory file with different variables per host
- add versioning by @ahembree in #95
- remove
docker-composepip dependency by @ahembree in #81 - Remove pip dependency by @ahembree in #85
- change requestrr image by @ahembree in #73
- Align configs by @ahembree in #69
- Simplify container logging by @ahembree in #66
- Add parsing for app API keys by @ahembree in #94
Fixes
- Fix readarr connection with homepage by @jjlangen in #76
- Fix var logic by @ahembree in #78
- Fix deprecation warnings by @ahembree in #72
- Fix ansible docker deployment by @ahembree in #65
- Fix container config dir perms by @ahembree in #90
- update docker restart handlers by @ahembree in #91
Version Bumps
- Bump idna from 3.6 to 3.7 in /roles/hmsdocker/files/scripts by @dependabot in #62
- Bump cryptography from 41.0.7 to 42.0.4 in /roles/hmsdocker/files/scripts by @dependabot in #60
- Bump urllib3 from 2.2.1 to 2.2.2 in /roles/hmsdocker/files/scripts by @dependabot in #77
- Bump urllib3 from 2.2.1 to 2.2.2 in /.github/workflows/scripts by @dependabot in #86
- Bump certifi from 2024.2.2 to 2024.7.4 in /roles/hmsdocker/files/scripts by @dependabot in #82
- [Snyk] Security upgrade cryptography from 42.0.7 to 42.0.8 by @ahembree in #87
New Contributors
- @dependabot made their first contribution in #62
- @jjlangen made their first contribution in #76
- @xavpitz made their first contribution in #93
Full Changelog: 1.3...1.4
Contributors
Assets 2
New Services and Features
Since the last "official release" in 2022... (I'm bad at making new version releases, some of these have been implemented for a while now)
What's New
- Add
flaresolverrcontainer - Add
tdarrcontainer - Add
tailscalecontainer - Add
sabnzbdcontainer - Add
homepagecontainer with automatic service detection (for supported containers) - Add
heimdallcontainer - Add
uptime-kumacontainer - Add custom monitoring script(s) for uptime-kuma integration
- Add support for custom OVPN files by @LewisLebentz in #41
- Add Traefik security hardening option
- Add python script to convert Traefik SSL file to Plex-supported PKCS#12 file with automatic Plex config update
- GitHub Actions testing for Ubuntu 22.04 LTS
- Migrated to use Ansible Galaxy Docker role instead of custom role
What was fixed
- Fix authentik issues
- migrate from pyopenssl to pyca, bump requirements, resolving Snyk issues
- Fix jbops install process
- Obligatory "bug fixes and performance improvements"
New Contributors
- @LewisLebentz made their first contribution in #41
Full Changelog: 1.2.2...1.3
Contributors
Assets 2
Small Improvements
Improved Security
All secret values (such as API keys) have now been moved to a .env file which is owned by root:root and 0600 permissions.
This file existed and was used previously, but only for the Authentik containers. Please see below if you currently use Authentik within this project (not applicable for new installations).
This now requires you to enter the sudo password each time you run a docker-compose command for this project.
If you wish to change this, you must use the advanced configuration, this is outlined within the readme.
If you use Authentik
Please be sure to backup the .env file within the (by default) /opt/hms-docker folder as you may need to reference these current values later.
Also ensure the permissions for the backup file are 0600 and owned by root:root or your preferred user/group.
There is logic within this new update that should handle reading and re-using the previous values, but if it fails for some reason, you will need to manually create/modify the /opt/hms-docker/.authentik.key file with the value of AUTHENTIK_SECRET_KEY within the .env file. You will also need to create/modify the /opt/hms-docker/.authentik.pgpass file with the value of PG_PASS within the .env file.
For example, if your AUTHENTIK_SECRET_KEY is set to verysecretvalue, the .authentik.key file would have the contents:
verysecretvalue
Other Improvements
All Ansible resources have been mostly converted to use the FQCN, so now the linter doesn't yell as much.
Full Changelog: 1.2.0...1.2.2
Authentik, nzbget, requestrr, templating fixes
I've forgotten to create releases in the past sooooo.........
What's Changed
- implement per-container public exposure by @ahembree in #4
- Add authentik by @ahembree in #6
- Add nzbget container
- Add custom transmission download path support
- add requestrr container
- fix templating indentation
- traefik bump to
2.6.1to patch CVE-2022-23632
Full Changelog: 1.1.0...1.2.0
Contributors
Assets 2
Add Overseerr and Prowlarr
Replaced Jackett with Prowlarr.
Replaced Ombi with Overseerr.
initial release
1.0.0 update readme