ansible-automation/playbooks/group_vars/all.yml

---
# playbooks/group_vars/all.yml
#
# Defaults for all Ansible playbooks in this repo.
# Override sensitive values (portainer_api_token) via Semaphore's
# "Extra Variables" or a Vault-encrypted file, not here in plaintext.

# ---------------------------------------------------------------------------
# Portainer
# ---------------------------------------------------------------------------
portainer_url: "http://10.40.40.2:9000"

# API token: generate in Portainer → User settings → Access tokens
# Set this in Semaphore "Extra Variables" as:  portainer_api_token=<token>
# Or export as an env var and reference with: "{{ lookup('env', 'PORTAINER_API_TOKEN') }}"
portainer_api_token: "{{ lookup('env', 'PORTAINER_API_TOKEN') }}"

# Port the Portainer Agent listens on (default 9001)
portainer_agent_port: 9001

# ---------------------------------------------------------------------------
# SSH defaults  (override per group in host_vars/<name>.yml or Semaphore)
# ---------------------------------------------------------------------------
ansible_user: ubuntu
ansible_become: true
ansible_become_method: sudo

# SSH connection settings
ansible_ssh_common_args: >-
  -o StrictHostKeyChecking=no
  -o UserKnownHostsFile=/dev/null
  -o ConnectTimeout=10