boma/roles/public_dns/defaults/main.yml
sjat bd84dd0213 feat(public_dns): role tasks, defaults, meta, README
Implement M1: manage wingu.me public DNS zone at Gandi LiveDNS via
community.general.gandi_livedns (PAT from vault.gandi.pat). Adds
assertion guard for domain + null-MX, present/absent record loops
with run_once, and apply-gate for Molecule dry-run mode.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-14 10:34:42 +02:00

9 lines
514 B
YAML

---
# public_dns — manage the public zone at Gandi LiveDNS as code (M1).
# Record data (public_dns__domain / __records / __absent) lives in group_vars/all.
# See docs/decisions/007-network.md.
public_dns__apply: true # set false to validate without calling the Gandi API (Molecule)
public_dns__default_ttl: 1800 # TTL when a record omits one
public_dns__domain: "" # overridden in group_vars/all
public_dns__records: [] # present records
public_dns__absent: [] # records to remove