Ansible ins Repo migrieren und zentrale SSH-Keys in shared/ssh.

Playbooks liegen unter pve1/ansible und pve2/ansible; authorized_keys
als Fragmente mit Deploy-Skript und Ziel-Matrix für Proxmox, VM 101 und CTs.

Co-authored-by: Cursor <cursoragent@cursor.com>

pve2/ansible/inventory/group_vars/all.yml

@@ -0,0 +1,33 @@
+---
+# Disk maintenance defaults — tune per host in inventory if needed
+disk_maintenance_enabled: true
+
+# systemd journal
+journal_max_size: 200M
+
+# Docker
+docker_prune_stopped_containers_older_than: 168h   # 7 days
+docker_prune_dangling_images: true
+docker_prune_unused_images_older_than: 336h        # 14 days (aggressive tag)
+docker_prune_build_cache_older_than: 336h
+docker_prune_dangling_volumes: true
+docker_log_truncate_threshold: 50M
+docker_log_truncate_target: 10M
+
+# LVM thin provisioning — critical on Proxmox local-lvm / nvme_second
+fstrim_enabled: true
+
+# Frigate recordings on docker CT (matches config.yaml retain.days: 30)
+frigate_recordings_retain_days: 30
+frigate_clips_retain_days: 14
+
+# Jellyfin transcode/image cache (not metadata — that is library artwork)
+jellyfin_cache_max_age_days: 30
+
+# Optional dev tooling (AIDEV)
+npm_cache_clean: false
+apt_clean: true
+
+# Alert thresholds for summary output
+disk_warn_percent: 80
+thin_pool_warn_percent: 85

pve2/ansible/inventory/hosts.yml

@@ -0,0 +1,17 @@
+all:
+  children:
+    lxc_containers:
+      hosts:
+        docker:
+          ansible_host: 192.168.10.101
+          proxmox_vmid: 101
+          frigate_recordings_path: /mnt/records/recordings
+          frigate_clips_path: /mnt/records/clips
+        media:
+          ansible_host: 192.168.20.6
+          proxmox_vmid: 109
+          jellyfin_cache_path: /opt/stacks/jellyfin/config/cache
+        aidev:
+          ansible_host: 10.100.2.13
+          proxmox_vmid: 110
+          dev_tooling_cleanup: true