dotfiles/ansible/group_vars/servers.yml

---
flatpaks: false
install_ui_apps: false

# European countries for EU-specific access control
eu_countries_codes:
    - AL # Albania
    - AD # Andorra
    - AM # Armenia
    - AT # Austria
    - AZ # Azerbaijan
    # - BY # Belarus (Belarus is disabled due to geopolitical reasons)
    - BE # Belgium
    - BA # Bosnia and Herzegovina
    - BG # Bulgaria
    - HR # Croatia
    - CY # Cyprus
    - CZ # Czech Republic
    - DK # Denmark
    - EE # Estonia
    - FI # Finland
    - FR # France
    - GE # Georgia
    - DE # Germany
    - GR # Greece
    - HU # Hungary
    - IS # Iceland
    - IE # Ireland
    - IT # Italy
    - XK # Kosovo
    - LV # Latvia
    - LI # Liechtenstein
    - LT # Lithuania
    - LU # Luxembourg
    - MK # North Macedonia
    - MT # Malta
    - MD # Moldova
    - MC # Monaco
    - ME # Montenegro
    - NL # Netherlands
    - NO # Norway
    - PL # Poland
    - PT # Portugal
    - RO # Romania
    # - RU # Russia (Russia is disabled due to geopolitical reasons)
    - SM # San Marino
    - RS # Serbia
    - SK # Slovakia
    - SI # Slovenia
    - ES # Spain
    - SE # Sweden
    - CH # Switzerland
    - TR # Turkey
    - UA # Ukraine
    - GB # United Kingdom
    - VA # Vatican City

# Trusted non-EU countries for extended access control
trusted_countries_codes:
    - US # United States
    - AU # Australia
    - NZ # New Zealand
    - JP # Japan

# Countries that are allowed to access the server Caddy reverse proxy
allowed_countries_codes:
    - US # United States
    - GB # United Kingdom
    - DE # Germany
    - FR # France
    - IT # Italy
    - NL # Netherlands
    - JP # Japan
    - KR # South Korea
    - CH # Switzerland

# IP ranges for blocked countries (generated automatically)
# This will be populated by the country blocking script
blocked_countries: []

# Enable/disable country blocking globally
enable_country_blocking: true