Thunix
/
ansible
mirror of https://github.com/ThunixdotNet/ansible.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

ansible-pull looks good

This commit is contained in:
ubergeek 2018-12-21 21:14:32 -05:00
parent f8ed6970e4
commit d56f93997d
6 changed files with 77 additions and 62 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
roles/common/tasks/ansible-pull.yml
View File

@ -1,16 +1,13 @@
- name: Add ansible cron job - name: Add ansible cron job
copy: copy:
content: | src: ../files/ansible-pull
#!/bin/bash
cd /var/thunix/ansible
git pull
ansible-playbook -i ./hosts ./site.yml -u root
dest: /etc/cron.hourly/ansible-pull dest: /etc/cron.hourly/ansible-pull
owner: root owner: root
mode: 744
- name: Adding ansible git repo locally - name: Adding ansible git repo locally
git: https://tildegit.org/thunix/ansible.git git:
repo: 'https://tildegit.org/thunix/www.git' repo: 'https://tildegit.org/thunix/ansibe.git'
dest: /var/thunix/ansible dest: /var/thunix/ansible
- name: adding deploy key - name: adding deploy key
@ -19,8 +16,8 @@
state: present state: present
key: "ssh-rsa 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" key: "ssh-rsa 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"
- name: adding deploy key - name: adding deploy key
authorized_key: authorized_key:
user: root user: root
state: present state: present
key: "ssh-rsa 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" key: "ssh-rsa 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"

1
roles/common/tasks/main.yml
View File

@ -6,3 +6,4 @@
- include: resolv.yml - include: resolv.yml
- include: sshd.yml - include: sshd.yml
- include: motd.yml - include: motd.yml
- include: ansible-pull.yml

17
roles/common/tasks/packages.yml
View File

@ -1,9 +1,14 @@
# Install our baseline packages for all machines, irrespective of what role they might have # Install our baseline packages for all machines, irrespective of what role they might have
--- ---
- name: Install baseline packages - name: Install baseline packages
apt: name={{ item }} state=present apt:
with_items: name: "{{ packages }}"
- aptitude state: present
- git update_cache: yes
- python vars:
- man packages:
- aptitude
- git
- python
- man

14
roles/common/tasks/users.yml
View File

@ -4,10 +4,10 @@
name: sudo name: sudo
state: present state: present
- name: Allow 'sudo' group to have passwordless sudo - name: Allow 'sudo' group to have passwordless sudo
lineinfile: lineinfile:
dest: /etc/sudoers dest: /etc/sudoers
state: present state: present
regexp: '^%sudo' regexp: '^%sudo'
line: '%sudo ALL=(ALL) NOPASSWD: ALL' line: '%sudo ALL=(ALL) NOPASSWD: ALL'
validate: visudo -cf %s validate: visudo -cf %s

35
roles/shell/tasks/packages.yml
View File

@ -1,21 +1,28 @@
# Install our baseline packages for all machines, irrespective of what role they might have # Install our baseline packages for all machines, irrespective of what role they might have
--- ---
- name: Install baseline packages - name: Install baseline packages
apt: name={{ item }} state=present apt:
with_items: name: "{{ packages }}"
- vim state: present
- alpine update_cache: yes
- weechat vars:
- mutt packages:
- python - vim
- rtv - alpine
- lynx - weechat
- w3m-img - mutt
- python-pip - python
- cowsay - rtv
- byobu - lynx
- w3m-img
- python-pip
- cowsay
- byobu
- bsdgames
- emacs
- elinks
# Install (Bottle) python package. # Install ansible python package, because it's the latest
- name: Install ansible - name: Install ansible
pip: pip:
name: ansible name: ansible

51
roles/webserver/tasks/packages.yml
View File

@ -1,25 +1,30 @@
# Install apache and accoutrements www, irrespective of what role they might have # Install apache and accoutrements www, irrespective of what role they might have
--- ---
- name: Install packages - name: Install packages for webserver
apt: name={{ item }} state=present apt:
with_items: name: "{{ packages }}"
- apache2 state: present
- mariadb-server update_cache: yes
- mariadb-client vars:
- php7.0 packages:
- libapache2-mod-php7.0 - apache2
- php7.0-mysql - mariadb-server
- php7.0-curl - mariadb-client
- php7.0-gd - php7.0
- php7.0-intl - libapache2-mod-php7.0
- php-pear - php7.0-mysql
- php-imagick - php7.0-curl
- php7.0-imap - php7.0-gd
- php7.0-mcrypt - php7.0-intl
- php-memcache - php-pear
- php7.0-pspell - php-imagick
- php7.0-recode - php7.0-imap
- php7.0-sqlite3 - php7.0-mcrypt
- php7.0-tidy - php-memcache
- php7.0-xmlrpc - php7.0-pspell
- php7.0-xsl - php7.0-recode
- php7.0-sqlite3
- php7.0-tidy
- php7.0-xmlrpc
- php7.0-xsl