vincent
/
ansible
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
264 Commits
1 Branch
0 Tags
281 KiB
 
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
vincent 62d0865aaa
continuous-integration/drone/push Build is passing
Details
sssd role in bootstrap 		4 days ago
group_vars add sssd parameter 2 months ago
host_vars add hosts file variable 3 months ago
library uodate library aur 2 years ago
roles fix syntax 2 months ago
test-role move pihole test 2 months ago
.ansible-lint linting 6 months ago
.drone.yml add .drone.yml 6 months ago
.gitignore add vault file 3 years ago
.gitmodules add git module aur 3 years ago
.markdownlint.yaml add .markdownlint.yaml 6 months ago
.yamllint linting 6 months ago
README.md fix readme 6 months ago
ansible-vault-pass.sh add recovery vault password from bitwarden 8 months ago
ansible.cfg add roles to ansible roles path 6 months ago
bootstrap.yml sssd role in bootstrap 4 days ago
build.yml add admin user 4 months ago
debian.yml linting 6 months ago
global.yml move chisel from glbal to specific playbook 7 months ago
music-player.yml add admin user 4 months ago
production add default group inventory 6 days ago
provisionning.yml sssd role in bootstrap 4 days ago
server.yml remove termite terminfo installation 4 months ago
site.yml review inventory 7 months ago
staging add default group inventory 6 days ago
workstation.yml linting 6 months ago

README.md

ansible

commande ansible

launch playbook on staging `ansible-playbook -i staging site.yml --vault-password-file=./ansible-vault-pass.sh

init new role architecture ansible-galaxy user_config init

launch ansible bootstrap ansible-playbook -i nas, bootstrap.yml -u root --ask-pass

encrypt string ansible-vault encrypt_string

avant de lancer le playbook

  • vérifier que l'identité SSH et bien enregistrer dans l'agent
  • si la machine a déja une partie des logiciel instalé forcé l'upgrade (il vaut mieux partir d'une machien from scratch que d'une machine a moitier passé par le playbook)
  • si le role userconfig est déja descendu s'assurer que le repo local de la machine n'a pas de modification a pushé

Prerequis

  • python
  • sudo

TODO

Global Roles

  • system role:

    • install ansible aur module
    • soft install (zsh,vim,)

  • user profil config

  • ansible bootstrap

    • install python
    • install sudo
    • create user
    • copy clé RSA

  • samba automount role

    • géré les credential en fichier
    • initialisé les variable pour les diferent périphérique

  • davfs mount

  • VM server

  • syncthing role

Workstation roles

  • mpd role

  • ansible manager

    • install ansible
    • install ansible aur module
    • clone ansible repo

  • workstation role

  • -need to check for nvidia drver

  • cups

  • bluetooth et tlp pour laptop

  • grubtheme

Server Roles

  • terminfo

  • server role

    • cron
    • msmtp

  • rsyncd role

  • failtoban role

  • nginx/php role

    • install
    • config

  • dns role -slave/primary

  • mariadb role

    • install
    • config
    • (voir pouquoi l'init de mysql ne fonctionne pas dans ansible)

  • tt-rss role

    • depend nginx & madiadb role
    • fail2ban jail

  • gitea role

    • depend of mariadb role

  • backup role?

    • controle du reboot

global improvment

  • voir pour compatibiliser debian
  • variabiliser