You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
vincent 417e6adf0b
continuous-integration/drone/push Build is failing Details
feat: kepp user config in dedicated role
5 months ago
group_vars feat: kepp user config in dedicated role 5 months ago
host_vars split ansible playboot betwen server and workstation see homelab repo for server 12 months ago
library uodate library aur 3 years ago
playbooks feat: kepp user config in dedicated role 5 months ago
roles feat: kepp user config in dedicated role 5 months ago
.ansible-lint linting 2 years ago
.drone.yml add .drone.yml 2 years ago
.gitignore add vault file 4 years ago
.gitmodules add git module aur 4 years ago
.markdownlint.yaml add .markdownlint.yaml 2 years ago
.yamllint linting 2 years ago
README.md Update readme 8 months ago
ansible.cfg merge dict 1 year ago
makefile split ansible playboot betwen server and workstation see homelab repo for server 12 months ago
production split ansible playboot betwen server and workstation see homelab repo for server 12 months ago
provisionning.yml modify ansible user 6 months ago
site.yml feat: kepp user config in dedicated role 5 months ago
staging split ansible playboot betwen server and workstation see homelab repo for server 12 months ago

README.md

ansible

commande ansible

launch playbook on staging `ansible-playbook -i staging site.yml --vault-password-file=./ansible-vault-pass.sh

init new role architecture ansible-galaxy user_config init

launch ansible bootstrap ansible-playbook -i nas, bootstrap.yml -u root --ask-pass

encrypt string ansible-vault encrypt_string

avant de lancer le playbook

  • vérifier que un token vault est bien setté dans la variable VAULT_TOKEN
  • si la machine a déja une partie des logiciel instalé forcé l'upgrade (il vaut mieux partir d'une machien from scratch que d'une machine a moitier passé par le playbook)
  • si le role userconfig est déja descendu s'assurer que le repo local de la machine n'a pas de modification a pushé

Prerequis

  • python
  • sudo

TODO

Global Roles

  • system role:

    • install ansible aur module
    • soft install (zsh,vim,)
  • user profil config

  • ansible bootstrap

    • install python
    • install sudo
    • create user
    • copy clé RSA
  • samba automount role

    • géré les credential en fichier
    • initialisé les variable pour les diferent périphérique
  • davfs mount

  • VM server

  • syncthing role

Workstation roles

  • mpd role

  • ansible manager

    • install ansible
    • install ansible aur module
    • clone ansible repo
  • workstation role

  • -need to check for nvidia drver

  • cups

  • bluetooth et tlp pour laptop

  • grubtheme

Server Roles

  • terminfo

  • server role

    • cron
    • msmtp
  • rsyncd role

  • failtoban role

  • nginx/php role

    • install
    • config
  • dns role -slave/primary

  • mariadb role

    • install
    • config
    • (voir pouquoi l'init de mysql ne fonctionne pas dans ansible)
  • tt-rss role

    • depend nginx & madiadb role
    • fail2ban jail
  • gitea role

    • depend of mariadb role
  • backup role?

    • controle du reboot

global improvment

  • voir pour compatibiliser debian
  • variabiliser