144 lines
7.6 KiB
Markdown
144 lines
7.6 KiB
Markdown
|
## deploy_base
|
||
|
This playbook is used to test my misc. roles that I intend to use as a deployment framework.
|
||
|
|
||
|
### Known issues
|
||
|
The package updates for atomic aren't idempotent. Some previous ostree transactions register a change, regardless of the actual transactional activity.
|
||
|
|
||
|
Simply comment out the update-packages role in play.yml to avoid this, if desired.
|
||
|
|
||
|
### Example usage
|
||
|
```
|
||
|
[jlay@delta deploy_base]$ ansible-playbook -i hosts play.yml
|
||
|
username for the user you want to create [jlay]:
|
||
|
password for created user:
|
||
|
confirm password for created user:
|
||
|
|
||
|
PLAY [lan] ************************************************************************************************************************************************
|
||
|
|
||
|
TASK [Gathering Facts] ****************************************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [bootstrap : check if atomic] ****************************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [bootstrap : check for cloud.cfg] ************************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [bootstrap : set fact (atomic state)] ********************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [bootstrap : set fact (cloud.cfg state)] *****************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [bootstrap : install prereqs] ****************************************************************************************************************************
|
||
|
ok: [gitlab] => (item=libselinux-python)
|
||
|
ok: [gitlab] => (item=sudo)
|
||
|
|
||
|
TASK [bootstrap : remove update_etc_hosts from cloud.cfg] *****************************************************************************************************
|
||
|
skipping: [gitlab]
|
||
|
|
||
|
TASK [bootstrap : remove requiretty] **************************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [bootstrap : install epel] *******************************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [update-packages : update packages (atomic)] *************************************************************************************************************
|
||
|
skipping: [gitlab]
|
||
|
|
||
|
TASK [update-packages : update packages (non-atomic)] *********************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [update-packages : reboot updated hosts] *****************************************************************************************************************
|
||
|
skipping: [gitlab]
|
||
|
|
||
|
TASK [update-packages : wait for rebooted host to return] *****************************************************************************************************
|
||
|
skipping: [gitlab]
|
||
|
|
||
|
TASK [install-packages : include_tasks] ***********************************************************************************************************************
|
||
|
skipping: [gitlab]
|
||
|
|
||
|
TASK [install-packages : include_tasks] ***********************************************************************************************************************
|
||
|
included: /home/jlay/git/deploy_base/roles/install-packages/tasks/el.yml for gitlab
|
||
|
|
||
|
TASK [install-packages : install packages (RHEL/CentOS/Fedora)] ***********************************************************************************************
|
||
|
ok: [gitlab] => (item=bash-completion)
|
||
|
ok: [gitlab] => (item=htop)
|
||
|
ok: [gitlab] => (item=vim)
|
||
|
ok: [gitlab] => (item=strace)
|
||
|
ok: [gitlab] => (item=dmidecode)
|
||
|
ok: [gitlab] => (item=nethogs)
|
||
|
ok: [gitlab] => (item=sysbench)
|
||
|
ok: [gitlab] => (item=fio)
|
||
|
ok: [gitlab] => (item=rsync)
|
||
|
ok: [gitlab] => (item=iperf3)
|
||
|
ok: [gitlab] => (item=nmap)
|
||
|
ok: [gitlab] => (item=lvm2)
|
||
|
ok: [gitlab] => (item=bind-utils)
|
||
|
|
||
|
TASK [create-user : include_tasks] ****************************************************************************************************************************
|
||
|
skipping: [gitlab]
|
||
|
|
||
|
TASK [create-user : include_tasks] ****************************************************************************************************************************
|
||
|
included: /home/jlay/git/deploy_base/roles/create-user/tasks/el.yml for gitlab
|
||
|
|
||
|
TASK [create-user : creating user jlay in wheel group (RHEL/CentOS/Fedora)] ***********************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [create-user : enable nopasswd sudo (RHEL/CentOS/Fedora)] ************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [create-user : copy current pubkeys to ~jlay/.ssh/authorized_keys] ***************************************************************************************
|
||
|
ok: [gitlab] => (item=ssh-ed25519 [...] jlay@workstation)
|
||
|
ok: [gitlab] => (item=ssh-rsa [...] jlay@workstation)
|
||
|
|
||
|
TASK [hardening : disable services] ***************************************************************************************************************************
|
||
|
ok: [gitlab] => (item=postfix)
|
||
|
failed: [gitlab] (item=rpcbind) => {"changed": false, "item": "rpcbind", "msg": "Could not find the requested service rpcbind: host"}
|
||
|
ok: [gitlab] => (item=rsyncd.service)
|
||
|
ok: [gitlab] => (item=rsyncd.socket)
|
||
|
...ignoring
|
||
|
|
||
|
TASK [hardening : disable password auth] **********************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [docker : install docker] ********************************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [docker : add jlay to 'dockerroot' group] ****************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [docker : copy daemon.json] ******************************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [docker : enable/start docker] ***************************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [zfs : install zfs-release package (RHEL/CentOS)] ********************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [zfs : install zfs-release package (Fedora)] *************************************************************************************************************
|
||
|
skipping: [gitlab]
|
||
|
|
||
|
TASK [zfs : install zfs and dkms] *****************************************************************************************************************************
|
||
|
ok: [gitlab] => (item=kernel-devel)
|
||
|
ok: [gitlab] => (item=@Development tools)
|
||
|
ok: [gitlab] => (item=dkms)
|
||
|
ok: [gitlab] => (item=zfs)
|
||
|
|
||
|
TASK [zfs : load zfs module] **********************************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [zfs : add zfs to modules-load.d] ************************************************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
TASK [zfs : set zfs_arc_max to 75% installed memory (11630000000 bytes)] **************************************************************************************
|
||
|
ok: [gitlab]
|
||
|
|
||
|
PLAY RECAP ****************************************************************************************************************************************************
|
||
|
gitlab : ok=26 changed=0 unreachable=0 failed=0
|
||
|
|
||
|
[jlay@delta deploy_base]$
|
||
|
```
|
||
|
|