Misc. collection of Ansible tasks/roles for my deploys
Find a file
2020-04-18 23:37:22 -05:00
mitogen@4fedf88d38 add mitogen module, brings ansible 2.8 support 2019-07-23 15:45:43 -05:00
roles install-packages: print changed packages, rename EL package list 2020-04-18 23:37:22 -05:00
.gitignore update gitignore - certificate types 2019-10-26 22:50:05 -05:00
.gitmodules add mitogen module, brings ansible 2.8 support 2019-07-23 15:45:43 -05:00
ansible.cfg disable cowsay 2020-02-19 22:40:16 -06:00
play.yml remove globals.yaml, move vars to role defaults 2020-04-18 23:26:48 -05:00
README.md initial commit 2019-02-25 21:49:51 -06:00
TODO initial commit 2019-02-25 21:49:51 -06:00

deploy_base

This playbook is used to test my misc. roles that I intend to use as a deployment framework.

Known issues

The package updates for atomic aren't idempotent. Some previous ostree transactions register a change, regardless of the actual transactional activity.

Simply comment out the update-packages role in play.yml to avoid this, if desired.

Example usage

[jlay@delta deploy_base]$ ansible-playbook -i hosts play.yml 
username for the user you want to create [jlay]: 
password for created user: 
confirm password for created user: 

PLAY [lan] ************************************************************************************************************************************************

TASK [Gathering Facts] ****************************************************************************************************************************************
ok: [gitlab]

TASK [bootstrap : check if atomic] ****************************************************************************************************************************
ok: [gitlab]

TASK [bootstrap : check for cloud.cfg] ************************************************************************************************************************
ok: [gitlab]

TASK [bootstrap : set fact (atomic state)] ********************************************************************************************************************
ok: [gitlab]

TASK [bootstrap : set fact (cloud.cfg state)] *****************************************************************************************************************
ok: [gitlab]

TASK [bootstrap : install prereqs] ****************************************************************************************************************************
ok: [gitlab] => (item=libselinux-python)
ok: [gitlab] => (item=sudo)

TASK [bootstrap : remove update_etc_hosts from cloud.cfg] *****************************************************************************************************
skipping: [gitlab]

TASK [bootstrap : remove requiretty] **************************************************************************************************************************
ok: [gitlab]

TASK [bootstrap : install epel] *******************************************************************************************************************************
ok: [gitlab]

TASK [update-packages : update packages (atomic)] *************************************************************************************************************
skipping: [gitlab]

TASK [update-packages : update packages (non-atomic)] *********************************************************************************************************
ok: [gitlab]

TASK [update-packages : reboot updated hosts] *****************************************************************************************************************
skipping: [gitlab]

TASK [update-packages : wait for rebooted host to return] *****************************************************************************************************
skipping: [gitlab]

TASK [install-packages : include_tasks] ***********************************************************************************************************************
skipping: [gitlab]

TASK [install-packages : include_tasks] ***********************************************************************************************************************
included: /home/jlay/git/deploy_base/roles/install-packages/tasks/el.yml for gitlab

TASK [install-packages : install packages (RHEL/CentOS/Fedora)] ***********************************************************************************************
ok: [gitlab] => (item=bash-completion)
ok: [gitlab] => (item=htop)
ok: [gitlab] => (item=vim)
ok: [gitlab] => (item=strace)
ok: [gitlab] => (item=dmidecode)
ok: [gitlab] => (item=nethogs)
ok: [gitlab] => (item=sysbench)
ok: [gitlab] => (item=fio)
ok: [gitlab] => (item=rsync)
ok: [gitlab] => (item=iperf3)
ok: [gitlab] => (item=nmap)
ok: [gitlab] => (item=lvm2)
ok: [gitlab] => (item=bind-utils)

TASK [create-user : include_tasks] ****************************************************************************************************************************
skipping: [gitlab]

TASK [create-user : include_tasks] ****************************************************************************************************************************
included: /home/jlay/git/deploy_base/roles/create-user/tasks/el.yml for gitlab

TASK [create-user : creating user jlay in wheel group (RHEL/CentOS/Fedora)] ***********************************************************************************
ok: [gitlab]

TASK [create-user : enable nopasswd sudo (RHEL/CentOS/Fedora)] ************************************************************************************************
ok: [gitlab]

TASK [create-user : copy current pubkeys to ~jlay/.ssh/authorized_keys] ***************************************************************************************
ok: [gitlab] => (item=ssh-ed25519 [...] jlay@workstation)
ok: [gitlab] => (item=ssh-rsa [...] jlay@workstation)

TASK [hardening : disable services] ***************************************************************************************************************************
ok: [gitlab] => (item=postfix)
failed: [gitlab] (item=rpcbind) => {"changed": false, "item": "rpcbind", "msg": "Could not find the requested service rpcbind: host"}
ok: [gitlab] => (item=rsyncd.service)
ok: [gitlab] => (item=rsyncd.socket)
...ignoring

TASK [hardening : disable password auth] **********************************************************************************************************************
ok: [gitlab]

TASK [docker : install docker] ********************************************************************************************************************************
ok: [gitlab]

TASK [docker : add jlay to 'dockerroot' group] ****************************************************************************************************************
ok: [gitlab]

TASK [docker : copy daemon.json] ******************************************************************************************************************************
ok: [gitlab]

TASK [docker : enable/start docker] ***************************************************************************************************************************
ok: [gitlab]

TASK [zfs : install zfs-release package (RHEL/CentOS)] ********************************************************************************************************
ok: [gitlab]

TASK [zfs : install zfs-release package (Fedora)] *************************************************************************************************************
skipping: [gitlab]

TASK [zfs : install zfs and dkms] *****************************************************************************************************************************
ok: [gitlab] => (item=kernel-devel)
ok: [gitlab] => (item=@Development tools)
ok: [gitlab] => (item=dkms)
ok: [gitlab] => (item=zfs)

TASK [zfs : load zfs module] **********************************************************************************************************************************
ok: [gitlab]

TASK [zfs : add zfs to modules-load.d] ************************************************************************************************************************
ok: [gitlab]

TASK [zfs : set zfs_arc_max to 75% installed memory (11630000000 bytes)] **************************************************************************************
ok: [gitlab]

PLAY RECAP ****************************************************************************************************************************************************
gitlab                     : ok=26   changed=0    unreachable=0    failed=0   

[jlay@delta deploy_base]$