Kezdőlap Felfedezés Súgó
Bejelentkezés
kolter
/
ansible-playbooks
1
0
Másolás 0
Fájlok Problémák 0 Beolvasztási kérések 0 Wiki
Fa: 361d58ca57
Branch-ok Tag-ek
ansible-playboo...
/
roles
/
common
/
tasks
/
base.yml

base.yml 3.2 KB
Előzmények Nyers

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697 
  1. - name: Install hosts file
    2. 

  2.   template: src=hosts.j2 dest=/etc/hosts owner=root group=root mode=0644
    3. 

  3.   notify:
    4. 

  4.     - Update motd
    5. 

  5. 

  6. - name: Install hosts.deny file
    7. 

  7.   template: src=hosts.deny.j2 dest=/etc/hosts.deny owner=root group=root mode=0644
    8. 

  8. 

  9. - name: Write /etc/apt/sources.list
    10. 

  10.   template: src=apt/sources.{{ ansible_lsb.codename }}.list.j2 dest=/etc/apt/sources.list owner=root group=root mode=0644
    11. 

  11.   notify:
    12. 

  12.     - Reload apt cache
    13. 

  13. 

  14. - name: Write /etc/apt/apt.conf.d configuration files
    15. 

  15.   template: src=apt/apt-options.j2 dest=/etc/apt/apt.conf.d/90local owner=root group=root mode=0644
    16. 

  16. 

  17. - name: Remove deprecated apt options files
    18. 

  18.   file: path=/etc/apt/apt.conf.d/{{ item }} state=absent
    19. 

  19.   with_items:
    20. 

  20.     - local-recommends
    21. 

  21.     - local-pdiffs
    22. 

  22. 

  23. - name: Install base packages
    24. 

  24.   apt: pkg={{ item }} install_recommends=no state=installed update_cache=yes
    25. 

  25.   with_items:
    26. 

  26.     - apticron
    27. 

  27.     - locales-all
    28. 

  28.     - locales
    29. 

  29.     - lsb-release
    30. 

  30.     - ntp
    31. 

  31.     - toilet
    32. 

  32.     - toilet-fonts
    33. 

  33.     - facter
    34. 

  34.     - zsh
    35. 

  35.     - git-core
    36. 

  36.     - vim-nox
    37. 

  37.     - ccze
    38. 

  38.     - tree
    39. 

  39.     - pydf
    40. 

  40.     - htop
    41. 

  41.     - sudo
    42. 

  42.     - sysfsutils
    43. 

  43.     - tmux
    44. 

  44.     - rsync
    45. 

  45.     - ca-certificates
    46. 

  46.     - sysstat
    47. 

  47.     - etckeeper
    48. 

  48. 

  49. - name: Configure default locale and timezone
    50. 

  50.   debconf: name="{{item.name}}" question="{{item.question}}" value="{{item.value}}" vtype="{{item.vtype}}"
    51. 

  51.   with_items:
    52. 

  52.     - { name: 'locales', question: 'locales/default_environment_locale', value: '{{ locale }}', vtype: 'select' }
    53. 

  53.     - { name: 'tzdata', question: 'tzdata/Areas', value: '{{ timezone_area }}', vtype: 'select' }
    54. 

  54.     - { name: 'tzdata', question: 'tzdata/Zones/{{ timezone_area }}', value: '{{ timezone_city }}', vtype: 'select' }
    55. 

  55.   notify:
    56. 

  56.     - Reconfigure locales
    57. 

  57.     - Reconfigure timezone
    58. 

  58. 

  59. - name: Install kernel configuration (proc)
    60. 

  60.   template: src=kernel/sysctl.d/{{ item }}.j2 dest=/etc/sysctl.d/{{ item }} owner=root group=root mode=0644
    61. 

  61.   with_items:
    62. 

  62.       - 10-increase-file-descriptors.conf
    63. 

  63.   notify:
    64. 

  64.     - Apply kernel configuration (proc)
    65. 

  65. 

  66. - name: Create sysfs configuration directory - /etc/sysfs.d
    67. 

  67.   file: path=/etc/sysfs.d state=directory owner=root group=root mode=0755
    68. 

  68. 

  69. - name: Install kernel configuration (sys)
    70. 

  70.   template: src=kernel/sysfs.d/{{ item }}.j2 dest=/etc/sysfs.d/{{ item }} owner=root group=root mode=0644
    71. 

  71.   with_items:
    72. 

  72.       - 00-sysfs-prolog.conf
    73. 

  73.   notify:
    74. 

  74.     - Refresh sysfs configuration
    75. 

  75. 

  76. - name: Install kernel configuration (sys) for disks
    77. 

  77.   template: src=kernel/sysfs.d/{{ item }}.j2 dest=/etc/sysfs.d/{{ item }} owner=root group=root mode=0644
    78. 

  78.   with_items:
    79. 

  79.       - 10-disks.conf
    80. 

  80.   notify:
    81. 

  81.     - Refresh sysfs configuration
    82. 

  82.   when: sysfs_disk_settings
    83. 

  83. 

  84. - name: Install sudo configuration
    85. 

  85.   template: src=sudo/local-admin.j2 dest=/etc/sudoers.d/local-admin owner=root group=root mode=0440
    86. 

  86. 

  87. - name: Install unprivileged user
    88. 

  88.   user: name="{{item.user}}" comment="{{item.fullname}}" groups=adm,operator,sudo append=yes shell=/bin/zsh state=present
    89. 

  89.   with_items: admins
    90. 

  90. 

  91. - name: Install SSH key for unprivileged user
    92. 

  92.   authorized_key: user="{{item.user}}" key="{{lookup('file', '../data/users/' + item.user + '/id_rsa.pub')}}" state=present
    93. 

  93.   with_items: admins
    94. 

  94. 

  95. - name: Install SSH key for root
    96. 

  96.   authorized_key: user=root key="{{lookup('file', '../data/users/' + item.user + '/id_rsa.pub')}}" state=present
    97. 

  97.   with_items: admins
    98.