Inicio Explorar Axuda
Iniciar sesión
kolter
/
ansible-playbooks
1
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: 7d3bd0d61a
Ramas Etiquetas
ansible-playboo...
/
roles
/
common
/
tasks
/
base.yml

base.yml 2.6 KB
Histórico Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. - name: Install hosts file
    2. 

  2.   template: src=hosts.j2 dest=/etc/hosts owner=root group=root mode=0644
    3. 

  3.   notify:
    4. 

  4.     - Update motd
    5. 

  5. 

  6. - name: Install hosts.deny file
    7. 

  7.   template: src=hosts.deny.j2 dest=/etc/hosts.deny owner=root group=root mode=0644
    8. 

  8. 

  9. - name: Write /etc/apt/sources.list
    10. 

  10.   template: src=apt/sources.{{ ansible_lsb.codename }}.list.j2 dest=/etc/apt/sources.list owner=root group=root mode=0644
    11. 

  11.   notify:
    12. 

  12.     - Reload apt cache
    13. 

  13. 

  14. - name: Write /etc/apt/apt.conf.d configuration files
    15. 

  15.   template: src=apt/apt-options.j2 dest=/etc/apt/apt.conf.d/90local owner=root group=root mode=0644
    16. 

  16. 

  17. - name: Remove deprecated apt options files
    18. 

  18.   file: path=/etc/apt/apt.conf.d/{{ item }} state=absent
    19. 

  19.   with_items:
    20. 

  20.     - local-recommends
    21. 

  21.     - local-pdiffs
    22. 

  22. 

  23. - name: Install base packages
    24. 

  24.   apt: pkg={{ item }} install_recommends=no state=installed update_cache=yes
    25. 

  25.   with_items:
    26. 

  26.     - apticron
    27. 

  27.     - locales-all
    28. 

  28.     - lsb-release
    29. 

  29.     - ntp
    30. 

  30.     - toilet
    31. 

  31.     - toilet-fonts
    32. 

  32.     - facter
    33. 

  33.     - zsh
    34. 

  34.     - git-core
    35. 

  35.     - vim-nox
    36. 

  36.     - ccze
    37. 

  37.     - tree
    38. 

  38.     - pydf
    39. 

  39.     - htop
    40. 

  40.     - sudo
    41. 

  41.     - sysfsutils
    42. 

  42.     - tmux
    43. 

  43.     - rsync
    44. 

  44. 

  45. - name: Install kernel configuration (proc)
    46. 

  46.   template: src=kernel/sysctl.d/{{ item }}.j2 dest=/etc/sysctl.d/{{ item }} owner=root group=root mode=0644
    47. 

  47.   with_items:
    48. 

  48.       - 10-increase-file-descriptors.conf
    49. 

  49.   notify:
    50. 

  50.     - Apply kernel configuration (proc)
    51. 

  51. 

  52. - name: Create sysfs configuration directory - /etc/sysfs.d
    53. 

  53.   file: path=/etc/sysfs.d state=directory owner=root group=root mode=0755
    54. 

  54. 

  55. - name: Install kernel configuration (sys)
    56. 

  56.   template: src=kernel/sysfs.d/{{ item }}.j2 dest=/etc/sysfs.d/{{ item }} owner=root group=root mode=0644
    57. 

  57.   with_items:
    58. 

  58.       - 00-sysfs-prolog.conf
    59. 

  59.   notify:
    60. 

  60.     - Refresh sysfs configuration
    61. 

  61. 

  62. - name: Install kernel configuration (sys) for disks
    63. 

  63.   template: src=kernel/sysfs.d/{{ item }}.j2 dest=/etc/sysfs.d/{{ item }} owner=root group=root mode=0644
    64. 

  64.   with_items:
    65. 

  65.       - 10-disks.conf
    66. 

  66.   notify:
    67. 

  67.     - Refresh sysfs configuration
    68. 

  68.   when: sysfs_disk_settings
    69. 

  69. 

  70. - name: Install sudo configuration
    71. 

  71.   template: src=sudo/local-admin.j2 dest=/etc/sudoers.d/local-admin owner=root group=root mode=0440
    72. 

  72. 

  73. - name: Install unprivileged user
    74. 

  74.   user: name="{{ item.user }}" comment="{{ item.fullname }}" groups=adm,operator,sudo append=yes shell=/bin/zsh state=present
    75. 

  75.   with_items: admins
    76. 

  76. 

  77. - name: Install SSH key for unprivileged user
    78. 

  78.   authorized_key: user="{{ item.user }}" key="{{ lookup('file', '../data/users/' + item.user + '/id_rsa.pub') }}" state=present
    79. 

  79.   with_items: admins
    80. 

  80. 

  81. - name: Install SSH key for root
    82. 

  82.   authorized_key: user=root key="{{ lookup('file', '../data/users/' + item.user + '/id_rsa.pub') }}" state=present
    83. 

  83.   with_items: admins
    84.