data.coop/ansible
8
3
Fork 7
Code Issues 49 Pull requests 7 Projects 1 Releases Wiki Activity
301 commits 9 branches 0 tags 2.1 MiB
Commit graph

40 commits

Author SHA1 Message Date
Sam A. c6269636cd
Merge branch 'main' into vagrant 2022-11-22 22:10:27 +01:00
Sam A. fc7ca37b07
Make TCP the default allowed firewall protocol 
Custom protocol can still be specified by adding `proto: "proto"` to a
loop item.
 2022-11-22 21:40:21 +01:00
Sam A. 71cc3e2241
Fix firewall ports format 2022-11-22 21:22:23 +01:00
Sam A. d53c6d41dc Merge pull request 'Firewall (UFW)' (#107) from samsapti/ansible:main into main 
Reviewed-on: #107
 2022-11-22 20:05:00 +00:00
Sam A. d48e684647
Remove notify 2022-11-17 22:17:51 +01:00
Sam A. 6e383d6afa
Simplify SSH configuration 
Now that the Vagrantfile supplies SSH port information to Ansible, we no
longer need to figure it out in Ansible. Also, since gather_facts (which
requires an SSH connection) is set to true in playbook.yml, one needs to
supply --extra-vars "ansible_port=22" on the commandline when
provisioning for the first time on real hardware, because the port is
hardcoded in the inventory file.
 2022-11-17 22:15:26 +01:00
Víðir Valberg Guðmundsson 9a5d780f2b Keep ansible "clean" and do ssh port magic in Vagrantfile. 2022-11-17 08:53:45 +01:00
Sam A. 57ca1e9233
Create separate role for SSH and Vagrant 
- Added a separate role that first configures SSH, and after that
  gathers the ansible_virtualization_role fact, due to gathering facts
  requiring an SSH connection
- Renamed ssl_certs_enabled to letsencrypt_enabled and moved that
  and the vagrant variable to the be supplied directly to the last two
  roles in playbook.yml
- Added tags base_only and setup_services to the new role
  ssh_and_vagrant so that it will always be run before anything else
  when using deploy.sh
 2022-11-16 20:31:44 +01:00
Reynir Björnsson 5a54eb6b1e Flatten the list 2022-11-16 16:24:22 +01:00
Reynir Björnsson c802777867 Add root keys for all users 
And not just the last user.
 2022-11-16 16:10:10 +01:00
Víðir Valberg Guðmundsson 253a21432e Add ssl_certs_enabled variable and use it to avoid ssl certs when running on vagrant 2022-11-15 22:06:53 +00:00
Sam A. a6cb0a8e65 Remove state: latest 2022-11-15 22:06:53 +00:00
Sam A. c676d69fc0 Naming changes 2022-11-15 22:06:53 +00:00
Sam A. c74cc4413a Simplify config and rename some files 2022-11-15 22:06:53 +00:00
Sam A. 1744cf7585 Fix SSH port logic again 2022-11-15 22:06:53 +00:00
Sam A. b310e191f8 Some Vagrant fixes 
Only install Dell OpenManage if not running in a VM, and fix SSH port
logic.
 2022-11-15 22:06:53 +00:00
Sam A. b56690a33e Make Ansible setup testable in Vagrant 
Added logic to change the sshd port if not already configured,
configued Vagrantfile to work properly and fixed a couple of deploy
errors.
 2022-11-15 22:06:53 +00:00
Sam A. 58dbf9ff22
Allow only TCP traffic on specified ports 2022-11-15 20:42:18 +01:00
Sam A. ba44677cf3
Avoid conflicts with built-in function name keys 2022-11-15 20:28:34 +01:00
Sam A. fc0c0c5036
Always update password and overwrite keys 2022-11-15 19:57:17 +01:00
Sam A. 5f718e1027
Add firewall setup with UFW 2022-11-12 19:41:55 +01:00
Reynir Björnsson 442bb4ad58 Add apt preferences file for dell repo 
Deny all packages from dell repo that exist elsewhere

Fixes #95
 2022-07-22 20:41:34 +02:00
Jesper Hess 997779d627 Add Dell apt signing key 2022-07-22 12:37:39 +00:00
Jesper Hess c6a3cb5150 move tags into main.yml instead 2022-07-22 12:37:39 +00:00
Jesper Hess 964a6c0793 Add some more useful ansible tags 
- do-full-system-upgrade
- setup-users
- install-base-packages
 2022-07-22 12:37:39 +00:00
Jesper Hess 70dff33044 Install Dell OpenManage 2022-07-22 12:37:39 +00:00
Jesper Hess 57f6e9ad4f Add Dell OpenManage APT repo 2022-07-22 12:37:39 +00:00
Reynir Björnsson 3791e1351a Install mosh 2022-01-31 10:57:24 +00:00
Reynir Björnsson 5d745e0cde Allow for multiple ssh keys 
This required restructuring users.yml.
 2022-01-28 13:15:14 +00:00
Víðir Valberg Guðmundsson 30b9580d3c Add required pip packages. 2021-02-01 21:06:39 +01:00
Jesper Hess d5602af999
Add haveged to base system packages 2019-03-05 10:31:31 +01:00
Jesper Hess 92baab22a9
Rename of server in netdata 2019-02-28 20:51:30 +01:00
Jesper Hess 53046bb85f
Add apparmor package 2019-02-28 08:28:54 +01:00
Víðir Valberg Guðmundsson 0acc23bc3f Adding letsencrypt to the nginx-proxy. Also added thelounge irc client. 2019-01-19 14:56:23 +01:00
Víðir Valberg Guðmundsson 795d5585b1 add vagrant file and adjust stuff. 2018-06-24 01:44:30 +02:00
Víðir Valberg Guðmundsson c005139fd8 Adding docker-service to docker role, and add a sample gitea service. 2018-06-23 17:22:50 +02:00
Víðir Valberg Guðmundsson 1bb6ea5eff Pubkeys should be added to the root user as well. 2018-06-23 14:44:00 +02:00
Jesper Hess fa8425ba2a
Install aptitude if missing 2018-05-10 11:20:28 +02:00
Jesper Hess 24d0ffd087
Add initial user configuration 2018-05-08 21:32:42 +02:00
Jesper Hess 76e9cba31a
Initial commit 2018-05-08 21:09:24 +02:00