samsapti/lab-ansible
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

Switch to Rocky Linux

Browse source
This commit is contained in:
Sam A. 2023-11-12 16:41:59 +01:00
parent bf5c7a526e
commit b8e18cdbe9
Signed by: samsapti
GPG key ID: CBBBE7371E81C4EA
2 changed files with 36 additions and 24 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

31
roles/docker/tasks/main.yml
View file

@ -2,25 +2,30 @@
# code: language=ansible # code: language=ansible
--- ---
- name: Add Docker PGP key - name: Add Docker PGP key
ansible.builtin.apt_key: ansible.builtin.rpm_key:
keyserver: keyserver.ubuntu.com key: https://download.docker.com/linux/centos/gpg
id: '0x8D81803C0EBFCD88' fingerprint: 060A 61C5 1B55 8A7F 742B 77AA C52F EB6B 621E 9F35
state: present state: present
- name: Add Docker apt repository - name: Add Docker repository
ansible.builtin.apt_repository: ansible.builtin.yum_repository:
repo: 'deb [arch=amd64 signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/debian bullseye stable' name: docker-ce-stable
update_cache: true description: Docker CE Stable - $basearch
file: docker-ce
baseurl: https://download.docker.com/linux/centos/$releasever/$basearch/stable
gpgkey: https://download.docker.com/linux/centos/gpg
gpgcheck: true
enabled: true
state: present state: present
- name: Install Docker - name: Install Docker and Docker Compose
ansible.builtin.apt: ansible.builtin.dnf:
name: "{{ pkgs }}" name:
state: present
vars:
pkgs:
- docker-ce - docker-ce
- docker-ce-cli
- docker-compose-plugin - docker-compose-plugin
- containerd.io
state: present
- name: Copy Docker daemon config file - name: Copy Docker daemon config file
ansible.builtin.template: ansible.builtin.template:

29
roles/vm-common/tasks/base.yml
View file

@ -35,18 +35,25 @@
state: present state: present
notify: Restart systemd-resolved notify: Restart systemd-resolved
- name: Ensure UFW is absent - name: Enable Security SIG repositories
ansible.builtin.apt: ansible.builtin.dnf:
name: ufw name: rocky-release-security
state: absent state: present
- name: Install system packages - name: Install system packages
ansible.builtin.apt: ansible.builtin.dnf:
name: "{{ pkgs }}" name:
update_cache: true
state: present
vars:
pkgs:
- apparmor
- haveged - haveged
- firewalld - firewalld
- lkrg
state: present
- name: Ensure services are enabled and running
ansible.builtin.service:
name: "{{ item }}"
enabled: true
state: started
loop:
- haveged
- firewalld
- lkrg