Kapitel 06: Roles

2024-11-27 10:46:12 +01:00 · 2024-11-27 10:46:12 +01:00 · 1ad0071333
parent 5c4d0c47be
commit 1ad0071333
26 changed files with 159 additions and 1 deletions
--- a/.gitmodules
+++ b/.gitmodules
@ -0,0 +1,9 @@
+[submodule "roles.extern/cleanup-hosts"]
+	path = roles.extern/cleanup-hosts
+	url = https://git.velt.biz/Ansible/cleanup-hosts.git
+[submodule "roles.extern/ssh-keyonly"]
+	path = roles.extern/ssh-keyonly
+	url = https://git.velt.biz/Ansible/role.ssh-keyonly.git
+[submodule "roles.extern/epel-simplified"]
+	path = roles.extern/epel-simplified
+	url = https://git.velt.biz/Ansible/epel-simplified
--- a/06/_epel.yml
+++ b/06/_epel.yml
@ -0,0 +1,7 @@
+---
+- hosts: all
+
+  roles:
+
+    - role: epel
+
--- a/06/_ssh.yml
+++ b/06/_ssh.yml
@ -0,0 +1,6 @@
+---
+- hosts: all
+
+  roles:
+    - ssh-keyonly
+
--- a/06/ansible.cfg
+++ b/06/ansible.cfg
@ -0,0 +1,31 @@
+[defaults]
+
+# Inventory
+inventory = ./hosts.ini
+
+# Roles paths
+roles_path = ./roles:./roles.extern:/etc/ansible/roles
+
+# Interpreter Discovery - Ohne Warnings
+interpreter_python = auto_silent
+
+# SSH
+remote_user = root
+#host_key_checking = False
+
+# Retry files
+retry_files_enabled = yes
+retry_files_save_path = ./.cache/Retry/
+
+# Log files
+#log_path = ./log/ansible.log
+
+# Farben ausschalten
+#nocolor = 1
+
+[colors]
+# Für dunklen Hintergrund in der Console
+verbose = bright blue
+debug = bright gray
+error = bright red
+
--- a/06/dep-steps.yml
+++ b/06/dep-steps.yml
@ -0,0 +1,6 @@
+---
+- hosts: localhost
+
+  roles:
+    - dep-step3
+
--- a/06/git-urls.txt
+++ b/06/git-urls.txt
@ -0,0 +1,6 @@
+git clone https://git.velt.biz/Ansible/cleanup-hosts.git
+
+git clone https://git.velt.biz/Ansible/role.ssh-keyonly.git
+
+git clone https://git.velt.biz/Ansible/epel-simplified.git
+
--- a/06/hosts_ssh_epel.yml
+++ b/06/hosts_ssh_epel.yml
@ -0,0 +1,12 @@
+---
+- hosts: all
+
+  roles:
+
+    - cleanup-hosts
+
+    - { role: ssh-keyonly }
+
+    - role: epel
+      when: ansible_os_family == "RedHat" and ansible_distribution != "Fedora"
+
--- a/06/ntp-role.yml
+++ b/06/ntp-role.yml
@ -0,0 +1,6 @@
+---
+- hosts: all
+
+  roles:
+    - ntp
+
--- a/ansible.cfg
+++ b/ansible.cfg
@ -1 +1 @@
-04/ansible.cfg
+06/ansible.cfg
--- a/group_vars/all/ssh.yml
+++ b/group_vars/all/ssh.yml
@ -0,0 +1,3 @@
+---
+ssh_service_name: sshd
+
--- a/group_vars/apt/ssh.yml
+++ b/group_vars/apt/ssh.yml
@ -0,0 +1,3 @@
+---
+ssh_service_name: ssh
+
--- a/helper/06_gitmodules.sh
+++ b/helper/06_gitmodules.sh
@ -0,0 +1,11 @@
+#!/bin/bash -ex
+
+mkdir -p roles.extern
+
+git submodule add https://git.velt.biz/Ansible/cleanup-hosts.git roles.extern/cleanup-hosts
+git submodule add https://git.velt.biz/Ansible/role.ssh-keyonly.git roles.extern/ssh-keyonly
+git submodule add https://git.velt.biz/Ansible/epel-simplified roles.extern/epel-simplified
+
+ln -s cleanup-hosts roles.extern/hosts
+ln -s epel-simplified roles.extern/epel
+
--- a/host_vars/tn00-oracle7.yml
+++ b/host_vars/tn00-oracle7.yml
@ -0,0 +1,3 @@
+---
+epel_baseurl: http://archives.fedoraproject.org/pub/archive/epel/
+
--- a/roles.extern/cleanup-hosts
+++ b/roles.extern/cleanup-hosts
@ -0,0 +1 @@
+Subproject commit 526b7e4bb5b81630f9f7b25bbc1035b42a454358
--- a/roles.extern/epel
+++ b/roles.extern/epel
@ -0,0 +1 @@
+epel-simplified
--- a/roles.extern/epel-simplified
+++ b/roles.extern/epel-simplified
@ -0,0 +1 @@
+Subproject commit 55ad5aff48a6cbd07407614f835da5175e8e72cc
--- a/roles.extern/hosts
+++ b/roles.extern/hosts
@ -0,0 +1 @@
+cleanup-hosts
--- a/roles.extern/ssh-keyonly
+++ b/roles.extern/ssh-keyonly
@ -0,0 +1 @@
+Subproject commit c55557f733bd798f5c30396dca5e3c83effe173e
--- a/roles/dep-step1/tasks/main.yml
+++ b/roles/dep-step1/tasks/main.yml
@ -0,0 +1,5 @@
+---
+- name: Ausgabe
+  debug:
+    msg: Das ist Schritt 1
+
--- a/roles/dep-step2/meta/main.yml
+++ b/roles/dep-step2/meta/main.yml
@ -0,0 +1,4 @@
+---
+dependencies:
+  - dep-step1
+
--- a/roles/dep-step2/tasks/main.yml
+++ b/roles/dep-step2/tasks/main.yml
@ -0,0 +1,6 @@
+---
+- name: Ausgabe
+  debug:
+    msg: Das ist Schritt 2
+
+
--- a/roles/dep-step3/meta/main.yml
+++ b/roles/dep-step3/meta/main.yml
@ -0,0 +1,5 @@
+---
+dependencies:
+  - dep-step2
+
+
--- a/roles/dep-step3/tasks/main.yml
+++ b/roles/dep-step3/tasks/main.yml
@ -0,0 +1,6 @@
+---
+- name: Ausgabe
+  debug:
+    msg: Das ist Schritt 3
+
+
--- a/roles/ntp/defaults/main.yml
+++ b/roles/ntp/defaults/main.yml
@ -0,0 +1,7 @@
+---
+chrony_pools:
+  - 0.de.pool.ntp.org
+  - 1.de.pool.ntp.org
+  - 2.de.pool.ntp.org
+  - 3.de.pool.ntp.org
+
--- a/roles/ntp/tasks/main.yml
+++ b/roles/ntp/tasks/main.yml
@ -0,0 +1,16 @@
+---
+- name: Install Chrony
+  package: name=chrony state=latest
+
+- name: Show pools
+  debug: var=chrony_pools
+
+- name: Template config file
+  template: "src=chrony.conf.j2 dest='{{ chrony_config_path }}' mode=0644 owner=root group=root backup=yes"
+
+- name: Restart Chrony with new config
+  service: "name='{{ chrony_service_name }}' state=restarted"
+
+- name: Enable Chrony at boot
+  service: "name={{ chrony_service_name }} state=started enabled=yes"
+
--- a/roles/ntp/templates/chrony.conf.j2
+++ b/roles/ntp/templates/chrony.conf.j2
@ -0,0 +1 @@
+../../../05/chrony.conf.j2
				`@ -0,0 +1 @@`
				`Subproject commit 526b7e4bb5b81630f9f7b25bbc1035b42a454358`
				`@ -0,0 +1 @@`
				`Subproject commit 55ad5aff48a6cbd07407614f835da5175e8e72cc`
				`@ -0,0 +1 @@`
				`Subproject commit c55557f733bd798f5c30396dca5e3c83effe173e`