diff --git a/.gitmodules b/.gitmodules index 86a6ea3..3a41b2c 100644 --- a/.gitmodules +++ b/.gitmodules @@ -29,3 +29,6 @@ [submodule "roles.extern/roles_timesync"] path = roles.extern/roles_timesync url = https://git.velt.biz/Ansible/roles_timesync.git +[submodule "12/Prepare_Workshop"] + path = 12/Prepare_Workshop + url = https://git.velt.biz/Ansible/Prepare_Workshop.git diff --git a/12/Prepare_Workshop b/12/Prepare_Workshop new file mode 160000 index 0000000..cc05cf6 --- /dev/null +++ b/12/Prepare_Workshop @@ -0,0 +1 @@ +Subproject commit cc05cf60933293fb3e939a0981a6b804a2689d72 diff --git a/12/Win/Unix-Datei.txt b/12/Win/Unix-Datei.txt new file mode 100644 index 0000000..e69de29 diff --git a/12/Win/ansible.cfg b/12/Win/ansible.cfg new file mode 100644 index 0000000..1111d0c --- /dev/null +++ b/12/Win/ansible.cfg @@ -0,0 +1,3 @@ +[defaults] +inventory = ./hosts + diff --git a/12/Win/hosts b/12/Win/hosts new file mode 100644 index 0000000..7cb2afe --- /dev/null +++ b/12/Win/hosts @@ -0,0 +1,9 @@ +[windows] +win2k12r2 ansible_host=172.22.240.164 + +[windows:vars] +ansible_user=Administrator +ansible_password=XXXXX +ansible_connection=winrm +ansible_winrm_server_cert_validation=ignore + diff --git a/12/Win/setup.txt b/12/Win/setup.txt new file mode 100644 index 0000000..6a9d53f --- /dev/null +++ b/12/Win/setup.txt @@ -0,0 +1,141 @@ +win2k12r2 | SUCCESS => { + "ansible_facts": { + "ansible_architecture": "64-Bit", + "ansible_architecture2": "x86_64", + "ansible_bios_date": null, + "ansible_bios_version": null, + "ansible_date_time": { + "date": "2022-03-18", + "day": "18", + "epoch": "1647607291,11022", + "epoch_int": 1647607291, + "epoch_local": "1647610891,11022", + "hour": "13", + "iso8601": "2022-03-18T12:41:31Z", + "iso8601_basic": "20220318T134131110217", + "iso8601_basic_short": "20220318T134131", + "iso8601_micro": "2022-03-18T12:41:31.110217Z", + "minute": "41", + "month": "03", + "second": "31", + "time": "13:41:31", + "tz": "W. Europe Standard Time", + "tz_offset": "+01:00", + "weekday": "Friday", + "weekday_number": "5", + "weeknumber": "11", + "year": "2022" + }, + "ansible_distribution": "Microsoft Windows Server 2012 R2 Standard - Testversion", + "ansible_distribution_major_version": "6", + "ansible_distribution_version": "6.3.9600.0", + "ansible_domain": "", + "ansible_env": { + "ALLUSERSPROFILE": "C:\\ProgramData", + "APPDATA": "C:\\Users\\Administrator\\AppData\\Roaming", + "COMPUTERNAME": "WIN-A6UVOR2N33N", + "ChocolateyInstall": "C:\\ProgramData\\chocolatey", + "ChocolateyLastPathUpdate": "132835990150633065", + "ChocolateyToolsLocation": "C:\\tools", + "ComSpec": "C:\\Windows\\system32\\cmd.exe", + "CommonProgramFiles": "C:\\Program Files\\Common Files", + "CommonProgramFiles(x86)": "C:\\Program Files (x86)\\Common Files", + "CommonProgramW6432": "C:\\Program Files\\Common Files", + "FP_NO_HOST_CHECK": "NO", + "HOMEDRIVE": "C:", + "HOMEPATH": "\\Users\\Administrator", + "LOCALAPPDATA": "C:\\Users\\Administrator\\AppData\\Local", + "LOGONSERVER": "\\\\WIN-A6UVOR2N33N", + "NUMBER_OF_PROCESSORS": "2", + "OS": "Windows_NT", + "PATHEXT": ".COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC;.CPL", + "PROCESSOR_ARCHITECTURE": "AMD64", + "PROCESSOR_IDENTIFIER": "Intel64 Family 6 Model 61 Stepping 2, GenuineIntel", + "PROCESSOR_LEVEL": "6", + "PROCESSOR_REVISION": "3d02", + "PROMPT": "$P$G", + "PSExecutionPolicyPreference": "Unrestricted", + "PSModulePath": "C:\\Users\\Administrator\\Documents\\WindowsPowerShell\\Modules;C:\\Program Files\\WindowsPowerShell\\Modules;C:\\Windows\\system32\\WindowsPowerShell\\v1.0\\Modules", + "PUBLIC": "C:\\Users\\Public", + "Path": "C:\\Windows\\system32;C:\\Windows;C:\\Windows\\System32\\Wbem;C:\\Windows\\System32\\WindowsPowerShell\\v1.0\\;C:\\ProgramData\\chocolatey\\bin;", + "ProgramData": "C:\\ProgramData", + "ProgramFiles": "C:\\Program Files", + "ProgramFiles(x86)": "C:\\Program Files (x86)", + "ProgramW6432": "C:\\Program Files", + "SystemDrive": "C:", + "SystemRoot": "C:\\Windows", + "TEMP": "C:\\Users\\ADMINI~1\\AppData\\Local\\Temp", + "TMP": "C:\\Users\\ADMINI~1\\AppData\\Local\\Temp", + "USERDOMAIN": "WIN-A6UVOR2N33N", + "USERDOMAIN_ROAMINGPROFILE": "WIN-A6UVOR2N33N", + "USERNAME": "Administrator", + "USERPROFILE": "C:\\Users\\Administrator", + "windir": "C:\\Windows" + }, + "ansible_fqdn": "WIN-A6UVOR2N33N", + "ansible_hostname": "WIN-A6UVOR2N33N", + "ansible_interfaces": [ + { + "connection_name": "Ethernet", + "default_gateway": "172.22.240.1", + "dns_domain": "br240.void", + "interface_index": 21, + "interface_name": "Gigabit-Netzwerkverbindung Intel(R) 82574L #2", + "macaddress": "52:54:00:80:68:04" + } + ], + "ansible_ip_addresses": [ + "fe80::4d9b:297e:ee2f:4df2%21", + "172.22.240.164" + ], + "ansible_kernel": "6.3.9600.0", + "ansible_lastboot": "2022-03-18 13:14:08Z", + "ansible_machine_id": "S-1-5-21-4249200181-1233407984-53629394", + "ansible_memfree_mb": 3435, + "ansible_memtotal_mb": 4096, + "ansible_netbios_name": "WIN-A6UVOR2N33N", + "ansible_nodename": "WIN-A6UVOR2N33N", + "ansible_os_family": "Windows", + "ansible_os_installation_type": "Server", + "ansible_os_name": "Microsoft Windows Server 2012 R2 Standard - Testversion", + "ansible_os_product_type": "server", + "ansible_owner_contact": "", + "ansible_owner_name": "Windows-Benutzer", + "ansible_pagefilefree_mb": 1408, + "ansible_pagefiletotal_mb": 1408, + "ansible_powershell_version": 4, + "ansible_processor": [ + "0", + "GenuineIntel", + "Intel Core Processor (Broadwell, IBRS)", + "1", + "GenuineIntel", + "Intel Core Processor (Broadwell, IBRS)" + ], + "ansible_processor_count": 0, + "ansible_processor_vcpus": 2, + "ansible_product_name": null, + "ansible_product_serial": null, + "ansible_reboot_pending": false, + "ansible_swaptotal_mb": 0, + "ansible_system": "Win32NT", + "ansible_system_description": "", + "ansible_system_vendor": null, + "ansible_uptime_seconds": 1646, + "ansible_user_dir": "C:\\Users\\Administrator", + "ansible_user_gecos": "", + "ansible_user_id": "Administrator", + "ansible_user_sid": "S-1-5-21-4249200181-1233407984-53629394-500", + "ansible_virtualization_role": "NA", + "ansible_virtualization_type": "NA", + "ansible_win_rm_certificate_expires": "2024-10-26 23:04:12", + "ansible_windows_domain": "WORKGROUP", + "ansible_windows_domain_member": false, + "ansible_windows_domain_role": "Stand-alone server", + "gather_subset": [ + "all" + ], + "module_setup": true + }, + "changed": false +} diff --git a/12/Win/useradd.yml b/12/Win/useradd.yml new file mode 100644 index 0000000..68e97b7 --- /dev/null +++ b/12/Win/useradd.yml @@ -0,0 +1,12 @@ +--- +- hosts: windows + + tasks: + - name: Ensure user bob is present + ansible.windows.win_user: + name: bob + password: B0bP4ssw0rd + state: present + groups: + - Benutzer + diff --git a/12/ansible.cfg b/12/ansible.cfg index a05b5f9..34ae5fc 100644 --- a/12/ansible.cfg +++ b/12/ansible.cfg @@ -2,6 +2,7 @@ # Inventory inventory = ./hosts.ini +inventory_plugins = ./plugins/inventory # Roles paths roles_path = ./roles:./roles.extern:./roles.webcluster:/etc/ansible/roles @@ -9,6 +10,9 @@ roles_path = ./roles:./roles.extern:./roles.webcluster:/etc/ansible/roles # Interpreter Discovery - Ohne Warnings interpreter_python = auto_silent +# Zusätzliche Module +library = ./plugins/modules + # SSH remote_user = root #host_key_checking = False diff --git a/12/availenabled.yml b/12/availenabled.yml new file mode 100644 index 0000000..7e88964 --- /dev/null +++ b/12/availenabled.yml @@ -0,0 +1,9 @@ +--- +- hosts: localhost + gather_facts: no + + tasks: + - availenabled: + path: /tmp/apache2/mods- + name: foo + diff --git a/12/availenabled_module_args.json b/12/availenabled_module_args.json new file mode 100644 index 0000000..5fcc055 --- /dev/null +++ b/12/availenabled_module_args.json @@ -0,0 +1,5 @@ +{"ANSIBLE_MODULE_ARGS": { + "path": "/tmp/apache2/mods-", + "name": "foo" + } +} diff --git a/12/db+wp.yml b/12/db+wp.yml new file mode 100644 index 0000000..7e6a3a9 --- /dev/null +++ b/12/db+wp.yml @@ -0,0 +1,53 @@ +--- +- hosts: localhost + + vars: + my_image_mariadb: 'mariadb:10.3' + my_image_wordpress: 'wordpress' + + tasks: + - name: Download Docker image + docker_image: + name: '{{ item }}' + state: present + tag: latest + source: pull + with_items: + - '{{ my_image_mariadb }}' + - '{{ my_image_wordpress }}' + + - name: Create persistant volume (Ansible 2.4) + docker_volume: + name: db_data + state: present + + - name: Create DB container (Ansible 2.1) + docker_container: + name: db + image: '{{ my_image_mariadb }}' + volumes: + - db_data:/var/lib/mysql + restart_policy: always + env: + MYSQL_ROOT_PASSWORD: mysql + MYSQL_DATABASE: wordpress + MYSQL_USER: wordpress + MYSQL_PASSWORD: "{{ lookup('password', './wordpress.pw') }}" + + - name: Create WP container (Ansible 2.1) + docker_container: + name: wordpress + image: '{{ my_image_wordpress }}' + restart_policy: always + exposed_ports: + - 80 + published_ports: + - 8888:80 + links: + - db:db + env: + WORDPRESS_DB_HOST: db:3306 + WORDPRESS_DB_USER: wordpress + WORDPRESS_DB_PASSWORD: "{{ lookup('password', './wordpress.pw') }}" + + diff --git a/12/docker_install.yml b/12/docker_install.yml new file mode 100644 index 0000000..b0b9618 --- /dev/null +++ b/12/docker_install.yml @@ -0,0 +1,12 @@ +--- +- hosts: localhost + tasks: + - apt: + name: "{{ packages }}" + vars: + packages: + - docker.io + - docker-compose + - python3-docker + become: True + diff --git a/12/docker_install_old.yml b/12/docker_install_old.yml new file mode 100644 index 0000000..8b67c58 --- /dev/null +++ b/12/docker_install_old.yml @@ -0,0 +1,50 @@ +--- +- hosts: all + tasks: + - name: Update the apt package index + become: yes + apt: + name: "*" + state: latest + update_cache: yes + force_apt_get: yes + - name: Install packages for apt add repository over HTTPS + become: yes + apt: + name: "{{ packagesdep }}" + force_apt_get: yes + state: latest + update_cache: yes + vars: + packagesdep: + - git + - apt-transport-https + - ca-certificates + - wget + - software-properties-common + - gnupg2 + - curl + - name: Add Apt signing key from official docker repo + apt_key: + url: https://download.docker.com/linux/debian/gpg + state: present + - name: add docker official repository for Debian Stretch + apt_repository: + repo: deb [arch=amd64] https://download.docker.com/linux/debian stretch stable + state: present + - name: Index new repo into the cache + become: yes + apt: + name: "*" + state: latest + update_cache: yes + force_apt_get: yes + - name: actually install docker + apt: + name: "docker-ce" + state: latest +- name: Ensure docker-compose is installed and available + get_url: + url: https://github.com/docker/compose/releases/download/1.22.0/docker-compose-{{ ansible_system }}-{{ ansible_userspace_architecture }} + dest: /usr/local/bin/docker-compose + mode: 'u+x,g+x' diff --git a/helper/12_gitmodules_Prepare-Workshop.sh b/helper/12_gitmodules_Prepare-Workshop.sh new file mode 100755 index 0000000..efd84f1 --- /dev/null +++ b/helper/12_gitmodules_Prepare-Workshop.sh @@ -0,0 +1,6 @@ +#!/bin/bash -ex + +mkdir -p roles.extern + +git submodule add https://git.velt.biz/Ansible/Prepare_Workshop.git 12/Prepare_Workshop + diff --git a/inventory-scripts/hosts.json.sh b/inventory-scripts/hosts.json.sh new file mode 100755 index 0000000..04d3ada --- /dev/null +++ b/inventory-scripts/hosts.json.sh @@ -0,0 +1,6 @@ +#!/bin/sh + +cat < +# GNU General Public License v3.0+ (see COPYING or https://www.gnu.org/licenses/gpl-3.0.txt) +from __future__ import (absolute_import, division, print_function) +__metaclass__ = type + +DOCUMENTATION = r''' +--- +module: lxc_container_info +short_description: Gather info about LXC Containers +version_added: "0.1.0" +description: Gather some information about (all) LXC Containers +options: + name: + description: Name of Container to gather informations + required: false + type: str +requirements: + - 'lxc-python3' +author: + - Sven Velt +''' + +EXAMPLES = r''' +# Gather information of all containers: +- name: Gather LXC informations + lxc_container_info: + +# Gather information of one container: +- name: Gather LXC informations + lxc_container_info: + name: containername +''' + + +RETURN = r''' +# These are examples of possible return values, and in general should use other names for return values. +containers: + description: dict of container information + returned: always + type: complex + contains: + containername: + description: name of container + type: complex + contains: + all_interfaces: + description: List of all interfaces + type: str + returned: always + sample: '["lo", "eth0"]' + defined: + description: if container is defined + type: bool + returned: always + sample: true + exists: + description: if container is defined + type: bool + returned: always + sample: true + init_pid: + description: PID of init of container (if running) + type: init + sample: 1234 +original_message: + description: The original name param that was passed in. + type: str + returned: always + sample: 'hello world' +message: + description: The output message that the test module generates. + type: str + returned: always + sample: 'goodbye' +my_useful_info: + description: The dictionary containing information about your system. + type: dict + returned: always + sample: { + 'foo': 'bar', + 'answer': 42, + } +''' + +import ipaddress + +try: + import lxc +except ImportError: + HAS_LXC = False +else: + HAS_LXC = True + +from ansible.module_utils.basic import AnsibleModule + + +def run_module(): + module_args = dict( + name=dict(type='str', default=''), + ) + + result = dict( + changed=False, + containers={}, + ) + + module = AnsibleModule( + argument_spec=module_args, + supports_check_mode=True + ) + + if not HAS_LXC: + module.fail_json( + msg='The `lxc` module is not importable. Check the requirements.' + ) + + if module.params['name']: + ctnames = [ module.params['name'], ] + else: + ctnames = lxc.list_containers() + + for ctname in ctnames: + ct = lxc.Container(ctname) + + res_ct = {} + res_ct['defined'] = ct.defined + res_ct['exists'] = ct.defined + res_ct['state'] = ct.state + res_ct['running'] = ct.running + res_ct['init_pid'] = ct.init_pid + res_ct['all_interfaces'] = ct.get_interfaces() + + res_ifaces = {} + for iface in ct.get_interfaces(): + res_if = {} + res_if['ipv4_addresses'] = [] + res_if['ipv6_addresses'] = [] + for addr in ct.get_ips(iface): + try: + res_if['ipv4_addresses'].append(str(ipaddress.IPv4Address(addr))) + except ipaddress.AddressValueError: + try: + res_if['ipv6_addresses'].append(str(ipaddress.IPv6Address(addr))) + except: + pass + res_ifaces[iface] = res_if + res_ct['interfaces'] = res_ifaces + + res_stat = {} + if ct.running: + res_stat['mem'] = { + 'usage': int(ct.get_cgroup_item("memory.usage_in_bytes")), + 'max_usage': int(ct.get_cgroup_item("memory.max_usage_in_bytes")), + 'usage_mb': int(ct.get_cgroup_item("memory.usage_in_bytes")) // 1048576, + 'max_usage_mb': int(ct.get_cgroup_item("memory.max_usage_in_bytes")) // 1048576, + } + res_stat['kmem'] = { + 'usage': int(ct.get_cgroup_item("memory.kmem.usage_in_bytes")), + 'max_usage': int(ct.get_cgroup_item("memory.kmem.max_usage_in_bytes")), + 'usage_mb': int(ct.get_cgroup_item("memory.kmem.usage_in_bytes")) // 1048576, + 'max_usage_mb': int(ct.get_cgroup_item("memory.kmem.max_usage_in_bytes")) // 1048576, + } + res_ct['stats'] = res_stat + + result['containers'][ctname] = res_ct + + module.exit_json(**result) + + +def main(): + run_module() + + +if __name__ == '__main__': + main()