2020-10-17 00:21:57 -05:00
|
|
|
#!/usr/bin/env ansible-playbook
|
|
|
|
# vim:ft=ansible:
|
2020-10-17 01:00:06 -05:00
|
|
|
---
|
2020-10-17 18:06:35 -05:00
|
|
|
# Preambulatory system configuration
|
2020-10-17 00:21:57 -05:00
|
|
|
- hosts: all
|
2021-08-07 17:09:20 -05:00
|
|
|
tasks:
|
|
|
|
- name: collect service facts
|
|
|
|
service_facts:
|
|
|
|
tags: [ always ]
|
2020-10-17 00:21:57 -05:00
|
|
|
roles:
|
|
|
|
- role: common
|
2020-10-17 01:00:06 -05:00
|
|
|
tags: [ common ]
|
2021-02-26 10:07:57 -06:00
|
|
|
- role: adminuser
|
|
|
|
tags: [ adminuser, common ]
|
2021-08-07 16:55:28 -05:00
|
|
|
- role: docker
|
|
|
|
tags: [ docker, common, skip-pull ]
|
2021-08-07 16:52:19 -05:00
|
|
|
- role: motd
|
|
|
|
vars:
|
|
|
|
motd_watch_services_extra:
|
|
|
|
- apache2
|
|
|
|
- docker
|
|
|
|
- kubelet
|
|
|
|
- php7.4-fpm
|
|
|
|
- postgresql
|
|
|
|
tags: [ motd, common ]
|
2021-03-11 08:04:57 -06:00
|
|
|
- role: sshd
|
|
|
|
vars:
|
|
|
|
sshd:
|
|
|
|
AcceptEnv: "LANG LC_*"
|
|
|
|
ChallengeResponseAuthentication: no
|
|
|
|
Compression: yes
|
|
|
|
PasswordAuthentication: no
|
|
|
|
PermitRootLogin: no
|
|
|
|
PrintMotd: no
|
|
|
|
PubkeyAuthentication: yes
|
|
|
|
Subsystem: "sftp /usr/lib/openssh/sftp-server"
|
|
|
|
UsePAM: yes
|
|
|
|
X11Forwarding: no
|
|
|
|
tags: [ sshd, common ]
|
2021-08-15 00:59:08 -05:00
|
|
|
# Fundamental daemon configuration
|
2021-08-08 13:36:52 -05:00
|
|
|
- import_playbook: playbooks/zerotier.yml
|
|
|
|
- import_playbook: playbooks/snmp.yml
|
2021-08-15 14:24:35 -05:00
|
|
|
- import_playbook: playbooks/nrpe.yml
|
2021-08-15 00:59:08 -05:00
|
|
|
# Application configuration
|
2020-12-21 01:18:32 -06:00
|
|
|
- import_playbook: playbooks/db.yml
|
|
|
|
- import_playbook: playbooks/web.yml
|
2020-12-24 09:54:53 -06:00
|
|
|
- import_playbook: playbooks/game.yml
|
2021-02-25 12:56:48 -06:00
|
|
|
- import_playbook: playbooks/pis.yml
|
2021-05-25 15:35:50 -05:00
|
|
|
- import_playbook: playbooks/pistorage.yml
|
2021-02-28 19:50:49 -06:00
|
|
|
- import_playbook: playbooks/pik8s.yml
|
2021-02-25 12:56:48 -06:00
|
|
|
- import_playbook: playbooks/desktop.yml
|
2021-08-15 00:59:08 -05:00
|
|
|
# Background task configuration
|
2021-08-07 17:09:20 -05:00
|
|
|
- import_playbook: playbooks/ansible-pull.yml
|
2021-08-15 00:59:08 -05:00
|
|
|
# Housekeeping
|
|
|
|
- import_playbook: playbooks/docker-prune.yml
|