2020-10-17 00:21:57 -05:00
|
|
|
#!/usr/bin/env ansible-playbook
|
|
|
|
|
# vim:ft=ansible:
|
2020-10-17 01:00:06 -05:00
|
|
|
---
|
2020-10-17 18:06:35 -05:00
|
|
|
# Preambulatory system configuration
|
2020-10-17 00:21:57 -05:00
|
|
|
- hosts: all
|
|
|
|
|
roles:
|
|
|
|
|
- role: common
|
2020-10-17 01:00:06 -05:00
|
|
|
tags: [ common ]
|
|
|
|
|
- role: ansible-pull
|
|
|
|
|
tags: [ ansible, common ]
|
2020-10-17 18:06:35 -05:00
|
|
|
# Database servers
|
|
|
|
|
- hosts: db1.test.desu.ltd
|
|
|
|
|
roles:
|
2020-10-28 21:56:12 -05:00
|
|
|
- role: geerlingguy.postgresql
|
|
|
|
|
vars:
|
|
|
|
|
postgresql_hba_entries:
|
|
|
|
|
# Just allow all access on this block.
|
|
|
|
|
# When rolling out to our new env, I'll allow by particular IP alone
|
|
|
|
|
- { type: host, database: all, user: all, address: '192.168.0.0/16', auth_method: md5 }
|
|
|
|
|
become: yes
|
2020-10-17 18:06:35 -05:00
|
|
|
tags: [ db, psql ]
|
|
|
|
|
# Webservers
|
|
|
|
|
- hosts: web1.test.desu.ltd
|
|
|
|
|
roles:
|
2020-10-28 21:56:12 -05:00
|
|
|
- role: geerlingguy.apache
|
|
|
|
|
become: yes
|
2020-10-17 18:06:35 -05:00
|
|
|
tags: [ web, apache ]
|
2020-10-28 21:56:12 -05:00
|
|
|
- role: geerlingguy.php
|
|
|
|
|
become: yes
|
2020-10-17 18:06:35 -05:00
|
|
|
tags: [ web, php ]
|
