diff --git a/playbooks/all.yml b/playbooks/all.yml new file mode 100755 index 0000000..8d9f551 --- /dev/null +++ b/playbooks/all.yml @@ -0,0 +1,37 @@ +#!/usr/bin/env ansible-playbook +# vim:ft=ansible: +--- +# Preambulatory system configuration +- hosts: all + tasks: + - name: collect service facts + service_facts: + tags: [ always ] + roles: + - role: common + tags: [ common ] + - role: adminuser + tags: [ adminuser, common ] + - role: docker + tags: [ docker, common, skip-pull ] + - role: motd + vars: + motd_watch_services_extra: + - docker + - kubelet + - postgresql + tags: [ motd, common ] + - role: sshd + vars: + sshd: + AcceptEnv: "LANG LC_*" + ChallengeResponseAuthentication: no + Compression: yes + PasswordAuthentication: no + PermitRootLogin: no + PrintMotd: no + PubkeyAuthentication: yes + Subsystem: "sftp /usr/lib/openssh/sftp-server" + UsePAM: yes + X11Forwarding: no + tags: [ sshd, common ] diff --git a/site.yml b/site.yml index 8d404cf..dce6172 100755 --- a/site.yml +++ b/site.yml @@ -2,41 +2,7 @@ # vim:ft=ansible: --- # Preambulatory system configuration -- hosts: all - tasks: - - name: collect service facts - service_facts: - tags: [ always ] - roles: - - role: common - tags: [ common ] - - role: adminuser - tags: [ adminuser, common ] - - role: docker - tags: [ docker, common, skip-pull ] - - role: motd - vars: - motd_watch_services_extra: - - apache2 - - docker - - kubelet - - php7.4-fpm - - postgresql - tags: [ motd, common ] - - role: sshd - vars: - sshd: - AcceptEnv: "LANG LC_*" - ChallengeResponseAuthentication: no - Compression: yes - PasswordAuthentication: no - PermitRootLogin: no - PrintMotd: no - PubkeyAuthentication: yes - Subsystem: "sftp /usr/lib/openssh/sftp-server" - UsePAM: yes - X11Forwarding: no - tags: [ sshd, common ] +- import_playbook: playbooks/all.yml # Manufacturer configuration - import_playbook: playbooks/manufacturers_raspi.yml - import_playbook: playbooks/manufacturers_s76.yml