Merge 2bee1b5566 into 82bc12046b
Cian Hatton
3 years ago
committed by
GitHub
commit
26e5456761
@ -1,7 +1,6 @@
|
||||
---
|
||||
pip_install_packages:
|
||||
- name: docker
|
||||
- name: docker
|
||||
|
||||
docker_users:
|
||||
- cianhatton
|
||||
- ansible
|
||||
- cianhatton
|
||||
- ansible
|
||||
|
||||
@ -1,33 +1,32 @@
|
||||
---
|
||||
vault_file: vault_vars/qnap-vault.yml
|
||||
|
||||
portainer_required_templates:
|
||||
- source_file: diun-config.j2
|
||||
dest_file_name: diun-config.yml
|
||||
dest_directory: /etc/config/diun
|
||||
handler: restart-diun
|
||||
- source_file: diun-config.j2
|
||||
dest_file_name: diun-config.yml
|
||||
dest_directory: /etc/config/diun
|
||||
handler: restart-diun
|
||||
|
||||
portainer_endpoint: 23
|
||||
services:
|
||||
- name: linkding
|
||||
- name: pihole
|
||||
- name: hasteypaste
|
||||
- name: dashboards
|
||||
template_vars:
|
||||
dashy: false
|
||||
dashdot: true
|
||||
glances: true
|
||||
- name: diun
|
||||
- name: linkding
|
||||
- name: pihole
|
||||
- name: hasteypaste
|
||||
- name: dashboards
|
||||
template_vars:
|
||||
dashy: false
|
||||
dashdot: true
|
||||
glances: true
|
||||
- name: diun
|
||||
|
||||
ansible_pull_path: /usr/local/bin/ansible-pull
|
||||
|
||||
backup_directories: []
|
||||
cron_hour: "4"
|
||||
cron_hour: '4'
|
||||
|
||||
# docker options
|
||||
docker_daemon_options:
|
||||
hosts:
|
||||
- "tcp://0.0.0.0:2375"
|
||||
- "unix:///var/run/docker.sock"
|
||||
- tcp://0.0.0.0:2375
|
||||
- unix:///var/run/docker.sock
|
||||
|
||||
docker_backup_host_backup_directory: "/tmp"
|
||||
docker_backup_host_backup_directory: /tmp
|
||||
|
||||
@ -1,17 +1,16 @@
|
||||
---
|
||||
- name: Backup Directories.
|
||||
hosts: servers
|
||||
become: true
|
||||
|
||||
pre_tasks:
|
||||
- name: Include vault variables.
|
||||
ansible.builtin.include_vars: '../{{ vault_file }}'
|
||||
tags: [always]
|
||||
- name: Include vault variables.
|
||||
ansible.builtin.include_vars: ../{{ vault_file }}
|
||||
tags: [always]
|
||||
|
||||
tasks:
|
||||
- name: Backup Directories.
|
||||
ansible.builtin.include_role:
|
||||
name: backup_directory
|
||||
with_items: "{{ backup_directories }}"
|
||||
loop_control:
|
||||
loop_var: backup
|
||||
- name: Backup Directories.
|
||||
ansible.builtin.include_role:
|
||||
name: backup_directory
|
||||
with_items: '{{ backup_directories }}'
|
||||
loop_control:
|
||||
loop_var: backup
|
||||
|
||||
@ -1,20 +1,19 @@
|
||||
---
|
||||
- name: Restore a docker volume.
|
||||
hosts: servers
|
||||
become: true
|
||||
pre_tasks:
|
||||
- name: Include vault variables.
|
||||
ansible.builtin.include_vars: '../{{ vault_file }}'
|
||||
ansible.builtin.include_vars: ../{{ vault_file }}
|
||||
tags: [always]
|
||||
vars:
|
||||
volume_name: ""
|
||||
s3_key: ""
|
||||
volume_name: ''
|
||||
s3_key: ''
|
||||
roles:
|
||||
- role: chatton.docker_backup.docker_s3_volume_restore
|
||||
vars:
|
||||
docker_backup_restore_force: true
|
||||
docker_backup_restore_latest_s3_key: "{{ volume_name != '' | bool }}"
|
||||
docker_backup_fail_on_no_s3_backups: true
|
||||
docker_backup_s3_volume:
|
||||
name: "{{ volume_name }}"
|
||||
s3_key: "{{ s3_key }}"
|
||||
- role: chatton.docker_backup.docker_s3_volume_restore
|
||||
vars:
|
||||
docker_backup_restore_force: true
|
||||
docker_backup_restore_latest_s3_key: "{{ volume_name != '' | bool }}"
|
||||
docker_backup_fail_on_no_s3_backups: true
|
||||
docker_backup_s3_volume:
|
||||
name: '{{ volume_name }}'
|
||||
s3_key: '{{ s3_key }}'
|
||||
|
||||
@ -1,58 +1,57 @@
|
||||
---
|
||||
- name: Update packages and ensure users on all hosts.
|
||||
hosts: all
|
||||
become: true
|
||||
pre_tasks:
|
||||
- name: Update Packages
|
||||
ansible.builtin.apt:
|
||||
upgrade: dist
|
||||
update_cache: true
|
||||
- name: Update Packages
|
||||
ansible.builtin.apt:
|
||||
upgrade: dist
|
||||
update_cache: true
|
||||
roles:
|
||||
- role: setup_users
|
||||
- role: setup_users
|
||||
|
||||
- name: Configure mergerfs pools.
|
||||
hosts: mergerfs
|
||||
become: true
|
||||
roles:
|
||||
- role: setup_mergerfs
|
||||
tags: [mergerfs]
|
||||
- role: setup_mergerfs
|
||||
tags: [mergerfs]
|
||||
|
||||
- name: Configure samba shares.
|
||||
hosts: all
|
||||
become: true
|
||||
roles:
|
||||
- role: geerlingguy.samba
|
||||
tags: [samba]
|
||||
- role: geerlingguy.samba
|
||||
tags: [samba]
|
||||
|
||||
- name: Install Docker on Docker hosts.
|
||||
hosts: docker
|
||||
become: true
|
||||
roles:
|
||||
- geerlingguy.pip
|
||||
- geerlingguy.docker
|
||||
- geerlingguy.pip
|
||||
- geerlingguy.docker
|
||||
|
||||
|
||||
- name: Install Portainer on Portainer hosts.
|
||||
hosts: portainer
|
||||
become: true
|
||||
pre_tasks:
|
||||
- name: Include vault variables.
|
||||
ansible.builtin.include_vars: '../{{ vault_file }}'
|
||||
tags: [always]
|
||||
- name: Include vault variables.
|
||||
ansible.builtin.include_vars: ../{{ vault_file }}
|
||||
tags: [always]
|
||||
roles:
|
||||
- role: setup_portainer
|
||||
tags: [services, portainer]
|
||||
vars:
|
||||
portainer_version: "2.18.3"
|
||||
- role: setup_portainer
|
||||
tags: [services, portainer]
|
||||
vars:
|
||||
portainer_version: 2.18.3
|
||||
|
||||
|
||||
- name: Setup and deploy services.
|
||||
hosts: servers
|
||||
become: true
|
||||
pre_tasks:
|
||||
- name: Include vault variables.
|
||||
ansible.builtin.include_vars: '../{{ vault_file }}'
|
||||
tags: [always]
|
||||
- name: Include vault variables.
|
||||
ansible.builtin.include_vars: ../{{ vault_file }}
|
||||
tags: [always]
|
||||
roles:
|
||||
- role: setup_hosted_services
|
||||
tags: [services]
|
||||
- role: setup_hosted_services
|
||||
tags: [services]
|
||||
|
||||
@ -1,8 +1,7 @@
|
||||
---
|
||||
- name: Setup linode instance.
|
||||
hosts: localhost
|
||||
become: true
|
||||
roles:
|
||||
- role: roles/setup_linode
|
||||
vars:
|
||||
state: present
|
||||
- role: roles/setup_linode
|
||||
vars:
|
||||
state: present
|
||||
|
||||
@ -1,48 +1,49 @@
|
||||
---
|
||||
- name: Verify HomeLab has been correctly set up.
|
||||
hosts: all
|
||||
become: true
|
||||
pre_tasks:
|
||||
- name: Include vault variables.
|
||||
ansible.builtin.include_vars: ../{{ vault_file }}
|
||||
tags:
|
||||
- always
|
||||
- name: Include vault variables.
|
||||
ansible.builtin.include_vars: ../{{ vault_file }}
|
||||
tags:
|
||||
- always
|
||||
tasks:
|
||||
- name: Docker Compose Files Exist
|
||||
ansible.builtin.command: stat {{ directories.docker_compose_directory }}/{{ item.name }}/docker-compose.yml
|
||||
with_items: '{{ services }}'
|
||||
changed_when: false
|
||||
register: docker_compose_stat
|
||||
- name: Docker Compose Files Exist
|
||||
ansible.builtin.command: stat {{ directories.docker_compose_directory }}/{{ item.name
|
||||
}}/docker-compose.yml
|
||||
with_items: '{{ services }}'
|
||||
changed_when: false
|
||||
register: docker_compose_stat
|
||||
|
||||
- name: Assert all Docker Compose files were created
|
||||
ansible.builtin.assert:
|
||||
that: item.rc == 0
|
||||
with_items: '{{ docker_compose_stat.results }}'
|
||||
- name: Assert all Docker Compose files were created
|
||||
ansible.builtin.assert:
|
||||
that: item.rc == 0
|
||||
with_items: '{{ docker_compose_stat.results }}'
|
||||
|
||||
- name: Populate service facts
|
||||
ansible.builtin.service_facts: {}
|
||||
- name: Populate service facts
|
||||
ansible.builtin.service_facts: {}
|
||||
|
||||
- name: Assert docker is installed and started
|
||||
ansible.builtin.assert:
|
||||
that:
|
||||
- ansible_facts.services.docker.state == "running"
|
||||
- ansible_facts.services['docker.service'].status == "enabled"
|
||||
- name: Inspect all images
|
||||
docker_image_info: {}
|
||||
register: image_details
|
||||
- name: Assert desired images exist
|
||||
ansible.builtin.assert:
|
||||
that: "{{ item in image_details.images | map(attribute='RepoTags') | flatten }}"
|
||||
with_items: '{{ desired_docker_images }}'
|
||||
- name: Assert docker is installed and started
|
||||
ansible.builtin.assert:
|
||||
that:
|
||||
- ansible_facts.services.docker.state == "running"
|
||||
- ansible_facts.services['docker.service'].status == "enabled"
|
||||
- name: Inspect all images
|
||||
docker_image_info: {}
|
||||
register: image_details
|
||||
- name: Assert desired images exist
|
||||
ansible.builtin.assert:
|
||||
that: "{{ item in image_details.images | map(attribute='RepoTags') | flatten\
|
||||
\ }}"
|
||||
with_items: '{{ desired_docker_images }}'
|
||||
|
||||
- name: Fetch Sudoers Files
|
||||
ansible.builtin.command: stat /etc/sudoers.d/{{ item.name }}
|
||||
changed_when: false
|
||||
register: sudoers_stat
|
||||
with_items: '{{ users }}'
|
||||
when: item.passwordless_sudo
|
||||
- name: Fetch Sudoers Files
|
||||
ansible.builtin.command: stat /etc/sudoers.d/{{ item.name }}
|
||||
changed_when: false
|
||||
register: sudoers_stat
|
||||
with_items: '{{ users }}'
|
||||
when: item.passwordless_sudo
|
||||
|
||||
- name: Assert sudoers files are created
|
||||
ansible.builtin.assert:
|
||||
that: item.rc == 0
|
||||
with_items: '{{ sudoers_stat.results }}'
|
||||
- name: Assert sudoers files are created
|
||||
ansible.builtin.assert:
|
||||
that: item.rc == 0
|
||||
with_items: '{{ sudoers_stat.results }}'
|
||||
|
||||
@ -1,13 +1,12 @@
|
||||
---
|
||||
galaxy_info:
|
||||
author: Cian Hatton
|
||||
namespace: chatton
|
||||
description: Backup directories
|
||||
license: MIT
|
||||
min_ansible_version: "2.1"
|
||||
min_ansible_version: '2.1'
|
||||
galaxy_tags: []
|
||||
platforms:
|
||||
- name: Debian
|
||||
versions:
|
||||
- all
|
||||
- name: Debian
|
||||
versions:
|
||||
- all
|
||||
dependencies: []
|
||||
|
||||
@ -1,2 +1,2 @@
|
||||
---
|
||||
# defaults file for chatton.docker_restore
|
||||
null
|
||||
...
|
||||
|
||||
@ -1,2 +1,2 @@
|
||||
---
|
||||
# handlers file for chatton.docker_restore
|
||||
null
|
||||
...
|
||||
|
||||
@ -1,121 +1,124 @@
|
||||
---
|
||||
# tasks file for chatton.docker_backup
|
||||
# https://docs.ansible.com/ansible/latest/collections/community/docker/docker_container_module.html#ansible-collections-community-docker-docker-container-module
|
||||
# https://docs.docker.com/storage/volumes/#backup-restore-or-migrate-data-volumes
|
||||
|
||||
- name: Get container details
|
||||
docker_container_info:
|
||||
name: "{{ container_restore }}"
|
||||
name: '{{ container_restore }}'
|
||||
register: result
|
||||
|
||||
- name: Fail if container is not present
|
||||
fail:
|
||||
msg: Cannot restore volumes for a container when it does not exist. Ensure the container exists and try again.
|
||||
msg: Cannot restore volumes for a container when it does not exist. Ensure the
|
||||
container exists and try again.
|
||||
when: result.exists == false
|
||||
|
||||
- debug: msg="{{ result }}"
|
||||
|
||||
- name: Extract only the volume mounts (not bind mounts)
|
||||
set_fact: volume_mounts="{{ result.container.Mounts | selectattr("Type", "equalto", "volume")}}"
|
||||
set_fact: volume_mounts="{{ result.container.Mounts | selectattr("Type", "equalto",
|
||||
"volume")}}"
|
||||
|
||||
- debug: msg="{{ volume_mounts }}"
|
||||
|
||||
- name: Find relevant volume(s) in S3
|
||||
amazon.aws.aws_s3:
|
||||
bucket: "{{ aws_s3.bucket }}"
|
||||
bucket: '{{ aws_s3.bucket }}'
|
||||
mode: list
|
||||
region: "{{ aws_s3.region }}"
|
||||
s3_url: "https://{{ aws_s3.s3_url }}"
|
||||
prefix: "{{ item.Name }}/{{ item.Name }}"
|
||||
aws_access_key: "{{ aws_s3.aws_access_key }}"
|
||||
aws_secret_key: "{{ aws_s3.aws_secret_key }}"
|
||||
region: '{{ aws_s3.region }}'
|
||||
s3_url: https://{{ aws_s3.s3_url }}
|
||||
prefix: '{{ item.Name }}/{{ item.Name }}'
|
||||
aws_access_key: '{{ aws_s3.aws_access_key }}'
|
||||
aws_secret_key: '{{ aws_s3.aws_secret_key }}'
|
||||
register: s3_list_output
|
||||
with_items: "{{ volume_mounts }}"
|
||||
with_items: '{{ volume_mounts }}'
|
||||
|
||||
- debug: msg="{{ s3_list_output }}"
|
||||
|
||||
- name: Extract s3 keys for container
|
||||
set_fact: container_s3_keys="{{ container_s3_keys | default([]) + [item.s3_keys | last] }}"
|
||||
with_items: "{{ s3_list_output.results }}"
|
||||
set_fact: container_s3_keys="{{ container_s3_keys | default([]) + [item.s3_keys
|
||||
| last] }}"
|
||||
with_items: '{{ s3_list_output.results }}'
|
||||
|
||||
- debug: msg="{{ container_s3_keys }}"
|
||||
|
||||
- name: Create a directory for temporary backups if they do not exist
|
||||
ansible.builtin.file:
|
||||
path: "/tmp/{{ item.Name }}"
|
||||
path: /tmp/{{ item.Name }}
|
||||
state: directory
|
||||
mode: '0755'
|
||||
with_items: "{{ volume_mounts }}"
|
||||
with_items: '{{ volume_mounts }}'
|
||||
|
||||
- name: Download archives from S3
|
||||
amazon.aws.aws_s3:
|
||||
bucket: "{{ aws_s3.bucket }}"
|
||||
object: "{{ item }}"
|
||||
aws_access_key: "{{ aws_s3.aws_access_key }}"
|
||||
aws_secret_key: "{{ aws_s3.aws_secret_key }}"
|
||||
region: "{{ aws_s3.region }}"
|
||||
s3_url: "https://{{ aws_s3.s3_url }}"
|
||||
bucket: '{{ aws_s3.bucket }}'
|
||||
object: '{{ item }}'
|
||||
aws_access_key: '{{ aws_s3.aws_access_key }}'
|
||||
aws_secret_key: '{{ aws_s3.aws_secret_key }}'
|
||||
region: '{{ aws_s3.region }}'
|
||||
s3_url: https://{{ aws_s3.s3_url }}
|
||||
mode: get
|
||||
dest: "/tmp/{{ item }}"
|
||||
with_items: "{{ container_s3_keys }}"
|
||||
dest: /tmp/{{ item }}
|
||||
with_items: '{{ container_s3_keys }}'
|
||||
register: get_out
|
||||
|
||||
- debug: msg="{{ get_out }}"
|
||||
|
||||
- set_fact:
|
||||
volume_details: "{{ volume_details | default([]) + [ {'mount': item.0, 's3_key': item.1} ] }}"
|
||||
volume_details: "{{ volume_details | default([]) + [ {'mount': item.0, 's3_key':\
|
||||
\ item.1} ] }}"
|
||||
with_together:
|
||||
- "{{ volume_mounts }}"
|
||||
- "{{ container_s3_keys }}"
|
||||
- '{{ volume_mounts }}'
|
||||
- '{{ container_s3_keys }}'
|
||||
|
||||
- debug: msg="{{ volume_details }}"
|
||||
|
||||
- name: Stop a container
|
||||
community.docker.docker_container:
|
||||
name: "{{ container_restore }}"
|
||||
name: '{{ container_restore }}'
|
||||
state: stopped
|
||||
|
||||
- name: Ensure Volume
|
||||
docker_volume:
|
||||
name: "{{ item.mount.Name }}"
|
||||
name: '{{ item.mount.Name }}'
|
||||
state: present
|
||||
with_items: "{{ volume_details }}"
|
||||
with_items: '{{ volume_details }}'
|
||||
|
||||
- name: Remove contents of volumes
|
||||
community.docker.docker_container:
|
||||
name: "restore-container-{{ item.mount.Name }}-{{ 10 | random }}"
|
||||
name: restore-container-{{ item.mount.Name }}-{{ 10 | random }}
|
||||
image: ubuntu
|
||||
command: "rm -rf ./* "
|
||||
command: 'rm -rf ./* '
|
||||
auto_remove: true
|
||||
detach: false # block until this container exists.
|
||||
state: started
|
||||
# start inside the directory we want to wipe
|
||||
working_dir: "{{ item.mount.Destination }}"
|
||||
working_dir: '{{ item.mount.Destination }}'
|
||||
volumes:
|
||||
- /tmp:/tmp
|
||||
- /tmp:/tmp
|
||||
volumes_from:
|
||||
- "{{ container_restore }}"
|
||||
with_items: "{{ volume_details }}"
|
||||
- '{{ container_restore }}'
|
||||
with_items: '{{ volume_details }}'
|
||||
|
||||
|
||||
- name: Restore contents of volumes
|
||||
community.docker.docker_container:
|
||||
name: "restore-container-{{ item.mount.Name }}-{{ 10 | random }}"
|
||||
name: restore-container-{{ item.mount.Name }}-{{ 10 | random }}
|
||||
image: ubuntu
|
||||
# extract the tar into the volume.
|
||||
command: "tar xvf /tmp/{{ item.s3_key }}"
|
||||
command: tar xvf /tmp/{{ item.s3_key }}
|
||||
auto_remove: true
|
||||
detach: false # block until this container exists.
|
||||
state: started
|
||||
# the compressed volume contains the directories, so we start from the root
|
||||
working_dir: "/"
|
||||
working_dir: /
|
||||
volumes:
|
||||
- /tmp:/tmp
|
||||
- /tmp:/tmp
|
||||
volumes_from:
|
||||
- "{{ container_restore }}"
|
||||
with_items: "{{ volume_details }}"
|
||||
- '{{ container_restore }}'
|
||||
with_items: '{{ volume_details }}'
|
||||
|
||||
- name: Start a container
|
||||
community.docker.docker_container:
|
||||
name: "{{ container_restore }}"
|
||||
name: '{{ container_restore }}'
|
||||
state: started
|
||||
|
||||
@ -1,2 +1,2 @@
|
||||
---
|
||||
# vars file for chatton.docker_restore
|
||||
null
|
||||
...
|
||||
|
||||
@ -1,4 +1,2 @@
|
||||
# These are supported funding model platforms
|
||||
---
|
||||
github: geerlingguy
|
||||
patreon: geerlingguy
|
||||
|
||||
@ -1,7 +1,6 @@
|
||||
---
|
||||
- name: restart docker
|
||||
service:
|
||||
name: docker
|
||||
state: "{{ docker_restart_handler_state }}"
|
||||
ignore_errors: "{{ ansible_check_mode }}"
|
||||
state: '{{ docker_restart_handler_state }}'
|
||||
ignore_errors: '{{ ansible_check_mode }}'
|
||||
when: docker_service_manage | bool
|
||||
|
||||
@ -1,41 +1,40 @@
|
||||
---
|
||||
dependencies: []
|
||||
|
||||
galaxy_info:
|
||||
role_name: docker
|
||||
author: geerlingguy
|
||||
description: Docker for Linux.
|
||||
company: "Midwestern Mac, LLC"
|
||||
license: "license (BSD, MIT)"
|
||||
company: Midwestern Mac, LLC
|
||||
license: license (BSD, MIT)
|
||||
min_ansible_version: 2.4
|
||||
platforms:
|
||||
- name: EL
|
||||
versions:
|
||||
- 7
|
||||
- 8
|
||||
- name: Fedora
|
||||
versions:
|
||||
- all
|
||||
- name: Debian
|
||||
versions:
|
||||
- buster
|
||||
- bullseye
|
||||
- name: Ubuntu
|
||||
versions:
|
||||
- bionic
|
||||
- focal
|
||||
- jammy
|
||||
- name: Alpine
|
||||
version:
|
||||
- all
|
||||
- name: Arch
|
||||
versions:
|
||||
- all
|
||||
- name: EL
|
||||
versions:
|
||||
- 7
|
||||
- 8
|
||||
- name: Fedora
|
||||
versions:
|
||||
- all
|
||||
- name: Debian
|
||||
versions:
|
||||
- buster
|
||||
- bullseye
|
||||
- name: Ubuntu
|
||||
versions:
|
||||
- bionic
|
||||
- focal
|
||||
- jammy
|
||||
- name: Alpine
|
||||
version:
|
||||
- all
|
||||
- name: Arch
|
||||
versions:
|
||||
- all
|
||||
galaxy_tags:
|
||||
- web
|
||||
- system
|
||||
- containers
|
||||
- docker
|
||||
- orchestration
|
||||
- compose
|
||||
- server
|
||||
- web
|
||||
- system
|
||||
- containers
|
||||
- docker
|
||||
- orchestration
|
||||
- compose
|
||||
- server
|
||||
|
||||
@ -1,24 +1,23 @@
|
||||
---
|
||||
- name: Converge
|
||||
hosts: all
|
||||
become: true
|
||||
|
||||
pre_tasks:
|
||||
- name: Update apt cache.
|
||||
apt: update_cache=yes cache_valid_time=600
|
||||
when: ansible_os_family == 'Debian'
|
||||
- name: Update apt cache.
|
||||
apt: update_cache=yes cache_valid_time=600
|
||||
when: ansible_os_family == 'Debian'
|
||||
|
||||
- name: Wait for systemd to complete initialization. # noqa 303
|
||||
command: systemctl is-system-running
|
||||
register: systemctl_status
|
||||
until: >
|
||||
'running' in systemctl_status.stdout or
|
||||
'degraded' in systemctl_status.stdout
|
||||
retries: 30
|
||||
delay: 5
|
||||
when: ansible_service_mgr == 'systemd'
|
||||
changed_when: false
|
||||
failed_when: systemctl_status.rc > 1
|
||||
- name: Wait for systemd to complete initialization. # noqa 303
|
||||
command: systemctl is-system-running
|
||||
register: systemctl_status
|
||||
until: >
|
||||
'running' in systemctl_status.stdout or
|
||||
'degraded' in systemctl_status.stdout
|
||||
retries: 30
|
||||
delay: 5
|
||||
when: ansible_service_mgr == 'systemd'
|
||||
changed_when: false
|
||||
failed_when: systemctl_status.rc > 1
|
||||
|
||||
roles:
|
||||
- role: geerlingguy.docker
|
||||
- role: geerlingguy.docker
|
||||
|
||||
@ -1,10 +1,9 @@
|
||||
---
|
||||
- name: Ensure docker users are added to the docker group.
|
||||
user:
|
||||
name: "{{ item }}"
|
||||
name: '{{ item }}'
|
||||
groups: docker
|
||||
append: true
|
||||
with_items: "{{ docker_users }}"
|
||||
with_items: '{{ docker_users }}'
|
||||
|
||||
- name: Reset ssh connection to apply user changes.
|
||||
meta: reset_connection
|
||||
|
||||
@ -1,2 +1 @@
|
||||
---
|
||||
docker_package: "docker"
|
||||
docker_package: docker
|
||||
|
||||
@ -1,2 +1,2 @@
|
||||
---
|
||||
# Empty file
|
||||
null
|
||||
...
|
||||
|
||||
@ -1,4 +1,2 @@
|
||||
# These are supported funding model platforms
|
||||
---
|
||||
github: geerlingguy
|
||||
patreon: geerlingguy
|
||||
|
||||
@ -1,15 +1,14 @@
|
||||
---
|
||||
- name: Ensure Pip is installed.
|
||||
package:
|
||||
name: "{{ pip_package }}"
|
||||
name: '{{ pip_package }}'
|
||||
state: present
|
||||
|
||||
- name: Ensure pip_install_packages are installed.
|
||||
pip:
|
||||
name: "{{ item.name | default(item) }}"
|
||||
version: "{{ item.version | default(omit) }}"
|
||||
virtualenv: "{{ item.virtualenv | default(omit) }}"
|
||||
state: "{{ item.state | default(omit) }}"
|
||||
extra_args: "{{ item.extra_args | default(omit) }}"
|
||||
executable: "{{ pip_executable }}"
|
||||
loop: "{{ pip_install_packages }}"
|
||||
name: '{{ item.name | default(item) }}'
|
||||
version: '{{ item.version | default(omit) }}'
|
||||
virtualenv: '{{ item.virtualenv | default(omit) }}'
|
||||
state: '{{ item.state | default(omit) }}'
|
||||
extra_args: '{{ item.extra_args | default(omit) }}'
|
||||
executable: '{{ pip_executable }}'
|
||||
loop: '{{ pip_install_packages }}'
|
||||
|
||||
@ -1,4 +1,2 @@
|
||||
# These are supported funding model platforms
|
||||
---
|
||||
github: geerlingguy
|
||||
patreon: geerlingguy
|
||||
|
||||
@ -1,3 +1,2 @@
|
||||
---
|
||||
- name: restart smb
|
||||
service: "name={{ samba_daemon }} state=restarted"
|
||||
service: name={{ samba_daemon }} state=restarted
|
||||
|
||||
@ -1,33 +1,32 @@
|
||||
---
|
||||
dependencies: []
|
||||
|
||||
galaxy_info:
|
||||
role_name: samba
|
||||
author: geerlingguy
|
||||
description: "Samba for RHEL/CentOS."
|
||||
company: "Midwestern Mac, LLC"
|
||||
license: "license (BSD, MIT)"
|
||||
description: Samba for RHEL/CentOS.
|
||||
company: Midwestern Mac, LLC
|
||||
license: license (BSD, MIT)
|
||||
min_ansible_version: 2.0
|
||||
platforms:
|
||||
- name: EL
|
||||
versions:
|
||||
- 7
|
||||
- 8
|
||||
- name: Fedora
|
||||
versions:
|
||||
- all
|
||||
- name: Ubuntu
|
||||
versions:
|
||||
- all
|
||||
- name: Debian
|
||||
versions:
|
||||
- all
|
||||
- name: EL
|
||||
versions:
|
||||
- 7
|
||||
- 8
|
||||
- name: Fedora
|
||||
versions:
|
||||
- all
|
||||
- name: Ubuntu
|
||||
versions:
|
||||
- all
|
||||
- name: Debian
|
||||
versions:
|
||||
- all
|
||||
galaxy_tags:
|
||||
- networking
|
||||
- system
|
||||
- samba
|
||||
- windows
|
||||
- filesystem
|
||||
- fileshare
|
||||
- sharing
|
||||
- files
|
||||
- networking
|
||||
- system
|
||||
- samba
|
||||
- windows
|
||||
- filesystem
|
||||
- fileshare
|
||||
- sharing
|
||||
- files
|
||||
|
||||
@ -1,12 +1,11 @@
|
||||
---
|
||||
- name: Converge
|
||||
hosts: all
|
||||
become: true
|
||||
|
||||
pre_tasks:
|
||||
- name: Update apt cache.
|
||||
apt: update_cache=true cache_valid_time=600
|
||||
when: ansible_os_family == 'Debian'
|
||||
- name: Update apt cache.
|
||||
apt: update_cache=true cache_valid_time=600
|
||||
when: ansible_os_family == 'Debian'
|
||||
|
||||
roles:
|
||||
- role: geerlingguy.samba
|
||||
- role: geerlingguy.samba
|
||||
|
||||
@ -1,27 +1,26 @@
|
||||
---
|
||||
- name: Include OS-specific variables.
|
||||
include_vars: "{{ ansible_os_family }}.yml"
|
||||
include_vars: '{{ ansible_os_family }}.yml'
|
||||
|
||||
- name: Ensure Samba-related packages are installed (RedHat).
|
||||
package:
|
||||
name:
|
||||
- samba
|
||||
- samba-client
|
||||
- samba-common
|
||||
- cifs-utils
|
||||
- samba
|
||||
- samba-client
|
||||
- samba-common
|
||||
- cifs-utils
|
||||
state: present
|
||||
when: ansible_os_family == 'RedHat'
|
||||
|
||||
- name: Ensure Samba-related packages are installed (Debian).
|
||||
apt:
|
||||
name:
|
||||
- samba
|
||||
- samba-common
|
||||
- samba
|
||||
- samba-common
|
||||
state: present
|
||||
when: ansible_os_family == 'Debian'
|
||||
|
||||
- name: Ensure Samba is running and set to start on boot.
|
||||
service:
|
||||
name: "{{ samba_daemon }}"
|
||||
name: '{{ samba_daemon }}'
|
||||
state: started
|
||||
enabled: true
|
||||
|
||||
@ -1,2 +1 @@
|
||||
---
|
||||
samba_daemon: smbd
|
||||
|
||||
@ -1,2 +1 @@
|
||||
---
|
||||
samba_daemon: smb
|
||||
|
||||
@ -1 +1,2 @@
|
||||
---
|
||||
null
|
||||
...
|
||||
|
||||
@ -1,12 +1,7 @@
|
||||
$ANSIBLE_VAULT;1.1;AES256
|
||||
38343033383061343739363362626366376630376337376639376235316665363736376362633830
|
||||
6638383135303063363866623262303736393337386364630a353533323537376437343033666334
|
||||
32353832353466343832643238313834616662333736363738353565623063316438393635343631
|
||||
6662366132396337320a326335353333306262666561353037356539633432376439666133386463
|
||||
30326230316634346431346266333030303435313065616665656362663164313638313639313633
|
||||
63343538653230653330383336386138643636333361326139346336646665366530343537663331
|
||||
61303639313335343162613838303034616362303935653862666166656634613562376330306165
|
||||
32373832666438623638616363363931636664633337396336653237356234616438623261353134
|
||||
62373463313235323233343734363561353237613439663534393537333964323932373837356564
|
||||
32383536613332323532633534306632373762666236366664383636323264363433396437666437
|
||||
323637336362613139633237316237666365
|
||||
$ANSIBLE_VAULT;1.1;AES256 38343033383061343739363362626366376630376337376639376235316665363736376362633830
|
||||
6638383135303063363866623262303736393337386364630a353533323537376437343033666334 32353832353466343832643238313834616662333736363738353565623063316438393635343631
|
||||
6662366132396337320a326335353333306262666561353037356539633432376439666133386463 30326230316634346431346266333030303435313065616665656362663164313638313639313633
|
||||
63343538653230653330383336386138643636333361326139346336646665366530343537663331 61303639313335343162613838303034616362303935653862666166656634613562376330306165
|
||||
32373832666438623638616363363931636664633337396336653237356234616438623261353134 62373463313235323233343734363561353237613439663534393537333964323932373837356564
|
||||
32383536613332323532633534306632373762666236366664383636323264363433396437666437 323637336362613139633237316237666365
|
||||
...
|
||||
|
||||
@ -1,5 +1,4 @@
|
||||
---
|
||||
samba_group: smbgroup
|
||||
samba_user: smbuser
|
||||
users:
|
||||
- name: cianhatton
|
||||
- name: cianhatton
|
||||
|
||||
@ -1,11 +1,10 @@
|
||||
---
|
||||
- name: Converge
|
||||
hosts: all
|
||||
vars:
|
||||
mergerfs_mounts:
|
||||
- path: /mnt/storage
|
||||
branches:
|
||||
- /mnt/data*
|
||||
options: allow_other,use_ino
|
||||
- path: /mnt/storage
|
||||
branches:
|
||||
- /mnt/data*
|
||||
options: allow_other,use_ino
|
||||
roles:
|
||||
- role: ansible-role-mergerfs
|
||||
- role: ansible-role-mergerfs
|
||||
|
||||
@ -1,25 +1,24 @@
|
||||
---
|
||||
- name: Prepare
|
||||
hosts: all
|
||||
tasks:
|
||||
- name: Create directories
|
||||
become: true
|
||||
file:
|
||||
path: "{{ item }}"
|
||||
state: directory
|
||||
loop:
|
||||
- /mnt/data1
|
||||
- /mnt/data2
|
||||
- name: Create directories
|
||||
become: true
|
||||
file:
|
||||
path: '{{ item }}'
|
||||
state: directory
|
||||
loop:
|
||||
- /mnt/data1
|
||||
- /mnt/data2
|
||||
|
||||
- name: Create data files
|
||||
become: true
|
||||
copy:
|
||||
content: "{{ item.content }}\n"
|
||||
dest: "{{ item.path }}"
|
||||
loop:
|
||||
- path: /mnt/data1/file1.txt
|
||||
content: file1
|
||||
- path: /mnt/data2/file2.txt
|
||||
content: file2
|
||||
- path: /mnt/data2/file3.txt
|
||||
content: file3
|
||||
- name: Create data files
|
||||
become: true
|
||||
copy:
|
||||
content: "{{ item.content }}\n"
|
||||
dest: '{{ item.path }}'
|
||||
loop:
|
||||
- path: /mnt/data1/file1.txt
|
||||
content: file1
|
||||
- path: /mnt/data2/file2.txt
|
||||
content: file2
|
||||
- path: /mnt/data2/file3.txt
|
||||
content: file3
|
||||
|
||||
@ -1,34 +1,33 @@
|
||||
---
|
||||
- name: Include OS-specific variables
|
||||
include_vars: "{{ ansible_os_family }}.yml"
|
||||
include_vars: '{{ ansible_os_family }}.yml'
|
||||
tags:
|
||||
- mergerfs
|
||||
- mergerfs
|
||||
|
||||
- name: Install mergerfs prerequisites
|
||||
become: true
|
||||
package:
|
||||
name: "{{ mergerfs_prerequisites }}"
|
||||
name: '{{ mergerfs_prerequisites }}'
|
||||
state: present
|
||||
update_cache: true
|
||||
tags:
|
||||
- mergerfs
|
||||
- mergerfs_install
|
||||
- mergerfs
|
||||
- mergerfs_install
|
||||
|
||||
- name: Include install tasks
|
||||
import_tasks: install_from_{{ mergerfs_install_mode }}.yml
|
||||
tags:
|
||||
- mergerfs
|
||||
- mergerfs_install
|
||||
- mergerfs
|
||||
- mergerfs_install
|
||||
|
||||
- name: Mount mergerfs filesystems
|
||||
become: true
|
||||
mount:
|
||||
fstype: fuse.mergerfs
|
||||
src: "{{ ':'.join(item.branches | mandatory) }}"
|
||||
path: "{{ item.path | mandatory }}"
|
||||
path: '{{ item.path | mandatory }}'
|
||||
opts: "{{ item.options | default('defaults') }}"
|
||||
state: "{{ item.state | default('mounted') }}"
|
||||
loop: "{{ mergerfs_mounts }}"
|
||||
loop: '{{ mergerfs_mounts }}'
|
||||
tags:
|
||||
- mergerfs
|
||||
- mergerfs_mount
|
||||
- mergerfs
|
||||
- mergerfs_mount
|
||||
|
||||
@ -1,12 +1,12 @@
|
||||
---
|
||||
mergerfs_prerequisites:
|
||||
- fuse
|
||||
mergerfs_dist: "{{ ansible_distribution|lower }}-{{ ansible_distribution_release }}"
|
||||
- fuse
|
||||
mergerfs_dist: '{{ ansible_distribution|lower }}-{{ ansible_distribution_release }}'
|
||||
mergerfs_arch_map:
|
||||
x86_64: amd64
|
||||
i386: i386
|
||||
aarch64: arm64
|
||||
armv7l: armhf
|
||||
mergerfs_arch: "{{ mergerfs_arch_map[ansible_userspace_architecture | default(ansible_architecture) ] }}"
|
||||
mergerfs_pkg_prefix: "mergerfs_"
|
||||
mergerfs_pkg_suffix: ".{{ mergerfs_dist }}_{{ mergerfs_arch }}.deb"
|
||||
mergerfs_arch: '{{ mergerfs_arch_map[ansible_userspace_architecture | default(ansible_architecture)
|
||||
] }}'
|
||||
mergerfs_pkg_prefix: mergerfs_
|
||||
mergerfs_pkg_suffix: .{{ mergerfs_dist }}_{{ mergerfs_arch }}.deb
|
||||
|
||||
@ -1,7 +1,7 @@
|
||||
---
|
||||
mergerfs_prerequisites:
|
||||
- fuse
|
||||
mergerfs_dist: "{{ 'fc' if ansible_distribution == 'Fedora' else 'el' }}{{ ansible_distribution_major_version }}"
|
||||
mergerfs_arch: "{{ ansible_userspace_architecture }}"
|
||||
mergerfs_pkg_prefix: "mergerfs-"
|
||||
mergerfs_pkg_suffix: "-1.{{ mergerfs_dist }}.{{ mergerfs_arch }}.rpm"
|
||||
- fuse
|
||||
mergerfs_dist: "{{ 'fc' if ansible_distribution == 'Fedora' else 'el' }}{{ ansible_distribution_major_version\
|
||||
\ }}"
|
||||
mergerfs_arch: '{{ ansible_userspace_architecture }}'
|
||||
mergerfs_pkg_prefix: mergerfs-
|
||||
mergerfs_pkg_suffix: -1.{{ mergerfs_dist }}.{{ mergerfs_arch }}.rpm
|
||||
|
||||
Loading…
Reference in New Issue