Remove common role usage
This commit is contained in:
parent
e7ecd16360
commit
cb30e01299
6 changed files with 27 additions and 13 deletions
|
|
@ -1,5 +1,4 @@
|
||||||
[defaults]
|
[defaults]
|
||||||
roles_path = ./roles
|
|
||||||
ask_vault_pass = True
|
ask_vault_pass = True
|
||||||
|
|
||||||
[privilege_escalation]
|
[privilege_escalation]
|
||||||
|
|
|
||||||
25
handlers.yml
25
handlers.yml
|
|
@ -12,9 +12,19 @@
|
||||||
state: restarted
|
state: restarted
|
||||||
enabled: true
|
enabled: true
|
||||||
|
|
||||||
- name: regenerate initramfs
|
- name: restart nftables
|
||||||
become: true
|
become: true
|
||||||
command: update-initramfs -u -k all
|
systemd:
|
||||||
|
name: nftables.service
|
||||||
|
state: restarted
|
||||||
|
enabled: true
|
||||||
|
|
||||||
|
- name: restart ssh
|
||||||
|
become: true
|
||||||
|
systemd:
|
||||||
|
name: ssh.service
|
||||||
|
state: restarted
|
||||||
|
enabled: true
|
||||||
|
|
||||||
- name: restart docker service
|
- name: restart docker service
|
||||||
become: true
|
become: true
|
||||||
|
|
@ -23,6 +33,17 @@
|
||||||
state: restarted
|
state: restarted
|
||||||
enabled: true
|
enabled: true
|
||||||
|
|
||||||
|
- name: restart nginx
|
||||||
|
become: true
|
||||||
|
systemd:
|
||||||
|
name: nginx.service
|
||||||
|
state: restarted
|
||||||
|
enabled: true
|
||||||
|
|
||||||
|
- name: regenerate initramfs
|
||||||
|
become: true
|
||||||
|
command: update-initramfs -u -k all
|
||||||
|
|
||||||
- name: restart certbot
|
- name: restart certbot
|
||||||
become: true
|
become: true
|
||||||
systemd:
|
systemd:
|
||||||
|
|
|
||||||
|
|
@ -5,8 +5,6 @@
|
||||||
become: true
|
become: true
|
||||||
ansible.builtin.apt:
|
ansible.builtin.apt:
|
||||||
name: '{{ packages }}'
|
name: '{{ packages }}'
|
||||||
roles:
|
|
||||||
- common
|
|
||||||
tasks:
|
tasks:
|
||||||
- name: Generic provisioning
|
- name: Generic provisioning
|
||||||
ansible.builtin.import_tasks: 'tasks/setup.yml'
|
ansible.builtin.import_tasks: 'tasks/setup.yml'
|
||||||
|
|
|
||||||
|
|
@ -1,4 +0,0 @@
|
||||||
- src: git+https://git.fudiggity.nl/ansible/common.git
|
|
||||||
name: common
|
|
||||||
version: master
|
|
||||||
scm: git
|
|
||||||
|
|
@ -47,6 +47,6 @@
|
||||||
owner: root
|
owner: root
|
||||||
group: root
|
group: root
|
||||||
mode: '0644'
|
mode: '0644'
|
||||||
notify:
|
notify:
|
||||||
- restart nftables
|
- restart nftables
|
||||||
- restart docker service
|
- restart docker service
|
||||||
|
|
|
||||||
|
|
@ -14,7 +14,7 @@
|
||||||
owner: root
|
owner: root
|
||||||
group: root
|
group: root
|
||||||
mode: '0644'
|
mode: '0644'
|
||||||
notify: reload ssh
|
notify: restart ssh
|
||||||
|
|
||||||
- name: Copy wezterm terminfo file
|
- name: Copy wezterm terminfo file
|
||||||
ansible.builtin.copy:
|
ansible.builtin.copy:
|
||||||
|
|
@ -25,12 +25,12 @@
|
||||||
|
|
||||||
- name: Disable user lingering
|
- name: Disable user lingering
|
||||||
become: true
|
become: true
|
||||||
ansible.builtin.command: 'loginctl disable-linger sonny'
|
ansible.builtin.command: loginctl disable-linger sonny
|
||||||
|
|
||||||
- name: Copy unattended upgrades configuration
|
- name: Copy unattended upgrades configuration
|
||||||
become: true
|
become: true
|
||||||
ansible.builtin.template:
|
ansible.builtin.template:
|
||||||
src: 'templates/unattended-upgrades.j2'
|
src: templates/unattended-upgrades.j2
|
||||||
dest: '/etc/apt/apt.conf.d/10periodic'
|
dest: '/etc/apt/apt.conf.d/10periodic'
|
||||||
owner: root
|
owner: root
|
||||||
group: root
|
group: root
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue