compliance - OS specific tasks more defined
This commit is contained in:
@@ -1,7 +1,7 @@
|
||||
---
|
||||
## Checks/deploys an Alpine Linux system to be managed with Ansible.
|
||||
|
||||
- name: Install standard packages if not already installed.
|
||||
- name: Alpine - Install standard packages if not already installed.
|
||||
# Looking at you LXCs. >.>
|
||||
ansible.builtin.package:
|
||||
name:
|
||||
@@ -15,7 +15,7 @@
|
||||
state: present
|
||||
|
||||
# Give ansible doas rights with no password required.
|
||||
- name: Add doas rights with no password for deployment user
|
||||
- name: Alpine - Add doas rights with no password for deployment user
|
||||
lineinfile:
|
||||
dest: /etc/doas.conf
|
||||
regexp: '^ansible'
|
||||
@@ -23,7 +23,7 @@
|
||||
state: present
|
||||
validate: 'doas -C %s'
|
||||
|
||||
- name: Add nhadmin to wheel group.
|
||||
- name: Alpine - Add nhadmin to wheel group.
|
||||
user:
|
||||
name: nhadmin
|
||||
groups: wheel
|
||||
|
||||
@@ -2,7 +2,7 @@
|
||||
## Checks/deploys a Debian Linux system to be managed with Ansible.
|
||||
|
||||
# Add sudo package
|
||||
- name: Install sudo if not already installed.
|
||||
- name: Debian - Install sudo if not already installed.
|
||||
# Looking at you LXCs. >.>
|
||||
ansible.builtin.package:
|
||||
name:
|
||||
@@ -10,7 +10,7 @@
|
||||
state: present
|
||||
|
||||
# APT Cacher-NG Configuration
|
||||
- name: Add APT-Cacher-NG Configuration
|
||||
- name: Debian - Add APT-Cacher-NG Configuration
|
||||
copy:
|
||||
content: "{{ aptcacher_config }}"
|
||||
dest: /etc/apt/apt.conf.d/proxy
|
||||
@@ -20,11 +20,11 @@
|
||||
state: absent
|
||||
|
||||
# Update apt package lists after adding our proxy
|
||||
- name: Update apt repo package lists from cacher
|
||||
- name: Debian - Update apt repo package lists from cacher
|
||||
apt: update_cache=yes force_apt_get=yes cache_valid_time=3600
|
||||
|
||||
# Add required packages because Debian is lame
|
||||
- name: Install standard packages if not already installed.
|
||||
- name: Debian - Install standard packages if not already installed.
|
||||
ansible.builtin.package:
|
||||
name:
|
||||
- curl
|
||||
@@ -35,7 +35,7 @@
|
||||
state: present
|
||||
|
||||
# Give ansible sudo rights with no password required.
|
||||
- name: Add sudo rights with no password for deployment user.
|
||||
- name: Debian - Add sudo rights with no password for deployment user.
|
||||
lineinfile:
|
||||
dest: /etc/sudoers
|
||||
regexp: '^ansible'
|
||||
@@ -43,14 +43,14 @@
|
||||
state: present
|
||||
validate: 'visudo -cf %s'
|
||||
|
||||
- name: Add nhadmin to sudo group.
|
||||
- name: Debian - Add nhadmin to sudo group.
|
||||
user:
|
||||
name: nhadmin
|
||||
groups: sudo
|
||||
append: yes
|
||||
# when: "'sudo' in ansible_facts.getent_group"
|
||||
|
||||
- name: Add nhadmin to systemd-journal group.
|
||||
- name: Debian - Add nhadmin to systemd-journal group.
|
||||
user:
|
||||
name: nhadmin
|
||||
groups: systemd-journal
|
||||
|
||||
Reference in New Issue
Block a user