added git, services, role-template-dir, copr
This commit is contained in:
opalvaults
@@ -1,20 +0,0 @@
|
||||
[Unit]
|
||||
Description=Syncthing - Open Source Continuous File Synchronization
|
||||
Documentation=man:syncthing(1)
|
||||
StartLimitIntervalSec=60
|
||||
StartLimitBurst=4
|
||||
|
||||
[Service]
|
||||
ExecStart=/usr/bin/syncthing serve --no-browser --no-restart --logflags=0
|
||||
Restart=on-failure
|
||||
RestartSec=1
|
||||
SuccessExitStatus=3 4
|
||||
RestartForceExitStatus=3 4
|
||||
|
||||
# Hardening
|
||||
SystemCallArchitectures=native
|
||||
MemoryDenyWriteExecute=true
|
||||
NoNewPrivileges=true
|
||||
|
||||
[Install]
|
||||
WantedBy=default.target
|
||||
@@ -1,5 +1,27 @@
|
||||
---
|
||||
# Default directory management
|
||||
- name: Configure DNF
|
||||
template:
|
||||
src: dnf.conf.j2
|
||||
dest: /etc/dnf/dnf.conf
|
||||
|
||||
- name: Create groups
|
||||
group:
|
||||
name: "{{ item.value.group }}"
|
||||
gid: "{{ item.value.uid }}"
|
||||
state: "{{ item.value.state }}"
|
||||
loop: "{{ init_users | dict2items }}"
|
||||
|
||||
- name: Ensure Users are Configured Correctly
|
||||
user:
|
||||
name: "{{ item.value.name }}"
|
||||
uid: "{{ item.value.uid }}"
|
||||
group: "{{ item.value.group }}"
|
||||
groups: "{{ item.value.groups }}"
|
||||
state: "{{ item.value.state }}"
|
||||
create_home: "{{ item.value.create_home }}"
|
||||
shell: "{{ item.value.shell }}"
|
||||
loop: "{{ init_users | dict2items }}"
|
||||
|
||||
- name: Create or ensure presence of custom home directories
|
||||
file:
|
||||
path: /home/opal/{{ item }}
|
||||
@@ -29,22 +51,3 @@
|
||||
template:
|
||||
src: motd.j2
|
||||
dest: /etc/motd
|
||||
|
||||
# # Git repositories
|
||||
# - name: Pull dotfiles down from git
|
||||
# git:
|
||||
# repo: 'git@codeberg.org:opalvaults/opalfiles.git'
|
||||
# dest: "/home/opal/opalfiles"
|
||||
# key_file: "/home/opal/.ssh/ry_ecdsa"
|
||||
# become: yes
|
||||
# become_user: opal
|
||||
# become_method: su
|
||||
|
||||
# - name: Pull cookbook down from git
|
||||
# git:
|
||||
# repo: 'git@codeberg.org:opalvaults/sysadmin-cookbook.git'
|
||||
# dest: "/home/opal/projects/sysadmin-cookbook"
|
||||
# key_file: "/home/opal/.ssh/ry_ecdsa"
|
||||
# become: yes
|
||||
# become_user: opal
|
||||
# become_method: su
|
||||
|
||||
10
roles/base/templates/dnf.conf.j2
Normal file
10
roles/base/templates/dnf.conf.j2
Normal file
@@ -0,0 +1,10 @@
|
||||
# see `man dnf.conf` for defaults and possible options
|
||||
|
||||
[main]
|
||||
fastestmirror=True
|
||||
max_parallel_downloads=10
|
||||
gpgcheck=True
|
||||
installonly_limit=3
|
||||
clean_requirements_on_remove=True
|
||||
best=False
|
||||
skip_if_unavailable=True
|
||||
@@ -17,6 +17,7 @@ create_directories:
|
||||
- downloads
|
||||
- scripts
|
||||
- pictures
|
||||
- sync
|
||||
|
||||
init_users:
|
||||
opal:
|
||||
|
||||
Reference in New Issue
Block a user