added veracrypt role, fixed problems with site.yml

This commit is contained in:
opal
2023-10-24 22:05:39 -07:00
parent 80c2a429aa
commit 53e4fe49e5
10 changed files with 24 additions and 3 deletions
-10
View File
@@ -1,10 +0,0 @@
---
- name: Restart resolvconf
service:
name: resolvconf
state: restarted
- name: Restart NetworkManager
service:
name: NetworkManager
state: restarted
-79
View File
@@ -1,79 +0,0 @@
---
- name: Create groups
group:
name: "{{ item }}"
state: present
loop: "{{ init_groups }}"
- name: Ensure Users are Configured Correctly
user:
name: "{{ item.value.name }}"
group: "{{ item.value.group }}"
groups: "{{ item.value.groups }}"
state: "{{ item.value.state }}"
create_home: "{{ item.value.create_home }}"
shell: "{{ item.value.shell }}"
loop: "{{ init_users | dict2items }}"
- name: Create or ensure presence of custom home directories
file:
path: /home/opal/{{ item }}
state: directory
mode: '0755'
owner: opal
group: opal
loop: "{{ create_directories }}"
- name: Remove default home directories if present
file:
path: /home/opal/{{ item }}
state: absent
loop: "{{ remove_directories }}"
# SSH Initial Setup
- name: Create/Ensure ~/.ssh directories
file:
path: "/home/{{ item.value.name }}/.ssh"
state: directory
mode: 0700
owner: "{{ item.value.name }}"
group: "{{ item.value.group }}"
loop: "{{ init_users | dict2items }}"
- name: Install galaxy collections
community.general.ansible_galaxy_install:
type: collection
name: "{{ item }}"
loop: "{{ ansible_galaxy_collections }}"
- name: Add NFS share mountpoint to fstab
lineinfile:
dest: /etc/fstab
line: "cleric.opal.sh:/data/media /home/opal/share nfs sec=sys 0 0"
- name: Add /etc/NetworkManager/NetworkManager.conf template
template:
src: NetworkManager.conf.j2
dest: /etc/NetworkManager/NetworkManager.conf
owner: root
group: root
notify: 'Restart NetworkManager'
- name: Install resolveconf
package:
name: resolvconf
state: present
- name: Ensure resolveconf is started/enabled
systemd:
name: resolvconf
state: started
enabled: True
- name: Add /etc/resolvconf template
template:
src: resolv.conf.j2
dest: /etc/resolvconf/resolv.conf.d/base
owner: root
group: root
notify: 'Restart resolvconf'
@@ -1,11 +0,0 @@
# This file is managed by Ansible #
# Configuration file for NetworkManager.
[main]
dns=none
rc-manager=unmanaged
[logging]
#level=TRACE
#domains=ALL
-4
View File
@@ -1,4 +0,0 @@
# This file is managed by Ansible #
nameserver 1.1.1.2
nameserver 1.0.0.2
nameserver 2606:4700:4700:0:0:0:0:1112
-37
View File
@@ -1,37 +0,0 @@
---
init_groups:
- docker
remove_directories:
- Templates
- Videos
- Documents
- Music
- Downloads
- Pictures
- Public
- Desktop
create_directories:
- documents
- music
- downloads
- pictures
- share
- scripts
- projects
init_users:
opal:
name: opal
group: opal
groups:
- sudo
- docker
state: present
shell: /bin/bash
create_home: true
ansible_galaxy_collections:
- community.docker
- ansible.posix