Compare commits
3 Commits
solutionAp
...
master_set
| Author | SHA1 | Date | |
|---|---|---|---|
| 0f04017437 | |||
| 7c7e0658fc | |||
| a41ee487a4 |
@@ -1,23 +0,0 @@
|
|||||||
## Dépendances entre rôles
|
|
||||||
|
|
||||||
**Tâche**: Écrire un rôle dépendant d'un autre
|
|
||||||
|
|
||||||
**Condition**: pour améliorer l'organisation et la maintenance de nos playbooks
|
|
||||||
|
|
||||||
**Norme**: ansible-galaxy, vim, meta
|
|
||||||
|
|
||||||
|
|
||||||
### Préparation
|
|
||||||
|
|
||||||
Créez un rôle "vim" qui s'assure:
|
|
||||||
- de la présence du paquet vim-enhanced
|
|
||||||
- de l'absence du paquet nano
|
|
||||||
- de la présence du fichier https://cours.opendoor.fr/Fichiers/vimrc dans /etc/vimrc
|
|
||||||
|
|
||||||
### Pratique
|
|
||||||
|
|
||||||
Faire en sorte que ce rôle "vim" dépende du rôle "setup" précédemment mis en place, c'est à dire que utiliser le rôle "vim" entraîne automatiquement l'utilisation du rôle "setup"
|
|
||||||
|
|
||||||
### Validation
|
|
||||||
|
|
||||||
Les 2 rôles sont exécutés
|
|
||||||
@@ -8,9 +8,7 @@
|
|||||||
|
|
||||||
## Pratique:
|
## Pratique:
|
||||||
|
|
||||||
Convertir en un rôle nommé "setup" le 1er playbook mis au point lors de l'atelier "adhoc to playbook".
|
Convertir en un rôle nommé "setup" le playbook setup.yml joint.
|
||||||
|
|
||||||
Pour rappel, ce playbook se trouve dans le fichier setup.yml
|
|
||||||
|
|
||||||
## Performance
|
## Performance
|
||||||
|
|
||||||
19
setup.yml
19
setup.yml
@@ -1,18 +1,20 @@
|
|||||||
---
|
---
|
||||||
- name: setup target to be managed by ansible
|
- name: setup target to be managed by ansible
|
||||||
hosts: cibles
|
hosts: cibles
|
||||||
|
vars:
|
||||||
|
playbook_version: 1.0
|
||||||
tasks:
|
tasks:
|
||||||
- name: warn people
|
- name: warn people
|
||||||
lineinfile:
|
ansible.builtin.lineinfile:
|
||||||
path: /etc/motd
|
path: /etc/motd
|
||||||
create: yes
|
create: yes
|
||||||
line: "Host is managed by ansible, manual interaction not recommended"
|
line: "Host is managed by ansible, manual interaction not recommended"
|
||||||
state: present
|
state: present
|
||||||
|
|
||||||
- name: history
|
- name: history
|
||||||
lineinfile:
|
ansible.builtin.lineinfile:
|
||||||
path: /etc/history
|
path: /etc/history
|
||||||
line: "{{ '%Y-%m-%d' | strftime }} - {{ ansible_play_name }}"
|
line: "{{ '%Y-%m-%d' | strftime }} - {{ ansible_play_name }} - {{ playbook_version }}"
|
||||||
state: present
|
state: present
|
||||||
create: true
|
create: true
|
||||||
|
|
||||||
@@ -24,20 +26,19 @@
|
|||||||
become: false
|
become: false
|
||||||
|
|
||||||
- name: create account
|
- name: create account
|
||||||
user:
|
ansible.builtin.user:
|
||||||
name: ansible
|
name: ansible
|
||||||
password: "{{ '123Soleil2021%' | password_hash('sha512',65534|random(seed=inventory_hostname) | string) }}"
|
password: "{{ '123Soleil%' | password_hash('sha512',65534|random(seed=inventory_hostname) | string) }}"
|
||||||
create_home: yes
|
create_home: yes
|
||||||
home: /home/ansible
|
home: /home/ansible
|
||||||
|
|
||||||
- name: configure sudo
|
- name: configure sudo
|
||||||
copy:
|
ansible.builtin.copy:
|
||||||
src: sudo
|
src: sudoers
|
||||||
dest: /etc/sudoers.d/ansible
|
dest: /etc/sudoers.d/ansible
|
||||||
validate: "/usr/sbin/visudo -cf %s"
|
|
||||||
|
|
||||||
- name: deploy ssh key
|
- name: deploy ssh key
|
||||||
authorized_key:
|
ansible.posix.authorized_key:
|
||||||
user: ansible
|
user: ansible
|
||||||
key: "{{ item }}"
|
key: "{{ item }}"
|
||||||
loop:
|
loop:
|
||||||
|
|||||||
3
sudo
3
sudo
@@ -1,3 +0,0 @@
|
|||||||
#Configuration sudo
|
|
||||||
# en nopassword pour ansible
|
|
||||||
ansible ALL=(ALL) NOPASSWD: ALL
|
|
||||||
Reference in New Issue
Block a user