WIP

Initial commit
2025-09-02 15:57:41 +03:00 · 2025-09-02 10:55:09 +03:00
12 changed files with 171 additions and 0 deletions
--- a/inventory.yml
+++ b/inventory.yml
@ -0,0 +1,4 @@
+ungrouped:
+  hosts:
+    ansible-test:
+      ansible_host: 192.168.102.4
--- a/main.yml
+++ b/main.yml
@ -0,0 +1,13 @@
+- name: run common tasks
+  hosts: all
+  become: true
+  become_user: root
+  gather_facts: true
+  roles:
+    - common
+
+    #- name: run host-specific tasks
+    #  hosts: all
+    #  become: true
+    #  become_user: root
+    #  roles: "{{inventory_hostname}}"
--- a/roles/common/files/etc/nginx/sites-available/default
+++ b/roles/common/files/etc/nginx/sites-available/default
@ -0,0 +1,15 @@
+server {
+        listen 80 default_server;
+        listen [::]:80 default_server;
+        # SSL configuration
+        listen 443 ssl default_server;
+        listen [::]:443 ssl default_server;
+        include snippets/snakeoil.conf;
+
+        root /var/www/default;
+        index index.html;
+        server_name _;
+        location / {
+                try_files $uri $uri/ =404;
+        }
+}
--- a/roles/common/files/etc/rsyslog.d/20-remote.conf
+++ b/roles/common/files/etc/rsyslog.d/20-remote.conf
@ -0,0 +1 @@
+# dummy file (man nav syslog servera)
--- a/roles/common/handlers/main.yml
+++ b/roles/common/handlers/main.yml
@ -0,0 +1,14 @@
+- name: Restart rsyslog
+  systemd_service:
+    name: rsyslog
+    state: restarted
+
+- name: Reload nginx
+  systemd_service:
+    name: nginx
+    state: reloaded
+
+- name: Restart nginx
+  systemd_service:
+    name: nginx
+    state: restarted
--- a/roles/common/tasks/\
+++ b/roles/common/tasks/\
@ -0,0 +1,10 @@
+- name: Install ldap packages
+  apt:
+    name:
+      - something-something-ldap # es neatceros nevienu ldap package ;-;
+      - something-else-ldap
+    state: present
+
+- name: Copy config files
+  copy:
+    src: "/etc/kaut-kas-ldap/{{}}.conf"
--- a/roles/common/tasks/ldap.yml
+++ b/roles/common/tasks/ldap.yml
@ -0,0 +1,10 @@
+- name: Install ldap packages
+  apt:
+    name:
+      - something-something-ldap # es neatceros nevienu ldap package ;-;
+      - something-else-ldap
+    state: present
+
+- name: Copy config files
+  copy:
+    src: "/etc/kaut-kas-ldap/{{}}.conf"
--- a/roles/common/tasks/main.yml
+++ b/roles/common/tasks/main.yml
@ -0,0 +1,27 @@
+- name: Install basic packages
+  ansible.builtin.package:
+    name:
+      - vim
+      - htop
+      - wget
+      - git
+      - curl
+    state: present
+
+- name: Set a hostname
+  ansible.builtin.hostname:
+    name: "{{hostname}}"
+
+- name: Set default hosts file
+  ansible.builtin.template:
+    src: etc/hosts
+    dest: /etc/hosts
+    owner: root
+    group: root
+    mode: 0644
+
+- name: Import syslog.yml
+  import_tasks: syslog.yml
+
+- name: Import webserver.yml
+  import_tasks: webserver.yml
--- a/roles/common/tasks/syslog.yml
+++ b/roles/common/tasks/syslog.yml
@ -0,0 +1,13 @@
+- name: Install rsyslog
+  ansible.builtin.package:
+    name: rsyslog
+    state: present
+
+- name: Copy rsyslog config
+  ansible.builtin.copy:
+    src: etc/rsyslog.d/20-remote.conf
+    dest: /etc/rsyslog.d/20-remote.conf
+    owner: root
+    group: root
+    mode: 0644
+  notify: Restart rsyslog
--- a/roles/common/tasks/webserver.yml
+++ b/roles/common/tasks/webserver.yml
@ -0,0 +1,48 @@
+
+- name: Install webserver packages
+  ansible.builtin.package:
+    name:
+      - nginx
+      - ssl-cert # snakeoil certificates for default site
+    state: present
+
+- name: Remove default website
+  ansible.builtin.file:
+    path: /var/www/html
+    state: absent
+
+- name: Create default site directory
+  ansible.builtin.file:
+    path: /var/www/default
+    state: directory
+    owner: root
+    group: root
+    mode: 0755
+
+- name: Copy default index
+  ansible.builtin.template:
+    src: var/www/default/index.html
+    dest: /var/www/default/index.html
+    owner: www-data
+    group: www-data
+    mode: 0640
+
+- name: Copy default config
+  ansible.builtin.copy:
+    src: etc/nginx/sites-available/default
+    dest: /etc/nginx/sites-available/default
+    owner: root
+    group: root
+    mode: 0644
+  notify: Reload nginx
+
+- name: Enable default config
+  ansible.builtin.file:
+    path: /etc/nginx/sites-enabled/default
+    src: /etc/nginx/sites-available/default
+    state: link
+    owner: root
+    group: root
+    mode: 0644
+
+
--- a/roles/common/templates/etc/hosts
+++ b/roles/common/templates/etc/hosts
@ -0,0 +1,7 @@
+127.0.0.1	localhost
+127.0.0.1	{{ hostname }}
+
+# The following lines are desirable for IPv6 capable hosts
+::1     localhost ip6-localhost ip6-loopback
+ff02::1 ip6-allnodes
+ff02::2 ip6-allrouters
--- a/roles/common/templates/var/www/default/index.html
+++ b/roles/common/templates/var/www/default/index.html
@ -0,0 +1,9 @@
+<!DOCTYPE html>
+<html>
+<body>
+
+<h1>Welcome to {{inventory_hostname}} </h1>
+<p>This is a paragraph</p>
+
+</body>
+</html>
Author	SHA1	Message	Date
Madars Batraks	a8d606a3d4	WIP	2025-09-02 15:57:41 +03:00
Madars Batraks	570e069ded	Initial commit	2025-09-02 10:55:09 +03:00