matt/ansible-playbooks
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

11-25 update

Browse Source
This commit is contained in:
Matt
2025-11-28 17:26:03 -08:00
parent 2446f3c039
commit b2b9197dbc
22 changed files with 104 additions and 106 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
VCR-capture.yaml
View File

@ -8,12 +8,6 @@
tasks: tasks:
- name: user security check
include_role:
name: "cosmos_init"
vars:
security_check_only: true
- name: refresh special when kiosk update - name: refresh special when kiosk update
when: kiosk_refresh | bool when: kiosk_refresh | bool
set_fact: set_fact:

1
behemoth-containers.yaml
View File

@ -4,6 +4,7 @@
become: yes become: yes
tasks: tasks:
- name: Get Build File Listing - name: Get Build File Listing
shell: "ls -lR /opt/containers/*/build.sh | cut -b 41- | cut -d '/' -f 1-4" shell: "ls -lR /opt/containers/*/build.sh | cut -b 41- | cut -d '/' -f 1-4"
register: behemoth_container_output register: behemoth_container_output

4
cd-to-iso.yaml
View File

@ -2,8 +2,6 @@
- name: CD to ISO - name: CD to ISO
hosts: all hosts: all
become: yes become: yes
vars:
security_check_only: true
# Required Jenkins Vars # Required Jenkins Vars
# host_ip - string # host_ip - string
@ -17,8 +15,6 @@
roles: roles:
- role: cosmos_init
- role: cd_to_iso - role: cd_to_iso

6
cifs-mount.yaml
View File

@ -2,16 +2,16 @@
- name: CIFS Mount - name: CIFS Mount
hosts: all hosts: all
become: yes become: yes
vars:
security_check_only: true
############################################### ###############################################
# Permanently Mount a CIFS Share # Permanently Mount a CIFS Share
############################################### ###############################################
roles: roles:
- role: cosmos_init
- role: cifs_mount - role: cifs_mount
vars:
smb_username: "{{ CIFS_USERNAME }}"
smb_password: "{{ CIFS_PASSWORD }}"
# tasks: # tasks:
# #

5
cosmos-kiosk.yaml
View File

@ -7,6 +7,11 @@
- role: cosmos_init - role: cosmos_init
when: not refresh_special | bool when: not refresh_special | bool
- role: cosmos_init
when: refresh_only | bool
vars:
security_check_only: true
- role: docker_workstation - role: docker_workstation
when: install_docker | bool and not refresh_special | bool when: install_docker | bool and not refresh_special | bool

5
cosmos-nvidia.yaml
View File

@ -8,9 +8,10 @@
roles: roles:
- { role: cosmos_init, vars: {"gather_only": "true" } }
- { role: nvidia_drivers, tags: ['nvidia_drivers'] }
- role: cosmos_init
- role: nvidia_drivers
... ...

20
cosmos-server.yaml
View File

@ -18,28 +18,16 @@
- role: ldap_client - role: ldap_client
when: install_LDAP | bool and not refresh_special | bool when: install_LDAP | bool and not refresh_special | bool
# - role: special_server # - role: "{{ special_server }}"
# when: '"none" not in special_server'
tasks: tasks:
- name: display special_server - name: "Run {{ special_server }} role"
debug:
msg: "{{ special_server }}"
- name: Run the appropriate role based on server type
include_role: include_role:
name: "{{ special_server }}" name: "{{ special_server }}"
when: '"none" not in special_server' when: '"none" not in special_server'
# when: special_server | regex_search("{{ servers_item.name }}")
# loop: "{{ servers }}"
# loop_control:
# loop_var: servers_item
#
# - { role: octoprint, when: special_server | regex_search("Octoprint") }
# - { role: kodi, when: special_server | regex_search("Kodi") }
# - { role: timelapse, when: special_server | regex_search("Timelapse") }
... ...

5
jenkins_vpn.yaml
View File

@ -6,13 +6,8 @@
hosts: all hosts: all
become: yes become: yes
vars:
security_check_only: true
roles: roles:
- role: cosmos_init
# - { role: cosmos_init, tags: ['cosmos_init'], vars: {"terse_packages": "true"}, when: not refresh_only | bool }
- role: jenkins_vpn - role: jenkins_vpn
... ...

5
lldp-scan.yaml
View File

@ -25,6 +25,11 @@
- role: cosmos_init - role: cosmos_init
when: not refresh_only | bool when: not refresh_only | bool
- role: cosmos_init
when: refresh_only | bool
vars:
security_check_only: true
- role: lldp_scan - role: lldp_scan
- role: chrome_kiosk - role: chrome_kiosk

6
mattgpt-capture.yaml
View File

@ -16,12 +16,6 @@
tasks: tasks:
- name: user security check
include_role:
name: "cosmos_init"
vars:
security_check_only: true
############################################### ###############################################
# Mount remote archive folder # Mount remote archive folder
############################################### ###############################################

6
pi-init.yaml
View File

@ -7,12 +7,6 @@
tasks: tasks:
- name: user security check
include_role:
name: "cosmos_init"
vars:
security_check_only: true
# Check System Architecture # Check System Architecture
- name: Check CPU Arch - name: Check CPU Arch
shell: "dpkg --print-architecture" shell: "dpkg --print-architecture"

5
pi-top.yaml
View File

@ -3,11 +3,8 @@
hosts: all hosts: all
become: yes become: yes
vars:
security_check_only: true
roles: roles:
- role: cosmos_init
- role: pi-top - role: pi-top
# I discovered that the user projects only work when lightdm is running # I discovered that the user projects only work when lightdm is running

6
public-capture.yaml
View File

@ -10,12 +10,6 @@
tasks: tasks:
- name: user security check
include_role:
name: "cosmos_init"
vars:
security_check_only: true
############################################### ###############################################
# Check System Architecture # Check System Architecture
############################################### ###############################################

3
puck_routing.yaml
View File

@ -10,13 +10,12 @@
terse_packages: true terse_packages: true
init_light: true init_light: true
vpn_init: false vpn_init: false
security_check_only: true
tasks: tasks:
roles: roles:
- role: cosmos_init
- role: puck_vpn - role: puck_vpn
... ...

2
pxe-server.yaml
View File

@ -13,8 +13,6 @@
# config_matt - bool # config_matt - bool
# kde_full - bool # kde_full - bool
# #
vars:
terse_packages: true
roles: roles:
- role: cosmos_init - role: cosmos_init

6
rename-endpoint.yaml
View File

@ -5,12 +5,6 @@
tasks: tasks:
- name: user security check
include_role:
name: "cosmos_init"
vars:
security_check_only: true
- name: Rename Endpoint - name: Rename Endpoint
include_tasks: /var/jenkins_home/ansible/roles/cosmos_init/tasks/set_hostname.yaml include_tasks: /var/jenkins_home/ansible/roles/cosmos_init/tasks/set_hostname.yaml

5
rip-cd.yaml
View File

@ -3,9 +3,6 @@
hosts: all hosts: all
become: yes become: yes
vars:
security_check_only: true
# Required Jenkins Vars # Required Jenkins Vars
# host_ip - string # host_ip - string
# new_hostname - string # new_hostname - string
@ -16,8 +13,6 @@
roles: roles:
- role: cosmos_init
- role: rip_cd - role: rip_cd

37
ssd_health.yaml Normal file
View File

@ -0,0 +1,37 @@
---
- name: SSD Health Checker
hosts: all
become: yes
roles:
- role: cosmos_init
when: not quick_refresh | bool
vars:
intall_cockpit: true
install_python: true
init_light: true
no_vpn: true
new_hostname: "ssd-health"
public_deploy: true
- role: docker_workstation
when: not quick_refresh | bool
vars:
docker_full: false
- role: ssd_check
#- role: chrome_kiosk
# when: install_kiosk | bool and not service_only | bool
# vars:
# refresh_special: "{{ quick_refresh }}"
# kiosk_service_templates:
# - chrome_website: "http://0.0.0.0:8088"
# service_name: ssh_dashboard
# service_description: "SSH Health History Dashboard"
# user_data_dir: ""
# extra_service_configs: ""
# extra_chrome_configs: ""
...

47
test.yaml
View File

@ -1,9 +1,10 @@
--- ---
# https://us.fanntik.top/product/fanttik-e1-max-precision-electric-screwdriver-5/ # https://www.newyorker.com/culture/the-new-yorker-documentary/the-shutdown-of-usaid-has-already-killed-hundreds-of-thousands
- name: Ansible Test - name: Ansible Test
hosts: all hosts: all
become: yes become: yes
vars: vars:
docker_full: false
v4l2_id_string: v4l2_id_string:
- "earlytest" - "earlytest"
- "AV TO USB2.0" - "AV TO USB2.0"
@ -12,6 +13,7 @@
- "beholdmybutthole" - "beholdmybutthole"
video_ID_0: "" video_ID_0: ""
ip_check_folder: "/opt/cosmos/ip_check" ip_check_folder: "/opt/cosmos/ip_check"
#vpn_endpoint: "172.30.2.1" #vpn_endpoint: "172.30.2.1"
#gather_only: true #gather_only: true
#cpu_architecture: "amd64" #cpu_architecture: "amd64"
@ -54,24 +56,39 @@
# --window-position="480,0" \ # --window-position="480,0" \
# roles: roles:
# - chrome_kiosk - docker_workstation
tasks: # tasks:
# - name: show user vars
# debug:
# msg:
# - "User email:"
# - "{{ jenkins_user}}"
# - "Jenkins Group:"
# - "{{ jenkins_group}}"
# - "SERVER_SUBNET_GROUP:"
# - "{{ SERVER_SUBNET_GROUP }}"
# - "subnet_group_check:"
# - "{{ subnet_group_check }}"
# - "Host IP:"
# - "{{ ansible_ssh_host }}"
- name: user security check
include_role:
name: "cosmos_init"
vars:
security_check_only: true
- name: get debian version info # - name: test tempate
shell: 'cat /etc/os-release | grep VERSION_ID | cut -d\" -f2' # template:
register: os_version_id_output # src: test.j2
- debug: # dest: "/opt/cosmos/test-template.conf"
msg: | # mode: 0644
{{ os_version_id_output.stdout_lines[0] }}
# - name: get debian version info
# shell: 'cat /etc/os-release | grep VERSION_ID | cut -d\" -f2'
# register: os_version_id_output
# - debug:
# msg: |
# {{ os_version_id_output.stdout_lines[0] }}

5
trixie_upgrade.yaml
View File

@ -8,11 +8,6 @@
become: yes become: yes
tasks: tasks:
- name: user security check
include_role:
name: "cosmos_init"
vars:
security_check_only: true
- name: Get distribution version - name: Get distribution version
setup: setup:

4
update-endpoint.yaml
View File

@ -3,12 +3,8 @@
hosts: all hosts: all
become: yes become: yes
vars:
security_check_only: true
roles: roles:
- role: cosmos_init
- role: update_endpoint - role: update_endpoint
... ...

5
vm_party.yaml
View File

@ -14,9 +14,9 @@
public_deploy: true public_deploy: true
rename_host: true rename_host: true
configure_smb: true configure_smb: true
no_vpn: true
add_domain: false add_domain: false
no_vpn: true no_vpn: true
docker_full: false
# bridge interface name # bridge interface name
bridge_name: "vmpbr0" bridge_name: "vmpbr0"
@ -24,6 +24,9 @@
- role: cosmos_init - role: cosmos_init
when: not run_stage_two | bool and not (update_party | bool) and not (service_only | bool) when: not run_stage_two | bool and not (update_party | bool) and not (service_only | bool)
- role: docker_workstation
when: not run_stage_two | bool and not (update_party | bool) and not (service_only | bool)
- role: net_bridge - role: net_bridge
when: not (run_stage_two | bool) and not (update_party | bool) and not (service_only | bool) when: not (run_stage_two | bool) and not (update_party | bool) and not (service_only | bool)