Pains-Perdus
/
ansible
3
1
Fork 0
Code Issues Pull Requests 1 Releases Wiki Activity
The ansible files for the pains-perdus infra.
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
18 Commits
7 Branches
0 Tags
1.3 MiB
Shell 64.4%
Jinja 31.6%
Python 4%
 
 
 
dev
big_cleanup
master
monitoring
matrix
networking
DNS
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'DNS'
${ noResults }
Go to file
Jean-Marie Mineau a6b9447b87 free the port 53 for nginx 3 years ago
group_vars/all free the port 53 for nginx 3 years ago
roles free the port 53 for nginx 3 years ago
.gitignore add certbot, wip 4 years ago
LICENSE Initial commit 4 years ago
README.md add some note about the ssh-agent 3 years ago
ansible.cfg add certbot, wip 4 years ago
base.yml add basic tools 4 years ago
dns.yml free the port 53 for nginx 3 years ago
hosts clean and update hosts 3 years ago
web_services.yml split the reverse_proxy role to implement a separate reverse proxy for stream 3 years ago

README.md

ansible

The ansible files for the pains-perdus infra.

Deploy a playbook

ansible-playbook playbook.yml

Add --check to do a dry run

Edit the vault

ansible-vault edit group_vars/all/vault

with the edditor defined in the env varible $EDITOR and the password of the vault in the file .vault_password (Carefull not to commit it!!!)

SSH key whith passphrase

To avoid entering the passphrase of the ssh key for each host, we have to use an ssh-agent. The ssh-agent with xonsh does not really works, so in my case I have to use ansible and the agent inside a sh process:

sh
eval `ssh-agent -s`
ssh-add
ansible all -m ping # or whatever you want to do with ansible
exit