Skull-IT/iac_stack
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: Skull-IT:19ffd5953ff9f051225510e5ee61619ad829a085
Branches Tags
Skull-IT:main
..
compare: Skull-IT:20064cff722277bf65cbafcf3dee360c7e7434f1
Branches Tags
Skull-IT:main

No commits in common. "19ffd5953ff9f051225510e5ee61619ad829a085" and "20064cff722277bf65cbafcf3dee360c7e7434f1" have entirely different histories.
19ffd5953f ... 20064cff72

7 changed files with 13 additions and 21 deletions
Show stats Expand all files Collapse all files

2
.ansible-lint
View file

@ -1,2 +0,0 @@
skip_list:
- var-naming

1
.gitignore vendored
View file

@ -4,7 +4,6 @@ inventory/
# Ignore .secret files.... you know, there secret... # Ignore .secret files.... you know, there secret...
*.secret *.secret
.vault-* .vault-*
vault.secret
# Ignore Caching # Ignore Caching
cache/ cache/

2
ansible.cfg
View file

@ -10,7 +10,7 @@ fact_caching_connection = ./cache
fact_caching_timeout = 86400 fact_caching_timeout = 86400
# Rollen-Pfade # Rollen-Pfade
roles_path = ./roles/ roles_path = ./roles/global:./roles/custom
# Vault-Einstellungen # Vault-Einstellungen
vault_password_file = ./vault.secret vault_password_file = ./vault.secret

5
playbooks/heyer.systems/docker1.yml
View file

@ -1,5 +0,0 @@
---
- name: Install and start Apache web server
hosts: docker1
roles:
- server_install_ssh

2
roles/server_install_ssh/defaults/main.yml
View file

@ -5,4 +5,4 @@ ssh_user: skulladmin
ssh_public_key: "" ssh_public_key: ""
# SSH-Port # SSH-Port
ssh_port: 22 ssh_port: 22

4
roles/server_install_ssh/handlers/main.yml
View file

@ -1,5 +1,5 @@
--- ---
- name: Restart SSH - name: Restart SSH
ansible.builtin.service: service:
name: ssh name: ssh
state: restarted state: restarted

18
roles/server_install_ssh/tasks/main.yml
View file

@ -1,22 +1,22 @@
--- ---
- name: Paketlisten aktualisieren - name: Paketlisten aktualisieren
ansible.builtin.apt: apt:
update_cache: true update_cache: yes
cache_valid_time: 3600 cache_valid_time: 3600
- name: OpenSSH Server installieren - name: OpenSSH Server installieren
ansible.builtin.apt: apt:
name: openssh-server name: openssh-server
state: present state: present
- name: Benutzer anlegen (falls nicht vorhanden) - name: Benutzer anlegen (falls nicht vorhanden)
ansible.builtin.user: user:
name: "{{ ssh_user }}" name: "{{ ssh_user }}"
shell: /bin/bash shell: /bin/bash
create_home: true create_home: yes
- name: SSH-Verzeichnis anlegen - name: SSH-Verzeichnis anlegen
ansible.builtin.file: file:
path: "/home/{{ ssh_user }}/.ssh" path: "/home/{{ ssh_user }}/.ssh"
state: directory state: directory
owner: "{{ ssh_user }}" owner: "{{ ssh_user }}"
@ -24,7 +24,7 @@
mode: '0700' mode: '0700'
- name: SSH-Key eintragen - name: SSH-Key eintragen
ansible.builtin.copy: copy:
content: "{{ ssh_public_key }}" content: "{{ ssh_public_key }}"
dest: "/home/{{ ssh_user }}/.ssh/authorized_keys" dest: "/home/{{ ssh_user }}/.ssh/authorized_keys"
owner: "{{ ssh_user }}" owner: "{{ ssh_user }}"
@ -32,10 +32,10 @@
mode: '0600' mode: '0600'
- name: SSH-Konfiguration per Template übertragen - name: SSH-Konfiguration per Template übertragen
ansible.builtin.template: template:
src: sshd_config.j2 src: sshd_config.j2
dest: /etc/ssh/sshd_config dest: /etc/ssh/sshd_config
owner: root owner: root
group: root group: root
mode: '0644' mode: '0644'
notify: Restart SSH notify: Restart SSH