59 lines
1.3 KiB
YAML
59 lines
1.3 KiB
YAML
---
|
|
- name: "Configure base system parameters"
|
|
hosts: all
|
|
|
|
vars_files:
|
|
- vars/secrets.yml
|
|
|
|
vars:
|
|
apt_packages:
|
|
- acl
|
|
- curl
|
|
- fuse
|
|
- git
|
|
- htop
|
|
- jq
|
|
- make
|
|
- python3-pip
|
|
- sqlite3
|
|
- tree
|
|
|
|
tasks:
|
|
- name: "Install additional apt packages"
|
|
ansible.builtin.apt:
|
|
name: "{{ apt_packages }}"
|
|
update_cache: true
|
|
|
|
- name: "Configure security settings"
|
|
ansible.builtin.import_role:
|
|
name: geerlingguy.security
|
|
vars:
|
|
security_ssh_permit_root_login: "yes"
|
|
security_autoupdate_enabled: "no"
|
|
security_fail2ban_enabled: true
|
|
|
|
- name: "Copy keep files script"
|
|
ansible.builtin.copy:
|
|
src: "files/keep-files.py"
|
|
dest: "{{ bin_prefix }}/keep-files.py"
|
|
owner: root
|
|
group: root
|
|
mode: "0755"
|
|
|
|
- name: 'Create directory for mount'
|
|
ansible.builtin.file:
|
|
path: '/mnt/applications'
|
|
state: 'directory'
|
|
mode: '0755'
|
|
tags:
|
|
- mount-storage
|
|
|
|
- name: 'Mount external storages'
|
|
ansible.posix.mount:
|
|
path: '/mnt/applications'
|
|
src: 'UUID=3942bffd-8328-4536-8e88-07926fb17d17'
|
|
fstype: ext4
|
|
state: mounted
|
|
tags:
|
|
- mount-storage
|