53 lines
1.1 KiB
YAML
53 lines
1.1 KiB
YAML
---
|
|
- name: Install ansible
|
|
apt:
|
|
update_cache: true
|
|
name:
|
|
- ansible
|
|
register: apt_result
|
|
retries: 3
|
|
until: apt_result is succeeded
|
|
|
|
- name: Create ansible directory
|
|
file:
|
|
path: /var/local/ansible
|
|
state: directory
|
|
mode: '2775'
|
|
owner: root
|
|
group: nounou
|
|
|
|
- name: Set ACL for ansible directory
|
|
acl:
|
|
path: /var/local/ansible
|
|
default: true
|
|
entity: nounou
|
|
etype: group
|
|
permissions: rwx
|
|
state: query
|
|
|
|
- name: Clone Ansible project
|
|
git:
|
|
repo: 'http://gitlab.adm.crans.org/nounous/ansible.git'
|
|
dest: /var/local/ansible
|
|
umask: '002'
|
|
version: 'master'
|
|
|
|
- name: Indicate Ansible in motd
|
|
template:
|
|
src: update-motd.d/05-service.j2
|
|
dest: /etc/update-motd.d/05-ansible
|
|
mode: 0755
|
|
|
|
- name: Enable automatic removal of stale sockets
|
|
lineinfile:
|
|
dest: /etc/ssh/sshd_config
|
|
regexp: ^StreamLocalBindUnlink
|
|
line: "StreamLocalBindUnlink yes # Enable automatic removal of stale sockets"
|
|
state: absent
|
|
|
|
- name: Restart sshd
|
|
systemd:
|
|
enabled: true
|
|
state: restarted
|
|
name: sshd
|