diff --git a/init@vps.yml b/init@vps.yml new file mode 100644 index 0000000..815934a --- /dev/null +++ b/init@vps.yml @@ -0,0 +1,45 @@ +# @NOTE run 'ansible-playbook' command on this using 'sudo' +- name: Initialize VPS + # hosts: sukaato + hosts: "{{ chosen_host | default('sukaato') }}" + remote_user: root + vars: + harden: true + vars_files: + - vars/local_facts.yml # REQUIRED + - vars/vim_settings.yml # REQUIRED + - vars/tail_net.yml + - vars/crowdsec.yml + - vars/users@{{ inventory_hostname | default('vps') }}.yml + - vars/config@{{ inventory_hostname | default('vps') }}.yml + tasks: + - name: Hardening SSH server + ansible.builtin.include_role: + name: init-server # required. The name of the role to be executed. + # apply: # not required. Accepts a hash of task keywords (e.g. C(tags), C(become)) that will be applied to all tasks within the included role. + tasks_from: harden # not required. File to load from a role's C(tasks/) directory. + # vars_from: main # not required. File to load from a role's C(vars/) directory. + # defaults_from: main # not required. File to load from a role's C(defaults/) directory. + # allow_duplicates: True # not required. Overrides the role's metadata setting to allow using a role more than once with the same parameters. + # handlers_from: main # not required. File to load from a role's C(handlers/) directory. + - name: Installing requisite packages + ansible.builtin.include_role: + name: init-server + tasks_from: core@install-pkgs + handlers_from: core + - name: Initializing groups and users + ansible.builtin.include_role: + name: init-server + tasks_from: ssh-users + - name: Update hostname + become: true + ansible.builtin.hostname: + name: "{{ inventory_hostname }}" + - name: Update host icon name + become: true + ansible.builtin.command: + cmd: "hostnamectl set-icon-name computer-server" + - name: Rebooting machine for hostname change + become: true + ansible.builtin.reboot: + msg: "Rebooting machine" \ No newline at end of file