# @TODO create inventory group variables akin to structure of sukaato group's for homeserver # > representing password for Linux root user account of VPS password: !vault | $ANSIBLE_VAULT;1.1;AES256 32333335343939653231313938666134306338356633393035363039373465386165313666383262 6465313738316635633332623765336563626165336330370a616634393266366430363663333066 63373165346236386632393866316164623133373761303262643734356433646661636533666266 3834643765613937300a326365643961626236386261303933643965333565623836313231346537 3030 # representing hostname for LAN server; same as host or group variable name instance: armitage # > representing Linux distro or OS image to be used for VPS # operating_system: "tftp://hikiki.local:69/debian.iso" operating_system: ~ # ]> of control node or local SSH key basenames ssh_keys: - ed25519@sukaato.hikiki - ecdsa@sukaato.hikiki # > list of administrative users (in Linux, users that can use "sudo") admins: - username: admin # arbitrary valid user name services: ~ # ]> if linux system user, assocated servce # ]> list of control node or local SSH key basenames for this user ssh_keys: - ecdsa-37851076-sk@sukaato.hikiki - ecdsa-37851072-sk@sukaato.hikiki # > hashed (and maybe salted) password password: !vault | $ANSIBLE_VAULT;1.1;AES256 31663265653031323833373663653132653532646638316465393364613961643130653330393062 6165386239303965386261363565353137636164356130370a336465353931373564393339363561 37353162333331663833656631663165356134633961323337663439663733316231666334336539 6537373334326634610a623037613462663733343230306538386561363838316638623365636533 32313931666439363435663161663665346266653763343265376366383837376436643163376430 39393861613037333766386138376335653334363737626664383236303234653461313230383564 33393834636165386562383435666233313664656233326364616237636230303264363732376639 64396564366335366430303031323865333635306536346463386334303235386438663061343934 37376466373566396130366330383834323332626166316661336339346462343466 # @TODO change 'key' attributes of package entres under 'mngr' section below to 'signkey' # and edit 'roles/init-server/install-pks.yml' accordngly # :]> package groups pkgs: # :]> representing package groups installed by package manager via repositories mngr: # ]> representing system-level or essential packages core: - name: neovim uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: flatpak uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: snapd uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: git uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: fail2ban uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: crowdsec uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: glow uri: ~ sigkey: "https://repo.charm.sh/apt/gpg.key" sources: "https://repo.charm.sh/apt/" types: deb suites: "*" comps: "*" - name: vim-vimwiki uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: pandoc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: tor uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: i2pd uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ # # @TODO troubleshoot radicle installation issue or change installation method for radicle to script # - name: radicle-keyring # uri: "https://radicle.dev/apt/radicle-archive-keyring.deb" # sigkey: ~ # sources: ~ # types: ~ # suites: ~ # comps: ~ # - name: radicle # uri: ~ # sigkey: "https://radicle.dev/apt/radicle-archive-keyring.deb" # sources: "https://radicle.dev/apt" # types: deb # suites: release # comps: main # - name: syncthing # uri: ~ # sigkey: ~ # sources: ~ # types: ~ # suites: ~ # comps: ~ userspace: - name: podman uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: podman-compose uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: distrobox uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: proftpd-core uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: proftpd-doc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: proftpd-mod-crypto uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: proftpd-mod-ldap uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: proftpd-mod-sqlite uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: aria2 uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: syncplay-server uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: caddy uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: erlang uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: erlang-hex uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: elixir uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: python3.13 uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: python3-venv uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: python3-pip uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: golang uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: hugo uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: yt-dlp uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: syncthing-discosrv uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: syncthing-relaysrv uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ # :]> representing package groups installed by shell scripts script: # ]> representing user-level or supplemental shell script installations userspace: - name: nvm src: "https://raw.githubusercontent.com/nvm-sh/nvm/v0.40.4/install.sh" pre: ~ post: ~ - name: rustup src: "https://sh.rustup.rs" pre: ~ post: ~ - name: julia src: "https://install.julialang.org" pre: ~ post: ~ - name: uv src: "https://astral.sh/uv/install.sh" pre: ~ post: ~ # :]> representing package groups installed from source archives archive: # ]> representing user-level or supplemental source archives userspace: - name: surge # @NOTE https://github.com/SurgeDM/Surge src: "https://github.com/SurgeDM/Surge/releases/download/v0.8.6/Surge_0.8.6_linux_amd64.tar.gz" deploy: ~ pre: ~ post: ~ # :]> representing package groups installed from source git repositories git_repos: userspace: - name: quartz src: "https://github.com/jackyzha0/quartz.git" branch: main deploy: ~ pre: ~ post: ~ core_pkgs: "{{ (pkgs.mngr.core | default([])) + (pkgs.script.core | default([])) + (pkgs.archive.core | default([])) + (pkgs.git_repos.core | default([])) + (pkgs.containers.core | default([])) + (pkgs.snaps.core | default([])) + (pkgs.flatpaks.core | default([])) }}"