# @TODO create inventory group variables akin to structure of sukaato group's for homeserver # > representing password for Linux root user account of VPS password: !vault | $ANSIBLE_VAULT;1.1;AES256 32333335343939653231313938666134306338356633393035363039373465386165313666383262 6465313738316635633332623765336563626165336330370a616634393266366430363663333066 63373165346236386632393866316164623133373761303262643734356433646661636533666266 3834643765613937300a326365643961626236386261303933643965333565623836313231346537 3030 # representing hostname for LAN server; same as host or group variable name instance: armitage # > representing Linux distro or OS image to be used for VPS # operating_system: "tftp://hikiki.local:69/debian.iso" operating_system: ~ # ]> of control node or local SSH key basenames ssh_keys: - ed25519@sukaato.hikiki - ecdsa@sukaato.hikiki # > list of administrative users (in Linux, users that can use "sudo") admins: - username: senpai # arbitrary valid user name services: ~ # ]> if linux system user, assocated servce # ]> list of control node or local SSH key basenames for this user ssh_keys: - ecdsa-37851076-sk@sukaato.hikiki - ecdsa-37851072-sk@sukaato.hikiki # > hashed (and maybe salted) password password: !vault | $ANSIBLE_VAULT;1.1;AES256 34636132613365646330653431653236303563623464316638643439373761366564663264613738 3033343264373264333362616434333465323439653134340a643066663832353965313434386639 38366263646638353632656431366638393939623537326233306132306436363338373161643433 3439653833333164390a303430616561356464393030353433303738383730643330323031373432 62386231653339616436383837383966643539353036353034363132633539643332386131613537 31356230383561663735363530393562363237343166323635666665386165633130653864646238 39323735386161646531323335393639353630376136663063393930326434346435343937623336 33336132663238326662323536326638333139313535373166636363336366663962373936383536 62303536363939316563646630633064306364366331623665646533633065336236 # :]> package groups pkgs: # :]> representing package groups installed by package manager via repositories mngr: # ]> representing system-level or essential packages core: - name: sudo uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: kitty-terminfo uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: whois uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: vim uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: vim-vimwiki uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: vim-doc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ # - name: flatpak # uri: ~ # sources: ~ # sigkey: ~ # types: ~ # suites: ~ # comps: ~ - name: snapd uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: git uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: git-delta uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: git-doc uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: git-man uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: fail2ban uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: crowdsec uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: glow uri: ~ sigkey: "https://repo.charm.sh/apt/gpg.key" sources: "https://repo.charm.sh/apt/" types: deb suites: "*" comps: "*" - name: pandoc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: curl uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: build-essential uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: fastfetch uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: gcc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: gcc-doc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: dpkg-dev uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: xz-utils uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: ufw uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: avahi-utils uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: libpam-google-authenticator uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: libpam-u2f uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: pamu2fcfg uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: pcscd uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: tftpd-hpa uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: gocryptfs uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: cryfs uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: tmux uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: cpu-checker uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: asciidoc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: libpam-doc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: burp uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: rsync uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: gnupg uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: gnupg-agent uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ userspace: - name: neovim uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: sqlite3 uri: ~ sources: ~ sigkey: ~ types: ~ suites: ~ comps: ~ - name: podman uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: podman-compose uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: distrobox uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: proftpd-core uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: proftpd-doc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: proftpd-mod-crypto uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: proftpd-mod-ldap uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: proftpd-mod-sqlite uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: erlang uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: erlang-doc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: erlang-hex uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: elixir uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: python3.13 uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: python3-venv uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: python3-pip uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: python3-doc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: golang uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: golang-doc uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: hugo uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: yt-dlp uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: syncthing-discosrv uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: syncthing-relaysrv uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: syncthing-relaysrv uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: rclone uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: aria2 uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: mopidy uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: mopidy-mpd uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ - name: minidlna uri: ~ sigkey: ~ sources: ~ types: ~ suites: ~ comps: ~ # :]> representing package groups installed by shell scripts script: # ]> representing user-level or supplemental shell script installations userspace: - name: radicle src: "https://radicle.dev/install" pre: ~ post: ~ - name: rustup src: "https://sh.rustup.rs" pre: ~ post: ~ - name: julia src: "https://install.julialang.org" pre: ~ post: ~ - name: uv src: "https://astral.sh/uv/install.sh" pre: ~ post: ~ # :]> representing package groups installed from source archives archive: # ]> representing user-level or supplemental source archives userspace: # - name: surge # src: "https://github.com/SurgeDM/Surge/releases/download/v0.8.6/Surge_0.8.6_linux_amd64.tar.gz" # deploy: ~ # pre: ~ # post: ~ - name: nvm src: "https://nodejs.org/dist/v24.16.0/node-v24.16.0-linux-x64.tar.xz" deploy: ~ pre: ~ post: ~ - name: difftastic src: "https://github.com/Wilfred/difftastic/releases/download/0.69.0/difft-x86_64-unknown-linux-gnu.tar.gz" deploy: ~ pre: ~ post: ~ # :]> representing package groups installed from source git repositories git_repos: # userspace: # # @TODO use below to build Podman container instead, to deploy with podman-compose # # @NOTE https://github.com/papis/papis and https://papis.readthedocs.io/en/latest/ # - name: papis # src: "https://github.com/papis/papis.git" # branch: main # deploy: ~ # pre: ~ # post: ~ # - name: quartz # src: "https://github.com/jackyzha0/quartz.git" # branch: v5.0.0 # deploy: ~ # pre: ~ # post: ~ cimages: pman: # @NOTE https://hub.docker.com/r/crowdsecurity/crowdsec - name: crowdsec uri: docker.io/crowdsecurity/crowdsec tag: latest # @NOTE https://hub.docker.com/r/linuxserver/wireguard - name: wireguard uri: lscr.io/linuxserver/wireguard tag: latest # @NOTE https://hub.docker.com/_/caddy - name: caddy uri: docker.io/caddy tag: nanoserver-ltsc2025 # @NOTE https://hub.docker.com/r/dnomd343/syncplay - name: syncplay uri: docker.io/dnomd343/syncplay tag: latest # @NOTE https://hub.docker.com/r/linuxserver/zotero - name: zotero uri: lscr.io/linuxserver/zotero tag: latest # @NOTE https://hub.docker.com/_/nextcloud - name: nextcloud uri: docker.io/nextcloud tag: stable-fpm-alpine # @NOTE https://headscale.net/stable/setup/install/container/ - name: headscale uri: ghcr.io/juanfont/headscale tag: main-71a4ce3 # @NOTE https://hub.docker.com/r/opengg/aria2 - name: aria2cd uri: docker.io/opengg/aria2 tag: edge # @NOTE https://hub.docker.com/r/aria2/webui-aria2 - name: aria-web uri: docker.io/aria2/webui-aria2 tag: latest # @NOTE https://hub.docker.com/r/slskd/slskd - name: slskd uri: docker.io/slskd/slskd tag: canary # @NOTE https://hub.docker.com/r/ubuntu/squid - name: squid uri: docker.io/ubuntu/squid tag: "6.6-24.04_edge"