45 lines
1.9 KiB
YAML
45 lines
1.9 KiB
YAML
# @NOTE run 'ansible-playbook' command on this using 'sudo'
|
|
- name: Initialize VPS
|
|
# hosts: sukaato
|
|
hosts: "{{ chosen_host | default('sukaato') }}"
|
|
remote_user: root
|
|
vars:
|
|
harden: true
|
|
vars_files:
|
|
- vars/local_facts.yml # REQUIRED
|
|
- vars/vim_settings.yml # REQUIRED
|
|
- vars/tail_net.yml
|
|
- vars/crowdsec.yml
|
|
- vars/users@{{ inventory_hostname | default('vps') }}.yml
|
|
- vars/config@{{ inventory_hostname | default('vps') }}.yml
|
|
tasks:
|
|
- name: Hardening SSH server
|
|
ansible.builtin.include_role:
|
|
name: init-server # required. The name of the role to be executed.
|
|
# apply: # not required. Accepts a hash of task keywords (e.g. C(tags), C(become)) that will be applied to all tasks within the included role.
|
|
tasks_from: harden # not required. File to load from a role's C(tasks/) directory.
|
|
# vars_from: main # not required. File to load from a role's C(vars/) directory.
|
|
# defaults_from: main # not required. File to load from a role's C(defaults/) directory.
|
|
# allow_duplicates: True # not required. Overrides the role's metadata setting to allow using a role more than once with the same parameters.
|
|
# handlers_from: main # not required. File to load from a role's C(handlers/) directory.
|
|
- name: Installing requisite packages
|
|
ansible.builtin.include_role:
|
|
name: init-server
|
|
tasks_from: core@install-pkgs
|
|
handlers_from: core
|
|
- name: Initializing groups and users
|
|
ansible.builtin.include_role:
|
|
name: init-server
|
|
tasks_from: ssh-users
|
|
- name: Update hostname
|
|
become: true
|
|
ansible.builtin.hostname:
|
|
name: "{{ inventory_hostname }}"
|
|
- name: Update host icon name
|
|
become: true
|
|
ansible.builtin.command:
|
|
cmd: "hostnamectl set-icon-name computer-server"
|
|
- name: Rebooting machine for hostname change
|
|
become: true
|
|
ansible.builtin.reboot:
|
|
msg: "Rebooting machine" |