diff options
| author | binary <me@rgoncalves.se> | 2021-02-27 10:30:33 +0100 |
|---|---|---|
| committer | binary <me@rgoncalves.se> | 2021-02-27 10:30:33 +0100 |
| commit | 5acdc00aaf6c65c1353cc02a59f33e0d6ba9a281 (patch) | |
| tree | 8bb7737b3efd6055dbf098105858c43c7453fbd6 /roles/workstation/tasks | |
| parent | d776d9820aeeb2fb84a4a47ce5eacf3a40823591 (diff) | |
| download | infrastructure-5acdc00aaf6c65c1353cc02a59f33e0d6ba9a281.tar.gz | |
Break workstation role in sub-roles
Diffstat (limited to 'roles/workstation/tasks')
| -rw-r--r-- | roles/workstation/tasks/_archlinux.yml | 49 | ||||
| -rw-r--r-- | roles/workstation/tasks/_openbsd.yml | 99 | ||||
| -rw-r--r-- | roles/workstation/tasks/main.yml | 48 |
3 files changed, 0 insertions, 196 deletions
diff --git a/roles/workstation/tasks/_archlinux.yml b/roles/workstation/tasks/_archlinux.yml deleted file mode 100644 index 06110df..0000000 --- a/roles/workstation/tasks/_archlinux.yml +++ /dev/null @@ -1,49 +0,0 @@ - -# workstation ~~ roles/workstation/tasks/_archlinux.yml -# init archlinux based workstation - ---- - -- name: refresh packages list - shell: pacman -Sy - tags: pkgs - -- name: install packages - shell: | - pacman --noconfirm --needed -S {{ item | join(" ") }} - loop: - - "{{ pkgs_common }}" - - "{{ pkgs_archlinux }}" - register: out - tags: pkgs - -- name: packages installation output - debug: - msg: | - {% for item in out.results %} - - {{ item.cmd }} - {% for type in ["stdout_lines", "stderr_lines"] if item[type] %} - -- {{ type }} - {% for line in item[type] %} - --- {{ line }} - {% endfor %} - {% endfor %} - {% endfor %} - when: out is defined - -- name: check doas installation - stat: path=/usr/bin/doas - register: doas - -- name: ensure Xorg subdirectory for configuration exists - file: - path: /etc/X11/xorg.conf.d - owner: root - mode: 0644 - state: directory - -- name: start and enable pcscd service - service: - name: pcscd - state: started - enabled: true diff --git a/roles/workstation/tasks/_openbsd.yml b/roles/workstation/tasks/_openbsd.yml deleted file mode 100644 index 0811ba2..0000000 --- a/roles/workstation/tasks/_openbsd.yml +++ /dev/null @@ -1,99 +0,0 @@ - -# workstation ~~ roles/workstation/tasks/main.yml -# init openbsd based workstation - ---- - -- name: install packages - shell: pkg_add -z {{ item | join(" ") }} - loop: - - "{{ pkgs_common }}" - - "{{ pkgs_openbsd }}" - register: out - tags: pkgs - -- name: packages installation output - debug: - msg: | - {% for item in out.results %} - - {{ item.cmd }} - {% for type in ["stdout_lines", "stderr_lines"] if item[type] %} - -- {{ type }} - {% for line in item[type] %} - --- {{ line }} - {% endfor %} - {% endfor %} - {% endfor %} - when: out is defined - -- name: ensure wsconsctl config file exists - file: - path: /etc/wsconsctl.conf - owner: root - group: wheel - mode: 0644 - state: touch - -- name: append configuration to wsconsctl - lineinfile: - path: /etc/wsconsctl.conf - regexp: "^{{ item[0] }}" - line: "{{ item[0] }}={{ item[1] }}" - loop: - - [screen.brightness, 80] - - [keyboard.repeat.del1, 180] - - [keyboard.repeat.deln, 50] - - [keyboard.bell.volume, 0] - - [mouse.tp.tapping, 1] - -- name: ensure Xorg subdirectory for configuration exists - file: - path: /etc/X11/xorg.conf.d - owner: root - mode: 0644 - state: directory - -- name: generate system wide configurations - template: - src: "{{ item }}" - dest: "/{{ item | regex_replace('-', '/') }}" - loop: - - etc-X11-xorg.conf.d-intel.conf - - etc-apm-hibernate - - etc-apm-suspend - -- name: ensure sysctl configuration file exists - file: - path: /etc/sysctl.conf - owner: root - mode: 0644 - -- name: ensure sysctl memory optimizations - blockinfile: - path: /etc/sysctl.conf - block: | - kern.shminfo.shmall=3145728 - kern.shminfo.shmmax=1073741823 - kern.shminfo.shmmni=1024 - kern.shminfo.shmseg=1024 - kern.seminfo.semmns=4096 - kern.seminfo.semmni=1024 - marker: "# memory {mark} - managed by Ansible" - -- name: ensure sysctl process optimizations - blockinfile: - path: /etc/sysctl.conf - block: | - kern.maxfiles=102400 - kern.maxproc=32768 - kern.maxfiles=65535 - kern.bufcachepercent=90 - kern.maxvnodes=262144 - kern.somaxconn=2048 - marker: "# process - {mark} managed by Ansible" - -- name: start and enable pcscd service - service: - name: pcscd - state: started - enabled: true diff --git a/roles/workstation/tasks/main.yml b/roles/workstation/tasks/main.yml deleted file mode 100644 index 6b8d28f..0000000 --- a/roles/workstation/tasks/main.yml +++ /dev/null @@ -1,48 +0,0 @@ - -# workstation ~~ roles/workstation/tasks/main.yml -# init workstation - ---- - -- name: retrieve BECOME method - stat: path=/usr/bin/doas - register: ws_become - -- name: retrieve original user - shell: logname - register: ws_user - -- name: retrieve host facts - set_fact: - ansible_become_method: "{{ 'doas' if ws_become.stat.exists else 'sudo' }}" - ansible_become_user: root - ws_user: "{{ ws_user.stdout }}" - -- name: include distribution specific task - include_tasks: "_{{ ansible_distribution | lower }}.yml" - ignore_errors: true - -- name: generate doas configuration - lineinfile: - path: /etc/doas.conf - regexp: "^permit persist keepenv {{ ws_user }} as root" - line: "permit persist keepenv {{ ws_user }} as root" - owner: root - mode: 0644 - create: true - -- name: check sudo binary path - shell: which sudo - register: sudo - ignore_errors: true - -- name: uninstall sudo binary - package: - name: sudo - state: absent - when: sudo.rc == 0 - register: sudo - ignore_errors: true - -- name: setup dotfiles from upstream and user script - meta: end_host |