Ansible Role: Common

An Ansible Role that provides common tasks for preparing RHEL/CentOS 7 servers

Requirements

This role needs no special requirements, except sudo access to install yum repositories & packages ( plus internet connection, of course :D ).

Role Variables

Available variables are listed below, along with default values (see defaults/main.yml):

---
git_username:               "{{ ansible_user_id }}"
git_email:                  "{{ ansible_user_id }}@{{ ansible_hostname }}"
disable_firewall:           no
selinux_state:              permissive # available options: enforcing, permissive, disabled
repo_location:              indonesia # available options: international, indonesia, vagrant
centos_base_enabled:        yes
centos_updates_enabled:     yes
centos_extras_enabled:      yes
centos_centosplus_enabled:  yes
centos_cr_enabled:          no
centos_fasttrack_enabled:   no
epel_enabled:               yes
remi_enabled:               no
remi_safe_enabled:          yes
remi_php54_enabled:         no
remi_php55_enabled:         no
remi_php56_enabled:         no
remi_php70_enabled:         no
remi_php71_enabled:         yes
basic_packages:
  - vim
  - tree
user_ssh_configs:
  - host: github
    private_key_path: ~/.ssh/github_rsa

Dependencies

As EPEL and REMI repository is commonly used by many RHEL/CentOS, this role requires :

• adipriyantobpn.repo-centos
• adipriyantobpn.repo-epel
• adipriyantobpn.repo-remi

Those required roles maintain their own role variables. Please read their documentations for more detailed explanations of how to use and supported role variables.

Example Playbook

---
- name: Prepare CentOS 7 server
  hosts: centos7

  pre_tasks:
    # This task is used to make sure that the SSH private keys are exist
    # before specified them in adipriyantobpn.common.user_ssh_configs variable
    - name: Copy private keys
      copy:
        src: "{{ item.src }}"
        dest: "{{ item.dest }}"
        mode: '0600'
      with_items:
        - src: keys/github/id_rsa
          dest: ~/.ssh/github_rsa
        - src: keys/172.16.0.2/id_rsa
          dest: ~/.ssh/172.20.0.2_rsa
        - src: keys/172.16.0.3/id_rsa
          dest: ~/.ssh/172.20.0.3_rsa
        - src: keys/192.168.0.5/id_rsa
          dest: ~/.ssh/192.168.0.5_rsa

  roles:
    - role: adipriyantobpn.common
      git_username:               "Adi Priyanto"
      git_email:                  "adipriyanto.bpn@gmail.com"
      disable_firewall:           yes
      selinux_state:              disabled
      repo_location:              vagrant
      centos_base_enabled:        yes
      centos_updates_enabled:     yes
      centos_extras_enabled:      yes
      centos_centosplus_enabled:  no
      centos_cr_enabled:          no
      centos_fasttrack_enabled:   no
      epel_enabled:               yes
      remi_enabled:               no
      remi_safe_enabled:          yes
      remi_php54_enabled:         no
      remi_php55_enabled:         no
      remi_php56_enabled:         no
      remi_php70_enabled:         yes
      remi_php71_enabled:         no
      basic_packages:
        - yum-utils
        - bind-utils
        - net-tools
        - createrepo
        - yum-plugin-list-data
        - yum-plugin-fs-snapshot
        - yum-plugin-changelog
        - vim
        - tree
        - lynx
        - cowsay
      # We have to make these keys exist by using "Copy private keys" pre-task above
      user_ssh_configs:
        - host: github
          private_key_path: ~/.ssh/github_rsa
        - host: 172.16.0.2
          private_key_path: ~/.ssh/172.20.0.2_rsa
        - host: 172.16.0.3
          private_key_path: ~/.ssh/172.20.0.3_rsa
        - host: 192.168.0.5
          private_key_path: ~/.ssh/192.168.0.5_rsa

License

BSD

Author Information

This role was created in 2017 by Adi Priyanto as a learning purpose for community.