Update 'ansible/ubuntu/setup-pb.yml'
This commit is contained in:
parent
0589fe1dfd
commit
620d21bbef
@ -148,6 +148,11 @@
|
|||||||
|
|
||||||
- git
|
- git
|
||||||
|
|
||||||
|
- uidmap
|
||||||
|
|
||||||
|
- curl
|
||||||
|
|
||||||
|
|
||||||
state: latest
|
state: latest
|
||||||
|
|
||||||
|
|
||||||
@ -300,7 +305,6 @@
|
|||||||
name: "{{ user }}"
|
name: "{{ user }}"
|
||||||
|
|
||||||
password: "{{ user_passwd | password_hash('sha512') }}"
|
password: "{{ user_passwd | password_hash('sha512') }}"
|
||||||
# password: ELqZ9L70SSOTjnE0Jq
|
|
||||||
|
|
||||||
state: present
|
state: present
|
||||||
|
|
||||||
@ -728,9 +732,86 @@
|
|||||||
purge: yes
|
purge: yes
|
||||||
|
|
||||||
|
|
||||||
|
- name: "Check if {{ user }} lingers"
|
||||||
|
stat: "path=/var/lib/systemd/linger/{{ user }}"
|
||||||
|
register: linger
|
||||||
|
|
||||||
|
- name: "Enable linger for {{ user }}"
|
||||||
|
command: "loginctl enable-linger {{ user }}"
|
||||||
|
when: not linger.stat.exists
|
||||||
|
|
||||||
|
- name: Stop root docker
|
||||||
|
systemd:
|
||||||
|
name: docker
|
||||||
|
state: stopped
|
||||||
|
enabled: no
|
||||||
|
|
||||||
|
# - name: Download the Rootless Docker installer
|
||||||
|
# get_url:
|
||||||
|
# url: https://get.docker.com/rootless
|
||||||
|
# dest: /home/user_this/dockerRootless.sh
|
||||||
|
# mode: 0700
|
||||||
|
|
||||||
|
# - name: Change back ownership to user_this for docker
|
||||||
|
# ansible.builtin.shell:
|
||||||
|
# cmd: chown -R user_this:user_this /home/user_this/dockerRootless.sh
|
||||||
|
|
||||||
|
# - name: Install Rootless Docker
|
||||||
|
# shell: /home/user_this/dockerRootless.sh
|
||||||
|
# become: yes
|
||||||
|
# become_user: user_this
|
||||||
|
|
||||||
|
# - name: Start docker
|
||||||
|
# systemd:
|
||||||
|
# name: docker
|
||||||
|
# state: started
|
||||||
|
# enabled: yes
|
||||||
|
# scope: user
|
||||||
|
# become: yes
|
||||||
|
# become_user: user_this
|
||||||
|
|
||||||
|
- name: "Add stuff to .bashrc"
|
||||||
|
become: yes
|
||||||
|
become_user: user_this
|
||||||
|
lineinfile:
|
||||||
|
path: /home/user_this/.bashrc
|
||||||
|
line: "export PATH=/usr/bin:$PATH"
|
||||||
|
state: present
|
||||||
|
|
||||||
|
- name: "Add stuff to .bashrc"
|
||||||
|
become: yes
|
||||||
|
become_user: user_this
|
||||||
|
lineinfile:
|
||||||
|
path: /home/user_this/.bashrc
|
||||||
|
line: "export DOCKER_HOST=unix:///run/user/1001/docker.sock"
|
||||||
|
state: present
|
||||||
|
|
||||||
|
- name: stop and disable docker service
|
||||||
|
service:
|
||||||
|
name: docker
|
||||||
|
state: stopped
|
||||||
|
enabled: false
|
||||||
|
|
||||||
|
- name: stop and disable docker.socket service
|
||||||
|
service:
|
||||||
|
name: docker.socket
|
||||||
|
state: stopped
|
||||||
|
enabled: false
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
handlers:
|
handlers:
|
||||||
|
|
||||||
|
|
||||||
|
- name: stop docker
|
||||||
|
|
||||||
|
service:
|
||||||
|
|
||||||
|
name: docker
|
||||||
|
|
||||||
|
state: stopped
|
||||||
|
|
||||||
- name: restart fail2ban
|
- name: restart fail2ban
|
||||||
|
|
||||||
service:
|
service:
|
||||||
@ -743,6 +824,9 @@
|
|||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
- name: netplan apply
|
- name: netplan apply
|
||||||
|
|
||||||
command: netplan apply
|
command: netplan apply
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user