From 55521638ab5eb52259389cc01369a90198592674 Mon Sep 17 00:00:00 2001 From: Louis Abel Date: Sun, 21 Apr 2024 20:56:43 -0700 Subject: [PATCH] add potential mount items and overrides --- tasks/variable_loader_common.yml | 5 +++++ vars/RedHat-10.yml | 4 ++++ vars/RedHat-8.yml | 3 +++ vars/RedHat-9.yml | 3 +++ vars/RedHat.yml | 8 ++++++++ vars/Rocky-10.yml | 1 + vars/Rocky-8.yml | 1 + vars/Rocky-9.yml | 1 + 8 files changed, 26 insertions(+) create mode 100644 vars/RedHat-10.yml create mode 100644 vars/RedHat-8.yml create mode 100644 vars/RedHat-9.yml create mode 120000 vars/Rocky-10.yml create mode 120000 vars/Rocky-8.yml create mode 120000 vars/Rocky-9.yml diff --git a/tasks/variable_loader_common.yml b/tasks/variable_loader_common.yml index a6d4fe8..a8a9117 100644 --- a/tasks/variable_loader_common.yml +++ b/tasks/variable_loader_common.yml @@ -6,6 +6,11 @@ with_items: - "{{ ansible_distribution }}.yml" + - name: Load version specific overrides + ansible.builtin.include_vars: "{{ item }}" + with_items: + - "{{ ansible_distribution }}-{{ ansible_distribution_major_version }}.yml" + - name: Create overrides if we're an IPA Replica ansible.builtin.include_vars: "{{ item }}" with_first_found: diff --git a/vars/RedHat-10.yml b/vars/RedHat-10.yml new file mode 100644 index 0000000..92117a8 --- /dev/null +++ b/vars/RedHat-10.yml @@ -0,0 +1,4 @@ +--- +mount_options_var_tmp: "defaults,nodev,nosuid" +mount_options_tmp: "defaults,nodev,nosuid" +... diff --git a/vars/RedHat-8.yml b/vars/RedHat-8.yml new file mode 100644 index 0000000..ea2a39b --- /dev/null +++ b/vars/RedHat-8.yml @@ -0,0 +1,3 @@ +--- +# Nothing to load +... diff --git a/vars/RedHat-9.yml b/vars/RedHat-9.yml new file mode 100644 index 0000000..ea2a39b --- /dev/null +++ b/vars/RedHat-9.yml @@ -0,0 +1,3 @@ +--- +# Nothing to load +... diff --git a/vars/RedHat.yml b/vars/RedHat.yml index 9dd9c87..a33568b 100644 --- a/vars/RedHat.yml +++ b/vars/RedHat.yml @@ -14,6 +14,14 @@ grub_boot_options: audit=1 grub_config_path_link: /etc/grub2.cfg grub_config_path_efi: /etc/grub2-efi.cfg +mount_options_var_tmp: "defaults,nodev,nosuid,noexec" +mount_options_tmp: "defaults,nodev,nosuid,noexec" +mount_options_dev_shm: "defaults,nodev,nosuid,noexec" +mount_options_var_log: "defaults,nodev,nosuid,noexec" +mount_options_var_log_audit: "defaults,nodev,nosuid,noexec" +mount_options_home: "defaults,nodev,nosuid" +mount_options_var: "defaults,nodev,nosuid" + ipatype: client remove_packages: diff --git a/vars/Rocky-10.yml b/vars/Rocky-10.yml new file mode 120000 index 0000000..c04282e --- /dev/null +++ b/vars/Rocky-10.yml @@ -0,0 +1 @@ +RedHat-10.yml \ No newline at end of file diff --git a/vars/Rocky-8.yml b/vars/Rocky-8.yml new file mode 120000 index 0000000..d49e1cd --- /dev/null +++ b/vars/Rocky-8.yml @@ -0,0 +1 @@ +RedHat-8.yml \ No newline at end of file diff --git a/vars/Rocky-9.yml b/vars/Rocky-9.yml new file mode 120000 index 0000000..3e6a45c --- /dev/null +++ b/vars/Rocky-9.yml @@ -0,0 +1 @@ +RedHat-9.yml \ No newline at end of file