fixing some little mistakes

This commit is contained in:
nazunalika 2020-12-13 20:06:42 -07:00
parent 4c60c7c383
commit 868c9fc772
5 changed files with 153 additions and 11 deletions

View File

@ -29,7 +29,7 @@ Loosely copied from the CentOS ansible infrastructure.
│ ├── vars │ ├── vars
├── roles/local ├── roles/local
│ └── <role-name> │ └── <role-name>
| └── requirements.yml └── requirements.yml
├── tasks -> playbooks/tasks ├── tasks -> playbooks/tasks
├── templates -> playbooks/templates ├── templates -> playbooks/templates
└── vars -> playbooks/vars └── vars -> playbooks/vars
@ -110,11 +110,23 @@ Ensure that you use relevant tags where necessary for your tasks.
### Roles ### Roles
If you are using roles that are not part of this repository in the `roles` directory, you will need to list them in the `requirements.yml`. For example, we use the IPA role. If you are using roles or collections, you will need to list them in `./roles/requirements.yml`. For example, we use the freeipa collection and a mysql role from geerlingguy.
``` ```
--- ---
- src: freeipa.ansible_freeipa roles:
- name: geerlingguy.mysql
collections:
- name: freeipa.ansible_freeipa
version: 0.3.1
``` ```
Otherwise, custom roles for the infrastructure will sit in `ansible/roles`. Custom roles for infrastructure use will have their own separate repository. Right now, we do not have a Ansible Galaxy presence. For this, when referencing roles under Rocky Linux, you will have to specify its location and follow the naming format. Example below.
```
roles:
- name: rockylinux.ipsilon
src: https://github.com/rocky-linux/ansible-role-ipsilon
version: main
```

View File

@ -16,3 +16,18 @@
loop: "{{ users }}" loop: "{{ users }}"
tags: tags:
- users - users
- name: "Creating Initial Admin Accounts"
freeipa.ansible_freeipa.ipauser:
ipaadmin_password: "{{ ipaadmin_password }}"
name: "{{ item.name }}"
first: "{{ item.first }}"
last: "{{ item.last }}"
email: "{{ item.email }}"
password: "{{ item.password }}"
title: "{{ item.title }}"
loginshell: "{{ item.loginshell }}"
update_password: on_create
loop: "{{ adminusers }}"
tags:
- users

View File

@ -46,7 +46,8 @@
- name: Rebuild grub - name: Rebuild grub
command: "/usr/sbin/grub2-mkconfig -o {{ grub_config_path_link }}" command: "/usr/sbin/grub2-mkconfig -o {{ grub_config_path_link }}"
changed_when: flase register: grub_command_result
changed_when: "grub_command_result.rc == 0"
tags: tags:
- grub - grub
- kernel - kernel

View File

@ -0,0 +1,65 @@
---
users:
- name: label2
first: Louis
last: Abel
email: label@rockylinux.org
password: ThisIsNotMyPassword1!
title: Infrastructure IdM Manager
loginshell: /bin/bash
- name: gmk2
first: Gregory
last: Kurtzer
email: gmk@rockylinux.org
password: ThisIsNotMyPassword1!
title: Executive Director
loginshell: /bin/bash
- name: brian2
first: Brian
last: Clemens
email: brian@rockylinux.org
password: ThisIsNotMyPassword1!
title: Project Manager
loginshell: /bin/bash
- name: hbjy2
first: Hayden
last: Young
email: hbjy@rockylinux.org
password: ThisIsNotMyPassword1!
title: Web & Branding Manager
loginshell: /bin/bash
- name: jorp2
first: Jordan
last: Pisaniello
email: jorp@rockylinux.org
password: ThisIsNotMyPassword1!
title: Community Manager
loginshell: /bin/bash
- name: neil2
first: Neil
last: Hanlon
email: neil@rockylinux.org
password: ThisIsNotMyPassword1!
title: Infrastructure Manager
loginshell: /bin/bash
- name: rlh2
first: R. Leigh
last: Hennig
email: rlh@rockylinux.org
password: ThisIsNotMyPassword1!
title: Operations Manager
loginshell: /bin/bash
- name: rfelsburg2
first: Rob
last: Felsburg
email: rfelsburg@rockylinux.org
password: ThisIsNotMyPassword1!
title: Operations Manager
loginshell: /bin/bash
- name: tg2
first: Taylor
last: Goodwill
email: tg@rockylinux.org
password: ThisIsNotMyPassword1!
title: Infrastructure Manager
loginshell: /bin/bash

View File

@ -5,12 +5,61 @@ users:
last: Abel last: Abel
email: label@rockylinux.org email: label@rockylinux.org
password: ThisIsNotMyPassword1! password: ThisIsNotMyPassword1!
title: Infrastructure IdM Engineer title: Infrastructure IdM Manager
loginshell: /bin/bash loginshell: /bin/bash
- name: label2 - name: gmk
first: Louis first: Gregory
last: Abel last: Kurtzer
email: label@rockylinux.org email: gmk@rockylinux.org
password: ThisIsNotMyPassword1! password: ThisIsNotMyPassword1!
title: Infrastructure IdM Engineer - Admin title: Executive Director
loginshell: /bin/bash
- name: brian
first: Brian
last: Clemens
email: brian@rockylinux.org
password: ThisIsNotMyPassword1!
title: Project Manager
loginshell: /bin/bash
- name: hbjy
first: Hayden
last: Young
email: hbjy@rockylinux.org
password: ThisIsNotMyPassword1!
title: Web & Branding Manager
loginshell: /bin/bash
- name: jorp
first: Jordan
last: Pisaniello
email: jorp@rockylinux.org
password: ThisIsNotMyPassword1!
title: Community Manager
loginshell: /bin/bash
- name: neil
first: Neil
last: Hanlon
email: neil@rockylinux.org
password: ThisIsNotMyPassword1!
title: Infrastructure Manager
loginshell: /bin/bash
- name: rlh
first: R. Leigh
last: Hennig
email: rlh@rockylinux.org
password: ThisIsNotMyPassword1!
title: Operations Manager
loginshell: /bin/bash
- name: rfelsburg
first: Rob
last: Felsburg
email: rfelsburg@rockylinux.org
password: ThisIsNotMyPassword1!
title: Operations Manager
loginshell: /bin/bash
- name: tg
first: Taylor
last: Goodwill
email: tg@rockylinux.org
password: ThisIsNotMyPassword1!
title: Infrastructure Manager
loginshell: /bin/bash loginshell: /bin/bash