Skip to content

ansible

Directory actions

More options

Directory actions

More options

Latest commit

 

History

History
 
 

ansible

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
artwork
artwork
 
 
group_vars
group_vars
 
 
handlers
handlers
 
 
host_vars
host_vars
 
 
inventory
inventory
 
 
lookup_plugins
lookup_plugins
 
 
register
register
 
 
roles
roles
 
 
.gitignore
.gitignore
 
 
.keepass_version
.keepass_version
 
 
README.md
README.md
 
 
_ansible_keepass_util.sh
_ansible_keepass_util.sh
 
 
all-common.yml
all-common.yml
 
 
ansible-playbook-keepass
ansible-playbook-keepass
 
 
ansible.cfg
ansible.cfg
 
 
audio-pis.yml
audio-pis.yml
 
 
build.c3voc.de.yml
build.c3voc.de.yml
 
 
deploy_media_app.sh
deploy_media_app.sh
 
 
deploy_media_cdn.sh
deploy_media_cdn.sh
 
 
deploy_media_mirror.sh
deploy_media_mirror.sh
 
 
encoders.yml
encoders.yml
 
 
event
event
 
 
ingest.yml
ingest.yml
 
 
loadbalancers.yml
loadbalancers.yml
 
 
media-app.yml
media-app.yml
 
 
media-cdn.yml
media-cdn.yml
 
 
media-mirror.yml
media-mirror.yml
 
 
minions.yml
minions.yml
 
 
mixers.yml
mixers.yml
 
 
mng.c3voc.de.yml
mng.c3voc.de.yml
 
 
monitoring.yml
monitoring.yml
 
 
relays.yml
relays.yml
 
 
requirements.yml
requirements.yml
 
 
servers.yml
servers.yml
 
 
site.yml
site.yml
 
 
tally-pis.yml
tally-pis.yml
 
 
tracker.yml
tracker.yml
 
 
transcoders.yml
transcoders.yml
 
 
update_keepass_version
update_keepass_version
 
 
web.c3voc.de.yml
web.c3voc.de.yml
 
 
yolomode
yolomode
 
 

README.md

c3voc - configuration management

Installation

To manage hosts with ansible you only need to install ansible on your machine.

  sudo aptitude install ansible

  # You can optionally do this inside a virtualenv to avoid polluting your python installation
  pip3 install libkeepass pykeepass

Usage

Syntax validation.

  ansible-playbook site.yml -l mixers --syntax-check

Basic ansible call to deploy new config to a specific host. Passwords will be pulled from keepass.

  ./ansible-playbook-keepass site.yml -l mazdermind.lan.c3voc.de

On the first call you will be prompted for the location to your keepass file and password. The keepass file location will be stored in .keepass_file_path the password obviously not.

Basic ansible call to deploy new config to a set of hosts on an event.

  ./ansible-playbook-keepass site.yml -l saal1

Run ad-hoc commands

  ansible -i event/ transcoders -m shell -a "echo hello world"

Keepass Password

The Keepass password will be automatically derived using your GPG-keyring or MacOS Keychain when available. It is recommended that you set up one of these options if you need to do a lot of playbook runs.

To test whether decrypting on-the-fly via GPG works you can do the following:

gpg -d <path-to-password-repo>/keepass_password.asc

Keepass Version

If you use ./ansible-playbook-keepass a sanity check verifies that your passwords checkout is recent enough. to update it, make sure the passsword checkout is correct and run ./update_keepass_version

Host notes

router.lan.c3voc.de

What you need:

  • install plain debian
  • setting hostname to router.lan.c3voc.de
  • make sure you have two network interfaces configured with names pbl (public) and int (internal)
  • run ansible to deploy config

TODO

Have a look into TODO file.

Docs

  • ansible-doc -l lists all available modules
  • ansible-doc $module opens a very helpful knowledge page for a given module
  • Documentation Page