ansible_playbook_servers/site.yml

---
- name: check if ansible is not to old
  hosts: localhost
  roles:
    - {role: do1jlr.ansible_version, tags: [default, version, default, always], gather_facts: false}

- name: general roles for all hosts
  hosts: all
  roles:
    - {role: do1jlr.base, tags: [default, packages, base]}
    - {role: ranger, tags: [packages, ranger]}
    - {role: bat, tags: [packages, bat], when: [ansible_os_family == 'Debian']}
    - {role: unattended_upgrades, tags: [default, unattended, unattended_upgrades, security], become: true, when: ansible_distribution == 'Debian'}
    - {role: do1jlr.rtl_nic_firmware, tags: [apu, rtl_nic, firmware]}
    - {role: do1jlr.avahi_client, tags: [avahi, avahi_client]}

- name: user specific roles for all hosts
  hosts: all
  roles:
    - {role: do1jlr.users, tags: [default, init, users, web]}
    - {role: dotfiles, tags: [default, dotfiles]}
    - {role: do1jlr.auth, tags: [default, init, users, web]}
    - {role: do1jlr.sshd, tags: [default, init, users, sshd]}
    - {role: geerlingguy.firewall, tags: [default, firewall], become: true}
    - {role: robertdebock.fail2ban, tags: [default, fail2ban], become: true}

- name: deploy web config
  hosts: web
  roles:
    - {role: do1jlr.webhost, tags: [web, webhost], become: true}
    - {role: acmetool_fix, tags: [web, acmetool]}
    - {role: do1jlr.acmetool, tags: [web, acmetool], become: true}
    - {role: do1jlr.nginx, tags: [web, nginx]}
    - {role: do1jlr.mysql, tags: [web, git, mysql], become: true}
    - {role: do1jlr.gitea, tags: [web, gitea, git]}

- name: deploy dns resolver
  hosts: resolver
  roles:
    - {role: unbound, tags: [mail, unbound]}

- name: deploy mail config
  hosts: mail
  roles:
    - {role: do1jlr.mysql, tags: [mail, mysql, mariadb], become: true}
    - {role: do1jlr.webhost, tags: [mail, webhost], become: true}
    - {role: acmetool_fix, tags: [mail, acmetool]}
    - {role: do1jlr.acmetool, tags: [mail, acmetool], become: true}
    - {role: do1jlr.nginx, tags: [mail, nginx]}
    - {role: do1jlr.mailserver_preperation, tags: [mail, mailserver_preperation, prep, mailserver]}
    - {role: do1jlr.dovecot, tags: [mail, dovecot, mailserver_dovecot]}
    - {role: postfix, tags: [mail, postfix]}
    - {role: do1jlr.rspamd, tags: [mail, rspamd]}
    - {role: do1jlr.weechat, tags: [irc, weechat]}

- name: setup luna.l3d.ch host
  hosts: luna.l3d.ch
  roles: []
#    - {role: do1jlr.ovh_dyndns, tags: [ovh, dns, dyndns]}
Initial commit 2020-12-12 23:03:33 +01:00			`---`
Update submodules and add versionscheck 2021-01-14 22:29:57 +01:00			`- name: check if ansible is not to old`
			`hosts: localhost`
			`roles:`
improve yaml linting 2021-01-31 16:50:41 +01:00			`- {role: do1jlr.ansible_version, tags: [default, version, default, always], gather_facts: false}`
Update submodules and add versionscheck 2021-01-14 22:29:57 +01:00
update users 2020-12-22 23:53:15 +01:00			`- name: general roles for all hosts`
Initial commit 2020-12-12 23:03:33 +01:00			`hosts: all`
			`roles:`
renaming role paths 2021-04-18 23:18:30 +02:00			`- {role: do1jlr.base, tags: [default, packages, base]}`
improve yaml linting 2021-01-31 16:50:41 +01:00			`- {role: ranger, tags: [packages, ranger]}`
			`- {role: bat, tags: [packages, bat], when: [ansible_os_family == 'Debian']}`
			`- {role: unattended_upgrades, tags: [default, unattended, unattended_upgrades, security], become: true, when: ansible_distribution == 'Debian'}`
update firmware on apu1 2021-09-01 03:13:26 +02:00			`- {role: do1jlr.rtl_nic_firmware, tags: [apu, rtl_nic, firmware]}`
improve mdns options 2021-09-17 00:02:30 +02:00			`- {role: do1jlr.avahi_client, tags: [avahi, avahi_client]}`
update users 2020-12-22 23:53:15 +01:00
			`- name: user specific roles for all hosts`
			`hosts: all`
			`roles:`
update role names 2021-09-19 23:29:34 +02:00			`- {role: do1jlr.users, tags: [default, init, users, web]}`
improve yaml linting 2021-01-31 16:50:41 +01:00			`- {role: dotfiles, tags: [default, dotfiles]}`
update role names 2021-09-19 23:29:34 +02:00			`- {role: do1jlr.auth, tags: [default, init, users, web]}`
			`- {role: do1jlr.sshd, tags: [default, init, users, sshd]}`
improve yaml linting 2021-01-31 16:50:41 +01:00			`- {role: geerlingguy.firewall, tags: [default, firewall], become: true}`
			`- {role: robertdebock.fail2ban, tags: [default, fail2ban], become: true}`
web site deployment ongoing 2020-12-23 01:17:14 +01:00
			`- name: deploy web config`
			`hosts: web`
			`roles:`
cleanup variables and permissions 2021-05-09 03:06:44 +02:00			`- {role: do1jlr.webhost, tags: [web, webhost], become: true}`
improve yaml linting 2021-01-31 16:50:41 +01:00			`- {role: acmetool_fix, tags: [web, acmetool]}`
cleanup variables and permissions 2021-05-09 03:06:44 +02:00			`- {role: do1jlr.acmetool, tags: [web, acmetool], become: true}`
rename and adjust some roles, add new domain 2021-02-06 17:48:53 +01:00			`- {role: do1jlr.nginx, tags: [web, nginx]}`
update mysql role 2021-09-18 18:54:34 +02:00			`- {role: do1jlr.mysql, tags: [web, git, mysql], become: true}`
renaming role paths 2021-04-18 23:18:30 +02:00			`- {role: do1jlr.gitea, tags: [web, gitea, git]}`
improve website collection 2021-01-01 02:52:42 +01:00
adding luna 2021-07-16 19:55:33 +02:00			`- name: deploy dns resolver`
			`hosts: resolver`
			`roles:`
			`- {role: unbound, tags: [mail, unbound]}`

try to do smth. with mail 2021-01-02 02:03:34 +01:00			`- name: deploy mail config`
			`hosts: mail`
			`roles:`
update mysql role 2021-09-18 18:54:34 +02:00			`- {role: do1jlr.mysql, tags: [mail, mysql, mariadb], become: true}`
cleanup variables and permissions 2021-05-09 03:06:44 +02:00			`- {role: do1jlr.webhost, tags: [mail, webhost], become: true}`
improve yaml linting 2021-01-31 16:50:41 +01:00			`- {role: acmetool_fix, tags: [mail, acmetool]}`
cleanup variables and permissions 2021-05-09 03:06:44 +02:00			`- {role: do1jlr.acmetool, tags: [mail, acmetool], become: true}`
rename and adjust some roles, add new domain 2021-02-06 17:48:53 +01:00			`- {role: do1jlr.nginx, tags: [mail, nginx]}`
improve yaml linting 2021-01-31 16:50:41 +01:00			`- {role: do1jlr.mailserver_preperation, tags: [mail, mailserver_preperation, prep, mailserver]}`
			`- {role: do1jlr.dovecot, tags: [mail, dovecot, mailserver_dovecot]}`
			`- {role: postfix, tags: [mail, postfix]}`
			`- {role: do1jlr.rspamd, tags: [mail, rspamd]}`
Add weechat 2021-05-27 16:19:52 +02:00			`- {role: do1jlr.weechat, tags: [irc, weechat]}`
try ovh... failing 2021-08-13 01:46:22 +02:00
			`- name: setup luna.l3d.ch host`
			`hosts: luna.l3d.ch`
			`roles: []`
			`# - {role: do1jlr.ovh_dyndns, tags: [ovh, dns, dyndns]}`