GitHub actions

.github/workflows/ci.yml

@@ -0,0 +1,65 @@
+---
+name: Molecule
+on:
+  - push
+  - pull_request
+
+env:
+  CI: true
+
+defaults:
+  run:
+    working-directory: 'constructorfleet.ansible-common'
+
+jobs:
+  lint:
+    name: Lint
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check out the codebase.
+        uses: actions/checkout@v2
+        with:
+          path: 'constructorfleet.ansible-common'
+
+      - name: Set up Python 3.
+        uses: actions/setup-python@v2
+        with:
+          python-version: '3.8'
+
+      - name: Install test dependencies.
+        run: pip3 install yamllint
+
+      - name: Lint code.
+        run: |
+          yamllint -f parsable .
+
+  molecule:
+    name: Molecule
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        distro:
+          - centos7
+          - centos8
+#          - ubuntu2004
+#          - ubuntu1804
+    steps:
+      - name: Check out the codebase.
+        uses: actions/checkout@v2
+        with:
+          path: 'constructorfleet.ansible-common'
+
+      - name: Set up Python 3.
+        uses: actions/setup-python@v2
+        with:
+          python-version: '3.8'
+
+      - name: Install test dependencies.
+        run: python -m pip install ansible==5.1.0 "molecule[docker]" docker
+
+      - name: Run Molecule tests.
+        run: python -m molecule test
+        env:
+          PY_COLORS: '1'
+          ANSIBLE_FORCE_COLOR: '1'
+          MOLECULE_DISTRO: ${{ matrix.distro }}

.github/workflows/publish.yml

@@ -0,0 +1,18 @@
+name: Publish Role to Ansible Galaxy
+on:
+  release:
+    types: [ created ]
+jobs:
+  publish:
+    name: Publish to Ansible Galaxy
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+    steps:
+      - uses: actions/checkout@v2
+      - name: Publish Ansible role to Galaxy
+        uses: robertdebock/[email protected]
+        with:
+          galaxy_api_key: ${{ secrets.GALAXY_API_TOKEN }}
+

.github/workflows/tag-on-merge.yml

@@ -0,0 +1,24 @@
+name: Tag on Merge
+
+on:
+  push:
+    branches: [ main ]
+
+env:
+  CI: true
+
+jobs:
+  tag:
+    name: Tag Role
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v2
+        with:
+          path: "${{ github.repository }}"
+      - name: Bump version and push tag
+        uses: anothrNick/[email protected]
+        env:
+          GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}
+          WITH_V: true
+          DEFAULT_BUMP: minor

.gitignore

@@ -0,0 +1,2 @@
+venv/
+.idea/

.yamllint

@@ -0,0 +1,38 @@
+---
+extends: default
+
+ignore: |
+  .github/
+  venv/
+
+rules:
+  braces:
+    max-spaces-inside: 1
+    level: error
+  brackets:
+    max-spaces-inside: 1
+    level: error
+  colons:
+    max-spaces-after: -1
+    level: error
+  commas:
+    max-spaces-after: -1
+    level: error
+  comments: enable
+  comments-indentation: enable
+  document-start: enable
+  empty-lines:
+    max: 1
+    level: error
+  hyphens:
+    level: error
+  indentation:
+    spaces: 2
+  key-duplicates: enable
+  line-length: disable
+  new-line-at-end-of-file: enable
+  new-lines:
+    type: unix
+  trailing-spaces: enable
+  truthy:
+    check-keys: false

README.md

@@ -16,12 +16,10 @@
 
 Deploy common configurations and packages to servers.
 
-
 ## Requirements
 
 N/A
 
-
 ## Role Variables
 
 #### defaults/main.yml
@@ -88,7 +86,7 @@ N/A
 ```
 - name: Deploy common server configurations
   hosts: all
-  become: True
+  become: true
   remote_user: root
   tasks:
     - include_role:

common.yml

@@ -1,8 +1,9 @@
 ---
+
 - name: Deploy common server configurations
   hosts: all
   remote_user: root
-  gather_facts: yes
+  gather_facts: true
 
   tasks:
     - import_role:

defaults/main.yml

@@ -1,4 +1,5 @@
 ---
+
 consoletty:
 serialtty:
 
@@ -7,7 +8,7 @@ timezone: UTC
 ssh_users: {}
 ssh_groups: {}
 
-common_enable_cockpit: False
+common_enable_cockpit: false
 
 common_pkgs: []
 

fix-centos-user.yml

@@ -1,7 +1,9 @@
+---
+
 - name: fix root
   hosts: all
   remote_user: centos
-  become: True
+  become: true
   tasks:
     - import_role:
         name: common

fix-ubuntu-user.yml

@@ -1,7 +1,9 @@
+---
+
 - name: fix root
   hosts: all
   remote_user: ubuntu
-  become: True
+  become: true
   tasks:
     - import_role:
         name: common

handlers/main.yml

@@ -1,8 +1,9 @@
 ---
+
 - name: "restart_sshd"
   set_fact:
-    sshd_require_restart: True
+    sshd_require_restart: true
 
 - name: "update_grub_config"
   set_fact:
-    grub_require_rebuild: True
+    grub_require_rebuild: true

meta/main.yml

@@ -1,43 +1,14 @@
 galaxy_info:
   author: Alan Janis
   description: Deploy Common server configurations and packages
+  role_name: common
+  namespace: constructorfleet
+  issue_tracker_url: https://github.com/constructorfleet/ansible-common/issue/tracker
 
-  # If the issue tracker for your role is not on github, uncomment the
-  # next line and provide a value
-  # issue_tracker_url: http://example.com/issue/tracker
-
-  # Choose a valid license ID from https://spdx.org - some suggested licenses:
-  # - BSD-3-Clause (default)
-  # - MIT
-  # - GPL-2.0-or-later
-  # - GPL-3.0-only
-  # - Apache-2.0
-  # - CC-BY-4.0
   license: MIT
 
   min_ansible_version: 2.9
 
-  # If this a Container Enabled role, provide the minimum Ansible Container version.
-  # min_ansible_container_version:
-
-  #
-  # Provide a list of supported platforms, and for each platform a list of versions.
-  # If you don't wish to enumerate all versions for a particular platform, use 'all'.
-  # To view available platforms and versions (or releases), visit:
-  # https://galaxy.ansible.com/api/v1/platforms/
-  #
-  # platforms:
-  # - name: Fedora
-  #   versions:
-  #   - all
-  #   - 25
-  # - name: SomePlatform
-  #   versions:
-  #   - all
-  #   - 1.0
-  #   - 7
-  #   - 99.99
-
   platforms:
     - name: Ubuntu
       versions:
@@ -47,14 +18,8 @@ galaxy_info:
 
   galaxy_tags:
     - common
-    - wwt
-    # List tags for your role here, one per line. A tag is a keyword that describes
-    # and categorizes the role. Users find roles by searching for tags. Be sure to
-    # remove the '[]' above, if you add tags to this list.
-    #
-    # NOTE: A tag is limited to a single word comprised of alphanumeric characters.
-    #       Maximum 20 tags per role.
+    - ssh
+    - serial-over-lan
+    - cockpit
 
 dependencies: []
-  # List your role dependencies here, one per line. Be sure to remove the '[]' above,
-  # if you add dependencies to this list.

molecule/default/INSTALL.rst

@@ -0,0 +1,22 @@
+*******
+Docker driver installation guide
+*******
+
+Requirements
+============
+
+* Docker Engine
+
+Install
+=======
+
+Please refer to the `Virtual environment`_ documentation for installation best
+practices. If not using a virtual environment, please consider passing the
+widely recommended `'--user' flag`_ when invoking ``pip``.
+
+.. _Virtual environment: https://virtualenv.pypa.io/en/latest/
+.. _'--user' flag: https://packaging.python.org/tutorials/installing-packages/#installing-to-the-user-site
+
+.. code-block:: bash
+
+    $ python3 -m pip install 'molecule[docker]'

molecule/default/converge.yml

@@ -0,0 +1,46 @@
+---
+- name: Converge
+  hosts: all
+  vars:
+    configure_ssh: false
+    storage_backend: NONE
+    host_is_container: true
+    enable_mdns_reflection: true
+    common_enable_cockpit: true
+  pre_tasks:
+    - name: Update apt cache.
+      ansible.builtin.apt:
+        update_cache: true
+        cache_valid_time: 600
+      when: ansible_os_family == 'Debian'
+
+    - name: Ensure Firewalld is installed.
+      ansible.builtin.package:
+        name: firewalld
+        state: present
+      when: ansible_os_family == 'RedHat'
+
+    - name: Wait for systemd to complete initialization.  # noqa 303
+      ansible.builtin.command: systemctl is-system-running
+      register: systemctl_status
+      until: >
+        'running' in systemctl_status.stdout or
+        'degraded' in systemctl_status.stdout
+      retries: 30
+      delay: 5
+      when: ansible_service_mgr == 'systemd'
+      changed_when: false
+      failed_when: systemctl_status.rc > 1
+
+    - name: 'Restarting firewalld'
+      ansible.builtin.systemd:
+        name: firewalld
+        state: started
+        enabled: true
+        daemon_reload: true
+      when: ansible_os_family == 'RedHat'
+
+  tasks:
+    - name: Run common role
+      ansible.builtin.include_role:
+        name: constructorfleet.common