diff options
| author | Lars Wirzenius <liw@liw.fi> | 2022-08-20 18:19:41 +0300 |
|---|---|---|
| committer | Lars Wirzenius <liw@liw.fi> | 2022-08-20 18:19:41 +0300 |
| commit | 1f56dee48ce0dffedb6b60eae0965e8151f34061 (patch) | |
| tree | 77f91d7f50d5e403b72f251f2fd1145cb53ab4f2 | |
| parent | 20f69ab3f2a05499cc78ac96c10170690802b423 (diff) | |
| download | ansibleness-1f56dee48ce0dffedb6b60eae0965e8151f34061.tar.gz | |
qotom: add
Sponsored-by: author
| -rw-r--r-- | ansible/hosts | 2 | ||||
| -rw-r--r-- | ansible/qotom.yml | 26 | ||||
| -rw-r--r-- | v-i/qotom-spec.yaml | 15 |
3 files changed, 42 insertions, 1 deletions
diff --git a/ansible/hosts b/ansible/hosts index 4068cf6..4348c29 100644 --- a/ansible/hosts +++ b/ansible/hosts @@ -4,7 +4,7 @@ exolobe2 stamina x220 kea -puomi +qotom solace atuin ansible_ssh_host=atuin.liw.fi diff --git a/ansible/qotom.yml b/ansible/qotom.yml new file mode 100644 index 0000000..160f449 --- /dev/null +++ b/ansible/qotom.yml @@ -0,0 +1,26 @@ +- hosts: qotom + remote_user: root + roles: + - role: sane_debian_system + - role: sshd + - role: ssd + - role: unix_users + - role: puomi + vars: + ansible_python_interpreter: /usr/bin/python3 + + sane_debian_system_version: 2 + sane_debian_system_hostname: "{{ inventory_hostname }}" + sane_debian_system_codename: bullseye + sane_debian_system_timezone: Europe/Helsinki + + unix_users_version: 2 + unix_users: + - username: liw + comment: Lars Wirzenius + + sshd_version: 1 + sshd_host_key: "{{ lookup('pipe', 'sshca host private-key qotom') }}" + sshd_host_cert: "{{ lookup('pipe', 'sshca host certify liw.fi/ca/host/v3 qotom') }}" + sshd_user_ca_pub: "{{ lookup('pipe', 'sshca ca public-key liw.fi/ca/user/v3') }}" + diff --git a/v-i/qotom-spec.yaml b/v-i/qotom-spec.yaml new file mode 100644 index 0000000..23e722b --- /dev/null +++ b/v-i/qotom-spec.yaml @@ -0,0 +1,15 @@ +hostname: qotom +drive: /dev/sda +ansible_vars: + host_key: | + -----BEGIN OPENSSH PRIVATE KEY----- + b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW + QyNTUxOQAAACBb1EpgwZ1snHx38tQIWjg5O/cnpVWipTZpGcWQHtcmjwAAAIjOAeqazgHq + mgAAAAtzc2gtZWQyNTUxOQAAACBb1EpgwZ1snHx38tQIWjg5O/cnpVWipTZpGcWQHtcmjw + AAAEBhCtpBXjQkLAgy7exucw1mx8BvwkmxQq3fy6CxaoMRtlvUSmDBnWycfHfy1AhaODk7 + 9yelVaKlNmkZxZAe1yaPAAAAAAECAwQF + -----END OPENSSH PRIVATE KEY----- + host_cert: | + ssh-ed25519-cert-v01@openssh.com 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 /tmp/.tmpYrs8LV/sub.pub + user_pub: | + ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPQe6lsTapAxiwhhEeE/ixuK+5N8esCsMWoekQqjtxjP liw personal systems |