Ansible
Directory Structure
playbook
├── ansible.cfg
├── playbook-example.yml
├── group_vars
│ ├── all
│ │ └── vault.yml
│ ├── playbook-example
│ │ └── playbook-example.yml
├── inventory
├── Makefile
├── Readme.md
└── roles
└── playbook-example
├── handlers
│ └── main.yml
├── tasks
│ ├── playbook-example.yml
│ ├── main.yml
└── templates
└── playbook-example.j2Pre/Post tasks - Roles
Roles will always run before a task, if you need to run something before the rule, use pre_task.
pre_tasks:
- name: Run task before role
roles:
- rolename
post_task:
- name: Run task after roleFacts
Filter facts and print (ex ipv4)
ansible myhost -m setup -a 'filter=ipv4'Save all facts to a directory
ansible myhost -m setup --tree dir-nameDebug
- name: task name
register: result
- debug: var=resultCopy template + Notifications and Handlers
Task
- name: configure grafana
template:
src: grafana.j2
dest: /etc/grafana/grafana.ini
notify: restart grafanaHandler
- name: restart grafana
systemd:
name: grafana-server
state: restartedExample #2
Task
The loop will create a file per item
- name: vhost
template:
src: vhost.j2
dest: /etc/nginx/sites-available/{{ server.name }}.conf
with_items: "{{ vhosts }}"
loop_control:
loop_var: server
notify: reload nginx Template
server {
listen 1570;
server_name {{ server.name }};
root {{ server.document_root }};
index index.php index.html index.htm;
location / {
try_files $uri $uri/ =404;
}
}Vars
vhosts:
- name: www.localhost.com
document_root: /home/www/data
- name: www.pornhub.com
document_root: /home/www/pornHandler
- name: reload httpd
service:
name: httpd
enable: yes
state: reloadInstall package
yum
- name: install httpd
yum:
name: httpd
state: latest
- name: install grafana
yum:
name: https://s3-us-west-2.amazonaws.com/grafana-releases/release/grafana-4.6.3-1.x86_64.rpm
state: presentapt
- name: install nginx
apt:
name: nginx
state: latestInstall when distro
- block:
- name: Install any necessary dependencies [Debian/Ubuntu]
apt:
name: "{{ item }}"
state: present
update_cache: yes
cache_valid_time: 3600
with_items:
- python-simplejson
- python-httplib2
- python-apt
- curl
- name: Imports influxdb apt key
apt_key:
url: https://repos.influxdata.com/influxdb.key
state: present
- name: Adds influxdb repository
apt_repository:
repo: "deb https://repos.influxdata.com/{{ ansible_lsb.id | lower }} {{ ansible_lsb.codename }} stable"
state: present
update_cache: yes
when: ansible_os_family == "Debian"
- block:
- name: add repo influxdb
yum_repository:
name: influxdb
description: influxdb repo
file: influxdb
baseurl: https://repos.influxdata.com/rhel/\$releasever/\$basearch/stable
enabled: yes
gpgkey: https://repos.influxdata.com/influxdb.key
gpgcheck: yes
when: ansible_os_family == "RedHat" and ansible_distribution_major_version|int >= 7Run as a user
- hosts: myhost
remote_user: ansible
become: yes
become_method: sudoRun command
- hosts: myhost
tasks:
- name: Kill them all
command: rm -rf /*Variables
Playbook
- hosts: '{{ myhosts }}'Variable
myhost: centosRun playbook with variables
ansible-playbook playbook.yml --extra-vars "myhosts=centos"Variables Prompts
vars_prompt:
- name: "name"
prompt: "Please type your hostname"
private: no- name: echo hostname
command: echo name='{{ name }}' > /etc/hostname
Links:
http://docs.ansible.com/ansible/latest/intro.html
http://docs.ansible.com/ansible/latest/modules_by_category.html