4818ef25ef
* Set Password mg - untested * Playbook set Password mg * Keepass - Kennwort Update: User linux: mg + private Key ansible-user * Passwort Var Linux user mg umbenannt * Bootstrap: KennwörterVars angepasst + setze Password mg IMMER
37 lines
852 B
YAML
37 lines
852 B
YAML
---
|
|
### mgrote.restic
|
|
restic_folders_to_backup: /usr/local /etc /root /var/www /home /var/lib/docker
|
|
### oefenweb.ufw
|
|
ufw_rules:
|
|
# - rule: allow
|
|
# to_port: 22
|
|
# protocol: tcp
|
|
# comment: 'ssh'
|
|
# - rule: allow
|
|
# to_port: 3000
|
|
# comment: 'rssbridge'
|
|
- rule: allow
|
|
comment: 'alles erlauben'
|
|
### geerlingguy.docker
|
|
docker_users:
|
|
- mg
|
|
- root
|
|
- ansible-user
|
|
### ryandaniels.create_users
|
|
users:
|
|
- username: mg
|
|
password: "{{ lookup('keepass', 'linux_mg_user_password_hash', 'password') }}"
|
|
update_password: on_create
|
|
ssh_key: "{{ lookup('keepass', 'ssh_pubkey_mg', 'password') }}"
|
|
use_sudo: yes
|
|
use_sudo_nopass: yes
|
|
user_state: present
|
|
groups: ssh, sudo, docker
|
|
servers:
|
|
- production
|
|
- staging
|
|
- test
|
|
- virt
|
|
- cephq
|
|
- k8s
|