Secrets VM (#21)
All checks were successful
Infrastructure / Check and run Ansbile playbooks (push) Successful in 5m29s
All checks were successful
Infrastructure / Check and run Ansbile playbooks (push) Successful in 5m29s
Setup Infiscal according to https://infisical.com/docs/self-hosting/deployment-options/docker-compose . Contributes to #16. Reviewed-on: #21
This commit is contained in:
42
infra/secrets/0001_initialise_playbook.yaml
Normal file
42
infra/secrets/0001_initialise_playbook.yaml
Normal file
@@ -0,0 +1,42 @@
|
||||
- name: Initialise VM
|
||||
hosts: secrets
|
||||
gather_facts: false
|
||||
tasks:
|
||||
- name: Wait for connection
|
||||
ansible.builtin.wait_for_connection:
|
||||
timeout: 300
|
||||
- name: Install system packages
|
||||
ansible.builtin.apt:
|
||||
update_cache: true
|
||||
pkg:
|
||||
- qemu-guest-agent
|
||||
- parted
|
||||
become: true
|
||||
- name: Enable qemu-guest-agent
|
||||
ansible.builtin.systemd:
|
||||
name: qemu-guest-agent
|
||||
state: started
|
||||
enabled: true
|
||||
become: true
|
||||
|
||||
- name: Create data partition
|
||||
community.general.parted:
|
||||
device: /dev/disk/by-path/pci-0000:00:05.0-scsi-0:0:0:1
|
||||
label: gpt
|
||||
name: data
|
||||
number: 1
|
||||
state: present
|
||||
become: true
|
||||
- name: Create data filesystem
|
||||
community.general.filesystem:
|
||||
dev: /dev/disk/by-path/pci-0000:00:05.0-scsi-0:0:0:1-part1
|
||||
fstype: ext4
|
||||
become: true
|
||||
- name: Mount data partition
|
||||
ansible.posix.mount:
|
||||
src: /dev/disk/by-path/pci-0000:00:05.0-scsi-0:0:0:1-part1
|
||||
path: /var/lib/docker
|
||||
fstype: ext4
|
||||
opts: rw,errors=remount-ro,x-systemd.growfs
|
||||
state: mounted
|
||||
become: true
|
||||
Reference in New Issue
Block a user