become root for filesystem

.github/workflows/infra.yaml

@@ -72,4 +72,4 @@ jobs:
           PROXMOX_TOKEN_ID: ${{ secrets.PROXMOX_TOKEN_ID }}
           PROXMOX_TOKEN_SECRET: ${{ secrets.PROXMOX_TOKEN_SECRET }}
           SSH_PUBLIC: ${{ secrets.SSH_PUBLIC }}
-        run: ansible-playbook --inventory ./inventory ${{ steps.playbooks.outputs.to_run }}
+        run: ansible-playbook --inventory ./inventory ${{ steps.playbooks.outputs.to_run }} -vv

infra/cloud/0000_proxmox_playbook.yaml

@@ -1,5 +1,5 @@
-- name: Provision joplin Proxmox VM
+- name: Provision cloud Proxmox VM
-  hosts: joplin
+  hosts: cloud
   connection: ansible.builtin.local
   gather_facts: false
   vars:
@@ -77,16 +77,22 @@
           community.general.proxmox_kvm:
             state: started
           register: start
-        - name: Wait 3 min # Initial apt update, apt upgrade, cloud-init
+        - name: Wait 1 min # Initial apt update, apt upgrade, cloud-init
           ansible.builtin.wait_for:
-            timeout: 180
+            timeout: 60
 
     # VM Configuration
-    - name: Resize disk
+    - name: Resize root disk
       community.general.proxmox_disk:
         disk: scsi0
-        size: 64G
+        size: 16
         state: resized
+    - name: Create data disk
+      community.general.proxmox_disk:
+        disk: scsi1
+        backup: true
+        storage: nvme
+        size: 2048
     - name: Update VM
       community.general.proxmox_kvm:
         update: true

infra/cloud/0001_initialise_playbook.yaml

@@ -0,0 +1,47 @@
+- name: Initialise VM
+  hosts: cloud
+  gather_facts: false
+  tasks:
+    - name: Wait for connection
+      ansible.builtin.wait_for_connection:
+        timeout: 300
+    - name: Install system packages
+      ansible.builtin.apt:
+        update_cache: true
+        pkg:
+          - qemu-guest-agent
+          - parted
+      become: true
+    - name: Enable qemu-guest-agent
+      ansible.builtin.systemd:
+        name: qemu-guest-agent
+        state: started
+        enabled: true
+      become: true
+
+    - name: Create data partition
+      community.general.parted:
+        device: /dev/disk/by-path/pci-0000:00:05.0-scsi-0:0:0:1
+        label: gpt
+        name: data
+        number: 1
+        state: present
+      become: true
+    - name: Create data filesystem
+      community.general.filesystem:
+        dev: /dev/disk/by-path/pci-0000:00:05.0-scsi-0:0:0:1-part1
+        fstype: ext4
+      become: true
+    - name: Mount data partition
+      ansible.posix.mount:
+        src: /dev/disk/by-path/pci-0000:00:05.0-scsi-0:0:0:1-part1
+        path: /mnt/data
+        fstype: ext4
+        state: mounted
+      become: true
+    - name: Set data partition permissions
+      ansible.builtin.file:
+        path: /mnt/data
+        owner: debian
+        group: debian
+      become: true

infra/cloud/0002_docker_playbook.yaml

@@ -0,0 +1,46 @@
+- name: Install software
+  hosts: cloud
+  gather_facts: false
+  tasks:
+    - name: Wait for connection
+      ansible.builtin.wait_for_connection:
+        timeout: 300
+    - name: Install dependencies
+      ansible.builtin.apt:
+        update_cache: true
+        pkg:
+          - curl
+          - python3-apt
+          - gpg
+      become: true
+    - name: Add docker key
+      ansible.builtin.apt_key:
+        url: https://download.docker.com/linux/debian/gpg
+        keyring: /etc/apt/keyrings/docker.gpg
+      become: true
+    - name: Add docker repo
+      ansible.builtin.apt_repository:
+        repo: deb [arch=amd64 signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/debian bookworm stable
+      become: true
+    - name: Install docker
+      ansible.builtin.apt:
+        update_cache: true
+        pkg:
+          - docker-ce
+          - docker-ce-cli
+          - containerd.io
+          - docker-buildx-plugin
+          - docker-compose-plugin
+      become: true
+    - name: Enable docker
+      ansible.builtin.systemd:
+        name: docker
+        state: started
+        enabled: true
+      become: true
+    - name: Add user to docker group
+      ansible.builtin.user:
+        user: debian
+        groups:
+          - docker
+        append: true

infra/joplin/0001_software_playbook.yaml

@@ -1,25 +0,0 @@
-- name: Setup Software
-  hosts: joplin
-  gather_facts: false
-  tasks:
-    - name: Wait for connection
-      ansible.builtin.wait_for_connection:
-        timeout: 300
-    - name: Test some stuff
-      ansible.builtin.shell: |
-        touch ~/hmm
-        echo test > ~/test
-        echo test2 >> ~/test
-        mkdir ~/dir
-        touch ~/dir/testing
-    - name: Install some stuff
-      ansible.builtin.apt:
-        update_cache: true
-        name: qemu-guest-agent
-      become: true
-    - name: Enable some stuff
-      ansible.builtin.systemd:
-        name: qemu-guest-agent
-        state: started
-        enabled: true
-      become: true

inventory/proxmox.yaml

@@ -8,9 +8,9 @@ proxmox:
             pve2.mgmt.home.local.koval.net:
         managed:
           children:
-            joplin:
+            cloud:
               hosts:
-                joplin2.srv.home.local.koval.net:
+                cloud.srv.home.local.koval.net:
           vars:
             ansible_user: debian
             ansible_ssh_private_key_file: ~/.ssh/id_rsa