Ansible Infrastructure Repository

🚀✨🙌💡🔥🌟🎉🥇👏

this is my ansible repo for managing infrastructure and deployments including:

• linux system config
• k3s cluster setup
• postgresql server
• all other deployments are managed with kustomize for deployment on k3s

directory structure:

• inventories: holds different environment inventories (e.g., production, staging)
• roles: contains reusable Ansible roles for various services and configurations
• playbooks: contains playbooks for deploying and managing services

Getting Started

• start mtn-shell (see github.com/mtnstar/mtn-shell)
• clone this repository
• ansible-galaxy role install -r requirements.yml -p ./.galaxy/roles
• copy default inventory directory and customize it (e.g. ./inventories/default -> ./inventories/production)
• add desired public ssh keys to inventories/production/ssh_keys/*.pub

Bootstrap a new ubuntu system

after bootstrapping new ubuntu system with cloud-init:

1. add new host to inventory (e.g. inventories/production/hosts)
2. specify ansible_user and ansible_port if needed
3. run ansible-playbook -i inventories/production/hosts playbooks/linux_bootstrap.yml -l mynewhost
4. remove ansible_user in inventory hosts
5. apply linux_base playbook to set up basic linux configuration and users: ansible-playbook -i inventories/production/hosts playbooks/linux_base.yml -l mynewhost
6. remove ansible_port if you specified it in inventory hosts

Dynamic Role Tasks

for every role, the tasks/main.yml is symlinked from roles/shared/tasks/dynamic_tasks_main.yml. This enables us to split up role's tasks easely into seperate files which makes the code cleaner. It also makes it possible to only run a role's specific tasks by defining param tasks:

ansible-playbook -i inventories/production/hosts playbooks/linux_bootstrap.yml -e '{task_list: ["2_user"]}'

just add new task ymls in the format 1_mynewtask.yml to roles/$ROLE/tasks/ where as the leading number defines the order the task is being executed.

• see roles/linux_base/tasks for an example
• when creating a new role, symlink roles/shared/tasks/dynamic_tasks_main.yml to it's tasks/main.yml
• add main.yml path to .prettierignore and .mega-linter.yml since it hates symlinks ;)

checkout roles/linux_base/tasks/ for an example.

Running molecule tests

inside mtn-shell in this repo run molecule test -s linux_base

see Molecule Testing for more details on how to run molecule tests.