80 lines
2.2 KiB
YAML
Raw Normal View History

2017-07-31 23:07:30 +03:00
---
- name: Ensure Docker repository is enabled (CentOS)
template:
src: "{{ role_path }}/files/yum.repos.d/{{ item }}"
dest: "/etc/yum.repos.d/{{ item }}"
owner: "root"
group: "root"
mode: 0644
with_items:
- docker-ce.repo
when: ansible_distribution == 'CentOS'
- name: Ensure Docker's RPM key is trusted
rpm_key:
state: present
key: https://download.docker.com/linux/centos/gpg
when: ansible_distribution == 'CentOS'
- name: Ensure yum packages are installed (CentOS)
2017-07-31 23:07:30 +03:00
yum: name="{{ item }}" state=latest update_cache=yes
with_items:
- bash-completion
- docker-ce
- docker-python
- firewalld
2017-07-31 23:07:30 +03:00
- ntp
when: ansible_distribution == 'CentOS'
- name: Ensure APT usage dependencies are installed (Debian)
apt:
name: "{{ item }}"
state: present
update_cache: yes
with_items:
- apt-transport-https
- ca-certificates
when: ansible_os_family == 'Debian'
- name: Ensure Docker's APT key is trusted (Debian)
apt_key:
url: https://download.docker.com/linux/ubuntu/gpg
id: 9DC858229FC7DD38854AE2D88D81803C0EBFCD88
state: present
register: add_repository_key
ignore_errors: true
when: ansible_os_family == 'Debian'
- name: Ensure Docker repository is enabled (Debian)
apt_repository:
repo: "deb https://download.docker.com/linux/{{ ansible_distribution|lower }} {{ ansible_distribution_release }} stable"
state: present
update_cache: yes
when: ansible_os_family == 'Debian'
- name: Ensure APT packages are installed (Debian)
apt: name="{{ item }}" state=latest update_cache=yes
with_items:
- bash-completion
- docker-ce
- python-docker
- ntp
when: ansible_os_family == 'Debian'
2017-07-31 23:07:30 +03:00
- name: Ensure firewalld is started and autoruns
service: name=firewalld state=started enabled=yes
when: ansible_os_family == 'RedHat'
2017-07-31 23:07:30 +03:00
- name: Ensure Docker is started and autoruns
service: name=docker state=started enabled=yes
2017-07-31 23:07:30 +03:00
- name: Ensure ntpd is started and autoruns
service:
name: "{{ 'ntpd' if ansible_os_family == 'RedHat' else 'ntp' }}"
state: started
enabled: yes
2017-07-31 23:07:30 +03:00
- name: Ensure SELinux disabled
selinux: state=disabled
when: ansible_os_family == 'RedHat'