From b059214c0aaed8a286cf3ec4602594dc31be9249 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Christer=20War=C3=A9n?= Date: Wed, 6 Aug 2025 15:57:26 +0300 Subject: [PATCH] Update data directory location to be static in root user directory --- init.sh | 24 ++++++++++++------------ tasks/deployer.yml | 28 ++++++++++++++-------------- tasks/installer.yml | 22 +++++++++++----------- tasks/maintenance.yml | 6 +++--- 4 files changed, 40 insertions(+), 40 deletions(-) diff --git a/init.sh b/init.sh index 1206dd0..d7186a6 100755 --- a/init.sh +++ b/init.sh @@ -35,32 +35,32 @@ ti-header "Asennetaan PVJJK 1.VOS TJAS Infran riippuvuudet APT-paketinhallinnall apt-get install -y python3-pip python3-venv jq git curl lsb-release echo -e "\n\n" -mkdir -p ~/.ssh/keys/pvjjk-1vos-tjas &> /dev/null -if [[ ! -f ~/.ssh/keys/pvjjk-1vos-tjas/infra ]] +mkdir -p /root/.ssh/keys/pvjjk-1vos-tjas &> /dev/null +if [[ ! -f /root/.ssh/keys/pvjjk-1vos-tjas/infra ]] then ti-header "Generoidaan SSH-avain Infra-repon käyttöön..." - ssh-keygen -f ~/.ssh/keys/pvjjk-1vos-tjas/infra -t ed25519 -N '' -C $(hostname --fqdn) + ssh-keygen -f /root/.ssh/keys/pvjjk-1vos-tjas/infra -t ed25519 -N '' -C $(hostname --fqdn) echo -e "\n\n" fi ti-header "Luodaan Ansiblelle virtuaalinen ympäristö..." -python3 -m venv ~/.venv/ansible +python3 -m venv /root/.venv/ansible echo -e "\n\n" ti-header "Asennetaan Ansiblen riippuvuudet..." -~/.venv/ansible/bin/pip3 install cryptography dnspython hvac jmespath netaddr pexpect +/root/.venv/ansible/bin/pip3 install cryptography dnspython hvac jmespath netaddr pexpect echo -e "\n\n" ti-header "Asennetaan Ansible..." -~/.venv/ansible/bin/pip3 install ansible +/root/.venv/ansible/bin/pip3 install ansible echo -e "\n\n" ti-header "Asennetaan Ansible kokoelmat..." -~/.venv/ansible/bin/ansible-galaxy collection install ansible.posix containers.podman --upgrade +/root/.venv/ansible/bin/ansible-galaxy collection install ansible.posix containers.podman --upgrade echo -e "\n\n" ti-header "Lisää SSH-avain Infra-repon käyttöön..." -cat ~/.ssh/keys/pvjjk-1vos-tjas/infra.pub +cat /root/.ssh/keys/pvjjk-1vos-tjas/infra.pub echo -n "Onko avain lisätty Github-repoon? [K/E]" while [[ -z $SSHKEY_QUESTION || ! -z $SSHKEY_QUESTION && $SSHKEY_QUESTION != "K" ]] @@ -69,8 +69,8 @@ do done echo -e "\n\n" -mkdir -p ~/.ansible/vault &> /dev/null -if [[ ! -f ~/.ansible/vault/pvjjk-1vos-tjas ]] +mkdir -p /root/.ansible/vault &> /dev/null +if [[ ! -f /root/.ansible/vault/pvjjk-1vos-tjas ]] then ti-header "Syötä Ansible Vaultin salasana..." echo -n "Salasana: " @@ -80,14 +80,14 @@ then if [[ ! -z $VAULT_PASSWORD ]] then - echo "$VAULT_PASSWORD" > ~/.ansible/vault/pvjjk-1vos-tjas + echo "$VAULT_PASSWORD" > /root/.ansible/vault/pvjjk-1vos-tjas fi done echo -e "\n\n" fi ti-header "Suoritetaan Infran asennus..." -~/.venv/ansible/bin/ansible-pull -U ssh://git@github.com/cwchristerw/tjas-infra -d ~/.ansible/pull/pvjjk-1vos-tjas/infra --accept-host-key --private-key ~/.ssh/keys/pvjjk-1vos-tjas/infra --vault-password-file ~/.ansible/vault/pvjjk-1vos-tjas tasks.yml -t installer +/root/.venv/ansible/bin/ansible-pull -U ssh://git@github.com/cwchristerw/tjas-infra -d /root/.ansible/pull/pvjjk-1vos-tjas/infra --accept-host-key --private-key /root/.ssh/keys/pvjjk-1vos-tjas/infra --vault-password-file /root/.ansible/vault/pvjjk-1vos-tjas tasks.yml -t installer echo -e "\n\n" echo " diff --git a/tasks/deployer.yml b/tasks/deployer.yml index 9092467..ad57567 100644 --- a/tasks/deployer.yml +++ b/tasks/deployer.yml @@ -2,7 +2,7 @@ - name: "Deployer - SSH - Add Authorized Keys" ansible.builtin.template: src: './files/ssh/authorized_keys' - dest: '~/.ssh/authorized_keys' + dest: '/root/.ssh/authorized_keys' tags: - ssh @@ -24,14 +24,14 @@ - name: "Deployer - Yggdrasil - Configure - Create Folder" ansible.builtin.file: - path: "~/data/yggdrasil/" + path: "/root/data/yggdrasil/" state: directory tags: - yggdrasil - name: "Deployer - Yggdrasil - Configure - Create Subfolders" ansible.builtin.file: - dest: '~/data/yggdrasil/{{ item.path }}' + dest: '/root/data/yggdrasil/{{ item.path }}' state: directory with_filetree: './files/yggdrasil/' loop_control: @@ -44,7 +44,7 @@ - name: "Deployer - Yggdrasil - Configure - Generating & Transferring Files" ansible.builtin.template: src: '{{ item.src }}' - dest: '~/data/yggdrasil/{{ item.path }}' + dest: '/root/data/yggdrasil/{{ item.path }}' register: deployerTaskY1 with_filetree: './files/yggdrasil/' loop_control: @@ -71,7 +71,7 @@ containers.podman.podman_image: name: pvjjk-1vos-tjas/nginx tag: latest - path: "~/data/yggdrasil" + path: "/root/data/yggdrasil" build: format: docker force: true @@ -120,7 +120,7 @@ - name: "Deployer - MariaDB - Create Folder" ansible.builtin.file: - path: ~/data/mariadb + path: /root/data/mariadb state: directory tags: - mariadb @@ -140,7 +140,7 @@ restart: on network: host volumes: - - "~/data/mariadb:/var/lib/mysql" + - "/root/data/mariadb:/var/lib/mysql" restart_policy: always env: MYSQL_ROOT_PASSWORD: "{{ config.mariadb.users.root.password }}" @@ -207,14 +207,14 @@ - name: "Deployer - PowerDNS - Configure - Create Folder" ansible.builtin.file: - path: "~/data/powerdns/" + path: "/root/data/powerdns/" state: directory tags: - powerdns - name: "Deployer - PowerDNS - Configure - Create Subfolders" ansible.builtin.file: - dest: '~/data/powerdns/{{ item.path }}' + dest: '/root/data/powerdns/{{ item.path }}' state: directory with_filetree: './files/powerdns/' loop_control: @@ -227,7 +227,7 @@ - name: "Deployer - PowerDNS - Configure - Generating & Transferring Files" ansible.builtin.template: src: '{{ item.src }}' - dest: '~/data/powerdns/{{ item.path }}' + dest: '/root/data/powerdns/{{ item.path }}' register: deployerTaskP1 with_filetree: './files/powerdns/' loop_control: @@ -253,7 +253,7 @@ network: host restart_policy: always volumes: - - "~/data/powerdns/config.conf:/etc/powerdns/pdns.conf:ro" + - /root/data/powerdns/config.conf:/etc/powerdns/pdns.conf:ro" when: - (deployerTaskP1 is defined and deployerTaskP1.changed) or deployerTaskP1 is undefined or (deployerTaskP2 is defined and deployerTaskP2.changed) or deployerTaskP2 is undefined tags: @@ -261,14 +261,14 @@ - name: "Deployer - Nginx - Configure - Create Folder" ansible.builtin.file: - path: "~/data/nginx/" + path: "/root/data/nginx/" state: directory tags: - nginx - name: "Deployer - Nginx - Configure - Create Subfolders" ansible.builtin.file: - dest: '~/data/nginx/{{ item.path }}' + dest: '/root/data/nginx/{{ item.path }}' state: directory with_filetree: './files/nginx/' loop_control: @@ -281,7 +281,7 @@ - name: "Deployer - Nginx - Configure - Generating & Transferring Files" ansible.builtin.template: src: '{{ item.src }}' - dest: '~/data/nginx/{{ item.path }}' + dest: '/root/data/nginx/{{ item.path }}' register: deployerTaskN1 with_filetree: './files/nginx/' loop_control: diff --git a/tasks/installer.yml b/tasks/installer.yml index b5b3324..205fa3b 100644 --- a/tasks/installer.yml +++ b/tasks/installer.yml @@ -12,14 +12,14 @@ - "task.stdout.find('0 upgraded, 0 newly installed, 0 to remove') == -1" - name: "Init : Python 3 : Configure - Virtual Environment : Test" - ansible.builtin.raw: "~/.venv/ansible/bin/pip3" + ansible.builtin.raw: "/root/.venv/ansible/bin/pip3" register: task632 changed_when: false failed_when: false - name: "Init : Python 3 : Configure - Virtual Environment : Delete" ansible.builtin.file: - path: "~/.venv/ansible" + path: "/root/.venv/ansible" state: absent when: - "task632.stdout.find(\"ModuleNotFoundError: No module named 'pip'\") != -1" @@ -29,7 +29,7 @@ name: pip state: latest extra_args: --upgrade - virtualenv: ~/.venv/ansible + virtualenv: /root/.venv/ansible virtualenv_command: "python3 -m venv" - name: "Installer : Tools : Install" @@ -102,22 +102,22 @@ name: ansible state: latest extra_args: --upgrade - virtualenv: ~/.venv/ansible + virtualenv: /root/.venv/ansible virtualenv_command: "python3 -m venv" tags: - ansible - name: "Installer : Ansible : Create Folder" ansible.builtin.file: - path: ~/bin + path: /root/bin state: directory tags: - ansible - name: "Installer : Ansible : Create Symbolic Links" ansible.builtin.file: - src: ~/.venv/ansible/bin/{{ binary }} - dest: ~/bin/{{ binary }} + src: /root/.venv/ansible/bin/{{ binary }} + dest: /root/bin/{{ binary }} state: link vars: binaries: @@ -144,7 +144,7 @@ name: "{{ library }}" state: latest extra_args: --upgrade - virtualenv: ~/.venv/ansible + virtualenv: /root/.venv/ansible virtualenv_command: "python3 -m venv" vars: libraries: @@ -164,7 +164,7 @@ name: pymysql state: latest extra_args: --upgrade - virtualenv: ~/.venv/ansible + virtualenv: /root/.venv/ansible virtualenv_command: "python3 -m venv" tags: - mariadb @@ -184,7 +184,7 @@ name: "PVJJK 1.VOS TJAS - Infra - Maintenance" hour: "*/3" minute: "0" - job: "~/.venv/ansible/bin/ansible-pull -U ssh://git@github.com/cwchristerw/tjas-infra -d ~/.ansible/pull/pvjjk-1vos-tjas/infra --accept-host-key --private-key ~/.ssh/keys/pvjjk-1vos-tjas/infra --vault-password-file ~/.ansible/vault/pvjjk-1vos-tjas tasks.yml -t maintenance" + job: "/root/.venv/ansible/bin/ansible-pull -U ssh://git@github.com/cwchristerw/tjas-infra -d /root/.ansible/pull/pvjjk-1vos-tjas/infra --accept-host-key --private-key /root/.ssh/keys/pvjjk-1vos-tjas/infra --vault-password-file /root/.ansible/vault/pvjjk-1vos-tjas tasks.yml -t maintenance" tags: - cron @@ -192,6 +192,6 @@ ansible.builtin.cron: name: "PVJJK 1.VOS TJAS - Infra - Deployer" minute: "*/5" - job: "~/.venv/ansible/bin/ansible-pull -U ssh://git@github.com/cwchristerw/tjas-infra -d ~/.ansible/pull/pvjjk-1vos-tjas/infra --accept-host-key --private-key ~/.ssh/keys/pvjjk-1vos-tjas/infra --vault-password-file ~/.ansible/vault/pvjjk-1vos-tjas tasks.yml -t deployer" + job: "/root/.venv/ansible/bin/ansible-pull -U ssh://git@github.com/cwchristerw/tjas-infra -d /root/.ansible/pull/pvjjk-1vos-tjas/infra --accept-host-key --private-key /root/.ssh/keys/pvjjk-1vos-tjas/infra --vault-password-file /root/.ansible/vault/pvjjk-1vos-tjas tasks.yml -t deployer" tags: - cron diff --git a/tasks/maintenance.yml b/tasks/maintenance.yml index 52813f8..cf1f819 100644 --- a/tasks/maintenance.yml +++ b/tasks/maintenance.yml @@ -4,7 +4,7 @@ name: "{{ library }}" state: latest extra_args: --upgrade - virtualenv: ~/.venv/ansible + virtualenv: /root/.venv/ansible virtualenv_command: "python3 -m venv" vars: libraries: @@ -24,7 +24,7 @@ name: ansible state: latest extra_args: --upgrade - virtualenv: ~/.venv/ansible + virtualenv: /root/.venv/ansible virtualenv_command: "python3 -m venv" - name: "Maintenance : MariaDB : Dependencies / Python Library : pymysql" @@ -32,7 +32,7 @@ name: pymysql state: latest extra_args: --upgrade - virtualenv: ~/.venv/ansible + virtualenv: /root/.venv/ansible virtualenv_command: "python3 -m venv" - name: "Maintenance : Podman : Prune"