Ansible playbook for base and initial configuration of web server hosting my personal websites.
Go to file
Alan Orth 7a9a24ef5d
roles/common: rework fail2ban again
Actually, we do want to run fail2ban on all hosts because the sshd
monitoring via systemd is nice. At the very least it reduces spam
from failed logins in our systemd journal.
2023-08-23 22:15:24 +03:00
group_vars group_vars/web: set default webserver to nginx 2022-11-02 22:12:36 +03:00
host_vars host_vars/web22: WordPress 6.3 2023-08-22 21:33:49 +03:00
misc-plays roles: strict truthy values 2022-09-10 22:33:19 +03:00
roles roles/common: rework fail2ban again 2023-08-23 22:15:24 +03:00
vars Import OS-specific vars from task in common role 2018-04-25 18:04:29 +03:00
.gitignore .gitignore: Ignore Vagrant directory 2015-05-24 23:00:48 +03:00
ansible.cfg ansible.cfg: smart fact gathering 2022-09-12 17:18:19 +03:00
LICENSE Add copy of GPLv3 license 2015-05-08 15:59:15 +03:00
nomads.yml roles: strict truthy values 2022-09-10 22:33:19 +03:00
Pipfile Add ansible-lint 2022-09-10 18:36:53 +03:00
Pipfile.lock Pipfile.lock: run pipenv update 2023-08-22 21:02:17 +03:00
README.md Minor comment updates for Debian 12 2023-08-09 21:51:53 +02:00
site.yml site.yml: use fully-qualified modules 2022-10-25 21:08:27 +03:00
web.yml Add basic caddy role 2022-11-02 22:29:30 +03:00

Ansible Playbook

Ansible playbook for base and initial configuration of the web server hosting my personal websites. After successful execution of this playbook, however, there is still some manual work to import databases, copy site content, etc.

Assumptions

Before you can run this, a few things are assumed:

  • You have a clean, minimal Ubuntu 20.04 or Debian 11/12 host up and running
  • Python 3 is installed on the remote server (requirement of Ansible)
  • You have a user account with password-less SSH access to the machine
  • You have sudo privileges on the remote host
  • You have created a hosts file with something like:
[web]
web01

Use

Once you've satisfied the the above assumptions, you can execute:

$ ansible-playbook web.yml

Todo

License

Copyright (C) 20142021 Alan Orth

The contents of this repository are free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program. If not, see http://www.gnu.org/licenses/.