From 6115a1d41cfd2d621b83e9905bc49f0cc4c6161d Mon Sep 17 00:00:00 2001
From: Arif Herusetyo Wicaksono <arif@wicak.co>
Date: Mon, 18 Feb 2019 20:43:55 +0900
Subject: [PATCH] Migrate from gitlab to gitea

---
 .gitignore                                    |  4 +++
 README.md                                     |  3 ++
 playbooks/roles/centos_host/handlers/main.yml |  3 ++
 playbooks/roles/centos_host/tasks/main.yml    | 18 +++++++++++
 playbooks/roles/django_dev/tasks/main.yml     | 30 +++++++++++++++++++
 playbooks/roles/ssh_server/handlers/main.yml  |  4 +++
 playbooks/roles/ssh_server/tasks/main.yml     | 10 +++++++
 7 files changed, 72 insertions(+)
 create mode 100644 .gitignore
 create mode 100644 README.md
 create mode 100644 playbooks/roles/centos_host/handlers/main.yml
 create mode 100644 playbooks/roles/centos_host/tasks/main.yml
 create mode 100644 playbooks/roles/django_dev/tasks/main.yml
 create mode 100644 playbooks/roles/ssh_server/handlers/main.yml
 create mode 100644 playbooks/roles/ssh_server/tasks/main.yml

diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..fe57ba6
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,4 @@
+ansible.cfg
+hosts
+site.yml
+*.retry
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..3d55acc
--- /dev/null
+++ b/README.md
@@ -0,0 +1,3 @@
+# Ansible Playbooks for system maintenance tasks
+
+Collections of Ansible Playbooks for routine maintenance and troubleshooting. 
diff --git a/playbooks/roles/centos_host/handlers/main.yml b/playbooks/roles/centos_host/handlers/main.yml
new file mode 100644
index 0000000..e83e018
--- /dev/null
+++ b/playbooks/roles/centos_host/handlers/main.yml
@@ -0,0 +1,3 @@
+---
+- name: update all packages
+  yum: name=* state=latest
diff --git a/playbooks/roles/centos_host/tasks/main.yml b/playbooks/roles/centos_host/tasks/main.yml
new file mode 100644
index 0000000..e99a230
--- /dev/null
+++ b/playbooks/roles/centos_host/tasks/main.yml
@@ -0,0 +1,18 @@
+---
+- name: install yum-cron and deltarpm
+  yum: name={{ item }} state=latest
+  with_items:
+  - deltarpm
+  - yum-cron
+
+- name: set yum-cron to automatically apply update
+  lineinfile: dest=/etc/yum/yum-cron.conf regexp="apply_updates = no" state=present line="apply_updates = yes" backrefs=yes
+  
+- name: enable epel
+  yum: name=epel-release state=latest
+
+- name: install development tools
+  yum: name=@development-tools state=latest
+
+- name: enable ius
+  yum: name=https://centos7.iuscommunity.org/ius-release.rpm state=latest
diff --git a/playbooks/roles/django_dev/tasks/main.yml b/playbooks/roles/django_dev/tasks/main.yml
new file mode 100644
index 0000000..9d5c594
--- /dev/null
+++ b/playbooks/roles/django_dev/tasks/main.yml
@@ -0,0 +1,30 @@
+---
+- name: get ius repo install script (sponsored by rackspace)
+  get_url: url=https://setup.ius.io/ dest={{ home }}ius-setup force=no
+
+- name: enable ius repo
+  shell: bash ius-setup removes={{ home }}ius-setup
+  become: yes
+
+- name: delete ius script file after install
+  file: path={{ home }}ius-setup state=absent
+
+- name: install python 3.5
+  yum: name={{ item }} state=latest
+  become: yes
+  with_items:
+  - python35u
+  - python35u-pip
+  - python-virtualenv
+
+- name: create .virtualenv directory
+  file: path={{ venv }} state=directory
+
+- name: create virtualenv
+  shell: pyvenv-3.5 {{ venv }}{{ project_name }} creates={{ venv }}{{ project_name }}
+
+- name: create project directory
+  file: path={{ home }}{{ project_name }} state=directory
+
+- name: install django
+  pip: name=django version=1.8 virtualenv={{ venv }}{{ project_name }}
diff --git a/playbooks/roles/ssh_server/handlers/main.yml b/playbooks/roles/ssh_server/handlers/main.yml
new file mode 100644
index 0000000..0300394
--- /dev/null
+++ b/playbooks/roles/ssh_server/handlers/main.yml
@@ -0,0 +1,4 @@
+---
+- name: restart sshd
+  service: name=sshd state=restarted
+  when: gssapi.changed or dns.changed
diff --git a/playbooks/roles/ssh_server/tasks/main.yml b/playbooks/roles/ssh_server/tasks/main.yml
new file mode 100644
index 0000000..4a56963
--- /dev/null
+++ b/playbooks/roles/ssh_server/tasks/main.yml
@@ -0,0 +1,10 @@
+---
+- name: disable gss api authentication
+  lineinfile: dest=/etc/ssh/sshd_config regexp='^GSSAPIAu' state=present line='GSSAPIAuthentication no' backrefs=yes
+  register: gssapi
+  notify: restart sshd
+
+- name: disable dns lookup
+  lineinfile: dest=/etc/ssh/sshd_config regexp='^#UseDNS\syes$' state=present line='UseDNS no' backrefs=yes
+  register: dns
+  notify: restart sshd