This project is used to develop Ansible for deploying and maintaining websites and services operated by Free I.T. Athens (FRITA).
- Requires GNU Make, Ansible, and Vagrant on the host
- Clone this project
- Run
maketo provision a Debian 11 base box - Go to
- Click through the HTTPS security warning
-
Clone production-env to
./environmentsmkdir -p environments git clone [email protected]:freeitathens/production-env.git ./environments -
Run
./scripts/vault-key.shfrom the root of the project to obtain the Ansible Vault password -
Enter the Bitwarden Master Password
-
Run
ansible-playbookagainst the production servers, e.g.,ansible-playbook -u root -i environments/production --vault-pass-file ./.ansible_vault webserver.yml --diff --check -
Delete the
.ansible_vaultfile when you are done
Do not submit ciphertext into Ansible Vault with the indention formatting.
To submit, press CTRL+d twice.
-
Decrypt Ansible Vault values
ansible-vault decrypt --vault-pass-file .ansible_vault -
Encrypt new Ansible Vault values
ansible-vault encrypt --vault-pass-file .ansible_vault- e.g.,
pwgen -s 100 1 | ansible-vault encrypt --vault-pass-file .ansible_vault
- e.g.,
- Kris Lamoureux - Project Founder - @krislamo
Copyright (C) 2019, 2020, 2022 Free I.T. Athens
This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, version 3 of the License.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program. If not, see https://www.gnu.org/licenses/.