From 46dcd511682dc9903c548459dde2999e96b74345 Mon Sep 17 00:00:00 2001 From: decentral1se Date: Tue, 31 May 2022 10:08:40 +0200 Subject: [PATCH] first cut of the post --- src/_posts/2022-05-30-ansible-roles.md | 36 +++++++++++++++++++++++++ src/assets/images/infra.jpeg | Bin 0 -> 10284 bytes 2 files changed, 36 insertions(+) create mode 100644 src/_posts/2022-05-30-ansible-roles.md create mode 100644 src/assets/images/infra.jpeg diff --git a/src/_posts/2022-05-30-ansible-roles.md b/src/_posts/2022-05-30-ansible-roles.md new file mode 100644 index 0000000..0611b92 --- /dev/null +++ b/src/_posts/2022-05-30-ansible-roles.md @@ -0,0 +1,36 @@ +--- +layout: post +title: Publishing our Ansible roles +description: +image: infra.jpeg +category: ansible, automation, infrastructure +date: 2022-05-30 +--- + +We're delighted to finally announce that we're publishing our Ansible roles +into the open under [`git.autonomic.zone/autonomic-cooperative/...`](https://git.autonomic.zone/explore/repos?q=ansible&topic=1) :partying_face: + +They've always been licensed as libre software but due to the way we managed +our internal infrastructure configurations, they were embedded in a private +repository. + +The roles are currently lacking documentation and written for very specific +Autonomic needs but they might be handy as a learning resource or a base to +fork from. We'd happily accept contributions to generalise them. + +In particular, we've been running +[`autonomic.new-hetzner`](https://git.autonomic.zone/autonomic-cooperative/autonomic.new-hetzner) +for years without issue. The role bootstraps a Hetzner VPS from scratch and +provisions it with a hardened SSH configuration, firewalls, user accounts and +some basic packages and a shiny MOTD. + +All roles are CI tested on every commit with [Molecule](https://molecule.readthedocs.io/en/latest/) so things don't break. + +[Expanding re-use with shared infrastructure](https://community.coops.tech/t/cotech-gathering-ansible-and-shared-infrastructure-session/1107) +is someting we've always been working on at Autonomic. We have an ongoing +critique of Ansible and the pros/cons of when it is a good choice to use. This +ultimately lead us to start projects like [Co-op +Cloud](https://coopcloud.tech/). However, we will think Ansible is pretty good +at satisfying more complicated server provisioning needs. + +Happy Infra Hacking. diff --git a/src/assets/images/infra.jpeg b/src/assets/images/infra.jpeg new file mode 100644 index 0000000000000000000000000000000000000000..9376bcf1dfae238c5e9cd4e96881dda0d2b62959 GIT binary patch literal 10284 zcma)iWl$VIv+d#p4Fq>sB)GdIxXa@1&Z5EH-8Xn}cZUUny9WvG8r&_|&G+8DRrlxZ zshauGRXt};bxoa~p7*8qEx<=PDOo813=9AO^KSs&R{@~_6eMI^TpWB{TwDTtd_p2p zA|gT}0#XVJA}R_pB1%ds3PK7BCLjeBJsBwx4G#@HGb<-2Cj}Ls2p@+q69*?N3@R!r zCI%)MHZ~atJ&>N`{~7E5U;a7NB|h*e_o}J09Y7UICumk1Ppk1r2iZU77l;~k4=fdE(${YWa1ozM8%PmUq6Gx zEvDKFR5Nw?<{F$_(9qboeTj?5$we&=>8FthnVs9YQvVl^2nGQ6Z?pfk+kXPWBOw0s z(P05#VPW85{~6qWV}XIig2Sd{7lj9XqH+#Gz~L~-e_sKh!NL5)4~GT#0?1q?wl}tr zjMpi4k{iZ8utPssix9A~xDAx0h?b!ZmO@CeP-yFE9=mBi@}aM7HGTR04)9dV{$gjZ znEROg4q!ITYg*QV;;|Mj8_Y7X0I?GH-J?0is*S`3U@&@O?o}INy3n!q6nYCOi z(3I<}e3RPV^J+8a%XzWltr)EiPmqPhWSqNRFegS0rL*78*2%JZ{ZN<%i~zXmfV$6A zSEI{1)Zcs6Z{YzCT1sB56!;TLq7F)sT>+*@+mw@qZP&Km|HxG_e{~msiCEMkOO;|L z{z6D}>|L&o*(XVjxd59GPig7h`Pm(24k5-f5}IVnFZXJ)Y%B3EFFt#+d1gS|T_aPV z8>|x=!=r|D)ysTNL;K=GJ}FBue=}^RX`mpyNy+sG*^A{=8~i8h#~nO1sw4HP4~n@l z#vfEAti+1KNw_(s3Ez48VM{R% z245~IBa}~eFGaCPBK9CQSTZ*WN)><27|k)>WNv3^8Jgvxs9BxR;GJC^mx#&ZSpc~W zax*zax-HY*6}4b7%#bWV-sgls_MR|xvXXR{9}d*>R_SKKR z>-Ob@;(ZG7G83_!8a%HTR@0x4$NZQ~Z+%`>oifvl7B|4QZM(eTM5=bg(TK6nfO&z^ ze?RM{r$&m8=$44#HKVxI@?*Q2fH-_#cvxOz z)$B~9$-=~nq!nu!6u>~KqovZf(XKfpFPr5ASj*MmfoKlsq?8#{yaT=gGeBo=-^b6i z!!v5v#mw9@MO0vJv`IY|1a{gi%4BbK^6^yoVGNa?e=0o(_#6{4cT5UPNUVNLc=csJ(_e;3Zdfk@4 z4!J3re)-WoE`|p7w6Ddv8L5|WI?q^@oOCXJdSPr=Y^E4IWBO!LEUWo>pG9Sj`FiE` zZmoM@yg_Xg>96PJ)aHX~4KbZ<)tNv=!`&w?W*@Hs2JS(qPMFn(viku(()Gv{XOY5E zs+$%Mja+r)X<<9#>?xXKJZp56MEbC6hqs(61%bOh*0wqni}F`2cYTMZytj7B*8p6W z0AKZ~p8j#j$3{wpn+eT*C3CZbx_TbymfJserQ3BH3;0UF`f?TnKQmjd%vF5FqU{R0 zKu*`brTf}tYAjTe;cpJsVGU#(0&_44R1LWOrcP&FXyVmvut+zI8tq@%p#14E$ctF? zq+!L7v#Q;EVd~!PmekqF$T*XXfuuG^?s!Yu;oIqoDq-HE9E3}P?=iSI$wJ`hibXn} z@P23}fN|vN9nfd|V)G^XF7x)e7-Y5|WE!>mBq&GHqQ?Uc)T4ia>(15}O1~{dh*+*0 z0cBCDtli`*VGH zs8sD!N`^f#vrHDe{=84%-{8YYd@b3^wj@2|TVfu=A6fGayl~>^aFSr4Er2^0OT{C= zUymHk4iQoqmX;+=#}$%150Lqm55xN__aRH`ruem2`BwS${P)YxfL^&`SG$r&Yn~iF zS&CzJ>`Ll>bp%nO96&Jl0mC}J438mhJzr2-c8wBm=LnWVJqyRwJ z&2mKqL_zSvJ`|3(I~01dojr9#V*H%1fq}fq9_khL2rj^csg|7TyV$%P-IP?)?5KvI z0Iu`(`}rUCC9iw0y3=alBp}V1sbqC~6_m8u7*0Qa+^?WHTy8~*pS=rYLb@^dxQKK5 zntP&PQZG*dy$^e~IUvn#=qCE3ZtPO?`o*HF-|*n{o|~t#wD6hklzZ7nIPR)c%v^~M zEg7wW3cA;KyFdg-Y{O41rnconxr&Q(vV~_ZRO=M2)xdE8Xa&v&6@+{K!MMcq zqbSG$%;jkzzEl}E{0prBENCtX{;b|6FX$0EMM;fn&s6%v{xAJ=Y!w@lZ*Dy zhc)C_DMUK{Olq@jeR6N*-?&sumitO3mvKJX47Da8nbqVwM{2p~$Re}~0CCWw zvc3DL%vcNs{8h8OYrnanWTJyH&OO#E*JZwwN+@1S=Uq)0AH3x*C8wan{?|I{nVa}8 z_9)l~ZDyn_@vV$PQ3zGL;!1-dvE4mml@(GKg<|>|gDKq8WtnQRju5aXw^( zr;VS(=U${}y9;IPA}Mk~?=?KoS+y4(VAubuPmNQ41b95()i6c3oF2z4HJp}@jXEGc zkgnA*Ya*IBkk@Nu|8PZLb+Yxd=xn}!(X9RC))uZ_<-eXY_>AsuIKBK1I8(GD8Ls)# zq^0lfUHG`LVBDiUs}m6>Vei+0N8)wnz7?V=LV{#(m1S4dXv*?olzd+8c{t9IfXB+R z2*OxqZan6}#)~vmp3SV>Zj_F5A?h59mG5k~zT1tJXL3UEn5iW{ry(4%sZrdgKIk4z z3-puSB9INsWMOZZ=-dc-M&?5NY$xIBuhN+3C?-F!KE-@N)#Qte0;+9DF8MJ)sXDTe zoLt(ol8GyhSMr^{Uak`$#Q4jm>i4;KBI&fE(q9idL(7t-UqI2G+apbGt#~O54ZRvw zqJF6D}wM63IH+GL#`qqv&q8!D_rS0gl zNF2mq?SEe4%nSMtGgTV9c9UyJw#))$(kLk4sxM6JayDkfrNgZ3vL5DK!`i?DsDVdi zo5j45Mm#TrKqNZNd>JS?io%V4fVcX*G&nX%)~PT)r#*GZRH!FJ5@fOsvR;-o>sAq& zJFX>C9d2lIk=oq)Gjyb_M4C{*8)qwTp`~bf*uS>hK#_Epc)}Zg@EjOBR}Q8@|P7MeIZJ9F*mA=T}s`4uenDCD^$)W z^~>w$^4O<`b8T&><<%+mT|Yt$QOCPm8)BC`(4>OW4}4BW9mjXo*!oMmIyZ^?K+np# z(rLNl-BmKfma$b8EN0*y3?bwze4GH;A41OUS>^L&#(_4=b+0LyEEaJ)W^S681cH5u zqNKeMEp>0wNQC&?Dcgst(C$(FL1yHhIH^!uK?ZT`CSEN=n+?L25gYhI*RlrBRYw2W z%vfC7kg7h+YP7HbDMjfsxRbImdswTyMXi)`we`)fQ=QJ-W34=ZdLcl0b#{G`y#bS; zV)X{nfO<x@(5eAFIyBh+gA2X=3BBFNc32yGCQMopZ_No3)M(Rkfy#^@Xi_}QHRQsR+Wk3 z*Uuh`4*Q>v>9&>#EJZyj;YSUOZ$*pDDel%gbHK;b>gi2+p=M#AFu}&06r&=J42**7 zWgV<0A6AMkU(p9ds#APMMK0pLRGiW`;InnTDx+Rp))G}e`iF3QTuvET7&;bNY1wu+ z2dyk=2f=xw4BemM7hSW2=Zz^5Td}HBcU4t7OqngKTmPy}>5U2xswX&)(_m_^btYZUy;!++P=PI_rmM{mYC9iZxb+u0crj zN;4w6O%9#-Dq(BTy2fOyKzKt82F`*cT~8B8yC2+Ba_*s?nFssVUEQ5>IgX^(4RB(j z+cpHnj%ge!H=BjaL9BBS=u6!@LVswFAzaoG1U<4NGr38lzhTR7~DA$S=M_O zd71_-7;O0#fNBX}6xBWKNISZ#$Tt{WtBgl7=o@!}t2{Ba>L|r%_TbN3bUz0$XLS^} z<2!&&`2ia6C*e)Ed~o?gbe!9%0FggeeNn*-KMU)&k(KnAc{ch_w-2psr7X^!+&nwo zGCm1mI!P?_1hF(jC(#F!xSye2qy4F%%zr|?RM!Mp&gA}a7&zn~HP@_Ect(bpE>WBP zU0+Y(Z=|dogM58wGAmQPQz|X!@#K)TS-GZQ4WRg_9@DBtB_m92+}{(TV8#=Dz>>s( z?fC5wYfYx^&hytsfAyd-54a&qn(W6^@cLmunDX$9=dNMnr_Z2nf6$c(uEDa8s&&RX zNqC}8)S?nzH`Y|}uswcK&FSO>#OEC#mzs52G-H+PXtGNs#6&s0XksjAe?(5KHlr~6 zG&=^^cd8I#D2y23gO_S=39J6*AfDoV&2Gm%WK?)@l`rZPGy)lrXj@fT$>k#sQ7lM; z&QUob^mKn(RoeDH`uC~?Y2|qbz$sSH2-3PcEXe!VhTdG zRc5yx+ky@!-1SMVh2*~5={uY~+q#yFHH-!w;gpxz#Y=|-Z17l1 zif8Q&`B4tyzg2@cq)5jO9VMA$ul~ssdQtXrF6&RX?Fj4c=kI{)jg|P^l4SDRZD8|= zk>7EAmQ36~jd@=54v1_X`r)a!DZfiUnYt#mIUq}1ZmuF3Nwh`=`>@y^e;v@ISDEr* zMjQ8>x4U&ygTU%%Mgvbr;6lPO)ICfdkJ0C-BS65LC!Y@7bmrH2D_T**OB^8gP(nL^ zNWJk=D=t*wzp_AZq@#!+b-Ws%_xfFqBW_QfQF}Q!Tab5=g|bHI_vPYgg)Ns-ngs-x zV$_&{GR+9Z{=k%XHLSc?idW$1w8lnUe(z6Qvy2SP?>4Kl>RNC_Q_iGydX_=OMzV+$nehQNq`5M6j5SA4*>3Qw^ zb$GxUm_H{{t+ZH^jH;q3L77T{Pu;gMLw2MXyG|{v@M%Vd@j4;vQNjhVm)h&_ zgo^$;0Cjj(Z4#xr!)2@+@VPK$btSO!2qUx>@~siXFx3)3*y#ka`E|}pYvbgsdS2hY z{GEIUv^UzV{G41ptKQ&xW}mmW4#^hD8MEX%ld*tHz59^MIjG9)mb?*b5w9=3LEsyfYr}cjntsNQqz-B9~SYPjcUw>_r_N9)>|>zeov zcR8dX5teAX&9Sv5C8ECq&cwkgs#3OdJeGJ*YAh@%B>M~eYm;wdYL{b6R!d0WRZ$yt zAopoobs;Wp`L$Ytj7i<;iUZE|P|VoNVnX)ph-bl!h=0cx#)@%R77f_BLRv zA0hmh>+VopN)5UxWRC>wbF^T~_mM#yrtW*3xqv@1^nQ+W+yj8>{tob)e; zU^Llqa;uC3J-YH8z}>uW;(w)phM~#d>#tMerw&Slqn5f7dL8?Lm1YkE*$O%(wg>?^ z#8@VuLD$D`d&BBXRg;7UxAAo@WEDv%yPkLMQ;2~l0TwX7{qY+*C8mXzDUH7Z zn=veKKz2Dd1YPt&~hu$=L6?3X9^V~9|Le?dW zvCN%P1+uLTa)Ys<3calM%6-+(f(3EJRZ$E%eWgbB+(ep>sGUiS;gXW5cB|Q=cbQ%# zE$t`{!U;5y9B2c_VAu17j6ra@e@rlvFuKGcriB!U@A`Ijf(a-hRo$cODsggj-oJ&!SI2?)AlS8%& zvWZk(xhfO33wLn)UO$*w6 zqKBk#WnhQ`>R?0uBD1>gJ+iIAlG^oZH+H>$FZ0)NM{8#MRtf&b_cMuqY?rl>yr{h( zq5;?GY>|yWu@^tFAVSU;_l>o zT!T>eEGbAA$^OzZSLH`!mv4974MRv93qHx>HH2id)43r94K`J$vY~eZ`v+#ejeZZM z+Pi+#5>#S|gD9L}h$S8=j7N^y_uLdU-SY~dC_BeahvWaod4&5{8G#*pYHhOu>w-CPjC5xn&hdECg?ziCj*~cT^ z8-dIbt>eN~Y94ukGdJW@rUT{zo$&7uC2uaI#tg?FUvuS;d?tzn!R?U5F_9 za6}m9IvmDcUa42ezW*IXYwWXWQ%z+Yk;T?9O+Md?};Oh?~(vdHa) z->iDe>j!9_kHyE7rRt&@ov|gug6Y0ik@11Fbr$X|0Oy7E!X&+-jT=(E+vC#VOxitR zQQGIS;8xmQKesPDjzyjqkNR5U?|^Xox${I(Y8w(4#;2z&`gIeN3vSuosi0ma1V6Zj zzudum$ZOkdgHxp1^}!qicgAZ!T08GL*?)<|8y77vY59_oE*BzXbL|9A->;>qqKwJzLuOdQPeWw z>atimTAVHW#$S2#JTqtR-vJU%_F)4|+Cm&7rinl%_TcKoeTpzBWwp+o)Zr8+!+9r7 zu^zf#R;AXpUgWZ>CX})$f&vG18?&FmV)|0iSTJLu0G+84w1|U(C~Jm}aC}k1FI{*>?b5h;x$TrdBt@`p5p4WCi`t^@^l1ID`_>GO7gV zAL=_Fj#OVs{%m}>cOYH;5N-u#0_*n^nhvqaGHLE@>dm}buP^yt%zXb>ONg}~O18D6 ztt-hkQORQ;vvwHb`d_QnIYGcndugcf@w)O&Nx)B5#w-&>f9PxJ*0KAGp2a@YUCIAe zDBxtW-2>8F)EoOp=>{ws4&Ho`ly!FAo6dH*=}N&BS&C30Ave(X=AJ=jC)Oh|UaDOdX}xT^=~^#7JSQGW35gekijEuo`b=sPhU{Pp(T0q|<4d6&=^K4fCvQeX6j zkCo8U1^!b)F`UrXO}~3zM{e(@uAePZF)MUPCiR6RQh2*l19!g_7h;j}yf;%?$@vbT z0qFh}Bmm=)D(%7>Kj7dO+*?j3U}B4Z9E;>AYvUn3R0BQJ9V~To8*N7uk1kH8e;H+6 z{fcWum2O8Xpj;hE|2HuAurgQLIoKo$AF8iV|F??yqAY;M(>EP^;T@prwc0hy5kRBp z>J0|E?S4p;T~qwd_FOyHWm0}dq=Ja~OMzFbl`4MW_%MZeoMA*{Z0@DicjXH!dE0Rs zB7Vh@k_r>r>AwyX6>ET=#_G80rd8fyWULQaAe#AQSvi3%OGo$-5&bY(T zY>))wB)zVs=sq3*qqng5RN*+W`6yMw((^QgUL0v%5LJ?tucarUy=TOSWzylreTPSf zl_=%kSmEE2^Q<-H$nX+_(U!*JI=l0hxZTytlC|SqMJ4NFo{KUJRmOcyE6EO`G9_>Z zCOkC`4R=nkzXq2Z>O`#78U09Dw{3E5#QwAw^Dv<=zX_gxX;!&Dq*oBZUG$!I-ii~4 z{W5ylvJAN~I@E2vO*ou{JVI-?iSnPwhJ-qlq?2OU`&&v@8%r5x-517E?rWyARj
    3d8S&0`_kc`WS(jXpMV!QT`|6M;V-jawxh|%z`gEx4!2%jFT*%>p>K3h$DBx430zeR)^V znNbS(MW|>!*2L%vGU=#;f0c(E9~{uN@(%b>d)|!MeDA=2Uo>Z26o%4^ zh}l~z@PY3gfVFaT+kWea%JwjGX>v$xE6V}x|3Oq^?}Cqw>W+t+1vSbBSY`_mj9h7d zOYk&kZ$187OabHUv!-Eih*#N~_AiHVLte7pF01bO8R`4>E$gxwK4>lKddt=@ede{j zXOpdi&(W+}V``>6lN4Nlbhjs}D*6uXL+|}U$&OuwIL}8`gMJx#Lf2pac&R#@sS4>Z z*+?GA!X^FT#Vqh3US0E3k1r1bRNAs|ZHVAv&>Z7n5*g{*)T8Bs68_{~_;D|y=n~jT zFj-C%S&P$mN7j~w^C(xJlA|0SpYu&jkFv18ftq~Jt}O-7m29}zm7W|1*!#bJfSv@c zi4-n2&%@X+dk((?Fe8oL0W3d}HlE9C0!@E_PbrX;s+|6PUU72+c!*x1K|g=x!8fzR z;NTbH|Lrkq$lh=Ea`srD6ynwSsHLR>Z#kFv4#>!Jpr)CO*hu%O=-tyW z{=hTh{SqY@_eG|Q8+EQ}E_-SDZz@1rguz~*l{v*&>%GJVDWSnS7{~6f2oLCY^7%IdN-9zgJQ6=_KO(|5r5``y;62$}Mj*kHozD*-~SfOp*Ynu;YR`Lc0 zsy$Q!o-&#fyi1ozo_nq}HRW7l^{Y}Ur*PJUw+y96dU|oLbB4G(_JqEhg6>)2TUCJd zRRe>s7}=%tz-f`_OA;88Hg+