Virtualizing Core host as Yggdrasil VM

2023-12-07 13:28:54 -06:00
parent 7b98c953b1
commit 50167c0f03
7 changed files with 85 additions and 60 deletions
--- a/roles/ShadowArch/files/motd/Yggdrasil
+++ b/roles/ShadowArch/files/motd/Yggdrasil
--- a/roles/ShadowArch/tasks/archlinux-network.yml
+++ b/roles/ShadowArch/tasks/archlinux-network.yml
@@ -16,21 +16,21 @@

  - name: Tap ArchLinux network config
    become: yes
-    when: tap is defined and not static is defined
+      #when: tap is defined and not static is defined
    template:
-        src: netctl-tap is defined.j2
+        src: netctl-tap.j2
        dest: "/etc/netctl/{{ ipinterface }}"

  - name: Bridge ArchLinux network config
    become: yes
-    when: tap is defined and not static is defined
+      #when: tap is defined and not static is defined
    template:
        src: netctl-bond.j2
        dest: "/etc/netctl/br0"

  - name: Tunnel ArchLinux network config
    become: yes
-    when: tap is defined and not static is defined
+      #when: tap is defined and not static is defined
    copy:
        src: netctl-tun
        dest: "/etc/netctl/tun0"
--- a/roles/ShadowArch/tasks/main.yml
+++ b/roles/ShadowArch/tasks/main.yml
@@ -30,26 +30,6 @@
      - root
      - "{{ ansible_user_id }}"

-  - name: Base packages
-    vars:
-      ansible_become_method: su
-      ansible_become_password: "{{ passwords[inventory_hostname] }}"
-    become: yes
-    package:
-      name:
-        - bash
-        - sudo
-        - git
-        - tmux
-        - vim
-        - sysstat
-        - iotop
-        - lsof
-        - rsync
-        - xfsprogs
-      state: present
-      update_cache: yes
-
  - name: Ensure deploy user has sudo permissions.
    vars:
      ansible_become_method: su
@@ -105,6 +85,13 @@
      group: root
      mode: 0644

+  - name: Import AniNIX GPG key
+    vars:
+      ansible_become_password: "{{ passwords[inventory_hostname] }}"
+    become: yes
+    command: /bin/bash -c 'if [ ! -f /usr/share/pacman/keyrings/aninix.gpg ]; then mkdir /tmp/aninix; curl -s https://aninix.net/AniNIX/ShadowArch/raw/branch/main/EtcFiles/aninix.gpg > /tmp/aninix/pubring.gpg; pacman-key --import /tmp/aninix; pacman-key --lsign 904DE6275579CB589D85720C1CC1E3F4ED06F296; fi'
+    when: ansible_os_family == "Archlinux"
+
  - name: Set up apt sources.list
    vars:
      ansible_become_password: "{{ passwords[inventory_hostname] }}"
@@ -120,6 +107,28 @@
      mode: 0644
    when: ansible_os_family == "Debian"

+  - name: Base packages
+    vars:
+      ansible_become_method: su
+      ansible_become_password: "{{ passwords[inventory_hostname] }}"
+    become: yes
+    package:
+      name:
+        - bash
+        - sudo
+        - git
+        - tmux
+        - vim
+        - sysstat
+        - iotop
+        - lsof
+        - rsync
+        - xfsprogs
+        - man-db
+        - man-pages
+      state: present
+      update_cache: yes
+
  - name: Install ShadowArch (ArchLinux)
    vars:
      ansible_become_password: "{{ passwords[inventory_hostname] }}"
--- a/roles/Sharingan/files/monit/hostdefs/Yggdrasil
+++ b/roles/Sharingan/files/monit/hostdefs/Yggdrasil