This project will discover and provide orchestration and instruction to the various servers in the AniNIX ecosystem. It's named after the S'Jet carrier Kapisi from the game "Homeworld: Deserts of Kharak".

Go to file

DarkFeather 8b2b0be95b Ensuring we go through local networking for our VIPs		2022-05-23 21:30:24 -05:00
bin	Ensuring we go through local networking for our VIPs	2022-05-23 21:30:24 -05:00
examples	Ensuring we go through local networking for our VIPs	2022-05-23 21:30:24 -05:00
modules	Updating Ubiqtorate	2020-10-08 16:33:19 -05:00
playbooks	Catching up with current dev	2022-04-19 12:01:03 -05:00
precommit-hooks	Catching up with current successes	2022-01-25 23:54:43 -06:00
roles	Current state; https://archlinux.org/news/qemu-700-changes-split-package-setup/	2022-05-11 17:20:57 -05:00
tests	Updating Ubiqtorate	2020-10-08 16:33:19 -05:00
.gitignore	Current state of Sharingan role -- still need to add rkhunter	2022-05-02 15:00:29 -05:00
LICENSE	Initial commit	2019-12-06 13:57:27 -06:00
Makefile	Updating Ubiqtorate	2020-10-08 16:33:19 -05:00
PKGBUILD	Updating Ubiqtorate	2020-10-08 16:33:19 -05:00
README.md	Catching up with current dev	2022-04-19 12:01:03 -05:00
requirements.txt	Updating Ubiqtorate	2020-10-08 16:33:19 -05:00

README.md

This project will discover and provide inventory intelligence to Sora, Shadowfeed, Geth, and Sharingan. It is named after the fictional Star Wars Imperial Intelligence organization that oversaw the various divisions of Intelligence and orchestrated their operations.

Note: This project is in progress -- former Makefiles from ConfigPackages are being upgraded into Ansible playbooks here.

How to use

This project expects that you use an Ansible vault for credentials. Create one and add this to your .bashrc.

export ANSIBLE_VAULT_PASSWORD_FILE=$HOME/password-store/${organization}.vault.password
export ANSIBLE_VAULT_FILE=$HOME/password-store/${organization}.vault

Take a look at examples/msn0.yml as an example inventory -- make sure you populate one of your own.

Once you have your vault and inventory, use AniNIX/ShadowArch with your hypervisor to provision the base image for your machines, or Raspbian.

Then, use the SSHkey playbook to copy your key and the deploy playbook to set things up.

ansible-playbook -i your-inventory.yml playbooks/sshkey.yml
ansible-playbook -i your-inventory.yml playbooks/deploy.yml

We've also added two scripts in ./bin to make your life easier:

full-deploy: This is the general role. If you are creating an AniNIX replica, once you have your inventory and vault populated, then you can run this script to push everything. This is also optimal when rotating vault secrets or other global tasks. This is effectively standardizing invocation of our overall deployment playbook.
deploy-role: When you are updating a specific role, use this script to push that role to your group. Ideally, this should only be used to push a role that you have been working on to a target group in your inventory that's already tagged for the role in the deployment playbook.

Happy hacking!

Exceptions

Some services, such as AniNIX/Sharingan and AniNIX/Geth, store their configuration in internal datastructures and databases such that we cannot easily export our build for others to use. We will document what we have done for each of these as best we can in the README.md files for others to replicate. Backups of these services into AniNIX/Aether are therefore dumps of these databases and not available to share.