50 lines
1.0 KiB
YAML
50 lines
1.0 KiB
YAML
ansible_become_password: "{{ secret_sudo }}"
|
|
|
|
ntp_timezone: "Europe/Oslo"
|
|
|
|
do_become: true
|
|
|
|
apt_arch: "{{ _apt_arch.stdout }}"
|
|
|
|
users:
|
|
- username: roxedus
|
|
groupname: roxedus
|
|
home: yes
|
|
uid: "1000"
|
|
gid: "1000"
|
|
docker: True
|
|
zfs: True
|
|
passwordless: True
|
|
github: Roxedus
|
|
password: "{{ secret_rox_pass }}"
|
|
system:
|
|
- proxmox
|
|
|
|
package_list:
|
|
- name: bash-completion
|
|
- name: ca-certificates
|
|
- name: curl
|
|
- name: git
|
|
- name: gnupg2
|
|
- name: htop
|
|
- name: jq
|
|
- name: ncdu
|
|
- name: net-tools
|
|
- name: python3
|
|
- name: python3-apt
|
|
- name: python3-pip
|
|
- name: software-properties-common
|
|
- name: tmux
|
|
- name: wget
|
|
|
|
dmasq_local_domain: "{{ secret_local_domain }}"
|
|
|
|
security_ssh_password_authentication: "no"
|
|
security_ssh_permit_root_login: "no"
|
|
security_ssh_port: 22
|
|
security_ssh_usedns: "no"
|
|
security_autoupdate_enabled: true
|
|
security_fail2ban_enabled: true
|
|
security_sudoers_passwordless:
|
|
- "{{ users|selectattr('passwordless', 'defined')|map(attribute='username') }}"
|