diff options
author | Christian Pointner <equinox@spreadspace.org> | 2019-04-13 23:31:30 +0200 |
---|---|---|
committer | Christian Pointner <equinox@spreadspace.org> | 2019-04-14 00:07:27 +0200 |
commit | 3c55ccb22322f107c8b82a824e5e28a576af9ae0 (patch) | |
tree | ff5d57b3ff3684819ddcce4b0abb6d5d47024f1b /roles/cloud-install/templates | |
parent | add support for raspbian in prepare-dkms role (diff) |
added cloud install role/playbook
Diffstat (limited to 'roles/cloud-install/templates')
-rw-r--r-- | roles/cloud-install/templates/hetzner_installimage.conf.j2 | 21 | ||||
-rw-r--r-- | roles/cloud-install/templates/hetzner_postinst.sh.j2 | 25 |
2 files changed, 46 insertions, 0 deletions
diff --git a/roles/cloud-install/templates/hetzner_installimage.conf.j2 b/roles/cloud-install/templates/hetzner_installimage.conf.j2 new file mode 100644 index 00000000..4c834499 --- /dev/null +++ b/roles/cloud-install/templates/hetzner_installimage.conf.j2 @@ -0,0 +1,21 @@ +HOSTNAME {{ host_name }} +{% if hetzner_disk_config == "nvme_raid" %} +DRIVE1 /dev/nvme0n1 +DRIVE2 /dev/nvme1n1 +SWRAID 1 +SWRAIDLEVEL 1 +{% elif hetzner_disk_config == "sata_raid" %} +DRIVE1 /dev/sda +DRIVE2 /dev/sdb +SWRAID 1 +SWRAIDLEVEL 1 +{% elif hetzner_disk_config == "hcloud" %} +DRIVE1 /dev/sda +{% endif %} +BOOTLOADER grub +PART /boot ext4 512M +PART lvm {{ host_name }} all +LV {{ host_name }} root / ext4 2560M +LV {{ host_name }} var /var ext4 1280M +LV {{ host_name }} var+log /var/log ext4 768M +IMAGE {{ latest_image.stdout }} diff --git a/roles/cloud-install/templates/hetzner_postinst.sh.j2 b/roles/cloud-install/templates/hetzner_postinst.sh.j2 new file mode 100644 index 00000000..3aa33c76 --- /dev/null +++ b/roles/cloud-install/templates/hetzner_postinst.sh.j2 @@ -0,0 +1,25 @@ +#!/bin/bash +set -euf -o pipefail + +apt-get update +apt-get full-upgrade -y +apt-get install -y --no-install-recommends openssh-server python + +passwd -d root && passwd -l root +{% if install_distro == "debian" %} +sed -e 's/^allow-hotplug/auto/' -i /etc/network/interfaces +{% endif %} +sed -r 's#(\s+/var/log\s+ext4\s+)defaults#\1noatime,nodev,noexec#g' -i /etc/fstab + +mkdir -p -m 0700 /target/root/.ssh +cat <<EOK > /root/.ssh/authorized_keys +{{ ssh_keys_root | join('\n') }} +EOK +{% if hostvars[hostname].ansible_port is defined %} +sed -e 's/^\(\s*#*\s*Port.*\)/Port {{ hostvars[hostname].ansible_port }}/' -i /etc/ssh/sshd_config +{% endif %} + +{# this is actually only needed on ubuntu bionic and beyond but should not hurt on other installations either #} +swapoff -a; sed -e '/^\/swapfile/d' -i /etc/fstab; rm -f /swapfile + +echo "postinst.sh finished successfully" |