diff options
author | Christian Pointner <equinox@spreadspace.org> | 2024-01-07 00:08:17 +0100 |
---|---|---|
committer | Christian Pointner <equinox@spreadspace.org> | 2024-01-07 00:08:17 +0100 |
commit | 67d5f5c27727e04d8f8a5ed20e79d5706cbbf1cb (patch) | |
tree | 56456abe274ed1beb0582c5692689c5ccbf4f983 /roles/storage/luks/volumes | |
parent | update collabora and bump nextcloud versions (diff) |
refactor: storage roles
Diffstat (limited to 'roles/storage/luks/volumes')
-rw-r--r-- | roles/storage/luks/volumes/defaults/main.yml | 8 | ||||
-rw-r--r-- | roles/storage/luks/volumes/tasks/main.yml | 43 |
2 files changed, 0 insertions, 51 deletions
diff --git a/roles/storage/luks/volumes/defaults/main.yml b/roles/storage/luks/volumes/defaults/main.yml deleted file mode 100644 index 2347231c..00000000 --- a/roles/storage/luks/volumes/defaults/main.yml +++ /dev/null @@ -1,8 +0,0 @@ ---- -# luks_volumes: -# crypto-nvme0: -# passphrase: "keep-this-very-very-secret" -# device: /dev/nvme0n1p3 -# crypto-nvme1: -# passphrase: "use-differnt-passphrase-and-keep-this-secret-as-well" -# device: /dev/nvme1n1p3 diff --git a/roles/storage/luks/volumes/tasks/main.yml b/roles/storage/luks/volumes/tasks/main.yml deleted file mode 100644 index 8fdb3019..00000000 --- a/roles/storage/luks/volumes/tasks/main.yml +++ /dev/null @@ -1,43 +0,0 @@ ---- -- name: install cryptsetup packages - apt: - name: cryptsetup-bin - state: present - -- name: Create temporary build directory - tempfile: - state: directory - register: keyfile_dir - changed_when: False - check_mode: False - -- name: create luks volumes - block: - - name: write passphrases into temporary keyfiles - loop: "{{ luks_volumes | dict2items }}" - loop_control: - label: "{{ item.key }}" - copy: - dest: "{{ keyfile_dir.path }}/{{ item.key }}" - content: "{{ item.value.passphrase }}" - mode: 0600 - changed_when: False - check_mode: False - - - name: create/open luks volumes - loop: "{{ luks_volumes | dict2items }}" - loop_control: - label: "{{ item.key }} ({{ item.value.device }})" - luks_device: - name: "{{ item.key }}" - device: "{{ item.value.device }}" - keyfile: "{{ keyfile_dir.path }}/{{ item.key }}" - state: opened - - always: - - name: remove base-directory for keyfiles - file: - path: "{{ keyfile_dir.path }}" - state: absent - changed_when: False - check_mode: False |