first commit

2022-03-26 10:10:21 +01:00 · 2022-03-26 10:10:21 +01:00 · 25e3aad342
commit 25e3aad342
10 changed files with 127 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -0,0 +1,17 @@
+# Ansible-hashicorp-vault
+
+install hashicorp vault
+
+## Requirements
+
+## Role Variables
+
+## Dependencies
+
+## License
+
+BSD
+
+## Author Information
+
+vincent@ducamps.win
--- a/defaults/main.yml
+++ b/defaults/main.yml
@ -0,0 +1 @@
+---
--- a/handlers/main.yml
+++ b/handlers/main.yml
@ -0,0 +1,6 @@
+---
+# handlers file for ansible-vault
+- name: restart vault
+  service:
+    name: "{{ vault_os_service }}"
+    state: restarted
--- a/meta/main.yml
+++ b/meta/main.yml
@ -0,0 +1,52 @@
+galaxy_info:
+  author: VincentDCMPS
+
+  # If the issue tracker for your role is not on github, uncomment the
+  # next line and provide a value
+  # issue_tracker_url: http://example.com/issue/tracker
+
+  # Choose a valid license ID from https://spdx.org - some suggested licenses:
+  # - BSD-3-Clause (default)
+  # - MIT
+  # - GPL-2.0-or-later
+  # - GPL-3.0-only
+  # - Apache-2.0
+  # - CC-BY-4.0
+  license: license (GPL-2.0-or-later, MIT, etc)
+
+  min_ansible_version: 2.1
+
+  # If this a Container Enabled role, provide the minimum Ansible Container version.
+  # min_ansible_container_version:
+
+  #
+  # Provide a list of supported platforms, and for each platform a list of versions.
+  # If you don't wish to enumerate all versions for a particular platform, use 'all'.
+  # To view available platforms and versions (or releases), visit:
+  # https://galaxy.ansible.com/api/v1/platforms/
+  #
+  # platforms:
+  # - name: Fedora
+  #   versions:
+  #   - all
+  #   - 25
+  # - name: SomePlatform
+  #   versions:
+  #   - all
+  #   - 1.0
+  #   - 7
+  #   - 99.99
+
+  galaxy_tags:
+    []
+    # List tags for your role here, one per line. A tag is a keyword that describes
+    # and categorizes the role. Users find roles by searching for tags. Be sure to
+    # remove the '[]' above, if you add tags to this list.
+    #
+    # NOTE: A tag is limited to a single word comprised of alphanumeric characters.
+    #       Maximum 20 tags per role.
+
+dependencies:
+  []
+  # List your role dependencies here, one per line. Be sure to remove the '[]' above,
+  # if you add dependencies to this list.
--- a/tasks/main.yml
+++ b/tasks/main.yml
@ -0,0 +1,29 @@
+---
+- name: Include OS-specific variables
+  include_vars: "{{ item }}"
+  with_first_found:
+    - files:
+        - "{{ ansible_os_family }}-{{ ansible_distribution_major_version }}.yml"
+        - "{{ ansible_os_family }}.yml"
+
+- name: install package
+  package:
+    name: "{{ vault_os_package }}"
+    state: present
+
+- name: apply config template
+  block:
+    - name: server template
+      template:
+        src: config.hcl.j2
+        dest: /etc/vault.hcl
+        owner: vault
+        group: vault
+        mode: 0400
+  notify: restart vault
+
+- name: ensure service is started
+  systemd:
+    name: "{{ vault_os_service }}"
+    state: started
+    enabled: True
--- a/templates/config.hcl.j2
+++ b/templates/config.hcl.j2
@ -0,0 +1,11 @@
+
+storage "consul" {
+  address = "127.0.0.1:8500"
+  path    = "vault"
+}
+
+listener "tcp" {
+address     = "{{ vault_listener_address}}:8200"
+  tls_disable = 1
+}
+ui= true
--- a/tests/inventory
+++ b/tests/inventory
@ -0,0 +1,2 @@
+localhost
+
--- a/tests/test.yml
+++ b/tests/test.yml
@ -0,0 +1,4 @@
+---
+- hosts: all
+  roles:
+    - ansible-hashicorp-vault
--- a/vars/Archlinux.yml
+++ b/vars/Archlinux.yml
@ -0,0 +1,5 @@
+---
+vault_os_package:
+  - vault
+
+vault_os_service: vault
--- a/vars/main.yml
+++ b/vars/main.yml