From 25e3aad342eb657ae1142befb0082ad9942d3dd6 Mon Sep 17 00:00:00 2001
From: vincent <vincent@ducamps.win>
Date: Sat, 26 Mar 2022 10:10:21 +0100
Subject: [PATCH] first commit

---
 README.md               | 17 ++++++++++++++
 defaults/main.yml       |  1 +
 handlers/main.yml       |  6 +++++
 meta/main.yml           | 52 +++++++++++++++++++++++++++++++++++++++++
 tasks/main.yml          | 29 +++++++++++++++++++++++
 templates/config.hcl.j2 | 11 +++++++++
 tests/inventory         |  2 ++
 tests/test.yml          |  4 ++++
 vars/Archlinux.yml      |  5 ++++
 vars/main.yml           |  0
 10 files changed, 127 insertions(+)
 create mode 100644 README.md
 create mode 100644 defaults/main.yml
 create mode 100644 handlers/main.yml
 create mode 100644 meta/main.yml
 create mode 100644 tasks/main.yml
 create mode 100644 templates/config.hcl.j2
 create mode 100644 tests/inventory
 create mode 100644 tests/test.yml
 create mode 100644 vars/Archlinux.yml
 create mode 100644 vars/main.yml

diff --git a/README.md b/README.md
new file mode 100644
index 0000000..0bdb1b3
--- /dev/null
+++ b/README.md
@@ -0,0 +1,17 @@
+# Ansible-hashicorp-vault
+
+install hashicorp vault
+
+## Requirements
+
+## Role Variables
+
+## Dependencies
+
+## License
+
+BSD
+
+## Author Information
+
+vincent@ducamps.win
diff --git a/defaults/main.yml b/defaults/main.yml
new file mode 100644
index 0000000..ed97d53
--- /dev/null
+++ b/defaults/main.yml
@@ -0,0 +1 @@
+---
diff --git a/handlers/main.yml b/handlers/main.yml
new file mode 100644
index 0000000..4d8ad98
--- /dev/null
+++ b/handlers/main.yml
@@ -0,0 +1,6 @@
+---
+# handlers file for ansible-vault
+- name: restart vault
+  service:
+    name: "{{ vault_os_service }}"
+    state: restarted
diff --git a/meta/main.yml b/meta/main.yml
new file mode 100644
index 0000000..8d7b355
--- /dev/null
+++ b/meta/main.yml
@@ -0,0 +1,52 @@
+galaxy_info:
+  author: VincentDCMPS
+
+  # If the issue tracker for your role is not on github, uncomment the
+  # next line and provide a value
+  # issue_tracker_url: http://example.com/issue/tracker
+
+  # Choose a valid license ID from https://spdx.org - some suggested licenses:
+  # - BSD-3-Clause (default)
+  # - MIT
+  # - GPL-2.0-or-later
+  # - GPL-3.0-only
+  # - Apache-2.0
+  # - CC-BY-4.0
+  license: license (GPL-2.0-or-later, MIT, etc)
+
+  min_ansible_version: 2.1
+
+  # If this a Container Enabled role, provide the minimum Ansible Container version.
+  # min_ansible_container_version:
+
+  #
+  # Provide a list of supported platforms, and for each platform a list of versions.
+  # If you don't wish to enumerate all versions for a particular platform, use 'all'.
+  # To view available platforms and versions (or releases), visit:
+  # https://galaxy.ansible.com/api/v1/platforms/
+  #
+  # platforms:
+  # - name: Fedora
+  #   versions:
+  #   - all
+  #   - 25
+  # - name: SomePlatform
+  #   versions:
+  #   - all
+  #   - 1.0
+  #   - 7
+  #   - 99.99
+
+  galaxy_tags:
+    []
+    # List tags for your role here, one per line. A tag is a keyword that describes
+    # and categorizes the role. Users find roles by searching for tags. Be sure to
+    # remove the '[]' above, if you add tags to this list.
+    #
+    # NOTE: A tag is limited to a single word comprised of alphanumeric characters.
+    #       Maximum 20 tags per role.
+
+dependencies:
+  []
+  # List your role dependencies here, one per line. Be sure to remove the '[]' above,
+  # if you add dependencies to this list.
diff --git a/tasks/main.yml b/tasks/main.yml
new file mode 100644
index 0000000..6aeec83
--- /dev/null
+++ b/tasks/main.yml
@@ -0,0 +1,29 @@
+---
+- name: Include OS-specific variables
+  include_vars: "{{ item }}"
+  with_first_found:
+    - files:
+        - "{{ ansible_os_family }}-{{ ansible_distribution_major_version }}.yml"
+        - "{{ ansible_os_family }}.yml"
+
+- name: install package
+  package:
+    name: "{{ vault_os_package }}"
+    state: present
+
+- name: apply config template
+  block:
+    - name: server template
+      template:
+        src: config.hcl.j2
+        dest: /etc/vault.hcl
+        owner: vault
+        group: vault
+        mode: 0400
+  notify: restart vault
+
+- name: ensure service is started
+  systemd:
+    name: "{{ vault_os_service }}"
+    state: started
+    enabled: True
diff --git a/templates/config.hcl.j2 b/templates/config.hcl.j2
new file mode 100644
index 0000000..db64324
--- /dev/null
+++ b/templates/config.hcl.j2
@@ -0,0 +1,11 @@
+
+storage "consul" {
+  address = "127.0.0.1:8500"
+  path    = "vault"
+}
+
+listener "tcp" {
+address     = "{{ vault_listener_address}}:8200"
+  tls_disable = 1
+}
+ui= true
diff --git a/tests/inventory b/tests/inventory
new file mode 100644
index 0000000..878877b
--- /dev/null
+++ b/tests/inventory
@@ -0,0 +1,2 @@
+localhost
+
diff --git a/tests/test.yml b/tests/test.yml
new file mode 100644
index 0000000..249aeb4
--- /dev/null
+++ b/tests/test.yml
@@ -0,0 +1,4 @@
+---
+- hosts: all
+  roles:
+    - ansible-hashicorp-vault
diff --git a/vars/Archlinux.yml b/vars/Archlinux.yml
new file mode 100644
index 0000000..59b8179
--- /dev/null
+++ b/vars/Archlinux.yml
@@ -0,0 +1,5 @@
+---
+vault_os_package:
+  - vault
+
+vault_os_service: vault
diff --git a/vars/main.yml b/vars/main.yml
new file mode 100644
index 0000000..e69de29