env-ansible/local.yml

---
# Harmonize my systems rather than doing everything manually. :)

# Setup of any device connected to this repo.
- name: Main | Default Setup
  hosts: localhost
  connection: local
  become: true  

  pre_tasks:
    - include: facts/general/system.yml
    - include: facts/general/package.yml
    - include: facts/general/service.yml
    - include: facts/general/user.yml

  tasks:
    - include: tasks/general/software/packages.yml

    - include: facts/general/gather.yml

    - include: tasks/general/acct_mgmt/groups.yml
    - include: tasks/general/acct_mgmt/users.yml
    - include: tasks/general/acct_mgmt/sudo.yml
    - include: tasks/general/acct_mgmt/keys.yml
    - include: tasks/general/acct_mgmt/mounts.yml

    - include: tasks/general/cron/ansible.yml

    - include: tasks/general/software/harden.yml
      ignore_errors: yes


# Additional setup for systems with GUI.
- name: Main | Workstation UI Setup
  hosts: workstation
  connection: local
  become: true

  pre_tasks:
    - include: facts/workstation/system.yml
    - include: facts/workstation/package.yml

  tasks:
    - include: tasks/linux/software/flatpaks.yml
      when: ansible_system == "Linux" and
            flatpak_distro == "yes sir"
    - name: Worktation | Linux | Packages | Not Implemented
      shell: echo "Not implemented yet. :("
      when: ansible_system == "Linux" and
            flatpak_distro != "yes sir"

    - include: tasks/freebsd/software/gui.yml
      when: ansible_system == "FreeBSD"


# Create reports to analyze security.
- name: Main | Hardness Tests
  hosts: localhost
  connection: local
  become: true

  tasks:
    - include: tasks/general/tests/lynis.yml
Initial commit of local.yml for testing. 2020-12-21 04:19:21 -06:00			`---`
			`# Harmonize my systems rather than doing everything manually. :)`
Testing variables. 2020-12-28 18:37:37 -06:00
Fix path to lynis. Better comments. 2021-02-02 21:34:08 -06:00			`# Setup of any device connected to this repo.`
Fix dash in variable name. Update hosts file. Better names in local. 2021-02-02 21:31:45 -06:00			`- name: Main \| Default Setup`
Opposite attempt of the previous, use localhost instead of all. 2021-02-01 08:20:03 -06:00			`hosts: localhost`
Add connection type local. Localhost wasn't enough for FreeBSD. 2020-12-31 17:52:45 -06:00			`connection: local`
Try to use set_fact for package names. 2020-12-28 20:06:41 -06:00			`become: true`

			`pre_tasks:`
When setting facts for localhost, does not set facts for other host patterns. Testing breakout of workstation facts. 2021-02-01 08:28:12 -06:00			`- include: facts/general/system.yml`
			`- include: facts/general/package.yml`
			`- include: facts/general/service.yml`
			`- include: facts/general/user.yml`
Try to use set_fact for package names. 2020-12-28 20:06:41 -06:00
Initial commit of local.yml for testing. 2020-12-21 04:19:21 -06:00			`tasks:`
More organization and beginning to add 1337 share. 2021-02-01 05:03:27 -06:00			`- include: tasks/general/software/packages.yml`
Use bash_exec fact for more. 2021-02-02 21:05:46 -06:00
			`- include: facts/general/gather.yml`
More organization and beginning to add 1337 share. 2021-02-01 05:03:27 -06:00
			`- include: tasks/general/acct_mgmt/groups.yml`
			`- include: tasks/general/acct_mgmt/users.yml`
			`- include: tasks/general/acct_mgmt/sudo.yml`
Add pkg refresh for FreeBSD. Create SSH key with shell instead of fancy module. Still looking into how to (safely) get newer ansible on Debian. 2021-02-01 06:52:28 -06:00			`- include: tasks/general/acct_mgmt/keys.yml`
More organization and beginning to add 1337 share. 2021-02-01 05:03:27 -06:00			`- include: tasks/general/acct_mgmt/mounts.yml`

			`- include: tasks/general/cron/ansible.yml`
Trying to fix hosts file by defining it in config. Added when for POP!_OS. 2020-12-21 05:50:12 -06:00
Use bash_exec fact for more. 2021-02-02 21:05:46 -06:00			`- include: tasks/general/software/harden.yml`
			`ignore_errors: yes`

Try to use set_fact for package names. 2020-12-28 20:06:41 -06:00
Fix path to lynis. Better comments. 2021-02-02 21:34:08 -06:00			`# Additional setup for systems with GUI.`
Fix dash in variable name. Update hosts file. Better names in local. 2021-02-02 21:31:45 -06:00			`- name: Main \| Workstation UI Setup`
Try both all and localhost. 2020-12-31 18:00:53 -06:00			`hosts: workstation`
			`connection: local`
Testing different ways of doing conditional. Also moved inventory to hosts. 2020-12-21 05:44:28 -06:00			`become: true`
Try to use set_fact for package names. 2020-12-28 20:06:41 -06:00
When setting facts for localhost, does not set facts for other host patterns. Testing breakout of workstation facts. 2021-02-01 08:28:12 -06:00			`pre_tasks:`
			`- include: facts/workstation/system.yml`
			`- include: facts/workstation/package.yml`

Testing different ways of doing conditional. Also moved inventory to hosts. 2020-12-21 05:44:28 -06:00			`tasks:`
More organization and beginning to add 1337 share. 2021-02-01 05:03:27 -06:00			`- include: tasks/linux/software/flatpaks.yml`
Starting to test Ubuntu Server. Need to find a way to get it working without putting it in the hosts file. 2021-01-31 15:38:46 -06:00			`when: ansible_system == "Linux" and`
Change to definitely use a string value. 2021-02-02 21:44:56 -06:00			`flatpak_distro == "yes sir"`
Debugging flatpak_distro fact. 2021-02-02 21:40:46 -06:00			`- name: Worktation \| Linux \| Packages \| Not Implemented`
			`shell: echo "Not implemented yet. :("`
Starting to test Ubuntu Server. Need to find a way to get it working without putting it in the hosts file. 2021-01-31 15:38:46 -06:00			`when: ansible_system == "Linux" and`
Change to definitely use a string value. 2021-02-02 21:44:56 -06:00			`flatpak_distro != "yes sir"`
More organization and beginning to add 1337 share. 2021-02-01 05:03:27 -06:00
			`- include: tasks/freebsd/software/gui.yml`
Starting to test Ubuntu Server. Need to find a way to get it working without putting it in the hosts file. 2021-01-31 15:38:46 -06:00			`when: ansible_system == "FreeBSD"`
End script with a Lynis hardness check. 2020-12-28 20:57:05 -06:00

Fix path to lynis. Better comments. 2021-02-02 21:34:08 -06:00			`# Create reports to analyze security.`
			`- name: Main \| Hardness Tests`
Opposite attempt of the previous, use localhost instead of all. 2021-02-01 08:20:03 -06:00			`hosts: localhost`
Try both all and localhost. 2020-12-31 18:00:53 -06:00			`connection: local`
End script with a Lynis hardness check. 2020-12-28 20:57:05 -06:00			`become: true`

			`tasks:`
Fix path to lynis. Better comments. 2021-02-02 21:34:08 -06:00			`- include: tasks/general/tests/lynis.yml`