switched to roles

- all tasks/* have been moved to their own roles in roles/* - each file && template is now oragnized per-role - annotated each task which still isn't idempotent !TODO!
2025-09-26 05:00:05 +00:00 · 2023-01-14 17:26:17 -06:00
parent d435ab80ac
commit abaa4c9639
23 changed files with 33 additions and 24 deletions
--- a/roles/essential/tasks/main.yml
+++ b/roles/essential/tasks/main.yml
@@ -0,0 +1,49 @@
+---
+# TODO: make idempotent
+- name: Add Gitea repo key
+  shell: curl -s https://packaging.gitlab.io/gitea/gpg.key | sudo gpg --no-default-keyring --keyring gnupg-ring:/etc/apt/trusted.gpg.d/morph027-gitea.gpg --import
+
+# TODO: make idempotent
+- name: Set key perms
+  shell: sudo chmod 644 /etc/apt/trusted.gpg.d/morph027-gitea.gpg
+
+- name: Add Gitea repo
+  apt_repository:
+    filename: morph027-gitea
+    repo: deb https://packaging.gitlab.io/gitea gitea main
+
+- name: Upgrade Packages
+  apt:
+    update_cache: yes
+    upgrade: full
+
+- name: Install required software
+  package:
+    name:
+      - hugo
+      - gitea
+      - git
+      - nginx
+      - tor
+      - ufw
+      - fail2ban
+      - goaccess
+      - htop
+      - zsh # :D
+      - python3-certbot-nginx
+
+# TODO: make idempotent
+- name: Setup default shell (zsh)
+  shell: chsh -s /usr/bin/zsh
+
+- name: Clone Powerlevel10k theme
+  git:
+    repo: "https://github.com/romkatv/powerlevel10k.git"
+    dest: "/root/powerlevel10k"
+    depth: 1
+
+- name: Install .zshrc
+  copy:
+    src: .zshrc
+    dest: /root/.zshrc
+    force: no