From 3e546656904ba055170a4756d18e07655913cc26 Mon Sep 17 00:00:00 2001 From: Alex Tavarez Date: Wed, 23 Jul 2025 15:38:08 -0400 Subject: [PATCH] Added mirror structure for bootstrap role's vars as that in role's defaults, specifying variable values --- roles/bootstrap/vars/main/general.yml | 12 ++++++++++++ roles/bootstrap/vars/options/certbot.yml | 3 +++ roles/bootstrap/vars/options/crowdsec.yml | 2 ++ roles/bootstrap/vars/options/git.yml | 4 ++++ roles/bootstrap/vars/options/gpg.yml | 2 ++ roles/bootstrap/vars/options/proftpd.yml | 16 ++++++++++++++++ roles/bootstrap/vars/options/ssh.yml | 5 +++++ 7 files changed, 44 insertions(+) create mode 100644 roles/bootstrap/vars/main/general.yml create mode 100644 roles/bootstrap/vars/options/certbot.yml create mode 100644 roles/bootstrap/vars/options/crowdsec.yml create mode 100644 roles/bootstrap/vars/options/git.yml create mode 100644 roles/bootstrap/vars/options/gpg.yml create mode 100644 roles/bootstrap/vars/options/proftpd.yml create mode 100644 roles/bootstrap/vars/options/ssh.yml diff --git a/roles/bootstrap/vars/main/general.yml b/roles/bootstrap/vars/main/general.yml new file mode 100644 index 0000000..13d0393 --- /dev/null +++ b/roles/bootstrap/vars/main/general.yml @@ -0,0 +1,12 @@ +#SPDX-License-Identifier: MIT-0 +--- +# vars file for bootstrap +admins: ~ +guests: ~ +users: ~ +roots: ~ +enrollment_key: "{{ crowdsec_key }}" +gcfs_password: "{{ gocrypt_password }}" +gpg_sign_id: ~ +official_name: ~ +official_email: ~ diff --git a/roles/bootstrap/vars/options/certbot.yml b/roles/bootstrap/vars/options/certbot.yml new file mode 100644 index 0000000..17a530f --- /dev/null +++ b/roles/bootstrap/vars/options/certbot.yml @@ -0,0 +1,3 @@ +--- +dns_secret: "{{ porkbun_api_secret }}" +dns_key: "{{ porkbun_api_key }}" \ No newline at end of file diff --git a/roles/bootstrap/vars/options/crowdsec.yml b/roles/bootstrap/vars/options/crowdsec.yml new file mode 100644 index 0000000..90372ec --- /dev/null +++ b/roles/bootstrap/vars/options/crowdsec.yml @@ -0,0 +1,2 @@ +--- +enrollment_key: "{{ crowdsec_key }}" \ No newline at end of file diff --git a/roles/bootstrap/vars/options/git.yml b/roles/bootstrap/vars/options/git.yml new file mode 100644 index 0000000..dc37218 --- /dev/null +++ b/roles/bootstrap/vars/options/git.yml @@ -0,0 +1,4 @@ +--- +gpg_sign_id: ~ +official_name: ~ +official_email: ~ \ No newline at end of file diff --git a/roles/bootstrap/vars/options/gpg.yml b/roles/bootstrap/vars/options/gpg.yml new file mode 100644 index 0000000..de243c2 --- /dev/null +++ b/roles/bootstrap/vars/options/gpg.yml @@ -0,0 +1,2 @@ +--- +gcfs_password: "{{ gocrypt_password }}" \ No newline at end of file diff --git a/roles/bootstrap/vars/options/proftpd.yml b/roles/bootstrap/vars/options/proftpd.yml new file mode 100644 index 0000000..850cdea --- /dev/null +++ b/roles/bootstrap/vars/options/proftpd.yml @@ -0,0 +1,16 @@ +--- +welcome_msg_path: /etc/proftpd/welcome.msg +goodbye_msg_path: /etc/proftpd/bye.msg +transfer_msg_path: /etc/proftpd/transfer.msg +default_umask: "0022 0022" +users_allowed: cybersmuggler webmaster +servername: ftp.sukaato.moe +admin_email: admin@sukaato.moe +serveralias: sukaato +ftp_protocols: ftps +ftp_port: 990 +sec_cert_path: /etc/srv/domain.cert.pem +sca_cert_path: /etc/srv/domain.cert.pem +key_cert_path: /etc/srv/private.key.pem +ftp_auth_user_path: /etc/proftpd/ftp.passwd +ftp_auth_group_path: /etc/proftpd/ftpd.group \ No newline at end of file diff --git a/roles/bootstrap/vars/options/ssh.yml b/roles/bootstrap/vars/options/ssh.yml new file mode 100644 index 0000000..5546866 --- /dev/null +++ b/roles/bootstrap/vars/options/ssh.yml @@ -0,0 +1,5 @@ +--- +pubkeys: "{{ user_pubkeys }}" +primary_root_acct: "{{ root_auths[0] }}" +nonlogin_method: delog +roots: "{{ root_auths }}" \ No newline at end of file