Changed paths for roles, collections, plugins, etc., and set playbook directories, etc., for new project structure

ansible.cfg

@@ -16,7 +16,7 @@
 ;force_color=False
 
 # (path) The default root path for Ansible config files on the controller.
-;home=~/.ansible
+home=.ansible
 
 # (boolean) This setting allows suppressing colorizing output, which is used to give a better indication of failure and status information.
 ;nocolor=False
@@ -32,7 +32,7 @@
 ;become_password_file=
 
 # (pathspec) Colon separated paths in which Ansible will search for Become Plugins.
-;become_plugins={{ ANSIBLE_HOME ~ "/plugins/become:/usr/share/ansible/plugins/become" }}
+become_plugins={{ "plugins/become:.ansible/plugins/become:" ~ ANSIBLE_HOME ~ "/plugins/become:/usr/share/ansible/plugins/become" }}
 
 # (string) Chooses which cache plugin to use, the default 'memory' is ephemeral.
 ;fact_caching=memory
@@ -54,7 +54,7 @@
 
 # (pathspec) Colon separated paths in which Ansible will search for collections content. Collections must be in nested *subdirectories*, not directly in these directories. For example, if ``COLLECTIONS_PATHS`` includes ``'{{ ANSIBLE_HOME ~ "/collections" }}'``, and you want to add ``my.collection`` to that directory, it must be saved as ``'{{ ANSIBLE_HOME} ~ "/collections/ansible_collections/my/collection" }}'``.
 
-collections_path=./collections
+collections_path={{ ".ansible/collections:" ~ ANSIBLE_HOME ~ "/collections:/usr/share/ansible/collections" }}
 
 # (boolean) A boolean to enable or disable scanning the sys.path for installed collections
 ;collections_scan_sys_path=True
@@ -63,7 +63,7 @@ collections_path=./collections
 ;connection_password_file=
 
 # (pathspec) Colon separated paths in which Ansible will search for Action Plugins.
-;action_plugins={{ ANSIBLE_HOME ~ "/plugins/action:/usr/share/ansible/plugins/action" }}
+action_plugins={{ "plugins/action:.ansible/plugins/action:" ~ ANSIBLE_HOME ~ "/plugins/action:/usr/share/ansible/plugins/action" }}
 
 # (boolean) When enabled, this option allows lookup plugins (whether used in variables as ``{{lookup('foo')}}`` or as a loop as with_foo) to return data that is not marked 'unsafe'.
 # By default, such data is marked as unsafe to prevent the templating engine from evaluating any jinja2 templating language, as this could represent a security risk. This option is provided to allow for backward compatibility, however users should first consider adding allow_unsafe=True to any lookups which may be expected to contain data which may be run through the templating engine late
@@ -76,19 +76,20 @@ collections_path=./collections
 ;ask_vault_pass=False
 
 # (pathspec) Colon separated paths in which Ansible will search for Cache Plugins.
-;cache_plugins={{ ANSIBLE_HOME ~ "/plugins/cache:/usr/share/ansible/plugins/cache" }}
+cache_plugins={{ "plugins/cache:.ansible/plugins/cache:" ~ ANSIBLE_HOME ~ "/plugins/cache:/usr/share/ansible/plugins/cache" }}
 
 # (pathspec) Colon separated paths in which Ansible will search for Callback Plugins.
-;callback_plugins={{ ANSIBLE_HOME ~ "/plugins/callback:/usr/share/ansible/plugins/callback" }}
+callback_plugins={{"plugins/callback:.ansible/plugins/callback:" ~ ANSIBLE_HOME ~ "/plugins/callback:/usr/share/ansible/plugins/callback" }}
 
 # (pathspec) Colon separated paths in which Ansible will search for Cliconf Plugins.
-;cliconf_plugins={{ ANSIBLE_HOME ~ "/plugins/cliconf:/usr/share/ansible/plugins/cliconf" }}
+cliconf_plugins={{ "plugins/cliconf:.ansible/plugins/cliconf:" ~ ANSIBLE_HOME ~ "/plugins/cliconf:/usr/share/ansible/plugins/cliconf" }}
 
 # (pathspec) Colon separated paths in which Ansible will search for Connection Plugins.
-;connection_plugins={{ ANSIBLE_HOME ~ "/plugins/connection:/usr/share/ansible/plugins/connection" }}
+connection_plugins={{ "plugins/connection:.ansible/plugins/connection:" ~ ANSIBLE_HOME ~ "/plugins/connection:/usr/share/ansible/plugins/connection" }}
 
 # (boolean) Toggles debug output in Ansible. This is *very* verbose and can hinder multiprocessing.  Debug output can also include secret information despite no_log settings being enabled, which means debug mode should not be used in production.
-;debug=False
+# @TODO turn the below off in prod
+debug=True
 
 # (string) This indicates the command to use to spawn a shell under for Ansible's execution needs on a target. Users may need to change this in rare instances when shell usage is constrained, but in most cases it may be left as is.
 ;executable=/bin/sh
@@ -97,22 +98,22 @@ collections_path=./collections
 # If not set, it will fallback to the default from the ``ansible.builtin.setup`` module: ``/etc/ansible/facts.d``.
 # This does **not** affect  user defined tasks that use the ``ansible.builtin.setup`` module.
 # The real action being created by the implicit task is currently    ``ansible.legacy.gather_facts`` module, which then calls the configured fact modules, by default this will be ``ansible.builtin.setup`` for POSIX systems but other platforms might have different defaults.
-;fact_path=
+fact_path=facts.d
 
 # (pathspec) Colon separated paths in which Ansible will search for Jinja2 Filter Plugins.
-;filter_plugins={{ ANSIBLE_HOME ~ "/plugins/filter:/usr/share/ansible/plugins/filter" }}
+filter_plugins={{ "plugins/filter:.ansible/plugins/filter:" ~ ANSIBLE_HOME ~ "/plugins/filter:/usr/share/ansible/plugins/filter" }}
 
 # (boolean) This option controls if notified handlers run on a host even if a failure occurs on that host.
 # When false, the handlers will not run if a failure has occurred on a host.
 # This can also be set per play or on the command line. See Handlers and Failure for more details.
-;force_handlers=False
+force_handlers=False
 
 # (integer) Maximum number of forks Ansible will use to execute tasks on target hosts.
-;forks=5
+forks=5
 
 # (string) This setting controls the default policy of fact gathering (facts discovered about remote systems).
 # This option can be useful for those wishing to save fact gathering time. Both 'smart' and 'explicit' will use the cache plugin.
-;gathering=implicit
+gathering=smart
 
 # (list) Set the `gather_subset` option for the :ref:`ansible_collections.ansible.builtin.setup_module` task in the implicit fact gathering. See the module documentation for specifics.
 # It does **not** apply to user defined ``ansible.builtin.setup`` tasks.
@@ -134,17 +135,17 @@ collections_path=./collections
 ;hash_behaviour=replace
 
 # (pathlist) Comma separated list of Ansible inventory sources
-inventory=./hosts.ini
+inventory=hosts.ini
 
 # (pathspec) Colon separated paths in which Ansible will search for HttpApi Plugins.
-;httpapi_plugins={{ ANSIBLE_HOME ~ "/plugins/httpapi:/usr/share/ansible/plugins/httpapi" }}
+httpapi_plugins={{ "plugins/httpapi:.ansible/httpapi:" ~ ANSIBLE_HOME ~ "/plugins/httpapi:/usr/share/ansible/plugins/httpapi" }}
 
 # (float) This sets the interval (in seconds) of Ansible internal processes polling each other. Lower values improve performance with large playbooks at the expense of extra CPU load. Higher values are more suitable for Ansible usage in automation scenarios, when UI responsiveness is not required but CPU usage might be a concern.
 # The default corresponds to the value hardcoded in Ansible <= 2.1
 ;internal_poll_interval=0.001
 
 # (pathspec) Colon separated paths in which Ansible will search for Inventory Plugins.
-;inventory_plugins={{ ANSIBLE_HOME ~ "/plugins/inventory:/usr/share/ansible/plugins/inventory" }}
+inventory_plugins={{ "plugins/inventory:.ansible/inventory:" ~ ANSIBLE_HOME ~ "/plugins/inventory:/usr/share/ansible/plugins/inventory" }}
 
 # (string) This is a developer-specific feature that allows enabling additional Jinja2 extensions.
 # See the Jinja2 documentation for details. If you do not know what these do, you probably don't need to change this setting :)
@@ -161,7 +162,7 @@ inventory=./hosts.ini
 ;bin_ansible_callbacks=False
 
 # (tmppath) Temporary directory for Ansible to use on the controller.
-;local_tmp={{ ANSIBLE_HOME ~ "/tmp" }}
+local_tmp={{ ANSIBLE_HOME ~ "/.tmp" }}
 
 # (list) List of logger names to filter out of the log file
 ;log_filter=
@@ -170,7 +171,7 @@ inventory=./hosts.ini
 ;log_path=
 
 # (pathspec) Colon separated paths in which Ansible will search for Lookup Plugins.
-;lookup_plugins={{ ANSIBLE_HOME ~ "/plugins/lookup:/usr/share/ansible/plugins/lookup" }}
+lookup_plugins={{ "plugins/lookup:.ansible/lookup:" ~ ANSIBLE_HOME ~ "/plugins/lookup:/usr/share/ansible/plugins/lookup" }}
 
 # (string) Sets the macro for the 'ansible_managed' variable available for :ref:`ansible_collections.ansible.builtin.template_module` and :ref:`ansible_collections.ansible.windows.win_template_module`.  This is only relevant for those two modules.
 ;ansible_managed=Ansible managed
@@ -185,13 +186,13 @@ inventory=./hosts.ini
 ;module_name=command
 
 # (pathspec) Colon separated paths in which Ansible will search for Modules.
-;library={{ ANSIBLE_HOME ~ "/plugins/modules:/usr/share/ansible/plugins/modules" }}
+library={{ "plugins/modules:.ansible/modules:" ~ ANSIBLE_HOME ~ "/plugins/modules:/usr/share/ansible/plugins/modules" }}
 
 # (pathspec) Colon separated paths in which Ansible will search for Module utils files, which are shared by modules.
-;module_utils={{ ANSIBLE_HOME ~ "/plugins/module_utils:/usr/share/ansible/plugins/module_utils" }}
+module_utils={{ "plugins/module_utils:.ansible/module_utils:" ~ ANSIBLE_HOME ~ "/plugins/module_utils:/usr/share/ansible/plugins/module_utils" }}
 
 # (pathspec) Colon separated paths in which Ansible will search for Netconf Plugins.
-;netconf_plugins={{ ANSIBLE_HOME ~ "/plugins/netconf:/usr/share/ansible/plugins/netconf" }}
+netconf_plugins={{ "plugins/netconf:.ansible/netconf:" ~ ANSIBLE_HOME ~ "/plugins/netconf:/usr/share/ansible/plugins/netconf" }}
 
 # (boolean) Toggle Ansible's display and logging of task details, mainly used to avoid security disclosures.
 ;no_log=False
@@ -221,7 +222,7 @@ inventory=./hosts.ini
 ;remote_user=
 
 # (pathspec) Colon separated paths in which Ansible will search for Roles.
-roles_path=./roles
+roles_path={{ ".ansible/roles:" ~ ANSIBLE_HOME ~ "/roles:/usr/share/ansible/roles:/etc/ansible/roles" }}
 
 # (string) Set the main callback used to display Ansible output. You can only have one at a time.
 # You can have many other callbacks, but just one can be in charge of stdout.
@@ -232,7 +233,7 @@ roles_path=./roles
 ;strategy=linear
 
 # (pathspec) Colon separated paths in which Ansible will search for Strategy Plugins.
-;strategy_plugins={{ ANSIBLE_HOME ~ "/plugins/strategy:/usr/share/ansible/plugins/strategy" }}
+strategy_plugins={{ "plugins/strategy:.ansible/plugins/strategy:" ~ ANSIBLE_HOME ~ "/plugins/strategy:/usr/share/ansible/plugins/strategy" }}
 
 # (boolean) Toggle the use of "su" for tasks.
 ;su=False
@@ -241,10 +242,10 @@ roles_path=./roles
 ;syslog_facility=LOG_USER
 
 # (pathspec) Colon separated paths in which Ansible will search for Terminal Plugins.
-;terminal_plugins={{ ANSIBLE_HOME ~ "/plugins/terminal:/usr/share/ansible/plugins/terminal" }}
+terminal_plugins={{ "plugins/terminal:.ansible/plugins/terminal:" ~ ANSIBLE_HOME ~ "/plugins/terminal:/usr/share/ansible/plugins/terminal" }}
 
 # (pathspec) Colon separated paths in which Ansible will search for Jinja2 Test Plugins.
-;test_plugins={{ ANSIBLE_HOME ~ "/plugins/test:/usr/share/ansible/plugins/test" }}
+test_plugins={{ "plugins/test:.ansible/plugins/test:" ~ ANSIBLE_HOME ~ "/plugins/test:/usr/share/ansible/plugins/test" }}
 
 # (integer) This is the default timeout for connection plugins to use.
 ;timeout=10
@@ -258,7 +259,7 @@ roles_path=./roles
 ;error_on_undefined_vars=True
 
 # (pathspec) Colon separated paths in which Ansible will search for Vars Plugins.
-;vars_plugins={{ ANSIBLE_HOME ~ "/plugins/vars:/usr/share/ansible/plugins/vars" }}
+vars_plugins={{ ".ansible/plugins/vars:" ~ ANSIBLE_HOME ~ "/plugins/vars:/usr/share/ansible/plugins/vars" }}
 
 # (string) The vault_id to use for encrypting by default. If multiple vault_ids are provided, this specifies which to use for encryption. The --encrypt-vault-id cli option overrides the configured value.
 ;vault_encrypt_identity=
@@ -355,7 +356,7 @@ host_key_checking=False
 ;old_plugin_cache_clear=False
 
 # (path) A number of non-playbook CLIs have a ``--playbook-dir`` argument; this sets the default value for it.
-;playbook_dir=
+playbook_dir=.
 
 # (string) This sets which playbook dirs will be used as a root to process vars plugins, which includes finding host_vars/group_vars
 ;playbook_vars_root=top
@@ -408,7 +409,7 @@ host_key_checking=False
 ;validate_action_group_metadata=True
 
 # (list) Accept list for variable plugins that require it.
-;vars_plugins_enabled=host_group_vars
+vars_plugins_enabled=host_group_vars
 
 # (list) Allows to change the group variable precedence merge order.
 ;precedence=all_inventory, groups_inventory, all_plugins_inventory, all_plugins_play, groups_plugins_inventory, groups_plugins_play
@@ -425,7 +426,7 @@ host_key_checking=False
 
 # (list) Check all of these extensions when looking for 'variable' files which should be YAML or JSON or vaulted versions of these.
 # This affects vars_files, include_vars, inventory and vars plugins among others.
-;yaml_valid_extensions=.yml, .yaml, .json
+yaml_valid_extensions=.yml, .yaml, .json
 
 
 [privilege_escalation]