ansible/common
ansible/common
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity

chore: migrate bare ansible_* facts to ansible_facts[] syntax
All checks were successful
ci/woodpecker/push/linting Pipeline was successful
Details

Browse source
This commit is contained in:
Simon Cornet 2026-05-19 09:19:03 +02:00
commit 2272aa6a58
23 changed files with 70 additions and 70 deletions
Download patch file Download diff file Expand all files Collapse all files

6
tasks/apk/packages.yaml
View file

@ -2,7 +2,7 @@
# manage packages # manage packages
- name: "manage packages" - name: "manage packages"
when: 'ansible_os_family == "Alpine"' when: 'ansible_facts["os_family"] == "Alpine"'
become: true become: true
block: block:
@ -29,7 +29,7 @@
community.general.apk: community.general.apk:
name: "qemu-guest-agent" name: "qemu-guest-agent"
state: "absent" state: "absent"
when: "ansible_virtualization_type == 'lxc'" when: "ansible_facts['virtualization_type'] == 'lxc'"
# install qemu-guest-agent # install qemu-guest-agent
@ -37,7 +37,7 @@
community.general.apk: community.general.apk:
name: "qemu-guest-agent" name: "qemu-guest-agent"
state: "present" state: "present"
when: "ansible_virtualization_type == 'kvm'" when: "ansible_facts['virtualization_type'] == 'kvm'"
# clean cache # clean cache
- name: "clean cache" - name: "clean cache"

4
tasks/apt/cleanup.yaml
View file

@ -11,11 +11,11 @@
clean: true clean: true
changed_when: false changed_when: false
failed_when: false failed_when: false
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
# run fstrim if target is a VM # run fstrim if target is a VM
- name: "fstrim" - name: "fstrim"
ansible.builtin.command: "fstrim /" ansible.builtin.command: "fstrim /"
changed_when: false changed_when: false
failed_when: false failed_when: false
when: "ansible_virtualization_type == 'kvm'" when: "ansible_facts['virtualization_type'] == 'kvm'"

6
tasks/apt/config.yaml
View file

@ -13,13 +13,13 @@
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0644" mode: "0644"
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
- name: "apt - config - configure apt unatteded updates" - name: "apt - config - configure apt unatteded updates"
ansible.builtin.template: ansible.builtin.template:
src: "templates/apt/conf.d/50unattended-upgrades.{{ ansible_distribution }}.j2" src: "templates/apt/conf.d/50unattended-upgrades.{{ ansible_facts['distribution'] }}.j2"
dest: "/etc/apt/apt.conf.d/50unattended-upgrades" dest: "/etc/apt/apt.conf.d/50unattended-upgrades"
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0644" mode: "0644"
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'

4
tasks/apt/packages.yaml
View file

@ -11,7 +11,7 @@
name: "{{ apt_default_install }}" name: "{{ apt_default_install }}"
state: "present" state: "present"
update_cache: true update_cache: true
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
loop: "{{ apt_default_packages_install }}" loop: "{{ apt_default_packages_install }}"
loop_control: loop_control:
loop_var: "apt_default_install" loop_var: "apt_default_install"
@ -22,7 +22,7 @@
name: "{{ apt_default_delete }}" name: "{{ apt_default_delete }}"
state: "absent" state: "absent"
purge: true purge: true
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
loop: "{{ apt_default_packages_delete }}" loop: "{{ apt_default_packages_delete }}"
loop_control: loop_control:
loop_var: "apt_default_delete" loop_var: "apt_default_delete"

14
tasks/apt/sources.yaml
View file

@ -8,14 +8,14 @@
# configure legacy apt sources # configure legacy apt sources
- name: "configure legacy apt sources" - name: "configure legacy apt sources"
when: > when: >
(ansible_distribution == "Debian" and ansible_distribution_major_version | int <= 12) or (ansible_facts['distribution'] == "Debian" and ansible_facts['distribution_major_version'] | int <= 12) or
(ansible_distribution == "Ubuntu" and ansible_distribution_major_version | int <= 23) (ansible_facts['distribution'] == "Ubuntu" and ansible_facts['distribution_major_version'] | int <= 23)
block: block:
# configure apt sources # configure apt sources
- name: "apt - config - configure apt sources" - name: "apt - config - configure apt sources"
ansible.builtin.template: ansible.builtin.template:
src: "templates/apt/sources.d/{{ ansible_distribution | lower }}.sources.list.j2" src: "templates/apt/sources.d/{{ ansible_facts['distribution'] | lower }}.sources.list.j2"
dest: "/etc/apt/sources.list" dest: "/etc/apt/sources.list"
owner: "root" owner: "root"
group: "root" group: "root"
@ -25,15 +25,15 @@
# configure deb822 apt sources # configure deb822 apt sources
- name: "configure deb822 apt sources" - name: "configure deb822 apt sources"
when: > when: >
(ansible_distribution == "Debian" and ansible_distribution_major_version | int >= 13) or (ansible_facts['distribution'] == "Debian" and ansible_facts['distribution_major_version'] | int >= 13) or
(ansible_distribution == "Ubuntu" and ansible_distribution_major_version | int >= 24) (ansible_facts['distribution'] == "Ubuntu" and ansible_facts['distribution_major_version'] | int >= 24)
block: block:
# configure apt sources # configure apt sources
- name: "apt - config - configure apt sources" - name: "apt - config - configure apt sources"
ansible.builtin.template: ansible.builtin.template:
src: "templates/apt/sources.d/{{ ansible_distribution | lower }}.sources.j2" src: "templates/apt/sources.d/{{ ansible_facts['distribution'] | lower }}.sources.j2"
dest: "/etc/apt/sources.list.d/{{ ansible_distribution | lower }}.sources" dest: "/etc/apt/sources.list.d/{{ ansible_facts['distribution'] | lower }}.sources"
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0644" mode: "0644"

4
tasks/apt/update.yaml
View file

@ -3,7 +3,7 @@
# apt update # apt update
- name: "apt update" - name: "apt update"
tags: "apt-update" tags: "apt-update"
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
block: block:
# run apt update # run apt update
@ -35,7 +35,7 @@
cmd: "fstrim /" cmd: "fstrim /"
changed_when: false changed_when: false
failed_when: false failed_when: false
when: "ansible_virtualization_type == 'kvm'" when: "ansible_facts['virtualization_type'] == 'kvm'"
# check for reboots # check for reboots
- name: "check if reboot required" - name: "check if reboot required"

6
tasks/cron.yaml
View file

@ -9,8 +9,8 @@
group: "root" group: "root"
mode: "0644" mode: "0644"
when: when:
- "ansible_os_family == 'Debian'" - "ansible_facts['os_family'] == 'Debian'"
- "ansible_virtualization_type == 'lxc'" - "ansible_facts['virtualization_type'] == 'lxc'"
tags: "cron" tags: "cron"
# configure cron # configure cron
@ -21,5 +21,5 @@
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0600" mode: "0600"
when: 'ansible_os_family == "Alpine"' when: 'ansible_facts["os_family"] == "Alpine"'
tags: "cron" tags: "cron"

2
tasks/environment.yaml
View file

@ -8,5 +8,5 @@
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0644" mode: "0644"
when: 'ansible_distribution == "Ubuntu"' when: 'ansible_facts["distribution"] == "Ubuntu"'
tags: "environment-file" tags: "environment-file"

2
tasks/firewall.yaml
View file

@ -13,7 +13,7 @@
# manage firewall for debian # manage firewall for debian
- name: "firewall - debian family" - name: "firewall - debian family"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
block: block:
# remove and disable firewall # remove and disable firewall

2
tasks/fstab.yaml
View file

@ -11,5 +11,5 @@
dump: "0" dump: "0"
passno: "0" passno: "0"
when: when:
- "ansible_os_family == 'Alpine'" - "ansible_facts['os_family'] == 'Alpine'"
- "'router' not in inventory_hostname" - "'router' not in inventory_hostname"

4
tasks/hostname.yaml
View file

@ -11,8 +11,8 @@
- name: "manage /etc/hosts file for hostname" - name: "manage /etc/hosts file for hostname"
ansible.builtin.lineinfile: ansible.builtin.lineinfile:
path: "/etc/hosts" path: "/etc/hosts"
regexp: '^{{ ansible_default_ipv4.address }}\s+.*{{ inventory_hostname_short }}.*$' regexp: '^{{ ansible_facts["default_ipv4"].address }}\s+.*{{ inventory_hostname_short }}.*$'
line: "{{ ansible_default_ipv4.address }} {{ inventory_hostname }} {{ inventory_hostname_short }}" line: "{{ ansible_facts['default_ipv4'].address }} {{ inventory_hostname }} {{ inventory_hostname_short }}"
backup: true backup: true
tags: tags:
- "hostfile" - "hostfile"

2
tasks/journald.yaml
View file

@ -8,6 +8,6 @@
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0644" mode: "0644"
when: 'ansible_distribution == "Ubuntu"' when: 'ansible_facts["distribution"] == "Ubuntu"'
notify: "restart journald" notify: "restart journald"
tags: "journald" tags: "journald"

2
tasks/lldpd.yaml
View file

@ -6,6 +6,6 @@
name: "lldpd" name: "lldpd"
state: "present" state: "present"
cache_valid_time: 3600 cache_valid_time: 3600
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
notify: "restart lldpd" notify: "restart lldpd"
tags: "lldp" tags: "lldp"

2
tasks/lxd.yaml
View file

@ -6,5 +6,5 @@
name: "lxd" name: "lxd"
state: "absent" state: "absent"
purge: true purge: true
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
tags: "lxd" tags: "lxd"

46
tasks/main.yaml
View file

@ -8,7 +8,7 @@
# load os variables # load os variables
- name: "include os specific vars" - name: "include os specific vars"
ansible.builtin.include_vars: "vars/{{ ansible_os_family }}.yaml" ansible.builtin.include_vars: "vars/{{ ansible_facts['os_family'] }}.yaml"
tags: "always" tags: "always"
# set dns # set dns
@ -19,13 +19,13 @@
# set hostname # set hostname
- name: "set hostname" - name: "set hostname"
ansible.builtin.import_tasks: "hostname.yaml" ansible.builtin.import_tasks: "hostname.yaml"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
tags: "hostname" tags: "hostname"
# set locale # set locale
- name: "set locale" - name: "set locale"
ansible.builtin.import_tasks: "locale.yaml" ansible.builtin.import_tasks: "locale.yaml"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
tags: "locale" tags: "locale"
# environment # environment
@ -47,8 +47,8 @@
- name: "swap" - name: "swap"
ansible.builtin.import_tasks: "swap.yaml" ansible.builtin.import_tasks: "swap.yaml"
when: when:
- "ansible_os_family =='Debian'" - "ansible_facts['os_family'] =='Debian'"
- "ansible_virtualization_type == 'kvm'" - "ansible_facts['virtualization_type'] == 'kvm'"
tags: "swap" tags: "swap"
# manage fstab # manage fstab
@ -59,13 +59,13 @@
# apk # apk
- name: "apk" - name: "apk"
ansible.builtin.import_tasks: "apk/packages.yaml" ansible.builtin.import_tasks: "apk/packages.yaml"
when: 'ansible_os_family == "Alpine"' when: 'ansible_facts["os_family"] == "Alpine"'
tags: "apk" tags: "apk"
# apt # apt
- name: "apt" - name: "apt"
ansible.builtin.import_tasks: "apt/sources.yaml" ansible.builtin.import_tasks: "apt/sources.yaml"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
tags: "apt" tags: "apt"
# flush handler # flush handler
@ -74,22 +74,22 @@
- name: "apt - update" - name: "apt - update"
ansible.builtin.import_tasks: "apt/update.yaml" ansible.builtin.import_tasks: "apt/update.yaml"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
tags: "apt-update" tags: "apt-update"
- name: "apt - packages" - name: "apt - packages"
ansible.builtin.import_tasks: "apt/packages.yaml" ansible.builtin.import_tasks: "apt/packages.yaml"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
tags: "apt" tags: "apt"
- name: "apt - config" - name: "apt - config"
ansible.builtin.import_tasks: "apt/config.yaml" ansible.builtin.import_tasks: "apt/config.yaml"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
tags: "apt" tags: "apt"
- name: "apt - cleanup" - name: "apt - cleanup"
ansible.builtin.import_tasks: "apt/cleanup.yaml" ansible.builtin.import_tasks: "apt/cleanup.yaml"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
tags: "apt-cleanup" tags: "apt-cleanup"
# manage profile # manage profile
@ -100,7 +100,7 @@
# telemetry # telemetry
- name: "telemetry" - name: "telemetry"
ansible.builtin.import_tasks: "telemetry.yaml" ansible.builtin.import_tasks: "telemetry.yaml"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
tags: "telemetry" tags: "telemetry"
# service # service
@ -111,7 +111,7 @@
loop_var: "__service" loop_var: "__service"
when: when:
- "service is defined" - "service is defined"
- "ansible_os_family == 'Debian'" - "ansible_facts['os_family'] == 'Debian'"
# flush handler # flush handler
- name: "flush handlers" - name: "flush handlers"
@ -120,7 +120,7 @@
# chrony # chrony
- name: "ntp" - name: "ntp"
ansible.builtin.import_tasks: "ntp.yaml" ansible.builtin.import_tasks: "ntp.yaml"
when: "ansible_virtualization_type in ['kvm', 'none']" when: "ansible_facts['virtualization_type'] in ['kvm', 'none']"
tags: "ntp" tags: "ntp"
# flush handler # flush handler
@ -130,22 +130,22 @@
# snap # snap
- name: "snap - daemon" - name: "snap - daemon"
ansible.builtin.import_tasks: "snap/snap_daemon.yaml" ansible.builtin.import_tasks: "snap/snap_daemon.yaml"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
tags: "snap" tags: "snap"
- name: "snap - package" - name: "snap - package"
ansible.builtin.import_tasks: "snap/snap_package.yaml" ansible.builtin.import_tasks: "snap/snap_package.yaml"
when: when:
- "snap_package is defined" - "snap_package is defined"
- "ansible_os_family == 'Debian'" - "ansible_facts['os_family'] == 'Debian'"
tags: "snap" tags: "snap"
# lxd # lxd
- name: "lxd" - name: "lxd"
ansible.builtin.import_tasks: "lxd.yaml" ansible.builtin.import_tasks: "lxd.yaml"
when: when:
- "ansible_os_family =='Debian'" - "ansible_facts['os_family'] =='Debian'"
- "ansible_virtualization_type == 'kvm'" - "ansible_facts['virtualization_type'] == 'kvm'"
tags: "lxd" tags: "lxd"
# flush handler # flush handler
@ -155,7 +155,7 @@
# sysctl # sysctl
- name: "sysctl - set sysctl" - name: "sysctl - set sysctl"
ansible.builtin.import_tasks: "sysctl.yaml" ansible.builtin.import_tasks: "sysctl.yaml"
when: "ansible_virtualization_type in ['kvm', 'none']" when: "ansible_facts['virtualization_type'] in ['kvm', 'none']"
tags: "sysctl" tags: "sysctl"
# systemctl # systemctl
@ -165,8 +165,8 @@
loop_control: loop_control:
loop_var: "__systemctl" loop_var: "__systemctl"
when: when:
- "ansible_os_family =='Debian'" - "ansible_facts['os_family'] =='Debian'"
- "ansible_virtualization_type == 'kvm'" - "ansible_facts['virtualization_type'] == 'kvm'"
tags: "systemctl" tags: "systemctl"
# syslog # syslog
@ -185,7 +185,7 @@
# journald # journald
- name: "journald" - name: "journald"
ansible.builtin.import_tasks: "journald.yaml" ansible.builtin.import_tasks: "journald.yaml"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
tags: "journald" tags: "journald"
# flush handler # flush handler
@ -217,5 +217,5 @@
# firewall # firewall
- name: "firewall" - name: "firewall"
ansible.builtin.import_tasks: "firewall.yaml" ansible.builtin.import_tasks: "firewall.yaml"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
tags: "firewall" tags: "firewall"

6
tasks/motd.yaml
View file

@ -6,7 +6,7 @@
# cleanup old motd debian # cleanup old motd debian
- name: "cleanup old motd debian" - name: "cleanup old motd debian"
when: "ansible_os_family == 'Debian'" when: "ansible_facts['os_family'] == 'Debian'"
block: block:
# find old motd files # find old motd files
@ -41,7 +41,7 @@
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0755" mode: "0755"
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
# configure motd # configure motd
- name: "motd - siempie - alpine" - name: "motd - siempie - alpine"
@ -51,4 +51,4 @@
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0755" mode: "0755"
when: 'ansible_os_family == "Alpine"' when: 'ansible_facts["os_family"] == "Alpine"'

6
tasks/ntp.yaml
View file

@ -10,7 +10,7 @@
name: "chrony" name: "chrony"
state: "present" state: "present"
update_cache: true update_cache: true
when: 'ansible_os_family == "Alpine"' when: 'ansible_facts["os_family"] == "Alpine"'
# create keys file # create keys file
- name: "ntp - chrony keys file" - name: "ntp - chrony keys file"
@ -21,14 +21,14 @@
mode: "0440" mode: "0440"
state: "touch" state: "touch"
notify: "restart chrony" notify: "restart chrony"
when: 'ansible_os_family == "Alpine"' when: 'ansible_facts["os_family"] == "Alpine"'
# install chrony # install chrony
- name: "ntp - install - chrony debian" - name: "ntp - install - chrony debian"
ansible.builtin.apt: ansible.builtin.apt:
name: "chrony" name: "chrony"
state: "present" state: "present"
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
# configure chrony # configure chrony
- name: "ntp - config - configure chrony" - name: "ntp - config - configure chrony"

2
tasks/profile.yaml
View file

@ -7,4 +7,4 @@
line: "export PS1='\\[\\033[01;32m\\]\\u@\\h\\[\\033[00m\\]:\\[\\033[01;34m\\]\\w\\[\\033[00m\\]\\$ '" line: "export PS1='\\[\\033[01;32m\\]\\u@\\h\\[\\033[00m\\]:\\[\\033[01;34m\\]\\w\\[\\033[00m\\]\\$ '"
create: true create: true
mode: "0644" mode: "0644"
when: 'ansible_os_family == "Alpine"' when: 'ansible_facts["os_family"] == "Alpine"'

4
tasks/sshd.yaml
View file

@ -9,7 +9,7 @@
group: "root" group: "root"
mode: "0644" mode: "0644"
notify: "restart ssh" notify: "restart ssh"
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
tags: "sshd" tags: "sshd"
# configure sshd # configure sshd
@ -21,5 +21,5 @@
group: "root" group: "root"
mode: "0644" mode: "0644"
notify: "restart ssh alpine" notify: "restart ssh alpine"
when: 'ansible_os_family == "Alpine"' when: 'ansible_facts["os_family"] == "Alpine"'
tags: "sshd" tags: "sshd"

10
tasks/syslog/config.yaml
View file

@ -13,7 +13,7 @@
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0644" mode: "0644"
when: 'ansible_distribution == "Alpine"' when: 'ansible_facts["distribution"] == "Alpine"'
notify: "restart syslog alpine" notify: "restart syslog alpine"
# configure rsyslogd - debian # configure rsyslogd - debian
@ -24,7 +24,7 @@
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0644" mode: "0644"
when: 'ansible_distribution == "Debian"' when: 'ansible_facts["distribution"] == "Debian"'
notify: "restart rsyslog" notify: "restart rsyslog"
# configure rsyslogd - ubuntu # configure rsyslogd - ubuntu
@ -35,7 +35,7 @@
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0644" mode: "0644"
when: 'ansible_distribution == "Ubuntu"' when: 'ansible_facts["distribution"] == "Ubuntu"'
notify: "restart rsyslog" notify: "restart rsyslog"
# configure rsyslogd - apt # configure rsyslogd - apt
@ -46,7 +46,7 @@
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0644" mode: "0644"
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
notify: "restart rsyslog" notify: "restart rsyslog"
# configure rsyslogd # configure rsyslogd
@ -57,5 +57,5 @@
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0644" mode: "0644"
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
notify: "restart rsyslog" notify: "restart rsyslog"

2
tasks/syslog/install.yaml
View file

@ -6,5 +6,5 @@
name: "rsyslog" name: "rsyslog"
state: "present" state: "present"
cache_valid_time: 3600 cache_valid_time: 3600
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
tags: "syslog" tags: "syslog"

2
tasks/systemctl.yaml
View file

@ -8,6 +8,6 @@
owner: "root" owner: "root"
group: "root" group: "root"
mode: "0644" mode: "0644"
when: 'ansible_os_family == "Debian"' when: 'ansible_facts["os_family"] == "Debian"'
notify: "daemon-reload fstrim.timer" notify: "daemon-reload fstrim.timer"
tags: "systemctl" tags: "systemctl"

2
tasks/telemetry.yaml
View file

@ -5,5 +5,5 @@
ansible.builtin.file: ansible.builtin.file:
path: "/etc/cron.daily/popularity-contest" path: "/etc/cron.daily/popularity-contest"
state: "absent" state: "absent"
when: 'ansible_distribution == "Ubuntu"' when: 'ansible_facts["distribution"] == "Ubuntu"'
tags: "telemetry" tags: "telemetry"