netz39-infra-ansible/platon.yml

132 lines
4 KiB
YAML
Raw Normal View History

2022-02-13 00:10:01 +01:00
---
- hosts: platon.n39.eu
become: true
vars:
ansible_python_interpreter: /usr/bin/python3
door_open_command: '/home/pi/sesame-open.sh'
2022-02-13 00:10:01 +01:00
ble_keykeeper_dir: '/home/pi/netz39_ble_keykeeper'
roles:
- role: ble-keykeeper-role
tasks:
- name: Install packages needed for the system
# This is a list of all packages,
# unless they are installed by a specific role
ansible.builtin.apt:
state: present
name:
# Should come from ble-keeper-role
# see https://github.com/netz39/ble-keykeeper-role/issues/4
- python3-pip
# Regular packages
- tmux
- git-core
- libmosquitto-dev
- name: Set MAC address for proper DHCP recognition
# Uses mac variable from inventory
ansible.builtin.template:
src: templates/network-interfaces-dhcp-mac.j2
dest: /etc/network/interfaces.d/platon-mac
owner: root
group: root
mode: '0644'
2022-07-23 16:34:13 +02:00
2022-07-23 17:51:31 +02:00
- name: Disable IPv6
# Because it is not working....
ansible.builtin.copy:
src: files/sysctl-no-ipv6.conf
dest: /etc/sysctl.d/99-systcl-no-ipv6.conf
owner: root
group: root
mode: '0644'
2022-07-23 16:34:13 +02:00
### Sesam for SSH access
#
# Make sure to provide the .ssh/authorized_keys from backup, if needed
- name: Ensure sesam user is there
ansible.builtin.user:
name: sesam
shell: /home/sesam/door-open.sh
groups: i2c
append: yes
- name: Copy door-open.ssh for sesam
ansible.builtin.copy:
src: files/platon/sesam-door-open.sh
dest: /home/sesam/door-open.sh
### Gatekeeper user (pi for now)
#
# All the gatekeeping / door control stuff is here!
- name: Ensure gatekeeper user is there
ansible.builtin.user:
name: "{{ gatekeeper_user }}"
groups: dialout,audio,plugdev,input,netdev,i2c,gpio
append: yes
- name: Copy management scripts
ansible.builtin.copy:
src: "files/platon/{{ item }}"
dest: "/home/{{ gatekeeper_user }}/{{ item }}"
owner: "{{ gatekeeper_user }}"
group: "{{ gatekeeper_user }}"
mode: "0755"
loop:
- i2cspeed.sh
- reboot.sh
- unstuck.sh
- sesame-open.sh
- name: Download wiringPi library
# WiringPi needs to be installed, but that library seems to be
# obsolete. We download something and hope it works...
ansible.builtin.get_url:
url: https://project-downloads.drogon.net/wiringpi-latest.deb
dest: "/home/{{ gatekeeper_user }}/wiringpi-latest.deb"
mode: "0644"
force: no
register: wiringPi_download
- name: Install wiringPi library
ansible.builtin.apt:
state: present
deb: "/home/{{ gatekeeper_user }}/wiringpi-latest.deb"
when: wiringPi_download.changed
### Rollladensteuerung
- name: Clone netz39_rollladensteuerung initial checkout
# Do this as the gatekeeper user!
become: yes
become_user: "{{ gatekeeper_user }}"
ansible.builtin.git:
repo: https://github.com/netz39/rollladensteuerung.git
dest: "/home/{{ gatekeeper_user }}/netz39_rollladensteuerung"
clone: yes
update: no
- name: Compile dootstate agent
# Do this as the gatekeeper user!
become: yes
become_user: "{{ gatekeeper_user }}"
ansible.builtin.shell:
chdir: "/home/{{ gatekeeper_user }}/netz39_rollladensteuerung/raspberry/doorstate"
cmd: make
creates: "/home/{{ gatekeeper_user }}/netz39_rollladensteuerung/raspberry/doorstate/doorstate"
- name: Compile shuttercontrol
# Do this as the gatekeeper user!
become: yes
become_user: "{{ gatekeeper_user }}"
ansible.builtin.shell:
chdir: "/home/{{ gatekeeper_user }}/netz39_rollladensteuerung/raspberry/shuttercontrol"
cmd: make
creates: "/home/{{ gatekeeper_user }}/netz39_rollladensteuerung/raspberry/shuttercontrol/shuttercontrol"