reorganization and docker certs update to ansible

ansible/configuration/fail2ban/config-f2b-protect-sshd.yaml

@@ -1,25 +0,0 @@
----
-- name: Install fail2ban and configure sshd
-  hosts: "{{ my_hosts | d([]) }}"
-  become: true
-
-  tasks:
-    - name: Install fail2ban
-      ansible.builtin.apt:
-        name:
-          - fail2ban
-        update_cache: true
-
-    - name: Copy fail2ban config file
-      ansible.builtin.copy:
-        src: configfiles/debian-sshd-default.conf
-        dest: /etc/fail2ban/jail.d/debian-sshd-default.conf
-        mode: '0644'
-        owner: root
-        group: root
-
-    - name: Restart fail2ban
-      ansible.builtin.systemd_service:
-        state: restarted
-        daemon_reload: true
-        name: fail2ban

ansible/configuration/fail2ban/configfiles/debian-sshd-default.conf

@@ -1,3 +0,0 @@
-[sshd]
-enabled = true
-bantime = 3600

ansible/configuration/docker/docker-certs-enable.yaml → ansible/docker/docker-certs-enable.yaml

@@ -1,6 +1,6 @@
 ---
 - name: "Docker Certs enable"
-  hosts: "{{ target_hosts | default('all') }}"
+  hosts: "{{ my_hosts | d([]) }}"
   become: true
   vars:
     certs_path: "/root/docker-certs"

ansible/configuration/docker/docker-certs.yaml → ansible/docker/docker-certs.yaml

@@ -1,11 +1,11 @@
 ---
 - name: "Docker Certs"
-  hosts: "{{ target_hosts | default('all') }}"
+  hosts: "{{ my_hosts | d([]) }}"
   become: true
   vars:
     certs_path: "/root/docker-certs"
     cert_validity_days: 3650
-    cn_domain: "clcreative.de"
+    cn_domain: "your-domain.tld"
 
   tasks:
     - name: Check if docker certs are existing

ansible/installation/inst-core.yaml

@@ -1,12 +0,0 @@
----
-- name: Install core packages
-  hosts: "{{ my_hosts | d([]) }}"
-  become: true
-
-  tasks:
-    - name: Install core packages
-      ansible.builtin.apt:
-        name:
-          - prometheus-node-exporter
-          - nfs-common
-        update_cache: true

ansible/installation/inst-microk8s.yaml

@@ -1,16 +0,0 @@
----
-- name: Install microk8s
-  hosts: "{{ my_hosts | d([]) }}"
-  become: true
-
-  tasks:
-    - name: Install microk8s
-      community.general.snap:
-        classic: true
-        name: microk8s
-
-    - name: Add user to group microk8s
-      ansible.builtin.user:
-        name: "{{ lookup('env', 'USER') }}"
-        groups: microk8s
-        append: true

ansible/ubuntu/upd-apt.yaml

@@ -0,0 +1,14 @@
+---
+- name: Update and upgrade apt packages
+  hosts: all
+
+  tasks:
+    - name: Update packages with apt
+      when: ansible_pkg_mgr == 'apt'
+      ansible.builtin.apt:
+        update_cache: true
+
+    - name: Upgrade packages with apt
+      when: ansible_pkg_mgr == 'apt'
+      ansible.builtin.apt:
+        upgrade: dist

ansible/update/upd-apt-dist.yaml

@@ -1 +0,0 @@
----

ansible/update/upd-apt.yaml

@@ -1,27 +0,0 @@
----
-- name: Update and upgrade apt packages
-  hosts: all
-
-  tasks:
-    - name: Update packages with apt
-      when: ansible_pkg_mgr == 'apt'
-      ansible.builtin.apt:
-        update_cache: true
-
-    - name: Update packages with yum
-      when: ansible_pkg_mgr == 'yum'
-      ansible.builtin.yum:
-        name: '*'
-        state: latest # noqa: package-latest
-
-    - name: Upgrade packages with apt
-      when: ansible_pkg_mgr == 'apt'
-      ansible.builtin.apt:
-        upgrade: dist
-
-    - name: Upgrade packages with yum
-      when: ansible_pkg_mgr == 'yum'
-      ansible.builtin.yum:
-        name: '*'
-        state: latest # noqa: package-latest
-        exclude: kernel*