RWejlgaard/pez-infra
1
0
Fork 0
mirror of https://github.com/RWejlgaard/pez-infra.git synced 2026-05-06 04:14:43 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Add Docker official apt repo to docker role (#24)

Browse source 
* Add Docker official apt repo to docker role

The docker role was installing docker-compose-plugin which is only
available from Docker's official apt repository. helsinki-a had it
configured manually, but london-b and copenhagen-a did not, causing
deploy failures.

Now the role:
- Adds Docker's GPG key and apt repo (handles both Debian and Ubuntu)
- Installs docker-ce, docker-ce-cli, containerd.io, docker-compose-plugin
- Removes conflicting stock packages (docker.io, docker-compose)

* fix: resolve yamllint violations in docker role

- Remove standalone comment blocks that caused indentation errors
- Collapse multiline repo string to single line
- Ensure document start marker is present

* fix: keep all lines under 160 chars for yamllint

Use set_fact to build the Docker repo line in parts instead of
one long inline string.

* fix: resolve yamllint errors in london-b host_vars and promtail config

- Remove trailing blank line in inventory/host_vars/london-b.yml
- Add missing document start marker to promtail config
- Fix indentation in promtail scrape_configs (indent list items under key)

* Remove ansible-lint on push, keep PR-only

Lint already runs on pull_request — no need to double up on push to main.
This commit is contained in:
Rasmus Wejlgaard 2026-03-29 21:11:33 +01:00 committed by GitHub
parent 4be8f73ffe
commit 431c65065a
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
4 changed files with 82 additions and 30 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
.github/workflows/lint-ansible.yml vendored
View file

@ -1,10 +1,6 @@
name: Lint Ansible name: Lint Ansible
on: on:
push:
paths:
- 'ansible/**'
- '.github/workflows/lint-ansible.yml'
pull_request: pull_request:
paths: paths:
- 'ansible/**' - 'ansible/**'

1
ansible/inventory/host_vars/london-b.yml
View file

@ -20,4 +20,3 @@ common_ufw_allowed_ports:
- {port: 6881, proto: tcp, comment: "BitTorrent"} - {port: 6881, proto: tcp, comment: "BitTorrent"}
- {port: 6881, proto: udp, comment: "BitTorrent"} - {port: 6881, proto: udp, comment: "BitTorrent"}
- {port: 445, proto: tcp, comment: "Samba"} - {port: 445, proto: tcp, comment: "Samba"}

66
ansible/roles/docker/tasks/main.yml
View file

@ -1,17 +1,73 @@
--- ---
# Install Docker and docker-compose, start the daemon. # Set up Docker's official apt repository and install Docker + Compose plugin.
- name: Install Docker (Debian) - name: Install prerequisites for Docker repo (Debian/Ubuntu)
ansible.builtin.apt: ansible.builtin.apt:
name: name:
- docker.io - ca-certificates
- curl
- gnupg
state: present
update_cache: true
when: ansible_facts["os_family"] == "Debian"
- name: Create keyrings directory
ansible.builtin.file:
path: /etc/apt/keyrings
state: directory
mode: '0755'
when: ansible_facts["os_family"] == "Debian"
- name: Set Docker repo variables
ansible.builtin.set_fact:
docker_distro: >-
{{ 'ubuntu' if ansible_facts['distribution'] == 'Ubuntu' else 'debian' }}
docker_arch: >-
{{ ansible_facts['architecture']
| regex_replace('x86_64', 'amd64')
| regex_replace('aarch64', 'arm64') }}
when: ansible_facts["os_family"] == "Debian"
- name: Build Docker repo line
ansible.builtin.set_fact:
docker_repo: >-
deb [arch={{ docker_arch }}
signed-by=/etc/apt/keyrings/docker.asc]
https://download.docker.com/linux/{{ docker_distro }}
{{ ansible_facts['distribution_release'] }} stable
when: ansible_facts["os_family"] == "Debian"
- name: Add Docker GPG key
ansible.builtin.get_url:
url: "https://download.docker.com/linux/{{ docker_distro }}/gpg"
dest: /etc/apt/keyrings/docker.asc
mode: '0644'
force: false
when: ansible_facts["os_family"] == "Debian"
- name: Add Docker apt repository
ansible.builtin.apt_repository:
repo: "{{ docker_repo }}"
filename: docker
state: present
update_cache: true
when: ansible_facts["os_family"] == "Debian"
- name: Install Docker (Debian/Ubuntu)
ansible.builtin.apt:
name:
- docker-ce
- docker-ce-cli
- containerd.io
- docker-compose-plugin - docker-compose-plugin
state: present state: present
when: ansible_facts["os_family"] == "Debian" when: ansible_facts["os_family"] == "Debian"
- name: Remove conflicting docker-compose package (Debian) - name: Remove old docker packages (Debian/Ubuntu)
ansible.builtin.apt: ansible.builtin.apt:
name: docker-compose name:
- docker.io
- docker-compose
state: absent state: absent
when: ansible_facts["os_family"] == "Debian" when: ansible_facts["os_family"] == "Debian"

3
ansible/services/promtail/config/london-b.yml
View file

@ -1,3 +1,4 @@
---
server: server:
http_listen_port: 9080 http_listen_port: 9080
grpc_listen_port: 0 grpc_listen_port: 0
@ -9,7 +10,7 @@ clients:
- url: http://192.168.1.254:3100/loki/api/v1/push - url: http://192.168.1.254:3100/loki/api/v1/push
scrape_configs: scrape_configs:
- job_name: london-b - job_name: london-b
static_configs: static_configs:
- targets: - targets:
- localhost - localhost