ansible/hm_ubuntu_group/playbook.yml from hongbo-miao/hongbomiao.com

ansible/hm_ubuntu_group/playbook.yml
Summary

Maintainability

Test Coverage

Issues
---
- name: Install common packages
  hosts: hm-ubuntu
  tasks:
    - name: Install common packages from Snap
      become: true
      community.general.snap:
        name:
          - btop
          - htop
          - vnstat
        state: present

- name: Install pyenv
  hosts: hm-ubuntu
  vars:
    python_version: 3.11.4
  roles:
    - role: staticdev.pyenv
      vars:
        # https://github.com/pyenv/pyenv/releases
        pyenv_version: v2.3.23
        pyenv_env: user
        pyenv_python_versions:
          - "{{ python_version }}"
        pyenv_global:
          - "{{ python_version }}"
  tasks:
    - name: Creates directory ~/pyenv/
      ansible.builtin.file:
        path: "{{ ansible_env.HOME }}/pyenv/"
        state: directory
    - name: Set global Python version
      ansible.builtin.copy:
        dest: "{{ ansible_env.HOME }}/pyenv/version"
        content: "{{ python_version }}"
        mode: 0644

- name: Install Poetry
  hosts: hm-ubuntu
  roles:
    - role: bartdorlandt.poetry
      vars:
        virtualenvs_in_project: true

- name: Install Rclone
  hosts: hm-ubuntu
  roles:
    - role: stefangweichinger.ansible_rclone
      vars:
        # https://github.com/stefangweichinger/ansible-rclone/blob/main/defaults/main.yml
        rclone_arch: arm64
        rclone_config_location: "{{ ansible_env.HOME }}/.config/rclone/rclone.conf"
        rclone_config_owner:
          OWNER: "{{ ansible_env.USER }}"
          GROUP: "{{ ansible_env.USER }}"
        rclone_configs:
          - name: hm-s3
            properties:
              type: s3
              provider: AWS
              access_key_id: !vault |
                $ANSIBLE_VAULT;1.1;AES256
                35643735623839616262323630356332626638393930643866356235343938633631363564636231
                3738656534316365376666626166643663353032653431650a363639306465303839656234343931
                65626139626137633461393865323339623737383262366663653663316136323764643564393061
                3730366635386166660a396231393038626233386439333863383363343034643332646635303030
                39336632653764373162373630653332666138633363633239383334356436646638
              secret_access_key: !vault |
                $ANSIBLE_VAULT;1.1;AES256
                64646138613535386234383331313439653434383239616137313363663636343231383137333834
                6633636666353764323035616634666337343235646438340a303466333763356135656436386532
                63346433346238336235643762393432633138613462626433653336643835653562653831383537
                6164353632646238630a383132663334643462616635373037366331373462393632303766333865
                66326464303037623839643430396566373832336364666261633261326530613830643561346565
                3133636366303031396632393836393834393232323231666361
              region: us-west-2
              storage_class: STANDARD

- name: Start Prefect agent
  hosts: hm-ubuntu
  tasks:
    - name: Install packages from pip
      ansible.builtin.pip:
        name: prefect==2.11.3
        executable: "{{ ansible_env.HOME }}/pyenv/shims/pip"
      register: pip_package
    - name: Create systemd service file
      become: true
      ansible.builtin.template:
        src: templates/prefect-agent.service
        dest: /etc/systemd/system/prefect-agent.service
        mode: 0644
      register: systemd_unit
    - name: Start Prefect agent
      become: true
      ansible.builtin.systemd_service:
        name: prefect-agent
        state: "{{ 'restarted' if pip_package.changed or systemd_unit.changed else 'started' }}"
        enabled: true
        daemon_reload: "{{ systemd_unit.changed }}"