From e1f171e19c1de82dfe4aacf89dea9d567dacd6c5 Mon Sep 17 00:00:00 2001 From: Alex Auvolat Date: Fri, 13 Nov 2020 12:33:23 +0100 Subject: [PATCH 1/2] use ansible_become instead of ansible_user: root --- os/config/README.md | 2 +- os/config/production.yml | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/os/config/README.md b/os/config/README.md index 62bf252..a1078df 100644 --- a/os/config/README.md +++ b/os/config/README.md @@ -13,7 +13,7 @@ For each machine, **one by one** do: - Check that Consul is healthy - `consul members` - Check that Postgres is healthy - - Run `ansible-playbook -i production.yml --limit site.yml` + - Run `ansible-playbook -i production.yml --limit -u site.yml` - Run `nomad node drain -enable -force -self` - Reboot - Run `nomad node drain -self -disable` diff --git a/os/config/production.yml b/os/config/production.yml index d31193e..9004701 100644 --- a/os/config/production.yml +++ b/os/config/production.yml @@ -3,7 +3,7 @@ cluster_nodes: veterini: ansible_host: fbx-rennes2.machine.deuxfleurs.fr ansible_port: 110 - ansible_user: root + ansible_become: true ipv4: 192.168.1.2 ipv6: 2a01:e35:2fdc:dbe0::2 interface: eno1 @@ -14,7 +14,7 @@ cluster_nodes: silicareux: ansible_host: fbx-rennes2.machine.deuxfleurs.fr ansible_port: 111 - ansible_user: root + ansible_become: true ipv4: 192.168.1.3 ipv6: 2a01:e35:2fdc:dbe0::3 interface: eno1 @@ -25,7 +25,7 @@ cluster_nodes: wonse: ansible_host: fbx-rennes2.machine.deuxfleurs.fr ansible_port: 112 - ansible_user: root + ansible_become: true ipv4: 192.168.1.4 ipv6: 2a01:e35:2fdc:dbe0::4 interface: eno1 From 7e111783fea578b9025ffe02fce652d9af114000 Mon Sep 17 00:00:00 2001 From: Alex Auvolat Date: Fri, 13 Nov 2020 12:34:07 +0100 Subject: [PATCH 2/2] Add LX key3 --- os/config/roles/users/files/alex-key3.pub | 1 + os/config/roles/users/vars/main.yml | 3 ++- 2 files changed, 3 insertions(+), 1 deletion(-) create mode 100644 os/config/roles/users/files/alex-key3.pub diff --git a/os/config/roles/users/files/alex-key3.pub b/os/config/roles/users/files/alex-key3.pub new file mode 100644 index 0000000..4baebd2 --- /dev/null +++ b/os/config/roles/users/files/alex-key3.pub @@ -0,0 +1 @@ +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJpaBZdYxHqMxhv2RExAOa7nkKhPBOHupMP3mYaZ73w9 lx@lindy diff --git a/os/config/roles/users/vars/main.yml b/os/config/roles/users/vars/main.yml index ea4177f..ca2dc0a 100644 --- a/os/config/roles/users/vars/main.yml +++ b/os/config/roles/users/vars/main.yml @@ -10,7 +10,8 @@ active_users: is_admin: true ssh_keys: - 'alex-key1.pub' - - 'alex-key2.pub' + #- 'alex-key2.pub' + - 'alex-key3.pub' - username: 'maximilien' is_admin: true