Add LXC initial SSH setup

2018-03-17 16:25:24 +01:00
parent 3150d171be
commit 6e4edfb5a8
4 changed files with 24 additions and 4 deletions
--- a/group_vars/fet_containers
+++ b/group_vars/fet_containers
@@ -0,0 +1,2 @@
+---
+common_apt: False
--- a/hosts/production
+++ b/hosts/production
@@ -3,11 +3,10 @@ all:
    fet_hosts:
      hosts:
        ariane:
-        lxc-pet-01:
-        betam:
-    fet_container:
+    fet_containers:
      hosts:
        lxc-pet-01:
        betam:
+        zyklon:
    vars:
      ansible_python_interpreter=/usr/bin/python3
--- a/roles/ariane/handlers/main.yml
+++ b/roles/ariane/handlers/main.yml
@@ -16,3 +16,8 @@

 - name: restart smartd
  service: name=smartd state=restarted
+
+- name: lxc - create authorized_keys file in VM for root
+  listen: lxc - inital ssh authorized_keys
+  copy: remote_src=yes src=/root/.ssh/authorized_keys dest="/var/lib/lxc/lxc-{{ item.name }}-{{ item.revision }}/rootfs/root/.ssh/authorized_keys" owner=root group=root mode=0600
+  with_items: "{{ lxc.containers }}"
--- a/roles/ariane/tasks/lxc.yml
+++ b/roles/ariane/tasks/lxc.yml
@@ -35,3 +35,17 @@
    template: "{{ item.template }}"
    container_config: "{{ item.config }}"
  with_items: "{{ lxc.containers }}"
+  notify: lxc - inital ssh setup
+
+- name : lxc - enable ssh on voidlinux
+  lxc_container:
+    name: "lxc-{{ item.name }}-{{ item.revision }}"
+    container_command: "ln -s /etc/sv/{sshd,dhcpcd-eth0} /var/service/"
+  when: item.template == "voidlinux"
+  changed_when: False
+  with_items: "{{ lxc.containers }}"
+
+- name: lxc - create .ssh directory for root in VM
+  file: path="/var/lib/lxc/lxc-{{ item.name }}-{{ item.revision }}/rootfs/root/.ssh" state=directory owner=root group=root mode=0700
+  with_items: "{{ lxc.containers }}"
+  notify: lxc - inital ssh authorized_keys