ansible jinja template

Author: rahulwagh

part-10-ansible-imports-roles/ansible-import-roles-playbook.yml

@@ -26,23 +26,6 @@
 
 
 
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
 
 
 

part-11-ansible-jinja2-template/README.md

@@ -0,0 +1,19 @@
+## Run playbook
+
+```bash
+ansible-playbook --inventory inventory/ansible-jinja2-template-playbook/hosts ansible-jinja2-template-playbook.yml
+```
+
+
+## How to find apache is installed or not 
+
+```
+type -a apache2 
+```
+
+
+## SSH to EC2 instance
+
+```
+ssh -i /Users/rahulwagh/.ssh/aws_ec2_terraform [email protected]
+```

part-11-ansible-jinja2-template/ansible-jinja2-template-playbook.yml

@@ -0,0 +1,52 @@
+---
+- name: Example Ansible playbook for Handlers
+  hosts: all
+  become: yes
+  remote_user: ubuntu
+  roles:
+    - install-lighttpd
+    - install-apache
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+

part-11-ansible-jinja2-template/inventory/ansible-jinja2-template-playbook/hosts

@@ -0,0 +1,2 @@
+[default]
+ec2-18-196-64-247.eu-central-1.compute.amazonaws.com ansible_ssh_private_key_file=/Users/rahulwagh/.ssh/aws_ec2_terraform

part-11-ansible-jinja2-template/roles/install-apache/tasks/main.yml

@@ -0,0 +1,12 @@
+---
+- name: Install Apache web server
+  apt:
+    name: apache2
+    state: latest
+    update_cache: yes
+
+- name: Start Apache2 service
+  service:
+    name: apache2
+    state: started
+    enabled: true

part-11-ansible-jinja2-template/roles/install-lighttpd/tasks/main.yml

@@ -0,0 +1,29 @@
+---
+- name: Install lighttpd web server
+  become: yes
+  apt:
+    name: lighttpd
+    state: latest
+    update_cache: yes
+
+#- name: Update Lighttpd configuration
+#  lineinfile:
+#    path: /etc/lighttpd/lighttpd.conf
+#    regexp: '^server.port                 = 80'
+#    line: 'server.port                 = 9091'
+
+- name: Generate configuration file
+  template:
+    src: myconfig.j2
+    dest: /etc/lighttpd/lighttpd.conf
+    owner: root
+    group: root
+    mode: '0644'
+  vars:
+    server_port: 80
+
+- name: Start lighttpd service
+  become: yes
+  service:
+    name: lighttpd
+    state: started

part-11-ansible-jinja2-template/roles/install-lighttpd/tasks/myconfig.j2

@@ -0,0 +1,52 @@
+server.modules = (
+        "mod_indexfile",
+        "mod_access",
+        "mod_alias",
+        "mod_redirect",
+)
+
+server.document-root        = "/var/www/html"
+server.upload-dirs          = ( "/var/cache/lighttpd/uploads" )
+server.errorlog             = "/var/log/lighttpd/error.log"
+server.pid-file             = "/run/lighttpd.pid"
+server.username             = "www-data"
+server.groupname            = "www-data"
+server.port                 = {{ server_port }}
+
+# strict parsing and normalization of URL for consistency and security
+# https://redmine.lighttpd.net/projects/lighttpd/wiki/Server_http-parseoptsDetails
+# (might need to explicitly set "url-path-2f-decode" = "disable"
+#  if a specific application is encoding URLs inside url-path)
+server.http-parseopts = (
+  "header-strict"           => "enable",# default
+  "host-strict"             => "enable",# default
+  "host-normalize"          => "enable",# default
+  "url-normalize-unreserved"=> "enable",# recommended highly
+  "url-normalize-required"  => "enable",# recommended
+  "url-ctrls-reject"        => "enable",# recommended
+  "url-path-2f-decode"      => "enable",# recommended highly (unless breaks app)
+ #"url-path-2f-reject"      => "enable",
+  "url-path-dotseg-remove"  => "enable",# recommended highly (unless breaks app)
+ #"url-path-dotseg-reject"  => "enable",
+ #"url-query-20-plus"       => "enable",# consistency in query string
+)
+
+index-file.names            = ( "index.php", "index.html" )
+url.access-deny             = ( "~", ".inc" )
+static-file.exclude-extensions = ( ".php", ".pl", ".fcgi" )
+
+compress.cache-dir          = "/var/cache/lighttpd/compress/"
+compress.filetype           = ( "application/javascript", "text/css", "text/html", "text/plain" )
+
+# default listening port for IPv6 falls back to the IPv4 port
+## Use ipv6 if available
+#include_shell "/usr/share/lighttpd/use-ipv6.pl " + server.port
+include_shell "/usr/share/lighttpd/create-mime.conf.pl"
+include "/etc/lighttpd/conf-enabled/*.conf"
+
+#server.compat-module-load   = "disable"
+server.modules += (
+        "mod_compress",
+        "mod_dirlisting",
+        "mod_staticfile",
+)

part-9-ansible-conditionals/roles/custom-role/tasks/main.yml

@@ -6,15 +6,6 @@
     state: absent
   when: install_apache_flag
 
-## Conditionals based on ansible_facts
-- name: How to use ansible_facts
-  debug:
-    var: ansible_facts['distribution']
-    #var: ansible_facts['distribution_major_version']
-    #var: ansible_facts['kernel_version']
-    #var: ansible_facts
-  when: ansible_facts['os_family'] == "Debian"
-
 ## Putting multiple condition using ansible_facts
 - name: Combine conditions using ansible facts
   debug:
@@ -43,4 +34,13 @@
 - name: Run with items greater than 5
   ansible.builtin.command: echo {{ item }}
   loop: [ 0, 2, 4, 6, 8, 10 ]
-  when: item > 5
+  when: item > 5
+
+## Conditionals based on ansible_facts
+- name: How to use ansible_facts
+  debug:
+    var: ansible_facts['distribution']
+    #var: ansible_facts['distribution_major_version']
+    #var: ansible_facts['kernel_version']
+    #var: ansible_facts
+  when: ansible_facts['os_family'] == "Debian"

part-9-ansible-conditionals/roles/custom-role/vars/main.yml

@@ -1,2 +1,5 @@
 ---
-install_apache_flag: false
+install_apache_flag: true
+
+
+