Add task to finish client install (x1vnc,..)

2020-01-27 21:38:25 +01:00
parent b1edc1e215
commit 9e0d4fe374
9 changed files with 563 additions and 0 deletions
--- a/roles/common/tasks/luks.yml
+++ b/roles/common/tasks/luks.yml
@ -0,0 +1,9 @@
+- name: (luks.ym) add new key to the LUKS container (container has to exist)
+  luks_device:
+    #device: "{{ luks_device }}"
+    #keyfile: "{{ role_path + '/files/vault/luks_default_passwd' }}"
+    #new_keyfile: "{{ role_path + '/files/vault/luks_new_passwd' }}"
+    device: "/dev/sda3"
+    keyfile: "/vault/luks_default_passwd"
+    new_keyfile: "/vault/luks_new_passwd"
+
--- a/roles/common/tasks/main.yml
+++ b/roles/common/tasks/main.yml
@ -62,3 +62,40 @@
 #  tags:
 #    - samba-shares

+# Tasks: Configure VNC (x11vnc) for Ubuntu systems
+#
+# Supported OS:
+#   - Ubuntu 16.04LTSi
+#   - Ubuntu 18.04LTSi
+
+- name: "For OS: Ubuntu 16.04LTS, Arch: amd64"
+  import_tasks: ubuntu-x11vnc-1604-amd64.yml
+  when:
+    - ansible_distribution_version ==  "16.04"
+    - ansible_architecture == "x86_64"
+  tags:
+    - x11vnc
+    - x11vnc-1604
+    - finish-client-install
+
+- name: "For OS: Ubuntu 18.04LTS, Arch: amd64"
+  import_tasks: ubuntu-x11vnc-1804-amd64.yml
+  when:
+    - ansible_distribution_version ==  "18.04"
+    - ansible_architecture == "x86_64"
+  tags:
+    - x11vnc
+    - x11vnc-1804
+    - finish-client-install
+
+#- name: "Configure LUKS"
+#  import_tasks: luks.yml
+#  when: "groups['client_pc']|string is search(inventory_hostname)"
+#  tags:
+#    - luks
+
+- import_tasks: root-systemfiles.yml
+  when: "groups['nis_client']|string is search(inventory_hostname)"
+  tags:
+    - root-systemfiles
+    - finish-client-install
--- a/roles/common/tasks/root-systemfiles.yml
+++ b/roles/common/tasks/root-systemfiles.yml
@ -0,0 +1,88 @@
+---
+
+# ---
+# Check if local template directories exists
+# ---
+
+# root
+- name: (root-systemfiles.yml) Check if local template directory exists for root
+  local_action: stat path={{ role_path }}/files/root
+  register: local_template_dir_root
+
+# --
+# Copy .bashrc
+# ---
+
+- name: (root-systemfiles.yml) Check if file '/root/.bashrc.ORIG' exists
+  stat:
+    path: /root/.bashrc.ORIG
+  register: bashrc_root_orig_exists
+  tags:
+    - bash
+
+- name: (root-systemfiles.yml) Backup /root/.bashrc file
+  command: cp /root/.bashrc /root/.bashrc.ORIG
+  when: bashrc_root_orig_exists.stat.exists == False 
+  tags:
+    - bash
+
+- name: (root-systemfiles.yml) copy .bashrc for user root
+  copy: 
+    src: "{{ role_path + '/files/root/_bashrc' }}"
+    dest: "/root/.bashrc"
+    owner: root
+    group: root
+    mode: 0644
+  when: 
+    - local_template_dir_root.stat.exists
+    - lookup('fileglob', role_path + '/files/root/_bashrc')
+  tags:
+    - bash
+
+# --
+# Copy .profile
+# ---
+
+- name: (root-systemfiles.yml) Check if file '/root/.profile.ORIG' exists
+  stat:
+    path: /root/.profile.ORIG
+  register: profile_root_orig_exists
+  tags:
+    - profile
+
+- name: (root-systemfiles.yml) Backup existing users .profile file
+  command: cp -a /root/.profile /root/.profile.ORIG
+  when: profile_root_orig_exists.stat.exists == False 
+  tags:
+    - profile
+
+- name: (root-systemfiles.yml) copy .profile for user root
+  copy: 
+    src: "{{ role_path + '/files/root/_profile' }}"
+    dest: "/root/.profile"
+    owner: root
+    group: root
+    mode: 0644
+  when: 
+    - local_template_dir_root.stat.exists
+    - lookup('fileglob', role_path + '/files/root/_profile')
+  tags:
+    - profile
+    
+# --
+# Copy .vimrc
+# ---
+
+- name: (root-systemfiles.yml) copy .vimrc for user root
+  copy: 
+    src: "{{ role_path + '/files/root/_vimrc' }}"
+    dest: "/root/.vimrc"
+    owner: root
+    group: root
+    mode: 0644
+  when:
+    - local_template_dir_root.stat.exists
+    - lookup('fileglob', role_path + '/files/root/_vimrc')
+  tags:
+    - vim
+
--- a/roles/common/tasks/ubuntu-x11vnc-1604-amd64.yml
+++ b/roles/common/tasks/ubuntu-x11vnc-1604-amd64.yml
@ -0,0 +1,63 @@
+  # Title: app-x11vnc-server
+  #
+  # Author: Luc Rutten
+  # Version: 1.0
+  # File: tasks/main.yml
+  #
+  # Description:
+  #   Remote support
+  #
+  # Source:
+  #   - http://c-nergy.be/blog/?p=8984
+
+  - name: "(ubuntu-x11vnc-1604-amd64.yml) check if x11vnc is already installed, if not found skipping...."
+    stat:
+      path: /usr/bin/x11vnc
+    register: x11vnc_active
+ 
+  - name: "(ubuntu-x11vnc-1604-amd64.yml) Install packages"
+    apt:
+      name: ['x11vnc']
+      update_cache: yes
+      state: present
+    when: x11vnc_active.stat.exists == False
+
+  - name: "(ubuntu-x11vnc-1804-amd64.yml) Install packages"
+    apt:
+      name: "{{ packages }}"
+      update_cache: yes
+      state: present
+    vars:
+      packages:
+      - x11vnc
+
+  - name: "(ubuntu-x11vnc-1604-amd64.yml) Store password"
+    shell: "x11vnc -storepasswd {{ vnc_password }} /etc/x11vnc.pass"
+
+  - name: "(ubuntu-x11vnc-1604-amd64.yml) Set permissions on /etc/x11vnc.pass"
+    file:
+     path: /etc/x11vnc.pass
+     mode: 0644
+
+  - name: "(ubuntu-x11vnc-1604-amd64.yml) Transfer x11vnc.service.j2 to /lib/systemd/system/x11vnc.service"
+    template:
+      src: lib/systemd/system/x11vnc.service.j2
+      dest: /lib/systemd/system/x11vnc.service
+
+  - name: "(ubuntu-x11vnc-1604-amd64.yml) Start x11vnc service"
+    shell: service x11vnc start
+
+  - name: "(ubuntu-x11vnc-1604-amd64.yml) Enable x11vnc service on boot"
+    systemd:
+      name: x11vnc.service
+      daemon_reload: yes
+      enabled: yes
+      state: started
+
+  - name: "(ubuntu-x11vnc-1604-amd64.yml) Blocks x11vnc in GreenOS Desktop Environment for enduser "
+    file:
+      path: "/usr/share/applications/x11vnc.desktop"
+      mode: 0740
+      owner: root
+      group: administrator
+
--- a/roles/common/tasks/ubuntu-x11vnc-1804-amd64.yml
+++ b/roles/common/tasks/ubuntu-x11vnc-1804-amd64.yml
@ -0,0 +1,48 @@
+---
+  # Title: app-x11vnc-server
+  #
+  # Author: Luc Rutten
+  # Version: 1.0
+  # File: tasks/main.yml
+  #
+  # Description:
+  #   Remote support
+  #
+  # Source:
+  #   - http://c-nergy.be/blog/?p=8984
+
+  - name: "(ubuntu-x11vnc-1804-amd64.yml) Install packages"
+    apt:
+      name: "{{ packages }}"
+      update_cache: yes
+      state: present
+    vars:
+      packages:
+      - x11vnc
+
+  - name: "(ubuntu-x11vnc-1804-amd64.yml) Store password"
+    raw: "x11vnc -storepasswd {{ vnc_password }} /etc/x11vnc.pass"
+
+  - name: "(ubuntu-x11vnc-1804-amd64.yml) Set permissions on /etc/x11vnc.pass"
+    file:
+     path: "/etc/x11vnc.pass"
+     mode: 0644
+
+  - name: "(ubuntu-x11vnc-1804-amd64.yml) Transfer x11vnc.service.j2 to /lib/systemd/system/x11vnc.service"
+    template:
+      src: lib/systemd/system/x11vnc.service.j2
+      dest: /lib/systemd/system/x11vnc.service
+
+  - name: "(ubuntu-x11vnc-1804-amd64.yml) Enable service"
+    systemd:
+      name: x11vnc.service
+      enabled: true
+      state: restarted
+
+  - name: "(ubuntu-x11vnc-1804-amd64.yml) Remove whisker menu entry for allusers (except owner and group)"
+    file:
+      path: "/usr/share/applications/x11vnc.desktop"
+      mode: 0750
+      owner: root
+      group: root
+