ilia/ansible
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Add POTE app project support and improve IP conflict detection #3

Merged
ilia merged 6 commits from add-pote-support into master 2026-01-01 11:19:54 -05:00
Conversation 0 Commits 6 Files Changed 50 +2561 -356

6 Commits

Author SHA1 Message Date
ilia
e1eb2d137a Add comment to CI skip check job 2026-01-01 11:12:45 -05:00
ilia
b1962eae27 Refactor CI skip check to use a single pattern 
- Simplify the CI workflow by consolidating the skip check for both branch names and commit messages to a single case-insensitive pattern: @skipci.
- Remove the previous multiple pattern checks to streamline the logic and improve readability.
- Ensure that the CI process can be effectively skipped based on the new pattern, enhancing overall efficiency.
 2026-01-01 11:12:45 -05:00
ilia
38e1f9e86a Add CI skip check for branch name and commit message 
- Introduce a new job in the CI workflow to determine if CI should be skipped based on specific patterns in the branch name or commit message.
- Update existing jobs to depend on the skip check, ensuring that CI processes are only executed when necessary.
- Enhance the overall efficiency of the CI pipeline by preventing unnecessary runs for certain commits.
 2026-01-01 11:12:45 -05:00
ilia
9b647515ee Remove Node.js installation step from CI workflow 
- Eliminate the installation of Node.js for the checkout action in the CI workflow to streamline the process and reduce unnecessary dependencies.
 2026-01-01 11:12:45 -05:00
ilia
43f8b7c8cb Update CI workflow to exclude example vault files from validation and add host variables for dev02 
- Modify CI workflow to filter out example vault files during encryption validation
- Add new host variables for dev02, including sudo configuration and shell user settings
- Disable installation of data science stack components for dev02
 2026-01-01 11:11:17 -05:00
ilia
eef01d87d0 Add POTE app project support and improve IP conflict detection 
- Add roles/pote: Python/venv deployment role with PostgreSQL, cron jobs
- Add playbooks/app/: Proxmox app stack provisioning and configuration
- Add roles/app_setup: Generic app deployment role (Node.js/systemd)
- Add roles/base_os: Base OS hardening role
- Enhance roles/proxmox_vm: Split LXC/KVM tasks, improve error handling
- Add IP uniqueness validation: Preflight check for duplicate IPs within projects
- Add Proxmox-side IP conflict detection: Check existing LXC net0 configs
- Update inventories/production/group_vars/all/main.yml: Add pote project config
- Add vault.example.yml: Template for POTE secrets (git key, DB, SMTP)
- Update .gitignore: Exclude deploy keys, backup files, and other secrets
- Update documentation: README, role docs, execution flow guides

Security:
- All secrets stored in encrypted vault.yml (never committed in plaintext)
- Deploy keys excluded via .gitignore
- IP conflict guardrails prevent accidental duplicate IP assignments
 2026-01-01 11:11:17 -05:00