# Introduction

![image.png](attachment:0605b41a-bb2c-48b1-a886-7e27ecdf197f.png)

Just like how you would assign roles to different people in the real world, making them **doctors**, **engineers**, **astronauts**, **policemen**, or a **chef**.

In the Ansible world, you would assign roles to blank servers to make them:
* a **database server**
* or a **web server**
* or a **Redis messaging server**
* or a **backup server**.

Assigning a role in the real world means doing everything one needs to do to make someone a doctor or an engineer, for example:
* sending the person to a medical school to earn a medical degree.
* completing a residency program, and
* finally obtaining a license to practice.

In the automation world, assigning a role means doing everything you need to do to make a server a database server, such as:
* installing the prerequisites required for MySQL,
* installing MySQL packages,
* configuring the MySQL service, and
* Finally, configuring the database with our users.

![image.png](attachment:e918f65f-ba6c-4ad0-a479-9e6f9e3816ff.png)

# Ansible `role` - Code reusability

**Here's a simple playbook that can install & configure MySQL**.

![image.png](attachment:eb1481cb-ef05-4faf-a394-bbd2368966a5.png)

***But then, if you can do this in a playbook, why do you need roles?***
* This set of tasks, to install and perform basic configurations on a MySQL database, is going to remain mostly common.
* Once a person develops this Ansible playbook, it can be shared with hundreds of thousands of others trying to do the same thing: **install MySQL**.

Instead of all of them rewriting this piece of code, you could **package it into a role** and reuse it later.
* Next time, you could simply **assign the role** you created and, in a playbook as shown below, be it a single server or hundreds of servers, that's all you need.
* So that's the ***primary purpose of roles to make your work reusable***, be it for other tasks or projects within your organization or outside for others globally.

![image.png](attachment:adb02cac-40e3-4fc3-ac8c-aff64015e413.png)


# Ansible `role` - Code organization

![image.png](attachment:133320f3-2996-4536-a846-340a17929b1b.png)

Roles also help in organizing your code within Ansible.

Roles introduce a set of best practices that must be followed to organize all tasks into a task directory.
* All variables used by these tasks are in the `vars` directory.
* Any default values go into the `default` directory.
* All **handlers** go into the `handlers` directory.
* Any **templates** used by the playbooks go into the `templates` directory.

# Ansible `role` - Code Sharing with community

![image.png](attachment:b35eb0a4-ad05-4483-a318-c44473359919.png)

* Roles also help in **sharing your code** with others in the Ansible community.
* **Ansible Galaxy** is one such community where you can find thousands of roles for almost any task you can think of.
* Installing and configuring different web servers, different database servers, automation tools, monitoring tools, packaging tools, security software, etc.
* So before you start writing those playbooks, I highly recommend taking a look at this community first.
* There must be a role created for that already by someone.

# How do you get started with roles?


![image.png](attachment:fd34e7ac-ce1d-4e98-9c1e-2ecbee641b1b.png)

**Creating Role**:
* We create the directory structure required for a role, but you don't have to do that manually.
* **Ansible Galaxy** has a neat tool that can create a skeleton for you.
* Use the `ansible-galaxy init` command to initialize and create a directory structure.
* Remember, this is to create your own role from scratch and then move all of your code into the **task** directory into a file, and that's it.

**How do you use your role within your playbook?**
* Say we have a playbook within a directory called **my-playbook**.
* The **playbook.yml** file contains a simple play to install and configure **MySQL** on my `db-server`.
* We would like to assign the role we created using the `roles` directive.


# How does my playbook know where that role is?

![image.png](attachment:9f28f47c-a73b-4f05-92bd-555fc16e6bf8.png)

**How can my playbook find that role?**

There are different ways to do that.

We could create a directory called roles within our **playbook** folder and move the role we created under it.
* When the playbook runs, Ansible looks for a `role` named **mysql** under the `roles` directory, and that's one way of doing it.
* Or you can move the roles to a common directory designated for roles on your system at `/etc/ansible/roles` location.
    * That's the default location where Ansible searches for roles if they can't be found in your playbooks directory.
    * Of course, that's defined in the **Ansible configuration file** as `roles_path`, which you can modify if required.

> Once you have created your role and placed it in your roles directory and used it in a playbook, you may share it with the community by uploading it to **Ansible Galaxy** through a GitHub repository.

# What if you want to use an existing role from Galaxy?

## Find Role

![image.png](attachment:f26ef662-3eba-4277-92fb-cefbdb7531b3.png)

Suppose you want to find an existing role and use it in your playbook.

To find roles:
* You could search from the **Ansible Galaxy UI**
* Or, do it from the command line interface using the `ansible-galaxy search` command.


## Install Role

![image.png](attachment:f18ad106-70aa-426b-a07e-488f88f6d104.png)

To use a role, run the `ansible-galaxy install` command with the **name of the role**.

The role is extracted to the default roles directory at the `/etc/ansible/roles` location.


## Use Role

The roles can now be used in your playbook by specifying the same name, like this, as an array of strings, as role names.

![image.png](attachment:49932939-51f3-41ca-a0eb-38fb3da651ea.png)

Another way to specify roles is as an array of dictionaries, which will allow you to **pass in additional options** to the **role**, such as:
* to execute the role by escalating privileges,
* by specifying the `become` directive,
* or to pass in additional parameters like the `mysql_user_name` option, like this.

**To summarize, roles make it really easy to develop, reuse, and share Ansible playbooks.**
* To configure a single server with both the database and web application on it, assign both roles to it.
* To configure it separately on separate servers, create two plays in the playbook, one for each server, and assign the respective roles to them.

![image.png](attachment:d9253f7d-041b-4f02-a3d7-e7fa56bfc410.png)

# List Roles

To view a list of roles currently installed on, use the `ansible-galaxy list` command.

![image.png](attachment:4f58fe1b-b439-474b-914c-1cdc519db0a4.png)

To view the location where roles would be installed and check the Ansible configuration, use the `ansible-config dump` command.

The default `role_path` is where the roles are installed.

![image.png](attachment:d4e723d9-379e-4ff2-9835-2956bef5e95e.png)

While installing roles, you may use the `-p` option to install it in the current directory under roles, like this: **`ansible-galaxy install geerlingguy.mysql -p ./roles`**

![image.png](attachment:724ad547-d9f0-48fb-b047-d269e4b84b9a.png)