An opinionated skeleton that considerably simplifies setting up an Ansible project with a development environment powered by Vagrant.
Advantages include:
- It works on Linux, MacOS and Windows (that is normally unsupported by Ansible)
- You don't need to edit the
Vagrantfile. Hosts are defined in a simple Yaml format (see below). Setting up a multiple-VM Vagrant environment becomes almost trivial. I gave a lightning talk about this at Config Management Camp 2016 Ghent (slides here).
See also the companion projects ansible-role-skeleton (scaffolding code for Ansible roles) and ansible-toolbox (useful scripts to be used in combination with the skeleton-projects).
If you like/use this role, please consider giving it a star. Thanks!
On the management node, make sure you have installed recent versions of:
- VirtualBox
- Vagrant
- Git and for Windows hosts also Git Bash. If you install Git with default settings (i.e. always click "Next" in the installer), you should be fine.
- Ansible (only on Mac/Linux)
You can either clone this project or use the provided initialization script.
When cloning, choose another name for the target directory!
$ git clone https://github.com/bertvv/ansible-skeleton.git my-ansible-projectOn Windows, it is important to keep line endings in the Linux format:
$ git clone --config core.autocrlf=input https://github.com/bertvv/ansible-skeleton.git my-ansible-projectAfter cloning, it's best to remove the .git directory and initialise a new repository. The history of the skeleton code is irrelevant for your Ansible project...
You can find an initialization script in my ansible-toolbox that automates the process (including creating an empty Git repository).
$ atb-init my-ansible-projectThis will download the latest version of the skeleton from Github, initialize a Git repository, do the first commit, and, optionally, install any specified role.
$ atb-init my-ansible-project bertvv.el7 bertvv.httpdThis will create the skeleton and install roles bertvv.el7 and bertvv.httpd from Ansible Galaxy.
First, modify the Vagrantfile to select your favourite base box. I use a CentOS 7 base box, based on Mischa Taylor's Packer template. This is probably the only time you need to edit the Vagrantfile.
The vagrant-hosts.yml file specifies the nodes that are controlled by Vagrant. You should at least specify a name:, other settings (see below) are optional. A host-only adapter is created and the given IP assigned to that interface. Other optional settings that can be specified:
ip:The IP address for the VM.netmask: By default, the network mask is255.255.255.0. If you want another one, it should be specified.mac: The MAC address to be assigned to the NIC. Several notations are accepted, including "Linux-style" (00:11:22:33:44:55) and "Windows-style" (00-11-22-33-44-55). The separator characters can be omitted altogether (001122334455).intnet: If set totrue, the network interface will be attached to an internal network rather than a host-only adapter.auto_config: If set tofalse, Vagrant will not attempt to configure the network interface.synced_folders: A list of dicts that specify synced folders. Two keys,src(the directory on the host system) anddest(the mount point in the guest) are mandatory, another one,optionsis, well, optional. The possible options are the same ones as specified in the Vagrant documentation on synced folders. One caveat is that the option names should be prefixed with a colon, e.g.owner:becomes:owner:.
- name: srv002
synced_folders:
- src: test
dest: /tmp/test
- src: www
dest: /var/www/html
options:
:create: true
:owner: root
:group: root
:mount_options: ['dmode=0755', 'fmode=0644']The ansible/ directory contains the Ansible configuration, and should be structured according to Ansible's best practices. It should at least contain the standard site.yml.
Initially, two hosts are defined as an example: srv001 and srv002. If you want to add new nodes, you should edit the following files:
vagrant-hosts.ymlso a Vagrant box is created. A few examples that also illustrate the optional settings.
- name: srv003
ip: 192.168.56.13
auto_config: false
- name: srv004
ip: 172.16.0.5
netmask: 255.255.0.0
intnet: true
- name: srv005
ip: 192.168.56.14
mac: "00:03:DE:AD:BE:EF"site.ymlto assign roles to your nodes, e.g.:
- host: srv003
sudo: true
roles:
- bertvv.el7
- bertvv.httpdThere's a discussion on whether Unit tests are necessary for Ansible. Indeed, with its declarative nature, Ansible largely takes away the need to check for certain things independently from the playbook definitions. For a bit more background, be sure to read through this discussion unit testing for Ansible on Google groups.
However, it is my opinion that playbooks don't cover everything (e.g. whether a config file generated from a template has the expected contents, given the values of variables used). I value some form of testing, independent of the configuration management system. Personally, I'm a fan of the Bash Automated Testing System (BATS). It's basically an extension of Bash, so very accessible for any Unix-oriented system administrator. This skeleton supports BATS tests.
Put your BATS test scripts in the test/ directory and they will become available on your guest VMs as a synced folder, mounted in /vagrant/test. Scripts that you want to run on each host should be stored in the test/ directory itself, scripts for individual hosts should be stored in subdirectories with the same name as the host (see example below). Inside the VM, run
sudo /vagrant/test/runbats.sh
to execute all tests relevant for that host. The script will install BATS if needed.
Suppose the test/ directory is structured like the example below:
test/
├── common.bats
├── runbats.sh
├── srv001
│ └── web.bats
└── srv002
└── db.bats
On host srv001, the scripts common.bats and web.bats will be executed, on host srv002, it's common.bats and db.bats.
The Windows bootstrap script is based on the MIT licensed work of:
- Kawsar Saiyeed: https://github.com/KSid/windows-vagrant-ansible
- Jeff Geerling: https://github.com/geerlingguy/JJG-Ansible-Windows