# Playbooks

Describe in more details playbooks.

Show some example playbooks with:

 - user and skel
 - install packages
 - enable service #not on containers
 - lineinfile
 - curl
 - file
 - copy
 - fetch
 
Creating small reports.

More fun with:

  - iterations
  - ignore_errors
  - when
  - with_fileglob and remote_fileglob ;)

In [41]:
cd exercise-06

[Errno 2] No such file or directory: 'exercise-06'
/notebooks/exercise-06


## Gathering facts

playbooks are groups of tasks we can run with ansible.

A playbook starts with an hosts mark specifying the hosts to run the playbook to.

```
---
- hosts: web
  tasks: 
  ...
```

When run, a playbook gathers facts about hosts (remember the setup module?).

Gathering facts may be time-consuming, so you can disabe that with

```
- hosts: web
  gather_facts: no
  tasks:
  ...
```



In [None]:
# %load debug.yml
- hosts: localhost
  name: those tasks are run on localhost only
  tasks:
  - name: This is the debug module.
    debug: msg="A string"
    
  - name: The debug module can print a variable too
    debug: var=ansible_hostname

  - name: We can iterate too
    debug: msg="{{item}}"
    with_items: "{{ansible_system_capabilities}}"

  - name: and inspect/format variables
    debug: msg="The device is {{item.device}}"
    with_items: >
      {{ansible_mounts}}



In [23]:
!ansible-playbook debug.yml


PLAY [those tasks are run on localhost only] ***********************************

TASK [Gathering Facts] *********************************************************
[0;32mok: [localhost][0m

TASK [This is the debug module.] ***********************************************
[0;32mok: [localhost] => {[0m
[0;32m    "msg": "A string"[0m
[0;32m}[0m

TASK [The debug module can print a variable too] *******************************
[0;32mok: [localhost] => {[0m
[0;32m    "ansible_hostname": "sysadminpy"[0m
[0;32m}[0m

TASK [We can iterate too] ******************************************************
[0;32mok: [localhost] => (item=cap_chown) => {[0m
[0;32m    "item": "cap_chown", [0m
[0;32m    "msg": "cap_chown"[0m
[0;32m}[0m
[0;32mok: [localhost] => (item=cap_dac_override) => {[0m
[0;32m    "item": "cap_dac_override", [0m
[0;32m    "msg": "cap_dac_override"[0m
[0;32m}[0m
[0;32mok: [localhost] => (item=cap_fowner) => {[0m
[0;32m    "item": "cap_fowner", [0m
[0;32m 

## Exercise: 

[modify debug.yml](/edit/notebooks/exercise-06/debug.yml) to disable fact gathering and use the following cell to test it 

In [24]:
!ansible-playbook debug.yml


PLAY [those tasks are run on localhost only] ***********************************

TASK [Gathering Facts] *********************************************************
[0;32mok: [localhost][0m

TASK [This is the debug module.] ***********************************************
[0;32mok: [localhost] => {[0m
[0;32m    "msg": "A string"[0m
[0;32m}[0m

TASK [The debug module can print a variable too] *******************************
[0;32mok: [localhost] => {[0m
[0;32m    "ansible_hostname": "sysadminpy"[0m
[0;32m}[0m

TASK [We can iterate too] ******************************************************
[0;32mok: [localhost] => (item=cap_chown) => {[0m
[0;32m    "item": "cap_chown", [0m
[0;32m    "msg": "cap_chown"[0m
[0;32m}[0m
[0;32mok: [localhost] => (item=cap_dac_override) => {[0m
[0;32m    "item": "cap_dac_override", [0m
[0;32m    "msg": "cap_dac_override"[0m
[0;32m}[0m
[0;32mok: [localhost] => (item=cap_fowner) => {[0m
[0;32m    "item": "cap_fowner", [0m
[0;32m 

### Hints

 - use ansible_facts as possible instead of gathering facts with uname & co
 - test and template your iterations statically instead of continuosly gathering facts
 

In [25]:
%load process-facts.yml



ansible.cfg  debug.yml	inventory  process-facts.retry	process-facts.yml


In [27]:
!ansible-playbook process-facts.yml | grep msg

    "msg": "/dev/mapper/docker-253:2-537280731-eb92264366fcbaf248d3d5a93bbaab17eec130b43ff94e44e11abab77f5f2038 99%\n"
    "msg": "/dev/mapper/vg0-home 8%\n"


## Packages, User and Files

Creating user and installing packages is easy

```
  - name: Install apache
    apt: item="{{item}}" state=present
    with_items:
    - apache2
    - curl
    
  - name: Remove wget
    apt: item=wget state=absent
```

In [None]:
# %load package-user.yml
- hosts: web
  tasks:
  - name: Install apache and other packages eventually iterating
    apt: name="{{item}}"
    with_items:
    - apache2
    - curl

  - name: Remove wget
    apt: name=wget state=absent

  - name: Create user
    user: 
      name: foo
      groups: adm
      append: yes
      shell: /bin/bash
      skeleton: /root   # duplicate /root/ content for the foo user

  - name: >
      Copy a file to ~foo expandig tilde.
      Do not forget quotes!
    copy:
      src: package-user.yml
      dest: "{{ '~foo' | expanduser }}"

  - name: >
      We can fetch files too (eg. logs):
      - files are dispatched to different directories.
      - we can avoid enforcing checksum as we're messing with 
        containers.
      
    fetch:
      src: /etc/passwd
      dest: /tmp/fetched
      validate_checksum: no


In [36]:
!ansible-playbook package-user.yml



PLAY [web] *********************************************************************

TASK [Gathering Facts] *********************************************************
[0;32mok: [ansible101_web_1][0m

TASK [Install apache and other packages eventually iterating] ******************
[0;32mok: [ansible101_web_1] => (item=[u'apache2', u'curl'])[0m

TASK [Remove wget] *************************************************************
[0;32mok: [ansible101_web_1][0m

TASK [Create user] *************************************************************
[0;32mok: [ansible101_web_1][0m

TASK [Copy a file to ~foo expandig tilde. Do not forget quotes!] ***************
[0;33mchanged: [ansible101_web_1][0m

TASK [We can fetch files too (eg. logs): - files are dispatched to different directories. - we can avoid enforcing checksum as we're messing with 
  containers.] ***
[0;33mchanged: [ansible101_web_1][0m

PLAY RECAP *********************************************************************
[0;33mansibl

In [42]:
!tree /tmp/fetched/ansible101_web_1/etc/

/tmp/fetched/ansible101_web_1/etc/

0 directories, 0 files


## Files and Directories

Creating files and directories. 

lineinfile / blockinfile

with_fileglob

In [48]:
!ansible-playbook -i inventory files-content.yml 



PLAY [A playbook can be made of multiple stanzas. They'll be pipelined.] *******

TASK [Gathering Facts] *********************************************************
[0;32mok: [localhost][0m

TASK [Delete previous template] ************************************************
[0;33mchanged: [localhost][0m

TASK [We're now just showing how to create a file containing a block of lines] ***
[0;33mchanged: [localhost][0m

TASK [Register command output in a variable] ***********************************
[0;33mchanged: [localhost][0m

TASK [Show output] *************************************************************
[0;32mok: [localhost] => {[0m
[0;32m    "o_cat.stdout": "False\n<html> <body> System installed by sysadminpy on {{ ansible_hostname }} </body> </html>\nFalse"[0m
[0;32m}[0m

PLAY [web] *********************************************************************

TASK [Gathering Facts] *********************************************************
[0;32mok: [ansible101_web_1][0m

TASK 

## Templates

Creating files from templates.

include template files, enforcing policies

tagging

