Override configuration in a separate apt.conf.d file #32
Comments
|
I am willing to create a PR which merges all apt configuration(s) into a new file/template called Let me know, if this is what you want. |
|
Seems a good idea to do that first, let me know when you are ready to implement this issue |
|
@veger Looks like tests are in place now. I think you can create a PR. If you're no longer interested, let us know so that someone else can do it. |
|
This was a quick one so I just did it myself. I don't believe we need to bother unwinding changes to the default settings with code; I've handled it with documentation in a new note. Please review; it's included in my PR above. |
|
I am not using ansible for work anymore as I changed jobs in the meantime. So no problem you did the PR yourself! 👍 |
|
I don't know if I even have $.02 here but I'll cast a vote in the other direction -- I think modifying the standard file continues to be the least surprising behavior. If I wanted to inspect a system's unattended-upgrades configuration, I would look at This issue is really a cosmetic problem (the message is FWIW apt in Ubuntu ignores ucf files since 18.04: https://bugs.launchpad.net/ubuntu/+source/unattended-upgrades/+bug/1645687 |
|
@dnrce It's not just cosmetic. On OS upgrades, users will be asked if they should overwrite the file or leave as-is, and won't be able to continue without input. This is a barrier to automation. While, yes, it would be nice to have all configuration in the same file (that's cosmetic, I would say), it's less important (IMHO) than having fully unattended upgrades, which I believe is the goal here. |
|
@dnrce it's true what @colans notes that this is not just cosmetic. See my report in #68 -- the other thing is that you note:
This is also not true. The file lives in a |
It's possible to prompt users during playbook runtime: https://www.reddit.com/r/ansible/comments/cgpgpt/vars_prompt_in_a_role/eul7srs/ [ edit: vars_prompt is not the solution, need Suggestion 1 (unfinished)
I don't know which dpkg-related command to use to restore the file. I have tried to run Suggestion 2So maybe it's fine to just look at files and copy
|
…ault_config CONFLICT (content): Merge conflict in templates/unattended-upgrades.j2 * Resolution: Added `ansible_controlled` header. CONFLICT (modify/delete): templates/auto-upgrades.j2 deleted in HEAD and modified in master. Version master of templates/auto-upgrades.j2 left in tree. * Resolution: Deleted file again as nothing new had been added (except the `ansible_controlled` header).
|
I am closing this issue since this role has been deprecated. Feel free to suggest alternatives in #98. |
|
This issue has been moved to the new project @ hifis-net/ansible-collection-toolkit#10 |
Follow-up to #31.
Since there is apt.conf.d directory, configuration files are applied in order and the file with higher number overrides previous. Therefore we don't need to modify original files; we just generate a new file with a high number, say
90-ansible-unattended-upgrades. Apt will happily manage defaults and no ucf-dist files will be generated.Now, the question is how to handle the transition. Ideally we want to put
20auto-upgradesand50unattended-upgradesfiles into a pristine state. Perhaps, like with10periodicfile, there can be a one-shot command to reinstall the package.The text was updated successfully, but these errors were encountered: