/
main.yml
402 lines (399 loc) · 14 KB
/
main.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
---
# Repositories
manala_apt_repositories_patterns:
security: "{{
{
'debian': {
'source': 'deb http://security.debian.org/ ' ~ ansible_distribution_release ~ '/updates ' ~ manala_apt_components|join(' ')
},
'ubuntu': {
'source': 'deb http://security.ubuntu.com/ubuntu ' ~ ansible_distribution_release ~ '-security ' ~ manala_apt_components|join(' ')
}
}[ansible_distribution|lower]
}}"
security_src: "{{
{
'debian': {
'source': 'deb-src http://security.debian.org/ ' ~ ansible_distribution_release ~ '/updates ' ~ manala_apt_components|join(' ')
},
'ubuntu': None
}[ansible_distribution|lower]
}}"
updates: "{{
{
'debian': {
'source': 'deb http://httpredir.debian.org/debian ' ~ ansible_distribution_release ~ '-updates ' ~ manala_apt_components|join(' ')
},
'ubuntu': {
'source': 'deb http://archive.ubuntu.com/ubuntu ' ~ ansible_distribution_release ~ '-updates ' ~ manala_apt_components|join(' ')
}
}[ansible_distribution|lower]
}}"
updates_src: "{{
{
'debian': {
'source': 'deb-src http://httpredir.debian.org/debian ' ~ ansible_distribution_release ~ '-updates ' ~ manala_apt_components|join(' ')
},
'ubuntu': None
}[ansible_distribution|lower]
}}"
partner: "{{
{
'debian': None,
'ubuntu': {
'source': 'deb http://archive.canonical.com/ubuntu ' ~ ansible_distribution_release ~ ' partner'
}
}[ansible_distribution|lower]
}}"
backports: "{{
{
'debian': {
'source': 'deb http://httpredir.debian.org/debian ' ~ ansible_distribution_release ~ '-backports ' ~ manala_apt_components|join(' '),
'pin': 'release a=' ~ ansible_distribution_release ~ '-backports'
},
'ubuntu': {
'source': 'deb http://archive.ubuntu.com/ubuntu ' ~ ansible_distribution_release ~ '-backports ' ~ manala_apt_components|join(' '),
'pin': 'release a=' ~ ansible_distribution_release ~ '-backports'
}
}[ansible_distribution|lower]
}}"
backports_sloppy: "{{
{
'debian': {
'source': 'deb http://httpredir.debian.org/debian ' ~ ansible_distribution_release ~ '-backports-sloppy ' ~ manala_apt_components|join(' '),
'pin': 'release a=' ~ ansible_distribution_release ~ '-backports-sloppy'
},
'ubuntu': None
}[ansible_distribution|lower]
}}"
# Deprecated
debian_security:
source: deb http://security.debian.org/ {{ ansible_distribution_release }}/updates {{ manala_apt_components|join(' ') }}
# Deprecated
debian_security_src:
source: deb-src http://security.debian.org/ {{ ansible_distribution_release }}/updates {{ manala_apt_components|join(' ') }}
# Deprecated
debian_updates:
source: deb http://httpredir.debian.org/debian {{ ansible_distribution_release }}-updates {{ manala_apt_components|join(' ') }}
# Deprecated
debian_updates_src:
source: deb-src http://httpredir.debian.org/debian {{ ansible_distribution_release }}-updates {{ manala_apt_components|join(' ') }}
# Deprecated
debian_backports:
source: deb http://httpredir.debian.org/debian {{ ansible_distribution_release }}-backports {{ manala_apt_components|join(' ') }}
pin: release a={{ ansible_distribution_release }}-backports
# Deprecated
ubuntu_security:
source: deb http://security.ubuntu.com/ubuntu {{ ansible_distribution_release }}-security {{ manala_apt_components|join(' ') }}
# Deprecated
ubuntu_updates:
source: deb http://archive.ubuntu.com/ubuntu {{ ansible_distribution_release }}-updates {{ manala_apt_components|join(' ') }}
# Deprecated
ubuntu_partner:
source: deb http://archive.canonical.com/ubuntu {{ ansible_distribution_release }} partner
# Deprecated
ubuntu_backports:
source: deb http://archive.ubuntu.com/ubuntu {{ ansible_distribution_release }}-backports {{ manala_apt_components|join(' ') }}
pin: release a={{ ansible_distribution_release }}-backports
dotdeb:
source: deb http://packages.dotdeb.org {{ ansible_distribution_release }} all
key: dotdeb
dotdeb_php55:
source: deb http://packages.dotdeb.org wheezy-php55 all
key: dotdeb
dotdeb_php56:
source: deb http://packages.dotdeb.org wheezy-php56 all
key: dotdeb
nginx:
source: deb http://nginx.org/packages/{{ ansible_distribution|lower }}/ {{ ansible_distribution_release }} nginx
key: nginx
bearstech:
source: deb http://deb.bearstech.com/debian {{ ansible_distribution_release }}-bearstech main
key: bearstech
nodesource_0_10:
source: deb https://deb.nodesource.com/node_0.10 {{ ansible_distribution_release }} main
key: nodesource
nodesource_0_12:
source: deb https://deb.nodesource.com/node_0.12 {{ ansible_distribution_release }} main
key: nodesource
nodesource_4:
source: deb https://deb.nodesource.com/node_4.x {{ ansible_distribution_release }} main
key: nodesource
nodesource_5:
source: deb https://deb.nodesource.com/node_5.x {{ ansible_distribution_release }} main
key: nodesource
nodesource_6:
source: deb https://deb.nodesource.com/node_6.x {{ ansible_distribution_release }} main
key: nodesource
nodesource_7:
source: deb https://deb.nodesource.com/node_7.x {{ ansible_distribution_release }} main
key: nodesource
nodesource_8:
source: deb https://deb.nodesource.com/node_8.x {{ ansible_distribution_release }} main
key: nodesource
mysql_5_6:
source: deb http://repo.mysql.com/apt/{{ ansible_distribution|lower }}/ {{ ansible_distribution_release }} mysql-5.6
key: mysql
mysql_5_7:
source: deb http://repo.mysql.com/apt/{{ ansible_distribution|lower }}/ {{ ansible_distribution_release }} mysql-5.7
key: mysql
mariadb_10_0:
source: deb http://ftp.osuosl.org/pub/mariadb/repo/10.0/debian {{ ansible_distribution_release }} main
key: mariadb
mariadb_10_1:
source: deb http://ftp.osuosl.org/pub/mariadb/repo/10.1/debian {{ ansible_distribution_release }} main
key: mariadb
mariadb_10_2:
source: deb http://ftp.osuosl.org/pub/mariadb/repo/10.2/debian {{ ansible_distribution_release }} main
key: mariadb
maxscale_2_0_4:
source: deb https://downloads.mariadb.com/MaxScale/2.0.4/debian {{ ansible_distribution_release }} main
key: maxscale
postgresql:
source: deb http://apt.postgresql.org/pub/repos/apt/ {{ ansible_distribution_release }}-pgdg main
key: postgresql
mongodb_3_0:
source: deb http://repo.mongodb.org/apt/{{ ansible_distribution|lower }} wheezy/mongodb-org/3.0 main
key: 10gen
mongodb_3_2:
source: deb http://repo.mongodb.org/apt/{{ ansible_distribution|lower }} wheezy/mongodb-org/3.2 main
key: mongodb
varnish_4_0:
source: deb https://packagecloud.io/varnishcache/varnish40/{{ ansible_distribution|lower }}/ {{ ansible_distribution_release }} main
key: varnish_4_0
jenkins:
source: deb http://pkg.jenkins-ci.org/debian binary/
key: jenkins
sensu:
source: deb http://repositories.sensuapp.org/apt sensu main
key: sensu
rabbitmq:
source: deb http://www.rabbitmq.com/debian/ testing main
key: rabbitmq
proxmox:
source: deb http://download.proxmox.com/debian {{ ansible_distribution_release }} pve-no-subscription
proxmox_enterprise:
source: deb https://enterprise.proxmox.com/debian {{ ansible_distribution_release }} pve-enterprise
logentries:
source: deb http://rep.logentries.com/ {{ ansible_distribution_release }} main
key: logentries
galera:
source: deb http://releases.galeracluster.com/{{ ansible_distribution|lower }} {{ ansible_distribution_release }} main
key: galera
grafana:
source: deb https://packagecloud.io/grafana/stable/debian/ wheezy main
key: packagecloud
elasticsearch_1_5:
source: deb https://packages.elastic.co/elasticsearch/1.5/debian stable main
key: elasticsearch
elasticsearch_1_6:
source: deb https://packages.elastic.co/elasticsearch/1.6/debian stable main
key: elasticsearch
elasticsearch_1_7:
source: deb https://packages.elastic.co/elasticsearch/1.7/debian stable main
key: elasticsearch
elasticsearch_2:
source: deb https://packages.elastic.co/elasticsearch/2.x/debian stable main
key: elasticsearch
elasticsearch_5:
source: deb https://artifacts.elastic.co/packages/5.x/apt stable main
key: elasticsearch
ansible: "{{
{
'debian': None,
'ubuntu': {
'source': 'ppa:ansible/ansible'
}
}[ansible_distribution|lower]
}}"
# Deprecated
ppa_ansible:
source: ppa:ansible/ansible
blackfire:
source: deb http://packages.blackfire.io/debian any main
key: packagecloud
gitlab-ce:
source: deb https://packages.gitlab.com/gitlab/gitlab-ce/debian/ {{ ansible_distribution_release }} main
key: gitlab
aptly:
source: deb http://repo.aptly.info/ squeeze main
key: aptly
docker:
source: deb https://apt.dockerproject.org/repo debian-{{ ansible_distribution_release }} main
key: docker
manala:
source: deb [arch=amd64] http://debian.manala.io {{ ansible_distribution_release }} main
key: manala
newrelic:
source: deb http://apt.newrelic.com/debian/ newrelic non-free
key: newrelic
influxdata:
source: deb https://repos.influxdata.com/debian {{ ansible_distribution_release }} stable
key: influxdata
yarn:
source: deb https://dl.yarnpkg.com/debian/ stable main
key: yarn
sury_php: "{{
{
'debian': {
'source': 'deb https://packages.sury.org/php/ ' ~ ansible_distribution_release ~ ' main',
'key': 'sury_php'
},
'ubuntu': {
'source': 'ppa:ondrej/php',
'key': 'sury_php'
}
}[ansible_distribution|lower]
}}"
# Deprecated
sury_php_debian:
source: deb https://packages.sury.org/php/ {{ ansible_distribution_release }} main
key: sury_php_debian
# Deprecated
sury_php_ubuntu:
source: ppa:ondrej/php
key: sury_php_ubuntu
# Keys
manala_apt_keys_patterns:
dotdeb:
url: http://www.dotdeb.org/dotdeb.gpg
id: 89DF5277
nginx:
url: http://nginx.org/keys/nginx_signing.key
id: 7BD9BF62
bearstech:
url: http://deb.bearstech.com/bearstech-archive.gpg
id: 90158EE0
nodesource:
keyserver: hkp://keyserver.ubuntu.com:80
id: 68576280
mysql:
keyserver: hkp://keyserver.ubuntu.com:80
id: 5072E1F5
mariadb:
keyserver: hkp://keyserver.ubuntu.com:80
id: 1BB943DB
maxscale:
url: https://downloads.mariadb.com/MaxScale/MariaDB-MaxScale-GPG-KEY
id: 8167EE24
postgresql:
url: https://www.postgresql.org/media/keys/ACCC4CF8.asc
id: ACCC4CF8
10gen:
url: https://docs.mongodb.org/10gen-gpg-key.asc
id: 7F0CEB10
# Uses SNI, that causes issues with python < 2.7.9 (aka. Debian Wheezy)
# Instead of hacking things on python or system, simply don't validate certs...
validate_certs: "{{ (ansible_distribution_release == 'wheezy')|ternary(false, true) }}"
mongodb:
url: https://www.mongodb.org/static/pgp/server-3.2.asc
id: EA312927
# See 10gen
validate_certs: "{{ (ansible_distribution_release == 'wheezy')|ternary(false, true) }}"
varnish_4_0:
url: https://packagecloud.io/varnishcache/varnish40/gpgkey
id: DE3FFEA4
jenkins:
url: http://pkg.jenkins-ci.org/debian/jenkins-ci.org.key
id: D50582E6
sensu:
url: http://repositories.sensuapp.org/apt/pubkey.gpg
id: EB9C94BB
rabbitmq:
url: https://www.rabbitmq.com/rabbitmq-release-signing-key.asc
id: 056E8E56
logentries:
keyserver: hkp://pgp.mit.edu:80
id: C43C79AD
galera:
keyserver: hkp://keyserver.ubuntu.com:80
id: BC19DDBA
packagecloud:
url: https://packagecloud.io/gpg.key
id: D59097AB
elasticsearch:
url: https://artifacts.elastic.co/GPG-KEY-elasticsearch
id: D88E42B4
gitlab:
url: https://packages.gitlab.com/gpg.key
id: E15E78F4
aptly:
url: https://www.aptly.info/pubkey.txt
id: 9C7DE460
docker:
keyserver: keys.gnupg.net
id: 2C52609D
manala:
keyserver: keys.gnupg.net
id: 1394DEA3
newrelic:
url: https://download.newrelic.com/548C16BF.gpg
id: 548C16BF
influxdata:
url: https://repos.influxdata.com/influxdb.key
id: 2582E0C5
yarn:
url: https://dl.yarnpkg.com/debian/pubkey.gpg
id: 86E50310
sury_php: "{{
{
'debian': {
'url': 'https://packages.sury.org/php/apt.gpg',
'id': '4A7A714D'
},
'ubuntu': {
'keyserver': 'hkp://keyserver.ubuntu.com:80',
'id': 'E5267A6C'
}
}[ansible_distribution|lower]
}}"
# Deprecated
sury_php_debian:
url: https://packages.sury.org/php/apt.gpg
id: 4A7A714D
# Deprecated
sury_php_ubuntu:
keyserver: hkp://keyserver.ubuntu.com:80
id: E5267A6C
# Preferences
manala_apt_preferences_patterns:
vim: vim*
git: git git-*
php: php-* php5-* php5.6-* php7.0-* php7.1-*
mysql: mysql* libmysql*
nginx: nginx*
ruby: ruby*
nodejs: nodejs*
rabbitmq: rabbitmq*
redis: redis*
logentries: logentries*
sensu: sensu*
haproxy: haproxy*
galera: galera*
grafana: grafana*
elasticsearch: elasticsearch*
postgresql: postgresql*
mongodb: mongodb*
keepalived: keepalived*
gitlab-ce: gitlab-ce*
phpmyadmin: phpmyadmin*
phppgadmin: phppgadmin*
docker: docker*
chrony: chrony*
backup-manager: backup-manager*
pam-ssh-agent-auth: pam-ssh-agent-auth*
oauth2-proxy: oauth2-proxy*
cloud: cloud-init cloud-utils
mariadb: mariadb* libmariadb*
maxscale: maxscale*
influxdb: influxdb*
telegraf: telegraf*
thefuck: thefuck*
python-six: python-six*
htop: htop*
yarn: yarn*
openssh: openssh*
ansible: ansible*
openjdk: openjdk-* ca-certificates-java
linux: linux-base linux-image-* linux-headers-*
httpie: httpie*