The infrastructure here includes one ansible master server and a ansible client server. Ansible is installed in the Master server and using ansible playbook we will be installing and configuring NGINX, PHP, MariaDB and Wordpress in the client server.
Ansible is a radically simple IT automation engine that automates cloud provisioning, configuration management, application deployment, intra-service orchestration, and many other IT needs. It is the simplest way to automate IT. Ansible is the only automation language that can be used across entire IT teams from systems and network administrators to developers and managers. You can learn more about ansible :
Ansible Playbooks offer a repeatable, re-usable, simple configuration management and multi-machine deployment system, one that is well suited to deploying complex applications. If you need to execute a task with Ansible more than once, write a playbook and put it under source control. Then you can use the playbook to push out new configuration or confirm the configuration of remote systems. You can learn more about the same in the website.
Here I am using AWS Amazon linux server
sudo amazon-linux-extras install ansible2 -yPlease see the website for more information.
Here, I am creating a inventory file in the name of "hosts". The name of the file can be anything and this file contains the details of the remote servers(client) that you want Ansible to run against. You can learn more about the same in the website.
vim hosts[ubuntu]
IP ansible_user="ubuntu" ansible_port="22" ansible_private_key_file="ansible.pem"- Here, I am defining some variables that will be used to run in the ansible-playbook.
- Extension of the files will be .vars
You can learn more about the same in the website.
- Defining some variables for apache.
vim apache.vars---
httpd_port: "80"
httpd_owner: "www-data"
httpd_group: "www-data"- Defining a variable for a domain name
vim domain.vars---
httpd_domain: "example.com"
document_root: /var/www/example.com/html/- Defining some variables for wordpress
vim wordpress.vars---
wordpress_url: "https://wordpress.org/wordpress-5.7.3.tar.gz"vim vhost.conf.tmplserver {
listen {{ httpd_port }};
listen [::]:{{ httpd_port }};
root {{ document_root }};
index index.php index.html index.htm index.nginx-debian.html;
server_name {{ httpd_domain }} www.{{ httpd_domain }};
location / {
try_files $uri $uri/ =404;
}
location ~ \.php$ {
include snippets/fastcgi-php.conf;
fastcgi_pass unix:/run/php/php7.4-fpm.sock;
}
}Updating the database, username and password details in the file and saving it as wp-config.php.tmpl
vim wp-config.php.tmplAdding the values to the file
// ** MySQL settings - You can get this info from your web host ** //
/** The name of the database for WordPress */
define( 'DB_NAME', '{{ sql_extra_database }}' );
/** MySQL database username */
define( 'DB_USER', '{{ sql_extra_user }}' );
/** MySQL database password */
define( 'DB_PASSWORD', '{{ sql_extra_user_password }}' );vim main.yml---
- name: "Wordpress Installation"
hosts: ubuntu
become: yes
vars_files:
- apache.vars
- domain.vars
- wordpress.vars
vars_prompt:
- name: sql_root_password
prompt: Enter the root password for MySQL
private: yes
- name: sql_extra_user
prompt: Enter the Database User Name for your Wordpress
private: no
- name: sql_extra_user_password
prompt: Enter the Password for the Database user for your Wordpress
private: yes
- name: sql_extra_database
prompt: Enter the database name for your Wordpress
private: no
tasks:################################# nginx ##################################################
- name: "Installing nginx and PHP"
apt:
name:
- nginx
- php-mysql
- php-fpm
state: present
update_cache: true
- name: "Copying virtualhost(vhost.conf.tmpl)"
template:
src: vhost.conf.tmpl
dest: "/etc/nginx/sites-available/example.com"
- name: "Enable new site"
file:
src: /etc/nginx/sites-available/example.com
dest: /etc/nginx/sites-enabled/default ######==> seting this as default for now
state: link
- name: "Creating DocumentRoot"
file:
path: "{{ document_root }}"
state: directory
owner: "{{ httpd_owner }}"
group: "{{ httpd_group }}"
- name: "Restarting nginx"
service:
name: nginx
state: restarted
enabled: true####################### Mariadb ##################################################
- name: "Mariadb - Installation"
apt:
name:
- mariadb-server
- python3-pymysql
state: present
- name: "Mariadb - Restart"
service:
name: mariadb
state: restarted
enabled: true
tags:
- mariadb
- name: "Change the authentication plugin of MySQL root user to mysql_native_password"
ignore_errors: true
shell: mysql -u root -e 'UPDATE mysql.user SET plugin="mysql_native_password" WHERE user="root" AND host="localhost"'
- name: Flush Privileges
ignore_errors: true
shell: mysql -u root -e 'FLUSH PRIVILEGES'
- name: "Mariadb-Reset Root Password"
ignore_errors: true
mysql_user:
login_user: "root"
login_password: ""
user: "root"
password: "{{ sql_root_password }}"
host_all: true
tags:
- mariadb
- name: "Mariad-Creating extra database for wordpress"
mysql_db:
login_user: "root"
login_password: "{{ sql_root_password }}"
name: "{{ sql_extra_database }}"
state: present
tags:
- mariadb
- name: "Mariad-Server - Creating Extra user for wordpress"
mysql_user:
login_user: "root"
login_password: "{{ sql_root_password }}"
user: "{{ sql_extra_user }}"
password: "{{ sql_extra_user_password }}"
state: present
priv: '{{ sql_extra_database }}.*:ALL'
tags:
- mariadb################################ Wordpress ##########################################
- name: "Downloading wordpress"
get_url:
url: "{{ wordpress_url }}"
dest: "/tmp/wordpress.tar.gz"
- name: "Wordpress - Extracting Archive File"
unarchive:
src: "/tmp/wordpress.tar.gz"
dest: "/tmp/"
remote_src: true
- name: "Wordpress - Copying Contents"
copy:
src: "/tmp/wordpress/"
dest: "{{document_root}}"
remote_src: true
owner: "{{ httpd_owner }}"
group: "{{ httpd_group }}"
- name: "Wordpress - Creating wp-config.php"
template:
src: wp-config.php.tmpl
dest: "{{document_root}}/wp-config.php"
owner: "{{ httpd_owner }}"
group: "{{ httpd_group }}"############################ Post Installation #########################################
- name: "Post-Installation - Clean Up"
file:
path: "{{ item }}"
state: absent
with_items:
- "/tmp/wordpress"
- "/tmp/wordpress.tar.gz"
- name: "Post-Installation - Restart services"
service:
name: "{{ item }}"
state: restarted
enabled: true
with_items:
- nginx
- mariadb Make sure the Playbook, inventory file and the SSH key to access client server in working directory of the Ansible Master server.
- Running a syntax check
ansible-playbook -i hosts main.yml --syntax-check- Executing the Playbook
ansible-playbook -i hosts main.yml