-
Notifications
You must be signed in to change notification settings - Fork 5
/
Copy pathplaybook.yml
85 lines (70 loc) · 1.71 KB
/
playbook.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
---
- hosts: all
tasks:
- apt:
update_cache: yes
name: "{{ item }}"
loop:
- git
- python3-pip
- python-pip
- make
- ntp
- apt-transport-https
- python-pkg-resources
- rsync
- python-setuptools
- python3-setuptools
- pip:
name: docker-compose
- name: Docker ppa key
apt_key:
url: https://download.docker.com/linux/ubuntu/gpg
state: present
- name: Docker ppa
apt_repository:
repo: 'deb [arch=amd64] https://download.docker.com/linux/ubuntu xenial stable'
- name: Install Docker
apt:
name: docker-ce
- name: Install Docker Compose
get_url:
url: https://github.com/docker/compose/releases/download/1.21.2/docker-compose-Linux-x86_64
dest: /usr/bin/docker-compose
mode: u=rwx,g=xr,o=rx
- name: Add user to group
user:
name: ubuntu
groups:
- docker
- name: Configure firewall
ufw:
state: enabled
policy: allow
- name: Protect against login attacks
ufw:
rule: limit
port: ssh
proto: tcp
- name: Allow access to port 8080
ufw:
rule: allow
port: 8080
- name: Allow access to port 8088
ufw:
rule: allow
port: 8088
- name: Allow access to port 8899
ufw:
rule: allow
port: 8890
- copy:
src: docker-compose.yml
dest: /home/ubuntu/docker-compose.yml
- docker_service:
project_src: /home/ubuntu
state: absent
remove_images: all
- docker_service:
project_src: /home/ubuntu
state: present