salt-ubuntu-devops-tools

Windows Users: Setup appropriate WSL engine

Enable passwordless sudo

Run the following command line to enable passwordless sudo access.

cat <<EOF | sudo tee /etc/sudoers.d/$(id -un)
$(id -un) ALL=(ALL:ALL) NOPASSWD:ALL
EOF

Install Salt

sudo curl -fsSL -o /etc/apt/keyrings/salt-archive-keyring-2023.gpg \
     https://repo.saltproject.io/salt/py3/ubuntu/22.04/amd64/SALT-PROJECT-GPG-PUBKEY-2023.gpg \
&& echo "deb [signed-by=/etc/apt/keyrings/salt-archive-keyring-2023.gpg arch=amd64] https://repo.saltproject.io/salt/py3/ubuntu/22.04/amd64/latest jammy main" \
   | sudo tee /etc/apt/sources.list.d/salt.list \
&& sudo apt-get update -y \
&& sudo apt-get install -y git salt-minion

Clone this repo

Run the following commands to clone the repository and set appropriate permissions.

sudo git clone https://github.com/fjudith/salt-ubuntu-devops-tools /srv/salt \
&& sudo chown -R $(id -un) /srv/salt

Deploy Salt Pillar from the example

Run the following commands to configure the pillar.

sudo mkdir -vp /srv/pillar \
&& sudo chown $(id -un) /srv/pillar \
&& cp -vf /srv/salt/pillar.sls.example /srv/pillar/devops.sls \
&& cp -vf /srv/salt/pillar.top.sls.example /srv/pillar/top.sls

Edit the /srv/pillar/devops.sls to customize installed tools.

example:

common:
  enabled: true
aquasecurity:
  trivy:
    enabled: true
  falco:
    enabled: false
hashicorp:
  terraform:
    cli:
      enabled: true
pulumi:
  cli:
    enabled: false
kubernetes:
  cli:
    enabled: true
  helm:
    enabled: true

Installation

Run the following command to install the tools locally with Salt (i.e. Salt Masterless)

sudo salt-call --local state.highstate

Debug only:

sudo salt-call --local  state.highstate --file-root=/srv/salt --pillar-root=/srv/pillar --retcode-passthrough -l info