This role currently only works with Debian users quotas, not groups or projects, using journald quotas when available and falling back to using aquota on older systemd.
This role is designed to configure one directory with users quotas, the quota_dir has to be a partition and this role will fail if it isn't, it defaults to /home.
You can set users quotas by using the users role, the tasks for this in that role should be rewritten and moved to this role in the future.
Note that due to some issues with the quotaon systemd service this role disables it.
See the defaults/main.yml file for the default settings.
By default quota is false, set it to run to run the tasks in this role.
By default qouta_state set enabled, set it to absent to disable and remove quota configuration and packages.
The primary URL of this repo is https://git.coop/webarch/quota however it is also mirrored to GitHub and available via Ansible Galaxy.
If you use this role please use a tagged release, see the release notes.
This role installs three Bash scripts in /etc/ansible/facts.d/ which generate JSON that is available under facts_local, for example for a /home directory:
/etc/ansible/facts.d/findmnt.fact | yq -Pfilesystems:
- target: /
source: /dev/xvda2
fstype: ext4
options: rw,relatime,errors=remount-ro
children:
- target: /sys
source: sysfs
fstype: sysfs
options: rw,nosuid,nodev,noexec,relatime
children:
- target: /sys/kernel/security
source: securityfs
fstype: securityfs
options: rw,nosuid,nodev,noexec,relatime
- target: /sys/fs/cgroup
source: cgroup2
fstype: cgroup2
options: rw,nosuid,nodev,noexec,relatime,nsdelegate
- target: /sys/fs/pstore
source: pstore
fstype: pstore
options: rw,nosuid,nodev,noexec,relatime
- target: /sys/fs/bpf
source: bpf
fstype: bpf
options: rw,nosuid,nodev,noexec,relatime,mode=700
- target: /sys/kernel/debug
source: debugfs
fstype: debugfs
options: rw,nosuid,nodev,noexec,relatime
- target: /sys/kernel/tracing
source: tracefs
fstype: tracefs
options: rw,nosuid,nodev,noexec,relatime
- target: /sys/kernel/config
source: configfs
fstype: configfs
options: rw,nosuid,nodev,noexec,relatime
- target: /sys/fs/fuse/connections
source: fusectl
fstype: fusectl
options: rw,nosuid,nodev,noexec,relatime
- target: /proc
source: proc
fstype: proc
options: rw,relatime
children:
- target: /proc/sys/fs/binfmt_misc
source: systemd-1
fstype: autofs
options: rw,relatime,fd=30,pgrp=1,timeout=0,minproto=5,maxproto=5,direct,pipe_ino=10259
- target: /dev
source: udev
fstype: devtmpfs
options: rw,nosuid,relatime,size=4056296k,nr_inodes=1014074,mode=755
children:
- target: /dev/pts
source: devpts
fstype: devpts
options: rw,nosuid,noexec,relatime,gid=5,mode=620,ptmxmode=000
- target: /dev/shm
source: tmpfs
fstype: tmpfs
options: rw,nosuid,nodev
- target: /dev/mqueue
source: mqueue
fstype: mqueue
options: rw,nosuid,nodev,noexec,relatime
- target: /run
source: tmpfs
fstype: tmpfs
options: rw,nosuid,noexec,relatime,size=820348k,mode=755
children:
- target: /run/lock
source: tmpfs
fstype: tmpfs
options: rw,nosuid,nodev,noexec,relatime,size=5120k
- target: /run/user/1000
source: tmpfs
fstype: tmpfs
options: rw,nosuid,nodev,relatime,size=820348k,nr_inodes=205087,mode=700,uid=1000,gid=1001
- target: /home
source: /dev/xvda4
fstype: ext4
options: rw,nosuid,nodev,relatime
- target: /var
source: /dev/xvda3
fstype: ext4
options: rw,relatime,errors=remount-ro
children:
- target: /var/www/users/wiki
source: /dev/xvda4[/wiki]
fstype: ext4
options: rw,nosuid,nodev,relatime
- target: /var/lib/snapd
source: /dev/xvda7
fstype: ext4
options: rw,nosuid,nodev,relatime
- target: /var/lib/mysql
source: /dev/xvda6
fstype: ext4
options: rw,nosuid,nodev,relatime
- target: /chroot
source: /dev/xvda5
fstype: ext4
options: rw,nosuid,relatime
- target: /chroots/wiki
source: /dev/xvda5
fstype: ext4
options: ro,nosuid,relatime
children:
- target: /chroots/wiki/var/www/users/wiki
source: /dev/xvda4[/wiki]
fstype: ext4
options: rw,nosuid,nodev,relatime
- target: /chroots/wiki/run/mysqld
source: tmpfs[/mysqld]
fstype: tmpfs
options: ro,nosuid,nodev,noexec,relatime,size=820348k,mode=755
- target: /chroots/wiki/home/wiki
source: /dev/xvda4[/wiki]
fstype: ext4
options: rw,nosuid,nodev,relatime
- target: /chroots/wiki/run/chroot
source: tmpfs[/chroot]
fstype: tmpfs
options: ro,nosuid,nodev,noexec,relatime,size=820348k,mode=755/etc/ansible/facts.d/quotatool_home.fact | yq -Pstate: present
block_grace: 86400
inode_grace: 86400/etc/ansible/facts.d/repquota_home.fact | yq -P- User: root
BlockStatus: ok
FileStatus: ok
BlockUsed: "872"
BlockSoftLimit: "0"
BlockHardLimit: "0"
BlockGrace: ""
FileUsed: "219"
FileSoftLimit: "0"
FileHardLimit: "0"
FileGrace: ""
- User: chris
BlockStatus: ok
FileStatus: ok
BlockUsed: "35420"
BlockSoftLimit: "0"
BlockHardLimit: "0"
BlockGrace: ""
FileUsed: "805"
FileSoftLimit: "0"
FileHardLimit: "0"
FileGrace: ""
- User: wiki
BlockStatus: ok
FileStatus: ok
BlockUsed: "324080"
BlockSoftLimit: "4772185"
BlockHardLimit: "5242880"
BlockGrace: ""
FileUsed: "24452"
FileSoftLimit: "954437"
FileHardLimit: "1048576"
FileGrace: ""/etc/ansible/facts.d/repquota_home.fact | yq -PFilesystem volume name: <none>
Last mounted on: /home
Filesystem UUID: 5fb78e1a-b214-44e2-a309-8e35116d8dd6
Filesystem magic number: "0xEF53"
'Filesystem revision #': 1 (dynamic)
Filesystem features: has_journal ext_attr resize_inode dir_index filetype needs_recovery extent 64bit flex_bg sparse_super large_file huge_file dir_nlink extra_isize metadata_csum
Filesystem flags: signed_directory_hash
Default mount options: user_xattr acl
Filesystem state: clean
Errors behavior: Continue
Filesystem OS type: Linux
Inode count: "3932160"
Block count: "15728640"
Reserved block count: "786432"
Free blocks: "15067559"
Free inodes: "3842395"
First block: "0"
Block size: "4096"
Fragment size: "4096"
Group descriptor size: "64"
Reserved GDT blocks: "1024"
Blocks per group: "32768"
Fragments per group: "32768"
Inodes per group: "8192"
Inode blocks per group: "512"
Flex block group size: "16"
Filesystem created: Mon Apr 6 15:10:37 2020
Last mount time: Sun Oct 9 21:21:26 2022
Last write time: Sun Oct 9 21:21:26 2022
Mount count: "15"
Maximum mount count: "-1"
Last checked: Fri Apr 8 15:24:22 2022
Check interval: 0 (<none>)
Lifetime writes: 204 GB
Reserved blocks uid: 0 (user root)
Reserved blocks gid: 0 (group root)
First inode: "11"
Inode size: "256"
Required extra isize: "32"
Desired extra isize: "32"
Journal inode: "8"
Default directory hash: half_md4
Directory Hash Seed: 67d5358d-723d-4ce3-b3c0-30ddb433ad9e
Journal backup: inode blocks
Checksum type: crc32c
Checksum: "0xfba01192"