From aa6e356444ed1cd5f159ba7ab3d9787aaa22a575 Mon Sep 17 00:00:00 2001 From: Sandwich Date: Fri, 2 Jan 2026 18:55:45 +0100 Subject: [PATCH] Add third-party preparation task hook --- roles/environment/tasks/main.yml | 24 ++++++++++++++++++++++++ roles/global_defaults/defaults/main.yml | 1 + 2 files changed, 25 insertions(+) diff --git a/roles/environment/tasks/main.yml b/roles/environment/tasks/main.yml index 8580267..3793295 100644 --- a/roles/environment/tasks/main.yml +++ b/roles/environment/tasks/main.yml @@ -151,3 +151,27 @@ src: "{{ os | lower }}.repo.j2" dest: /etc/yum.repos.d/{{ os | lower }}.repo mode: "0644" + + - name: Check for third-party preparation tasks + ansible.builtin.stat: + path: >- + {{ + thirdparty_preparation_tasks_path + if thirdparty_preparation_tasks_path | regex_search('^/') + else playbook_dir + '/' + thirdparty_preparation_tasks_path + }} + delegate_to: localhost + run_once: true + register: environment_thirdparty_tasks_stat + changed_when: false + + - name: Run third-party preparation tasks + when: + - thirdparty_preparation_tasks_path | length > 0 + - environment_thirdparty_tasks_stat.stat.exists + ansible.builtin.include_tasks: >- + {{ + thirdparty_preparation_tasks_path + if thirdparty_preparation_tasks_path | regex_search('^/') + else playbook_dir + '/' + thirdparty_preparation_tasks_path + }} diff --git a/roles/global_defaults/defaults/main.yml b/roles/global_defaults/defaults/main.yml index db582b2..1c00893 100644 --- a/roles/global_defaults/defaults/main.yml +++ b/roles/global_defaults/defaults/main.yml @@ -8,6 +8,7 @@ firewalld_enabled: true zstd_enabled: true swap_enabled: true chroot_command: "arch-chroot" +thirdparty_preparation_tasks_path: "dropins/preparation.yml" cis_enabled: "{{ cis | bool }}"