|
|
ce79728744
|
feat(cleanup): enroll Secure Boot keys in VM NVRAM after OS installation
|
2026-04-02 17:03:07 +02:00 |
|
|
|
b31a5a2580
|
feat(virtualization): enable TPM2 emulation for Secure Boot VMs
|
2026-04-02 17:03:01 +02:00 |
|
|
|
2055863673
|
feat(configuration): auto-bind PCR 7 when Secure Boot and FDE are both enabled
|
2026-04-02 17:02:56 +02:00 |
|
|
|
ceb11852ec
|
feat(configuration): add Secure Boot tasks for shim and sbctl
|
2026-04-02 17:02:56 +02:00 |
|
|
|
57417514e3
|
feat(configuration): override EFI loader to shim when Secure Boot enabled
|
2026-04-02 04:34:47 +02:00 |
|
|
|
3623fc292c
|
feat(configuration): generic FDE with systemd-cryptenroll, clevis fallback, and configurable initramfs
|
2026-04-01 15:07:58 +02:00 |
|
|
|
dfca7ec94b
|
fix(configuration): RedHat EFI grub wrapper with btrfs subvol prefix and boot order
|
2026-04-01 15:07:58 +02:00 |
|
|
|
4b38754f8b
|
feat(bootstrap): add desktop environment support with configurable DE, DM, and display target
|
2026-04-01 15:07:58 +02:00 |
|
|
|
a6bc7ffe04
|
fix(configuration): use /boot/grub2/grub.cfg for RedHat EFI grub config
|
2026-03-25 16:03:39 +01:00 |
|
|
|
9169117b25
|
fix(vim): use vimscript comment syntax for blockinfile markers in vimrc
|
2026-03-20 18:00:12 +01:00 |
|
|
|
6c94c519fb
|
fix(sudo): use explicit string check instead of bool conditional for sudo field
|
2026-03-20 17:31:49 +01:00 |
|
|
|
443f6623df
|
refactor(users): change system.users from list to dict keyed by username
|
2026-03-20 17:31:49 +01:00 |
|
|
|
6cf418fe00
|
fix(configuration): make root password, user keys, and sudo all optional
|
2026-03-20 17:31:49 +01:00 |
|
|
|
15be6149fd
|
refactor(partitioning): remove unused register variables
|
2026-03-12 12:24:59 +01:00 |
|
|
|
b88bf2860f
|
fix(configuration): replace fail+ignore_errors with debug for TPM2 fallback warning
|
2026-03-12 12:12:27 +01:00 |
|
|
|
81d26eb715
|
refactor(configuration): split encryption.yml into crypttab, dracut, grub, and initramfs subtasks
|
2026-03-12 09:40:40 +01:00 |
|
|
|
b3b634f915
|
feat(configuration): add Debian/Ubuntu repository and apt configuration
|
2026-02-22 10:47:47 +01:00 |
|
|
|
81ff2b2b87
|
feat(global_defaults): add root.shell to system schema and normalization
|
2026-02-22 03:07:30 +01:00 |
|
|
|
d9ae4ee809
|
refactor(bootstrap,configuration): rename validation-only _normalize.yml files
|
2026-02-22 03:06:34 +01:00 |
|
|
|
f7070343b9
|
refactor(configuration): centralize DNS list variables in network dispatch
|
2026-02-22 02:39:32 +01:00 |
|
|
|
1cce81366c
|
refactor(configuration): extract shared BLS update task to reduce duplication
|
2026-02-22 02:39:28 +01:00 |
|
|
|
1b58a20c45
|
refactor(bootstrap,configuration,environment): add defaults/main.yml and extract hardcoded values
|
2026-02-22 02:32:36 +01:00 |
|
|
|
6b1686e652
|
refactor(bootstrap,configuration): add per-role _normalize.yml for platform resolution
|
2026-02-22 02:27:46 +01:00 |
|
|
|
a460584c5d
|
refactor(configuration): add platform_config dict and replace is_rhel/is_debian with os_family lookups
|
2026-02-22 02:26:54 +01:00 |
|
|
|
3f2f4055f0
|
fix(cleanup,config): xen tmp cleanup, tpm2 fallback warning, add code comments
|
2026-02-22 01:59:01 +01:00 |
|
|
|
a2b206127f
|
fix(partitioning,network): swapon idempotency, DNS search domains, tune2fs changed_when
|
2026-02-22 01:58:56 +01:00 |
|
|
|
6985235e70
|
fix(encryption): add no_log to LUKS configuration block
|
2026-02-22 01:58:52 +01:00 |
|
|
|
25b1eeec45
|
fix(network): bind NM connections to detected interface names for multi-NIC
|
2026-02-21 16:51:15 +01:00 |
|
|
|
494f0b58b2
|
fix(configuration): omit interface-name when not explicitly provided to avoid predictable naming mismatch
|
2026-02-21 08:29:24 +01:00 |
|
|
|
d84b867cef
|
refactor(configuration): rename _uid to configuration_uid for role prefix convention
|
2026-02-21 05:14:33 +01:00 |
|
|
|
39c786305f
|
fix(configuration): handle boolean sudo values in sudoers deployment
|
2026-02-21 05:14:29 +01:00 |
|
|
|
72e2263f5c
|
fix(configuration): use full path for chpasswd in chroot
|
2026-02-21 05:03:36 +01:00 |
|
|
|
6de88a911a
|
fix(configuration): remove unnecessary changed_when on set_fact tasks
|
2026-02-21 02:56:58 +01:00 |
|
|
|
aec82e4241
|
refactor: add loop_control labels to dict-based loops across all roles
|
2026-02-20 23:00:53 +01:00 |
|
|
|
3361ee3de8
|
fix(configuration): add pipefail to root password shell pipe
|
2026-02-20 22:28:54 +01:00 |
|
|
|
04340d1a04
|
fix(configuration): use chpasswd for root password and separate shell setting
|
2026-02-20 22:27:17 +01:00 |
|
|
|
4c8021fc2e
|
fix(configuration): add explicit LUKS auto-decrypt fallback state tracking and logging
|
2026-02-20 22:26:47 +01:00 |
|
|
|
1634af552e
|
feat(cleanup): gate RHEL ISO disk and fstab handling on rhel_repo.source
|
2026-02-20 21:51:20 +01:00 |
|
|
|
33d46274bd
|
fix(encryption): add warning before silent TPM2-to-keyfile fallback
|
2026-02-20 21:51:12 +01:00 |
|
|
|
f18881328c
|
refactor(configuration): add conditional dispatch to task includes
|
2026-02-20 21:16:52 +01:00 |
|
|
|
5b5c94cb8b
|
refactor(configuration): split network.yml into per-init-system dispatch files
|
2026-02-20 21:16:45 +01:00 |
|
|
|
b61fecfc88
|
refactor(configuration): convert services.yml to list-based loop
|
2026-02-20 21:16:37 +01:00 |
|
|
|
7a666239b6
|
fix(configuration): remove trailing blank line from extras.yml
|
2026-02-20 20:20:33 +01:00 |
|
|
|
bbf83f7050
|
fix(configuration): disambiguate BLS task names and clean up misc noise
|
2026-02-20 20:17:05 +01:00 |
|
|
|
2a044dcc1d
|
refactor(configuration): relocate login banner and fix blockinfile markers
|
2026-02-20 20:16:19 +01:00 |
|
|
|
c57323ff69
|
fix(configuration): use short hostname and allow per-user shell
|
2026-02-20 20:15:49 +01:00 |
|
|
|
6236978e45
|
fix: configurable OVMF/machine type, routes syntax, package lists, interface names
|
2026-02-20 18:47:12 +01:00 |
|
|
|
4d0bf3891a
|
fix: deep analysis audit — no_log, resolv.conf, service conflicts, lint
|
2026-02-20 18:34:59 +01:00 |
|
|
|
d1d579c658
|
fix: resolve Jinja2 .keys ambiguity, fastfetch availability, and python interpreter
|
2026-02-20 16:58:58 +01:00 |
|
|
|
2a543fffc3
|
fix(bootloader): run efibootmgr on host for universal chroot compatibility
|
2026-02-20 03:36:20 +01:00 |
|
