|
|
579c499c02
|
feat(configuration): multi-backend networking, bind by match not MAC
|
2026-05-31 12:25:53 +02:00 |
|
|
|
00acd4d200
|
refactor(configuration): consolidate firewall into one phase-aware path
|
2026-05-27 05:28:00 +02:00 |
|
|
|
d922efd2e4
|
feat: uniform system.content source schema across installers and repositories
|
2026-05-27 05:15:32 +02:00 |
|
|
|
939c5c741f
|
feat: golden-image build support (cloud-init on EL, selinux relabel, SSH wait)
|
2026-05-27 05:05:55 +02:00 |
|
|
|
d2a19cfd5c
|
feat(hardware): auto-detect audio, bluetooth, camera with declarative override
|
2026-05-25 04:36:21 +02:00 |
|
|
|
44f5adc682
|
feat(bootstrap): per-os desktop apps, KDE plasma-login-manager and DM resolution
|
2026-05-25 04:30:53 +02:00 |
|
|
|
e0ecf628cd
|
fix(bootstrap): deploy all non-EOL core distros (keyrings, repos, versions)
|
2026-05-25 03:52:44 +02:00 |
|
|
|
55b21eae5d
|
fix: encryption, partitioning, cis and virtualization hardening
|
2026-05-30 18:05:14 +02:00 |
|
|
|
b1e938b7f0
|
fix(users): accept plaintext or pre-hashed passwords uniformly
|
2026-05-30 18:05:05 +02:00 |
|
|
|
9757ed3785
|
feat: complete wayland desktop deployment (gnome/kde/sway/hyprland)
|
2026-05-30 18:05:05 +02:00 |
|
|
|
876e90ce2b
|
refactor: trim bootstrap OS support to core three distro families
|
2026-05-30 18:04:00 +02:00 |
|
|
|
382e82ff85
|
fix(configuration): tolerate missing units, gate Secure Boot to supported OSes, fix clevis install per family
|
2026-05-30 09:25:34 +02:00 |
|
|
|
6bfaa0aa2b
|
fix(configuration): guard user keys access to avoid dict.keys() method collision
|
2026-04-16 15:37:13 +02:00 |
|
|
|
5dc0424acb
|
feat(cleanup): enroll Secure Boot keys in VM NVRAM after OS installation
|
2026-04-16 15:37:13 +02:00 |
|
|
|
c12332a853
|
feat(virtualization): enable TPM2 emulation for Secure Boot VMs
|
2026-04-16 15:37:13 +02:00 |
|
|
|
5ace4577a2
|
feat(configuration): auto-bind PCR 7 when Secure Boot and FDE are both enabled
|
2026-04-16 15:37:13 +02:00 |
|
|
|
c0ff01ef40
|
feat(configuration): add Secure Boot tasks for shim and sbctl
|
2026-04-16 15:37:13 +02:00 |
|
|
|
57417514e3
|
feat(configuration): override EFI loader to shim when Secure Boot enabled
|
2026-04-02 04:34:47 +02:00 |
|
|
|
3623fc292c
|
feat(configuration): generic FDE with systemd-cryptenroll, clevis fallback, and configurable initramfs
|
2026-04-01 15:07:58 +02:00 |
|
|
|
dfca7ec94b
|
fix(configuration): RedHat EFI grub wrapper with btrfs subvol prefix and boot order
|
2026-04-01 15:07:58 +02:00 |
|
|
|
4b38754f8b
|
feat(bootstrap): add desktop environment support with configurable DE, DM, and display target
|
2026-04-01 15:07:58 +02:00 |
|
|
|
a6bc7ffe04
|
fix(configuration): use /boot/grub2/grub.cfg for RedHat EFI grub config
|
2026-03-25 16:03:39 +01:00 |
|
|
|
9169117b25
|
fix(vim): use vimscript comment syntax for blockinfile markers in vimrc
|
2026-03-20 18:00:12 +01:00 |
|
|
|
6c94c519fb
|
fix(sudo): use explicit string check instead of bool conditional for sudo field
|
2026-03-20 17:31:49 +01:00 |
|
|
|
443f6623df
|
refactor(users): change system.users from list to dict keyed by username
|
2026-03-20 17:31:49 +01:00 |
|
|
|
6cf418fe00
|
fix(configuration): make root password, user keys, and sudo all optional
|
2026-03-20 17:31:49 +01:00 |
|
|
|
15be6149fd
|
refactor(partitioning): remove unused register variables
|
2026-03-12 12:24:59 +01:00 |
|
|
|
b88bf2860f
|
fix(configuration): replace fail+ignore_errors with debug for TPM2 fallback warning
|
2026-03-12 12:12:27 +01:00 |
|
|
|
81d26eb715
|
refactor(configuration): split encryption.yml into crypttab, dracut, grub, and initramfs subtasks
|
2026-03-12 09:40:40 +01:00 |
|
|
|
b3b634f915
|
feat(configuration): add Debian/Ubuntu repository and apt configuration
|
2026-02-22 10:47:47 +01:00 |
|
|
|
81ff2b2b87
|
feat(global_defaults): add root.shell to system schema and normalization
|
2026-02-22 03:07:30 +01:00 |
|
|
|
d9ae4ee809
|
refactor(bootstrap,configuration): rename validation-only _normalize.yml files
|
2026-02-22 03:06:34 +01:00 |
|
|
|
f7070343b9
|
refactor(configuration): centralize DNS list variables in network dispatch
|
2026-02-22 02:39:32 +01:00 |
|
|
|
1cce81366c
|
refactor(configuration): extract shared BLS update task to reduce duplication
|
2026-02-22 02:39:28 +01:00 |
|
|
|
1b58a20c45
|
refactor(bootstrap,configuration,environment): add defaults/main.yml and extract hardcoded values
|
2026-02-22 02:32:36 +01:00 |
|
|
|
6b1686e652
|
refactor(bootstrap,configuration): add per-role _normalize.yml for platform resolution
|
2026-02-22 02:27:46 +01:00 |
|
|
|
a460584c5d
|
refactor(configuration): add platform_config dict and replace is_rhel/is_debian with os_family lookups
|
2026-02-22 02:26:54 +01:00 |
|
|
|
734ed822d6
|
refactor(extras): convert custom.sh from template to static copy
|
2026-02-22 01:59:04 +01:00 |
|
|
|
3f2f4055f0
|
fix(cleanup,config): xen tmp cleanup, tpm2 fallback warning, add code comments
|
2026-02-22 01:59:01 +01:00 |
|
|
|
a2b206127f
|
fix(partitioning,network): swapon idempotency, DNS search domains, tune2fs changed_when
|
2026-02-22 01:58:56 +01:00 |
|
|
|
6985235e70
|
fix(encryption): add no_log to LUKS configuration block
|
2026-02-22 01:58:52 +01:00 |
|
|
|
25b1eeec45
|
fix(network): bind NM connections to detected interface names for multi-NIC
|
2026-02-21 16:51:15 +01:00 |
|
|
|
494f0b58b2
|
fix(configuration): omit interface-name when not explicitly provided to avoid predictable naming mismatch
|
2026-02-21 08:29:24 +01:00 |
|
|
|
d84b867cef
|
refactor(configuration): rename _uid to configuration_uid for role prefix convention
|
2026-02-21 05:14:33 +01:00 |
|
|
|
39c786305f
|
fix(configuration): handle boolean sudo values in sudoers deployment
|
2026-02-21 05:14:29 +01:00 |
|
|
|
72e2263f5c
|
fix(configuration): use full path for chpasswd in chroot
|
2026-02-21 05:03:36 +01:00 |
|
|
|
6de88a911a
|
fix(configuration): remove unnecessary changed_when on set_fact tasks
|
2026-02-21 02:56:58 +01:00 |
|
|
|
aec82e4241
|
refactor: add loop_control labels to dict-based loops across all roles
|
2026-02-20 23:00:53 +01:00 |
|
|
|
3361ee3de8
|
fix(configuration): add pipefail to root password shell pipe
|
2026-02-20 22:28:54 +01:00 |
|
|
|
04340d1a04
|
fix(configuration): use chpasswd for root password and separate shell setting
|
2026-02-20 22:27:17 +01:00 |
|
