Ansible-Bootstrap

sandwich/Ansible-Bootstrap

Fork 0

41ccf2a5b9 fix(configuration): allow guest-exec RPCs for EL golden cloning master Sandwich 2026-05-29 22:43:14 +02:00
8f9cfe3b2f fix(cleanup): force-stop then start the proxmox VM after install Sandwich 2026-05-29 22:40:02 +02:00
6a75237197 fix(environment): pick the largest cdrom as the RHEL install DVD Sandwich 2026-05-28 17:52:44 +02:00
b04aad12fb fix(satellite): drop auto-attach (mutually exclusive with activation key) Sandwich 2026-05-26 01:08:09 +02:00
4fff9f8d80 fix(virtualization): create vmware target folder before vm deploy Sandwich 2026-06-04 18:17:50 +02:00
7f12a0f3d8 feat: accept proxmox API-token auth alongside password Sandwich 2026-05-31 12:40:31 +02:00
ceb2237bbb fix(encryption): add tpm2-tss dracut module explicitly for TPM2 LUKS Sandwich 2026-05-31 12:39:24 +02:00
477c8379c4 fix(configuration): enable per-family time-sync and skip sudo-rs lecture Sandwich 2026-05-31 12:30:26 +02:00
579c499c02 feat(configuration): multi-backend networking, bind by match not MAC Sandwich 2026-05-31 12:25:53 +02:00
89e366d0f0 fix: EL10 PAM and crypto readiness via authselect profile and DEFAULT policy Sandwich 2026-05-28 17:30:57 +02:00
6fe843355e fix(bootstrap): keep package cache off the 2 GiB CIS /var during install Sandwich 2026-05-28 17:26:25 +02:00
441876fab9 refactor(global_defaults): single source of truth for family-default resolution Sandwich 2026-05-28 17:25:23 +02:00
00acd4d200 refactor(configuration): consolidate firewall into one phase-aware path Sandwich 2026-05-27 05:28:00 +02:00
d922efd2e4 feat: uniform system.content source schema across installers and repositories Sandwich 2026-05-27 05:15:32 +02:00
939c5c741f feat: golden-image build support (cloud-init on EL, selinux relabel, SSH wait) Sandwich 2026-05-27 05:05:55 +02:00
2c35409519 feat(cis): add selectable profile and per-rule hardening toggles Sandwich 2026-05-25 04:37:33 +02:00
d2a19cfd5c feat(hardware): auto-detect audio, bluetooth, camera with declarative override Sandwich 2026-05-25 04:36:21 +02:00
44f5adc682 feat(bootstrap): per-os desktop apps, KDE plasma-login-manager and DM resolution Sandwich 2026-05-25 04:30:53 +02:00
0185797af9 fix(environment): co-upgrade soname closure when installing installer tools Sandwich 2026-05-25 03:54:12 +02:00
e0ecf628cd fix(bootstrap): deploy all non-EOL core distros (keyrings, repos, versions) Sandwich 2026-05-25 03:52:44 +02:00
37df881daa docs: refresh bootstrap examples and README Sandwich 2026-05-30 18:05:14 +02:00
55b21eae5d fix: encryption, partitioning, cis and virtualization hardening Sandwich 2026-05-30 18:05:14 +02:00
b1e938b7f0 fix(users): accept plaintext or pre-hashed passwords uniformly Sandwich 2026-05-30 18:05:05 +02:00
c843f5289b feat: hardware/firmware/gpu/peripherals detection and packages Sandwich 2026-05-30 18:05:05 +02:00
9757ed3785 feat: complete wayland desktop deployment (gnome/kde/sway/hyprland) Sandwich 2026-05-30 18:05:05 +02:00
876e90ce2b refactor: trim bootstrap OS support to core three distro families Sandwich 2026-05-30 18:04:00 +02:00
7c44cb1ff0 docs(bootstrap): fix users dict format in examples, sync schema defaults, document secure_boot/rhel_repo Sandwich 2026-05-02 21:42:09 +02:00
5d0630a386 refactor(global_defaults): drop orphan luks.urandom/verify and aur feature, bump fedora to 45 Sandwich 2026-05-02 19:51:18 +02:00
3eaf918a53 fix(lint): convert sshd restart to handler, add pipefail to btrfs subvol set Sandwich 2026-05-02 18:23:42 +02:00
382e82ff85 fix(configuration): tolerate missing units, gate Secure Boot to supported OSes, fix clevis install per family Sandwich 2026-04-30 20:14:33 +02:00
db7dc53bd7 docs(bootstrap): document firmware/gpu/peripherals/hardware features Sandwich 2026-04-29 22:51:09 +02:00
7d45f25a7e feat(bootstrap): install vendor-matched hardware packages Sandwich 2026-04-29 21:23:55 +02:00
3880b8f41e feat(environment): detect cpu/gpu/wireless/fingerprint hardware Sandwich 2026-04-29 19:47:42 +02:00
dc3c4a901f feat(global_defaults): firmware/gpu/peripherals/hardware schema Sandwich 2026-04-29 18:34:18 +02:00
6bfaa0aa2b fix(configuration): guard user keys access to avoid dict.keys() method collision sandwich 2026-04-16 15:26:34 +02:00
5dc0424acb feat(cleanup): enroll Secure Boot keys in VM NVRAM after OS installation sandwich 2026-04-02 07:22:53 +02:00
c12332a853 feat(virtualization): enable TPM2 emulation for Secure Boot VMs sandwich 2026-04-02 04:37:28 +02:00
5ace4577a2 feat(configuration): auto-bind PCR 7 when Secure Boot and FDE are both enabled sandwich 2026-04-02 04:37:03 +02:00
c0ff01ef40 feat(configuration): add Secure Boot tasks for shim and sbctl sandwich 2026-04-02 04:36:24 +02:00
57417514e3 feat(configuration): override EFI loader to shim when Secure Boot enabled sandwich 2026-04-02 04:34:47 +02:00
0928588c1f feat(bootstrap): add Secure Boot conditional packages for Debian, Ubuntu, and Arch sandwich 2026-04-02 04:34:16 +02:00
6d622f2db4 feat(global_defaults): add secure_boot feature toggle with normalization sandwich 2026-04-02 04:33:07 +02:00
b11d65a6f3 docs(bootstrap): document desktop, initramfs, and FDE features with SSH keepalive config sandwich 2026-04-01 15:07:58 +02:00
3623fc292c feat(configuration): generic FDE with systemd-cryptenroll, clevis fallback, and configurable initramfs sandwich 2026-04-01 15:07:58 +02:00
dfca7ec94b fix(configuration): RedHat EFI grub wrapper with btrfs subvol prefix and boot order sandwich 2026-04-01 15:07:58 +02:00
e8be84bf49 fix(partitioning): set btrfs default subvolume and restrict @pkg to Arch sandwich 2026-04-01 15:07:58 +02:00
322cc0b1ce fix(bootstrap): resolve interface-only network, sshd penalties, dnf scriptlets, and EFI cleanup sandwich 2026-04-01 15:07:58 +02:00
4b38754f8b feat(bootstrap): add desktop environment support with configurable DE, DM, and display target sandwich 2026-04-01 15:07:58 +02:00
a6bc7ffe04 fix(configuration): use /boot/grub2/grub.cfg for RedHat EFI grub config Sandwich 2026-03-25 15:40:19 +01:00
c529e71ebc feat(packages): add needrestart to Debian and Ubuntu package lists Sandwich 2026-03-20 18:06:14 +01:00
cb46de2b6d feat(bootstrap): add full package upgrade step for Debian and Ubuntu Sandwich 2026-03-20 18:05:04 +01:00
9169117b25 fix(vim): use vimscript comment syntax for blockinfile markers in vimrc Sandwich 2026-03-20 17:58:11 +01:00
6c94c519fb fix(sudo): use explicit string check instead of bool conditional for sudo field Sandwich 2026-03-20 17:28:43 +01:00
efd96a42b8 fix(connection): set ansible_port explicitly at every connection transition Sandwich 2026-03-20 16:52:15 +01:00
68661c3cca fix(vmware): use primary ansible_* vars for vmware_tools connection plugin precedence Sandwich 2026-03-20 16:17:41 +01:00
1db20c7ac0 fix(vmware): use empty password for vmware_tools during live ISO bootstrap Sandwich 2026-03-20 15:51:35 +01:00
7b155b427b fix(users): update cloud-init template and input validation for dict users Sandwich 2026-03-20 15:10:31 +01:00
ca8721e98f refactor(prompts): remove vars_prompt, require users defined in inventory Sandwich 2026-03-20 15:06:32 +01:00
cdb2559d8f fix(prompts): add default values to vars_prompt to skip in non-interactive mode Sandwich 2026-03-20 15:03:35 +01:00
443f6623df refactor(users): change system.users from list to dict keyed by username Sandwich 2026-03-20 14:33:13 +01:00
6cf418fe00 fix(configuration): make root password, user keys, and sudo all optional Sandwich 2026-03-20 02:03:48 +01:00
47ec5fe621 fix(cloud-init): handle missing keys and make sudo conditional Sandwich 2026-03-20 02:01:35 +01:00
240f945cce fix(cleanup): remove ansible_become override that blocks swapoff/umount Sandwich 2026-03-20 01:13:20 +01:00
663a04556f feat(global_defaults): add system.features.aur schema for validation passthrough Sandwich 2026-03-20 01:13:20 +01:00
6febd1acf1 refactor(virtualization): extract shared Xen disk definitions Sandwich 2026-03-12 12:27:18 +01:00
008187860c refactor: remove unnecessary changed_when from set_fact tasks Sandwich 2026-03-12 12:25:45 +01:00
cd1be6b5e1 refactor(partitioning): remove redundant blockdev --rereadpt calls Sandwich 2026-03-12 12:25:15 +01:00
15be6149fd refactor(partitioning): remove unused register variables Sandwich 2026-03-12 12:24:59 +01:00
ca29ad200d chore: suppress args[module] false positives from variable-based module_defaults Sandwich 2026-03-12 12:09:54 +01:00
8079099cee fix(cleanup): add no_log to Proxmox VM restart task Sandwich 2026-03-12 12:09:53 +01:00
9e79185b07 fix(virtualization): add missing changed_when to Xen VM stop task Sandwich 2026-03-12 12:09:51 +01:00
b88bf2860f fix(configuration): replace fail+ignore_errors with debug for TPM2 fallback warning Sandwich 2026-03-12 12:09:51 +01:00
81d26eb715 refactor(configuration): split encryption.yml into crypttab, dracut, grub, and initramfs subtasks Sandwich 2026-03-12 09:18:17 +01:00
41691fcf0a feat(bootstrap): add rescue block with VM cleanup on failure Sandwich 2026-03-12 07:43:51 +01:00
601f8a1ef9 feat(environment): VMware network config, DNS resolvers, and SSH switchover Sandwich 2026-03-12 07:43:46 +01:00
49d362c860 fix(global_defaults): populate flat network fields from interfaces in pre-computed path Sandwich 2026-03-12 07:43:39 +01:00
f9656cfbf5 feat(vmware): add VMware hypervisor support (node field, connection vars, validation) Sandwich 2026-03-12 07:43:34 +01:00
c99daa3dbc fix(bootstrap): exclude tldr from Ubuntu rolling extra packages Sandwich 2026-02-22 20:40:46 +01:00
d35976635c fix(global_defaults): use archive.ubuntu.com instead of mirror redirector Sandwich 2026-02-22 16:26:35 +01:00
b13f89a250 fix(global_defaults): apply mirror default in pre-computed system_cfg path Sandwich 2026-02-22 14:20:12 +01:00
b3b634f915 feat(configuration): add Debian/Ubuntu repository and apt configuration Sandwich 2026-02-22 10:47:47 +01:00
b8dd400aea feat(bootstrap): use configurable mirror and write proper sources.list Sandwich 2026-02-22 10:47:43 +01:00
f38e0a628f feat(global_defaults): add system.mirror to schema and normalization Sandwich 2026-02-22 10:47:40 +01:00
3242d5a895 chore(bootstrap): update ubuntu non-lts codename to questing (25.10) Sandwich 2026-02-22 03:08:54 +01:00
7e812dd74c fix(global_defaults): add missing ssh.enabled validation assertion Sandwich 2026-02-22 03:08:31 +01:00
785eaab9a7 fix(global_defaults): correct fedora version upper bound to 43 Sandwich 2026-02-22 03:08:23 +01:00
81ff2b2b87 feat(global_defaults): add root.shell to system schema and normalization Sandwich 2026-02-22 03:07:30 +01:00
2265e346b0 refactor(cleanup): remove duplicated libvirt path vars, reuse virtualization defaults Sandwich 2026-02-22 03:07:04 +01:00
d9ae4ee809 refactor(bootstrap,configuration): rename validation-only _normalize.yml files Sandwich 2026-02-22 03:06:34 +01:00
931d65df04 fix(partitioning): add | bool to all system_cfg.features.cis.enabled checks Sandwich 2026-02-22 03:06:13 +01:00
59670e876a fix(partitioning): add partition separator for NVMe/mmcblk device paths Sandwich 2026-02-22 02:39:36 +01:00
f7070343b9 refactor(configuration): centralize DNS list variables in network dispatch Sandwich 2026-02-22 02:39:32 +01:00
1cce81366c refactor(configuration): extract shared BLS update task to reduce duplication Sandwich 2026-02-22 02:39:28 +01:00
f6cb7bf78d fix(bootstrap): add missing --best flag to RHEL dnf commands Sandwich 2026-02-22 02:39:23 +01:00
2c80c01b1a refactor(global_defaults): consolidate hypervisor auth into shared credential dicts Sandwich 2026-02-22 02:35:04 +01:00
1b58a20c45 refactor(bootstrap,configuration,environment): add defaults/main.yml and extract hardcoded values Sandwich 2026-02-22 02:32:36 +01:00
6b1686e652 refactor(bootstrap,configuration): add per-role _normalize.yml for platform resolution Sandwich 2026-02-22 02:27:46 +01:00
a460584c5d refactor(configuration): add platform_config dict and replace is_rhel/is_debian with os_family lookups Sandwich 2026-02-22 02:26:54 +01:00
9c0f00f1ec feat(global_defaults): add os_family_map and os_family fact for platform config lookups Sandwich 2026-02-22 02:23:05 +01:00
6ebceb8ee2 fix(virtualization): add vTPM2 result validation before VMware power-on Sandwich 2026-02-22 02:22:37 +01:00

1 2 3 4 5 ...

Commit Graph Select branches Hide Pull Requests master Mono Color

Commit Graph

Select branches

Hide Pull Requests

master