sandwich/Ansible-Bootstrap
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Commit Graph

  • 13faf33296 fix(bootstrap): exclude tldr from Ubuntu rolling extra packages master Sandwich 2026-02-22 20:40:46 +01:00
  • de451be77b fix(global_defaults): use archive.ubuntu.com instead of mirror redirector Sandwich 2026-02-22 16:26:35 +01:00
  • af9f264cd3 fix(global_defaults): apply mirror default in pre-computed system_cfg path Sandwich 2026-02-22 14:20:12 +01:00
  • 750a085e19 feat(configuration): add Debian/Ubuntu repository and apt configuration Sandwich 2026-02-22 10:47:47 +01:00
  • f2eb9f2c8e feat(bootstrap): use configurable mirror and write proper sources.list Sandwich 2026-02-22 10:47:43 +01:00
  • 79988619c6 feat(global_defaults): add system.mirror to schema and normalization Sandwich 2026-02-22 10:47:40 +01:00
  • fb69c96e4a chore(bootstrap): update ubuntu non-lts codename to questing (25.10) Sandwich 2026-02-22 03:08:54 +01:00
  • d586c087f8 fix(global_defaults): add missing ssh.enabled validation assertion Sandwich 2026-02-22 03:08:31 +01:00
  • 9dd71b2559 fix(global_defaults): correct fedora version upper bound to 43 Sandwich 2026-02-22 03:08:23 +01:00
  • 35f1702447 feat(global_defaults): add root.shell to system schema and normalization Sandwich 2026-02-22 03:07:30 +01:00
  • 8b18fbdb4c refactor(cleanup): remove duplicated libvirt path vars, reuse virtualization defaults Sandwich 2026-02-22 03:07:04 +01:00
  • 909a0a6021 refactor(bootstrap,configuration): rename validation-only _normalize.yml files Sandwich 2026-02-22 03:06:34 +01:00
  • 2f3fce42b5 fix(partitioning): add | bool to all system_cfg.features.cis.enabled checks Sandwich 2026-02-22 03:06:13 +01:00
  • b72816e985 fix(partitioning): add partition separator for NVMe/mmcblk device paths Sandwich 2026-02-22 02:39:36 +01:00
  • ac0b5caf83 refactor(configuration): centralize DNS list variables in network dispatch Sandwich 2026-02-22 02:39:32 +01:00
  • 3ddc3c72ed refactor(configuration): extract shared BLS update task to reduce duplication Sandwich 2026-02-22 02:39:28 +01:00
  • f1af7ccbca fix(bootstrap): add missing --best flag to RHEL dnf commands Sandwich 2026-02-22 02:39:23 +01:00
  • 51ca969ff4 refactor(global_defaults): consolidate hypervisor auth into shared credential dicts Sandwich 2026-02-22 02:35:04 +01:00
  • 1221249546 refactor(bootstrap,configuration,environment): add defaults/main.yml and extract hardcoded values Sandwich 2026-02-22 02:32:36 +01:00
  • 87fd69b825 refactor(bootstrap,configuration): add per-role _normalize.yml for platform resolution Sandwich 2026-02-22 02:27:46 +01:00
  • 3deb3ea751 refactor(configuration): add platform_config dict and replace is_rhel/is_debian with os_family lookups Sandwich 2026-02-22 02:26:54 +01:00
  • cc30637f09 feat(global_defaults): add os_family_map and os_family fact for platform config lookups Sandwich 2026-02-22 02:23:05 +01:00
  • 23721aac96 fix(virtualization): add vTPM2 result validation before VMware power-on Sandwich 2026-02-22 02:22:37 +01:00
  • 5a9b346d72 feat(global_defaults): add semantic validations for IP, hostname, LUKS method, and interface prefix Sandwich 2026-02-22 02:22:05 +01:00
  • 75267e5140 refactor(global_defaults): extract physical_default_os to configurable default Sandwich 2026-02-22 02:21:34 +01:00
  • f0fb68992d fix(global_defaults): normalize system.type 'vm' to 'virtual' for main project compatibility Sandwich 2026-02-22 02:21:22 +01:00
  • 0e3edb41f7 docs(bootstrap): add section comments, role boundary docs, and pipeline overview Sandwich 2026-02-22 01:59:12 +01:00
  • 2bf0cb901e refactor(global_defaults): data-driven hypervisor validation and shared constants Sandwich 2026-02-22 01:59:09 +01:00
  • 1216c79619 refactor(extras): convert custom.sh from template to static copy Sandwich 2026-02-22 01:59:04 +01:00
  • 4efd64664d fix(cleanup,config): xen tmp cleanup, tpm2 fallback warning, add code comments Sandwich 2026-02-22 01:59:01 +01:00
  • dc5aa5077e fix(partitioning,network): swapon idempotency, DNS search domains, tune2fs changed_when Sandwich 2026-02-22 01:58:56 +01:00
  • c65934c290 fix(encryption): add no_log to LUKS configuration block Sandwich 2026-02-22 01:58:52 +01:00
  • 5b8438ac3b fix(network): bind NM connections to detected interface names for multi-NIC Sandwich 2026-02-21 16:51:15 +01:00
  • 45df803131 fix(bootstrap): make dhcp-client conditional for EL < 10 (removed in EL 10) Sandwich 2026-02-21 13:43:41 +01:00
  • 30f74fa4bd fix(bootstrap): remove --asexplicit from pacstrap to preserve dependency metadata Sandwich 2026-02-21 13:26:59 +01:00
  • 19372db27e fix(bootstrap): add kernel package to rocky and almalinux extra packages Sandwich 2026-02-21 12:06:09 +01:00
  • d55fc5799d fix(bootstrap): detect kernel package name for dnf family reinstall step Sandwich 2026-02-21 11:46:57 +01:00
  • 98231be0bd fix(bootstrap): ensure chroot DNS resolution before installing extra packages Sandwich 2026-02-21 11:30:28 +01:00
  • c46a4a5a0a fix(environment): align repo IDs in rocky and almalinux templates with bootstrap config Sandwich 2026-02-21 11:18:34 +01:00
  • b84688f1d6 fix(configuration): omit interface-name when not explicitly provided to avoid predictable naming mismatch Sandwich 2026-02-21 07:56:21 +01:00
  • b1d2294d63 refactor(configuration): rename _uid to configuration_uid for role prefix convention Sandwich 2026-02-21 05:14:33 +01:00
  • ac339b54c4 fix(configuration): handle boolean sudo values in sudoers deployment Sandwich 2026-02-21 05:14:29 +01:00
  • cb46a6989f fix(configuration): use full path for chpasswd in chroot Sandwich 2026-02-21 05:03:36 +01:00
  • 73ea7a177b fix(global_defaults): enrich pre-computed system_cfg with bootstrap defaults Sandwich 2026-02-21 04:15:58 +01:00
  • 0f8faf0a22 chore(lint): suppress var-naming for user-facing API dicts Sandwich 2026-02-21 02:58:10 +01:00
  • b520126253 fix(configuration): remove unnecessary changed_when on set_fact tasks Sandwich 2026-02-21 02:56:58 +01:00
  • a4ca4c4ff4 refactor(cis): align normalization with main project activation gate pattern Sandwich 2026-02-21 02:56:39 +01:00
  • d9efb54bec fix(global_defaults): remove dead /swap and make pacman cache arch-only in reserved mounts Sandwich 2026-02-21 02:56:20 +01:00
  • e7a0cc4f62 fix(global_defaults): set filesystem default to ext4 instead of empty string Sandwich 2026-02-21 02:56:08 +01:00
  • a76f317f8f refactor(bootstrap): restructure package lists to self-contained per-OS dicts with base/extra/conditional Sandwich 2026-02-21 02:39:06 +01:00
  • e5bd152fb3 refactor(environment): split main.yml into focused sub-task files Sandwich 2026-02-21 02:39:05 +01:00
  • 6d1c3577df refactor(global_defaults): add idempotency guards to normalization tasks Sandwich 2026-02-21 02:39:03 +01:00
  • 86f0284acb fix(global_defaults): default interface name to eth0 instead of empty string Sandwich 2026-02-21 02:38:59 +01:00
  • 221bb4d517 docs(cis): add comment explaining squashfs/snap Ubuntu exclusion Sandwich 2026-02-21 02:38:58 +01:00
  • e81ba76446 chore(bootstrap): pin collection versions in requirements.yml Sandwich 2026-02-21 02:38:57 +01:00
  • 54bbb9d15c fix(bootstrap): move Jinja to end of task name and rename registers to bootstrap_dnf_* Sandwich 2026-02-21 02:38:27 +01:00
  • f94b220020 docs: update README with cis dict API, execution pipeline, and cleanup defaults Sandwich 2026-02-21 01:30:36 +01:00
  • 3fd470d63e fix(validation): align btrfs disk size check with new 2GB swap minimum Sandwich 2026-02-21 01:28:32 +01:00
  • a3cd507b2a refactor(bootstrap): unify rocky, almalinux, and fedora into shared _dnf_family.yml Sandwich 2026-02-21 01:27:33 +01:00
  • f74ec325ea refactor(cis): extract hardcoded values to cis_defaults and add _normalize.yml Sandwich 2026-02-21 01:26:31 +01:00
  • bef15af69f refactor(cleanup): prioritize source-match over target-match in libvirt media removal Sandwich 2026-02-21 01:22:44 +01:00
  • 7970d933e8 docs(cis): explain Fedora exclusion from crypto-policy configuration Sandwich 2026-02-21 01:22:41 +01:00
  • a123a32feb fix(bootstrap): replace brittle sed with ansible.builtin.replace for ubuntu universe repo Sandwich 2026-02-21 01:22:37 +01:00
  • 54c704de4e refactor(virtualization): simplify cloud-user-data sudo to unconditional NOPASSWD Sandwich 2026-02-21 01:22:34 +01:00
  • 9308d09d7b fix(bootstrap): remove duplicate lrzsz and gate dbus-daemon on version in almalinux Sandwich 2026-02-21 01:20:34 +01:00
  • f367844239 fix(virtualization): fix cloud-user-data sudo logic to respect sudo: false Sandwich 2026-02-21 01:20:31 +01:00
  • 53e4499d2b fix(partitioning): lower swap minimum from 4GB to 2GB for small VMs Sandwich 2026-02-21 01:19:23 +01:00
  • eb63a4fa83 fix(partitioning): add wipefs before mkfs on extra disk partitions Sandwich 2026-02-21 01:19:19 +01:00
  • 9e3688ae2b fix(cis): strengthen kernel module blacklist and sysctl hardening Sandwich 2026-02-21 01:18:52 +01:00
  • dea01cc8a0 refactor(partitioning): split monolithic main.yml into focused task files Sandwich 2026-02-21 00:39:03 +01:00
  • 92c9702e1d fix(validation): add CIDR prefix range check and Ubuntu version validation Sandwich 2026-02-21 00:38:57 +01:00
  • c837a52a24 refactor(cis): remove redundant AllowUsers/AllowGroups/DenyUsers/DenyGroups from sshd Sandwich 2026-02-21 00:38:52 +01:00
  • fbd57e0603 fix(cis): skip squashfs blacklist on Ubuntu to preserve snap functionality Sandwich 2026-02-21 00:38:47 +01:00
  • 40a9ee9882 fix(partitioning): correct changed_when on btrfs quota and qgroup commands Sandwich 2026-02-21 00:38:43 +01:00
  • 3448e95e5c fix(cis): add regexp to all lineinfile entries in security_lines.yml for idempotency Sandwich 2026-02-21 00:38:36 +01:00
  • 074831833f fix: add no_log to credential-handling pre_tasks and post_tasks in main.yml Sandwich 2026-02-21 00:38:32 +01:00
  • d1a5217e88 fix(virtualization): add no_log and secure temp file handling to libvirt cloud-init Sandwich 2026-02-21 00:38:28 +01:00
  • 07492b5b57 refactor(cleanup): add configurable verify_boot, boot_timeout, and remove_on_failure defaults Sandwich 2026-02-20 23:02:24 +01:00
  • 14913bcd3d refactor: move playbook-root templates into their respective roles Sandwich 2026-02-20 23:01:38 +01:00
  • 041650c287 refactor: add loop_control labels to dict-based loops across all roles Sandwich 2026-02-20 23:00:53 +01:00
  • a63ffbc731 refactor(partitioning): move btrfs home quota to configurable default Sandwich 2026-02-20 22:55:37 +01:00
  • 9d2f1cc5bd fix(environment): detect RHEL ISO device dynamically instead of hardcoded /dev/sr paths Sandwich 2026-02-20 22:54:42 +01:00
  • f72f9feb9a refactor(global_defaults): split system.yml into composable normalization stages Sandwich 2026-02-20 22:54:05 +01:00
  • 417737f904 refactor(global_defaults): extract OS family lists to single source of truth Sandwich 2026-02-20 22:52:55 +01:00
  • a06c2ebdcf fix(partitioning): add failed_when to all blkid commands to catch empty UUIDs Sandwich 2026-02-20 22:52:18 +01:00
  • e174ecda42 fix(partitioning): add default fallbacks for is_rhel, os, os_version in defaults Sandwich 2026-02-20 22:51:37 +01:00
  • 5246a905bb fix(virtualization): use hostname variable instead of hardcoded archiso in cloud-user-data Sandwich 2026-02-20 22:51:32 +01:00
  • d00d84b69c fix(virtualization): avoid no-handler lint finding in xen VM created tracking Sandwich 2026-02-20 22:29:03 +01:00
  • 4dafa8c596 fix(partitioning): fix line length violation in home size calculation Sandwich 2026-02-20 22:28:58 +01:00
  • 53584b8730 fix(configuration): add pipefail to root password shell pipe Sandwich 2026-02-20 22:28:54 +01:00
  • ce40468b77 fix(bootstrap): use release map for ubuntu version detection Sandwich 2026-02-20 22:27:46 +01:00
  • 4b4fab3c33 chore: add .yamllint matching main project conventions Sandwich 2026-02-20 22:27:31 +01:00
  • db2fab5e7d fix(configuration): use chpasswd for root password and separate shell setting Sandwich 2026-02-20 22:27:17 +01:00
  • 42be0a5919 fix(configuration): add explicit LUKS auto-decrypt fallback state tracking and logging Sandwich 2026-02-20 22:26:47 +01:00
  • 17400fa6ff refactor(partitioning): externalize hardcoded LVM and disk sizing constants to defaults Sandwich 2026-02-20 22:26:23 +01:00
  • deb14d2c94 fix(virtualization): add xen VM existence check and improve changed_when Sandwich 2026-02-20 22:25:10 +01:00
  • 65c5b1029b fix(cis): add pipefail to sshd version detection and define binary defaults Sandwich 2026-02-20 22:24:14 +01:00
  • a1fbb7c21d feat(cleanup): gate RHEL ISO disk and fstab handling on rhel_repo.source Sandwich 2026-02-20 21:51:20 +01:00
  • d076ac8fef feat(global_defaults): add system.features.rhel_repo option (iso|satellite|none) Sandwich 2026-02-20 21:51:16 +01:00
  • c82e4afc4d fix(encryption): add warning before silent TPM2-to-keyfile fallback Sandwich 2026-02-20 21:51:12 +01:00