tasks/setupacdc.yml

---
# - name: Install pexpect on Ansible controller
#   hosts: localhost
#   gather_facts: false

#   tasks:

#     - name: Install pexpect via pip
#       ansible.builtin.pip:
#         name: pexpect
#         executable: pip3

#     - name: Install py3-pexpect
#       ansible.builtin.apk:
#         name: py3-pexpect
#         state: present

    # - name: Ensure pexpect is installed via apk
    #   ansible.builtin.apk:
    #     name: py3-pexpect
    #     state: present

- name: Create and provision LXC container on Proxmox
  hosts: node0
  gather_facts: no
  become: yes
  become_user: root
    
  vars:
    node_ip: "{{ hostvars['node0']['ansible_host'] }}"
    mac_address: '8E:90:31:DE:31:36'

    container_id: 200
    # container_template: '/var/lib/vz/template/cache/ubuntu-25.04-standard_25.04-1.1_amd64.tar.zst'
    container_template: '/var/lib/vz/template/cache/debian-13-standard_13.1-1_amd64.tar.zst'
    # container_template: '/var/lib/vz/template/cache/debian-12-standard_12.12-1_amd64.tar.zst'
    # container_ostype: ubuntu
    container_ostype: debian
    container_hostname: '{{ addc_hostname }}'
    container_password: '{{ addc_admin_password }}'
    container_storage: local-lvm
    container_rootfs_size: 8G
    container_memory: 1024
    container_swap: 256
    container_cores: 2
    container_net: name=eth0,bridge=vmbr0,ip={{ addc_ansible_host }}/24,gw={{ location_gateway }},hwaddr={{ mac_address }}
    container_features: 'keyctl=1,nesting=1,mount=cifs'
    container_description: default lxc
    container_onboot: 1
    container_protection: 0
    container_unprivileged: 0
    container_pubkey: '{{ ssh_public_keys[0] }}'
    container_tags: 
      - ansible_managed
      - test

  tasks:

    - name: Combine SSH public keys into one file
      ansible.builtin.copy:
        dest: '{{ ssh_keys_file }}'
        content: |
          {% for key in ssh_public_keys %}
          {{ key }}
          {% endfor %}
        mode: '0644'

    - name: debug
      # Comment
      ansible.builtin.debug:
        msg: 'Hello world! {{ container_password }}'
        verbosity: 0
    

    - name: Create LXC container {{ container_hostname }} with id {{ container_id }} using pct command on shell
      ansible.builtin.shell: |
        set -e
        pct create {{ container_id }} {{ container_template }} \
          -ostype {{ container_ostype }} \
          -hostname {{ container_hostname }} \
          -password '{{ container_password }}' \
          -ssh-public-keys '{{ ssh_keys_file }}' \
          -cores {{ container_cores }} \
          -memory {{ container_memory }} \
          -swap {{ container_swap }} \
          -net0 '{{container_net}}' \
          -storage {{ container_storage }} \
          -description '{{ container_description }}' \
          -onboot {{ container_onboot }} \
          -protection {{ container_protection }} \
          -unprivileged {{ container_unprivileged }} \
          -tags '{{ container_tags | join(',') }}' \
          -features '{{ container_features }}'
      args:
        creates: '/etc/pve/lxc/{{ container_id }}.conf'
      no_log: false
# -password {{ container_password }} \
# -rootfs {{ container_storage }}:{{ container_id }}/vm-{{ container_id }}-disk-0.raw,size=7G \
   
# -timezone: {{ localization_timezone }} \

    - name: Check if LXC container {{ container_hostname }} is running
      ansible.builtin.command:
        cmd: pct status {{ container_id }}
      register: pct_status
      changed_when: false

    - name: Start the LXC container {{ container_hostname }} if stopped
      ansible.builtin.command:
        cmd: pct start {{ container_id }}
      when: "'status: stopped' in pct_status.stdout"
      register: start_result
      changed_when: "'status: stopped' in pct_status.stdout"

    - name: Wait until container has an IP address
      ansible.builtin.shell: "pct exec {{ container_id }} -- hostname -I | awk '{print $1}'"
      register: lxc_ip
      until: lxc_ip.stdout != ''
      retries: 10
      delay: 5
      changed_when: false
      failed_when: lxc_ip.stdout == ''

    - name: Wait for SSH to become available
      ansible.builtin.wait_for:
        host: '{{ lxc_ip.stdout }}'
        port: 22
        delay: 5
        timeout: 60
      retries: 10
      delay: 5
      changed_when: false

# --- DC‑1 Provisioning Play --------------------------------------------

- name: Provision dc1 LXC
  hosts: dc1
  gather_facts: true
  become: true

  # vars:
  #   addc_admin_password: '{{ addc_adminpass }}'

  tasks:

  # - name: Ensure SSH authorized keys are present
  #   ansible.posix.authorized_key:
  #     user: root
  #     key: '{{ item }}'
  #     state: present
  #   loop: '{{ ssh_public_keys }}'

  - name: Update apt cache
    ansible.builtin.apt:
      update_cache: true

  - name: Install all available updates
    ansible.builtin.apt:
      upgrade: dist
      autoremove: true

  - name: Reboot if a new kernel was installed
    ansible.builtin.reboot:
      msg: "Rebooting after full upgrade"
      connect_timeout: 5
      reboot_timeout: 600
    when: ansible_facts.packages is not defined or
          ansible_facts.packages['linux-image-generic'] is defined

  # - name: Ensure update-manager-core is installed
  #   ansible.builtin.apt:
  #     name: update-manager-core
  #     state: present

  # - name: Perform Ubuntu release upgrade non-interactively
  #   ansible.builtin.command:
  #     cmd: do-release-upgrade -f DistUpgradeViewNonInteractive
  #   register: upgrade_output
  #   changed_when: "'No new release found' not in upgrade_output.stdout"

  # - name: Reboot if kernel updated
  #   ansible.builtin.reboot:
  #     msg: "Rebooting after Ubuntu upgrade"
  #     connect_timeout: 5
  #     reboot_timeout: 600
  #   when: upgrade_output is changed

  - name: Install useful packages
    ansible.builtin.package:
      name:
        - nano
        - tzdata
        # - openssh-server
      state: present

  - name: Update all packages, autoclean, and autoremove
    ansible.builtin.apt:
      name: '*'
      state: latest
      autoclean: yes
      autoremove: yes
      purge: true

  - name: Set timezone to {{ localization_timezone }}
    # community.general.timezone:
    timezone:
      name: '{{ localization_timezone }}'
    notify: Restart sshd
    tags: [timezone]


  - name: Deploy the Samba AD DC role
    ansible.builtin.include_role:
      name: ansible_samba_ad_dc
      
# --- Global Handlers ----------------------------------------------

  handlers:
    - name: Restart sshd
      ansible.builtin.service:
        name: ssh
        state: restarted
      when: localization_timezone | bool
-												chore 📦: Update setupacdc.yml with new LXC container configuration

Updated the setupacdc.yml file to include a new LXC container configuration, including host and network settings. This change allows for more flexibility in provisioning containers on Proxmox.

											
										
										
											2025-11-02 08:07:57 +01:00
+								---
-												chore 📦: Update setupacdc.yml to use pip and apk for package installation

Updated the setupacdc.yml file to utilize pip and apk for installing dependencies, ensuring consistency in package management across different environments.

											
										
										
											2025-11-07 05:45:04 +01:00
+								# - name: Install pexpect on Ansible controller
 								#   hosts: localhost
 								#   gather_facts: false
-												chore 📦: Update setupacdc.yml to include pexpect installation for Ansible controller

Added a new task to install pexpect on the Ansible controller, ensuring it's installed via apk. This change is part of the setup process and will enable the use of pexpect in future tasks.

											
										
										
											2025-11-06 21:19:31 +01:00
-												chore 📦: Update setupacdc.yml to use pip and apk for package installation

Updated the setupacdc.yml file to utilize pip and apk for installing dependencies, ensuring consistency in package management across different environments.

											
										
										
											2025-11-07 05:45:04 +01:00
+								#   tasks:
 								#     - name: Install pexpect via pip
 								#       ansible.builtin.pip:
 								#         name: pexpect
 								#         executable: pip3
 								#     - name: Install py3-pexpect
 								#       ansible.builtin.apk:
 								#         name: py3-pexpect
 								#         state: present
-												chore 📦: Update setupacdc.yml to include pexpect installation for Ansible controller

Added a new task to install pexpect on the Ansible controller, ensuring it's installed via apk. This change is part of the setup process and will enable the use of pexpect in future tasks.

											
										
										
											2025-11-06 21:19:31 +01:00
-												chore 📦: Update setupacdc.yml to install pexpect via pip instead of apk

Switched from using apk to pip for installing pexpect, simplifying the dependency management process.

											
										
										
											2025-11-06 21:22:13 +01:00
+								    # - name: Ensure pexpect is installed via apk
 								    #   ansible.builtin.apk:
 								    #     name: py3-pexpect
 								    #     state: present
-												chore 📦: Update setupacdc.yml to include pexpect installation for Ansible controller

Added a new task to install pexpect on the Ansible controller, ensuring it's installed via apk. This change is part of the setup process and will enable the use of pexpect in future tasks.

											
										
										
											2025-11-06 21:19:31 +01:00
-												chore 📦: Update setupacdc.yml with new LXC container configuration

Updated the setupacdc.yml file to include a new LXC container configuration, including host and network settings. This change allows for more flexibility in provisioning containers on Proxmox.

											
										
										
											2025-11-02 08:07:57 +01:00
+								- name: Create and provision LXC container on Proxmox
 								  hosts: node0
-												feat ✨: Add new setup for Proxmox LXC container

Added a new setup for creating a Proxmox LXC container using pct command, including hostname, MAC address, IP address and network settings. This setup is designed to work with the existing Ansible playbook.

											
										
										
											2025-11-01 18:47:03 +01:00
+								  gather_facts: no
-												chore 📦: Update setupacdc.yml with new LXC container configuration

Updated the setupacdc.yml file to include a new LXC container configuration, including host and network settings. This change allows for more flexibility in provisioning containers on Proxmox.

											
										
										
											2025-11-02 08:07:57 +01:00
+								  become: yes
 								  become_user: root
-												feat ✨: Add new setup for Proxmox LXC container

Added a new setup for creating a Proxmox LXC container using pct command, including hostname, MAC address, IP address and network settings. This setup is designed to work with the existing Ansible playbook.

											
										
										
											2025-11-01 18:47:03 +01:00
+								  vars:
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								    node_ip: "{{ hostvars['node0']['ansible_host'] }}"
 								    mac_address: '8E:90:31:DE:31:36'
-												chore 📦: Update setupacdc.yml with new LXC container configuration

Updated the setupacdc.yml file to include a new LXC container configuration, including host and network settings. This change allows for more flexibility in provisioning containers on Proxmox.

											
										
										
											2025-11-02 08:07:57 +01:00
 								    container_id: 200
-												style 💎: Update container template and ostype in setupacdc.yml

Updated the container template to use Debian 13 standard and updated the container ostype from Ubuntu to Debian. This change reflects a shift in the distribution used for the container, allowing for more flexibility in the build process.

											
										
										
											2025-11-05 20:37:01 +01:00
+								    # container_template: '/var/lib/vz/template/cache/ubuntu-25.04-standard_25.04-1.1_amd64.tar.zst'
 								    container_template: '/var/lib/vz/template/cache/debian-13-standard_13.1-1_amd64.tar.zst'
-												style 💎: Update container template version

Updated the container template version in setupacdc.yml to match the latest Debian standard, removing unnecessary comments and formatting.

											
										
										
											2025-11-04 21:11:31 +01:00
+								    # container_template: '/var/lib/vz/template/cache/debian-12-standard_12.12-1_amd64.tar.zst'
-												style 💎: Update container template and ostype in setupacdc.yml

Updated the container template to use Debian 13 standard and updated the container ostype from Ubuntu to Debian. This change reflects a shift in the distribution used for the container, allowing for more flexibility in the build process.

											
										
										
											2025-11-05 20:37:01 +01:00
+								    # container_ostype: ubuntu
 								    container_ostype: debian
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								    container_hostname: '{{ addc_hostname }}'
 								    container_password: '{{ addc_admin_password }}'
-												chore 📦: Update setupacdc.yml with new LXC container configuration

Updated the setupacdc.yml file to include a new LXC container configuration, including host and network settings. This change allows for more flexibility in provisioning containers on Proxmox.

											
										
										
											2025-11-02 08:07:57 +01:00
+								    container_storage: local-lvm
 								    container_rootfs_size: 8G
 								    container_memory: 1024
-												chore 📦: Update LXC container setup in setupacdc.yml

Updated the LXC container setup to include additional configuration options such as swap size and description, while maintaining compatibility with existing configurations.

											
										
										
											2025-11-02 08:20:59 +01:00
+								    container_swap: 256
-												chore 📦: Update setupacdc.yml with new LXC container configuration

Updated the setupacdc.yml file to include a new LXC container configuration, including host and network settings. This change allows for more flexibility in provisioning containers on Proxmox.

											
										
										
											2025-11-02 08:07:57 +01:00
+								    container_cores: 2
-												chore 📦: Update setupacdc.yml with new configuration options

Updated the setupacdc.yml file to include additional configuration options for LXC containers, including password and network settings.

											
										
										
											2025-11-02 08:36:08 +01:00
+								    container_net: name=eth0,bridge=vmbr0,ip={{ addc_ansible_host }}/24,gw={{ location_gateway }},hwaddr={{ mac_address }}
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								    container_features: 'keyctl=1,nesting=1,mount=cifs'
-												style 💎: Update setupacdc.yml formatting and remove unnecessary quotes

Updated the setupacdc.yml file to conform to standard formatting, removing unnecessary quotes around the container_description variable. This change improves readability and consistency in the configuration file.

											
										
										
											2025-11-02 08:27:47 +01:00
+								    container_description: default lxc
-												chore 📦: Update setupacdc.yml with new configuration options

Updated the setupacdc.yml file to include additional configuration options for LXC containers, including password and network settings.

											
										
										
											2025-11-02 08:36:08 +01:00
+								    container_onboot: 1
 								    container_protection: 0
-												chore 📦: Update setupacdc.yml to enable privileged containers by default

Changed the `container_unprivileged` setting from `1` to `0`, allowing for more flexibility in container configuration. This change will impact how containers are set up and managed in the project.

											
										
										
											2025-11-05 20:33:21 +01:00
+								    container_unprivileged: 0
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								    container_pubkey: '{{ ssh_public_keys[0] }}'
-												style 💎: Update container tags in setupacdc.yml

Updated the container tags to exclude 'test' and added a comment explaining the change, allowing for future flexibility in managing container tags.

											
										
										
											2025-11-02 08:40:18 +01:00
+								    container_tags:
 								      - ansible_managed
 								      - test
-												chore 📦: Update LXC container setup in setupacdc.yml

Updated the LXC container setup to include additional configuration options such as swap size and description, while maintaining compatibility with existing configurations.

											
										
										
											2025-11-02 08:20:59 +01:00
-												feat ✨: Add new setup for Proxmox LXC container

Added a new setup for creating a Proxmox LXC container using pct command, including hostname, MAC address, IP address and network settings. This setup is designed to work with the existing Ansible playbook.

											
										
										
											2025-11-01 18:47:03 +01:00
+								  tasks:
-												chore 📦: Update setupacdc.yml with new LXC container configuration

Updated the setupacdc.yml file to include a new LXC container configuration, including host and network settings. This change allows for more flexibility in provisioning containers on Proxmox.

											
										
										
											2025-11-02 08:07:57 +01:00
-												chore 📦: Update setupacdc.yml to combine SSH public keys into one file

Updated the setupacdc.yml configuration to combine SSH public keys into a single file, improving security and organization. This change simplifies the process of managing SSH keys for LXC containers.

											
										
										
											2025-11-02 10:21:23 +01:00
+								    - name: Combine SSH public keys into one file
 								      ansible.builtin.copy:
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								        dest: '{{ ssh_keys_file }}'
-												chore 📦: Update setupacdc.yml to combine SSH public keys into one file

Updated the setupacdc.yml configuration to combine SSH public keys into a single file, improving security and organization. This change simplifies the process of managing SSH keys for LXC containers.

											
										
										
											2025-11-02 10:21:23 +01:00
+								        content: |
 								          {% for key in ssh_public_keys %}
 								          {{ key }}
 								          {% endfor %}
 								        mode: '0644'
-												chore 📦: Update setupacdc.yml to include debug logging

Added a new debug log statement to the setupacdc.yml file, allowing for more detailed output during container creation. This change enables users to see the value of the container_password variable in the logs. The update also includes minor formatting adjustments to improve readability.

											
										
										
											2025-11-04 19:06:26 +01:00
+								    - name: debug
 								      # Comment
 								      ansible.builtin.debug:
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								        msg: 'Hello world! {{ container_password }}'
-												chore 📦: Update setupacdc.yml to include debug logging

Added a new debug log statement to the setupacdc.yml file, allowing for more detailed output during container creation. This change enables users to see the value of the container_password variable in the logs. The update also includes minor formatting adjustments to improve readability.

											
										
										
											2025-11-04 19:06:26 +01:00
+								        verbosity: 0
-												chore 📦: Update setupacdc.yml to include hostname and id in LXC container creation

Updated the pct command to include hostname and id for more accurate container creation. This change ensures consistency in container naming across different environments.

											
										
										
											2025-11-02 09:06:44 +01:00
+								    - name: Create LXC container {{ container_hostname }} with id {{ container_id }} using pct command on shell
-												chore 📦: Update setupacdc.yml to use Ansible shell command

Updated the pct create command to use the new ansible.builtin.shell module, allowing for more flexibility and consistency in container creation.

											
										
										
											2025-11-02 07:35:28 +01:00
+								      ansible.builtin.shell: |
-												style 💎: Update LXC container setup command

Updated the pct create command to include ssh-public-keys and features, ensuring consistency with other setup commands.

											
										
										
											2025-11-04 19:12:16 +01:00
+								        set -e
-												chore 📦: Update setupacdc.yml with new LXC container configuration

Updated the setupacdc.yml file to include a new LXC container configuration, including host and network settings. This change allows for more flexibility in provisioning containers on Proxmox.

											
										
										
											2025-11-02 08:07:57 +01:00
+								        pct create {{ container_id }} {{ container_template }} \
-												chore 📦: Update LXC container setup in setupacdc.yml

Updated the LXC container setup to include additional configuration options such as swap size and description, while maintaining compatibility with existing configurations.

											
										
										
											2025-11-02 08:20:59 +01:00
+								          -ostype {{ container_ostype }} \
-												chore 📦: Update setupacdc.yml with new LXC container configuration

Updated the setupacdc.yml file to include a new LXC container configuration, including host and network settings. This change allows for more flexibility in provisioning containers on Proxmox.

											
										
										
											2025-11-02 08:07:57 +01:00
+								          -hostname {{ container_hostname }} \
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								          -password '{{ container_password }}' \
 								          -ssh-public-keys '{{ ssh_keys_file }}' \
-												chore 📦: Update setupacdc.yml with new LXC container configuration

Updated the setupacdc.yml file to include a new LXC container configuration, including host and network settings. This change allows for more flexibility in provisioning containers on Proxmox.

											
										
										
											2025-11-02 08:07:57 +01:00
+								          -cores {{ container_cores }} \
 								          -memory {{ container_memory }} \
-												chore 📦: Update LXC container setup in setupacdc.yml

Updated the LXC container setup to include additional configuration options such as swap size and description, while maintaining compatibility with existing configurations.

											
										
										
											2025-11-02 08:20:59 +01:00
+								          -swap {{ container_swap }} \
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								          -net0 '{{container_net}}' \
-												chore 📦: Update setupacdc.yml with new LXC container configuration

Updated the setupacdc.yml file to include a new LXC container configuration, including host and network settings. This change allows for more flexibility in provisioning containers on Proxmox.

											
										
										
											2025-11-02 08:07:57 +01:00
+								          -storage {{ container_storage }} \
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								          -description '{{ container_description }}' \
-												chore 📦: Update setupacdc.yml with new configuration options

Updated the setupacdc.yml file to include additional configuration options for LXC containers, including password and network settings.

											
										
										
											2025-11-02 08:36:08 +01:00
+								          -onboot {{ container_onboot }} \
 								          -protection {{ container_protection }} \
 								          -unprivileged {{ container_unprivileged }} \
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								          -tags '{{ container_tags | join(',') }}' \
 								          -features '{{ container_features }}'
-												chore 📦: Update LXC container setup in setupacdc.yml

Updated the LXC container setup to include additional configuration options such as swap size and description, while maintaining compatibility with existing configurations.

											
										
										
											2025-11-02 08:20:59 +01:00
+								      args:
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								        creates: '/etc/pve/lxc/{{ container_id }}.conf'
-												chore 📦: Update setupacdc.yml to enable logging

Changed the `no_log` option from true to false in the setupacdc.yml file, allowing for log output during container creation. This change enables more detailed debugging and monitoring capabilities.

											
										
										
											2025-11-04 17:49:52 +01:00
+								      no_log: false
-												chore 📦: Update password encryption in setupacdc.yml

Changed the way passwords are encrypted in the setupacdc.yml file, now using a hardcoded value instead of environment variable. This change simplifies the configuration process but may impact security if not handled properly.

											
										
										
											2025-11-03 17:38:12 +01:00
+								# -password {{ container_password }} \
-												chore 📦: Update setupacdc.yml to include rootfs size

Updated the rootfs size in the setupacdc.yml file to match the new disk size, ensuring consistency with the latest container storage configuration.

											
										
										
											2025-11-02 12:26:02 +01:00
+								# -rootfs {{ container_storage }}:{{ container_id }}/vm-{{ container_id }}-disk-0.raw,size=7G \
-												chore 📦: Update setupacdc.yml with new LXC container configuration

Updated the setupacdc.yml file to include a new LXC container configuration, including host and network settings. This change allows for more flexibility in provisioning containers on Proxmox.

											
										
										
											2025-11-02 08:07:57 +01:00
+								# -timezone: {{ localization_timezone }} \
-												chore 📦: Update setupacdc.yml to enable container provisioning

Updated the setupacdc.yml configuration to enable container provisioning for the addc_hostname. This change allows for more flexible and dynamic deployment of containers within the LXC environment.

											
										
										
											2025-11-02 09:20:37 +01:00
-												chore 📦: Update LXC container management in setupacdc.yml

Updated the Ansible playbook to check if a LXC container is running before starting it, and added a conditional statement to start the container only when it's stopped. This change improves the reliability of the setup process.

											
										
										
											2025-11-02 12:36:17 +01:00
+								    - name: Check if LXC container {{ container_hostname }} is running
 								      ansible.builtin.command:
 								        cmd: pct status {{ container_id }}
 								      register: pct_status
 								      changed_when: false
 								    - name: Start the LXC container {{ container_hostname }} if stopped
-												chore 📦: Update setupacdc.yml to enable container provisioning

Updated the setupacdc.yml configuration to enable container provisioning for the addc_hostname. This change allows for more flexible and dynamic deployment of containers within the LXC environment.

											
										
										
											2025-11-02 09:20:37 +01:00
+								      ansible.builtin.command:
 								        cmd: pct start {{ container_id }}
-												chore 📦: Update LXC container management in setupacdc.yml

Updated the Ansible playbook to check if a LXC container is running before starting it, and added a conditional statement to start the container only when it's stopped. This change improves the reliability of the setup process.

											
										
										
											2025-11-02 12:36:17 +01:00
+								      when: "'status: stopped' in pct_status.stdout"
-												chore 📦: Update setupacdc.yml to enable container provisioning

Updated the setupacdc.yml configuration to enable container provisioning for the addc_hostname. This change allows for more flexible and dynamic deployment of containers within the LXC environment.

											
										
										
											2025-11-02 09:20:37 +01:00
+								      register: start_result
-												chore 📦: Update LXC container management in setupacdc.yml

Updated the Ansible playbook to check if a LXC container is running before starting it, and added a conditional statement to start the container only when it's stopped. This change improves the reliability of the setup process.

											
										
										
											2025-11-02 12:36:17 +01:00
+								      changed_when: "'status: stopped' in pct_status.stdout"
-												chore 📦: Update setupacdc.yml to enable container provisioning

Updated the setupacdc.yml configuration to enable container provisioning for the addc_hostname. This change allows for more flexible and dynamic deployment of containers within the LXC environment.

											
										
										
											2025-11-02 09:20:37 +01:00
-												chore 📦: Improve setup process for container creation

Added checks to ensure container has an IP address and SSH is available before proceeding with the setup. This improves the reliability of the setup process.

											
										
										
											2025-11-02 11:11:01 +01:00
+								    - name: Wait until container has an IP address
-												style 💎: Update command to shell instead of command

Switched from `command` to `shell` in the `pct exec` task for better readability and flexibility.

											
										
										
											2025-11-02 17:06:49 +01:00
+								      ansible.builtin.shell: "pct exec {{ container_id }} -- hostname -I | awk '{print $1}'"
-												chore 📦: Improve setup process for container creation

Added checks to ensure container has an IP address and SSH is available before proceeding with the setup. This improves the reliability of the setup process.

											
										
										
											2025-11-02 11:11:01 +01:00
+								      register: lxc_ip
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								      until: lxc_ip.stdout != ''
-												chore 📦: Improve setup process for container creation

Added checks to ensure container has an IP address and SSH is available before proceeding with the setup. This improves the reliability of the setup process.

											
										
										
											2025-11-02 11:11:01 +01:00
+								      retries: 10
 								      delay: 5
 								      changed_when: false
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								      failed_when: lxc_ip.stdout == ''
-												chore 📦: Improve setup process for container creation

Added checks to ensure container has an IP address and SSH is available before proceeding with the setup. This improves the reliability of the setup process.

											
										
										
											2025-11-02 11:11:01 +01:00
 								    - name: Wait for SSH to become available
 								      ansible.builtin.wait_for:
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								        host: '{{ lxc_ip.stdout }}'
-												chore 📦: Improve setup process for container creation

Added checks to ensure container has an IP address and SSH is available before proceeding with the setup. This improves the reliability of the setup process.

											
										
										
											2025-11-02 11:11:01 +01:00
+								        port: 22
 								        delay: 5
 								        timeout: 60
-												chore 📦: Update setupacdc.yml to improve container provisioning and cleanup processes

Updated the setupacdc.yml configuration to include additional checks for container IP address availability, improved package management, and enhanced timezone handling. These changes aim to streamline the provisioning process while maintaining a clean and efficient environment.

											
										
										
											2025-11-02 16:59:48 +01:00
+								      retries: 10
 								      delay: 5
 								      changed_when: false
 								# --- DC‑1 Provisioning Play --------------------------------------------
-												chore 📦: Update setupacdc.yml with new container configuration and timezone settings

Updated the setupacdc.yml file to include a new provision for dc1 LXC, added a task to set the timezone using community.general.timezone, and updated package installation. This change enables more flexible container configurations and timezone management.

											
										
										
											2025-11-02 11:04:30 +01:00
-												chore 📦: Update setupacdc.yml with new LXC provision and package management tasks

Updated the LXC provision task to include SSH authorized keys and updated package management to install useful packages like nano, tzdata, and openssh-server. This change improves the overall setup process for the DC1 LXC.

											
										
										
											2025-11-02 09:53:07 +01:00
+								- name: Provision dc1 LXC
-												chore 📦: Update setupacdc.yml to use correct hostname

Updated the hosts variable in the setupacdc.yml file to match the actual hostname 'dc1' instead of 'addc_hostname'. This change ensures that the provisioning task targets the correct host.

											
										
										
											2025-11-02 09:33:36 +01:00
+								  hosts: dc1
-												chore 📦: Update setupacdc.yml to enable facts gathering for dc1 LXC

Enabled facts gathering for the dc1 LXC provision task, ensuring accurate inventory data collection. This change improves the overall reliability of the setup process.

											
										
										
											2025-11-04 20:41:13 +01:00
+								  gather_facts: true
-												chore 📦: Update setupacdc.yml with new LXC provision and package management tasks

Updated the LXC provision task to include SSH authorized keys and updated package management to install useful packages like nano, tzdata, and openssh-server. This change improves the overall setup process for the DC1 LXC.

											
										
										
											2025-11-02 09:53:07 +01:00
+								  become: true
-												chore 📦: Update setupacdc.yml to remove unused variable

Removed the `addc_admin_password` variable from the setupacdc.yml file, as it was not being used. This change simplifies the configuration and reduces unnecessary complexity.

											
										
										
											2025-11-04 17:31:48 +01:00
+								  # vars:
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								  #   addc_admin_password: '{{ addc_adminpass }}'
-												chore 📦: Update setupacdc.yml with new variable for admin password

Added a new variable to the setupacdc.yml file to store the admin password, making it easier to manage and update in the future.

											
										
										
											2025-11-03 21:16:30 +01:00
-												chore 📦: Update setupacdc.yml with new LXC provision and package management tasks

Updated the LXC provision task to include SSH authorized keys and updated package management to install useful packages like nano, tzdata, and openssh-server. This change improves the overall setup process for the DC1 LXC.

											
										
										
											2025-11-02 09:53:07 +01:00
+								  tasks:
-												chore 📦: Update setupacdc.yml to use container_pubkey

Updated the setupacdc.yml file to include the container's SSH public key for authorized key management, ensuring secure access to the container. This change improves security and reduces manual configuration steps.

											
										
										
											2025-11-02 10:04:28 +01:00
-												chore 📦: Update setupacdc.yml with new container configuration and timezone settings

Updated the setupacdc.yml file to include a new provision for dc1 LXC, added a task to set the timezone using community.general.timezone, and updated package installation. This change enables more flexible container configurations and timezone management.

											
										
										
											2025-11-02 11:04:30 +01:00
+								  # - name: Ensure SSH authorized keys are present
 								  #   ansible.posix.authorized_key:
 								  #     user: root
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								  #     key: '{{ item }}'
-												chore 📦: Update setupacdc.yml with new container configuration and timezone settings

Updated the setupacdc.yml file to include a new provision for dc1 LXC, added a task to set the timezone using community.general.timezone, and updated package installation. This change enables more flexible container configurations and timezone management.

											
										
										
											2025-11-02 11:04:30 +01:00
+								  #     state: present
-												refactor ♻️: Improve formatting and consistency in setupacdc.yml

Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.

											
										
										
											2025-11-04 19:18:58 +01:00
+								  #   loop: '{{ ssh_public_keys }}'
-												chore 📦: Update setupacdc.yml with new LXC provision and package management tasks

Updated the LXC provision task to include SSH authorized keys and updated package management to install useful packages like nano, tzdata, and openssh-server. This change improves the overall setup process for the DC1 LXC.

											
										
										
											2025-11-02 09:53:07 +01:00
-												chore 📦: Update apt cache and install all available updates for setupacdc.yml

Updated the setupacdc.yml task to include installing an updated apt cache, upgrading packages, and performing a non-interactive Ubuntu release upgrade. This change enhances the overall reliability of the setup process.

											
										
										
											2025-11-05 19:16:01 +01:00
+								  - name: Update apt cache
 								    ansible.builtin.apt:
 								      update_cache: true
 								  - name: Install all available updates
 								    ansible.builtin.apt:
 								      upgrade: dist
 								      autoremove: true
 								  - name: Reboot if a new kernel was installed
 								    ansible.builtin.reboot:
 								      msg: "Rebooting after full upgrade"
 								      connect_timeout: 5
 								      reboot_timeout: 600
 								    when: ansible_facts.packages is not defined or
 								          ansible_facts.packages['linux-image-generic'] is defined
-												refactor ♻️: Simplify setupacdc.yml by removing unnecessary tasks

Refactored the setupacdc.yml to remove redundant tasks and improve readability. This change simplifies the deployment process for Samba AD DC role.

											
										
										
											2025-11-05 19:19:15 +01:00
+								  # - name: Ensure update-manager-core is installed
 								  #   ansible.builtin.apt:
 								  #     name: update-manager-core
 								  #     state: present
-												chore 📦: Update setupacdc.yml to include Ubuntu release upgrade and kernel reboot steps

Added new steps to the setupacdc.yml file to ensure a more robust Ubuntu installation process, including running the `do-release-upgrade` command and rebooting if a kernel update occurs. This change aims to improve the overall stability of the Samba AD DC role deployment.

											
										
										
											2025-11-05 19:11:44 +01:00
-												refactor ♻️: Simplify setupacdc.yml by removing unnecessary tasks

Refactored the setupacdc.yml to remove redundant tasks and improve readability. This change simplifies the deployment process for Samba AD DC role.

											
										
										
											2025-11-05 19:19:15 +01:00
+								  # - name: Perform Ubuntu release upgrade non-interactively
 								  #   ansible.builtin.command:
 								  #     cmd: do-release-upgrade -f DistUpgradeViewNonInteractive
 								  #   register: upgrade_output
 								  #   changed_when: "'No new release found' not in upgrade_output.stdout"
 								  # - name: Reboot if kernel updated
 								  #   ansible.builtin.reboot:
 								  #     msg: "Rebooting after Ubuntu upgrade"
 								  #     connect_timeout: 5
 								  #     reboot_timeout: 600
 								  #   when: upgrade_output is changed
-												chore 📦: Update setupacdc.yml to include Ubuntu release upgrade and kernel reboot steps

Added new steps to the setupacdc.yml file to ensure a more robust Ubuntu installation process, including running the `do-release-upgrade` command and rebooting if a kernel update occurs. This change aims to improve the overall stability of the Samba AD DC role deployment.

											
										
										
											2025-11-05 19:11:44 +01:00
-												chore 📦: Refactored package installation and update logic for consistency

Simplified the setupacdc.yml file by removing redundant tasks and improving readability. This change ensures that all necessary packages are installed and updated correctly, making it easier to maintain the configuration.

											
										
										
											2025-11-05 19:22:41 +01:00
+								  - name: Install useful packages
 								    ansible.builtin.package:
 								      name:
 								        - nano
 								        - tzdata
 								        # - openssh-server
 								      state: present
 								  - name: Update all packages, autoclean, and autoremove
 								    ansible.builtin.apt:
 								      name: '*'
 								      state: latest
 								      autoclean: yes
 								      autoremove: yes
 								      purge: true
 								  - name: Set timezone to {{ localization_timezone }}
-												chore 📦: Update timezone setup in setupacdc.yml

Updated the timezone setup to use a named timezone instead of a community.general.timezone, which is no longer available. This change simplifies the configuration and makes it easier to manage different timezones.

											
										
										
											2025-11-06 20:36:37 +01:00
+								    # community.general.timezone:
 								    timezone:
-												chore 📦: Refactored package installation and update logic for consistency

Simplified the setupacdc.yml file by removing redundant tasks and improving readability. This change ensures that all necessary packages are installed and updated correctly, making it easier to maintain the configuration.

											
										
										
											2025-11-05 19:22:41 +01:00
+								      name: '{{ localization_timezone }}'
 								    notify: Restart sshd
 								    tags: [timezone]
-												chore 📦: Update setupacdc.yml to include Ubuntu release upgrade and kernel reboot steps

Added new steps to the setupacdc.yml file to ensure a more robust Ubuntu installation process, including running the `do-release-upgrade` command and rebooting if a kernel update occurs. This change aims to improve the overall stability of the Samba AD DC role deployment.

											
										
										
											2025-11-05 19:11:44 +01:00
-												chore 📦: Update setupacdc.yml to include Samba AD DC role

Updated the setupacdc.yml file to include the deployment of the Samba AD DC role, ensuring consistency with the latest Ansible roles. This change simplifies the setup process and reduces potential configuration errors.

											
										
										
											2025-11-03 17:47:09 +01:00
+								  - name: Deploy the Samba AD DC role
 								    ansible.builtin.include_role:
 								      name: ansible_samba_ad_dc
-												chore 📦: Update setupacdc.yml to include Samba AD DC role deployment

Added a new task to deploy the Samba AD DC role using Ansible, allowing for more flexible and secure Active Directory deployments. This change enhances the overall setup process and improves its reliability.

											
										
										
											2025-11-02 20:44:01 +01:00
-												chore 📦: Update setupacdc.yml to improve container provisioning and cleanup processes

Updated the setupacdc.yml configuration to include additional checks for container IP address availability, improved package management, and enhanced timezone handling. These changes aim to streamline the provisioning process while maintaining a clean and efficient environment.

											
										
										
											2025-11-02 16:59:48 +01:00
+								# --- Global Handlers ----------------------------------------------
 								  handlers:
 								    - name: Restart sshd
 								      ansible.builtin.service:
 								        name: ssh
 								        state: restarted
 								      when: localization_timezone | bool