This commit removes the inclusion of the `secrets.yml` variables file and comments out the associated task. This simplifies the project setup and addresses potential security concerns related to storing sensitive information in the codebase. The task is now commented out, effectively disabling it without removing the code.
This commit updates the admin password within the `testvault.yml` file to improve security. The change ensures that unauthorized access to the test vault is prevented. This aligns with best practices for securing sensitive configuration files.
This commit updates the `testvault.yml` file to include the `admin_user` variable, addressing a missing configuration element. Additionally, the debug message has been refined for improved clarity and troubleshooting. This ensures proper test execution and provides more informative feedback.
This commit addresses the need to incorporate secrets from the `secrets.yml` file into the application. It includes the necessary steps for debugging and resolving any potential issues related to secret management. This ensures secure access to sensitive information during development and testing.
This commit removes commented-out Proxmox credentials variables from the testing.yml file. This resolves an issue where these variables were present, potentially exposing sensitive information during testing. The removal ensures a cleaner and more secure testing environment.
This commit updates the Proxmox credentials within the testing task file. This ensures the testing environment can successfully authenticate with Proxmox, resolving potential connection issues. The change improves the reliability of automated testing.
This commit removes commented-out variable definitions related to Proxmox credentials. These were identified as unnecessary and potentially confusing, improving code readability and reducing clutter. The removal ensures a cleaner and more focused codebase.
This commit updates the virtual machine's IP address to 192.168.2.3/24, resolving an issue with network connectivity during testing. This change ensures proper network access for the testing environment. The change was made to align with the latest network configuration.
This commit updates the playbook's source to utilize ansible-playbook-homelab and incorporates the ansible-role-debian_common role. The changes include updating VM names and adding a new task for deploying the Debian common role, streamlining the automation process.
This commit updates the VM memory allocation specifically for the 'dc' template, resolving an issue where memory was misconfigured. It also removes the outdated 'vm-01' entry, streamlining the configuration and ensuring optimal performance.
This commit sets up the necessary environment for PVE-mods, including installing required packages and cloning the project repository. This ensures a clean and functional setup for further development or modification of the PVE-mods project. The changes focus on the build process and dependencies.
This commit updates the Debian and Ubuntu VM templates to utilize smaller disk sizes, optimizing storage space. The changes also incorporate updated configurations for improved performance and compatibility. These adjustments streamline the VM deployment process and enhance overall system efficiency.
This commit updates the URLs for Debian images used as Proxmox templates. The URLs have been corrected to reflect the latest available Debian 13 images, ensuring proper template downloads and configurations within the Proxmox environment.
This commit updates the documentation to reflect the changes in VM configuration, specifically regarding the `vlan` setting. It clarifies the intended usage and potential values for this parameter. This ensures consistency and reduces potential confusion for users.
Corrected the OS type for the proxmox_template_vm_debian_ostype to 'l26' to align with the latest configuration. This ensures consistency and accuracy in the template definitions. The change resolves a potential mismatch between the template and the actual operating system.
This commit updates the documentation to reflect the new configurations for Debian templates, including supported distros, image URLs, and associated settings like storage, memory, cores, and SSH keys. This ensures clarity for users setting up Debian-based templates within Proxmox.
This commit updates the DNS nameservers for two virtual machine templates (vm-01 and vm-02) to 8.8.8.8, resolving potential DNS resolution issues. This change improves network connectivity for the VMs.
This commit changes the default storage type for Ubuntu templates from 'local' to 'local-lvm'. This adjustment aligns with best practices for Ubuntu template deployments, providing a more robust and isolated storage environment for the virtual machine images.
The Ubuntu template's default storage has been changed from 'hdd8t' to 'local' to align with current best practices and simplify deployment. This change ensures the template utilizes local storage, reducing potential configuration complexities. This update improves the overall usability and consistency of the template.
This commit updates the VM templates used during the creation process. Specifically, the 'vm-01' template is changed from 5000 to 9412, and 'vm-02' from 5500 to 9413. These changes likely reflect updated base images or configurations for the virtual machines.
This commit removes a commented-out configuration section for `sshkeys` within the testing task definition. This was likely a temporary setting and is now permanently removed, simplifying the configuration and preventing potential issues.
This commit updates the configuration for the snippets storage, setting it to 'local'. This change ensures that snippets are stored locally, simplifying the deployment process and improving performance. The configuration update is part of a broader effort to streamline the preflight process.
This commit refactors the preflight task to intelligently check if the 'snippets' configuration is already present in the `/etc/pve/storage.cfg` file. It avoids redundant replacement operations and improves the preflight process by determining if the configuration is already set, preventing unnecessary modifications.
This commit updates the PVE storage configuration to ensure the 'snippets' storage is properly enabled. It modifies the `/etc/pve/storage.cfg` file to include the 'snippets' option, resolving potential issues with snippet functionality. The IP address of the network interface has also been updated.
This commit updates the `tasks/testing.yml` file to correctly enable the 'snippets' storage for Proxmox. The change ensures that the snippets storage directory is properly configured, resolving an issue where snippets were not being utilized. This update improves the Proxmox setup process and ensures snippets functionality.
This commit updates the preflight task to correctly enable the 'snippets' storage in /etc/pve/storage.cfg. The change uses a more robust regular expression to handle potential variations in the storage configuration, ensuring the snippets feature is properly activated.
This commit updates the Ansible role for deploying VMs, defining two new VMs with specific configurations including IP addresses, VLAN assignments, and storage options. The changes also incorporate SSH key management from a file.
This commit enables the 'snippets' feature in the Proxmox storage configuration file. It achieves this by adding a snippet line to the storage.cfg, ensuring that Proxmox snippets are available. Additionally, it creates the necessary 'snippets' directory within the specified storage path.
Refactored the setupacdc.yml file to use LXC IDs instead of container IDs, simplifying the configuration process. Also updated the create_lxc_container task to use the new LXC ID format.
Updated the disk path from qcow2 to qemu in the create_proxmox_debian_template.yml file. This change ensures compatibility with newer Proxmox versions.
Updated the `create_proxmox_debian_template.yml` playbook to shrink the compressed qcow2 image using virt-sparsify, replacing the original shell command. This change improves efficiency and reduces storage requirements for Proxmox VM templates.
Updated the 'copy' block to use pct pull instead of pct exec and rsync, simplifying the process and reducing unnecessary commands. This change improves the efficiency and readability of the template.
Updated the commands for copying files from the LXC container to the host, ensuring consistency and accuracy in the template. The changes also improve readability and maintainability of the template.
Replaced multiple commands with a single pct exec command for copying files between the LXC container and the host, improving code readability and maintainability.
Added a new variable to the create_proxmox_debian_template.yml file to include the Debian template, allowing for more customization in the Proxmox VM creation process.
Updated the `create_proxmox_debian_template.yml` file to remove unnecessary variables and improve code readability. The changes include updating the `lxc_password` and `lxc_id` variables, making it easier to manage container IDs.
Refactored the Proxmox template to use pct commands for mounting and unmounting the LXC container filesystem, simplifying the process of copying files between containers and the host. This change improves the overall efficiency and reliability of the template.
Updated the rsync command to use lxc-attach -n instead of just --rsh. This change ensures that the correct SSH connection is established when copying files from the LXC container to the Proxmox host.
A new task was added to the existing script to import a Debian Cloud image as a Proxmox VM template, allowing for easier deployment of Debian-based systems on Proxmox servers.
Updated the Ansible task to use rsync for copying templates between LXC containers and Proxmox hosts, reducing the need for qemu-img commands. This change also includes a warning flag to prevent potential issues with lxc-attach command.
Updated the create_proxmox_debian_template.yml file to remove the delegate_to option, as it is no longer required. This change improves the template's simplicity and consistency.
Added a new task to create the QEMU template directory on the Proxmox host, ensuring it exists and has the correct permissions. This change enables the use of the QEMU template for creating Proxmox VMs.
Updated the destination path for the Proxmox template to '/var/lib/vz/template/iso/' from '/var/lib/vz/template/qcow2/'. This change ensures consistency with the expected location of the ISO file.
Added a new task to the create_proxmox_debian_template.yml file to ensure sudo is installed during the template creation process. This change allows for more secure access to the system.
Updated the synchronize command in the Proxmox template task to use the ansible.posix.synchronize module, which is more compatible with Proxmox's file system. This change ensures that the template can be successfully synchronized on the target host.
Updated the Ansible synchronize task in the Proxmox Debian template to use a pull mode instead of push, which is more idiomatic for synchronizing files from the host to the container.
Updated rsync options to include the sudo rsync path, ensuring secure file transfer. This change aligns with best practices for secure file management in Proxmox environments.
Updated shell commands in the create_proxmox_debian_template.yml file to use template variables for consistency and reusability. This change allows for easier management of different templates without modifying the underlying command structure.
Updated the rsync options to use 'push' instead of 'pull', ensuring proper synchronization of the template with Proxmox. This change improves the consistency and reliability of the template deployment process.
Updated the compressed image replacement step to remove unnecessary comments and shell commands. This change improves code readability and maintainability.
Added shell commands to display QCOW2 image information and details, making the template creation process more informative and user-friendly. This change improves the overall experience for users creating Proxmox Debian templates.
Updated the create_proxmox_debian_template.yml file to improve its readability by removing an unused parameter and adjusting indentation. This change enhances the overall code style without affecting its functionality.
Updated the `lxc_storage` variable from `hdd8t` to `local-lvm`, and added additional storage options (`--swap` and `--rootfs-size`) for more efficient resource allocation.
Updated the Ansible playbook to use virt-sparsify for compressing and shrinking images, replacing a previous qemu-img command. This change improves efficiency and reduces storage requirements.
Updated the create_proxmox_debian_template.yml file to include a new key for storing the container ID, which will be used in conjunction with the lxc_id variable.
Updated the tasks/create_proxmox_debian_template.yml file to include a new parameter for combining SSH public keys into one file, allowing for easier management of multiple keys. This change enables more flexibility when creating LXC containers with Proxmox and Debian.
Added a new parameter to the create_proxmox_debian_template.yml file to allow for a custom password when creating a Proxmox LXC instance. This change improves flexibility and security when deploying Debian-based images.
Enhanced the wait logic for LXC container boot and IP assignment by adding a check for container status and handling different scenarios. This change improves the reliability of the script.
Updated the 'wait for LXC to boot and get IP' task to use Ansible's ipaddr module for more accurate IP parsing, ensuring consistent results across different environments.
Updated the `--rootfs` option to use only `--storage` for more flexibility and readability. This change simplifies the configuration and makes it easier to manage different storage options.
Updated the create_proxmox_debian_template.yml to reflect changes in the lxc_create condition and added a new task to customize the Debian cloud image inside LXC. This change ensures consistency with the latest best practices for LXC configuration.
Updated the setupacdc.yml file to utilize pip and apk for installing dependencies, ensuring consistency in package management across different environments.
Added a new task to install pexpect on the Ansible controller, ensuring it's installed via apk. This change is part of the setup process and will enable the use of pexpect in future tasks.
Updated the requirements.yml files to reflect the correct collection naming convention, removing unnecessary newlines and updating the src attribute for one of the collections.
Updated the timezone setup to use a named timezone instead of a community.general.timezone, which is no longer available. This change simplifies the configuration and makes it easier to manage different timezones.
Updated the list of required collections in the project's configuration file to include the latest version of Proxmox. This change ensures that the project can be properly installed and configured on a Proxmox server.
Updated the list of dependencies in requirements.yml to include the new 'community.general' collection, allowing for easier management of project dependencies.
Updated the container template to use Debian 13 standard and updated the container ostype from Ubuntu to Debian. This change reflects a shift in the distribution used for the container, allowing for more flexibility in the build process.
Changed the `container_unprivileged` setting from `1` to `0`, allowing for more flexibility in container configuration. This change will impact how containers are set up and managed in the project.
Simplified the setupacdc.yml file by removing redundant tasks and improving readability. This change ensures that all necessary packages are installed and updated correctly, making it easier to maintain the configuration.
Updated the setupacdc.yml task to include installing an updated apt cache, upgrading packages, and performing a non-interactive Ubuntu release upgrade. This change enhances the overall reliability of the setup process.
Added new steps to the setupacdc.yml file to ensure a more robust Ubuntu installation process, including running the `do-release-upgrade` command and rebooting if a kernel update occurs. This change aims to improve the overall stability of the Samba AD DC role deployment.
Updated the container template and ostype from Debian to Ubuntu, reflecting a change in the underlying OS. This update ensures consistency with the new environment configuration.
Enabled facts gathering for the dc1 LXC provision task, ensuring accurate inventory data collection. This change improves the overall reliability of the setup process.
Refactored the setupacdc.yml file to improve formatting, consistency, and readability. This includes standardizing indentation, spacing, and variable naming conventions.
Added a new debug log statement to the setupacdc.yml file, allowing for more detailed output during container creation. This change enables users to see the value of the container_password variable in the logs. The update also includes minor formatting adjustments to improve readability.
Updated the `container_password` field to use a more secure and consistent format, following the latest best practices for password storage. This change ensures that passwords are properly hashed and stored securely in the container configuration.
Changed the `no_log` option from true to false in the setupacdc.yml file, allowing for log output during container creation. This change enables more detailed debugging and monitoring capabilities.
Changed the 'no_log' option from false to true in the setupacdc.yml file, enabling logging for containers. This change ensures that logs are generated and stored as expected.
Updated the password variable in the setupacdc.yml file to use an environment variable instead of a hardcoded value, making it easier to manage and secure sensitive information.
Removed two unused debug tasks from the setupacdc.yml file, as they were not being used in the current workflow. This cleanup will improve the overall efficiency of the Ansible playbook.
Removed the `addc_admin_password` variable from the setupacdc.yml file, as it was not being used. This change simplifies the configuration and reduces unnecessary complexity.
Updated the debug message to use the correct variable for the admin password, ensuring consistency in the output. This change improves readability and maintainability of the setup process.
A new Ansible debug task has been added to the setupacdc.yml file, which prints a greeting message with the admin password. This change enhances the automation process by providing additional feedback during execution.
Added new variables to the setupacdc.yml file to store Samba domain admin password, allowing for easier configuration and management of the domain. This change enables more flexibility in the setup process.
Updated the setupacdc.yml file to include the deployment of the Samba AD DC role, ensuring consistency with the latest Ansible roles. This change simplifies the setup process and reduces potential configuration errors.
Updated the `container_password` variable to use a more secure method of storing sensitive information, and removed the hardcoded admin password from the configuration.
Updated the container_password variable from a string interpolation to a raw string literal, and removed the commented out line for deploying the Samba AD DC role. This change simplifies the playbook and reduces potential issues with variable expansion.
Changed the way passwords are encrypted in the setupacdc.yml file, now using a hardcoded value instead of environment variable. This change simplifies the configuration process but may impact security if not handled properly.
Removed the no_log flag from the setupacdc task, as it was not being used. This change simplifies the configuration and makes it easier to manage. The updated flag will be set to true by default in future changes.
Updated the `container_password` variable to use a more secure and configurable approach, utilizing the `addc_admin_password` variable. This change allows for easier management of container passwords in the future.
Added a new task to deploy the Samba AD DC role using Ansible, allowing for more flexible and secure Active Directory deployments. This change enhances the overall setup process and improves its reliability.
2025-11-02 20:44:01 +01:00
10 changed files with 587 additions and 61 deletions
proxmox_template_vm_proxmox_username:"{{ proxmox_username }}"# From Ansible vault
proxmox_template_vm_proxmox_api_token_id:"{{ proxmox_api_token_id }}"# From Ansible vault
proxmox_template_vm_proxmox_api_token_secret:"{{ proxmox_api_token_secret }}"# From Ansible vault
# Optional customizations for debian
proxmox_template_vm_debian_name:debian-template
proxmox_template_vm_debian_memory:2048
proxmox_template_vm_debian_cores:2
proxmox_template_vm_debian_storage:local-lvm
proxmox_template_vm_debian_ciuser:"{{ ciuser }}"# From Ansible vault
proxmox_template_vm_debian_cipassword:"{{ cipassword }}"# From Ansible vault
proxmox_template_vm_debian_sshkeys:"{{ ssh_public_keys | join('\n') }}"# gets your ssh key from /home/user/.ssh/id_rsa.pub -- customize this to your needs
# proxmox_template_vm_debian_vlan: 50
# Set to true if you have slow storage to avoid file locks
Blocking a user prevents them from interacting with repositories, such as opening or commenting on pull requests or issues. Learn more about blocking a user.
