admhpr · December 28, 2018 17:33
diff --git a/docker-compose.yml b/docker-compose.yml
 version: "3"
 services:
  server:
    build: .
    container_name: ansible_test_server
    ports:
      - "8080:80"
    command: bash -c "/usr/sbin/sshd && tail -f /dev/null"
diff --git a/Dockerfile b/Dockerfile

 FROM debian:latest

 # Install packages
 RUN apt-get update && DEBIAN_FRONTEND=noninteractive apt-get -y install \
    openssh-server \
    apt-utils \
    python3\
    zip \ 
    unzip \
    sudo 

 RUN mkdir -p /var/run/sshd && sed -i "s/UsePrivilegeSeparation.*/UsePrivilegeSeparation no/g" /etc/ssh/sshd_config \
    && sed -i 's/PermitRootLogin without-password/PermitRootLogin yes/' /etc/ssh/sshd_config \
    && touch /root/.Xauthority \
    && true

 ## Set a default user. Available via runtime flag `--user deploy`
 ## Add user to 'staff' group, granting them write privileges to /usr/local/lib/R/site.library
 ## User should also have & own a home directory, but also be able to sudo
 RUN useradd deploy \
    && passwd -d deploy \
    && mkdir /home/deploy \
    && chown deploy:deploy /home/deploy \
    && addgroup deploy staff \
    && addgroup deploy sudo \
    && true

 RUN mkdir -p /root/.ssh
 RUN echo "ssh-rsa <your-key-here>" >> /root/.ssh/authorized_keys
 RUN chmod 600 -R /root/.ssh

 EXPOSE 22
diff --git a/host b/host
 [live-servers]
 <vps-ip>

 [test-servers]
 <locak-docker-ip>

 [test:vars]
 ansible_ssh_user=root

 [servers:children]
 live-servers
 test-servers

 [test:children]
 test-servers

 [live:children]
 live-servers

 [servers:vars]
 ansible_private_key_file="/home/adam/.ssh/id_rsa"
 ansible_python_interpreter=/usr/bin/python3
diff --git a/Makefile b/Makefile
 live:
 	ansible-playbook --vault-id .vault_pass -i hosts site.yml site.yml --limit live

 live-debug:
 	ansible-playbook --vault-id .vault_pass -i hosts site.yml site.yml -vvv --limit live

 test:
 	ansible-playbook  --vault-id .vault_pass -i hosts site.yml --limit test

 test-debug:
 	ansible-playbook --vault-id .vault_pass -i hosts site.yml -vvv --limit test

 check:
 	ansible-playbook --syntax-check --vault-id .vault_pass -i hosts site.yml --limit test

 rebuild:
 	docker-compose build \
 	sleep 5 \
 	& docker-compose down \
 	sleep 5 \
 	& docker-compose up -d
	version: "3"
	services:
	server:
	build: .
	container_name: ansible_test_server
	ports:
	- "8080:80"
	command: bash -c "/usr/sbin/sshd && tail -f /dev/null"

	FROM debian:latest

	# Install packages
	RUN apt-get update && DEBIAN_FRONTEND=noninteractive apt-get -y install \
	openssh-server \
	apt-utils \
	python3\
	zip \
	unzip \
	sudo

	RUN mkdir -p /var/run/sshd && sed -i "s/UsePrivilegeSeparation.*/UsePrivilegeSeparation no/g" /etc/ssh/sshd_config \
	&& sed -i 's/PermitRootLogin without-password/PermitRootLogin yes/' /etc/ssh/sshd_config \
	&& touch /root/.Xauthority \
	&& true

	## Set a default user. Available via runtime flag `--user deploy`
	## Add user to 'staff' group, granting them write privileges to /usr/local/lib/R/site.library
	## User should also have & own a home directory, but also be able to sudo
	RUN useradd deploy \
	&& passwd -d deploy \
	&& mkdir /home/deploy \
	&& chown deploy:deploy /home/deploy \
	&& addgroup deploy staff \
	&& addgroup deploy sudo \
	&& true

	RUN mkdir -p /root/.ssh
	RUN echo "ssh-rsa <your-key-here>" >> /root/.ssh/authorized_keys
	RUN chmod 600 -R /root/.ssh

	EXPOSE 22
	[live-servers]
	<vps-ip>

	[test-servers]
	<locak-docker-ip>

	[test:vars]
	ansible_ssh_user=root

	[servers:children]
	live-servers
	test-servers

	[test:children]
	test-servers

	[live:children]
	live-servers

	[servers:vars]
	ansible_private_key_file="/home/adam/.ssh/id_rsa"
	ansible_python_interpreter=/usr/bin/python3
	live:
	ansible-playbook --vault-id .vault_pass -i hosts site.yml site.yml --limit live

	live-debug:
	ansible-playbook --vault-id .vault_pass -i hosts site.yml site.yml -vvv --limit live

	test:
	ansible-playbook --vault-id .vault_pass -i hosts site.yml --limit test

	test-debug:
	ansible-playbook --vault-id .vault_pass -i hosts site.yml -vvv --limit test

	check:
	ansible-playbook --syntax-check --vault-id .vault_pass -i hosts site.yml --limit test

	rebuild:
	docker-compose build \
	sleep 5 \
	& docker-compose down \
	sleep 5 \
	& docker-compose up -d