hms
/
pisdr-rpi-image
espelho de https://github.com/luigifreitas/pisdr-image
1
0
Derivar 0
Código Questões 0 Lançamentos 14 Wiki Trabalho
Não pode escolher mais do que 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
109 Cometimentos
3 Ramos
653 MiB
 
 
 
 
 
Árvore: 47af9b546e
Ramos Etiquetas
${ item.name }
Criar ramo ${ searchTerm }
de '47af9b546e'
${ noResults }
pisdr-rpi-image/ansible/ansible.cfg

490 linhas
19 KiB
Em bruto Responsabilidade Histórico 

  1. # config file for ansible -- https://ansible.com/

  2. # ===============================================

  3. 

  4. # nearly all parameters can be overridden in ansible-playbook

  5. # or with command line flags. ansible will read ANSIBLE_CONFIG,

  6. # ansible.cfg in the current working directory, .ansible.cfg in

  7. # the home directory or /etc/ansible/ansible.cfg, whichever it

  8. # finds first

  9. 

  10. [defaults]

  11. 

  12. # some basic default values...

  13. 

  14. inventory      = ./hosts.yaml

  15. stdout_callback = debug

  16. #library        = /usr/share/my_modules/

  17. #module_utils   = /usr/share/my_module_utils/

  18. #local_tmp      = ~/.ansible/tmp

  19. #plugin_filters_cfg = /etc/ansible/plugin_filters.yml

  20. #forks          = 5

  21. #poll_interval  = 15

  22. #sudo_user      = root

  23. #ask_sudo_pass = True

  24. #ask_pass      = True

  25. #transport      = smart

  26. #remote_port    = 22

  27. #module_lang    = C

  28. #module_set_locale = False

  29. 

  30. # plays will gather facts by default, which contain information about

  31. # the remote system.

  32. #

  33. # smart - gather by default, but don't regather if already gathered

  34. # implicit - gather by default, turn off with gather_facts: False

  35. # explicit - do not gather by default, must say gather_facts: True

  36. #gathering = implicit

  37. 

  38. # This only affects the gathering done by a play's gather_facts directive,

  39. # by default gathering retrieves all facts subsets

  40. # all - gather all subsets

  41. # network - gather min and network facts

  42. # hardware - gather hardware facts (longest facts to retrieve)

  43. # virtual - gather min and virtual facts

  44. # facter - import facts from facter

  45. # ohai - import facts from ohai

  46. # You can combine them using comma (ex: network,virtual)

  47. # You can negate them using ! (ex: !hardware,!facter,!ohai)

  48. # A minimal set of facts is always gathered.

  49. #gather_subset = all

  50. 

  51. # some hardware related facts are collected

  52. # with a maximum timeout of 10 seconds. This

  53. # option lets you increase or decrease that

  54. # timeout to something more suitable for the

  55. # environment.

  56. # gather_timeout = 10

  57. 

  58. # Ansible facts are available inside the ansible_facts.* dictionary

  59. # namespace. This setting maintains the behaviour which was the default prior

  60. # to 2.5, duplicating these variables into the main namespace, each with a

  61. # prefix of 'ansible_'.

  62. # This variable is set to True by default for backwards compatibility. It

  63. # will be changed to a default of 'False' in a future release.

  64. # ansible_facts.

  65. # inject_facts_as_vars = True

  66. 

  67. # additional paths to search for roles in, colon separated

  68. #roles_path    = /etc/ansible/roles

  69. 

  70. # uncomment this to disable SSH key host checking

  71. #host_key_checking = False

  72. 

  73. # change the default callback, you can only have one 'stdout' type  enabled at a time.

  74. #stdout_callback = skippy

  75. 

  76. 

  77. ## Ansible ships with some plugins that require whitelisting,

  78. ## this is done to avoid running all of a type by default.

  79. ## These setting lists those that you want enabled for your system.

  80. ## Custom plugins should not need this unless plugin author specifies it.

  81. 

  82. # enable callback plugins, they can output to stdout but cannot be 'stdout' type.

  83. #callback_whitelist = timer, mail

  84. 

  85. # Determine whether includes in tasks and handlers are "static" by

  86. # default. As of 2.0, includes are dynamic by default. Setting these

  87. # values to True will make includes behave more like they did in the

  88. # 1.x versions.

  89. #task_includes_static = False

  90. #handler_includes_static = False

  91. 

  92. # Controls if a missing handler for a notification event is an error or a warning

  93. #error_on_missing_handler = True

  94. 

  95. # change this for alternative sudo implementations

  96. #sudo_exe = sudo

  97. 

  98. # What flags to pass to sudo

  99. # WARNING: leaving out the defaults might create unexpected behaviours

  100. #sudo_flags = -H -S -n

  101. 

  102. # SSH timeout

  103. #timeout = 10

  104. 

  105. # default user to use for playbooks if user is not specified

  106. # (/usr/bin/ansible will use current user as default)

  107. #remote_user = root

  108. 

  109. # logging is off by default unless this path is defined

  110. # if so defined, consider logrotate

  111. #log_path = /var/log/ansible.log

  112. 

  113. # default module name for /usr/bin/ansible

  114. #module_name = command

  115. 

  116. # use this shell for commands executed under sudo

  117. # you may need to change this to bin/bash in rare instances

  118. # if sudo is constrained

  119. #executable = /bin/sh

  120. 

  121. # if inventory variables overlap, does the higher precedence one win

  122. # or are hash values merged together?  The default is 'replace' but

  123. # this can also be set to 'merge'.

  124. #hash_behaviour = replace

  125. 

  126. # by default, variables from roles will be visible in the global variable

  127. # scope. To prevent this, the following option can be enabled, and only

  128. # tasks and handlers within the role will see the variables there

  129. #private_role_vars = yes

  130. 

  131. # list any Jinja2 extensions to enable here:

  132. #jinja2_extensions = jinja2.ext.do,jinja2.ext.i18n

  133. 

  134. # if set, always use this private key file for authentication, same as

  135. # if passing --private-key to ansible or ansible-playbook

  136. #private_key_file = /path/to/file

  137. 

  138. # If set, configures the path to the Vault password file as an alternative to

  139. # specifying --vault-password-file on the command line.

  140. 

  141. # format of string {{ ansible_managed }} available within Jinja2

  142. # templates indicates to users editing templates files will be replaced.

  143. # replacing {file}, {host} and {uid} and strftime codes with proper values.

  144. #ansible_managed = Ansible managed: {file} modified on %Y-%m-%d %H:%M:%S by {uid} on {host}

  145. # {file}, {host}, {uid}, and the timestamp can all interfere with idempotence

  146. # in some situations so the default is a static string:

  147. #ansible_managed = Ansible managed

  148. 

  149. # by default, ansible-playbook will display "Skipping [host]" if it determines a task

  150. # should not be run on a host.  Set this to "False" if you don't want to see these "Skipping"

  151. # messages. NOTE: the task header will still be shown regardless of whether or not the

  152. # task is skipped.

  153. #display_skipped_hosts = True

  154. 

  155. # by default, if a task in a playbook does not include a name: field then

  156. # ansible-playbook will construct a header that includes the task's action but

  157. # not the task's args.  This is a security feature because ansible cannot know

  158. # if the *module* considers an argument to be no_log at the time that the

  159. # header is printed.  If your environment doesn't have a problem securing

  160. # stdout from ansible-playbook (or you have manually specified no_log in your

  161. # playbook on all of the tasks where you have secret information) then you can

  162. # safely set this to True to get more informative messages.

  163. #display_args_to_stdout = False

  164. 

  165. # by default (as of 1.3), Ansible will raise errors when attempting to dereference

  166. # Jinja2 variables that are not set in templates or action lines. Uncomment this line

  167. # to revert the behavior to pre-1.3.

  168. #error_on_undefined_vars = False

  169. 

  170. # by default (as of 1.6), Ansible may display warnings based on the configuration of the

  171. # system running ansible itself. This may include warnings about 3rd party packages or

  172. # other conditions that should be resolved if possible.

  173. # to disable these warnings, set the following value to False:

  174. #system_warnings = True

  175. 

  176. # by default (as of 1.4), Ansible may display deprecation warnings for language

  177. # features that should no longer be used and will be removed in future versions.

  178. # to disable these warnings, set the following value to False:

  179. #deprecation_warnings = True

  180. 

  181. # (as of 1.8), Ansible can optionally warn when usage of the shell and

  182. # command module appear to be simplified by using a default Ansible module

  183. # instead.  These warnings can be silenced by adjusting the following

  184. # setting or adding warn=yes or warn=no to the end of the command line

  185. # parameter string.  This will for example suggest using the git module

  186. # instead of shelling out to the git command.

  187. # command_warnings = False

  188. 

  189. 

  190. # set plugin path directories here, separate with colons

  191. #action_plugins     = /usr/share/ansible/plugins/action

  192. #become_plugins     = /usr/share/ansible/plugins/become

  193. #cache_plugins      = /usr/share/ansible/plugins/cache

  194. #callback_plugins   = /usr/share/ansible/plugins/callback

  195. #connection_plugins = /usr/share/ansible/plugins/connection

  196. #lookup_plugins     = /usr/share/ansible/plugins/lookup

  197. #inventory_plugins  = /usr/share/ansible/plugins/inventory

  198. #vars_plugins       = /usr/share/ansible/plugins/vars

  199. #filter_plugins     = /usr/share/ansible/plugins/filter

  200. #test_plugins       = /usr/share/ansible/plugins/test

  201. #terminal_plugins   = /usr/share/ansible/plugins/terminal

  202. #strategy_plugins   = /usr/share/ansible/plugins/strategy

  203. 

  204. 

  205. # by default, ansible will use the 'linear' strategy but you may want to try

  206. # another one

  207. #strategy = free

  208. 

  209. # by default callbacks are not loaded for /bin/ansible, enable this if you

  210. # want, for example, a notification or logging callback to also apply to

  211. # /bin/ansible runs

  212. #bin_ansible_callbacks = False

  213. 

  214. 

  215. # don't like cows?  that's unfortunate.

  216. # set to 1 if you don't want cowsay support or export ANSIBLE_NOCOWS=1

  217. #nocows = 1

  218. 

  219. # set which cowsay stencil you'd like to use by default. When set to 'random',

  220. # a random stencil will be selected for each task. The selection will be filtered

  221. # against the `cow_whitelist` option below.

  222. #cow_selection = default

  223. #cow_selection = random

  224. 

  225. # when using the 'random' option for cowsay, stencils will be restricted to this list.

  226. # it should be formatted as a comma-separated list with no spaces between names.

  227. # NOTE: line continuations here are for formatting purposes only, as the INI parser

  228. #       in python does not support them.

  229. #cow_whitelist=bud-frogs,bunny,cheese,daemon,default,dragon,elephant-in-snake,elephant,eyes,\

  230. #              hellokitty,kitty,luke-koala,meow,milk,moofasa,moose,ren,sheep,small,stegosaurus,\

  231. #              stimpy,supermilker,three-eyes,turkey,turtle,tux,udder,vader-koala,vader,www

  232. 

  233. # don't like colors either?

  234. # set to 1 if you don't want colors, or export ANSIBLE_NOCOLOR=1

  235. #nocolor = 1

  236. 

  237. # if set to a persistent type (not 'memory', for example 'redis') fact values

  238. # from previous runs in Ansible will be stored.  This may be useful when

  239. # wanting to use, for example, IP information from one group of servers

  240. # without having to talk to them in the same playbook run to get their

  241. # current IP information.

  242. #fact_caching = memory

  243. 

  244. #This option tells Ansible where to cache facts. The value is plugin dependent.

  245. #For the jsonfile plugin, it should be a path to a local directory.

  246. #For the redis plugin, the value is a host:port:database triplet: fact_caching_connection = localhost:6379:0

  247. 

  248. #fact_caching_connection=/tmp

  249. 

  250. 

  251. 

  252. # retry files

  253. # When a playbook fails a .retry file can be created that will be placed in ~/

  254. # You can enable this feature by setting retry_files_enabled to True

  255. # and you can change the location of the files by setting retry_files_save_path

  256. 

  257. retry_files_enabled = False

  258. #retry_files_save_path = ~/.ansible-retry

  259. 

  260. # squash actions

  261. # Ansible can optimise actions that call modules with list parameters

  262. # when looping. Instead of calling the module once per with_ item, the

  263. # module is called once with all items at once. Currently this only works

  264. # under limited circumstances, and only with parameters named 'name'.

  265. #squash_actions = apk,apt,dnf,homebrew,pacman,pkgng,yum,zypper

  266. 

  267. # prevents logging of task data, off by default

  268. #no_log = False

  269. 

  270. # prevents logging of tasks, but only on the targets, data is still logged on the master/controller

  271. #no_target_syslog = False

  272. 

  273. # controls whether Ansible will raise an error or warning if a task has no

  274. # choice but to create world readable temporary files to execute a module on

  275. # the remote machine.  This option is False by default for security.  Users may

  276. # turn this on to have behaviour more like Ansible prior to 2.1.x.  See

  277. # https://docs.ansible.com/ansible/become.html#becoming-an-unprivileged-user

  278. # for more secure ways to fix this than enabling this option.

  279. #allow_world_readable_tmpfiles = False

  280. 

  281. # controls the compression level of variables sent to

  282. # worker processes. At the default of 0, no compression

  283. # is used. This value must be an integer from 0 to 9.

  284. #var_compression_level = 9

  285. 

  286. # controls what compression method is used for new-style ansible modules when

  287. # they are sent to the remote system.  The compression types depend on having

  288. # support compiled into both the controller's python and the client's python.

  289. # The names should match with the python Zipfile compression types:

  290. # * ZIP_STORED (no compression. available everywhere)

  291. # * ZIP_DEFLATED (uses zlib, the default)

  292. # These values may be set per host via the ansible_module_compression inventory

  293. # variable

  294. #module_compression = 'ZIP_DEFLATED'

  295. 

  296. # This controls the cutoff point (in bytes) on --diff for files

  297. # set to 0 for unlimited (RAM may suffer!).

  298. #max_diff_size = 1048576

  299. 

  300. # This controls how ansible handles multiple --tags and --skip-tags arguments

  301. # on the CLI.  If this is True then multiple arguments are merged together.  If

  302. # it is False, then the last specified argument is used and the others are ignored.

  303. # This option will be removed in 2.8.

  304. #merge_multiple_cli_flags = True

  305. 

  306. # Controls showing custom stats at the end, off by default

  307. #show_custom_stats = True

  308. 

  309. # Controls which files to ignore when using a directory as inventory with

  310. # possibly multiple sources (both static and dynamic)

  311. #inventory_ignore_extensions = ~, .orig, .bak, .ini, .cfg, .retry, .pyc, .pyo

  312. 

  313. # This family of modules use an alternative execution path optimized for network appliances

  314. # only update this setting if you know how this works, otherwise it can break module execution

  315. #network_group_modules=eos, nxos, ios, iosxr, junos, vyos

  316. 

  317. # When enabled, this option allows lookups (via variables like {{lookup('foo')}} or when used as

  318. # a loop with `with_foo`) to return data that is not marked "unsafe". This means the data may contain

  319. # jinja2 templating language which will be run through the templating engine.

  320. # ENABLING THIS COULD BE A SECURITY RISK

  321. #allow_unsafe_lookups = False

  322. 

  323. # set default errors for all plays

  324. #any_errors_fatal = False

  325. 

  326. [inventory]

  327. # enable inventory plugins, default: 'host_list', 'script', 'auto', 'yaml', 'ini', 'toml'

  328. #enable_plugins = host_list, virtualbox, yaml, constructed

  329. 

  330. # ignore these extensions when parsing a directory as inventory source

  331. #ignore_extensions = .pyc, .pyo, .swp, .bak, ~, .rpm, .md, .txt, ~, .orig, .ini, .cfg, .retry

  332. 

  333. # ignore files matching these patterns when parsing a directory as inventory source

  334. #ignore_patterns=

  335. 

  336. # If 'true' unparsed inventory sources become fatal errors, they are warnings otherwise.

  337. #unparsed_is_failed=False

  338. 

  339. [privilege_escalation]

  340. #become=True

  341. #become_method=sudo

  342. #become_user=root

  343. #become_ask_pass=False

  344. 

  345. [paramiko_connection]

  346. 

  347. # uncomment this line to cause the paramiko connection plugin to not record new host

  348. # keys encountered.  Increases performance on new host additions.  Setting works independently of the

  349. # host key checking setting above.

  350. #record_host_keys=False

  351. 

  352. # by default, Ansible requests a pseudo-terminal for commands executed under sudo. Uncomment this

  353. # line to disable this behaviour.

  354. #pty=False

  355. 

  356. # paramiko will default to looking for SSH keys initially when trying to

  357. # authenticate to remote devices.  This is a problem for some network devices

  358. # that close the connection after a key failure.  Uncomment this line to

  359. # disable the Paramiko look for keys function

  360. #look_for_keys = False

  361. 

  362. # When using persistent connections with Paramiko, the connection runs in a

  363. # background process.  If the host doesn't already have a valid SSH key, by

  364. # default Ansible will prompt to add the host key.  This will cause connections

  365. # running in background processes to fail.  Uncomment this line to have

  366. # Paramiko automatically add host keys.

  367. #host_key_auto_add = True

  368. 

  369. [ssh_connection]

  370. 

  371. # ssh arguments to use

  372. # Leaving off ControlPersist will result in poor performance, so use

  373. # paramiko on older platforms rather than removing it, -C controls compression use

  374. #ssh_args = -C -o ControlMaster=auto -o ControlPersist=60s

  375. 

  376. # The base directory for the ControlPath sockets.

  377. # This is the "%(directory)s" in the control_path option

  378. #

  379. # Example:

  380. # control_path_dir = /tmp/.ansible/cp

  381. #control_path_dir = ~/.ansible/cp

  382. 

  383. # The path to use for the ControlPath sockets. This defaults to a hashed string of the hostname,

  384. # port and username (empty string in the config). The hash mitigates a common problem users

  385. # found with long hostnames and the conventional %(directory)s/ansible-ssh-%%h-%%p-%%r format.

  386. # In those cases, a "too long for Unix domain socket" ssh error would occur.

  387. #

  388. # Example:

  389. # control_path = %(directory)s/%%h-%%r

  390. #control_path =

  391. 

  392. # Enabling pipelining reduces the number of SSH operations required to

  393. # execute a module on the remote server. This can result in a significant

  394. # performance improvement when enabled, however when using "sudo:" you must

  395. # first disable 'requiretty' in /etc/sudoers

  396. #

  397. # By default, this option is disabled to preserve compatibility with

  398. # sudoers configurations that have requiretty (the default on many distros).

  399. #

  400. #pipelining = False

  401. 

  402. # Control the mechanism for transferring files (old)

  403. #   * smart = try sftp and then try scp [default]

  404. #   * True = use scp only

  405. #   * False = use sftp only

  406. #scp_if_ssh = smart

  407. 

  408. # Control the mechanism for transferring files (new)

  409. # If set, this will override the scp_if_ssh option

  410. #   * sftp  = use sftp to transfer files

  411. #   * scp   = use scp to transfer files

  412. #   * piped = use 'dd' over SSH to transfer files

  413. #   * smart = try sftp, scp, and piped, in that order [default]

  414. #transfer_method = smart

  415. 

  416. # if False, sftp will not use batch mode to transfer files. This may cause some

  417. # types of file transfer failures impossible to catch however, and should

  418. # only be disabled if your sftp version has problems with batch mode

  419. #sftp_batch_mode = False

  420. 

  421. # The -tt argument is passed to ssh when pipelining is not enabled because sudo

  422. # requires a tty by default.

  423. #usetty = True

  424. 

  425. # Number of times to retry an SSH connection to a host, in case of UNREACHABLE.

  426. # For each retry attempt, there is an exponential backoff,

  427. # so after the first attempt there is 1s wait, then 2s, 4s etc. up to 30s (max).

  428. #retries = 3

  429. 

  430. [persistent_connection]

  431. 

  432. # Configures the persistent connection timeout value in seconds.  This value is

  433. # how long the persistent connection will remain idle before it is destroyed.

  434. # If the connection doesn't receive a request before the timeout value

  435. # expires, the connection is shutdown. The default value is 30 seconds.

  436. #connect_timeout = 30

  437. 

  438. # The command timeout value defines the amount of time to wait for a command

  439. # or RPC call before timing out. The value for the command timeout must

  440. # be less than the value of the persistent connection idle timeout (connect_timeout)

  441. # The default value is 30 second.

  442. #command_timeout = 30

  443. 

  444. [accelerate]

  445. #accelerate_port = 5099

  446. #accelerate_timeout = 30

  447. #accelerate_connect_timeout = 5.0

  448. 

  449. # The daemon timeout is measured in minutes. This time is measured

  450. # from the last activity to the accelerate daemon.

  451. #accelerate_daemon_timeout = 30

  452. 

  453. # If set to yes, accelerate_multi_key will allow multiple

  454. # private keys to be uploaded to it, though each user must

  455. # have access to the system via SSH to add a new key. The default

  456. # is "no".

  457. #accelerate_multi_key = yes

  458. 

  459. [selinux]

  460. # file systems that require special treatment when dealing with security context

  461. # the default behaviour that copies the existing context or uses the user default

  462. # needs to be changed to use the file system dependent context.

  463. #special_context_filesystems=nfs,vboxsf,fuse,ramfs,9p,vfat

  464. 

  465. # Set this to yes to allow libvirt_lxc connections to work without SELinux.

  466. #libvirt_lxc_noseclabel = yes

  467. 

  468. [colors]

  469. #highlight = white

  470. #verbose = blue

  471. #warn = bright purple

  472. #error = red

  473. #debug = dark gray

  474. #deprecate = purple

  475. #skip = cyan

  476. #unreachable = red

  477. #ok = green

  478. #changed = yellow

  479. #diff_add = green

  480. #diff_remove = red

  481. #diff_lines = cyan

  482. 

  483. 

  484. [diff]

  485. # Always print diff when running ( same as always running with -D/--diff )

  486. # always = no

  487. 

  488. # Set how many context lines to show in diff

  489. # context = 3