feat: 2023 update (#12)

IppX · web-flow · commit 32504b160f51 · 2023-07-11T21:58:23.000+02:00
diff --git a/Vagrantfile b/Vagrantfile
@@ -29,6 +29,7 @@ Vagrant.configure("2") do |config|
 
   config.vm.provision "ansible_local" do |ansible|
     ansible.playbook = "setup.yml"
+#     ansible.verbose = "vvvvv"
     ansible.limit = 'all,localhost'
     ansible.install = false
   end
diff --git a/roles/00-install-software/tasks/main.yml b/roles/00-install-software/tasks/main.yml
@@ -17,16 +17,13 @@
 - name: "Getting deb packages"
   get_url: url={{ item['url'] }} dest={{ item['dest'] }} mode=0644 timeout=20
   with_items:
-    - url: https://repo.nordvpn.com/deb/nordvpn/debian/pool/main/nordvpn-release_1.0.0_all.deb
-      dest: /tmp/nordvpn.deb
     - url: https://downloads.slack-edge.com/linux_releases/slack-desktop-4.4.2-amd64.deb
       dest: /tmp/slack.deb
 
 - name: "Installing deb packages"
   apt: deb={{ item }} state=present
   with_items:
     - /tmp/slack.deb
-    - /tmp/nordvpn.deb
 
 - name: "Installing core packages"
   apt: pkg={{ packages }} state=present update_cache=yes
@@ -42,57 +39,11 @@
     - python-psutil
     - rlwrap
 
-    # must have
-    - git
-    - vim
-    - jq
-    - nmap
-    - wireshark
-
     # backup
     - backintime-common
     - backintime-qt4
 
-    # java
-    - openjdk-11-jdk
-    - maven
-    - gradle
-  
-    # php
-    - php-cli
-  
-    # python
-    - python3
-    - python3-pip
-    - python3-venv
-    - python3-setuptools
-  
-    # virtualization
-    - virtualbox
-    - virtualbox-guest-additions-iso
-    - virtualbox-qt
-    - vagrant 
-      
-    # docker
-    - docker-ce 
-    - docker-ce-cli 
-    - containerd.io
-  
-    # other apps
+      # other apps
     - spotify-client
     - vlc
-    - nordvpn
-
-- name: "Installing more binaries"
-  get_url: url={{ item['url'] }} dest={{ item['dest'] }} mode=0755
-  with_items:
-  - url: https://cht.sh/:cht.sh
-    dest: /usr/local/bin/cht.sh
-  - url: https://github.com/docker/compose/releases/download/1.25.5/docker-compose-Linux-x86_64
-    dest: /usr/local/bin/docker-compose 
-
-- name: "Create Docker group"
-  group: name=docker state=present
-
-- name: "Add current user to Docker group"
-  user: name="{{ ansible_env['USER'] }}" groups=docker append=yes
+    - slack-desktop
diff --git a/roles/02-setup-home/files/bash/.bash_profile b/roles/02-setup-home/files/bash/.bash_profile
@@ -1,33 +1,28 @@
 export HISTSIZE=10000
 export HISTFILESIZE=10000
 export HISTTIMEFORMAT="%d/%m/%y %T "
-
-export PATH=$HOME/go/bin:$PATH
-export PATH=$HOME/software/go/bin:$PATH
+export EDITOR=vim
 export PATH=$HOME/.local/bin:$PATH
-#export PATH="/snap/bin:$PATH"
-
 export ANSIBLE_NOCOWS=1
 #export VAGRANT_DEFAULT_PROVIDER=libvirt
 
+# aliases
 alias ll='ls -lha'
 alias dig='dig +noall +answer +ttlunits'
+# kubernetes helpers
+alias kafkapod='kubectl run kafkacat --rm -i --tty --namespace default  --image confluentinc/cp-kafkacat --command -- bash'
+alias debugpod='kubectl run toolbox --rm -i --tty --namespace default  --image ubuntu:22.04 --command -- bash'
 
+# functions
 function git_prune() {
 	git fetch -p
 	for branch in $(git branch -vv | grep ': gone]' | awk '{print $1}'); do 
 		git branch -D $branch; 
 	done;
 }
 
-# kubernetes helpers
-alias kafkapod='kubectl run --generator=run-pod/v1 kafkacat --rm -i --tty --namespace default  --image confluentinc/cp-kafkacat --command -- bash'
-alias debugpod='kubectl run --generator=run-pod/v1 toolbox --rm -i --tty --namespace default  --image ubuntu:18.04 --command -- bash'
+function get_ec2_tags() {
+	steampipe query "select tags from aws.aws_ec2_instance where instance_id='$1'"
+}
+
 
-# xinput settings for Magic TrackPad 2
-if [[ "$(xinput | grep 'Apple Inc. Magic Trackpad 2')" != "" ]]; then
-	# Tap
-	xinput set-prop "pointer:Apple Inc. Magic Trackpad 2" "libinput Tapping Enabled" 1
-	# Natural scroll
-	xinput set-prop "pointer:Apple Inc. Magic Trackpad 2" "libinput Natural Scrolling Enabled" 0
-fi;
diff --git a/roles/03-dev-tools/defaults/main.yml b/roles/03-dev-tools/defaults/main.yml
@@ -0,0 +1,9 @@
+os: linux
+arch: amd64
+arch_alt: x86_64
+
+versions:
+  idea: 2023.1.3
+  go: 1.14.2
+  slack: 4.33.73
+
diff --git a/roles/03-dev-tools/tasks/main.yml b/roles/03-dev-tools/tasks/main.yml
@@ -1,7 +1,10 @@
+- name: "Create cloud tools directory"
+  file: path="{{ ansible_env['HOME'] }}/software" state=directory mode=0755
+
 - name: "Downloading Idea"
   get_url: url={{ item['url'] }} dest={{ item['dest'] }} mode=0644
   with_items:
-  - url: https://download-cf.jetbrains.com/idea/ideaIU-2020.1.tar.gz
+  - url: https://download-cdn.jetbrains.com/idea/ideaIU-{{ versions['idea'] }}.tar.gz
     dest: "/tmp/idea.tar.gz"
 
 - name: "Installing Idea 1/2"
@@ -24,20 +27,80 @@
     dest: /usr/local/bin/idea
     state: link
 
-- name: "Downloading hugo"
-  get_url: url={{ item['url'] }} dest={{ item['dest'] }} mode=0644
+- name: "Getting deb packages"
+  get_url: url={{ item['url'] }} dest={{ item['dest'] }} mode=0644 timeout=20
   with_items:
-    - url: https://github.com/gohugoio/hugo/releases/download/v0.69.0/hugo_0.69.0_Linux-64bit.deb
-      dest: "/tmp/hugo.deb"
+    - url: "https://downloads.slack-edge.com/releases/{{ os }}/{{ versions['slack'] }}/prod/x64/slack-desktop-{{ versions['slack'] }}-{{ arch }}.deb"
+      dest: /tmp/slack.deb
+    - url: https://s3.amazonaws.com/session-manager-downloads/plugin/latest/ubuntu_64bit/session-manager-plugin.deb
+      dest: /tmp/session-manager-plugin.deb
 
-- name: "Installing hugo"
+- name: "Installing deb packages"
+  apt: deb={{ item }} state=present
+  with_items:
+    - /tmp/slack.deb
+    - /tmp/session-manager-plugin.deb
   become: yes
-  apt: deb=/tmp/hugo.deb state=present
 
-- name: "Downloading golang"
+- name: "Adding keys for non public programs"
+  apt_key: url={{ item }} state=present
+  with_items:
+    - https://download.docker.com/linux/ubuntu/gpg
+  become: yes
+
+- name: "Adding repos for non public programs"
+  apt_repository: repo={{ item }} codename=bionic state=present
+  with_items:
+    - deb [arch=amd64] https://download.docker.com/linux/ubuntu bionic stable
+  become: yes
+
+- name: "Installing dev packages"
+  apt: pkg={{ packages }} state=present update_cache=yes
   vars:
-    go_version: 1.14.2
-  get_url: url=https://dl.google.com/go/go{{ go_version }}.linux-amd64.tar.gz dest=/tmp/go.tar.gz
+    packages:
+      # must have
+      - git
+      - vim
+      - jq
+      - nmap
+      - wireshark
+
+      # java
+      - openjdk-11-jdk
+      - maven
+      - gradle
+
+      # php
+      - php-cli
+
+      # python
+      - python3
+      - python3-pip
+      - python3-venv
+      - python3-setuptools
+
+      # virtualization
+      - virtualbox
+      - virtualbox-guest-additions-iso
+      - virtualbox-qt
+      - vagrant
+
+      # docker
+      - docker-ce
+      - docker-ce-cli
+      - containerd.io
+  become: yes
+
+- name: "Create Docker group"
+  group: name=docker state=present
+  become: yes
+
+- name: "Add current user to Docker group"
+  user: name="{{ ansible_env['USER'] }}" groups=docker append=yes
+  become: yes
+
+- name: "Downloading golang"
+  get_url: url=https://dl.google.com/go/go{{ versions['go'] }}.{{ os }}-{{ arch }}.tar.gz dest=/tmp/go.tar.gz
 
 - name: "Unpacking golang"
   unarchive:
diff --git a/roles/04-cloud-tools/defaults/main.yml b/roles/04-cloud-tools/defaults/main.yml
@@ -1,58 +1,93 @@
 cloud_tools_path: "{{ ansible_env['HOME'] }}/software/cloud"
 
 os: linux
+arch: amd64
+arch_alt: x86_64
 
 versions:
-  gcloud: 289.0.0
-  helm: v3.2.4
-  kubectl: v1.18.0
-  kubectx: v0.9.1
+  aws: awscli-exe-linux-x86_64.zip
+  amtool: 0.25.0
+  dive: 0.11.0
+  docker-compose: v2.19.1
+  gcloud: 437.0.1
+  helm: v3.12.1
+  hugo: 0.115.2
+  kubectl: v1.27.3
   kubeps1: v0.7.0
-  minikube: v1.11.0
-  mkcert: v1.4.1
-  stern: 1.11.0
-  spruce: v1.25.2
-  terraform: 0.12.28
+  kubie: v0.19.3
+  logcli: v2.8.2
+  minikube: v1.30.1
+  mkcert: v1.4.4
+  promtool: 2.45.0
+  rbac-lookup: 0.10.1
+  steampipe: v0.20.8
+  stern: 1.25.0
+  spruce: v1.30.2
   vault: 1.4.2
 
 tools:
   binaries:
   - name: kubectl
-    url: "https://storage.googleapis.com/kubernetes-release/release/{{ versions['kubectl'] }}/bin/{{ os }}/amd64/kubectl"
+    url: "https://dl.k8s.io/release/{{ versions['kubectl'] }}/bin/{{ os }}/{{ arch }}/kubectl"
+  - name: kubie
+    url: "https://github.com/sbstp/kubie/releases/download/{{ versions['kubie'] }}/kubie-{{ os }}-{{ arch }}"
   - name: minikube
-    url: "https://storage.googleapis.com/minikube/releases/{{ versions['minikube'] }}/minikube-{{ os }}-amd64"
-    checksum: "sha256:0b07a295d5110dc70907e4660429b8f9b3e8c05119e42f73e192b5313695a913"
+    url: "https://storage.googleapis.com/minikube/releases/{{ versions['minikube'] }}/minikube-{{ os }}-{{ arch }}"
+#    checksum: "sha256:0b07a295d5110dc70907e4660429b8f9b3e8c05119e42f73e192b5313695a913"
   - name: mkcert
-    url: "https://github.com/FiloSottile/mkcert/releases/download/{{ versions['mkcert'] }}/mkcert-{{ versions['mkcert'] }}-{{ os }}-amd64"
+    url: "https://github.com/FiloSottile/mkcert/releases/download/{{ versions['mkcert'] }}/mkcert-{{ versions['mkcert'] }}-{{ os }}-{{ arch }}"
   - name: spruce
-    url: "https://github.com/geofffranks/spruce/releases/download/{{ versions['spruce'] }}/spruce-{{ os }}-amd64"
-  - name: stern
-    url: "https://github.com/wercker/stern/releases/download/{{ versions['stern'] }}/stern_{{ os }}_amd64"
-    checksum: "sha256:e0b39dc26f3a0c7596b2408e4fb8da533352b76aaffdc18c7ad28c833c9eb7db"
+    url: "https://github.com/geofffranks/spruce/releases/download/{{ versions['spruce'] }}/spruce-{{ os }}-{{ arch }}"
+  #    checksum: "sha256:e0b39dc26f3a0c7596b2408e4fb8da533352b76aaffdc18c7ad28c833c9eb7db"
+  - name: cht.sh
+    url: "https://cht.sh/:cht.sh"
+  - name: docker-compose
+    url: "https://github.com/docker/compose/releases/download/{{ versions['docker-compose'] }}/docker-compose-{{ os }}-{{ arch_alt }}"
+  - name: rbiam
+    url: "https://github.com/mhausenblas/rbIAM/releases/latest/download/rbiam-{{ os }}"
+  - name: container-diff
+    url: "https://storage.googleapis.com/container-diff/latest/container-diff-{{ os }}-{{ arch }}"
 
   archives:
     - name: gcloud
-      url: "https://dl.google.com/dl/cloudsdk/channels/rapid/downloads/google-cloud-sdk-{{ versions['gcloud'] }}-{{ os }}-x86_64.tar.gz"
+      url: "https://dl.google.com/dl/cloudsdk/channels/rapid/downloads/google-cloud-sdk-{{ versions['gcloud'] }}-{{ os }}-{{ arch_alt }}.tar.gz"
       format: tar.gz
-      checksum: "sha256:3ee929cb236cc3a0c1d30dba514df198951f13681523bb3149ac6eb28af46443"
+#      checksum: "sha256:3ee929cb236cc3a0c1d30dba514df198951f13681523bb3149ac6eb28af46443"
     - name: aws
-      url: "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip"
+      url: "https://awscli.amazonaws.com/{{ versions['aws'] }}"
       format: zip
     - name: helm
-      url: "https://get.helm.sh/helm-{{ versions['helm'] }}-{{ os }}-amd64.tar.gz"
+      url: "https://get.helm.sh/helm-{{ versions['helm'] }}-{{ os }}-{{ arch }}.tar.gz"
       format: tar.gz
-      checksum: "sha256:8eb56cbb7d0da6b73cd8884c6607982d0be8087027b8ded01d6b2759a72e34b1"
-    - name: kubectx
-      url: "https://github.com/ahmetb/kubectx/archive/{{ versions['kubectx'] }}.tar.gz"
+#      checksum: "sha256:8eb56cbb7d0da6b73cd8884c6607982d0be8087027b8ded01d6b2759a72e34b1"
+    - name: hugo
+      url: "https://github.com/gohugoio/hugo/releases/download/v{{ versions['hugo']}}/hugo_{{ versions['hugo']}}_{{ os }}-{{ arch }}.tar.gz"
       format: tar.gz
     - name: kubeps1
       url: "https://github.com/jonmosco/kube-ps1/archive/{{ versions['kubeps1'] }}.tar.gz"
       format: tar.gz
-    - name: terraform
-      url: "https://releases.hashicorp.com/terraform/{{ versions['terraform'] }}/terraform_{{ versions['terraform'] }}_{{ os }}_amd64.zip"
-      format: zip
-      checksum: "sha256:be99da1439a60942b8d23f63eba1ea05ff42160744116e84f46fc24f1a8011b6"
     - name: vault
-      url: "https://releases.hashicorp.com/vault/{{ versions['vault'] }}/vault_{{ versions['vault'] }}_{{ os }}_amd64.zip"
+      url: "https://releases.hashicorp.com/vault/{{ versions['vault'] }}/vault_{{ versions['vault'] }}_{{ os }}_{{ arch }}.zip"
+      format: zip
+#      checksum: "sha256:f2bca89cbffb8710265eb03bc9452cc316b03338c411ba8453ffe7419390b8f1"
+    - name: rbac-lookup
+      url: "https://github.com/FairwindsOps/rbac-lookup/releases/download/v{{ versions['rbac-lookup'] }}/rbac-lookup_{{ versions['rbac-lookup'] }}_{{ os | capitalize }}_{{ arch_alt }}.tar.gz"
+      format: tar.gz
+    - name: steampipe
+      url: "https://github.com/turbot/steampipe/releases/download/{{ versions['steampipe'] }}/steampipe_{{ os }}_{{ arch }}.tar.gz"
+      format: tar.gz
+    - name: dive
+      url: "https://github.com/wagoodman/dive/releases/download/v{{ versions['dive'] }}/dive_{{ versions['dive'] }}_{{ os }}_{{ arch }}.tar.gz"
+      format: tar.gz
+    - name: logcli
+      url: "https://github.com/grafana/loki/releases/download/{{ versions['logcli'] }}/logcli-{{ os }}-{{ arch }}.zip"
       format: zip
-      checksum: "sha256:f2bca89cbffb8710265eb03bc9452cc316b03338c411ba8453ffe7419390b8f1"
+    - name: promtool
+      url: "https://github.com/prometheus/prometheus/releases/download/v{{ versions['promtool'] }}/prometheus-{{ versions['promtool'] }}.{{ os }}-{{ arch }}.tar.gz"
+      format: tar.gz
+    - name: amtool
+      url: "https://github.com/prometheus/alertmanager/releases/download/v{{ versions['amtool'] }}/alertmanager-{{ versions['amtool'] }}.{{ os }}-{{ arch }}.tar.gz"
+      format: tar.gz
+    - name: stern
+      url: "https://github.com/stern/stern/releases/download/v{{ versions['stern'] }}/stern_{{ versions['stern'] }}_{{ os }}_{{ arch }}.tar.gz"
+      format: tar.gz
diff --git a/roles/04-cloud-tools/tasks/main.yml b/roles/04-cloud-tools/tasks/main.yml
