-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathFedora.yml
107 lines (89 loc) · 2.04 KB
/
Fedora.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
---
- name: Set Fedora package lists
ansible.builtin.set_fact:
os_pkgs:
# Utils
- bash-completion
- bind-utils
- file
- gettext
- htop
- jq
- nmap
- npm
- nvtop
- openssl
- pciutils
- pinentry
- pipx
- tmux
- usbutils
# Blog stuff
- lowdown
- rclone
- ffmpeg
- ImageMagick
- pngcrush
- yt-dlp+secretstorage
- fzf
- fd-find
- ripgrep
- neovim
- python3-neovim
# DevOps stuff
- ansible
- python3-ansible-lint
- python3-kubernetes
- awscli
- helm
- kubernetes-client
- terraform-1.10.*
- terraform-ls
# Programming Languages
- golang
- gopls
- python3-lsp-server+all
- ruby
- rubygem-jekyll
- rubygem-puppet-lint
- rust
- rust-analyzer
- cargo
- ShellCheck
npm_pkgs:
- "@ansible/ansible-language-server"
- bash-language-server
- vim-language-server
- yaml-language-server
- name: Add RPMFusion repos
ansible.builtin.dnf:
state: present
name: "https://mirrors.rpmfusion.org/{{ item }}/fedora/\
rpmfusion-{{ item }}-release-{{ ansible_distribution_major_version }}.noarch.rpm"
disable_gpg_check: true
loop:
- free
- nonfree
- name: Add Hashicorp repo
ansible.builtin.yum_repository:
state: present
name: hashicorp
description: Hashicorp Stable - $basearch
baseurl: https://rpm.releases.hashicorp.com/fedora/$releasever/$basearch/stable
enabled: true
gpgcheck: true
gpgkey: https://rpm.releases.hashicorp.com/gpg
owner: root
group: root
mode: "644"
- name: Check crypto policy
ansible.builtin.command:
cmd: update-crypto-policies --show
changed_when: false
register: result
# Allow SSH to olllllllld distros
- name: Set crypto policy to LEGACY
ansible.builtin.command:
cmd: update-crypto-policies --set LEGACY
changed_when: true
when: "result.stdout != 'LEGACY'"