Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/jomrr/ansible-role-podman
Ansible role for setting up Podman.
https://github.com/jomrr/ansible-role-podman
ansible ansible-role podman
Last synced: 21 days ago
JSON representation
Ansible role for setting up Podman.
- Host: GitHub
- URL: https://github.com/jomrr/ansible-role-podman
- Owner: jomrr
- License: mit
- Created: 2019-06-17T16:33:28.000Z (over 5 years ago)
- Default Branch: main
- Last Pushed: 2024-07-14T13:34:59.000Z (4 months ago)
- Last Synced: 2024-10-10T22:13:50.292Z (about 1 month ago)
- Topics: ansible, ansible-role, podman
- Language: Jinja
- Homepage:
- Size: 53.7 KB
- Stars: 3
- Watchers: 1
- Forks: 4
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# ansible-role-podman [](https://travis-ci.org/jomrr/ansible-role-podman)
Ansible role for setting up [podman](https://podman.io).
As podman now creates a working default configuration, the variable
`podman_configure` was introduced to skip custom configuration.
In erlier versions podman used `journald` as events_logger
and threw an error in rootless mode,
which made explicit configuration of `file` necessary.
## Supported Platforms
* Archlinux
* CentOS 7
* Ubuntu 18.04
## Requirements
Ansible 2.7 or higher is required for defaults/main/*.yml to work correctly.
## Variables
Variables for this role:
| variable | defaults/main/*.yml | type | description |
| -------- | ------------------- | ---- | ----------- |
| podman_enabled | False | boolean | determine whether role is enabled (true) or not (false) |
| podman_configure | False | boolean | use default configuration when False, write config, when True |
| podman_users | { root: '100000:65535' } | dictionary | podman users that get uid mapping configured |
| podman_manual_mapping | True | boolean | ansible managed /etc/subuid and /etc/subgid entries |
| podman_search_registries | - 'docker.io' | items | list of registries that podman is pulling images from |
| podman_insecure_registries | [] | items | non TLS registries for podman, i.e. localhost:5000 |
| podman_blocked_registries | [] | items | blocked container registries |
| podman_conf_cgroup_manager | 'systemd' | string | /etc/container/libpod.conf: cgroup_manager |
| podman_conf_events_logger | 'file' | string | /etc/container/libpod.conf: events_logger, due to podman error with journald, see [issue](https://github.com/containers/libpod/issues/3126) |
| podman_conf_namespace | '' | string | /etc/container/libpod.conf: namespace (=default namespace) |
| podman_storage_driver | 'overlay' | string | storage driver |
| podman_storage_mountopt | 'nodev' | string | storage driver mount options |
## Dependencies
None.
## Example Playbook
For a basic setup with default values run:
```yaml
---
# play: example-site
# file: site.yml
- hosts: podman_hosts
vars:
podman_enabled: True
podman_users:
root: '100000:65535'
myuser1: '165536:65535'
...
podman_registries:
- 'registry.access.redhat.com'
- 'docker.io'
- 'registry.fedoraproject.org'
- 'quay.io'
- 'registry.centos.org'
roles:
- role: ansible-role-podman
```
## License and Author
* Author:: Jonas Mauer ()
* Copyright:: 2019, Jonas Mauer
Licensed under MIT License;
See LICENSE file in repository.
## References
* [libpod Installation Instructions](https://github.com/containers/libpod/blob/master/install.md)
* [podman manpage](https://github.com/containers/libpod/blob/master/docs/podman.1.md)
* [ArchWiki - Linux Containers](https://wiki.archlinux.org/index.php/Linux_Containers)
* [vbatts: centos7 - non-root podman](https://asciinema.org/a/221441)
* [A preview of running containers without root in RHEL 7.6](https://www.redhat.com/en/blog/preview-running-containers-without-root-rhel-76)