Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/ringods/ansible-atriso-config

Automated setup of my MacOS system(s) based on Superlumic
https://github.com/ringods/ansible-atriso-config

ansible macos

Last synced: 27 days ago
JSON representation

Automated setup of my MacOS system(s) based on Superlumic

Host: GitHub
URL: https://github.com/ringods/ansible-atriso-config
Owner: ringods
Created: 2018-12-21T08:56:44.000Z (almost 6 years ago)
Default Branch: main
Last Pushed: 2024-07-29T08:51:00.000Z (4 months ago)
Last Synced: 2024-10-04T07:10:30.856Z (about 1 month ago)
Topics: ansible, macos
Language: Python
Size: 113 KB
Stars: 3
Watchers: 0
Forks: 1
Open Issues: 5
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# ansible-atriso-config

Ansible driven configuration automation for:

* macOS
* [PiKVM](https://pikvm.org/)

Initial inspiration for the macOS setup from [Superlumic](https://github.com/superlumic)
but went with a more purer Ansible driven setup similar to [geerlingguy/mac-dev-playbook](https://github.com/geerlingguy/mac-dev-playbook).

## Inspiration

* [superlumic](https://github.com/superlumic/superlumic-config)
* [osxc](https://github.com/osxc/starter)
* [mac-dev-playbook](https://github.com/geerlingguy/mac-dev-playbook)
* [macos-virtualbox-vm](https://github.com/geerlingguy/macos-virtualbox-vm)

## Preparation

* Install Ansible
* clone this repo
* run `ansible-galaxy install -r requirements.yml`

## Usage

For the MacBook Pro laptops, use one of the following commands:

* run `ansible-playbook playbooks/mac-personal/main.yml -K`
* run `ansible-playbook playbooks/mac-work/main.yml -K`

For the PiKVM, use the following command:

* run `ansible-playbook playbooks/pikvm/main.yml --extra-vars @secrets.yml`

The `secrets.yml` file contains a DNSimple API token created on the [DNSimple portal](https://dnsimple.com/dashboard).

The ssh keys can be found in 1Password.

## Needs automation

The following parts need conversion into Ansible roles & tasks, but are documented here in the meantime.

### PiKVM

After the Ansible setup, the PiKVM has the Certbot DNSimple plugin installed, together with the config file containing a DNSimple API token. The following commands are a one time setup required to get the certificate generated and renewed automatically:

```bash
$ rw
$ kvmd-certbot certonly --dns-dnsimple --dns-dnsimple-credentials /var/lib/kvmd/pst/data/certbot/runroot/certbot-dnsimple.conf -d kvm.home.atriso.be --email [email protected] -n --agree-tos
$ kvmd-certbot install_nginx kvm.home.atriso.be
$ kvmd-certbot install_vnc kvm.home.atriso.be
$ systemctl enable --now kvmd-certbot.timer
$ ro
```