e7f5c7aea7
- Add development environment inventory structure - Configure libvirt/KVM inventory plugin for VM management - Add grokbox hypervisor host configuration - Include existing VM hosts (pihole, mymx, derp) - Set up SSH ProxyJump through grokbox for all VMs
87 lines
2.3 KiB
YAML
87 lines
2.3 KiB
YAML
---
|
|
# =============================================================================
|
|
# Global Variables for All Hosts
|
|
# =============================================================================
|
|
# Applied to all hosts in the development inventory
|
|
# =============================================================================
|
|
|
|
# Ansible Connection Settings
|
|
# -----------------------------------------------------------------------------
|
|
ansible_connection: ssh
|
|
ansible_python_interpreter: /usr/bin/python3
|
|
|
|
# SSH Connection Optimization
|
|
ansible_ssh_pipelining: true
|
|
ansible_ssh_retries: 3
|
|
|
|
# Privilege Escalation
|
|
ansible_become: true
|
|
ansible_become_method: sudo
|
|
ansible_become_user: root
|
|
|
|
# Fact Gathering
|
|
gather_subset:
|
|
- '!all'
|
|
- '!min'
|
|
- network
|
|
- hardware
|
|
- virtual
|
|
|
|
# Environment
|
|
# -----------------------------------------------------------------------------
|
|
environment_name: development
|
|
deployment_timestamp: "{{ ansible_date_time.iso8601 }}"
|
|
|
|
# Security Settings
|
|
# -----------------------------------------------------------------------------
|
|
security_hardening_enabled: false # Less strict for dev environment
|
|
selinux_enabled: true
|
|
selinux_mode: permissive # Permissive for development
|
|
firewall_enabled: true
|
|
|
|
# System Configuration
|
|
# -----------------------------------------------------------------------------
|
|
timezone: "UTC"
|
|
ntp_servers:
|
|
- 0.pool.ntp.org
|
|
- 1.pool.ntp.org
|
|
- 2.pool.ntp.org
|
|
|
|
# Package Management
|
|
# -----------------------------------------------------------------------------
|
|
package_state: present
|
|
enable_automatic_updates: false # Manual control in dev
|
|
|
|
# Monitoring & Logging
|
|
# -----------------------------------------------------------------------------
|
|
log_rotation_enabled: true
|
|
log_retention_days: 30
|
|
syslog_server: null # No central logging in dev
|
|
|
|
# Essential Packages (from CLAUDE.md)
|
|
# -----------------------------------------------------------------------------
|
|
essential_packages:
|
|
- vim
|
|
- htop
|
|
- tmux
|
|
- jq
|
|
- bc
|
|
- curl
|
|
- wget
|
|
- rsync
|
|
- git
|
|
- python3
|
|
- python3-pip
|
|
|
|
# Security Packages (from CLAUDE.md)
|
|
# -----------------------------------------------------------------------------
|
|
security_packages:
|
|
- aide
|
|
- auditd
|
|
|
|
# Development Flags
|
|
# -----------------------------------------------------------------------------
|
|
dev_mode: true
|
|
debug_enabled: false
|
|
verbose_logging: false
|