system-config/playbooks/roles/base-server/tasks/main.yaml

- name: Install base packages
  package:
    state: present
    name: '{{ item }}'
  loop: '{{ base_packages }}'

- name: Include OS-specific variables
  include_vars: "{{ lookup('first_found', params) }}"
  vars:
    params:
      files: "{{ distro_lookup_path }}"
      paths:
        - 'vars'

- name: Install distro specific packages
  package:
    state: present
    name: '{{ item }}'
  loop: '{{ distro_packages }}'

- name: Increase syslog message size in order to capture python tracebacks
  copy:
    content: '$MaxMessageSize 6k'
    dest: /etc/rsyslog.d/99-maxsize.conf
    mode: 0644
  notify: Restart rsyslog

- name: Ensure rsyslog is running
  service:
    name: rsyslog
    enabled: yes
    state: started

- name: Set ssh key for managment
  authorized_key:
    state: present
    user: root
    exclusive: yes
    key: |
      ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDSLlN41ftgxkNeUi/kATYPwMPjJdMaSbgokSb9PSkRPZE7GeNai60BCfhu+ky8h5eMe70Bpwb7mQ7GAtHGXPNU1SRBPhMuVN9EYrQbt5KSiwuiTXtQHsWyYrSKtB+XGbl2PhpMQ/TPVtFoL5usxu/MYaakVkCEbt5IbPYNg88/NKPixicJuhi0qsd+l1X1zoc1+Fn87PlwMoIgfLIktwaL8hw9mzqr+pPcDIjCFQQWnjqJVEObOcMstBT20XwKj/ymiH+6p123nnlIHilACJzXhmIZIZO+EGkNF7KyXpcBSfv9efPI+VCE2TOv/scJFdEHtDFkl2kdUBYPC0wQ92rp puppet-remote-2014-09-15
    key_options: |
      from="{{ bastion_ipv4 }},{{ bastion_ipv6 }},localhost"

- name: Install sshd config
  template:
    src: sshd_config.j2
    dest: /etc/ssh/sshd_config
    owner: root
    group: root
    mode: 0444
  notify: Restart ssh

- name: Disable byobu
  file:
    path: /etc/profile.d/Z98-byobu.sh
    state: absent

- name: Setup RFC3339 bash history timestamps
  copy:
    mode: 0644
    src: bash-history.sh
    dest: /etc/profile.d/bash-history.sh

- name: Include OS-specific tasks
  include_tasks: "{{ lookup('first_found', file_list) }}"
  vars:
    file_list: "{{ distro_lookup_path }}"