Pre-requisites#
Pre-requisites to run playbooks#
In order to use this repo, you need:
- to have a personal GPG key
- to have an account on github and to have added your ssh key to that account
- to ask a teammate to add your GPG key to git-crypt (this will allow you to decrypt secrets)
- to ask a teammate to add yout github account to
group_vars/all/sshd.ymland run thejobs/configureplaybook (this will authorize your ssh public key on all servers for the service accountconfig-op)
Before running the playbooks, you need to use git-crypt to unlock secrets.
Additional pre-requisites to bootstrap a server#
To bootstrap a new server you need to:
- create a
config-opuser on the server - grant the debian user sudoer rights (without password)
- have your ssh public key in
config-opuserauthorized_keys - add the new server to the
inventory.production.inifile and run thejobs/configureplaybook