feat: Introduce an Ansible common role for base system configuration, including packages, users, and Netplan networking, alongside Semaphore playbooks for system bootstrapping and Proxmox management.

ansible/roles/common/defaults/main.yml

@@ -0,0 +1,30 @@
+---
+# Common packages to install
+common_packages:
+  - curl
+  - wget
+  - git
+  - vim
+  - htop
+  - net-tools
+  - unzip
+  - dnsutils
+  - software-properties-common
+  - ca-certificates
+  - gnupg
+  - openssh-server
+
+# SSH Configuration
+common_ssh_users:
+  - name: "{{ ansible_user_id }}"
+    keys: [] 
+    # Add your keys in inventory or group_vars override
+
+# Networking
+common_configure_static_ip: false
+common_interface_name: "eth0"
+# common_ip_address: "192.168.1.100/24"
+# common_gateway: "192.168.1.1"
+common_dns_servers:
+  - "1.1.1.1"
+  - "8.8.8.8"

ansible/roles/common/handlers/main.yml

@@ -0,0 +1,6 @@
+---
+- name: Apply Netplan
+  shell: netplan apply
+  async: 45
+  poll: 0
+  ignore_errors: yes

ansible/roles/common/tasks/main.yml

@@ -0,0 +1,10 @@
+---
+- name: Install common packages
+  import_tasks: packages.yml
+
+- name: Configure users and SSH keys
+  import_tasks: users.yml
+
+- name: Configure networking
+  import_tasks: networking.yml
+  when: common_configure_static_ip | bool

ansible/roles/common/tasks/networking.yml

@@ -0,0 +1,23 @@
+---
+- name: Verify required variables for static IP
+  fail:
+    msg: "common_ip_address and common_interface_name must be defined when common_configure_static_ip is true."
+  when:
+    - common_configure_static_ip | bool
+    - (common_ip_address is not defined or common_ip_address | length == 0 or common_interface_name is not defined)
+
+- name: Install netplan.io
+  apt:
+    name: netplan.io
+    state: present
+  when: ansible_os_family == "Debian"
+
+- name: Configure Netplan
+  template:
+    src: netplan_config.yaml.j2
+    dest: /etc/netplan/01-netcfg.yaml
+    owner: root
+    group: root
+    mode: '0644'
+  notify: Apply Netplan
+  when: common_configure_static_ip | bool

ansible/roles/common/tasks/packages.yml

@@ -0,0 +1,12 @@
+---
+- name: Update apt cache
+  apt:
+    update_cache: yes
+    cache_valid_time: 3600
+  when: ansible_os_family == "Debian"
+
+- name: Install common packages
+  apt:
+    name: "{{ common_packages }}"
+    state: present
+  when: ansible_os_family == "Debian"

ansible/roles/common/tasks/users.yml

@@ -0,0 +1,18 @@
+---
+- name: Ensure users exist
+  user:
+    name: "{{ item.name }}"
+    shell: /bin/bash
+    groups: sudo
+    append: yes
+    state: present
+  loop: "{{ common_ssh_users }}"
+  when: item.create_user | default(false)
+
+- name: Add SSH keys
+  authorized_key:
+    user: "{{ item.0.name }}"
+    key: "{{ item.1 }}"
+  loop: "{{ common_ssh_users | subelements('keys', skip_missing=True) }}"
+  loop_control:
+    label: "{{ item.0.name }}"

ansible/roles/common/templates/netplan_config.yaml.j2

@@ -0,0 +1,15 @@
+network:
+  version: 2
+  ethernets:
+    {{ common_interface_name }}:
+      dhcp4: no
+      addresses:
+        - {{ common_ip_address }}
+{% if common_gateway %}
+      gateway4: {{ common_gateway }}
+{% endif %}
+      nameservers:
+        addresses:
+{% for server in common_dns_servers %}
+          - {{ server }}
+{% endfor %}