Ansible: автоматизация настройки серверов

1pip install ansible
2ansible --version

1# inventory.ini
2[webservers]
3web1.example.com
4web2.example.com
5
6[dbservers]
7db1.example.com ansible_port=22
8
9[production:children]
10webservers
11dbservers

1# inventory.yml
2all:
3  children:
4    webservers:
5      hosts:
6        web1.example.com:
7        web2.example.com:
8    dbservers:
9      hosts:
10        db1.example.com:
11          ansible_port: 22

1# deploy.yml
2---
3- name: Deploy application
4  hosts: webservers
5  become: yes
6  vars:
7    app_version: "1.0.0"
8    app_port: 3000
9
10  tasks:
11    - name: Update apt cache
12      apt:
13        update_cache: yes
14        cache_valid_time: 3600
15
16    - name: Install Node.js
17      apt:
18        name: nodejs
19        state: present
20
21    - name: Create app directory
22      file:
23        path: /opt/myapp
24        state: directory
25        mode: '0755'
26
27    - name: Copy application files
28      copy:
29        src: ./dist/
30        dest: /opt/myapp/
31        owner: www-data
32        group: www-data
33
34    - name: Install PM2
35      npm:
36        name: pm2
37        global: yes
38
39    - name: Start application
40      pm2:
41        name: myapp
42        script: /opt/myapp/server.js
43        state: started

1roles/
2  nginx/
3    tasks/
4      main.yml
5    handlers/
6      main.yml
7    templates/
8      nginx.conf.j2
9    files/
10    vars/
11      main.yml
12    defaults/
13      main.yml

1---
2- name: Install Nginx
3  apt:
4    name: nginx
5    state: present
6
7- name: Copy Nginx config
8  template:
9    src: nginx.conf.j2
10    dest: /etc/nginx/nginx.conf
11  notify: Reload Nginx
12
13- name: Ensure Nginx is running
14  service:
15    name: nginx
16    state: started
17    enabled: yes

1---
2- name: Reload Nginx
3  service:
4    name: nginx
5    state: reloaded

1worker_processes {{ nginx_worker_processes }};
2
3events {
4    worker_connections {{ nginx_worker_connections }};
5}
6
7http {
8    server {
9        listen {{ nginx_port }};
10        server_name {{ nginx_server_name }};
11        
12        location / {
13            proxy_pass http://127.0.0.1:{{ app_port }};
14        }
15    }
16}

1# group_vars/webservers.yml
2nginx_worker_processes: 4
3nginx_worker_connections: 1024
4nginx_port: 80
5app_port: 3000
6
7# host_vars/web1.yml
8nginx_server_name: web1.example.com

1# config.yml.j2
2database:
3  host: {{ db_host }}
4  port: {{ db_port | default(5432) }}
5  name: {{ db_name }}
6
7features:
8{% for feature in enabled_features %}
9  - {{ feature }}
10{% endfor %}

1# Запуск с тегами
2ansible-playbook deploy.yml --tags "install,config"
3
4# Пропуск тегов
5ansible-playbook deploy.yml --skip-tags "test"

1# Проверка инвентаря
2ansible-inventory -i inventory.ini --list
3
4# Ping всех хостов
5ansible all -m ping -i inventory.ini
6
7# Запуск плейбука
8ansible-playbook deploy.yml -i inventory.ini
9
10# Сухой прогон
11ansible-playbook deploy.yml --check
12
13# Limit к хосту
14ansible-playbook deploy.yml --limit web1.example.com