An opinionated skeleton for an Ansible project with a development environment powered by Vagrant. This should work on Linux, MacOS and Windows.
The goal of this skeleton is having an Ansible setup that works without modification both in the development environment (Vagrant + VirtualBox) and production. Therefore, the Ansible project is set up according to their best practices. This also implies the possibility of a multi-VM Vagrant setup.
Prerequisites on the VirtualBox host system:
- VirtualBox (>= 4.3.x)
- Vagrant (>= 1.7.x)
- Ruby (>= 2.0.0)
- Git (>= 1.9.x) and for Windows hosts also Git Bash
First, modify the Vagrantfile to select your favourite base box. I use a CentOS 7 base box, based on Mischa Taylor's Packer template.
The ansible/ directory contains the Ansible configuration, and should at least contain the standard site.yml.
The vagrant_hosts.yml file specifies the boxen that are controlled by Vagrantfile. You should at least specify a name:, other settings (see below) are optional. A host-only adapter is created and the given IP assigned to that interface. Other optional settings that can be specified:
netmask: by default, the network mask is255.255.255.0. If you want another one, it should be specified.mac: The MAC address to be assigned to the NIC. Several notations are accepted, including "Linux-style" (00:11:22:33:44:55) and "Windows-style" (00-11-22-33-44-55). The separator characters can be omitted altogether (001122334455).intnet: If set totrue, the network interface will be attached to an internal network rather than a host-only adapter.auto_config: If set tofalse, Vagrant will not attempt to configure the network interface.synced_folders: A list of dicts that specify synced folders. Two keys,src(the directory on the host system) anddest(the mount point in the guest) are mandatory, another one,optionsis, well, optional. The possible options are the same ones as specified in the Vagrant documentation on synced folders. One caveat is that the option names should be prefixed with a colon, e.g.owner:becomes:owner:.
- name: srv002
synced_folders:
- src: test
dest: /tmp/test
- src: www
dest: /var/www/html
options:
:create: true
:owner: root
:group: root
:mount_options: ['dmode=0755', 'fmode=0644']For now, two hosts are defined: srv001 and srv002. If you want to add new box(en), you should edit the following files:
vagrant_hosts.ymlso a Vagrant box is created. A few examples that also illustrate the optional settings.
- name: srv003
ip: 192.168.56.13
auto_config: false
- name: srv004
ip: 172.16.0.5
netmask: 255.255.0.0
intnet: true
- name: srv005
ip: 192.168.56.14
mac: "00:03:DE:AD:BE:EF"site.ymlto assign roles to your boxen.
There's a discussion on whether Unit tests are necessary for Ansible. Indeed, with its declarative nature, Ansible largely takes away the need to check for certain things independently from the playbook definitions. For a bit more background, be sure to read through this discussion unit testing for Ansible on Google groups.
However, it is my opinion that playbooks don't cover everything (e.g. whether a config file generated from a template has the expected contents, given the values of variables used). I value some form of testing, independent of the configuration management system. I'm a fan of the Bash Automated Testing System (BATS). It's basically an extension of Bash, so very accessible for any Unix-oriented system administrator. This skeleton supports BATS tests.
Put your BATS test scripts in the test/ directory and they will become available on your guest VMs as a synced folder, mounted in /vagrant/test. Scripts that you want to run on each host should be stored in the test/ directory itself, scripts for individual hosts should be stored in subdirectories with the same name as the host.
The script runbats.sh, when run inside the VM, will install BATS if needed and execute all test scripts for that host.
The Windows bootstrap script is based on the MIT licensed work of:
- Kawsar Saiyeed: https://github.com/KSid/windows-vagrant-ansible
- Jeff Geerling: https://github.com/geerlingguy/JJG-Ansible-Windows