M README.org => README.org +1 -1
@@ 2,7 2,7 @@
Ansible Playbook I use to provision my Alpine Linux server
* Requirements
-- ~ansible~
+- ~ansible~ (~ansible-core~ is not enough, as I'm using ~community~ packages)
* Running
#+begin_src bash
M group_vars/all/vars.yml => group_vars/all/vars.yml +2 -0
@@ 6,3 6,5 @@ base_packages:
- htop
- doas
shell: /bin/ash
+docker_subid: "100000:65536"
+container_dir: "/home/{{ username }}"
A roles/system/defaults/docker.yml => roles/system/defaults/docker.yml +2 -0
@@ 0,0 1,2 @@
+---
+docker_subid: "100000:65536"
M roles/system/defaults/main.yml => roles/system/defaults/main.yml +1 -0
@@ 1,3 1,4 @@
+---
# default username
username: user
# default user password
A roles/system/tasks/docker.yml => roles/system/tasks/docker.yml +37 -0
@@ 0,0 1,37 @@
+---
+- name: Ensure docker is installed
+ community.general.apk:
+ name:
+ - docker
+ - docker-openrc
+ - docker-cli-compose
+ - py3-docker-py
+ - docker-rootless-extras
+ - shadow-subids
+ state: latest
+
+# Run docker rootless
+- name: Setup subuid for docker-rootless
+ lineinfile:
+ path: /etc/subuid
+ search_string: "^{{ username }}:{{ docker_subid }}"
+ line: "{{ username }}:{{ docker_subid }}"
+
+- name: Setup subgid for docker-rootless
+ lineinfile:
+ path: /etc/subgid
+ search_string: "^{{ username }}:{{ docker_subid }}"
+ line: "{{ username }}:{{ docker_subid }}"
+
+- name: Ensure cgroups is running
+ service:
+ name: cgroups
+ enabled: true
+ state: started
+
+# Docker startup
+- name: Ensure docker is running, and starts on boot
+ service:
+ name: docker
+ enabled: true
+ state: started
M roles/system/tasks/main.yml => roles/system/tasks/main.yml +1 -0
@@ 3,3 3,4 @@
- include_tasks: repo.yml
- include_tasks: packages.yml
- include_tasks: shell.yml
+- include_tasks: docker.yml