Compare commits
7 commits
89fa704ea2
...
c9b7874eff
| Author | SHA1 | Date | |
|---|---|---|---|
|
c9b7874eff | ||
|
|
2e2280f50b | ||
|
|
250bb045f3 | ||
|
|
a4e2f22def | ||
|
|
6c8d1b1f28 | ||
|
|
513d29d628 | ||
|
|
e5bf6054fe |
12 changed files with 576 additions and 523 deletions
|
|
@ -14,20 +14,50 @@ Nothing
|
||||||
## Activation / Default
|
## Activation / Default
|
||||||
To enable the local home directory, set the variable `localhome` to `true` (default: false).
|
To enable the local home directory, set the variable `localhome` to `true` (default: false).
|
||||||
|
|
||||||
|
## Configuration / Variables
|
||||||
|
|
||||||
|
* **localhome**
|
||||||
|
This flag indicates whether to use home on local disk.
|
||||||
|
If set to `true` local user's home will be on local disk.
|
||||||
|
Type: *Boolean*
|
||||||
|
Values:
|
||||||
|
* `false` <-- (default)
|
||||||
|
* `true`
|
||||||
|
* **localhome_logout_missing_serverhome**
|
||||||
|
If this flag is set to `true`, the user will be logged out if mounting the serverhome failed.
|
||||||
|
Sometimes mounting the server homes fails, but the user still logs in.
|
||||||
|
For laptops used in schools, it's better to force the server home.
|
||||||
|
For teacher devices that can also be used outside of school, this flag must not be set.
|
||||||
|
Type:: *Boolean*
|
||||||
|
Values:
|
||||||
|
* `false`
|
||||||
|
* `true` <-- (default)
|
||||||
|
|
||||||
|
|
||||||
|
localhome_logout_missing_serverhome
|
||||||
|
|
||||||
## Example
|
## Example
|
||||||
|
|
||||||
* Hosts in group `laptops` will get the localhome.
|
* Hosts in group `laptops` will get the localhome. Teacherlaptops will be part of the `laptop` group (children-entry).
|
||||||
* All computers in the desktop group, except the PC with IP address 10.0.2.33, will have their home directory on the network (default).\
|
* All computers in the desktop group, except the PC with IP address 10.0.2.33, will have their home directory on the network (default).\
|
||||||
The PC with IP address 10.0.2.33 also has a local home directory.
|
The PC with IP address 10.0.2.33 also has a local home directory.
|
||||||
* Hosts in group `desktop` will have home on net (default)
|
* Hosts in group `desktop` will have home on net (default).
|
||||||
|
* If mounting the server home fails on a local home device (except for teacher devices), the user is automatically logged out.
|
||||||
|
|
||||||
inventory.yml
|
inventory.yml
|
||||||
```
|
```
|
||||||
laptops:
|
laptops:
|
||||||
hosts:
|
hosts:
|
||||||
10.0.1.[1-64]:
|
10.0.1.[1-64]:
|
||||||
|
children:
|
||||||
|
teacherlaptops
|
||||||
vars:
|
vars:
|
||||||
localhome: true
|
localhome: true
|
||||||
|
teacherlaptops:
|
||||||
|
hosts:
|
||||||
|
10.0.3.[1-32]:
|
||||||
|
vars:
|
||||||
|
localhome_logout_missing_serverhome: false
|
||||||
desktops:
|
desktops:
|
||||||
hosts:
|
hosts:
|
||||||
10.0.2.[1-32]:
|
10.0.2.[1-32]:
|
||||||
|
|
|
||||||
1021
inventory.yml
1021
inventory.yml
File diff suppressed because it is too large
Load diff
|
|
@ -93,7 +93,7 @@
|
||||||
- role: lmn_wlan
|
- role: lmn_wlan
|
||||||
when:
|
when:
|
||||||
- ansible_interfaces | select('search', 'wl.+') | first is defined
|
- ansible_interfaces | select('search', 'wl.+') | first is defined
|
||||||
- wlan != none
|
- wlan != 'none'
|
||||||
|
|
||||||
tasks:
|
tasks:
|
||||||
- name: Include custom roles
|
- name: Include custom roles
|
||||||
|
|
|
||||||
|
|
@ -46,6 +46,14 @@
|
||||||
"url": "https://peleus.webuntis.com/WebUntis/?school=Ferd.von+Steinbeis#/basic/login",
|
"url": "https://peleus.webuntis.com/WebUntis/?school=Ferd.von+Steinbeis#/basic/login",
|
||||||
"name": "FvS-Stundenplan"
|
"name": "FvS-Stundenplan"
|
||||||
},
|
},
|
||||||
|
{
|
||||||
|
"url": "https://kreis-reutlingen.schulanmeldungen.com/anmeldeformulare/avdual",
|
||||||
|
"name": "Anmeldung AVdual"
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"url": "https://steinbeisschule-reutlingen.schulanmeldungen.com/",
|
||||||
|
"name": "Anmeldung FVS"
|
||||||
|
},
|
||||||
{
|
{
|
||||||
"name": "Debian",
|
"name": "Debian",
|
||||||
"children": [
|
"children": [
|
||||||
|
|
|
||||||
|
|
@ -1,2 +1,3 @@
|
||||||
---
|
---
|
||||||
localhome: false
|
localhome: false
|
||||||
|
localhome_logout_missing_serverhome: true
|
||||||
|
|
|
||||||
|
|
@ -34,6 +34,6 @@
|
||||||
mode: '0755'
|
mode: '0755'
|
||||||
content: |
|
content: |
|
||||||
[[ "${UID}" -gt 10000 ]] && ! findmnt "/lmn/media/${USER}/home" > /dev/null && exit 0
|
[[ "${UID}" -gt 10000 ]] && ! findmnt "/lmn/media/${USER}/home" > /dev/null && exit 0
|
||||||
{% if 'teacherlaptop' not in group_names %}
|
{% if localhome_logout_missing_serverhome %}
|
||||||
[[ "${UID}" -gt 10000 ]] && ! findmnt /srv/samba/schools/default-school > /dev/null && exit 0
|
[[ "${UID}" -gt 10000 ]] && ! findmnt /srv/samba/schools/default-school > /dev/null && exit 0
|
||||||
{% endif %}
|
{% endif %}
|
||||||
|
|
|
||||||
|
|
@ -36,3 +36,13 @@
|
||||||
name: usersquid.service
|
name: usersquid.service
|
||||||
scope: global
|
scope: global
|
||||||
enabled: true
|
enabled: true
|
||||||
|
|
||||||
|
- name: Deploy http proxy config
|
||||||
|
ansible.builtin.copy:
|
||||||
|
dest: /etc/environment.d/10-lmn-proxy.conf
|
||||||
|
mode: '0644'
|
||||||
|
content: |
|
||||||
|
http_proxy="http://localhost:3128"
|
||||||
|
https_proxy="http://localhost:3128"
|
||||||
|
ftp_proxy="http://localhost:3128"
|
||||||
|
no_proxy="{{ no_proxy }}"
|
||||||
|
|
|
||||||
|
|
@ -7,6 +7,8 @@ access_log none
|
||||||
cache_log /dev/null
|
cache_log /dev/null
|
||||||
logfile_rotate 0
|
logfile_rotate 0
|
||||||
pid_filename none
|
pid_filename none
|
||||||
{% if vm_support %}http_port 192.168.122.1:3128{% endif %}
|
{% if vm_support %}
|
||||||
|
http_port 192.168.122.1:3128
|
||||||
|
{% endif %}
|
||||||
http_port 127.0.0.1:3128
|
http_port 127.0.0.1:3128
|
||||||
http_access allow all
|
http_access allow all
|
||||||
|
|
|
||||||
|
|
@ -7,6 +7,8 @@ access_log none
|
||||||
cache_log /dev/null
|
cache_log /dev/null
|
||||||
logfile_rotate 0
|
logfile_rotate 0
|
||||||
pid_filename none
|
pid_filename none
|
||||||
{% if vm_support %}http_port 192.168.122.1:3128{% endif %}
|
{% if vm_support %}
|
||||||
|
http_port 192.168.122.1:3128
|
||||||
|
{% endif %}
|
||||||
http_port 127.0.0.1:3128
|
http_port 127.0.0.1:3128
|
||||||
http_access allow all
|
http_access allow all
|
||||||
|
|
|
||||||
|
|
@ -1,15 +1,4 @@
|
||||||
---
|
---
|
||||||
- name: Deploy http proxy config
|
|
||||||
ansible.builtin.copy:
|
|
||||||
dest: /etc/environment.d/10-lmn-proxy.conf
|
|
||||||
mode: '0644'
|
|
||||||
content: |
|
|
||||||
http_proxy="{{ proxy }}"
|
|
||||||
https_proxy="{{ proxy }}"
|
|
||||||
ftp_proxy="{{ proxy }}"
|
|
||||||
no_proxy="{{ no_proxy }}"
|
|
||||||
when: "'teacherlaptop' not in group_names"
|
|
||||||
|
|
||||||
- name: Set aptcache
|
- name: Set aptcache
|
||||||
ansible.builtin.copy:
|
ansible.builtin.copy:
|
||||||
dest: /etc/apt/apt.conf
|
dest: /etc/apt/apt.conf
|
||||||
|
|
|
||||||
Binary file not shown.
|
|
@ -129,7 +129,7 @@
|
||||||
- name: Deploy sudo configurations
|
- name: Deploy sudo configurations
|
||||||
ansible.builtin.copy:
|
ansible.builtin.copy:
|
||||||
src: lmn-vm
|
src: lmn-vm
|
||||||
dest: "/etc/sudoers.d/90-{{ item }}"
|
dest: /etc/sudoers.d/90-lmn-vm
|
||||||
owner: root
|
owner: root
|
||||||
group: root
|
group: root
|
||||||
mode: '0700'
|
mode: '0700'
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue