You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
|
|
|
- name: Install podman, podman networking plugins, and python support packages
|
|
|
|
dnf:
|
|
|
|
name: ['podman', 'containernetworking-plugins', 'podman-plugins', 'python3-pip']
|
|
|
|
state: present
|
|
|
|
- name: Install podman-compose pip Package
|
|
|
|
pip:
|
|
|
|
name: podman-compose
|
|
|
|
state: present
|
|
|
|
- name: Create Service Users
|
|
|
|
user:
|
|
|
|
name: "{{ item }}"
|
|
|
|
loop:
|
|
|
|
"{{ service_users }}"
|
|
|
|
- name: Enable systemd-user session initialization over ssh
|
|
|
|
lineinfile:
|
|
|
|
dest: /etc/pam.d/sshd
|
|
|
|
line: "session optional pam_systemd.so"
|
|
|
|
|
|
|
|
- name: Enable remote login session linger
|
|
|
|
command:
|
|
|
|
cmd: loginctl enable-linger "{{ item }}"
|
|
|
|
loop:
|
|
|
|
|
|
|
|
- name: Enable permissive_containers SELinux Context
|
|
|
|
selinux_permissive:
|
|
|
|
name: container_t
|
|
|
|
permissive: true
|
|
|
|
"{{ service_users }}"
|
|
|
|
# - name: Copy cni networking driver config into place
|
|
|
|
# blockinfile:
|
|
|
|
# name: "/etc/cni/net.d/podman.conflist"
|
|
|
|
# insertafter: "*\"plugins\": [*"
|
|
|
|
# block: " {
|
|
|
|
# \"type\": \"dnsname\",
|
|
|
|
# \"domainName\": \"dns.podman\",
|
|
|
|
# \"capabilities\": {
|
|
|
|
# \"aliases\": true
|
|
|
|
# }"
|