nginx and docker playbook

Author: mostafa6765

.gitignore

@@ -0,0 +1,17 @@
+# Ignore Ansible Vault files
+*.vault
+
+# Ignore temporary files
+*.retry
+*.log
+
+# Ignore other common files
+*.swp
+*.swo
+.DS_Store
+Thumbs.db
+
+.env
+
+credentials/*
+!credentials/README.md

README.md

@@ -0,0 +1 @@
+https://chatgpt.com/c/66ed8251-8394-8002-9b4a-029f4255770c

ansi.sh

@@ -0,0 +1,13 @@
+#!/bin/bash
+
+# Load environment variables from .env file
+if [ -f .env ]; then
+    export $(grep -v '^#' .env | xargs)
+else
+    echo ".env file not found!"
+    exit 1
+fi
+
+# Run Ansible playbook with the loaded variables
+ansible-playbook ./playbook/docker-playbook.yml \
+  --extra-vars "the_ip=${MACHINE_IP} the_user=${MACHINE_USER} the_key_path=${SSH_PRIVATE_KEY_PATH}"

ansible.cfg

@@ -0,0 +1,3 @@
+[defaults]
+inventory = ./hosts/inventory.ini
+roles_path = ./roles

credentials/README.md

@@ -0,0 +1,8 @@
+```bash
+cd credentials
+ssh-keygen -t rsa -b 2048 -f "$(pwd)/ansible_hub_key"
+```
+
+```bash
+ssh -i ./ansible_hub_key [email protected]
+```

hosts/inventory.ini

@@ -0,0 +1,7 @@
+[web_servers]
+web_server ansible_host={{the_ip}}
+
+[web_servers:vars]
+ansible_user={{the_user}}
+ansible_ssh_private_key_file={{the_key_path}}
+

playbook/docker-playbook.yml

@@ -0,0 +1,6 @@
+---
+- name: Configure Docker on Web Servers
+  hosts: web_servers
+  become: yes
+  roles:
+    - docker

playbook/nginx-playbook.yml

@@ -0,0 +1,6 @@
+---
+- name: Configure Nginx on web servers
+  hosts: web_servers
+  become: yes
+  roles:
+    - nginx

roles/docker/tasks/main.yml

@@ -0,0 +1,63 @@
+- name: Install prerequisites for Docker repository
+  become: true
+  apt: 
+    name:
+      - apt-transport-https
+      - ca-certificates
+      - curl
+      - gnupg
+      - software-properties-common
+    force_apt_get: True
+    update_cache: yes
+
+- name: Add Docker GPG key
+  become: true
+  apt_key:
+    url: https://download.docker.com/linux/ubuntu/gpg
+
+- name: Add Docker APT repository.
+  become: true
+  apt_repository:
+    #repo: deb [arch=amd64] https://download.docker.com/{{ ansible_system | lower }}/{{ ansible_distribution | lower }} {{ ansible_distribution_release }} stable
+    repo: deb [arch=amd64] https://download.docker.com/linux/ubuntu focal stable
+
+- name:  Install Docker CE.
+  become: true
+  apt:
+    name:
+      - docker-ce
+      - docker-ce-cli
+      - containerd.io
+    force_apt_get: True
+    update_cache: yes
+    allow_unauthenticated: yes
+
+- name: Install Docker-compose.
+  become: true
+  get_url:
+    url: "https://github.com/docker/compose/releases/download/1.24.0/docker-compose-{{ansible_system}}-{{ansible_architecture}}"
+    dest: /usr/local/bin/docker-compose
+    mode: +x
+
+- name: Changing permission of "/var/run/docker.sock", adding "777"
+  become: true
+  file: 
+    dest: /var/run/docker.sock
+    mode: 0777
+
+- name: Pull Docker image
+  docker_image:
+    name: hiremostafa/express-demo:1.0.1
+    source: pull
+
+- name: Run Docker container
+  docker_container:
+    name: express_demo
+    image: hiremostafa/express-demo:1.0.1
+    state: started
+    published_ports:
+      - "3006:3006"
+    env:
+      name: kamal
+
+

roles/nginx/defaults/main.yml

@@ -0,0 +1 @@
+---

roles/nginx/files/index.html

@@ -0,0 +1,60 @@
+<!DOCTYPE html>
+<html lang="en" class="h-full">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Ansible Nginx Installation</title>
+    <link href="https://cdn.jsdelivr.net/npm/[email protected]/dist/tailwind.min.css" rel="stylesheet">
+</head>
+<body class="flex flex-col min-h-full bg-gray-100 font-sans">
+
+    <header class="bg-green-600 text-white py-6">
+        <div class="container mx-auto text-center">
+            <h1 class="text-4xl font-bold">Ansible Nginx Installation</h1>
+            <p class="mt-2 text-xl">Automated Deployment Success!</p>
+        </div>
+    </header>
+
+    <main class="flex-grow container mx-auto mt-8 px-4 mb-8">
+        <div class="bg-white shadow-md rounded-lg p-6 mb-8">
+            <h2 class="text-2xl font-semibold mb-4 text-green-600">About This Deployment</h2>
+            <p class="text-gray-700 mb-4">
+                This page is served by Nginx, which was automatically installed and configured using Ansible. 
+                This demonstrates the power of automation in deploying web servers quickly and consistently.
+            </p>
+            <div class="mt-6">
+                <a href="https://docs.ansible.com" target="_blank" class="bg-green-600 text-white py-2 px-4 rounded hover:bg-green-500 mr-4">Ansible Docs</a>
+                <a href="https://nginx.org/en/docs/" target="_blank" class="bg-blue-600 text-white py-2 px-4 rounded hover:bg-blue-500">Nginx Docs</a>
+            </div>
+        </div>
+
+        <div class="grid md:grid-cols-2 gap-8">
+            <div class="bg-white shadow-md rounded-lg p-6">
+                <h3 class="text-xl font-semibold mb-4 text-green-600">Ansible Benefits</h3>
+                <ul class="list-disc list-inside text-gray-700">
+                    <li>Automated configuration management</li>
+                    <li>Consistent deployments across environments</li>
+                    <li>Scalable infrastructure management</li>
+                    <li>Reduced human error in deployments</li>
+                </ul>
+            </div>
+            <div class="bg-white shadow-md rounded-lg p-6">
+                <h3 class="text-xl font-semibold mb-4 text-blue-600">Nginx Features</h3>
+                <ul class="list-disc list-inside text-gray-700">
+                    <li>High performance web server</li>
+                    <li>Reverse proxy capabilities</li>
+                    <li>Load balancing</li>
+                    <li>HTTP caching</li>
+                </ul>
+            </div>
+        </div>
+    </main>
+
+    <footer class="bg-gray-800 text-white py-4 mt-auto">
+        <div class="container mx-auto text-center">
+            <p>&copy; 2024 Ansible Nginx Deployment. Created with automation.</p>
+        </div>
+    </footer>
+
+</body>
+</html>

roles/nginx/handlers/main.yml

@@ -0,0 +1,10 @@
+---
+- name: Restart Nginx
+  service:
+    name: nginx
+    state: restarted
+
+- name: Reload Nginx
+  service:
+    name: nginx
+    state: reloaded

roles/nginx/tasks/main.yml

@@ -0,0 +1,60 @@
+---
+- name: Install Nginx
+  become: true
+  apt:
+    name: nginx
+    force_apt_get: true
+    update_cache: yes
+
+- name: Ensure Nginx sites-available directory exists
+  file:
+    path: /etc/nginx/sites-available
+    state: directory
+    mode: '0755'
+
+- name: Ensure Nginx sites-enabled directory exists
+  file:
+    path: /etc/nginx/sites-enabled
+    state: directory
+    mode: '0755'
+
+- name: Ensure website directory exists
+  file:
+    path: "/var/www/{{ server_name }}"
+    state: directory
+    owner: www-data
+    group: www-data
+    mode: '0755'
+
+- name: Deploy Nginx site configuration
+  template:
+    src: "nginx.conf.j2"
+    dest: "/etc/nginx/sites-available/{{ server_name }}.conf"
+  notify: Reload Nginx
+
+- name: Enable Nginx site configuration
+  file:
+    src: "/etc/nginx/sites-available/{{ server_name }}.conf"
+    dest: "/etc/nginx/sites-enabled/{{ server_name }}.conf"
+    state: link
+  notify: Reload Nginx
+
+- name: Remove default Nginx site configuration
+  file:
+    path: /etc/nginx/sites-enabled/default
+    state: absent
+  notify: Reload Nginx
+
+- name: Copy index.html to Nginx root
+  copy:
+    src: index.html
+    dest: "/var/www/{{ server_name }}/index.html"
+    owner: www-data
+    group: www-data
+    mode: '0644'
+
+- name: Ensure Nginx is started and enabled
+  service:
+    name: nginx
+    state: started
+    enabled: yes

roles/nginx/templates/nginx.conf.j2

@@ -0,0 +1,13 @@
+server {
+    listen 80;
+    listen [::]:80;
+
+    root /var/www/{{ server_name }};
+    index index.html index.htm index.nginx-debian.html;
+
+    server_name {{ server_name }};
+
+    location / {
+        try_files $uri $uri/ =404;
+    }
+}

roles/nginx/vars/main.yml

@@ -0,0 +1,3 @@
+---
+nginx_port: 80
+server_name: localhost