build(lint): Adding YAML and Ansible lint

Execute YAML and Ansible lint using GitHub Actions.
Instructions on the README about this role, purpose and goals.

Author: macunha1

.github/actions/config/ansible.yaml

@@ -0,0 +1,6 @@
+---
+skip_list:
+  # YAML lint is executed apart from Ansible lint to support custom
+  # configurations
+  - yaml
+  - role-name

.github/actions/config/yamllint.yaml

@@ -0,0 +1,49 @@
+---
+rules:
+  braces:
+    min-spaces-inside: 0
+    max-spaces-inside: 0
+    min-spaces-inside-empty: -1
+    max-spaces-inside-empty: -1
+  brackets:
+    min-spaces-inside: 0
+    max-spaces-inside: 0
+    min-spaces-inside-empty: -1
+    max-spaces-inside-empty: -1
+  colons:
+    max-spaces-before: 0
+    max-spaces-after: 1
+  commas:
+    max-spaces-before: 0
+    min-spaces-after: 1
+    max-spaces-after: 1
+  comments:
+    require-starting-space: yes
+    min-spaces-from-content: 1
+  document-end: disable
+  document-start: enable
+  empty-lines:
+    max: 1
+    max-start: 0
+    max-end: 0
+  hyphens:
+    max-spaces-after: 1
+  indentation:
+    spaces: consistent
+    indent-sequences: consistent
+    check-multi-line-strings: no
+  # key-duplicates: enable
+  line-length:
+    max: 120
+    allow-non-breakable-words: yes
+  new-line-at-end-of-file: enable
+  new-lines:
+    type: unix
+  # trailing-spaces: disable
+  truthy:
+    allowed-values:
+      - !!str yes
+      - !!str true
+      - !!str no
+      - !!str false
+    level: warning

.github/workflows/ci.yaml

@@ -0,0 +1,51 @@
+---
+name: Continuous Integration
+
+on:
+  push:
+    branches: ["**"]
+  pull_request:
+    branches: [master]
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    strategy:
+      fail-fast: false
+      matrix:
+        python-version:
+          - "3.8"
+
+    steps:
+      - uses: actions/checkout@v2
+
+      - name: Set up Python ${{ matrix.python-version }}
+        uses: actions/setup-python@v2
+        with:
+          python-version: ${{ matrix.python-version }}
+
+      - name: Enable cache for (pip) dependencies
+        uses: actions/cache@v2
+        with:
+          path: ~/.cache/pip
+          key: ${{ runner.os }}-pip
+          restore-keys: |
+            ${{ runner.os }}-pip-
+
+      - name: Lint | Check Ansible and YAML
+        run: |
+          python -m pip install --upgrade pip
+          python -m pip install yamllint ansible ansible-lint
+
+          yamllint -c .github/actions/config/yamllint.yaml .
+          ansible-lint -c .github/actions/config/ansible.yaml .
+
+      - name: Galaxy | Import
+        if: ${{ github.ref == 'refs/heads/master' }}
+        run: |
+          ansible-galaxy role import \
+            --api-key ${ANSIBLE_GALAXY_API_KEY} \
+            --branch master \
+            macunha1 github_actions_runner
+        env:
+          ANSIBLE_GALAXY_API_KEY: ${{ secrets.ANSIBLE_GALAXY_API_KEY }}

README.md

@@ -1,16 +1,86 @@
 <h1 align="center">GitHub Actions self-hosted Runner Ansible role</h1>
 
-Work In Progress.
+An Ansible role that installs and configures GitHub Actions self-hosted Runners
+inside one or multiple hosts, you can re-use it for many different URLs
+(repositories or organizations) inside the same host in order to re-use it as
+much as possible.
 
-All-in-all the features of this Ansible role are implemented just not
-documented and well-presented yet. Ansible Galaxy repository import and
-documentation about the variables are on its way.
+Main goals of this role:
 
-To-dos:
+- _avoid waste_: re-use the same host to provide a build environment for
+  multiple repositories or organizations;
+- _idempotence_: executing the role many times won't make anything break, steps
+  have checks that validate whether or not they should be executed;
 
-- [ ] Improve this README with variables + instructions;
-- [ ] Import to Ansible Galaxy;
-- [ ] Add CI using molecule;
-- [ ] Integrate GitHub actions to run the CI;
-- [ ] Add Code lint (YAML lint + ansible lint) on CI;
-- [ ] Include documentation
+## Variables
+
+For an exhaustive list of variables check the [defaults](defaults/main.yaml)
+file. Ideally, all values will have commentaries describing what are their
+purposes and by the default value you can tell the type.
+
+### Required variables
+
+Following values are required since there is no way to register the self-hosted
+Runner without them
+
+| Name                   | Description                                        |
+| ---------------------- | -------------------------------------------------- |
+| gh_runner_config_url   | GitHub Repository or Organization URL              |
+| gh_runner_config_token | GitHub Registration token to authenticate the host |
+
+## Example Playbook
+
+Simplest use case: Single repository configuration on one host.
+
+```yaml
+- hosts: foo
+  roles:
+    - role: macunha1.github_actions_runner
+      vars:
+        gh_runner_config_labels:
+          - linux
+          - self-hosted
+
+        gh_runner_config_url: https://github.com/macunha1/ansible-github-actions-runner
+        gh_runner_config_token: AC5TNLJP9SBAFNEKKLLBLF264J8XO
+```
+
+Complex use case to which this role was created for
+
+```yaml
+- hosts: foo
+  roles:
+    - role: macunha1.github_actions_runner
+      vars:
+        gh_runner_config_labels:
+          - linux
+          - self-hosted
+
+        gh_runner_config_url: https://github.com/macunha1/ansible-github-actions-runner
+        gh_runner_config_token: AC5TNLJP9SBAFNEKKLLBLF264J8XO
+
+    - role: macunha1.github_actions_runner
+      vars:
+        gh_runner_config_url: https://github.com/macunha1/another-repository
+        gh_runner_config_token: AC5CQV3IJRR2OAFGEFCPJ0WJPJQXO
+
+    - role: macunha1.github_actions_runner
+      vars:
+        gh_runner_config_url: https://github.com/macunha-acme-corp
+        gh_runner_config_token: ACYWUR9MHGR9U58C34W9ZK00UNBF
+```
+
+Note that despite using the same host, each one of these GitHub Actions Runner
+configuration will have its own path and credentials. Therefore, they can live
+well in harmony without killing each other.
+
+## Contribute
+
+[![PRs Welcome](https://img.shields.io/badge/PRs-welcome-brightgreen.svg?style=flat-square)](http://makeapullrequest.com)
+
+Feel free to fill [an issue](https://github.com/macunha1/ansible-github-actions-runner/issues)
+containing feature request(s), or (even better) to send me a Pull request, I
+would be happy to collaborate with you.
+
+If this role didn't work for you, or if you found some bug during the execution,
+let me know.

includes/download.yaml

@@ -15,6 +15,7 @@
 - block:
     - name: GitHub Actions Runner | Download package
       get_url:
+        # yamllint disable-line rule:line-length
         url: "{{ gh_runner_download_base_url }}/v{{ gh_runner_version }}/actions-runner-{{ gh_runner_architecture }}-{{ gh_runner_version }}.tar.gz"
         dest: "{{ tmp_download_path }}/actions-runner-{{ gh_runner_version }}.tar.gz"
         mode: 0400

includes/install.yaml

@@ -1,6 +1,6 @@
 ---
 - name: GitHub Actions Runner | Install dependencies
-  shell:
+  command:
     cmd: "{{ gh_runner_path }}/bin/installdependencies.sh"
     chdir: "{{ gh_runner_path }}"
   become: true
@@ -36,7 +36,7 @@
   when: not is_this_host_registered.stat.exists
 
 - name: GitHub Actions Runner | Remove previous configuration before proceeding
-  shell:
+  command:
     cmd: >-
       {{ gh_runner_path }}/config.sh remove \
         --token {{ gh_runner_config_token }}
@@ -55,7 +55,7 @@
     - configure
 
 - name: GitHub Actions Runner | Configure Runner
-  shell:
+  command:
     cmd: >-
       {{ gh_runner_path }}/config.sh \
         --unattended --replace \
@@ -105,18 +105,29 @@
     - configure
 
 - name: GitHub Actions Runner | Install service
-  shell:
+  command:
     cmd: "{{ gh_runner_path }}/svc.sh install"
     chdir: "{{ gh_runner_path }}"
   become: true
   when: not is_this_host_registered.stat.exists
   tags:
     - install
 
+- name: GitHub Actions Runner | Check service status
+  command:
+    cmd: "{{ gh_runner_path }}/svc.sh status"
+    chdir: "{{ gh_runner_path }}"
+  register: gh_runner_service_status
+  changed_when: false # never changes, this is just a read-only command
+  become: true
+  tags:
+    - configure
+
 - name: GitHub Actions Runner | Start service
-  shell:
+  command:
     cmd: "{{ gh_runner_path }}/svc.sh start"
     chdir: "{{ gh_runner_path }}"
+  when: not '"active (running)"' in gh_runner_service_status.stdout
   become: true
   tags:
     - configure

includes/uninstall.yaml

@@ -1,16 +1,18 @@
 ---
 - name: GitHub Actions Runner [!!] DESTROY! | De-register Runner
-  shell:
+  command:
     cmd: >-
       {{ gh_runner_path }}/config.sh \
         remove --token "{{ gh_runner_config_token }}"
     chdir: "{{ gh_runner_path }}"
+  changed_when: gh_runner_remove_host
   become: true
 
 - name: GitHub Actions Runner [!!] DESTROY! | Stop service
-  shell:
+  command:
     cmd: "{{ gh_runner_path }}/svc.sh uninstall"
     chdir: "{{ gh_runner_path }}"
+  changed_when: gh_runner_remove_host
   become: true
 
 - name: GitHub Actions Runner [!!] DESTROY! | Delete workspace and installations
@@ -20,4 +22,5 @@
   with_items:
     - "{{ gh_runner_installation_path }}/"
     - "{{ gh_runner_workspace_path }}/"
+  changed_when: gh_runner_remove_host
   become: true

meta/main.yaml

@@ -0,0 +1,36 @@
+---
+galaxy_info:
+  role_name: github_actions_runner
+  author: Matheus Cunha
+  description: >
+    Idempotent Ansible role that installs and configures self-hosted GitHub
+    Actions Runners (yeah, plural!)
+  license: MIT
+  company: None
+  min_ansible_version: 2.2
+  platforms:
+    - name: Debian
+      versions:
+        - jessie
+        - stretch
+        - buster
+    - name: EL
+      versions:
+        - 6
+        - 7
+        - 8
+    - name: Fedora
+      versions:
+        - 34
+        - 35
+    - name: Ubuntu
+      versions:
+        - xenial
+        - trusty
+        - bionic
+        - focal
+  galaxy_tags:
+    - github
+    - actions
+    - workflows
+    - runner

tasks/main.yaml

@@ -17,6 +17,8 @@
     #
     # Therefore, each GitHub repository or organization URL will be hashed to
     # compose the GitHub Actions Runner path.
+    #
+    # yamllint disable-line rule:line-length
     gh_runner_path: "{{ gh_runner_installation_path }}/{{ gh_runner_version }}/{{ gh_runner_config_url | hash('sha256') }}"
 
   tags: