···
7
-
- name: Configure /etc/apt/sources.list
8
-
ansible.builtin.blockinfile:
9
-
path: /etc/apt/sources.list
13
-
deb http://debian.uchicago.edu/debian/ {{ansible_distribution_release}} main contrib non-free non-free-firmware
14
-
deb http://debian.uchicago.edu/debian/ {{ansible_distribution_release}}-updates main contrib non-free non-free-firmware
15
-
deb http://debian.uchicago.edu/debian/ {{ansible_distribution_release}}-backports main contrib non-free non-free-firmware
16
-
deb http://security.debian.org/debian-security {{ansible_distribution_release}}-security main contrib non-free non-free-firmware
18
-
- name: Disable APT language translations
19
-
ansible.builtin.lineinfile:
20
-
path: /etc/apt/apt.conf.d/99translations
21
-
line: 'Acquire::Languages "none";'
26
-
- name: Update APT repository cache
27
-
ansible.builtin.apt:
30
-
- name: Run dist-upgrade if needed
31
-
ansible.builtin.apt:
35
-
- name: Add third-party repositories
37
-
- name: Ensure /usr/share/keyrings exists
38
-
ansible.builtin.file:
39
-
path: /usr/share/keyrings
43
-
- name: Add Tailscale repo key
44
-
ansible.builtin.get_url:
45
-
url: "https://pkgs.tailscale.com/stable/debian/{{ansible_distribution_release}}.noarmor.gpg"
46
-
dest: /usr/share/keyrings/tailscale-archive-keyring.gpg
48
-
- name: Add Tailscale repo
49
-
ansible.builtin.get_url:
50
-
url: https://pkgs.tailscale.com/stable/debian/bookworm.tailscale-keyring.list
51
-
dest: /etc/apt/sources.list.d/tailscale.list
53
-
- name: Install APT packages
54
-
ansible.builtin.apt:
56
-
default_release: "{{ansible_distribution_release}}-backports"
62
-
- apt-transport-https
78
-
- fonts-noto-color-emoji
94
-
- papirus-icon-theme
111
-
- name: Configure XDG user dirs defaults
112
-
ansible.builtin.blockinfile:
113
-
path: /etc/xdg/user-dirs.defaults
122
-
DOCUMENTS=sync/documents
124
-
PICTURES=sync/pictures
127
-
- name: Remove old ~/.config/user-dirs.dirs
128
-
ansible.builtin.file:
129
-
path: /home/jas/.config/user-dirs.dirs
132
-
- name: Remove unneeded XDG user dirs
133
-
ansible.builtin.file:
134
-
path: "/home/jas/{{ item }}"
146
-
- name: Run xdg-user-dirs-update
147
-
ansible.builtin.command: xdg-user-dirs-update
150
-
- name: Reconfigure fontconfig-config - hinting_type
151
-
ansible.builtin.debconf:
152
-
name: fontconfig-config
153
-
question: fontconfig/hinting_type
157
-
- name: Reconfigure fontconfig-config - enable_bitmaps
158
-
ansible.builtin.debconf:
159
-
name: fontconfig-config
160
-
question: fontconfig/enable_bitmaps
164
-
- name: Reconfigure fontconfig-config - hinting_style
165
-
ansible.builtin.debconf:
166
-
name: fontconfig-config
167
-
question: fontconfig/hinting_style
171
-
- name: Reconfigure fontconfig-config - subpixel_rendering
172
-
ansible.builtin.debconf:
173
-
name: fontconfig-config
174
-
question: fontconfig/subpixel_rendering
178
-
- name: Configure systemd-networkd (desktop)
179
-
ansible.builtin.blockinfile:
180
-
path: /etc/systemd/network/eno1.network
189
-
Address=10.0.0.2/24
191
-
Broadcast=10.0.0.255
193
-
#DNS=100.100.100.100
196
-
- ansible_hostname == "desktop"
198
-
- name: Enable systemd-networkd on startup (desktop)
199
-
ansible.builtin.systemd_service:
200
-
name: systemd-networkd.service
203
-
- ansible_hostname == "desktop"
205
-
- name: Disable NetworkManager and networking.service (desktop)
206
-
ansible.builtin.systemd_service:
210
-
- NetworkManager.service
211
-
- networking.service
213
-
- ansible_hostname == "desktop"
215
-
- name: Disable wpa_supplicant (desktop)
216
-
ansible.builtin.systemd_service:
217
-
name: wpa_supplicant.service
220
-
- ansible_hostname == "desktop"
222
-
- name: Disable ipv6 in GRUB config
223
-
ansible.builtin.lineinfile:
224
-
path: /etc/default/grub
225
-
search_string: "GRUB_CMDLINE_LINUX_DEFAULT"
226
-
line: 'GRUB_CMDLINE_LINUX_DEFAULT="quiet ipv6.disable=1"'
231
-
- name: Change jas user shell to zsh
232
-
ansible.builtin.user:
234
-
shell: /usr/bin/zsh
236
-
- name: Disable CUPS services
237
-
ansible.builtin.systemd_service:
241
-
- cups-browsed.service
244
-
- name: Disable avahi-daemon (desktop)
245
-
ansible.builtin.systemd_service:
246
-
name: avahi-daemon.service
hyperreal.bsky.moonshadow.dev