nullstream · April 11, 2018 03:42
diff --git a/bootstrap-openbsd-new.sh b/bootstrap-openbsd-new.sh
 #!/bin/sh                                                                        
 # Ensure wxallowed in /usr/local in fstab                                        
 # Inventory should have for each obsd host:  ansible_python_interpreter=/usr/local/bin/python become_method=doas 
 #                                                                                
 # ./bootstrap-openbsd-new.sh hostname user                                                                                                                                                                                                                                                                                                                 
 ANSIBLE_USER=control                                                             
 INVENTORY=hosts                                                                  
 # Add host key to known_hosts                                                    
 ssh-keyscan -H $1 >> ~/.ssh/known_hosts                                          
 # Add host to inventory                                                          
 echo $1 ansible_python_interpreter=/usr/local/bin/python become_method=doas >> $INVENTORY
 # Prime doas                                                                       
 ansible $1 -i $INVENTORY -m raw -b -a "echo 'permit nopass :wheel as root' >> /etc/doas.conf" --become-method=su -kK -u $2 
 # Setup installurl for packages.                                                   
 ansible $1 -i $INVENTORY -m raw -a "doas sh -c 'echo 'https://cdn.openbsd.org/pub/OpenBSD/' > /etc/installurl'" --become-method=su -kK -u $2 
 # Install python for ansible                                                       
 ansible $1 -i $INVENTORY -m raw -a "doas pkg_add -z python-2" --become-method=su -kK -u $2 
 # Setup python for use.                                                            
 ansible $1 -i $INVENTORY -m raw -a "ln -sf /usr/local/bin/python2.7 /usr/local/bin/python; ln -sf /usr/local/bin/python2.7-2to3 /usr/local/bin/2to3 ; ln -sf /usr/local/bin/python2.7-config /usr/local/bin/python-config;  ln -sf /usr/local/bin/pydoc2.7  /usr/local/bin/pydoc" -b --become-method=su -Kk -u $2 
 # Create ansible user                                                              
 ansible $1 -i $INVENTORY -m shell -a "useradd -c 'Ansible User' -d /home/${ANSIBLE_USER} -m -G wheel ${ANSIBLE_USER}" -b --become-method=doas -u $2 
 KEY=`cat ~/.ssh/id_rsa.pub`                                                        
 # Setup authorized_key for                                                         
 ansible $1 -i $INVENTORY -m shell -a "mkdir -p ~${ANSIBLE_USER}/.ssh; echo ${KEY} >> ~${ANSIBLE_USER}/.ssh/authorized_keys ; chown control:control ~control/.ssh" --become-method=doas -kK -bu  $2 
 # Test ansible control.                                                            
 ansible $1 -i $INVENTORY -m shell -a "touch /root/test; rm /root/test" -b --become-method=doas
	#!/bin/sh
	# Ensure wxallowed in /usr/local in fstab
	# Inventory should have for each obsd host: ansible_python_interpreter=/usr/local/bin/python become_method=doas
	#
	# ./bootstrap-openbsd-new.sh hostname user
	ANSIBLE_USER=control
	INVENTORY=hosts
	# Add host key to known_hosts
	ssh-keyscan -H $1 >> ~/.ssh/known_hosts
	# Add host to inventory
	echo $1 ansible_python_interpreter=/usr/local/bin/python become_method=doas >> $INVENTORY
	# Prime doas
	ansible $1 -i $INVENTORY -m raw -b -a "echo 'permit nopass :wheel as root' >> /etc/doas.conf" --become-method=su -kK -u $2
	# Setup installurl for packages.
	ansible $1 -i $INVENTORY -m raw -a "doas sh -c 'echo 'https://cdn.openbsd.org/pub/OpenBSD/' > /etc/installurl'" --become-method=su -kK -u $2
	# Install python for ansible
	ansible $1 -i $INVENTORY -m raw -a "doas pkg_add -z python-2" --become-method=su -kK -u $2
	# Setup python for use.
	ansible $1 -i $INVENTORY -m raw -a "ln -sf /usr/local/bin/python2.7 /usr/local/bin/python; ln -sf /usr/local/bin/python2.7-2to3 /usr/local/bin/2to3 ; ln -sf /usr/local/bin/python2.7-config /usr/local/bin/python-config; ln -sf /usr/local/bin/pydoc2.7 /usr/local/bin/pydoc" -b --become-method=su -Kk -u $2
	# Create ansible user
	ansible $1 -i $INVENTORY -m shell -a "useradd -c 'Ansible User' -d /home/${ANSIBLE_USER} -m -G wheel ${ANSIBLE_USER}" -b --become-method=doas -u $2
	KEY=`cat ~/.ssh/id_rsa.pub`
	# Setup authorized_key for
	ansible $1 -i $INVENTORY -m shell -a "mkdir -p ~${ANSIBLE_USER}/.ssh; echo ${KEY} >> ~${ANSIBLE_USER}/.ssh/authorized_keys ; chown control:control ~control/.ssh" --become-method=doas -kK -bu $2
	# Test ansible control.
	ansible $1 -i $INVENTORY -m shell -a "touch /root/test; rm /root/test" -b --become-method=doas