misc_lxc-template-generator/configs/base.yaml

128 lines
2.3 KiB
YAML

image:
name: debian-disco-x86_64
distribution: debian
release: bookworm
description: |-
Debian {{ image.release }}
architecture: amd64
source:
downloader: debootstrap
url: http://ftp.debian.org/debian/
targets:
lxc:
create_message: |-
You just created an {{ image.description }} container.
To enable SSH, run: apt install openssh-server
No default root or user password are set by LXC.
config:
- type: all
before: 5
content: |-
lxc.include = LXC_TEMPLATE_CONFIG/debian.common.conf
- type: user
before: 5
content: |-
lxc.include = LXC_TEMPLATE_CONFIG/debian.userns.conf
- type: all
after: 4
content: |-
lxc.include = LXC_TEMPLATE_CONFIG/common.conf
- type: user
after: 4
content: |-
lxc.include = LXC_TEMPLATE_CONFIG/userns.conf
- type: all
content: |-
lxc.arch = {{ image.architecture_personality }}
files:
- path: /etc/hostname
generator: hostname
- path: /etc/hosts
generator: hosts
- path: /etc/resolvconf/resolv.conf.d/original
generator: remove
- path: /etc/resolvconf/resolv.conf.d/tail
generator: remove
- path: /etc/machine-id
generator: dump
- path: /var/lib/dbus/machine-id
generator: remove
- path: /skynet/resolv.conf
generator: copy
source: ./files/resolv.conf
- path: /skynet/sshd_config
generator: copy
source: ./files/sshd_config
- path: /skynet/sssd.conf
generator: copy
source: ./files/sssd.conf_base
- path: /skynet/sudoers
generator: copy
source: ./files/sudoers_base
packages:
manager: apt
update: true
cleanup: true
sets:
# dependencies for otehr stuff
- packages:
- openssh-client
- openssh-server
- sudo
- gnupg
- ca-certificates
action: install
# useful programs
- packages:
- nano
- tree
- curl
- ncdu
action: install
# for the sshd/login
- packages:
- sssd
- libpam-sss
- libnss-sss
- sssd-tools
- libsss-sudo
action: install
actions:
- trigger: post-files
action: |-
#!/bin/sh
set -eux
cp /skynet/sshd_config /etc/ssh/sshd_config
cp /skynet/resolv.conf /etc/resolv.conf
cp /skynet/sssd.conf /etc/sssd/sssd.conf
chmod 600 /etc/sssd/sssd.conf
cp /skynet/sudoers /etc/sudoers
chmod 440 /etc/sudoers