kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-08-15 16:40:45 +02:00
Code Issues Packages Projects Releases Wiki Activity
computer-playbook/roles/sys-cln-disc-space
History
Kevin Veen-Birkenbach 4fa1c6cfbd
ansible: quote file modes; keycloak: robust LDAP bind update + config cleanup 
Highlights
- Quote all file modes as strings ("0755"/"0770") across multiple roles to avoid YAML octal quirks and improve portability.
- Keycloak: introduce actions.{import_realm,update_ldap_bind} feature flags and wire them via vars/config.
- Implement idempotent LDAP bind updater (tasks/03_update-ldap-bind.yml):
  * kcadm login with no_log protection,
  * fetch LDAP UserStorage component by name,
  * compare current bindDn/bindCredential and update only when changed.
- Keycloak realm import template: keep providerId="ldap" and set name from keycloak_ldap_component_name.
- Centralize Keycloak readiness check in tasks/main.yml; remove duplicate waits from 02_update_client_redirects.yml and 04_ssh_public_key.yml.
- 01_import.yml: fix typo (keycloak), quote modes, tidy spacing, and replace Jinja-in-Jinja fileglob with concatenation.
- 02_update_client_redirects.yml: correct assert fail_msg filename; keep login-first flow.
- Minor template/vars tidy-ups (spacing, comments, consistent variable usage).

Files touched (excerpt)
- roles/*/*: replace 0755/0770 → "0755"/"0770"
- roles/web-app-keycloak/config/main.yml: add actions map
- roles/web-app-keycloak/vars/main.yml: unify Keycloak vars and feature flags
- roles/web-app-keycloak/tasks/{01_import,02_update_client_redirects,03_update-ldap-bind,04_ssh_public_key,main}.yml
- roles/web-app-keycloak/templates/{docker-compose.yml.j2,import/realm.json.j2}

https://chatgpt.com/share/689bda16-b138-800f-8258-e13f6d7d8239
2025-08-13 02:20:38 +02:00
..
handlers
Renamed cymais to infinito and did some other optimations and logout implementations
2025-07-29 16:35:42 +02:00
meta
Optimized URLS
2025-08-13 00:33:47 +02:00
tasks
ansible: quote file modes; keycloak: robust LDAP bind update + config cleanup
2025-08-13 02:20:38 +02:00
templates
Solved config path entry bug
2025-08-11 12:19:24 +02:00
vars
Moved blocks to include_tasks to raise performance. Deploy was really slow
2025-08-11 12:28:31 +02:00
README.md
Another big round of refactoring and cleaning...
2025-07-11 17:55:26 +02:00

README.md

Cleanup Disc Space

Description

This role frees disk space by executing a script that cleans up temporary files, clears package caches, and optionally cleans up backup directories and Docker resources when disk usage exceeds a specified threshold.

Overview

Optimized for efficient storage management, this role:

  • Creates a directory for disk cleanup scripts.
  • Deploys a Bash script that frees disk space by cleaning up /tmp, Docker resources, and pacman cache.
  • Configures a systemd service to run the disk cleanup script.
  • Optionally integrates with backup cleanup if backup variables are defined.

Purpose

The primary purpose of this role is to ensure that disk space remains within safe limits by automating cleanup tasks, thereby improving system performance and stability.

Features

  • Automated Cleanup: Executes a script to remove temporary files and clear caches.
  • Threshold-Based Execution: Triggers cleanup when disk usage exceeds a defined percentage.
  • Systemd Integration: Configures a systemd service to manage the disk cleanup process.
  • Docker and Backup Integration: Optionally cleans Docker resources and backups if configured.