64 lines
1.8 KiB
YAML
64 lines
1.8 KiB
YAML
# cspell:ignore cmdline, workdir
|
|
---
|
|
ansible-navigator:
|
|
ansible:
|
|
config:
|
|
help: false
|
|
# Inventory is set in ansible.cfg. Override at runtime with -i if needed.
|
|
|
|
execution-environment:
|
|
container-engine: podman
|
|
enabled: true
|
|
image: aap.toal.ca/ee-demo:latest
|
|
pull:
|
|
policy: missing
|
|
|
|
environment-variables:
|
|
pass:
|
|
- OP_SERVICE_ACCOUNT_TOKEN # 1Password service account (vault)
|
|
- OP_CONNECT_HOST # 1Password Connect server (alternative)
|
|
- OP_CONNECT_TOKEN
|
|
- CONTROLLER_HOST # AAP / AWX controller
|
|
- CONTROLLER_OAUTH_TOKEN
|
|
- CONTROLLER_USERNAME
|
|
- CONTROLLER_PASSWORD
|
|
- AAP_HOSTNAME # Newer AAP naming (same controller)
|
|
- AAP_USERNAME
|
|
- AAP_PASSWORD
|
|
- SATELLITE_SERVER_URL
|
|
- SATELLITE_USERNAME
|
|
- SATELLITE_PASSWORD
|
|
- SATELLITE_VALIDATE_CERTS
|
|
- NETBOX_API
|
|
- NETBOX_API_TOKEN
|
|
- NETBOX_TOKEN
|
|
|
|
# Volume mounts are not merged across config files - all required mounts
|
|
# must be listed here when a project config is present.
|
|
volume-mounts:
|
|
# 1Password SSH agent socket (required for vault-id-from-op-client.sh)
|
|
- src: "/home/ptoal/.1password/agent.sock"
|
|
dest: "/root/.1password/agent.sock"
|
|
options: "Z"
|
|
# Ansible utilities
|
|
- src: "/home/ptoal/.ansible/utils/"
|
|
dest: "/root/.ansible/utils"
|
|
options: "Z"
|
|
# Project-local collections (toallab.infra and others not in the EE image)
|
|
- src: "collections"
|
|
dest: "/runner/project/collections"
|
|
options: "Z"
|
|
- src: "~/.kube/config"
|
|
dest: "/root/.kube/config"
|
|
options: "ro"
|
|
|
|
|
|
logging:
|
|
level: warning
|
|
file: /tmp/ansible-navigator.log
|
|
|
|
mode: stdout
|
|
|
|
playbook-artifact:
|
|
enable: false
|