2023-09-02 15:46:27 +02:00
|
|
|
---
|
|
|
|
- name: Preseed wireshark to allow users sniffing packets
|
|
|
|
ansible.builtin.debconf:
|
|
|
|
name: wireshark-common
|
|
|
|
question: wireshark-common/install-setuid
|
|
|
|
value: 'true'
|
|
|
|
vtype: boolean
|
|
|
|
|
|
|
|
- name: Preseed ttf-mscorefonts-installer
|
|
|
|
ansible.builtin.debconf:
|
|
|
|
name: ttf-mscorefonts-installer
|
|
|
|
question: msttcorefonts/dlurl
|
|
|
|
value: "{{ mirror_msfonts }}"
|
|
|
|
vtype: string
|
|
|
|
when: mirror_msfonts is defined and mirror_msfonts | length > 0
|
|
|
|
|
|
|
|
- name: Install desktop EDU packages and some more
|
2025-03-24 07:33:56 +01:00
|
|
|
ansible.builtin.apt:
|
2023-09-02 15:46:27 +02:00
|
|
|
name:
|
|
|
|
- atftp
|
2025-02-27 18:39:00 +01:00
|
|
|
- audacity
|
2024-04-12 08:21:03 +02:00
|
|
|
- biber
|
2023-09-13 19:34:02 +02:00
|
|
|
- calligraplan
|
2023-09-26 17:09:27 +02:00
|
|
|
- cmake ## for kdevelop
|
2023-09-02 18:57:41 +02:00
|
|
|
- codelite
|
|
|
|
- codelite-plugins
|
2023-09-02 15:46:27 +02:00
|
|
|
- curl
|
|
|
|
- elpa-color-theme-modern
|
|
|
|
- elpa-magit
|
|
|
|
- emacs
|
2023-11-28 11:17:12 +01:00
|
|
|
- filezilla
|
2023-09-27 20:33:14 +02:00
|
|
|
- freeplane
|
2023-09-02 15:46:27 +02:00
|
|
|
- git
|
2025-02-27 18:39:00 +01:00
|
|
|
- git-cola
|
2023-09-02 15:46:27 +02:00
|
|
|
- gitg
|
|
|
|
- gitk
|
2025-01-13 13:49:26 +01:00
|
|
|
- git-gui
|
2023-10-25 07:32:31 +02:00
|
|
|
- htop
|
2024-09-25 08:44:43 +02:00
|
|
|
- jq
|
2023-09-26 17:09:27 +02:00
|
|
|
- jupyter
|
2024-04-16 11:55:44 +02:00
|
|
|
- kchmviewer
|
2023-09-26 17:09:27 +02:00
|
|
|
- kdevelop
|
|
|
|
- kdevelop-php
|
|
|
|
- kdevelop-python
|
2023-10-25 07:32:31 +02:00
|
|
|
- krita
|
2024-04-12 08:21:03 +02:00
|
|
|
- libasound2-dev
|
2024-11-13 11:27:49 +01:00
|
|
|
- libdbus-glib-1-2 ## needed for zotero
|
2023-09-02 18:57:41 +02:00
|
|
|
- libnotify-bin ## needed for pwroff script
|
2024-04-12 08:21:03 +02:00
|
|
|
- libwayland-dev
|
|
|
|
- libxcursor-dev
|
|
|
|
- libxi-dev
|
|
|
|
- libxinerama-dev
|
|
|
|
- libxkbcommon-dev
|
|
|
|
- libxrandr-dev
|
2023-10-25 07:32:31 +02:00
|
|
|
- links2
|
2023-09-27 20:33:14 +02:00
|
|
|
- minder
|
2024-04-12 08:21:03 +02:00
|
|
|
- mosquitto-clients
|
2023-09-02 15:46:27 +02:00
|
|
|
- neovim
|
|
|
|
- net-tools
|
|
|
|
- netcat-openbsd
|
|
|
|
- nmap
|
2024-04-16 11:55:44 +02:00
|
|
|
- okular-extra-backends ## needed for CHM files
|
2024-02-06 15:23:52 +01:00
|
|
|
- pdf-presenter-console
|
2023-10-11 21:34:20 +02:00
|
|
|
- php-cli
|
2024-02-07 16:42:09 +01:00
|
|
|
- pipx
|
2023-09-13 19:34:02 +02:00
|
|
|
- planner
|
2023-09-02 15:46:27 +02:00
|
|
|
- pulseview
|
2024-04-12 08:21:03 +02:00
|
|
|
- python3-paho-mqtt
|
2023-10-25 07:32:31 +02:00
|
|
|
- python3-websockets
|
2024-01-09 15:40:22 +01:00
|
|
|
- qpdfview
|
2024-01-25 10:35:55 +01:00
|
|
|
- shellcheck
|
2023-09-02 15:46:27 +02:00
|
|
|
- sigrok
|
|
|
|
- sigrok-cli
|
2024-04-12 08:21:03 +02:00
|
|
|
- texlive-lang-german
|
2024-02-02 19:29:27 +01:00
|
|
|
- texlive-latex-recommended
|
2024-04-12 08:21:03 +02:00
|
|
|
- texlive-xetex
|
|
|
|
- texstudio
|
2023-09-02 15:46:27 +02:00
|
|
|
- tmux
|
|
|
|
- tree
|
|
|
|
- ttf-mscorefonts-installer
|
2024-02-05 08:21:11 +01:00
|
|
|
- twinkle
|
2023-09-19 19:03:38 +02:00
|
|
|
- unison-gtk
|
2023-10-25 07:32:31 +02:00
|
|
|
- w3m
|
2023-09-02 15:46:27 +02:00
|
|
|
- wireshark
|
2023-10-10 12:38:21 +02:00
|
|
|
- zulucrypt-gui
|
2023-09-02 15:46:27 +02:00
|
|
|
autoremove: true
|
|
|
|
state: latest
|
|
|
|
environment:
|
|
|
|
http_proxy: '' # this is needed to avoid ttf-mscorefonts-installer picking up aptcacher
|
|
|
|
|
2024-01-25 10:35:55 +01:00
|
|
|
- name: Remove update notifications from plasma-discover
|
2025-03-24 07:33:56 +01:00
|
|
|
ansible.builtin.apt:
|
2024-01-25 10:35:55 +01:00
|
|
|
name:
|
|
|
|
- plasma-discover
|
|
|
|
autoremove: true
|
|
|
|
state: absent
|
2025-03-31 20:40:03 +02:00
|
|
|
when: fvs_remove_discover
|
2023-09-02 15:46:27 +02:00
|
|
|
|
2023-12-07 15:33:56 +01:00
|
|
|
- name: Make sure wireshark works for all users after installation and upgrades
|
|
|
|
ansible.builtin.copy:
|
|
|
|
dest: /etc/apt/apt.conf.d/92wireshark4all
|
2025-03-24 07:33:56 +01:00
|
|
|
mode: '0644'
|
2023-12-07 15:33:56 +01:00
|
|
|
content: |
|
|
|
|
## Modify permissions after installation/upgrade to allow all
|
|
|
|
## users dumping packages on network interfaces for wireshark
|
|
|
|
DPkg::Post-Invoke {"/usr/bin/chmod o+x /usr/bin/dumpcap || true"; };
|
2023-09-02 15:46:27 +02:00
|
|
|
|
|
|
|
|
|
|
|
- name: Create firefox policies directory
|
|
|
|
ansible.builtin.file:
|
|
|
|
path: /etc/firefox-esr/policies
|
|
|
|
state: directory
|
|
|
|
mode: '0755'
|
|
|
|
|
|
|
|
- name: Create a symbolic link firefox to firefox-esr
|
|
|
|
ansible.builtin.file:
|
|
|
|
src: /etc/firefox-esr
|
|
|
|
dest: /etc/firefox
|
|
|
|
state: link
|
|
|
|
|
|
|
|
- name: Copy firefox policy
|
|
|
|
ansible.builtin.copy:
|
|
|
|
src: policies.json
|
|
|
|
dest: /etc/firefox-esr/policies/
|
2025-03-24 07:33:56 +01:00
|
|
|
mode: '0644'
|
2023-09-02 15:46:27 +02:00
|
|
|
|
2024-04-30 07:41:11 +02:00
|
|
|
- name: Create chromium policies directory
|
|
|
|
ansible.builtin.file:
|
|
|
|
path: /etc/chromium/policies/managed
|
|
|
|
state: directory
|
|
|
|
mode: '0755'
|
|
|
|
|
|
|
|
- name: Set chromium proxy-policy to auto_detect
|
2025-03-24 07:33:56 +01:00
|
|
|
ansible.builtin.copy:
|
2024-04-30 07:41:11 +02:00
|
|
|
dest: /etc/chromium/policies/managed/proxy.json
|
2025-03-24 07:33:56 +01:00
|
|
|
mode: '0644'
|
2024-04-30 07:41:11 +02:00
|
|
|
content: |
|
|
|
|
{
|
|
|
|
"ProxyMode": "auto_detect"
|
|
|
|
}
|
2023-09-02 15:46:27 +02:00
|
|
|
|
|
|
|
- name: Copy dolphin config scripts
|
|
|
|
ansible.builtin.copy:
|
|
|
|
src: "{{ item }}"
|
|
|
|
dest: /usr/local/bin/
|
2025-03-24 07:33:56 +01:00
|
|
|
mode: '0755'
|
2023-09-02 15:46:27 +02:00
|
|
|
loop:
|
|
|
|
- lmn-reset-dolphin.sh
|
|
|
|
- lmn-patch-dolphin.sh
|
2024-10-31 17:28:16 +01:00
|
|
|
- lmn-fixhome-dolphin.sh
|
2023-09-02 15:46:27 +02:00
|
|
|
|
2023-09-06 10:12:09 +02:00
|
|
|
- name: Configure KDE dolphin menu
|
|
|
|
ansible.builtin.copy:
|
|
|
|
src: lmn-dolphin.sh
|
|
|
|
dest: /etc/profile.d/
|
2025-03-24 07:33:56 +01:00
|
|
|
mode: '0644'
|
2023-09-06 10:12:09 +02:00
|
|
|
|
2023-09-02 15:46:27 +02:00
|
|
|
|
|
|
|
- name: Copy fvs-config.js to configure plasma
|
|
|
|
ansible.builtin.copy:
|
|
|
|
src: fvs-config.js
|
|
|
|
dest: /usr/share/plasma/shells/org.kde.plasma.desktop/contents/updates/fvs-config.js
|
2025-03-24 07:33:56 +01:00
|
|
|
mode: '0644'
|
2023-09-02 15:46:27 +02:00
|
|
|
|
|
|
|
|
2023-09-03 20:25:34 +02:00
|
|
|
- name: Configure some KDE aspects
|
2025-03-24 07:33:56 +01:00
|
|
|
ansible.builtin.blockinfile:
|
2023-09-02 15:46:27 +02:00
|
|
|
path: /etc/xdg/kdeglobals
|
|
|
|
create: true
|
2025-03-24 07:33:56 +01:00
|
|
|
mode: '0644'
|
2023-09-02 15:46:27 +02:00
|
|
|
block: |
|
2023-09-03 20:25:34 +02:00
|
|
|
[KDE]
|
|
|
|
SingleClick=false
|
|
|
|
|
2023-09-02 15:46:27 +02:00
|
|
|
[KDE Action Restrictions][$i]
|
|
|
|
action/start_new_session=false
|
|
|
|
#action/switch_user=false
|
|
|
|
#action/lock_screen=false
|
|
|
|
|
2023-09-04 19:43:51 +02:00
|
|
|
- name: Start with empty session by default
|
|
|
|
ansible.builtin.copy:
|
|
|
|
dest: /etc/xdg/ksmserverrc
|
2025-03-24 07:33:56 +01:00
|
|
|
mode: '0644'
|
2023-09-04 19:43:51 +02:00
|
|
|
content: |
|
|
|
|
[General]
|
|
|
|
loginMode=emptySession
|
|
|
|
|
2025-03-24 07:33:56 +01:00
|
|
|
# - name: Avoid starting kscreen (confusing autodetection)
|
|
|
|
# ansible.builtin.copy:
|
|
|
|
# dest: /etc/xdg/kded5rc
|
|
|
|
# content: |
|
|
|
|
# [Module-kscreen]
|
|
|
|
# autoload=false
|
2024-02-14 12:49:27 +01:00
|
|
|
#
|
2025-03-24 07:33:56 +01:00
|
|
|
# - name: Disable automatic lock screen and user specific modifications
|
|
|
|
# ansible.builtin.copy:
|
|
|
|
# path: /etc/xdg/kscreenlockerrc
|
|
|
|
# content: |
|
|
|
|
# [Daemon][$i]
|
|
|
|
# Autolock=false
|
|
|
|
# LockOnResume=false
|
2023-09-02 15:46:27 +02:00
|
|
|
#
|
2023-09-06 19:30:32 +02:00
|
|
|
|
2023-10-11 21:05:00 +02:00
|
|
|
- name: Download libdvdcss from mirror
|
|
|
|
ansible.builtin.get_url:
|
|
|
|
url: "{{ mirror_dvdcss }}/libdvdcss.so.2.2.0"
|
|
|
|
dest: /usr/lib/x86_64-linux-gnu/libdvdcss.so.2.2.0
|
2025-03-24 07:33:56 +01:00
|
|
|
mode: '0644'
|
|
|
|
use_proxy: false
|
2023-10-11 21:05:00 +02:00
|
|
|
when: mirror_dvdcss is defined and mirror_dvdcss | length > 0
|
|
|
|
|
|
|
|
- name: Link library so name
|
|
|
|
ansible.builtin.file:
|
|
|
|
src: libdvdcss.so.2.2.0
|
|
|
|
dest: /usr/lib/x86_64-linux-gnu/libdvdcss.so.2
|
|
|
|
state: link
|
|
|
|
when: mirror_dvdcss is defined and mirror_dvdcss | length > 0
|
|
|
|
|
2023-09-06 19:30:32 +02:00
|
|
|
- name: Patch sddm login screen to show hostname
|
2025-03-24 07:33:56 +01:00
|
|
|
ansible.builtin.blockinfile:
|
2023-09-06 19:30:32 +02:00
|
|
|
path: /usr/share/sddm/themes/debian-breeze/Main.qml
|
|
|
|
marker: // {mark} ANSIBLE MANAGED BLOCK
|
2023-10-07 21:11:48 +02:00
|
|
|
insertbefore: '\s+//Footer'
|
2023-09-06 19:30:32 +02:00
|
|
|
block: |
|
|
|
|
Text {
|
2023-10-07 21:11:48 +02:00
|
|
|
id: hostname
|
2023-10-08 20:28:57 +02:00
|
|
|
anchors.top: parent.top
|
2023-10-07 21:11:48 +02:00
|
|
|
anchors.right: parent.right
|
2023-10-08 20:28:57 +02:00
|
|
|
anchors.topMargin: 10
|
|
|
|
anchors.rightMargin: 15
|
2023-09-06 19:30:32 +02:00
|
|
|
color: "#ffffff"
|
2023-10-08 20:28:57 +02:00
|
|
|
text: sddm.hostName + " | <{{ ansible_date_time['date'] }}>"
|
2023-09-06 19:30:32 +02:00
|
|
|
font.pointSize: config.fontSize
|
|
|
|
}
|
2025-01-22 14:36:38 +01:00
|
|
|
|
2025-02-03 08:10:09 +01:00
|
|
|
- name: Set git default-branch to main
|
|
|
|
ansible.builtin.copy:
|
|
|
|
dest: /etc/gitconfig
|
2025-03-24 07:33:56 +01:00
|
|
|
mode: '0644'
|
2025-02-03 08:10:09 +01:00
|
|
|
content: |
|
|
|
|
[init]
|
|
|
|
defaultBranch = main
|
|
|
|
|
2025-02-05 13:10:56 +01:00
|
|
|
- name: Adjust mmcblk-device gid to allow users to access SD-cards
|
|
|
|
ansible.builtin.copy:
|
|
|
|
dest: /etc/udev/rules.d/80-mmcblk.rules
|
2025-03-24 07:33:56 +01:00
|
|
|
mode: '0644'
|
2025-02-05 13:10:56 +01:00
|
|
|
content: |
|
|
|
|
KERNEL=="mmcblk[0-9]", ENV{ID_NAME}=="?*", ENV{ID_SERIAL}=="?*", GROUP="domain users"
|
|
|
|
KERNEL=="mmcblk[0-9]p[0-9]*", ENV{ID_NAME}=="?*", ENV{ID_SERIAL}=="?*", GROUP="domain users"
|
|
|
|
|
2025-01-22 14:36:38 +01:00
|
|
|
- name: Include sync
|
|
|
|
ansible.builtin.include_tasks: sync.yml
|