Name: Ansible Fundamentals
Author: NezaelHD

搜索技能.../

Ansible Fundamentals | Skills Pool

- name: Check if service exists
  ansible.builtin.command: systemctl status myservice
  register: service_check
  changed_when: false
  failed_when: false

Use set -euo pipefail - In all shell scripts and shell module calls:

- name: Run pipeline command
  ansible.builtin.shell: |
    set -euo pipefail
    cat file.txt | grep pattern | wc -l
  args:
    executable: /bin/bash

Need	Use	Why
Install packages	`ansible.builtin.apt/yum/dnf`	Native modules handle state
Manage files	`ansible.builtin.copy/template/file`	Idempotent by default
Edit config lines	`ansible.builtin.lineinfile`	Surgical edits, not full replace
Run commands	`ansible.builtin.command`	When no native module exists
Need shell features	`ansible.builtin.shell`	Pipes, redirects, globs
Manage services	`ansible.builtin.systemd/service`	State management built-in
Manage users	`ansible.builtin.user`	Cross-platform, idempotent

# PREFER native module
- name: Create user
  ansible.builtin.user:
    name: deploy
    groups: docker
    state: present

# AVOID command when module exists
- name: Create user
  ansible.builtin.command: useradd -G docker deploy
  # Requires: changed_when, failed_when, idempotency logic

- name: Create Proxmox API token
  ansible.builtin.command: >
    pveum user token add {{ username }}@pam {{ token_name }}
  register: token_result
  changed_when: "'already exists' not in token_result.stderr"
  failed_when:
    - token_result.rc != 0
    - "'already exists' not in token_result.stderr"
  no_log: true

Collection	Purpose	Example Modules
`ansible.builtin`	Core functionality	copy, template, command, user
`ansible.posix`	POSIX systems	authorized_key, synchronize
`community.general`	General utilities	interfaces_file, ini_file
`community.proxmox`	Proxmox VE	proxmox_vm, proxmox_kvm
`infisical.vault`	Secrets management	read_secrets
`community.docker`	Docker management	docker_container, docker_image

# Install from requirements
cd ansible && uv run ansible-galaxy collection install -r requirements.yml

# Install specific collection
uv run ansible-galaxy collection install community.proxmox

# Basic execution
uv run ansible-playbook playbooks/my-playbook.yml

# With extra variables
uv run ansible-playbook playbooks/create-vm.yml \
  -e "vm_name=docker-01" \
  -e "vm_memory=4096"

# Limit to specific hosts
uv run ansible-playbook playbooks/update.yml --limit proxmox

# Check mode (dry run)
uv run ansible-playbook playbooks/deploy.yml --check --diff

# With tags
uv run ansible-playbook playbooks/setup.yml --tags "network,storage"

# Run ansible-lint
mise run ansible-lint

# Or directly
uv run ansible-lint ansible/playbooks/

Verb	Use When
Ensure	Verifying state exists
Configure	Modifying settings
Install	Adding packages
Create	Making new resources
Remove	Deleting resources
Deploy	Releasing applications
Update	Modifying existing resources

- name: Ensure Docker is installed
- name: Configure SSH security settings
- name: Create admin user account
- name: Deploy application configuration

# GOOD - clear, descriptive
proxmox_api_user: terraform@pam
docker_compose_version: "2.24.0"
vm_memory_mb: 4096

# BAD - vague, abbreviated
pve_usr: terraform@pam
dc_ver: "2.24.0"

Ansible Fundamentals

Golden Rules

Ansible Fundamentals

Golden Rules

Module Selection Guide

Decision Matrix

Prefer Native Modules

When Command/Shell is Acceptable

Collections in Use

Installing Collections

Common Execution Patterns

Running Playbooks

Linting

Task Naming Conventions

Variable Naming

Prose

Golang Patterns

Audiocraft Audio Generation

Pokemon Player

Ideation

Storybook Upgrade