maheshrijal · maheshrijal · Sep 26, 2024 · Sep 26, 2024 · Sep 26, 2024 · Sep 26, 2024
diff --git a/.github/workflows/ansible-lint.yml b/.github/workflows/ansible-lint.yml
@@ -9,4 +9,4 @@ jobs:
     steps:
       - uses: actions/checkout@v4
       - name: Run ansible-lint
-        uses: ansible/ansible-lint@v6.20.2
+        uses: ansible/ansible-lint@main
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,2 @@
+wget-log
+.vscode
diff --git a/local.yml b/local.yml
@@ -12,16 +12,15 @@
       ansible.builtin.import_tasks: handlers/main.yml
 
   pre_tasks:
-    - name: Update package caches if required (Debian)
+
+    - name: End play if the system is not Debian
+      ansible.builtin.meta: end_play
+      when: ansible_facts['os_family'] != 'Debian'
+
+    - name: Update package caches if required
       ansible.builtin.apt:
         update_cache: true
         cache_valid_time: 3600
-      when: ansible_os_family == "Debian"
-
-    - name: Update package caches if required (RedHat)
-      ansible.builtin.yum:
-        update_cache: true
-      when: ansible_os_family == "RedHat"
 
   tasks:
     - name: Install tools
@@ -44,7 +43,23 @@
     - name: Install NodeJS
       ansible.builtin.include_tasks:
         file: tasks/nodejs.yml
-      when: ansible_os_family == "Debian"
+
+    # - name: Install brave
+    #   ansible.builtin.include_tasks:
+    #     file: tasks/brave.yml
+    # NOT TESTED
+
+    - name: Install signal
+      ansible.builtin.include_tasks:
+        file: tasks/signal.yml
+
+    - name: Install spotify
+      ansible.builtin.include_tasks:
+        file: tasks/spotify.yml
+
+    - name: Install flatpak apps
+      ansible.builtin.include_tasks:
+        file: tasks/flathub.yml
 
     - name: Configure Git
       ansible.builtin.include_tasks:

diff --git a/tasks/brave.yml b/tasks/brave.yml
@@ -0,0 +1,20 @@
+- name: Download Brave browser GPG key
+  get_url:
+    url: https://brave-browser-apt-release.s3.brave.com/brave-browser-archive-keyring.gpg
+    dest: /usr/share/keyrings/brave-browser-archive-keyring.gpg
+    mode: '0644'
+
+- name: Add Brave browser repository
+  lineinfile:
+    path: /etc/apt/sources.list.d/brave-browser-release.list
+    line: "deb [arch=amd64 signed-by=/usr/share/keyrings/brave-browser-archive-keyring.gpg] https://brave-browser-apt-release.s3.brave.com/ stable main"
+    create: yes
+
+- name: Update APT package index
+  apt:
+    update_cache: yes
+
+- name: Install Brave browser
+  apt:
+    name: brave-browser
+    state: present
diff --git a/tasks/flathub.yml b/tasks/flathub.yml
@@ -0,0 +1,16 @@
+---
+- name: Add or update Flathub remote
+  community.general.flatpak_remote:
+    name: flathub
+    state: present
+    flatpakrepo_url: https://dl.flathub.org/repo/flathub.flatpakrepo
+    method: user
+  become: false
+
+- name: Install packages from flathub
+  community.general.flatpak:
+    name:
+      - org.mozilla.Thunderbird
+      - com.notesnook.Notesnook
+    method: user
+  become: false
diff --git a/tasks/install-tools.yml b/tasks/install-tools.yml
@@ -20,11 +20,12 @@
       - gpg
       - net-tools
       - zip
-    state: latest
+      - vlc
+    state: present
 
 - name: Upgrade pip
   ansible.builtin.pip:
     name: pip
-    state: latest
+    state: present
   vars:
     ansible_python_interpreter: /usr/bin/python3
diff --git a/tasks/signal.yml b/tasks/signal.yml
@@ -0,0 +1,30 @@
+---
+- name: Download Signal GPG key and add to keyring
+  ansible.builtin.shell:
+    cmd: "wget -O- https://updates.signal.org/desktop/apt/keys.asc | gpg --dearmor > /tmp/signal-desktop-keyring.gpg"
+  args:
+    creates: /tmp/signal-desktop-keyring.gpg
+
+- name: Move GPG key to /usr/share/keyrings
+  ansible.builtin.copy:
+    src: /tmp/signal-desktop-keyring.gpg
+    dest: /usr/share/keyrings/signal-desktop-keyring.gpg
+    remote_src: false
+    owner: root
+    group: root
+    mode: '0644'
+
+- name: Add Signal repository to apt sources
+  ansible.builtin.apt_repository:
+    repo: "deb [arch=amd64 signed-by=/usr/share/keyrings/signal-desktop-keyring.gpg] https://updates.signal.org/desktop/apt xenial main"
+    state: present
+    filename: signal-xenial
+
+- name: Update APT package index
+  ansible.builtin.apt:
+    update_cache: true
+
+- name: Install Signal Desktop
+  ansible.builtin.apt:
+    name: signal-desktop
+    state: present
diff --git a/tasks/spotify.yml b/tasks/spotify.yml
@@ -0,0 +1,21 @@
+---
+- name: Add Spotify GPG key
+  ansible.builtin.shell: >
+    curl -sS https://download.spotify.com/debian/pubkey_6224F9941A8AA6D1.gpg | gpg --dearmor --yes -o /etc/apt/trusted.gpg.d/spotify.gpg
+  args:
+    creates: /etc/apt/trusted.gpg.d/spotify.gpg
+
+- name: Add Spotify repository
+  ansible.builtin.lineinfile:
+    path: /etc/apt/sources.list.d/spotify.list
+    line: 'deb http://repository.spotify.com stable non-free'
+    create: true
+
+- name: Update APT package index
+  ansible.builtin.apt:
+    update_cache: true
+
+- name: Install Spotify client
+  ansible.builtin.apt:
+    name: spotify-client
+    state: present
diff --git a/tasks/terraform.yml b/tasks/terraform.yml
@@ -4,20 +4,17 @@
     url: https://apt.releases.hashicorp.com/gpg
     state: present
     keyring: /etc/apt/trusted.gpg.d/hashicorp.gpg
-  when: ansible_os_family == "Debian"
 
 - name: Add hashicorp repository
   ansible.builtin.apt_repository:
     repo: deb [arch=amd64] https://apt.releases.hashicorp.com {{ ansible_distribution_release }} main
     state: present
-  when: ansible_os_family == "Debian"
 
 - name: Install Terraform
   ansible.builtin.apt:
     name: terraform
     state: present
     update_cache: true
-  when: ansible_os_family == "Debian"
 
 - name: Enable autocomplete for Terraform
   ansible.builtin.lineinfile:

diff --git a/tasks/vscode.yml b/tasks/vscode.yml
@@ -0,0 +1,19 @@
+---
+- name: Add Microsoft GPG key
+  ansible.builtin.apt_key:
+    url: https://packages.microsoft.com/keys/microsoft.asc
+    state: present
+
+- name: Add VSCode repository
+  ansible.builtin.apt_repository:
+    repo: 'deb [arch=amd64] https://packages.microsoft.com/repos/vscode stable main'
+    state: present
+
+- name: Update APT package index
+  ansible.builtin.apt:
+    update_cache: true
+
+- name: Install Visual Studio Code
+  ansible.builtin.apt:
+    name: code
+    state: present