enroll

Author	SHA1	Message	Date
Miguel Jacq	8c6b51be3e	Manage apt stuff in its own role, not in etc_custom Some checks failed Lint / test (push) Waiting to run Details Trivy / test (push) Waiting to run Details CI / test (push) Has been cancelled Details	2025-12-28 09:39:14 +11:00
Miguel Jacq	303c1b0dd8	Consolidate logrotate and cron files into their main service/package roles if they exist. Standardise on MAX_FILES_CAP in one place	2025-12-28 09:30:21 +11:00
Miguel Jacq	054a6192d1	Capture more singletons in /etc and avoid apt duplication Some checks failed Lint / test (push) Waiting to run Details Trivy / test (push) Waiting to run Details CI / test (push) Has been cancelled Details	2025-12-27 19:02:22 +11:00
Miguel Jacq	9641637d4d	Add support for an enroll.ini config file to store arguments per subcommand, to avoid having to remember them all for repetitive executions. Some checks failed Lint / test (push) Waiting to run Details Trivy / test (push) Waiting to run Details CI / test (push) Has been cancelled Details	2025-12-20 18:24:46 +11:00
Miguel Jacq	240e79706f	Allow the user to add extra paths to harvest, or All checks were successful CI / test (push) Successful in 5m31s Details Lint / test (push) Successful in 34s Details Trivy / test (push) Successful in 19s Details paths to ignore, using `--exclude-path` and `--include-path` arguments.	2025-12-20 17:47:00 +11:00
Miguel Jacq	4660a0703e	Include files from `/usr/local/bin` and `/usr/local/etc` in harvest (assuming they aren't binaries or symlinks) and store in `usr_local_custom` role, similar to `etc_custom`. All checks were successful CI / test (push) Successful in 5m43s Details Lint / test (push) Successful in 30s Details Trivy / test (push) Successful in 19s Details	2025-12-18 17:11:04 +11:00
Miguel Jacq	b5d2b99174	Add diff mode All checks were successful CI / test (push) Successful in 5m14s Details Lint / test (push) Successful in 30s Details Trivy / test (push) Successful in 23s Details	2025-12-18 14:59:51 +11:00
Miguel Jacq	a235028f3b	black All checks were successful CI / test (push) Successful in 5m38s Details Lint / test (push) Successful in 27s Details Trivy / test (push) Successful in 21s Details	2025-12-18 13:34:37 +11:00
Miguel Jacq	62ec8e8b1b	Silence bandit paranoia on certain lines Some checks failed CI / test (push) Successful in 5m24s Details Lint / test (push) Failing after 29s Details Trivy / test (push) Successful in 20s Details	2025-12-17 19:05:07 +11:00
Miguel Jacq	33b1176800	Add --sops mode to encrypt harvest and manifest data at rest (especially useful if using --dangerous) Some checks failed CI / test (push) Successful in 5m35s Details Lint / test (push) Failing after 29s Details Trivy / test (push) Successful in 18s Details	2025-12-17 18:51:40 +11:00
Miguel Jacq	6a36a9d2d5	Remote mode and dangerous flag, other tweaks * Add remote mode for harvesting a remote machine via a local workstation (no need to install enroll remotely) Optionally use `--no-sudo` if you don't want the remote user to have passwordless sudo when conducting the harvest, albeit you'll end up with less useful data (same as if running `enroll harvest` on a machine without sudo) * Add `--dangerous` flag to capture even sensitive data (use at your own risk!) * Do a better job at capturing other config files in `/etc/<package>/` even if that package doesn't normally ship or manage those files.	2025-12-17 17:02:16 +11:00
Miguel Jacq	026416d158	Fix tests All checks were successful CI / test (push) Successful in 5m36s Details Lint / test (push) Successful in 27s Details Trivy / test (push) Successful in 21s Details	2025-12-16 20:48:08 +11:00
Miguel Jacq	f40b9d834d	black and pyflakes3	2025-12-16 20:15:21 +11:00
Miguel Jacq	f255ba566c	biiiiig refactor to support jinjaturtle and multi site mode	2025-12-16 20:14:20 +11:00
Miguel Jacq	e4be7f5975	Rename secrets to ignore as it does more than secrets All checks were successful CI / test (push) Successful in 5m35s Details Lint / test (push) Successful in 27s Details Trivy / test (push) Successful in 17s Details	2025-12-15 17:03:28 +11:00
Miguel Jacq	4882ddff49	Add custom_etc and users last Some checks failed CI / test (push) Successful in 5m5s Details Lint / test (push) Failing after 28s Details Trivy / test (push) Successful in 18s Details	2025-12-15 16:46:39 +11:00
Miguel Jacq	651549b949	Change message about whether it is a meta package or not	2025-12-15 16:28:10 +11:00
Miguel Jacq	d8fb33f0d0	hmm All checks were successful CI / test (push) Successful in 4m58s Details Lint / test (push) Successful in 29s Details Trivy / test (push) Successful in 18s Details	2025-12-15 13:23:11 +11:00
Miguel Jacq	019f6bf6f3	Attempt fix for unit name Some checks failed CI / test (push) Failing after 4m44s Details Lint / test (push) Successful in 27s Details Trivy / test (push) Successful in 21s Details	2025-12-15 12:49:50 +11:00
Miguel Jacq	c6f174dd55	fix... Some checks failed CI / test (push) Failing after 4m43s Details Lint / test (push) Successful in 27s Details Trivy / test (push) Successful in 21s Details	2025-12-15 12:34:26 +11:00
Miguel Jacq	ac0c884c39	Another fix for systemd unit file Some checks failed CI / test (push) Failing after 1m37s Details Lint / test (push) Failing after 28s Details Trivy / test (push) Successful in 19s Details	2025-12-15 12:28:21 +11:00
Miguel Jacq	2eecb73a49	Ensure we only try to enable service if the unit file existed Some checks failed CI / test (push) Failing after 2m0s Details Lint / test (push) Successful in 31s Details Trivy / test (push) Successful in 18s Details	2025-12-15 12:18:26 +11:00
Miguel Jacq	4cdc78915f	Changes that make ansible-lint happy. nosec on the subprocess commands	2025-12-15 11:29:08 +11:00
Miguel Jacq	9532462535	Changes that make ansible-lint happy. nosec on the subprocess commands	2025-12-15 11:28:59 +11:00
Miguel Jacq	227be6dd51	Many tweaks	2025-12-15 11:04:54 +11:00
Miguel Jacq	5398ad123c	Initial commit	2025-12-14 20:53:22 +11:00

26 commits