# config file for ansible -- http://ansible.com/# ============================

1. # config file for ansible -- http://ansible.com/
2. # ==============================================
3.  
4. # nearly all parameters can be overridden in ansible-playbook
5. # or with command line flags. ansible will read ANSIBLE_CONFIG,
6. # ansible.cfg in the current working directory, .ansible.cfg in
7. # the home directory or /etc/ansible/ansible.cfg, whichever it
8. # finds first
9.  
10. [defaults]
11.  
12. # some basic default values...
13.  
14. #inventory = /etc/ansible/hosts
15. #library = /usr/share/my_modules/
16. #remote_tmp = $HOME/.ansible/tmp
17. #local_tmp = $HOME/.ansible/tmp
18. #forks = 5
19. #poll_interval = 15
20. # sudo_user = pelmen
21. # ask_sudo_pass = True
22. #ask_pass = True
23. #transport = smart
24. #remote_port = 22
25. #module_lang = C
26. #module_set_locale = True
27.  
28. # plays will gather facts by default, which contain information about
29. # the remote system.
30. #
31. # smart - gather by default, but don't regather if already gathered
32. # implicit - gather by default, turn off with gather_facts: False
33. # explicit - do not gather by default, must say gather_facts: True
34. #gathering = implicit
35.  
36. # by default retrieve all facts subsets
37. # all - gather all subsets
38. # network - gather min and network facts
39. # hardware - gather hardware facts (longest facts to retrieve)
40. # virtual - gather min and virtual facts
41. # facter - import facts from facter
42. # ohai - import facts from ohai
43. # You can combine them using comma (ex: network,virtual)
44. # You can negate them using ! (ex: !hardware,!facter,!ohai)
45. # A minimal set of facts is always gathered.
46. #gather_subset = all
47.  
48. # additional paths to search for roles in, colon separated
49. #roles_path = /etc/ansible/roles
50.  
51. # uncomment this to disable SSH key host checking
52. #host_key_checking = False
53.  
54. # change the default callback
55. #stdout_callback = skippy
56. # enable additional callbacks
57. #callback_whitelist = timer, mail
58.  
59. # Determine whether includes in tasks and handlers are "static" by
60. # default. As of 2.0, includes are dynamic by default. Setting these
61. # values to True will make includes behave more like they did in the
62. # 1.x versions.
63. #task_includes_static = True
64. #handler_includes_static = True
65.  
66. # change this for alternative sudo implementations
67. #sudo_exe = sudo
68.  
69. # What flags to pass to sudo
70. # WARNING: leaving out the defaults might create unexpected behaviours
71. #sudo_flags = -H -S -n
72.  
73. # SSH timeout
74. #timeout = 10
75.  
76. # default user to use for playbooks if user is not specified
77. # (/usr/bin/ansible will use current user as default)
78. remote_user = pelmen
79.  
80. # logging is off by default unless this path is defined
81. # if so defined, consider logrotate
82. #log_path = /var/log/ansible.log
83.  
84. # default module name for /usr/bin/ansible
85. #module_name = command
86.  
87. # use this shell for commands executed under sudo
88. # you may need to change this to bin/bash in rare instances
89. # if sudo is constrained
90. #executable = /bin/sh
91.  
92. # if inventory variables overlap, does the higher precedence one win
93. # or are hash values merged together? The default is 'replace' but
94. # this can also be set to 'merge'.
95. #hash_behaviour = replace
96.  
97. # by default, variables from roles will be visible in the global variable
98. # scope. To prevent this, the following option can be enabled, and only
99. # tasks and handlers within the role will see the variables there
100. #private_role_vars = yes
101.  
102. # list any Jinja2 extensions to enable here:
103. #jinja2_extensions = jinja2.ext.do,jinja2.ext.i18n
104.  
105. # if set, always use this private key file for authentication, same as
106. # if passing --private-key to ansible or ansible-playbook
107. #private_key_file = /path/to/file
108.  
109. # If set, configures the path to the Vault password file as an alternative to
110. # specifying --vault-password-file on the command line.
111. #vault_password_file = /path/to/vault_password_file
112.  
113. # format of string {{ ansible_managed }} available within Jinja2
114. # templates indicates to users editing templates files will be replaced.
115. # replacing {file}, {host} and {uid} and strftime codes with proper values.
116. #ansible_managed = Ansible managed: {file} modified on %Y-%m-%d %H:%M:%S by {uid} on {host}
117. # This short version is better used in templates as it won't flag the file as changed every run.
118. #ansible_managed = Ansible managed: {file} on {host}
119.  
120. # by default, ansible-playbook will display "Skipping [host]" if it determines a task
121. # should not be run on a host. Set this to "False" if you don't want to see these "Skipping"
122. # messages. NOTE: the task header will still be shown regardless of whether or not the
123. # task is skipped.
124. #display_skipped_hosts = True
125.  
126. # by default, if a task in a playbook does not include a name: field then
127. # ansible-playbook will construct a header that includes the task's action but
128. # not the task's args. This is a security feature because ansible cannot know
129. # if the *module* considers an argument to be no_log at the time that the
130. # header is printed. If your environment doesn't have a problem securing
131. # stdout from ansible-playbook (or you have manually specified no_log in your
132. # playbook on all of the tasks where you have secret information) then you can
133. # safely set this to True to get more informative messages.
134. #display_args_to_stdout = False
135.  
136. # by default (as of 1.3), Ansible will raise errors when attempting to dereference
137. # Jinja2 variables that are not set in templates or action lines. Uncomment this line
138. # to revert the behavior to pre-1.3.
139. #error_on_undefined_vars = False
140.  
141. # by default (as of 1.6), Ansible may display warnings based on the configuration of the
142. # system running ansible itself. This may include warnings about 3rd party packages or
143. # other conditions that should be resolved if possible.
144. # to disable these warnings, set the following value to False:
145. #system_warnings = True
146.  
147. # by default (as of 1.4), Ansible may display deprecation warnings for language
148. # features that should no longer be used and will be removed in future versions.
149. # to disable these warnings, set the following value to False:
150. #deprecation_warnings = True
151.  
152. # (as of 1.8), Ansible can optionally warn when usage of the shell and
153. # command module appear to be simplified by using a default Ansible module
154. # instead. These warnings can be silenced by adjusting the following
155. # setting or adding warn=yes or warn=no to the end of the command line
156. # parameter string. This will for example suggest using the git module
157. # instead of shelling out to the git command.
158. # command_warnings = False
159.  
160.  
161. # set plugin path directories here, separate with colons
162. #action_plugins = /usr/share/ansible/plugins/action
163. #callback_plugins = /usr/share/ansible/plugins/callback
164. #connection_plugins = /usr/share/ansible/plugins/connection
165. #lookup_plugins = /usr/share/ansible/plugins/lookup
166. #vars_plugins = /usr/share/ansible/plugins/vars
167. #filter_plugins = /usr/share/ansible/plugins/filter
168. #test_plugins = /usr/share/ansible/plugins/test
169. #strategy_plugins = /usr/share/ansible/plugins/strategy
170.  
171. # by default callbacks are not loaded for /bin/ansible, enable this if you
172. # want, for example, a notification or logging callback to also apply to
173. # /bin/ansible runs
174. #bin_ansible_callbacks = False
175.  
176.  
177. # don't like cows? that's unfortunate.
178. # set to 1 if you don't want cowsay support or export ANSIBLE_NOCOWS=1
179. #nocows = 1
180.  
181. # set which cowsay stencil you'd like to use by default. When set to 'random',
182. # a random stencil will be selected for each task. The selection will be filtered
183. # against the `cow_whitelist` option below.
184. #cow_selection = default
185. #cow_selection = random
186.  
187. # when using the 'random' option for cowsay, stencils will be restricted to this list.
188. # it should be formatted as a comma-separated list with no spaces between names.
189. # NOTE: line continuations here are for formatting purposes only, as the INI parser
190. # in python does not support them.
191. #cow_whitelist=bud-frogs,bunny,cheese,daemon,default,dragon,elephant-in-snake,elephant,eyes,\
192. # hellokitty,kitty,luke-koala,meow,milk,moofasa,moose,ren,sheep,small,stegosaurus,\
193. # stimpy,supermilker,three-eyes,turkey,turtle,tux,udder,vader-koala,vader,www
194.  
195. # don't like colors either?
196. # set to 1 if you don't want colors, or export ANSIBLE_NOCOLOR=1
197. #nocolor = 1
198.  
199. # if set to a persistent type (not 'memory', for example 'redis') fact values
200. # from previous runs in Ansible will be stored. This may be useful when
201. # wanting to use, for example, IP information from one group of servers
202. # without having to talk to them in the same playbook run to get their
203. # current IP information.
204. #fact_caching = memory
205.  
206.  
207. # retry files
208. # When a playbook fails by default a .retry file will be created in ~/
209. # You can disable this feature by setting retry_files_enabled to False
210. # and you can change the location of the files by setting retry_files_save_path
211.  
212. #retry_files_enabled = False
213. #retry_files_save_path = ~/.ansible-retry
214.  
215. # squash actions
216. # Ansible can optimise actions that call modules with list parameters
217. # when looping. Instead of calling the module once per with_ item, the
218. # module is called once with all items at once. Currently this only works
219. # under limited circumstances, and only with parameters named 'name'.
220. #squash_actions = apk,apt,dnf,package,pacman,pkgng,yum,zypper
221.  
222. # prevents logging of task data, off by default
223. #no_log = False
224.  
225. # prevents logging of tasks, but only on the targets, data is still logged on the master/controller
226. #no_target_syslog = False
227.  
228. # controls whether Ansible will raise an error or warning if a task has no
229. # choice but to create world readable temporary files to execute a module on
230. # the remote machine. This option is False by default for security. Users may
231. # turn this on to have behaviour more like Ansible prior to 2.1.x. See
232. # https://docs.ansible.com/ansible/become.html#becoming-an-unprivileged-user
233. # for more secure ways to fix this than enabling this option.
234. #allow_world_readable_tmpfiles = False
235.  
236. # controls the compression level of variables sent to
237. # worker processes. At the default of 0, no compression
238. # is used. This value must be an integer from 0 to 9.
239. #var_compression_level = 9
240.  
241. # controls what compression method is used for new-style ansible modules when
242. # execute a module on the remote server. This can result in a significant
243. # performance improvement when enabled, however when using "sudo:" you must
244. # first disable 'requiretty' in /etc/sudoers
245. #
246. # By default, this option is disabled to preserve compatibility with
247. # sudoers configurations that have requiretty (the default on many distros).
248. #
249. #pipelining = False
250.  
251. # if True, make ansible use scp if the connection type is ssh
252. # (default is sftp)
253. scp_if_ssh = True
254.  
255. # if False, sftp will not use batch mode to transfer files. This may cause some
256. # types of file transfer failures impossible to catch however, and should
257. # only be disabled if your sftp version has problems with batch mode
258. #sftp_batch_mode = False
259.  
260. [accelerate]
261. #accelerate_port = 5099
262. #accelerate_timeout = 30
263. #accelerate_connect_timeout = 5.0
264.  
265. # The daemon timeout is measured in minutes. This time is measured
266. # from the last activity to the accelerate daemon.
267. #accelerate_daemon_timeout = 30
268.  
269. # If set to yes, accelerate_multi_key will allow multiple
270. # private keys to be uploaded to it, though each user must
271. # have access to the system via SSH to add a new key. The default
272. # is "no".
273. #accelerate_multi_key = yes
274.  
275. [selinux]
276. # file systems that require special treatment when dealing with security context
277. # the default behaviour that copies the existing context or uses the user default
278. # needs to be changed to use the file system dependent context.
279. #special_context_filesystems=nfs,vboxsf,fuse,ramfs
280.  
281. # Set this to yes to allow libvirt_lxc connections to work without SELinux.
282. #libvirt_lxc_noseclabel = yes
283.  
284. [colors]
285. #highlight = white
286. #verbose = blue
287. #warn = bright purple
288. #error = red
289. #debug = dark gray
290. #deprecate = purple
291. #skip = cyan
292. #unreachable = red
293. #ok = green
294. #changed = yellow
295. #diff_add = green
296. #diff_remove = red
297. #diff_lines = cyan