A very simple playbook to run commands across various users. This started as a way to handle podman updates for users using su -c and then using ssh. But why just podman updates, run commands across your users!
- Setup host in inventory
- Adjust users in vars/users.yml
> ansible-playbook command.yml
command: whoami
PLAY [Podman ansible crossuser command (using ssh)] ****************************************************************************************************************************************************************************************
TASK [Gathering Facts] *********************************************************************************************************************************************************************************************************************
ok: [host]
TASK [Running custom command using shell] **************************************************************************************************************************************************************************************************
changed: [host] => (item=user1)
changed: [host] => (item=user2)
TASK [debug] *******************************************************************************************************************************************************************************************************************************
user1:
user1
user2:
user2
PLAY RECAP *********************************************************************************************************************************************************************************************************************************
host : ok=x changed=y unreachable=0 failed=0 skipped=0 rescued=0 ignored=0
On the host you can either use become (using the sudo password or root login) or ssh to switch between your users list.
- using ssh for each user,
ansible-playbook ssh.yml. - using ansible's
become(sudo su -c),ansible-playbook become.yml -K.
You can pass the playbook the tags which you want to run. Current tags:
- ps: runs
podman ps -aon your users. - checkupdates: runs
podman auto-update --dry-runon your users. - applyupdates: runs
podman auto-updateon your users. Runningansible-playbook {ssh/become}.ymlwithout any tags will runpsandcheckupdates
Pass in multiple tags to run tasks at once:
- ansible-playbook ssh.yml --tags "checkupdates, applyupdates"
You can use the normal ansible arguments as usual. For example to override the users.yml file and passing users on runtime you would pass -e "users=[user1, user2]".
PLAY [Podman ansible updates] *************************************************************************************************************************************************************************************************************************
TASK [Gathering Facts] *********************************************************************************************************************************************************************************************************************
ok: [host]
TASK [Querying podman for containers] ******************************************************************************************************************************************************************************************************
changed: [host] => (item=user1)
changed: [host] => (item=user2)
changed: [host] => (item=user3)
TASK [debug] *******************************************************************************************************************************************************************************************************************************
user1:
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
17cb9979aa65 docker.io/library/postgres:16.1 postgres 14 minutes ago Up 14 minutes postgres
user2:
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
17cb9979aa65 docker.io/library/postgres:16.1 postgres 14 minutes ago Up 14 minutes postgres
user3:
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
TASK [Applying podman auto-update] *********************************************************************************************************************************************************************************************************
changed: [host] => (item=user1)
changed: [host] => (item=user2)
changed: [host] => (item=user3)
TASK [debug] *******************************************************************************************************************************************************************************************************************************
user1:
UNIT CONTAINER IMAGE POLICY UPDATED
postgres.service 17cb9979aa65 (postgres) docker.io/library/postgres:16.1 registry false
user2:
UNIT CONTAINER IMAGE POLICY UPDATED
postgres.service 17cb9979aa65 (postgres) docker.io/library/postgres:16.1 registry false
PLAY RECAP *********************************************************************************************************************************************************************************************************************************
host : ok=x changed=y unreachable=0 failed=0 skipped=0 rescued=0 ignored=0