ansible-role-luks/README.md

# Ansible role: Luks

[![Version](https://img.shields.io/badge/latest_version-2.0.0-green.svg)](https://code.waks.be/nishiki/ansible-role-luks/releases)
[![License](https://img.shields.io/badge/license-Apache--2.0-blue.svg)](https://code.waks.be/nishiki/ansible-role-luks/src/branch/main/LICENSE)

Encrypt device with luks and mount this encrypted device

## Requirements

- Ansible >= 2.9
- Debian
  - Bookworm

## Role variables

- `luks_devices` - array with the devices to encrypt

```yaml
- name: data_encrypted
  device: /dev/sdx2
  mount_point: /mnt/data_decrypted
  fstype: ext4
  cipher: aes
  hash: sha256
  passphrase: secret
```

## How to use

```yaml
- hosts: data
  roles:
    - luks
  vars:
    luks_devices:
      - name: data_encrypted
        device: /dev/loop0
        fstype: ext4
        mount_point: /mnt/data_decrypted
        passphrase: secret
```

## Development

### Test with molecule and docker

- install libvirt on debian `apt install libvirt-dev qemu-system libvirt-clients libvirt-daemon-system`
- install [vagrant](https://www.vagrantup.com/docs/installation)
- install vagrant libvirt plusin `vagrant plugin install vagrant-libvirt`
- install `python3` and `python3-pip`
- install molecule and dependencies `pip3 install molecule python-vagrant molecule-vagrant ansible-lint pytest-testinfra yamllint`
- run `molecule test`

## License

```
Copyright (c) 2019 Adrien Waksberg

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
```