2fdfbaf1f0
Per default unattended-upgrades is configured to only update/upgrade packages from official Debian and Debian Security repos. This change removes all limitations.
31 lines
602 B
YAML
31 lines
602 B
YAML
---
|
|
- name: update
|
|
apt:
|
|
update_cache: yes
|
|
cache_valid_time: 600
|
|
upgrade: dist
|
|
tags:
|
|
- update
|
|
|
|
- name: install unattended-upgrades
|
|
apt:
|
|
name: unattended-upgrades
|
|
purge: yes
|
|
state: "{% if update.unattended %}present{% else %}absent{% endif %}"
|
|
|
|
- name: configure unattended-upgrades
|
|
ansible.builtin.copy:
|
|
src: "50unattended-upgrades"
|
|
dest: "/etc/apt/apt.conf.d/50unattended-upgrades"
|
|
owner: root
|
|
group: root
|
|
mode: 0644
|
|
when: update.unattended
|
|
|
|
- name: clean
|
|
command: apt-get clean
|
|
changed_when: False
|
|
args:
|
|
warn: False
|
|
tags:
|
|
- update
|