refactor(ansible): move RouterOS config into a role

Move flat tasks/ and vars/routeros-secrets.yml into roles/routeros/ with a main.yml that imports the domain task files in order. Update playbooks/routeros.yml to use the role instead of importing tasks directly.
2026-05-13 20:48:01 +02:00
parent d3a722df92
commit 17db139125
13 changed files with 37 additions and 31 deletions
@@ -4,9 +4,6 @@
  gather_facts: false
  connection: local

-  vars_files:
-    - ../vars/routeros-secrets.yml
-
  pre_tasks:
    - name: Load router secrets from OpenBao
      ansible.builtin.set_fact:
@@ -63,30 +60,5 @@
      force_no_cert: true
      encoding: UTF-8

-  tasks:
-    - name: Preflight checks
-      ansible.builtin.import_tasks: ../tasks/preflight.yml
-
-    - name: Base network configuration
-      ansible.builtin.import_tasks: ../tasks/base.yml
-
-    - name: WAN and tunnel interfaces
-      ansible.builtin.import_tasks: ../tasks/wan.yml
-
-    - name: Hardware and platform tuning
-      ansible.builtin.import_tasks: ../tasks/hardware.yml
-
-    - name: RouterOS container configuration
-      ansible.builtin.import_tasks: ../tasks/containers.yml
-
-    - name: Addressing configuration
-      ansible.builtin.import_tasks: ../tasks/addressing.yml
-
-    - name: Firewall configuration
-      ansible.builtin.import_tasks: ../tasks/firewall.yml
-
-    - name: Routing configuration
-      ansible.builtin.import_tasks: ../tasks/routing.yml
-
-    - name: System configuration
-      ansible.builtin.import_tasks: ../tasks/system.yml
+  roles:
+    - role: routeros