القائمة
Patterns for designing well-structured, maintainable Ansible playbooks with state-based (present/absent) design, play organization, and proper variable scoping.
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
Install and configure Prettier for JavaScript/TypeScript projects. Use when setting up a dev environment, fixing formatting issues, or asked to "install prettier", "configure prettier", or "set up code formatting".
Core principles and golden rules for writing production-quality Ansible automation, covering FQCN requirements, module selection guidance, and execution patterns using uv run.
Production-grade Ansible role structure patterns for directory layout, variable organization (defaults vs vars), handlers, and task organization, derived from analysis of 7 geerlingguy production roles.
Build scalable design systems with Tailwind CSS v4, design tokens, component libraries, and responsive patterns. Use when creating component libraries, implementing design systems, or standardizing UI patterns.
Configure or update Go projects with opinionated best practices using Go modules, golangci-lint, and built-in testing. Use when a repo should contain a Go project with modern tooling, idiomatic Go code, and 80% test coverage requirements.
Configure or update Python projects using uv, ruff, and pytest with opinionated best practices. Use when a repo should contain a Python project with modern tooling, PEP standards, and 80% test coverage requirements.
| name | ansible-playbook-design |
| description | Patterns for designing well-structured, maintainable Ansible playbooks with state-based (present/absent) design, play organization, and proper variable scoping. |
| when_to_use | Use when creating new Ansible playbooks, designing playbook structure, implementing state-based playbooks with present/absent patterns, organizing plays and tasks, or structuring playbook variables. |
Patterns for designing well-structured, maintainable Ansible playbooks.
Design playbooks to handle both creation and removal via a state variable.
---
- name: Manage admin user account
hosts: all
become: true
vars:
admin_state: present # or absent
tasks:
- name: Create admin user
ansible.builtin.user:
name: '{{ admin_name }}'
groups: '{{ admin_groups }}'
state: '{{ admin_state }}'
- name: Configure SSH key
ansible.posix.authorized_key:
user: '{{ admin_name }}'
key: '{{ admin_ssh_key }}'
state: '{{ admin_state }}'
when: admin_state == 'present'
# Create user (default)
uv run ansible-playbook playbooks/manage-admin.yml \
-e "admin_name=alice" \
-e "admin_ssh_key='ssh-ed25519 AAAA...'"
# Remove user
uv run ansible-playbook playbooks/manage-admin.yml \
-e "admin_name=alice" \
-e "admin_state=absent"
Order sections consistently across all playbooks:
---
- name: Descriptive play name
hosts: target_group
become: true
gather_facts: true
vars:
# Play-level variables
app_version: '2.0.0'
vars_files:
# External variable files
- vars/secrets.yml
pre_tasks:
# Tasks that must run before roles
- name: Update apt cache
ansible.builtin.apt:
update_cache: true
cache_valid_time: 3600
roles:
# Role includes
- role: common
- role: app_deploy
vars:
deploy_version: '{{ app_version }}'
tasks:
# Play-specific tasks
- name: Verify deployment
ansible.builtin.uri:
url: http://localhost:8080/health
post_tasks:
# Cleanup or finalization
- name: Send deployment notification
ansible.builtin.debug:
msg: 'Deployment complete'
handlers:
# Event-triggered tasks
- name: restart app
ansible.builtin.systemd:
name: myapp
state: restarted
ansible/
├── group_vars/
│ ├── all.yml # Variables for ALL hosts
│ ├── webservers.yml # Web server hosts
│ └── db_servers.yml # Database server hosts
├── host_vars/
│ ├── web01.yml # Host-specific overrides
│ └── web02.yml
└── playbooks/
└── deploy.yml # Uses vars: for playbook-specific
Split playbook tasks into separate files when:
# playbooks/setup-webserver.yml
---
- name: Setup web server
hosts: webservers
become: true
tasks:
- name: Install and configure nginx
ansible.builtin.include_tasks: tasks/nginx.yml
- name: Configure SSL
ansible.builtin.include_tasks: tasks/ssl.yml
when: setup_ssl | default(true)
- name: Deploy application
ansible.builtin.include_tasks: tasks/app-deploy.yml
when: inventory_hostname == groups['webservers'][0]
Handlers run:
Force immediate handler execution:
- name: Update critical config
ansible.builtin.template:
src: config.j2
dest: /etc/app/config.yml
notify: restart app
- name: Flush handlers now
ansible.builtin.meta: flush_handlers
- name: Verify app is running
ansible.builtin.uri:
url: http://localhost:8080/health
Add validation at the start of playbooks:
---
- name: Deploy application
hosts: app_servers
become: true
tasks:
- name: Validate required variables
ansible.builtin.assert:
that:
- app_version is defined
- app_version | regex_search('^\d+\.\d+\.\d+$')
- deploy_env in ['staging', 'production']
fail_msg: 'Invalid configuration. Check app_version and deploy_env.'
- name: Check disk space
ansible.builtin.assert:
that: ansible_mounts | selectattr('mount', 'equalto', '/') | map(attribute='size_available') | first > 1073741824
fail_msg: 'Insufficient disk space. Need at least 1GB free.'
---
# playbooks/template-playbook.yml
# Description: [What this playbook does]
# Usage: uv run ansible-playbook playbooks/template-playbook.yml -e "var=value"
# Requirements: [Any prerequisites]
- name: [Descriptive play name]
hosts: [target_group]
become: [true/false]
gather_facts: [true/false]
vars:
# Configurable variables with defaults
resource_state: present
tasks:
- name: Validate inputs
ansible.builtin.assert:
that:
- required_var is defined
fail_msg: 'required_var must be defined'
# Main tasks...
- name: Verify completion
ansible.builtin.debug:
msg: 'Playbook completed successfully'