90 Days of DevOps
Ansible Playbooks: A Practical Guide with Best Practices

Ansible Playbooks: A Practical Guide with Best Practices

Kanav Gathe's photo
Kanav Gathe
·

4 min read

In the world of Infrastructure as Code (IaC), Ansible stands out as a powerful automation tool. Today, we'll dive into Ansible playbooks - what they are, how to write them effectively, and the best practices that will help you create maintainable and efficient automation.

What are Ansible Playbooks?

Ansible playbooks are YAML files that describe a set of steps to configure systems. Think of them as instruction manuals for your infrastructure automation. They can handle everything from simple file operations to complex multi-tier application deployments.

Real-World Examples

Let's look at three practical examples that demonstrate common automation tasks:

1. Creating a File on Remote Servers

---
- name: Create file on remote server
  hosts: all
  become: true

  tasks:
    - name: Create file with content
      file:
        path: /home/ubuntu/new.txt
        state: touch

This simple playbook demonstrates file creation across multiple servers. It's straightforward but follows important practices like:

  • Clear naming of plays and tasks

  • Explicit permission handling with become: true

  • Using built-in modules instead of shell commands

2. Creating a New User

---
- name: This will create a user
  hosts: all
  become: true
  tasks:
    - name: To create a new user
      user:
        name: kanav

This playbook shows user management automation. Note the:

  • Descriptive task names

  • Use of the dedicated user module

  • Clear and simple structure

3. Installing Docker

---
- name: Install Docker on multiple servers
  hosts: all
  become: yes
  tasks:
    - name: Add Docker GPG key
      apt_key:
        url: https://download.docker.com/linux/ubuntu/gpg
        state: present

    - name: Add Docker repository
      apt_repository:
        repo: deb https://download.docker.com/linux/ubuntu focal stable
        state: present

    - name: Install Docker CE
      apt:
        name: docker-ce
        state: present

This example shows a more complex setup with multiple dependent tasks.

Best Practices for Ansible Playbooks

1. Directory Structure

Maintain a clear directory structure:

ansible-project/
├── inventory/
│   ├── production
│   └── staging
├── group_vars/
│   └── all.yml
├── host_vars/
├── roles/
└── playbooks/

2. Naming Conventions

  • Use meaningful names for tasks and plays

  • Keep names descriptive but concise

  • Use lowercase and underscores for variables

3. Security Best Practices

  • Never commit sensitive data to version control

  • Use ansible-vault for secrets

  • Limit the use of privilege escalation

  • Use SSH keys instead of passwords

4. Task Design

  • Make tasks idempotent (safe to run multiple times)

  • Use modules instead of shell commands

  • Include proper error handling

  • Keep tasks focused and single-purpose

5. Variables and Inventory

  • Use group_vars and host_vars appropriately

  • Keep environment-specific variables separate

  • Use meaningful variable names

  • Document variable purposes

6. Performance Optimization

  • Use tags for selective execution

  • Minimize unnecessary tasks

  • Use handlers for service management

  • Consider using async tasks for long-running operations

7. Version Control

  • Use git for playbook management

  • Write meaningful commit messages

  • Keep sensitive data out of version control

  • Tag releases for production deployments

8. Testing and Validation

  • Test playbooks in staging first

  • Use --check mode to verify changes

  • Implement proper error handling

  • Document prerequisites

Common Pitfalls to Avoid

  1. Overcomplicating Playbooks

    • Keep tasks simple and focused

    • Don't try to do everything in one playbook

  2. Poor Error Handling

    • Always consider what happens when things fail

    • Use proper error handling mechanisms

  3. Insufficient Documentation

    • Document prerequisites

    • Include examples and usage instructions

    • Comment complex tasks

  4. Ignoring Idempotency

    • Ensure tasks can be run multiple times safely

    • Use state parameters appropriately

Conclusion

Ansible playbooks are powerful tools for automation, but their effectiveness depends on how well they're written and maintained. By following these best practices and learning from real-world examples, you can create robust, maintainable, and efficient automation for your infrastructure.

Remember:

  • Start simple and iterate

  • Follow established patterns and practices

  • Keep security in mind

  • Test thoroughly

  • Document everything

The examples we've covered show how to accomplish common tasks while following best practices. As you build your own playbooks, use these patterns as a foundation and adapt them to your specific needs.

Happy automating!

#90daysofdevops#90daysofdevops chanllenge#90daysofdevopschallenge#90daysofdevops #DevOps #ProjectDevelopment #NonITBackground #GitHub #Docker #CloudPlatforms #EC2 #AWS #ElasticBeanstalk #LambdaFunctions #DevOpsPipelines #Terraform #Jenkins #Docker #DevSecOps #SCM #Git #GitLab #BitBucket #BuildTools #Griddle #Maven #Ant #MSBuild #MonitoringTools #Prometheus #Grafana #Ansible #AI #ChatGPT #ValueAddition #RealWorldProblems.ansible-playbookansibleDevopsbest practices