.. include:: includes/all.rst
To setup and configure Firejail on a given host it should be included in the
``debops_service_firejail`` Ansible inventory group:
.. code:: ini
Here's an example playbook that uses the ``debops-contrib.firejail`` role:
.. literalinclude:: playbooks/firejail.yml
This playbooks is shipped with this role under
:file:`./docs/playbooks/firejail.yml` from which you can symlink it to your
In case you use multiple `DebOps Contrib`_ roles, consider using the
`DebOps Contrib playbooks`_.
You can use Ansible ``--tags`` or ``--skip-tags`` parameters to limit what
tasks are performed during Ansible run. This can be used after a host was first
configured to speed up playbook execution, when you are sure that most of the
configuration is already in the desired state.
Available role tags:
Main role tag, should be used in the playbook to execute all of the role
tasks as well as role dependencies.
Tasks related to system package management like installing or
Tasks related to Firejail security profile management like copying or
removing profile files.