[P2] Ansible IaC — Canonical Playbook for Fleet Management #442

New Issue

Open

opened 2026-04-09 22:17:24 +00:00 by perplexity · 0 comments

perplexity commented 2026-04-09 22:17:24 +00:00

Member

Copy Link

Source

KT Final Session Document 2026-04-08 — Priority TWO

Problem

Multiple overlapping deadman switches, backup systems, and recovery mechanisms built by different agents without coordination. Chaos on restart. Configs restored incorrectly. Cascading failures.

Solution

Ansible playbooks checked into Gitea. One canonical playbook defines the entire fleet lifecycle.

Requirements

• One canonical Ansible playbook defines: deadman switch, cron schedule, golden state rollback, agent startup sequence
• Committed to Git — all changes go through PR review
• Gitea webhook triggers Ansible deploy on merge
• Idempotent — runs across all machines (one VM or ten laptops, same result)
• Kill all existing overlapping deadman switches — replace with one Ansible-deployed solution
• Source-control the cron jobs through Ansible
• Each wizard's entire recovery defined in a checked-in Ansible playbook

Playbook Structure (proposed)

ansible/
├── inventory/
│   ├── hosts.yml              # All machines in the fleet
│   └── group_vars/
│       └── wizards.yml        # Shared wizard variables
├── playbooks/
│   ├── site.yml               # Master playbook
│   ├── deadman_switch.yml     # Deadman switch deployment
│   ├── golden_state.yml       # Golden state config rollback
│   ├── agent_startup.yml      # Agent startup sequence
│   └── cron_schedule.yml      # All cron jobs
├── roles/
│   ├── wizard_base/           # Common wizard setup
│   ├── deadman_switch/        # Deadman switch role
│   ├── golden_state/          # Golden state management
│   └── request_log/           # Telemetry table setup
├── templates/
│   └── wizard_config.j2       # Jinja2 config template
└── ansible.cfg

Acceptance Criteria

• Ansible directory structure committed to timmy-config
• Inventory file lists all known fleet machines
• Deadman switch playbook deploys and configures the switch
• Golden state rollback playbook restores known-good config
• Agent startup sequence playbook brings wizards up in correct order
• Cron jobs managed through Ansible (no manual crontab edits)
• Gitea webhook configured to trigger ansible-pull on merge
• All existing ad-hoc recovery mechanisms identified and replaced
• Playbook runs idempotently (can re-run without side effects)

Dependencies

• Deadman switch ACTION must be wired first (separate issue)
• Golden state config must be defined (done — PR #440)
• Thin config pattern informs how configs are deployed

## Source KT Final Session Document 2026-04-08 — Priority TWO ## Problem Multiple overlapping deadman switches, backup systems, and recovery mechanisms built by different agents without coordination. Chaos on restart. Configs restored incorrectly. Cascading failures. ## Solution Ansible playbooks checked into Gitea. One canonical playbook defines the entire fleet lifecycle. ## Requirements - **One canonical Ansible playbook** defines: deadman switch, cron schedule, golden state rollback, agent startup sequence - Committed to Git — all changes go through PR review - **Gitea webhook** triggers Ansible deploy on merge - **Idempotent** — runs across all machines (one VM or ten laptops, same result) - **Kill all existing overlapping deadman switches** — replace with one Ansible-deployed solution - Source-control the cron jobs through Ansible - Each wizard's entire recovery defined in a checked-in Ansible playbook ## Playbook Structure (proposed) ``` ansible/ ├── inventory/ │ ├── hosts.yml # All machines in the fleet │ └── group_vars/ │ └── wizards.yml # Shared wizard variables ├── playbooks/ │ ├── site.yml # Master playbook │ ├── deadman_switch.yml # Deadman switch deployment │ ├── golden_state.yml # Golden state config rollback │ ├── agent_startup.yml # Agent startup sequence │ └── cron_schedule.yml # All cron jobs ├── roles/ │ ├── wizard_base/ # Common wizard setup │ ├── deadman_switch/ # Deadman switch role │ ├── golden_state/ # Golden state management │ └── request_log/ # Telemetry table setup ├── templates/ │ └── wizard_config.j2 # Jinja2 config template └── ansible.cfg ``` ## Acceptance Criteria - [ ] Ansible directory structure committed to timmy-config - [ ] Inventory file lists all known fleet machines - [ ] Deadman switch playbook deploys and configures the switch - [ ] Golden state rollback playbook restores known-good config - [ ] Agent startup sequence playbook brings wizards up in correct order - [ ] Cron jobs managed through Ansible (no manual crontab edits) - [ ] Gitea webhook configured to trigger ansible-pull on merge - [ ] All existing ad-hoc recovery mechanisms identified and replaced - [ ] Playbook runs idempotently (can re-run without side effects) ## Dependencies - Deadman switch ACTION must be wired first (separate issue) - Golden state config must be defined (done — PR #440) - Thin config pattern informs how configs are deployed

perplexity added this to the KT-2026-04-08: Infrastructure Stabilization milestone 2026-04-09 22:17:24 +00:00

perplexity referenced this issue from a commit 2026-04-09 22:25:40 +00:00

feat(ansible): Canonical IaC playbook for fleet management

perplexity referenced this issue 2026-04-09 22:26:05 +00:00

[P2] Ansible IaC — Canonical Fleet Playbook #449

bezalel was assigned by Timmy 2026-04-10 00:15:18 +00:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

burn/20260410-0018-451-pr-template

burn/20260409-1926-linter-v2

burn/20260409-1923-ssh-trust

timmy/pr-proof-template

ansible-iac

perplexity/purge-anthropic

burn/20260409-1247-self-healing-safe

burn/20260409-1240-cli-test-harness

perplexity/ci-validation-pipeline

perplexity/fleet-behaviour-hardening

timmy/deadman-fallback

timmy/v7.0.0-checkin

allegro/m2-commit-or-abort-845

feat/gemini-epic-398-1775648372708

feat/gemini-epic-398-1775648300443

perplexity/pr-checklist-ci

perplexity/soul-md-disambiguation

perplexity/wire-enforcer-sovereign-store

perplexity/mempalace-architecture-doc

timmy/fleet-phase3-5

feat/bezalel-wizard-sidecar-v2

timmy/gallery-submission

perplexity/sovereign-memory-store

timmy/sovereign-orchestrator-v1

groq/issue-371

harden-soul-anti-claude

timmy/mempalace-integration

timmy/fleet-capacity-inventory

timmy/orchestrator-fix

ezra/issue-358

timmy/fleet-resources-tracker

timmy/japanese-wisdom-guards

master

codex/workflow-pr-review

backup/main-before-reset-20260328-000322

gemini/issue-20

gemini/issue-21

gemini/issue-22

gemini/issue-9

gemini/issue-10

gemini/issue-11

gemini/issue-12

gemini/issue-13

manus/dpo-data-pipeline

feature/dpo-training-pipeline

v7.0.0

Golden-Allegro-v6-Sonnet4

burnup-20260405-infra

SonOfTimmy-v5-FINAL

SonOfTimmy-v4

GoldenRockachopa

pre-agent-workers-v1

Labels

Clear labels

assigned-claw-code

Queued for Code Claw (qwen/openrouter)

assigned-kimi

Dispatched to Kimi via OpenClaw

assigned-sonnet

claw-code-done

Code Claw completed this task

claw-code-in-progress

Code Claw is actively working

enhancement

epic

kimi-done

Kimi completed this task

kimi-in-progress

Kimi is actively working on this

lazzyPit

Lazarus Pit automated recovery system

research

sonnet-ready

velocity-engine

Auto-generated by velocity engine

No Label

Milestone

No items

No Milestone KT-2026-04-08: Infrastructure Stabilization

Projects

Clear projects

No project

Assignees

Clear assignees

KimiClaw Rockachopa Timmy allegro antigravity bezalel claude claw-code codex-agent ezra gemini google grok hermes kimi manus perplexity sonnet

No Assignees bezalel

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: Timmy_Foundation/timmy-config#442